npm - feathers-ucan - Versions diffs - 0.0.1 → 0.0.2 - Mend

feathers-ucan 0.0.1 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/lib/auth-service/index.d.ts +8 -1
package/lib/env/version.d.ts +1 -1
package/lib/index.cjs +1 -1
package/lib/index.esm.js +1 -1
package/lib/index.js +1 -1
package/lib/index.umd.js +1 -1
package/package.json +1 -1

package/lib/auth-service/index.d.ts CHANGED Viewed

@@ -1,7 +1,14 @@
+import { AuthenticationRequest, AuthenticationParams } from '../types';
 export declare class NotAuthError extends Error {
     constructor(message?: string);
 }
 export type AuthServiceOptions = {
     NotAuthenticated?: any;
 };
-export declare const genAuthService: (ParentClass: any, options?: AuthServiceOptions) => void;
+export declare const genAuthService: (ParentClass: any, options?: AuthServiceOptions) => {
+    new (app: any, configKey?: string, opts?: {}): {
+        [x: string]: any;
+        create(data: AuthenticationRequest, params?: AuthenticationParams): Promise<any>;
+    };
+    [x: string]: any;
+};

package/lib/env/version.d.ts CHANGED Viewed

	@@ -1 +1 @@
1	- export declare const VERSION = "0.0.1";
1	+ export declare const VERSION = "0.0.2";

package/lib/index.cjs CHANGED Viewed

	@@ -1 +1 @@
1	- var e=require("symbol-ucan"),t=require("@feathersjs/authentication");function r(){return r=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},r.apply(this,arguments)}function n(e){return n=Object.setPrototypeOf?Object.getPrototypeOf.bind():function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},n(e)}function o(e,t){return o=Object.setPrototypeOf?Object.setPrototypeOf.bind():function(e,t){return e.__proto__=t,e},o(e,t)}function i(e,t,r){return i=function(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}()?Reflect.construct.bind():function(e,t,r){var n=[null];n.push.apply(n,t);var i=new(Function.bind.apply(e,n));return r&&o(i,r.prototype),i},i.apply(null,arguments)}function c(e){var t="function"==typeof Map?new Map:void 0;return c=function(e){if(null===e\|\|-1===Function.toString.call(e).indexOf("[native code]"))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==t){if(t.has(e))return t.get(e);t.set(e,r)}function r(){return i(e,arguments,n(this).constructor)}return r.prototype=Object.create(e.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),o(r,e)},c(e)}var a=/#__PURE__/function(e){var t,r;function n(t){return e.call(this,t)\|\|this}return r=e,(t=n).prototype=Object.create(r.prototype),t.prototype.constructor=t,o(t,r),n}(/#__PURE__/c(Error)),u=/#__PURE__/function(){function e(e,t,n){var o;this.context=void 0,this.service=void 0,this.core=void 0,this.service=e,this.context=t,this.core=r({},null==(o=t.params)?void 0:o.core,n)}var t=e.prototype;return t.get=function(e,t){void 0===t&&(t={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).get(e,r({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.find=function(e){void 0===e&&(e={});try{var t,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(t=o.context.app)?void 0:t.service(o.service).find(r({},e,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t.create=function(e,t){void 0===t&&(t={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).create(e,r({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.patch=function(e,t,n){void 0===n&&(n={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service).patch(e,t,r({},n,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t.update=function(e,t,n){void 0===n&&(n={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service).update(e,t,r({},n,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t.remove=function(e,t){void 0===t&&(t={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).remove(e,r({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._get=function(e,t){void 0===t&&(t={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._get(e,r({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._find=function(e){void 