box-node-sdk 3.8.1 → 3.8.2

package/lib-esm/sessions/ccg-session.d.ts

@@ -0,0 +1,72 @@
+/**
+ * @fileoverview An Anonymous Box API Session.
+ */
+type Config = any;
+type TokenManager = any;
+type TokenInfo = any;
+type TokenRequestOptions = any;
+/**
+ * The Client Credentials Grant Box API Session.
+ *
+ * The Client Credentials Grant API Session holds a Client Credentials accessToken, which it
+ * returns to the client so that it may make calls on behalf of service account or specified users.
+ *
+ * Tokens will be refreshed in the background if a request is made within the
+ * "stale buffer" (defaults to 10 minutes before the token is set to expire).
+ * If the token is also expired, all incoming requests will be held until a fresh token
+ * is retrieved.
+ *
+ * @param {Config} config The SDK configuration options
+ * @param {TokenManager} tokenManager The TokenManager
+ * @constructor
+ */
+declare class CCGSession {
+    _config: Config;
+    _tokenManager: TokenManager;
+    _tokenInfo: TokenInfo;
+    _refreshPromise: Promise<any> | null;
+    constructor(config: Config, tokenManager: TokenManager);
+    /**
+     * Initiate a refresh of the access tokens. New tokens should be passed to the
+     * caller, and then cached for later use.
+     *
+     * @param {?TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     * @private
+     */
+    _refreshAccessToken(options?: TokenRequestOptions): Promise<any>;
+    /**
+     * Produces a valid, anonymous access token.
+     * Performs a refresh before returning if the current token is expired. If the current
+     * token is considered stale but still valid, return the current token but initiate a
+     * new refresh in the background.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     */
+    getAccessToken(options?: TokenRequestOptions): Promise<any>;
+    /**
+     * Revokes the anonymous token used by this anonymous session, and clears the saved tokenInfo.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise} Promise resolving if the revoke succeeds
+     */
+    revokeTokens(options?: TokenRequestOptions): any;
+    /**
+     * Exchange the client access token for one with lower scope
+     *
+     * @param {string|string[]} scopes The scope(s) requested for the new token
+     * @param {string} [resource] The absolute URL of an API resource to scope the new token to
+     * @param {Object} [options] - Optional parameters
+     * @param {TokenRequestOptions} [options.tokenRequestOptions] - Sets optional behavior for the token grant
+     * @returns {void}
+     */
+    exchangeToken(scopes: string | string[], resource?: string, options?: {
+        tokenRequestOptions?: TokenRequestOptions;
+    }): Promise<any>;
+}
+/**
+ * @module box-node-sdk/lib/sessions/ccg-session
+ * @see {@Link CCGSession}
+ */
+export = CCGSession;

package/lib-esm/sessions/ccg-session.js

@@ -0,0 +1,111 @@
+"use strict";
+/**
+ * @fileoverview An Anonymous Box API Session.
+ */
+// ------------------------------------------------------------------------------
+// Requirements
+// ------------------------------------------------------------------------------
+const bluebird_1 = require("bluebird");
+// ------------------------------------------------------------------------------
+// Private
+// ------------------------------------------------------------------------------
+// ------------------------------------------------------------------------------
+// Public
+// ------------------------------------------------------------------------------
+/**
+ * The Client Credentials Grant Box API Session.
+ *
+ * The Client Credentials Grant API Session holds a Client Credentials accessToken, which it
+ * returns to the client so that it may make calls on behalf of service account or specified users.
+ *
+ * Tokens will be refreshed in the background if a request is made within the
+ * "stale buffer" (defaults to 10 minutes before the token is set to expire).
+ * If the token is also expired, all incoming requests will be held until a fresh token
+ * is retrieved.
