@webex/plugin-authorization-node 3.0.0-bnr.5 → 3.0.0

package/.eslintrc.js

@@ -0,0 +1,6 @@
+const config = {
+  root: true,
+  extends: ['@webex/eslint-config-legacy'],
+};
+
+module.exports = config;

package/babel.config.js

@@ -0,0 +1,3 @@
+const babelConfigLegacy = require('@webex/babel-config-legacy');
+
+module.exports = babelConfigLegacy;

package/dist/authorization.js

@@ -11,7 +11,13 @@ var _getOwnPropertyDescriptor = _interopRequireDefault(require("@babel/runtime-c
 var _applyDecoratedDescriptor2 = _interopRequireDefault(require("@babel/runtime-corejs2/helpers/applyDecoratedDescriptor"));
 var _common = require("@webex/common");
 var _webexCore = require("@webex/webex-core");
+var _jsonwebtoken = _interopRequireDefault(require("jsonwebtoken"));
+var _uuid = _interopRequireDefault(require("uuid"));
 var _dec, _obj;
+/*!
+ * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.
+ */
+/* eslint camelcase: [0] */
 /**
  * NodeJS support for OAuth2
  * @class
@@ -144,8 +150,38 @@ var Authorization = _webexCore.WebexPlugin.extend((_dec = (0, _common.whileInFli
       return _this2.webex.internal.services.initServiceCatalogs();
     });
   },
-  version: "3.0.0-bnr.5"
+  /**
+   * Creates a jwt user token
+   * @param {object} options
+   * @param {String} options.issuer Guest Issuer ID
+   * @param {String} options.secretId Guest Secret ID
+   * @param {String} options.displayName Guest Display Name | optional
+   * @param {String} options.expiresIn
+   * @returns {Promise<object>}
+   */
+  createJwt: function createJwt(_ref3) {
+    var issuer = _ref3.issuer,
+      secretId = _ref3.secretId,
+      displayName = _ref3.displayName,
+      expiresIn = _ref3.expiresIn;
+    var secret = Buffer.from(secretId, 'base64');
+    var payload = {
+      "sub": "guest-user-".concat((0, _uuid.default)()),
+      "iss": issuer,
+      "name": displayName || "Guest User - ".concat((0, _uuid.default)())
+    };
+    try {
+      var jwtToken = _jsonwebtoken.default.sign(payload, secret, {
+        expiresIn: expiresIn
+      });
+      return _promise.default.resolve({
+        jwt: jwtToken
+      });
+    } catch (e) {
+      return _promise.default.reject(e);
+    }
+  },
+  version: "3.0.0"
 }, ((0, _applyDecoratedDescriptor2.default)(_obj, "requestAuthorizationCodeGrant", [_dec, _common.oneFlight], (0, _getOwnPropertyDescriptor.default)(_obj, "requestAuthorizationCodeGrant"), _obj), (0, _applyDecoratedDescriptor2.default)(_obj, "requestAccessTokenFromJwt", [_common.oneFlight], (0, _getOwnPropertyDescriptor.default)(_obj, "requestAccessTokenFromJwt"), _obj)), _obj)));
-var _default = Authorization;
-exports.default = _default;
+var _default = exports.default = Authorization;
 //# sourceMappingURL=authorization.js.map