0===e&&(e={});try{var t,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(t=o.context.app)?void 0:t.service(o.service)._find(r({},e,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._create=function(e,t){void 0===t&&(t={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._create(e,r({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._patch=function(e,t,n){void 0===n&&(n={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service)._patch(e,t,r({},n,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t._update=function(e,t,n){void 0===n&&(n={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service)._update(e,t,r({},n,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t._remove=function(e,t){void 0===t&&(t={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._remove(e,r({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},e}(),s=["ucan"];function l(e,t,r){if(!e.s){if(r instanceof p){if(!r.s)return void(r.o=l.bind(null,e,t));1&t&&(t=r.s),r=r.v}if(r&&r.then)return void r.then(l.bind(null,e,t),l.bind(null,e,2));e.s=t,e.v=r;var n=e.o;n&&n(e)}}const p=/#__PURE__/function(){function e(){}return e.prototype.then=function(t,r){const n=new e,o=this.s;if(o){const e=1&o?t:r;if(e){try{l(n,1,e(this.v))}catch(e){l(n,2,e)}return n}return this}return this.o=function(e){try{const o=e.v;1&e.s?l(n,1,t?t(o):o):r?l(n,1,r(o)):l(n,2,o)}catch(e){l(n,2,e)}},n},e}();var v=function(r){try{var n=r.app.get("authentication"),o=e._get(r,["auth",n.entity]);return o&&(r=e._set(r,[n.core_path,n.entity],o)),Promise.resolve(t.authenticate("jwt")(r).catch(function(e){return console.error("got error in no throw auth",e),r})).then(function(e){return r=e})}catch(e){return Promise.reject(e)}},h=function(r){try{var n=r.app.get("authentication"),o=e._get(r,["auth",n.entity]);return o&&(r=e._set(r,[n.core_path,n.entity],o)),Promise.resolve(t.authenticate("jwt")(r))}catch(e){return Promise.reject(e)}},f=function(t){try{var r,n={ok:!1,value:[]},o=function(o,i,c){var a=[];for(var u in o)a.push(u);return function(e,t,r){var n,o,i=-1;return function c(a){try{for(;++i<e.length&&(!r\|\|!r());)if((a=t(i))&&a.then){if(!((u=a)instanceof p&&1&u.s))return void a.then(c,o\|\|(o=l.bind(null,n=new p,2)));a=a.v}n?l(n,1,a):n=a}catch(e){l(n\|\|(n=new p),2,e)}var u}(),n}(a,function(o){return function(o){var i=function(){var i;if(null==(i=n)\|\|!i.ok){var c=t[o],a=c.ucan,u=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)t.indexOf(r=i[n])>=0\|\|(o[r]=e[r]);return o}(c,s);return Promise.resolve(function(t,r){try{return Promise.resolve(e.verifyUcan(t,r))}catch(e){return Promise.reject(e)}}(a,u)).then(function(e){n=e})}r=1}();if(i&&i.then)return i.then(function(){})}(a[o])},function(){return r})}(t);return Promise.resolve(o&&o.then?o.then(function(){return n}):n)}catch(e){return Promise.reject(e)}},d=function(t,r,n,o){return function(i){try{var c;return t&&r&&null!=o&&null!=(c=o.or)&&c.includes(i.method)?Promise.resolve(f((n\|\|[]).map(function(e){return{ucan:t,audience:r,requiredCapabilities:[e]}}))):Promise.resolve(e.verifyUcan(t,{audience:r,requiredCapabilities:n}))}catch(e){return Promise.reject(e)}}},m=function(t,r){return function(n){try{var o,i=function(i){return o?i:Promise.resolve(h(n)).then(function(o){var i;if(n=o,""===t)return n;if(null!=r&&r.adminPass&&n.params.admin_pass)return n;var c=n.app.get("authentication"),a={ok:!1,value:[]},s=e.encodeKeyPair({secretKey:c.secret}).did(),l=n.app.get("authentication"),p=(t\|\|[]).map(function(t){var r={defaultScheme:l.defaultScheme,defaultHierPart:l.defaultHierPart};return{capability:Array.isArray(t)?e.genCapability({with:{scheme:l.defaultScheme,hierPart:l.defaultHierPart},can:{namespace:t[0],segments:"string"==typeof t[1]?[t[1]]:t[1]}},r):e.genCapability(t,r),rootIssuer:s}}),v=e._get(n.params,l.client_ucan),h=e._get(n.params,l.ucan_aud);if(p.length?a=d(v,h,p,r):a.ok=!0,null!