+ *
+ * @param {Config} config The SDK configuration options
+ * @param {TokenManager} tokenManager The TokenManager
+ * @constructor
+ */
+class CCGSession {
+    constructor(config, tokenManager) {
+        this._config = config;
+        this._tokenManager = tokenManager;
+        // The TokenInfo object for this anonymous session
+        this._tokenInfo = null;
+        this._refreshPromise = null;
+    }
+    /**
+     * Initiate a refresh of the access tokens. New tokens should be passed to the
+     * caller, and then cached for later use.
+     *
+     * @param {?TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     * @private
+     */
+    _refreshAccessToken(options) {
+        // If tokens aren't already being refreshed, start the refresh
+        if (!this._refreshPromise) {
+            // Initiate a refresh
+            this._refreshPromise = this._tokenManager
+                .getTokensClientCredentialsGrant(options)
+                .then((tokenInfo) => {
+                // Set new token info and propagate the new access token
+                this._tokenInfo = tokenInfo;
+                return tokenInfo.accessToken;
+            })
+                .finally(() => {
+                // Refresh complete, clear promise
+                this._refreshPromise = null;
+            });
+        }
+        return this._refreshPromise;
+    }
+    /**
+     * Produces a valid, anonymous access token.
+     * Performs a refresh before returning if the current token is expired. If the current
+     * token is considered stale but still valid, return the current token but initiate a
+     * new refresh in the background.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     */
+    getAccessToken(options) {
+        // If the current token is no longer fresh, get a new token. All incoming
+        // requests will be held until a fresh token is retrieved.
+        var expirationBuffer = this._config.expiredBufferMS;
+        if (!this._tokenInfo ||
+            !this._tokenManager.isAccessTokenValid(this._tokenInfo, expirationBuffer)) {
+            return this._refreshAccessToken(options);
+        }
+        // Your token is not currently stale! Return the current access token.
+        return bluebird_1.Promise.resolve(this._tokenInfo.accessToken);
+    }
+    /**
+     * Revokes the anonymous token used by this anonymous session, and clears the saved tokenInfo.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise} Promise resolving if the revoke succeeds
+     */
+    revokeTokens(options) {
+        // The current anonymous token is revoked (but a new one will be created automatically as needed).
+        var tokenInfo = this._tokenInfo || {}, accessToken = tokenInfo.accessToken;
+        this._tokenInfo = null;
+        return this._tokenManager.revokeTokens(accessToken, options);
+    }
+    /**
+     * Exchange the client access token for one with lower scope
+     *
+     * @param {string|string[]} scopes The scope(s) requested for the new token
+     * @param {string} [resource] The absolute URL of an API resource to scope the new token to
+     * @param {Object} [options] - Optional parameters
+     * @param {TokenRequestOptions} [options.tokenRequestOptions] - Sets optional behavior for the token grant
+     * @returns {void}
+     */
+    exchangeToken(scopes, resource, options) {
+        // We need to get the access token, in case it hasn't been generated yet
+        return this.getAccessToken(options).then((accessToken) => this._tokenManager.exchangeToken(accessToken, scopes, resource, options));
+    }
+}
+module.exports = CCGSession;
+//# sourceMappingURL=ccg-session.js.map