package/dist/authorization.js.map

@@ -1 +1 @@
-{"version":3,"names":["Authorization","WebexPlugin","extend","whileInFlight","derived","isAuthenticating","deps","fn","isAuthorizing","session","default","type","namespace","logout","options","webex","request","method","uri","config","logoutUrl","body","token","cisService","service","requestAuthorizationCodeGrant","logger","info","code","reject","Error","tokenUrl","form","grant_type","redirect_uri","self_contained_token","auth","user","client_id","pass","client_secret","sendImmediately","shouldRefreshAccessToken","then","res","credentials","set","supertoken","catch","statusCode","ErrorConstructor","grantErrors","select","error","_res","requestAccessTokenFromJwt","jwt","hydraUri","internal","services","get","slice","process","env","HYDRA_SERVICE_URL","headers","authorization","access_token","token_type","expires_in","expiresIn","initServiceCatalogs","oneFlight"],"sources":["authorization.js"],"sourcesContent":["/*!\n * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.\n */\n\n/* eslint camelcase: [0] */\n\nimport {oneFlight, whileInFlight} from '@webex/common';\nimport {grantErrors, WebexPlugin} from '@webex/webex-core';\n\n/**\n * NodeJS support for OAuth2\n * @class\n * @name AuthorizationNode\n */\nconst Authorization = WebexPlugin.extend({\n  derived: {\n    /**\n     * Alias of {@link AuthorizationNode#isAuthorizing}\n     * @instance\n     * @memberof AuthorizationNode\n     * @type {boolean}\n     */\n    isAuthenticating: {\n      deps: ['isAuthorizing'],\n      fn() {\n        return this.isAuthorizing;\n      },\n    },\n  },\n\n  session: {\n    /**\n     * Indicates if an Authorization Code exchange is inflight\n     * @instance\n     * @memberof AuthorizationNode\n     * @type {boolean}\n     */\n    isAuthorizing: {\n      default: false,\n      type: 'boolean',\n    },\n  },\n\n  namespace: 'Credentials',\n\n  logout(options = {}) {\n    this.webex.request({\n      method: 'POST',\n      uri: this.config.logoutUrl,\n      body: {\n        token: options.token,\n        cisService: this.config.service,\n      },\n    });\n  },\n\n  @whileInFlight('isAuthorizing')\n  @oneFlight\n  /**\n   * Exchanges an authorization code for an access token\n   * @instance\n   * @memberof AuthorizationNode\n   * @param {Object} options\n   * @param {Object} options.code\n   * @returns {Promise}\n   */\n  requestAuthorizationCodeGrant(options = {}) {\n    this.logger.info('credentials: requesting authorization code grant');\n\n    if (!options.code) {\n      return Promise.reject(new Error('`options.code` is required'));\n    }\n\n    return this.webex\n      .request({\n        method: 'POST',\n        uri: this.config.tokenUrl,\n        form: {\n          grant_type: 'authorization_code',\n          redirect_uri: this.config.redirect_uri,\n          code: options.code,\n          self_contained_token: true,\n        },\n        auth: {\n          user: this.config.client_id,\n          pass: this.config.client_secret,\n          sendImmediately: true,\n        },\n        shouldRefreshAccessToken: false,\n      })\n      .then((res) => {\n        this.webex.credentials.set({supertoken: res.body});\n      })\n      .catch((res) => {\n        if (res.statusCode !== 400) {\n          return Promise.reject(res);\n        }\n\n        const ErrorConstructor = grantErrors.select(res.body.error);\n\n        return Promise.reject(new ErrorConstructor(res._res || res));\n      });\n  },\n\n  @oneFlight\n  /**\n   * Requests a Webex access token for a user already authenticated into\n   * your product.