=(i=a)&&i.ok)return n;var f=function(){var t;if(null==(t=a)\|\|!t.ok){var o=!1,i=[];p.forEach(function(t,r){var n=(e._get(t,"capability.can.namespace")\|\|"").split(":");n[1]&&(t=e._set(t,"capability.can.namespace",n[0]),o=!0),i.push(t)}),o&&(a=d(v,h,p,r))}if(a.ok)return n;throw console.error("Ucan capabilities requirements not met: ",a,n.type,n.path),new Error("Missing proper capabilities for this action: "+n.type+": "+n.path+" - "+n.method)},m=r\|\|{creatorPass:!1},y=m.creatorPass,P=m.loginPass,g=function(){if(y&&(""===y\|\|y.includes(n.method))\|\|null!=P&&P.length&&(""===P[1]\|\|P[1].includes(n.method)))return Promise.resolve(new u(n.path,n,{skipJoins:!0}).get(n.id)).then(function(t){var r,o;if(y)a.ok=(null==t\|\|null==(r=t.createdBy)?void 0:r.login)===((null==(o=n.login)?void 0:o._id)\|\|"*");else if(P){var i,c=e._flatten(P[0].map(function(r){return e._get(t,r)}));a.ok=c.filter(function(e){return!!e}).includes(null==(i=n.login)?void 0:i._id)}})}();return g&&g.then?g.then(f):f()})},c=function(){if("$"===t)return Promise.resolve(v(n)).then(function(e){return o=1,e})}();return Promise.resolve(c&&c.then?c.then(i):i(c))}catch(e){return Promise.reject(e)}}};exports.CoreCall=u,exports.NotAuthError=a,exports.allUcanAuth=function(t,r){return function(n){try{var o=n.app.get("authentication"),i=n.auth[o.entity];if(i&&(n=e._set(n,[o.core_path,o.entity],i)),"before"===n.type){var c=n.method;return Promise.resolve(t[c]\|\|t.all?m(t[c]\|\|t.all,r)(n):n)}return Promise.resolve(n)}catch(e){return Promise.reject(e)}}},exports.anyAuth="",exports.bareAuth=h,exports.genAuthService=function(e,t){},exports.noThrow="$",exports.noThrowAuth=v,exports.orVerifyLoop=f,exports.ucanAuth=m,exports.updateUcan=function(){return function(t){try{var n=t.data,o=n.add,i=void 0===o?[]:o,c=n.remove,a=void 0===c?[]:c;if(!(null!=i&&i.length\|\|null!=a&&a.length))throw new Error("No new capabilities passed");var s=t.app.get("authentication"),l=s.secret,p=s.ucan_aud,v=e.encodeKeyPair({secretKey:l}).did(),h=e.stackAbilities([].concat(i,a));return Promise.resolve(e.verifyUcan(t.params.login.ucan,{audience:e._get(t.params,p),requiredCapabilities:h.map(function(e){return{capability:e,rootIssuer:v}})})).then(function(n){if(null==n\|\|!n.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");var o=t.id,c=t.data.service\|\|"logins",s=t.data.path\|\|"ucan";return Promise.resolve(new u(c,t,{skipJoins:!0}).get(o)).then(function(n){var p=e.parseUcan(e._get(n,s)).payload,v=p.aud,h=p.att,f=p.prf,d=[].concat(h);return null!=a&&a.length&&(d=e.reduceAbilities(a,h)),null!=i&&i.length&&(d=e.stackAbilities([].concat(h,i))),Promise.resolve(e.buildUcan(r({issuer:e.encodeKeyPair({secretKey:l}),audience:v,proofs:f},t.data,{capabilities:d}))).then(function(r){var n=e.ucanToken(r);return Promise.resolve(e.validateUcan(n)).then(function(e){var r;if(!e)throw new Error("Invalid ucan generated when updating");return Promise.resolve(new u(c,t).patch(o,(r={},r[s]=n,r))).then(function(e){return t.result={raw:t.data,encoded:n,subject:e},t})})})})})}catch(e){return Promise.reject(e)}}},exports.verifyAgainstReqs=d;
1	+ var e=require("symbol-ucan"),t=require("@feathersjs/authentication");function r(){return r=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},r.apply(this,arguments)}function n(e,t){e.prototype=Object.create(t.prototype),e.prototype.constructor=e,i(e,t)}function o(e){return o=Object.setPrototypeOf?Object.getPrototypeOf.bind():function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},o(e)}function i(e,t){return i=Object.setPrototypeOf?Object.setPrototypeOf.bind():function(e,t){return e.__proto__=t,e},i(e,t)}function a(e,t,r){return a=function(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}()?Reflect.construct.bind():function(e,t,r){var n=[null];n.push.apply(n,t);var o=new(Function.bind.apply(e,n));return r&&i(o,r.prototype),o},a.apply(null,arguments)}function c(e){var t="function"==typeof Map?new Map:void 0;return c=function(e){if(null===e\|\|-1===Function.toString.call(e).indexOf("[native code]"))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==t){if(t.has(e))return t.get(e);t.set(e,r)}function r(){return a(e,arguments,o(this).constructor)}return r.prototype=Object.create(e.