package/lib-esm/sessions/ccg-session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ccg-session.js","sourceRoot":"","sources":["../../src/sessions/ccg-session.ts"],"names":[],"mappings":";AAAA;;GAEG;AAEH,iFAAiF;AACjF,eAAe;AACf,iFAAiF;AAEjF,uCAAmC;AAWnC,iFAAiF;AACjF,UAAU;AACV,iFAAiF;AAEjF,iFAAiF;AACjF,SAAS;AACT,iFAAiF;AAEjF;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU;IAMd,YAAY,MAAc,EAAE,YAA0B;QACpD,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,aAAa,GAAG,YAAY,CAAC;QAElC,kDAAkD;QAClD,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QAEvB,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;IAC9B,CAAC;IAED;;;;;;;OAOG;IACH,mBAAmB,CAAC,OAA6B;QAC/C,8DAA8D;QAC9D,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,CAAC;YAC1B,qBAAqB;YACrB,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC,aAAa;iBACtC,+BAA+B,CAAC,OAAO,CAAC;iBACxC,IAAI,CAAC,CAAC,SAAoB,EAAE,EAAE;gBAC7B,wDAAwD;gBACxD,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC;gBAC5B,OAAO,SAAS,CAAC,WAAW,CAAC;YAC/B,CAAC,CAAC;iBACD,OAAO,CAAC,GAAG,EAAE;gBACZ,kCAAkC;gBAClC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;YAC9B,CAAC,CAAC,CAAC;QACP,CAAC;QAED,OAAO,IAAI,CAAC,eAA+B,CAAC;IAC9C,CAAC;IAED;;;;;;;;OAQG;IACH,cAAc,CAAC,OAA6B;QAC1C,yEAAyE;QACzE,0DAA0D;QAC1D,IAAI,gBAAgB,GAAG,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC;QACpD,IACE,CAAC,IAAI,CAAC,UAAU;YAChB,CAAC,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,IAAI,CAAC,UAAU,EAAE,gBAAgB,CAAC,EACzE,CAAC;YACD,OAAO,IAAI,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC;QAED,sEAAsE;QACtE,OAAO,kBAAO,CAAC,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACtD,CAAC;IAED;;;;;OAKG;IACH,YAAY,CAAC,OAA6B;QACxC,kGAAkG;QAClG,IAAI,SAAS,GAAG,IAAI,CAAC,UAAU,IAAI,EAAE,EACnC,WAAW,GAAG,SAAS,CAAC,WAAW,CAAC;QACtC,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC;QACvB,OAAO,IAAI,CAAC,aAAa,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;IAC/D,CAAC;IAED;;;;;;;;OAQG;IACH,aAAa,CACX,MAAyB,EACzB,QAAiB,EACjB,OAEC;QAED,wEAAwE;QACxE,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CACvD,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,WAAW,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,CAAC,CACzE,CAAC;IACJ,CAAC;CACF;AAMD,iBAAS,UAAU,CAAC"}

package/lib-esm/sessions/persistent-session.d.ts

@@ -0,0 +1,96 @@
+/**
+ * @fileoverview A Persistent Box API Session.
+ */
+type TokenInfo = any;
+type TokenStore = any;
+type Config = any;
+type TokenManager = any;
+type TokenRequestOptions = Record<string, any>;
+/**
+ * A Persistent API Session has the ability to refresh its access token once it becomes expired.
+ * It takes in a full tokenInfo object for authentication. It can detect when its tokens have
+ * expired and will request new, valid tokens if needed. It can also interface with a token
+ * data-store if one is provided.
+ *
+ * Persistent API Session a good choice for long-running applications or web servers that
+ * must remember users across sessions.
+ *
+ * @param {TokenInfo} tokenInfo A valid TokenInfo object. Will throw if improperly formatted.
+ * @param {TokenStore} [tokenStore] A valid TokenStore object. Will throw if improperly formatted.
+ * @param {Config} config The SDK configuration options
+ * @param {TokenManager} tokenManager The token manager
+ * @constructor
+ */
+declare class PersistentSession {
+    _config: Config;
+    _refreshPromise: Promise<any> | null;
+    _tokenManager: TokenManager;
+    _tokenStore: TokenStore;
+    _tokenInfo: TokenInfo;
+    constructor(tokenInfo: TokenInfo, tokenStore: TokenStore, config: Config, tokenManager: TokenManager);
+    /**
+     * Sets all relevant token info for this client.
+     *
+     * @param {TokenInfo} tokenInfo A valid TokenInfo object.
+     * @returns {void}
+     * @private
+     */
+    _setTokenInfo(tokenInfo: TokenStore): void;
+    /**
+     * Attempts to refresh tokens for the client.
+     * Will use the Box refresh token grant to complete the refresh. On refresh failure, we'll
+     * check the token store for more recently updated tokens and load them if found. Otherwise
+     * an error will be propagated.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     * @private
+     */
+    _refreshTokens(options?: TokenRequestOptions): Promise<any>;
+    /**
+     * Returns the clients access token.