\n   *\n   * Note: You'll need to supply a jwtRefreshCallback of the form\n   * `Promise<jwt> = jwtRefreshCallback(webex)` for automatic token refresh to\n   * work.\n   *\n   * @instance\n   * @memberof AuthorizationNode\n   * @param {Object} options\n   * @param {Object} options.jwt This is a jwt generated by your backend that\n   * identifies a user in your system\n   * @returns {Promise}\n   */\n  requestAccessTokenFromJwt({jwt}) {\n    let hydraUri = this.webex.internal.services.get('hydra', true);\n\n    if (hydraUri && hydraUri.slice(-1) !== '/') {\n      // add a `/` to hydra's uri from the services catalog so that\n      // it matches the current env service format.\n      hydraUri += '/';\n    }\n\n    hydraUri = hydraUri || process.env.HYDRA_SERVICE_URL || 'https://api.ciscospark.com/v1/';\n\n    return this.webex\n      .request({\n        method: 'POST',\n        uri: `${hydraUri}jwt/login`,\n        headers: {\n          authorization: jwt,\n        },\n      })\n      .then(({body}) => ({\n        access_token: body.token,\n        token_type: 'Bearer',\n        expires_in: body.expiresIn,\n      }))\n      .then((token) => {\n        this.webex.credentials.set({\n          supertoken: token,\n        });\n      })\n      .then(() => this.webex.internal.services.initServiceCatalogs());\n  },\n});\n\nexport default Authorization;\n"],"mappings":";;;;;;;;;;;AAMA;AACA;AAA2D;AAE3D;AACA;AACA;AACA;AACA;AACA,IAAMA,aAAa,GAAGC,sBAAW,CAACC,MAAM,SA0CrC,IAAAC,qBAAa,EAAC,eAAe,CAAC,UA1CQ;EACvCC,OAAO,EAAE;IACP;AACJ;AACA;AACA;AACA;AACA;IACIC,gBAAgB,EAAE;MAChBC,IAAI,EAAE,CAAC,eAAe,CAAC;MACvBC,EAAE,gBAAG;QACH,OAAO,IAAI,CAACC,aAAa;MAC3B;IACF;EACF,CAAC;EAEDC,OAAO,EAAE;IACP;AACJ;AACA;AACA;AACA;AACA;IACID,aAAa,EAAE;MACbE,OAAO,EAAE,KAAK;MACdC,IAAI,EAAE;IACR;EACF,CAAC;EAEDC,SAAS,EAAE,aAAa;EAExBC,MAAM,oBAAe;IAAA,IAAdC,OAAO,uEAAG,CAAC,CAAC;IACjB,IAAI,CAACC,KAAK,CAACC,OAAO,CAAC;MACjBC,MAAM,EAAE,MAAM;MACdC,GAAG,EAAE,IAAI,CAACC,MAAM,CAACC,SAAS;MAC1BC,IAAI,EAAE;QACJC,KAAK,EAAER,OAAO,CAACQ,KAAK;QACpBC,UAAU,EAAE,IAAI,CAACJ,MAAM,CAACK;MAC1B;IACF,CAAC,CAAC;EACJ,CAAC;EAID;AACF;AACA;AACA;AACA;AACA;AACA;AACA;EACEC,6BAA6B,2CAAe;IAAA;IAAA,IAAdX,OAAO,uEAAG,CAAC,CAAC;IACxC,IAAI,CAACY,MAAM,CAACC,IAAI,CAAC,kDAAkD,CAAC;IAEpE,IAAI,CAACb,OAAO,CAACc,IAAI,EAAE;MACjB,OAAO,iBAAQC,MAAM,CAAC,IAAIC,KAAK,CAAC,4BAA4B,CAAC,CAAC;IAChE;IAEA,OAAO,IAAI,CAACf,KAAK,CACdC,OAAO,CAAC;MACPC,MAAM,EAAE,MAAM;MACdC,GAAG,EAAE,IAAI,CAACC,MAAM,CAACY,QAAQ;MACzBC,IAAI,EAAE;QACJC,UAAU,EAAE,oBAAoB;QAChCC,YAAY,EAAE,IAAI,CAACf,MAAM,CAACe,YAAY;QACtCN,IAAI,EAAEd,OAAO,CAACc,IAAI;QAClBO,oBAAoB,EAAE;MACxB,CAAC;MACDC,IAAI,EAAE;QACJC,IAAI,EAAE,IAAI,CAAClB,MAAM,CAACmB,SAAS;QAC3BC,IAAI,EAAE,IAAI,CAACpB,MAAM,CAACqB,aAAa;QAC/BC,eAAe,EAAE;MACnB,CAAC;MACDC,wBAAwB,EAAE;IAC5B,CAAC,CAAC,CACDC,IAAI,CAAC,UAACC,GAAG,EAAK;MACb,KAAI,CAAC7B,KAAK,CAAC8B,WAAW,CAACC,GAAG,CAAC;QAACC,UAAU,EAAEH,GAAG,CAACvB;MAAI,CAAC,CAAC;IACpD,CAAC,CAAC,CACD2B,KAAK,CAAC,UAACJ,GAAG,EAAK;MACd,IAAIA,GAAG,CAACK,UAAU,KAAK,GAAG,EAAE;QAC1B,OAAO,iBAAQpB,MAAM,CAACe,GAAG,CAAC;MAC5B;MAEA,IAAMM,gBAAgB,GAAGC,sBAAW,CAACC,MAAM,CAACR,GAAG,CAACvB,IAAI,CAACgC,KAAK,CAAC;MAE3D,OAAO,iBAAQxB,MAAM,CAAC,IAAIqB,gBAAgB,CAACN,GAAG,CAACU,IAAI,IAAIV,GAAG,CAAC,CAAC;IAC9D,CAAC,CAAC;EACN,CAAC;EAGD;AACF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACEW,yBAAyB,2CAAQ;IAAA;IAAA,IAANC,GAAG,QAAHA,GAAG;IAC5B,IAAIC,QAAQ,GAAG,IAAI,CAAC1C,KAAK,CAAC2C,QAAQ,CAACC,QAAQ,CAACC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC;IAE9D,IAAIH,QAAQ,IAAIA,QAAQ,CAACI,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,GAAG,EAAE;MAC1C;MACA;MACAJ,QAAQ,IAAI,GAAG;IACjB;IAEAA,QAAQ,GAAGA,QAAQ,IAAIK,OAAO,CAACC,GAAG,CAACC,iBAAiB,IAAI,gCAAgC;IAExF,OAAO,IAAI,CAACjD,KAAK,CACdC,OAAO,CAAC;MACPC,MAAM,EAAE,MAAM;MACdC,GAAG,YAAKuC,QAAQ,cAAW;MAC3BQ,OAAO,EAAE;QACPC,aAAa,EAAEV;MACjB;IACF,CAAC,CAAC,CACDb,IAAI,CAAC;MAAA,IAAEtB,IAAI,SAAJA,IAAI;MAAA,OAAO;QACjB8C,YAAY,EAAE9C,IAAI,CAACC,KAAK;QACxB8C,UAAU,EAAE,QAAQ;QACpBC,UAAU,EAAEhD,IAAI,CAACiD;MACnB,CAAC;IAAA,CAAC,CAAC,CACF3B,IAAI,CAAC,UAACrB,KAAK,EAAK;MACf,MAAI,CAACP,KAAK,CAAC8B,WAAW,CAACC,GAAG,CAAC;QACzBC,UAAU,EAAEzB;MACd,CAAC,CAAC;IACJ,CAAC,CAAC,CACDqB,IAAI,CAAC;MAAA,OAAM,MAAI,CAAC5B,KAAK,CAAC2C,QAAQ,CAACC,QAAQ,CAACY,mBAAmB,EAAE;IAAA,EAAC;EACnE,CAAC;EAAA;AACH,CAAC,yFA9FEC,iBAAS,qKA+CTA,iBAAS,6FA+CV;AAAC,eAEYxE,aAAa;AAAA"}