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),i(r,e)},c(e)}var u=/#__PURE__/function(e){function t(t){return e.call(this,t)\|\|this}return n(t,e),t}(/#__PURE__/c(Error)),s=/#__PURE__/function(){function e(e,t,n){var o;this.context=void 0,this.service=void 0,this.core=void 0,this.service=e,this.context=t,this.core=r({},null==(o=t.params)?void 0:o.core,n)}var t=e.prototype;return t.get=function(e,t){void 0===t&&(t={});try{var n,o,i=this,a=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).get(e,r({},t,((o={})[a]=i.core,o))))}catch(e){return Promise.reject(e)}},t.find=function(e){void 0===e&&(e={});try{var t,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(t=o.context.app)?void 0:t.service(o.service).find(r({},e,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t.create=function(e,t){void 0===t&&(t={});try{var n,o,i=this,a=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).create(e,r({},t,((o={})[a]=i.core,o))))}catch(e){return Promise.reject(e)}},t.patch=function(e,t,n){void 0===n&&(n={});try{var o,i,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(o=a.context.app)?void 0:o.service(a.service).patch(e,t,r({},n,((i={})[c]=a.core,i))))}catch(e){return Promise.reject(e)}},t.update=function(e,t,n){void 0===n&&(n={});try{var o,i,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(o=a.context.app)?void 0:o.service(a.service).update(e,t,r({},n,((i={})[c]=a.core,i))))}catch(e){return Promise.reject(e)}},t.remove=function(e,t){void 0===t&&(t={});try{var n,o,i=this,a=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).remove(e,r({},t,((o={})[a]=i.core,o))))}catch(e){return Promise.reject(e)}},t._get=function(e,t){void 0===t&&(t={});try{var n,o,i=this,a=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._get(e,r({},t,((o={})[a]=i.core,o))))}catch(e){return Promise.reject(e)}},t._find=function(e){void 0===e&&(e={});try{var t,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(t=o.context.app)?void 0:t.service(o.service)._find(r({},e,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._create=function(e,t){void 0===t&&(t={});try{var n,o,i=this,a=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._create(e,r({},t,((o={})[a]=i.core,o))))}catch(e){return Promise.reject(e)}},t._patch=function(e,t,n){void 0===n&&(n={});try{var o,i,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(o=a.context.app)?void 0:o.service(a.service)._patch(e,t,r({},n,((i={})[c]=a.core,i))))}catch(e){return Promise.reject(e)}},t._update=function(e,t,n){void 0===n&&(n={});try{var o,i,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(o=a.context.app)?void 0:o.service(a.service)._update(e,t,r({},n,((i={})[c]=a.core,i))))}catch(e){return Promise.reject(e)}},t._remove=function(e,t){void 0===t&&(t={});try{var n,o,i=this,a=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._remove(e,r({},t,((o={})[a]=i.core,o))))}catch(e){return Promise.reject(e)}},e}(),l=["ucan"];function p(e,t,r){if(!e.s){if(r instanceof h){if(!r.s)return void(r.o=p.bind(null,e,t));1&t&&(t=r.s),r=r.v}if(r&&r.then)return void r.then(p.bind(null,e,t),p.bind(null,e,2));e.s=t,e.v=r;var n=e.o;n&&n(e)}}const h=/#__PURE__/function(){function e(){}return e.prototype.then=function(t,r){const n=new e,o=this.s;if(o){const e=1&o?t:r;if(e){try{p(n,1,e(this.v))}catch(e){p(n,2,e)}return n}return this}return this.o=function(e){try{const o=e.v;1&e.s?p(n,1,t?t(o):o):r?p(n,1,r(o)):p(n,2,o)}catch(e){p(n,2,e)}},n},e}();var v=function(r){try{var n=r.app.get("authentication"),o=e._get(r,["auth",n.entity]);return o&&(r=e._set(r,[n.core_path,n.entity],o)),Promise.resolve(t.authenticate("jwt")(r).catch(function(e){return console.error("got error in no throw auth",e),r})).then(function(e){return r=e})}catch(e){return Promise.reject(e)}},f=function(r){try{var n=r.app.get("authentication"),o=e._get(r,["auth",n.entity]);return o&&(r=e._set(r,[n.core_path,n.entity],o)),Promise.resolve(t.authenticate("jwt")(r))}catch(e){return Promise.reject(e)}},d=function(t){try{var r,n={ok:!1,value:[]},o=function(o,i,a){var c=[];for(var u in o)c.push(u);return function(e,t,r){var n,o,i=-1;return function a(c){try{for(;++i<e.length&&(!r\|\|!r());)if((c=t(i))&&c.then){if(!