+     *
+     * If tokens don't yet exist, first attempt to retrieve them.
+     * If tokens are expired, first attempt to refresh them.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     */
+    getAccessToken(options?: TokenRequestOptions): Promise<any>;
+    /**
+     * Revokes the session's tokens. If the session has a refresh token we'll use that,
+     * since it is more likely to be up to date. Otherwise, we'll revoke the accessToken.
+     * Revoking either one will disable the other as well.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise} Promise that resolves when the revoke succeeds
+     */
+    revokeTokens(options?: TokenRequestOptions): any;
+    /**
+     * Exchange the client access token for one with lower scope
+     * @param {string|string[]} scopes The scope(s) requested for the new token
+     * @param {string} [resource] The absolute URL of an API resource to scope the new token to
+     * @param {Object} [options] - Optional parameters
+     * @param {TokenRequestOptions} [options.tokenRequestOptions] - Sets optional behavior for the token grant
+     * @returns {void}
+     */
+    exchangeToken(scopes: string | string[], resource?: string, options?: {
+        tokenRequestOptions?: TokenRequestOptions;
+    }): Promise<any>;
+    /**
+     * Handle an an "Expired Tokens" Error. If our tokens are expired, we need to clear the token
+     * store (if present) before continuing.
+     *
+     * @param {Errors~ExpiredTokensError} err An "expired tokens" error including information
+     *  about the request/response.
+     * @returns {Promise<Error>} Promise resolving to an error.  This will
+     *  usually be the original response error, but could an error from trying to access the
+     *  token store as well.
+     */
+    handleExpiredTokensError(err: any): any;
+}
+/**
+ * @module box-node-sdk/lib/sessions/persistent-session
+ * @see {@Link PersistentSession}
+ */
+export = PersistentSession;

package/lib-esm/sessions/persistent-session.js

@@ -0,0 +1,234 @@
+"use strict";
+/**
+ * @fileoverview A Persistent Box API Session.
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+// ------------------------------------------------------------------------------
+// Requirements
+// ------------------------------------------------------------------------------
+const assert_1 = __importDefault(require("assert"));
+const bluebird_1 = require("bluebird");
+const http_status_1 = __importDefault(require("http-status"));
+const errors_1 = __importDefault(require("../util/errors"));
+// ------------------------------------------------------------------------------
+// Private
+// ------------------------------------------------------------------------------
+/**
+ * Validate that an object is a valid TokenInfo object
+ *
+ * @param {Object} obj The object to validate
+ * @returns {boolean} True if the passed in object is a valid TokenInfo object that
+ *  has all the expected properties, false otherwise
+ * @private
+ */
+function isObjectValidTokenInfo(obj) {
+    return Boolean(obj &&
+        obj.accessToken &&
+        obj.refreshToken &&
+        obj.accessTokenTTLMS &&
+        obj.acquiredAtMS);
+}
+/**
+ * Validate that an object is a valid TokenStore object
+ *
+ * @param {Object} obj the object to validate
+ * @returns {boolean} returns true if the passed in object is a valid TokenStore object that
+ * has all the expected properties. false otherwise.
+ * @private
+ */
+function isObjectValidTokenStore(obj) {
+    return Boolean(obj && obj.read && obj.write && obj.clear);
+}
+// ------------------------------------------------------------------------------
+// Public
+// ------------------------------------------------------------------------------
+/**
+ * A Persistent API Session has the ability to refresh its access token once it becomes expired.
+ * It takes in a full tokenInfo object for authentication. It can detect when its tokens have
+ * expired and will request new, valid tokens if needed. It can also interface with a token
+ * data-store if one is provided.
+ *
+ * Persistent API Session a good choice for long-running applications or web servers that
+ * must remember users across sessions.
+ *
+ * @param {TokenInfo} tokenInfo A valid TokenInfo object. Will throw if improperly formatted.