+{"version":3,"names":["_common","require","_webexCore","_jsonwebtoken","_interopRequireDefault","_uuid","_dec","_obj","Authorization","WebexPlugin","extend","whileInFlight","derived","isAuthenticating","deps","fn","isAuthorizing","session","default","type","namespace","logout","options","arguments","length","undefined","webex","request","method","uri","config","logoutUrl","body","token","cisService","service","requestAuthorizationCodeGrant","_this","logger","info","code","_promise","reject","Error","tokenUrl","form","grant_type","redirect_uri","self_contained_token","auth","user","client_id","pass","client_secret","sendImmediately","shouldRefreshAccessToken","then","res","credentials","set","supertoken","catch","statusCode","ErrorConstructor","grantErrors","select","error","_res","requestAccessTokenFromJwt","_ref","_this2","jwt","hydraUri","internal","services","get","slice","process","env","HYDRA_SERVICE_URL","concat","headers","authorization","_ref2","access_token","token_type","expires_in","expiresIn","initServiceCatalogs","createJwt","_ref3","issuer","secretId","displayName","secret","Buffer","from","payload","uuid","jwtToken","sign","resolve","e","version","_applyDecoratedDescriptor2","oneFlight","_getOwnPropertyDescriptor","_default","exports"],"sources":["authorization.js"],"sourcesContent":["/*!\n * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.\n */\n\n/* eslint camelcase: [0] */\n\nimport {oneFlight, whileInFlight} from '@webex/common';\nimport {grantErrors, WebexPlugin} from '@webex/webex-core';\n\nimport jwt from 'jsonwebtoken';\nimport uuid from 'uuid';\n\n/**\n * NodeJS support for OAuth2\n * @class\n * @name AuthorizationNode\n */\nconst Authorization = WebexPlugin.extend({\n  derived: {\n    /**\n     * Alias of {@link AuthorizationNode#isAuthorizing}\n     * @instance\n     * @memberof AuthorizationNode\n     * @type {boolean}\n     */\n    isAuthenticating: {\n      deps: ['isAuthorizing'],\n      fn() {\n        return this.isAuthorizing;\n      },\n    },\n  },\n\n  session: {\n    /**\n     * Indicates if an Authorization Code exchange is inflight\n     * @instance\n     * @memberof AuthorizationNode\n     * @type {boolean}\n     */\n    isAuthorizing: {\n      default: false,\n      type: 'boolean',\n    },\n  },\n\n  namespace: 'Credentials',\n\n  logout(options = {}) {\n    this.webex.request({\n      method: 'POST',\n      uri: this.config.logoutUrl,\n      body: {\n        token: options.token,\n        cisService: this.config.service,\n      },\n    });\n  },\n\n  @whileInFlight('isAuthorizing')\n  @oneFlight\n  /**\n   * Exchanges an authorization code for an access token\n   * @instance\n   * @memberof AuthorizationNode\n   * @param {Object} options\n   * @param {Object} options.code\n   * @returns {Promise}\n   */\n  requestAuthorizationCodeGrant(options = {}) {\n    this.logger.info('credentials: requesting authorization code grant');\n\n    if (!options.code) {\n      return Promise.reject(new Error('`options.code` is required'));\n    }\n\n    return this.webex\n      .request({\n        method: 'POST',\n        uri: this.config.tokenUrl,\n        form: {\n          grant_type: 'authorization_code',\n          redirect_uri: this.config.redirect_uri,\n          code: options.code,\n          self_contained_token: true,\n        },\n        auth: {\n          user: this.config.client_id,\n          pass: this.config.client_secret,\n          sendImmediately: true,\n        },\n        shouldRefreshAccessToken: false,\n      })\n      .then((res) => {\n        this.webex.credentials.set({supertoken: res.body});\n      })\n      .catch((res) => {\n        if (res.statusCode !