((u=c)instanceof h&&1&u.s))return void c.then(a,o\|\|(o=p.bind(null,n=new h,2)));c=c.v}n?p(n,1,c):n=c}catch(e){p(n\|\|(n=new h),2,e)}var u}(),n}(c,function(o){return function(o){var i=function(){var i;if(null==(i=n)\|\|!i.ok){var a=t[o],c=a.ucan,u=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)t.indexOf(r=i[n])>=0\|\|(o[r]=e[r]);return o}(a,l);return Promise.resolve(function(t,r){try{return Promise.resolve(e.verifyUcan(t,r))}catch(e){return Promise.reject(e)}}(c,u)).then(function(e){n=e})}r=1}();if(i&&i.then)return i.then(function(){})}(c[o])},function(){return r})}(t);return Promise.resolve(o&&o.then?o.then(function(){return n}):n)}catch(e){return Promise.reject(e)}},m=function(t,r,n,o){return function(i){try{var a;return t&&r&&null!=o&&null!=(a=o.or)&&a.includes(i.method)?Promise.resolve(d((n\|\|[]).map(function(e){return{ucan:t,audience:r,requiredCapabilities:[e]}}))):Promise.resolve(e.verifyUcan(t,{audience:r,requiredCapabilities:n}))}catch(e){return Promise.reject(e)}}},y=function(t,r){return function(n){try{var o,i=function(i){return o?i:Promise.resolve(f(n)).then(function(o){var i;if(n=o,""===t)return n;if(null!=r&&r.adminPass&&n.params.admin_pass)return n;var a=n.app.get("authentication"),c={ok:!1,value:[]},u=e.encodeKeyPair({secretKey:a.secret}).did(),l=n.app.get("authentication"),p=(t\|\|[]).map(function(t){var r={defaultScheme:l.defaultScheme,defaultHierPart:l.defaultHierPart};return{capability:Array.isArray(t)?e.genCapability({with:{scheme:l.defaultScheme,hierPart:l.defaultHierPart},can:{namespace:t[0],segments:"string"==typeof t[1]?[t[1]]:t[1]}},r):e.genCapability(t,r),rootIssuer:u}}),h=e._get(n.params,l.client_ucan),v=e._get(n.params,l.ucan_aud);if(p.length?c=m(h,v,p,r):c.ok=!0,null!=(i=c)&&i.ok)return n;var f=function(){var t;if(null==(t=c)\|\|!t.ok){var o=!1,i=[];p.forEach(function(t,r){var n=(e._get(t,"capability.can.namespace")\|\|"").split(":");n[1]&&(t=e._set(t,"capability.can.namespace",n[0]),o=!0),i.push(t)}),o&&(c=m(h,v,p,r))}if(c.ok)return n;throw console.error("Ucan capabilities requirements not met: ",c,n.type,n.path),new Error("Missing proper capabilities for this action: "+n.type+": "+n.path+" - "+n.method)},d=r\|\|{creatorPass:!1},y=d.creatorPass,g=d.loginPass,P=function(){if(y&&(""===y\|\|y.includes(n.method))\|\|null!=g&&g.length&&(""===g[1]\|\|g[1].includes(n.method)))return Promise.resolve(new s(n.path,n,{skipJoins:!0}).get(n.id)).then(function(t){var r,o;if(y)c.ok=(null==t\|\|null==(r=t.createdBy)?void 0:r.login)===((null==(o=n.login)?void 0:o._id)\|\|"*");else if(g){var i,a=e._flatten(g[0].map(function(r){return e._get(t,r)}));c.ok=a.filter(function(e){return!!e}).includes(null==(i=n.login)?void 0:i._id)}})}();return P&&P.then?P.then(f):f()})},a=function(){if("$"===t)return Promise.resolve(v(n)).then(function(e){return o=1,e})}();return Promise.resolve(a&&a.then?a.then(i):i(a))}catch(e){return Promise.reject(e)}}};exports.CoreCall=s,exports.NotAuthError=u,exports.allUcanAuth=function(t,r){return function(n){try{var o=n.app.get("authentication"),i=n.auth[o.entity];if(i&&(n=e._set(n,[o.core_path,o.entity],i)),"before"===n.type){var a=n.method;return Promise.resolve(t[a]\|\|t.all?y(t[a]\|\|t.all,r)(n):n)}return Promise.resolve(n)}catch(e){return Promise.reject(e)}}},exports.anyAuth="",exports.bareAuth=f,exports.genAuthService=function(t,o){/#__PURE__/return function(t){function i(e,r,n){var o;return void 0===r&&(r="authentication"),void 