+ * @param {TokenStore} [tokenStore] A valid TokenStore object. Will throw if improperly formatted.
+ * @param {Config} config The SDK configuration options
+ * @param {TokenManager} tokenManager The token manager
+ * @constructor
+ */
+class PersistentSession {
+    constructor(tokenInfo, tokenStore, config, tokenManager) {
+        this._config = config;
+        this._tokenManager = tokenManager;
+        // Keeps track of if tokens are currently being refreshed
+        this._refreshPromise = null;
+        // Set valid PersistentSession credentials. Throw if expected credentials are invalid or not given.
+        (0, assert_1.default)(isObjectValidTokenInfo(tokenInfo), 'tokenInfo is improperly formatted. Properties required: accessToken, refreshToken, accessTokenTTLMS and acquiredAtMS.');
+        this._setTokenInfo(tokenInfo);
+        // If tokenStore was provided, set the persistent data & current store operations
+        if (tokenStore) {
+            (0, assert_1.default)(isObjectValidTokenStore(tokenStore), 'Token store provided but is improperly formatted. Methods required: read(), write(), clear().');
+            this._tokenStore = bluebird_1.Promise.promisifyAll(tokenStore);
+        }
+    }
+    /**
+     * Sets all relevant token info for this client.
+     *
+     * @param {TokenInfo} tokenInfo A valid TokenInfo object.
+     * @returns {void}
+     * @private
+     */
+    _setTokenInfo(tokenInfo) {
+        this._tokenInfo = {
+            accessToken: tokenInfo.accessToken,
+            refreshToken: tokenInfo.refreshToken,
+            accessTokenTTLMS: tokenInfo.accessTokenTTLMS,
+            acquiredAtMS: tokenInfo.acquiredAtMS,
+        };
+    }
+    /**
+     * Attempts to refresh tokens for the client.
+     * Will use the Box refresh token grant to complete the refresh. On refresh failure, we'll
+     * check the token store for more recently updated tokens and load them if found. Otherwise
+     * an error will be propagated.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     * @private
+     */
+    _refreshTokens(options) {
+        // If not already refreshing, kick off a token refresh request and set a lock so that additional
+        // client requests don't try as well
+        if (!this._refreshPromise) {
+            this._refreshPromise = this._tokenManager
+                .getTokensRefreshGrant(this._tokenInfo.refreshToken, options)
+                .catch((err) => {
+                // If we got an error response from Box API, but it was 400 invalid_grant, it indicates we may have just
+                // made the request with an invalidated refresh token. Since only a max of 2 refresh tokens can be valid
+                // at any point in time, and a horizontally scaled app could have multiple Node instances running in parallel,
+                // it is possible to hit cases where too many servers all refresh a user's tokens at once
+                // and cause this server's token to become invalidated. However, the user should still be alive, but
+                // we'll need to check the central data store for the latest valid tokens that some other server in the app
+                // cluster would have received. So, instead pull tokens from the central store and attempt to use them.
+                if (err.statusCode === http_status_1.default.BAD_REQUEST &&
+                    this._tokenStore) {
+                    var invalidGrantError = err;
+                    // Check the tokenStore to see if tokens have been updated recently. If they have, then another
+                    // instance of the session may have already refreshed the user tokens, which would explain why
+                    // we couldn't refresh.
+                    return this._tokenStore
+                        .readAsync()
+                        .catch((e) => errors_1.default.unwrapAndThrow(e))
+                        .then((storeTokenInfo) => {
+                        // if the tokens we got from the central store are the same as the tokens we made the failed request with
+                        // already, then we can be sure that no other servers have valid tokens for this server either.
+                        // Thus, this user truly has an expired refresh token. So, propagate an "Expired Tokens" error.
+                        if (!storeTokenInfo ||
+                            storeTokenInfo.refreshToken === this._tokenInfo.refreshToken) {
+                            throw errors_1.default.buildAuthError(invalidGrantError.response);
+                        }
+                        // Propagate the fresh tokens that we found in the session
+                        return storeTokenInfo;
+                    });
+                }
+                // Box API returned a permanent error that is not retryable and we can't recover.