== 400) {\n          return Promise.reject(res);\n        }\n\n        const ErrorConstructor = grantErrors.select(res.body.error);\n\n        return Promise.reject(new ErrorConstructor(res._res || res));\n      });\n  },\n\n  @oneFlight\n  /**\n   * Requests a Webex access token for a user already authenticated into\n   * your product.\n   *\n   * Note: You'll need to supply a jwtRefreshCallback of the form\n   * `Promise<jwt> = jwtRefreshCallback(webex)` for automatic token refresh to\n   * work.\n   *\n   * @instance\n   * @memberof AuthorizationNode\n   * @param {Object} options\n   * @param {Object} options.jwt This is a jwt generated by your backend that\n   * identifies a user in your system\n   * @returns {Promise}\n   */\n  requestAccessTokenFromJwt({jwt}) {\n    let hydraUri = this.webex.internal.services.get('hydra', true);\n\n    if (hydraUri && hydraUri.slice(-1) !== '/') {\n      // add a `/` to hydra's uri from the services catalog so that\n      // it matches the current env service format.\n      hydraUri += '/';\n    }\n\n    hydraUri = hydraUri || process.env.HYDRA_SERVICE_URL || 'https://api.ciscospark.com/v1/';\n\n    return this.webex\n      .request({\n        method: 'POST',\n        uri: `${hydraUri}jwt/login`,\n        headers: {\n          authorization: jwt,\n        },\n      })\n      .then(({body}) => ({\n        access_token: body.token,\n        token_type: 'Bearer',\n        expires_in: body.expiresIn,\n      }))\n      .then((token) => {\n        this.webex.credentials.set({\n          supertoken: token,\n        });\n      })\n      .then(() => this.webex.internal.services.initServiceCatalogs());\n  },\n\n  /**\n   * Creates a jwt user token\n   * @param {object} options\n   * @param {String} options.issuer Guest Issuer ID\n   * @param {String} options.secretId Guest Secret ID\n   * @param {String} options.displayName Guest Display Name | optional\n   * @param {String} options.expiresIn\n   * @returns {Promise<object>}\n   */\n  createJwt({issuer, secretId, displayName, expiresIn}) {\n    const secret = Buffer.from(secretId, 'base64');\n    const payload = {\n      \"sub\": `guest-user-${uuid()}`,\n      \"iss\": issuer,\n      \"name\": displayName || `Guest User - ${uuid()}`\n    };\n\n    try {\n      const jwtToken = jwt.sign(payload, secret,{ expiresIn });\n\n      return Promise.resolve({jwt: jwtToken});\n    } catch (e) {\n      return Promise.reject(e);\n    }\n  },\n\n});\n\nexport default Authorization;\n"],"mappings":";;;;;;;;;;;AAMA,IAAAA,OAAA,GAAAC,OAAA;AACA,IAAAC,UAAA,GAAAD,OAAA;AAEA,IAAAE,aAAA,GAAAC,sBAAA,CAAAH,OAAA;AACA,IAAAI,KAAA,GAAAD,sBAAA,CAAAH,OAAA;AAAwB,IAAAK,IAAA,EAAAC,IAAA;AAVxB;AACA;AACA;AAEA;AAQA;AACA;AACA;AACA;AACA;AACA,IAAMC,aAAa,GAAGC,sBAAW,CAACC,MAAM,EAAAJ,IAAA,GA0CrC,IAAAK,qBAAa,EAAC,eAAe,CAAC,GAAAJ,IAAA,GA1CQ;EACvCK,OAAO,EAAE;IACP;AACJ;AACA;AACA;AACA;AACA;IACIC,gBAAgB,EAAE;MAChBC,IAAI,EAAE,CAAC,eAAe,CAAC;MACvBC,EAAE,WAAAA,GAAA,EAAG;QACH,OAAO,IAAI,CAACC,aAAa;MAC3B;IACF;EACF,CAAC;EAEDC,OAAO,EAAE;IACP;AACJ;AACA;AACA;AACA;AACA;IACID,aAAa,EAAE;MACbE,OAAO,EAAE,KAAK;MACdC,IAAI,EAAE;IACR;EACF,CAAC;EAEDC,SAAS,EAAE,aAAa;EAExBC,MAAM,WAAAA,