0===n&&(n={}),(o=t.call(this,e,r,n)\|\|this).app=e,o}return n(i,t),i.prototype.create=function(t,n){try{var i,a=this,c=(null==o?void 0:o.NotAuthenticated)\|\|u,s=a.app.get("authentication"),l=s.entity,p=s.service,h=s.ucan_path,v=void 0===h?"ucan":h,f=(null==(i=n)?void 0:i.authStrategies)\|\|a.configuration.authStrategies;if(n\|\|(n={}),!f.length)throw new c("No authentication strategies allowed for creating a JWT (`authStrategies`)");return Promise.resolve(a.authenticate.apply(a,[t,n].concat(f)).catch(function(e){throw new Error(e.message)})).then(function(o){if(o.accessToken)return o;var i=t.did\|\|e._get(o,[l,"did"]),c=t.ucan\|\|e._get(o,[l,"ucan"]);if(!i)throw new Error("No did audience provided");if(!c)throw new Error("No ucan provided to authentication call");return Promise.resolve(e.validateUcan(c).catch(function(e){console.log("Could not validate ucan: ",e.message);var t={code:0,message:"Unknown Issue Validating Ucan"};return e.message.indexOf("Expired.")>-1&&(t.code=1,t.message="Expired Ucan"),console.warn("Could not validate ucan",c,t.message),null})).then(function(t){function i(){var t=e.ucanToken(c);return r({accessToken:t},o,{authentication:r({},o.authentication,{payload:t})})}var u=function(){if(!t){var i=e.parseUcan(c),u=a.app.get("authentication"),s=e.encodeKeyPair({secretKey:u.secret});return Promise.resolve(e.buildUcan({audience:i.payload.aud,issuer:s,capabilities:i.payload.att})).then(function(t){var i;return c=t,n.admin_pass=!0,Promise.resolve(a.app.service(p).patch(o[l]._id,(i={},i[v]=e.ucanToken(c),i),r({},n))).then(function(){})})}}();return u&&u.then?u.then(i):i()})})}catch(e){return Promise.reject(e)}},i}(t)},exports.noThrow="$",exports.noThrowAuth=v,exports.orVerifyLoop=d,exports.ucanAuth=y,exports.updateUcan=function(){return function(t){try{var n=t.data,o=n.add,i=void 0===o?[]:o,a=n.remove,c=void 0===a?[]:a;if(!(null!=i&&i.length\|\|null!=c&&c.length))throw new Error("No new capabilities passed");var u=t.app.get("authentication"),l=u.secret,p=u.ucan_aud,h=e.encodeKeyPair({secretKey:l}).did(),v=e.stackAbilities([].concat(i,c));return Promise.resolve(e.verifyUcan(t.params.login.ucan,{audience:e._get(t.params,p),requiredCapabilities:v.map(function(e){return{capability:e,rootIssuer:h}})})).then(function(n){if(null==n\|\|!n.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");var o=t.id,a=t.data.service\|\|"logins",u=t.data.path\|\|"ucan";return Promise.resolve(new s(a,t,{skipJoins:!0}).get(o)).then(function(n){var p=e.parseUcan(e._get(n,u)).payload,h=p.aud,v=p.att,f=p.prf,d=[].concat(v);return null!=c&&c.length&&(d=e.reduceAbilities(c,v)),null!=i&&i.length&&(d=e.stackAbilities([].concat(v,i))),Promise.resolve(e.buildUcan(r({issuer:e.encodeKeyPair({secretKey:l}),audience:h,proofs:f},t.data,{capabilities:d}))).then(function(r){var n=e.ucanToken(r);return Promise.resolve(e.validateUcan(n)).then(function(e){var r;if(!e)throw new Error("Invalid ucan generated when updating");return Promise.resolve(new s(a,t).patch(o,(r={},r[u]=n,r))).then(function(e){return t.result={raw:t.data,encoded:n,subject:e},t})})})})})}catch(e){return Promise.reject(e)}}},exports.verifyAgainstReqs=m;

package/lib/index.esm.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{_get as e,_set as t,verifyUcan as r,encodeKeyPair as n,genCapability as o,_flatten as i,stackAbilities as c,parseUcan as a,reduceAbilities as u,buildUcan as s,ucanToken as l,validateUcan as p}from"symbol-ucan";import{authenticate as v}from"@feathersjs/authentication";function f(){return f=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},f.apply(this,arguments)}function h(e){return h=Object.setPrototypeOf?Object.getPrototypeOf.bind():function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},h(e)}function d(e,t){return d=Object.setPrototypeOf?Object.setPrototypeOf.bind():function(e,t){return e.