+                // We have no usable tokens for the user and no way to refresh them - propagate a permanent error.
+                throw err;
+            })
+                .then((tokenInfo) => {
+                // Success! We got back a TokenInfo object from the API.
+                // If we have a token store, we'll write it there now before finishing up the request.
+                if (this._tokenStore) {
+                    return this._tokenStore
+                        .writeAsync(tokenInfo)
+                        .catch((e) => errors_1.default.unwrapAndThrow(e))
+                        .then(() => tokenInfo);
+                }
+                // If no token store, Set and propagate the access token immediately
+                return tokenInfo;
+            })
+                .then((tokenInfo) => {
+                // Set and propagate the new access token
+                this._setTokenInfo(tokenInfo);
+                return tokenInfo.accessToken;
+            })
+                .catch((err) => this.handleExpiredTokensError(err))
+                .finally(() => {
+                // Refresh complete, clear promise
+                this._refreshPromise = null;
+            });
+        }
+        return this._refreshPromise;
+    }
+    // ------------------------------------------------------------------------------
+    // Public Instance
+    // ------------------------------------------------------------------------------
+    /**
+     * Returns the clients access token.
+     *
+     * If tokens don't yet exist, first attempt to retrieve them.
+     * If tokens are expired, first attempt to refresh them.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise<string>} Promise resolving to the access token
+     */
+    getAccessToken(options) {
+        // If our tokens are not fresh, we need to refresh them
+        const expirationBuffer = this._config.expiredBufferMS;
+        if (!this._tokenManager.isAccessTokenValid(this._tokenInfo, expirationBuffer)) {
+            return this._refreshTokens(options);
+        }
+        // Current access token is still valid. Return it.
+        return bluebird_1.Promise.resolve(this._tokenInfo.accessToken);
+    }
+    /**
+     * Revokes the session's tokens. If the session has a refresh token we'll use that,
+     * since it is more likely to be up to date. Otherwise, we'll revoke the accessToken.
+     * Revoking either one will disable the other as well.
+     *
+     * @param {TokenRequestOptions} [options] - Sets optional behavior for the token grant
+     * @returns {Promise} Promise that resolves when the revoke succeeds
+     */
+    revokeTokens(options) {
+        return this._tokenManager.revokeTokens(this._tokenInfo.refreshToken, options);
+    }
+    /**
+     * Exchange the client access token for one with lower scope
+     * @param {string|string[]} scopes The scope(s) requested for the new token
+     * @param {string} [resource] The absolute URL of an API resource to scope the new token to
+     * @param {Object} [options] - Optional parameters
+     * @param {TokenRequestOptions} [options.tokenRequestOptions] - Sets optional behavior for the token grant
+     * @returns {void}
+     */
+    exchangeToken(scopes, resource, options) {
+        return this.getAccessToken(options).then((accessToken) => this._tokenManager.exchangeToken(accessToken, scopes, resource, options));
+    }
+    /**
+     * Handle an an "Expired Tokens" Error. If our tokens are expired, we need to clear the token
+     * store (if present) before continuing.
+     *
+     * @param {Errors~ExpiredTokensError} err An "expired tokens" error including information
+     *  about the request/response.
+     * @returns {Promise<Error>} Promise resolving to an error.  This will
+     *  usually be the original response error, but could an error from trying to access the
+     *  token store as well.