OAAA,EAAe;IAAA,IAAdC,OAAO,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;IACjB,IAAI,CAACG,KAAK,CAACC,OAAO,CAAC;MACjBC,MAAM,EAAE,MAAM;MACdC,GAAG,EAAE,IAAI,CAACC,MAAM,CAACC,SAAS;MAC1BC,IAAI,EAAE;QACJC,KAAK,EAAEX,OAAO,CAACW,KAAK;QACpBC,UAAU,EAAE,IAAI,CAACJ,MAAM,CAACK;MAC1B;IACF,CAAC,CAAC;EACJ,CAAC;EAID;AACF;AACA;AACA;AACA;AACA;AACA;AACA;EACEC,6BAA6B,WAAAA,8BAAA,EAAe;IAAA,IAAAC,KAAA;IAAA,IAAdf,OAAO,GAAAC,SAAA,CAAAC,MAAA,QAAAD,SAAA,QAAAE,SAAA,GAAAF,SAAA,MAAG,CAAC,CAAC;IACxC,IAAI,CAACe,MAAM,CAACC,IAAI,CAAC,kDAAkD,CAAC;IAEpE,IAAI,CAACjB,OAAO,CAACkB,IAAI,EAAE;MACjB,OAAOC,QAAA,CAAAvB,OAAA,CAAQwB,MAAM,CAAC,IAAIC,KAAK,CAAC,4BAA4B,CAAC,CAAC;IAChE;IAEA,OAAO,IAAI,CAACjB,KAAK,CACdC,OAAO,CAAC;MACPC,MAAM,EAAE,MAAM;MACdC,GAAG,EAAE,IAAI,CAACC,MAAM,CAACc,QAAQ;MACzBC,IAAI,EAAE;QACJC,UAAU,EAAE,oBAAoB;QAChCC,YAAY,EAAE,IAAI,CAACjB,MAAM,CAACiB,YAAY;QACtCP,IAAI,EAAElB,OAAO,CAACkB,IAAI;QAClBQ,oBAAoB,EAAE;MACxB,CAAC;MACDC,IAAI,EAAE;QACJC,IAAI,EAAE,IAAI,CAACpB,MAAM,CAACqB,SAAS;QAC3BC,IAAI,EAAE,IAAI,CAACtB,MAAM,CAACuB,aAAa;QAC/BC,eAAe,EAAE;MACnB,CAAC;MACDC,wBAAwB,EAAE;IAC5B,CAAC,CAAC,CACDC,IAAI,CAAC,UAACC,GAAG,EAAK;MACbpB,KAAI,CAACX,KAAK,CAACgC,WAAW,CAACC,GAAG,CAAC;QAACC,UAAU,EAAEH,GAAG,CAACzB;MAAI,CAAC,CAAC;IACpD,CAAC,CAAC,CACD6B,KAAK,CAAC,UAACJ,GAAG,EAAK;MACd,IAAIA,GAAG,CAACK,UAAU,KAAK,GAAG,EAAE;QAC1B,OAAOrB,QAAA,CAAAvB,OAAA,CAAQwB,MAAM,CAACe,GAAG,CAAC;MAC5B;MAEA,IAAMM,gBAAgB,GAAGC,sBAAW,CAACC,MAAM,CAACR,GAAG,CAACzB,IAAI,CAACkC,KAAK,CAAC;MAE3D,OAAOzB,QAAA,CAAAvB,OAAA,CAAQwB,MAAM,CAAC,IAAIqB,gBAAgB,CAACN,GAAG,CAACU,IAAI,IAAIV,GAAG,CAAC,CAAC;IAC9D,CAAC,CAAC;EACN,CAAC;EAGD;AACF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACEW,yBAAyB,WAAAA,0BAAAC,IAAA,EAAQ;IAAA,IAAAC,MAAA;IAAA,IAANC,GAAG,GAAAF,IAAA,CAAHE,GAAG;IAC5B,IAAIC,QAAQ,GAAG,IAAI,CAAC9C,KAAK,CAAC+C,QAAQ,CAACC,QAAQ,CAACC,GAAG,CAAC,OAAO,EAAE,IAAI,CAAC;IAE9D,IAAIH,QAAQ,IAAIA,QAAQ,CAACI,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,GAAG,EAAE;MAC1C;MACA;MACAJ,QAAQ,IAAI,GAAG;IACjB;IAEAA,QAAQ,GAAGA,QAAQ,IAAIK,OAAO,CAACC,GAAG,CAACC,iBAAiB,IAAI,gCAAgC;IAExF,OAAO,IAAI,CAACrD,KAAK,CACdC,OAAO,CAAC;MACPC,MAAM,EAAE,MAAM;MACdC,GAAG,KAAAmD,MAAA,CAAKR,QAAQ,cAAW;MAC3BS,OAAO,EAAE;QACPC,aAAa,EAAEX;MACjB;IACF,CAAC,CAAC,CACDf,IAAI,CAAC,UAAA2B,KAAA;MAAA,IAAEnD,IAAI,GAAAmD,KAAA,CAAJnD,IAAI;MAAA,OAAO;QACjBoD,YAAY,EAAEpD,IAAI,CAACC,KAAK;QACxBoD,UAAU,EAAE,QAAQ;QACpBC,UAAU,EAAEtD,IAAI,CAACuD;MACnB,CAAC;IAAA,CAAC,CAAC,CACF/B,IAAI,CAAC,UAACvB,KAAK,EAAK;MACfqC,MAAI,CAAC5C,KAAK,CAACgC,WAAW,CAACC,GAAG,CAAC;QACzBC,UAAU,EAAE3B;MACd,CAAC,CAAC;IACJ,CAAC,CAAC,CACDuB,IAAI,CAAC;MAAA,OAAMc,MAAI,CAAC5C,KAAK,CAAC+C,QAAQ,CAACC,QAAQ,CAACc,mBAAmB,CAAC,CAAC;IAAA,EAAC;EACnE,CAAC;EAED;AACF;AACA;AACA;AACA;AACA;AACA;AACA;AACA;EACEC,SAAS,WAAAA,UAAAC,KAAA,EAA6C;IAAA,IAA3CC,MAAM,GAAAD,KAAA,CAANC,MAAM;MAAEC,QAAQ,GAAAF,KAAA,CAARE,QAAQ;MAAEC,WAAW,GAAAH,KAAA,CAAXG,WAAW;MAAEN,SAAS,GAAAG,KAAA,CAATH,SAAS;IACjD,IAAMO,MAAM,GAAGC,MAAM,CAACC,IAAI,CAACJ,QAAQ,EAAE,QAAQ,CAAC;IAC9C,IAAMK,OAAO,GAAG;MACd,KAAK,gBAAAjB,MAAA,CAAgB,IAAAkB,aAAI,EAAC,CAAC,CAAE;MAC7B,KAAK,EAAEP,MAAM;MACb,MAAM,EAAEE,WAAW,oBAAAb,MAAA,CAAoB,IAAAkB,aAAI,EAAC,CAAC;IAC/C,CAAC;IAED,IAAI;MACF,IAAMC,QAAQ,GAAG5B,qBAAG,CAAC6B,IAAI,CAACH,OAAO,EAAEH,MAAM,EAAC;QAAEP,SAAS,EAATA;MAAU,CAAC,CAAC;MAExD,OAAO9C,QAAA,CAAAvB,OAAA,CAAQmF,OAAO,CAAC;QAAC9B,GAAG,EAAE4B;MAAQ,CAAC,CAAC;IACzC,CAAC,CAAC,OAAOG,CAAC,EAAE;MACV,OAAO7D,QAAA,CAAAvB,OAAA,CAAQwB,MAAM,CAAC4D,CAAC,CAAC;IAC1B;EACF,CAAC;EAAAC,OAAA;AAEH,CAAC,OAAAC,0BAAA,CAAAtF,OAAA,EAAAX,IAAA,oCAAAD,IAAA,EAzHEmG,iBAAS,OAAAC,yBAAA,CAAAxF,OAAA,EAAAX,IAAA,oCAAAA,IAAA,OAAAiG,0BAAA,CAAAtF,OAAA,EAAAX,IAAA,gCA+CTkG,iBAAS,OAAAC,yBAAA,CAAAxF,OAAA,EAAAX,IAAA,gCAAAA,IAAA,IAAAA,IAAA,EA0EX,CAAC;AAAC,IAAAoG,QAAA,GAAAC,OAAA,CAAA1F,OAAA,GAEYV,aAAa"}