__proto__=t,e},d(e,t)}function m(e,t,r){return m=function(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}()?Reflect.construct.bind():function(e,t,r){var n=[null];n.push.apply(n,t);var o=new(Function.bind.apply(e,n));return r&&d(o,r.prototype),o},m.apply(null,arguments)}function y(e){var t="function"==typeof Map?new Map:void 0;return y=function(e){if(null===e\|\|-1===Function.toString.call(e).indexOf("[native code]"))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==t){if(t.has(e))return t.get(e);t.set(e,r)}function r(){return m(e,arguments,h(this).constructor)}return r.prototype=Object.create(e.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),d(r,e)},y(e)}var P=/#__PURE__/function(e){var t,r;function n(t){return e.call(this,t)\|\|this}return r=e,(t=n).prototype=Object.create(r.prototype),t.prototype.constructor=t,d(t,r),n}(/#__PURE__/y(Error)),g=function(e,t){},_=/#__PURE__/function(){function e(e,t,r){var n;this.context=void 0,this.service=void 0,this.core=void 0,this.service=e,this.context=t,this.core=f({},null==(n=t.params)?void 0:n.core,r)}var t=e.prototype;return t.get=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).get(e,f({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t.find=function(e){void 0===e&&(e={});try{var t,r,n=this,o=n.context.app.get("authentication").core_path;return Promise.resolve(null==(t=n.context.app)?void 0:t.service(n.service).find(f({},e,((r={})[o]=n.core,r))))}catch(e){return Promise.reject(e)}},t.create=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).create(e,f({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t.patch=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).patch(e,t,f({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.update=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).update(e,t,f({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.remove=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).remove(e,f({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._get=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._get(e,f({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._find=function(e){void 0===e&&(e={});try{var t,r,n=this,o=n.context.app.get("authentication").core_path;return Promise.resolve(null==(t=n.context.app)?void 0:t.service(n.service)._find(f({},e,((r={})[o]=n.core,r))))}catch(e){return Promise.reject(e)}},t._create=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._create(e,f({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._patch=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._patch(e,t,f({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._update=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._update(e,t,f({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._remove=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._remove(e,f({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},e}(),b=["ucan"];function j(e,t,r){if(!e.s){if(r instanceof x){if(!r.s)return void(r.o=j.bind(null,e,t));1&t&&(t=r.s),r=r.v}if(r&&r.then)return void r.then(j.bind(null,e,t),j.bind(null,e,2));e.s=t,e.v=r;var n=e.o;n&&n(e)}}const x=/#__PURE__/function(){function e(){}return e.prototype.then=function(t,r){const n=new e,o=this.s;if(o){const e=1&o?t:r;if(e){try{j(n,1,e(this.v))}catch(e){j(n,2,e)}return n}return this}return this.o=function(e){try{const o=e.v;1&e.s?j(n,1,t?t(o):o):r?j(n,1,r(o)):j(n,2,o)}catch(e){j(n,2,e)}},n},e}();var w="",O="$",k=function(r){try{var n=r.app.get("authentication"),o=e(r,["auth",n.entity]);return o&&(r=t(r,[n.core_path,n.entity],o)),Promise.resolve(v("jwt")(r).catch(function(e){return console.error("got error in no throw auth",e),r})).then(function(e){return r=e})}catch(e){return Promise.reject(e)}},E=function(r){try{var n=r.app.get("authentication"),o=e(r,["auth",n.entity]);return o&&(r=t(r,[n.core_path,n.entity],o)),Promise.resolve(v("jwt")(r))}catch(e){return Promise.reject(e)}},R=function(e){try{var t,n={ok:!1,value:[]},o=function(o,i,c){var a=[];for(var u in o)a.push(u);return function(e,t,r){var n,o,i=-1;return function c(a){try{for(;++i<e.length&&(!r\|\|!r());)if((a=t(i))&&a.then){if(!