+     */
+    handleExpiredTokensError(err /* FIXME */) {
+        if (!this._tokenStore) {
+            return bluebird_1.Promise.resolve(err);
+        }
+        // If a token store is available, clear the store and throw either error
+        // eslint-disable-next-line promise/no-promise-in-callback
+        return this._tokenStore
+            .clearAsync()
+            .catch((e) => errors_1.default.unwrapAndThrow(e))
+            .then(() => {
+            throw err;
+        });
+    }
+}
+module.exports = PersistentSession;
+//# sourceMappingURL=persistent-session.js.map

package/lib-esm/sessions/persistent-session.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"persistent-session.js","sourceRoot":"","sources":["../../src/sessions/persistent-session.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;AAEH,iFAAiF;AACjF,eAAe;AACf,iFAAiF;AAEjF,oDAA4B;AAC5B,uCAAmC;AACnC,8DAA0C;AAC1C,4DAAoC;AAYpC,iFAAiF;AACjF,UAAU;AACV,iFAAiF;AAEjF;;;;;;;GAOG;AACH,SAAS,sBAAsB,CAAC,GAAwB;IACtD,OAAO,OAAO,CACZ,GAAG;QACD,GAAG,CAAC,WAAW;QACf,GAAG,CAAC,YAAY;QAChB,GAAG,CAAC,gBAAgB;QACpB,GAAG,CAAC,YAAY,CACnB,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,uBAAuB,CAAC,GAAwB;IACvD,OAAO,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,KAAK,IAAI,GAAG,CAAC,KAAK,CAAC,CAAC;AAC5D,CAAC;AAED,iFAAiF;AACjF,SAAS;AACT,iFAAiF;AAEjF;;;;;;;;;;;;;;GAcG;AACH,MAAM,iBAAiB;IAOrB,YACE,SAAoB,EACpB,UAAsB,EACtB,MAAc,EACd,YAA0B;QAE1B,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;QACtB,IAAI,CAAC,aAAa,GAAG,YAAY,CAAC;QAElC,yDAAyD;QACzD,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;QAE5B,mGAAmG;QACnG,IAAA,gBAAM,EACJ,sBAAsB,CAAC,SAAS,CAAC,EACjC,uHAAuH,CACxH,CAAC;QACF,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;QAE9B,iFAAiF;QACjF,IAAI,UAAU,EAAE,CAAC;YACf,IAAA,gBAAM,EACJ,uBAAuB,CAAC,UAAU,CAAC,EACnC,+FAA+F,CAChG,CAAC;YACF,IAAI,CAAC,WAAW,GAAG,kBAAO,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;;;OAMG;IACH,aAAa,CAAC,SAAqB;QACjC,IAAI,CAAC,UAAU,GAAG;YAChB,WAAW,EAAE,SAAS,CAAC,WAAW;YAClC,YAAY,EAAE,SAAS,CAAC,YAAY;YACpC,gBAAgB,EAAE,SAAS,CAAC,gBAAgB;YAC5C,YAAY,EAAE,SAAS,CAAC,YAAY;SACrC,CAAC;IACJ,CAAC;IAED;;;;;;;;;OASG;IACH,cAAc,CAAC,OAA6B;QAC1C,gGAAgG;QAChG,oCAAoC;QACpC,IAAI,CAAC,IAAI,CAAC,eAAe,EAAE,CAAC;YAC1B,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC,aAAa;iBACtC,qBAAqB,CAAC,IAAI,CAAC,UAAU,CAAC,YAAY,EAAE,OAAO,CAAC;iBAC5D,KAAK,CAAC,CAAC,GAAQ,EAAE,EAAE;gBAClB,wGAAwG;gBACxG,wGAAwG;gBACxG,8GAA8G;gBAC9G,yFAAyF;gBACzF,oGAAoG;gBACpG,2GAA2G;gBAC3G,uGAAuG;gBACvG,IACE,GAAG,CAAC,UAAU,KAAK,qBAAe,CAAC,WAAW;oBAC9C,IAAI,CAAC,WAAW,EAChB,CAAC;oBACD,IAAI,iBAAiB,GAAG,GAAG,CAAC;oBAE5B,+FAA+F;oBAC/F,8FAA8F;oBAC9F,uBAAuB;oBACvB,OAAO,IAAI,CAAC,WAAW;yBACpB,SAAS