package/dist/config.js

@@ -8,8 +8,7 @@ exports.default = void 0;
 /*!
  * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.
  */
-var _default = {
+var _default = exports.default = {
   credentials: {}
 };
-exports.default = _default;
 //# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -1 +1 @@
-{"version":3,"names":["credentials"],"sources":["config.js"],"sourcesContent":["/*!\n * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.\n */\n\nexport default {\n  credentials: {},\n};\n"],"mappings":";;;;;;;AAAA;AACA;AACA;AAFA,eAIe;EACbA,WAAW,EAAE,CAAC;AAChB,CAAC;AAAA"}
+{"version":3,"names":["_default","exports","default","credentials"],"sources":["config.js"],"sourcesContent":["/*!\n * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.\n */\n\nexport default {\n  credentials: {},\n};\n"],"mappings":";;;;;;;AAAA;AACA;AACA;AAFA,IAAAA,QAAA,GAAAC,OAAA,CAAAC,OAAA,GAIe;EACbC,WAAW,EAAE,CAAC;AAChB,CAAC"}

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"names":["proxies","registerPlugin","Authorization","config"],"sources":["index.js"],"sourcesContent":["/*!\n * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.\n */\n\nimport '@webex/internal-plugin-device';\nimport {registerPlugin} from '@webex/webex-core';\n\nimport Authorization from './authorization';\nimport config from './config';\n\nconst proxies = ['isAuthorizing', 'isAuthenticating'];\n\nregisterPlugin('authorization', Authorization, {\n  config,\n  proxies,\n});\n\nexport {default} from './authorization';\nexport {default as config} from './config';\n"],"mappings":";;;;;;;;;;;;;;;;;;;AAIA;AACA;AAEA;AACA;AARA;AACA;AACA;;AAQA,IAAMA,OAAO,GAAG,CAAC,eAAe,EAAE,kBAAkB,CAAC;AAErD,IAAAC,yBAAc,EAAC,eAAe,EAAEC,sBAAa,EAAE;EAC7CC,MAAM,EAANA,eAAM;EACNH,OAAO,EAAPA;AACF,CAAC,CAAC"}
+{"version":3,"names":["require","_webexCore","_authorization","_interopRequireDefault","_config","proxies","registerPlugin","Authorization","config"],"sources":["index.js"],"sourcesContent":["/*!\n * Copyright (c) 2015-2020 Cisco Systems, Inc. See LICENSE file.\n */\n\nimport '@webex/internal-plugin-device';\nimport {registerPlugin} from '@webex/webex-core';\n\nimport Authorization from './authorization';\nimport config from './config';\n\nconst proxies = ['isAuthorizing', 'isAuthenticating'];\n\nregisterPlugin('authorization', Authorization, {\n  config,\n  proxies,\n});\n\nexport {default} from './authorization';\nexport {default as config} from './config';\n"],"mappings":";;;;;;;;;;;;;;;;;;;AAIAA,OAAA;AACA,IAAAC,UAAA,GAAAD,OAAA;AAEA,IAAAE,cAAA,GAAAC,sBAAA,CAAAH,OAAA;AACA,IAAAI,OAAA,GAAAD,sBAAA,CAAAH,OAAA;AARA;AACA;AACA;;AAQA,IAAMK,OAAO,GAAG,CAAC,eAAe,EAAE,kBAAkB,CAAC;AAErD,IAAAC,yBAAc,EAAC,eAAe,EAAEC,sBAAa,EAAE;EAC7CC,MAAM,EAANA,eAAM;EACNH,OAAO,EAAPA;AACF,CAAC,CAAC"}

package/jest.config.js

@@ -0,0 +1,3 @@
+const config = require('@webex/jest-config-legacy');
+
+module.exports = config;