,EAAE;yBACX,KAAK,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,gBAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;yBAC3C,IAAI,CAAC,CAAC,cAA0B,EAAE,EAAE;wBACnC,yGAAyG;wBACzG,+FAA+F;wBAC/F,+FAA+F;wBAC/F,IACE,CAAC,cAAc;4BACf,cAAc,CAAC,YAAY,KAAK,IAAI,CAAC,UAAU,CAAC,YAAY,EAC5D,CAAC;4BACD,MAAM,gBAAM,CAAC,cAAc,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;wBAC1D,CAAC;wBAED,0DAA0D;wBAC1D,OAAO,cAAc,CAAC;oBACxB,CAAC,CAAC,CAAC;gBACP,CAAC;gBAED,iFAAiF;gBACjF,kGAAkG;gBAClG,MAAM,GAAG,CAAC;YACZ,CAAC,CAAC;iBACD,IAAI,CAAC,CAAC,SAAoB,EAAE,EAAE;gBAC7B,wDAAwD;gBACxD,sFAAsF;gBACtF,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;oBACrB,OAAO,IAAI,CAAC,WAAW;yBACpB,UAAU,CAAC,SAAS,CAAC;yBACrB,KAAK,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,gBAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;yBAC3C,IAAI,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;gBAC3B,CAAC;gBAED,oEAAoE;gBACpE,OAAO,SAAS,CAAC;YACnB,CAAC,CAAC;iBACD,IAAI,CAAC,CAAC,SAAoB,EAAE,EAAE;gBAC7B,yCAAyC;gBACzC,IAAI,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;gBAC9B,OAAO,SAAS,CAAC,WAAW,CAAC;YAC/B,CAAC,CAAC;iBACD,KAAK,CAAC,CAAC,GAAQ,EAAE,EAAE,CAAC,IAAI,CAAC,wBAAwB,CAAC,GAAG,CAAC,CAAC;iBACvD,OAAO,CAAC,GAAG,EAAE;gBACZ,kCAAkC;gBAClC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;YAC9B,CAAC,CAAC,CAAC;QACP,CAAC;QAED,OAAO,IAAI,CAAC,eAA+B,CAAC;IAC9C,CAAC;IAED,iFAAiF;IACjF,kBAAkB;IAClB,iFAAiF;IAEjF;;;;;;;;OAQG;IACH,cAAc,CAAC,OAA6B;QAC1C,uDAAuD;QACvD,MAAM,gBAAgB,GAAG,IAAI,CAAC,OAAO,CAAC,eAAe,CAAC;QACtD,IACE,CAAC,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,IAAI,CAAC,UAAU,EAAE,gBAAgB,CAAC,EACzE,CAAC;YACD,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QACtC,CAAC;QAED,kDAAkD;QAClD,OAAO,kBAAO,CAAC,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACtD,CAAC;IAED;;;;;;;OAOG;IACH,YAAY,CAAC,OAA6B;QACxC,OAAO,IAAI,CAAC,aAAa,CAAC,YAAY,CACpC,IAAI,CAAC,UAAU,CAAC,YAAY,EAC5B,OAAO,CACR,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,aAAa,CACX,MAAyB,EACzB,QAAiB,EACjB,OAEC;QAED,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CACvD,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,WAAW,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,CAAC,CACzE,CAAC;IACJ,CAAC;IAED;;;;;;;;;OASG;IACH,wBAAwB,CAAC,GAAQ,CAAC,WAAW;QAC3C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;YACtB,OAAO,kBAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QAC9B,CAAC;QAED,wEAAwE;QACxE,0DAA0D;QAC1D,OAAO,IAAI,CAAC,WAAW;aACpB,UAAU,EAAE;aACZ,KAAK,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,gBAAM,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC;aAC3C,IAAI,CAAC,GAAG,EAAE;YACT,MAAM,GAAG,CAAC;QACZ,CAAC,CAAC,CAAC;IACP,CAAC;CACF;AAMD,iBAAS,iBAAiB,CAAC"}