package/package.json

@@ -1,6 +1,5 @@
 {
   "name": "@webex/plugin-authorization-node",
-  "version": "3.0.0-bnr.5",
   "description": "",
   "license": "MIT",
   "main": "dist/index.js",
@@ -21,18 +20,36 @@
     ]
   },
   "devDependencies": {
-    "@webex/test-helper-appid": "3.0.0-bnr.5",
-    "@webex/test-helper-chai": "3.0.0-bnr.5",
-    "@webex/test-helper-mocha": "3.0.0-bnr.5",
-    "@webex/test-helper-mock-webex": "3.0.0-bnr.5",
-    "@webex/test-helper-test-users": "3.0.0-bnr.5",
+    "@babel/core": "^7.17.10",
+    "@webex/babel-config-legacy": "0.0.0",
+    "@webex/eslint-config-legacy": "0.0.0",
+    "@webex/jest-config-legacy": "0.0.0",
+    "@webex/legacy-tools": "0.0.0",
+    "@webex/test-helper-appid": "3.0.0",
+    "@webex/test-helper-chai": "3.0.0",
+    "@webex/test-helper-mocha": "3.0.0",
+    "@webex/test-helper-mock-webex": "3.0.0",
+    "@webex/test-helper-test-users": "3.0.0",
+    "eslint": "^8.24.0",
+    "prettier": "^2.7.1",
     "sinon": "^9.2.4"
   },
   "dependencies": {
-    "@webex/common": "3.0.0-bnr.5",
-    "@webex/internal-plugin-device": "3.0.0-bnr.5",
-    "@webex/plugin-authorization-node": "3.0.0-bnr.5",
-    "@webex/webex-core": "3.0.0-bnr.5",
+    "@webex/common": "3.0.0",
+    "@webex/internal-plugin-device": "3.0.0",
+    "@webex/webex-core": "3.0.0",
+    "jsonwebtoken": "^9.0.0",
     "uuid": "^3.3.2"
-  }
-}
+  },
+  "scripts": {
+    "build": "yarn build:src",
+    "build:src": "webex-legacy-tools build -dest \"./dist\" -src \"./src\" -js -ts -maps",
+    "deploy:npm": "yarn npm publish",
+    "test": "yarn test:style && yarn test:unit && yarn test:integration && yarn test:browser",
+    "test:browser": "webex-legacy-tools test --integration --unit --runner karma",
+    "test:integration": "webex-legacy-tools test --integration --runner mocha",
+    "test:style": "eslint ./src/**/*.*",
+    "test:unit": "webex-legacy-tools test --unit --runner jest"
+  },
+  "version": "3.0.0"
+}

package/process

@@ -0,0 +1 @@
+module.exports = {browser: true};

package/src/authorization.js

@@ -7,6 +7,9 @@
 import {oneFlight, whileInFlight} from '@webex/common';
 import {grantErrors, WebexPlugin} from '@webex/webex-core';
 
+import jwt from 'jsonwebtoken';
+import uuid from 'uuid';
+
 /**
  * NodeJS support for OAuth2
  * @class
@@ -149,6 +152,33 @@ const Authorization = WebexPlugin.extend({
       })
       .then(() => this.webex.internal.services.initServiceCatalogs());
   },
+
+  /**
+   * Creates a jwt user token
+   * @param {object} options
+   * @param {String} options.issuer Guest Issuer ID
+   * @param {String} options.secretId Guest Secret ID
+   * @param {String} options.displayName Guest Display Name | optional
+   * @param {String} options.expiresIn
+   * @returns {Promise<object>}
+   */
+  createJwt({issuer, secretId, displayName, expiresIn}) {
+    const secret = Buffer.from(secretId, 'base64');
+    const payload = {
+      "sub": `guest-user-${uuid()}`,
+      "iss": issuer,
+      "name": displayName || `Guest User - ${uuid()}`
+    };
+
+    try {
+      const jwtToken = jwt.sign(payload, secret,{ expiresIn });
+
+      return Promise.resolve({jwt: jwtToken});
+    } catch (e) {
+      return Promise.reject(e);
+    }
+  },
+
 });
 
 export default Authorization;

package/dist/plugin-authorization-node.d.ts

@@ -1,13 +0,0 @@
-/**
- * NodeJS support for OAuth2
- * @class
- * @name AuthorizationNode
- */
-declare const Authorization: any;
-export default Authorization;
-
-export declare namespace config {
-    const credentials: {};
-}
-
-export { }

package/dist/tsdoc-metadata.json

@@ -1,11 +0,0 @@
-// This file is read by tools that parse documentation comments conforming to the TSDoc standard.
-// It should be published with your NPM package.  It should not be tracked by Git.
-{
-  "tsdocVersion": "0.12",
-  "toolPackages": [
-    {
-      "packageName": "@microsoft/api-extractor",
-      "packageVersion": "7.34.4"
-    }
-  ]
-}

package/dist/types/authorization.d.ts

@@ -1,7 +0,0 @@
-export default Authorization;
-/**
- * NodeJS support for OAuth2
- * @class
- * @name AuthorizationNode
- */
-declare const Authorization: any;

package/dist/types/config.d.ts

@@ -1,4 +0,0 @@
-declare namespace _default {
-    const credentials: {};
-}
-export default _default;

package/dist/types/index.d.ts

@@ -1,2 +0,0 @@
-export { default } from "./authorization";
-export { default as config } from "./config";