((u=a)instanceof x&&1&u.s))return void a.then(c,o\|\|(o=j.bind(null,n=new x,2)));a=a.v}n?j(n,1,a):n=a}catch(e){j(n\|\|(n=new x),2,e)}var u}(),n}(a,function(o){return function(o){var i=function(){var i;if(null==(i=n)\|\|!i.ok){var c=e[o],a=c.ucan,u=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)t.indexOf(r=i[n])>=0\|\|(o[r]=e[r]);return o}(c,b);return Promise.resolve(function(e,t){try{return Promise.resolve(r(e,t))}catch(e){return Promise.reject(e)}}(a,u)).then(function(e){n=e})}t=1}();if(i&&i.then)return i.then(function(){})}(a[o])},function(){return t})}(e);return Promise.resolve(o&&o.then?o.then(function(){return n}):n)}catch(e){return Promise.reject(e)}},S=function(e,t,n,o){return function(i){try{var c;return e&&t&&null!=o&&null!=(c=o.or)&&c.includes(i.method)?Promise.resolve(R((n\|\|[]).map(function(r){return{ucan:e,audience:t,requiredCapabilities:[r]}}))):Promise.resolve(r(e,{audience:t,requiredCapabilities:n}))}catch(e){return Promise.reject(e)}}},q=function(r,c){return function(a){try{var u,s=function(s){return u?s:Promise.resolve(E(a)).then(function(u){var s;if(a=u,""===r)return a;if(null!=c&&c.adminPass&&a.params.admin_pass)return a;var l=a.app.get("authentication"),p={ok:!1,value:[]},v=n({secretKey:l.secret}).did(),f=a.app.get("authentication"),h=(r\|\|[]).map(function(e){var t={defaultScheme:f.defaultScheme,defaultHierPart:f.defaultHierPart};return{capability:Array.isArray(e)?o({with:{scheme:f.defaultScheme,hierPart:f.defaultHierPart},can:{namespace:e[0],segments:"string"==typeof e[1]?[e[1]]:e[1]}},t):o(e,t),rootIssuer:v}}),d=e(a.params,f.client_ucan),m=e(a.params,f.ucan_aud);if(h.length?p=S(d,m,h,c):p.ok=!0,null!=(s=p)&&s.ok)return a;var y=function(){var r;if(null==(r=p)\|\|!r.ok){var n=!1,o=[];h.forEach(function(r,i){var c=(e(r,"capability.can.namespace")\|\|"").split(":");c[1]&&(r=t(r,"capability.can.namespace",c[0]),n=!0),o.push(r)}),n&&(p=S(d,m,h,c))}if(p.ok)return a;throw console.error("Ucan capabilities requirements not met: ",p,a.type,a.path),new Error("Missing proper capabilities for this action: "+a.type+": "+a.path+" - "+a.method)},P=c\|\|{creatorPass:!1},g=P.creatorPass,b=P.loginPass,j=function(){if(g&&(""===g\|\|g.includes(a.method))\|\|null!=b&&b.length&&(""===b[1]\|\|b[1].includes(a.method)))return Promise.resolve(new _(a.path,a,{skipJoins:!0}).get(a.id)).then(function(t){var r,n;if(g)p.ok=(null==t\|\|null==(r=t.createdBy)?void 0:r.login)===((null==(n=a.login)?void 0:n._id)\|\|"***");else if(b){var o,c=i(b[0].map(function(r){return e(t,r)}));p.ok=c.filter(function(e){return!!e}).includes(null==(o=a.login)?void 0:o._id)}})}();return j&&j.then?j.then(y):y()})},l=function(){if("$"===r)return Promise.resolve(k(a)).then(function(e){return u=1,e})}();return Promise.resolve(l&&l.then?l.then(s):s(l))}catch(e){return Promise.reject(e)}}},B=function(e,r){return function(n){try{var o=n.app.get("authentication"),i=n.auth[o.entity];if(i&&(n=t(n,[o.core_path,o.entity],i)),"before"===n.type){var c=n.method;return Promise.resolve(e[c]\|\|e.all?q(e[c]\|\|e.all,r)(n):n)}return Promise.resolve(n)}catch(e){return Promise.reject(e)}}},C=function(){return function(t){try{var o=t.data,i=o.add,v=void 0===i?[]:i,h=o.remove,d=void 0===h?[]:h;if(!(null!=v&&v.length\|\|null!=d&&d.length))throw new Error("No new capabilities passed");var m=t.app.get("authentication"),y=m.secret,P=m.ucan_aud,g=n({secretKey:y}).did(),b=c([].concat(v,d));return Promise.resolve(r(t.params.login.ucan,{audience:e(t.params,P),requiredCapabilities:b.map(function(e){return{capability:e,rootIssuer:g}})})).then(function(r){if(null==r\|\|!r.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");var o=t.id,i=t.data.service\|\|"logins",h=t.data.path\|\|"ucan";return Promise.resolve(new _(i,t,{skipJoins:!0}).get(o)).then(function(r){var m=a(e(r,h)).payload,P=m.aud,g=m.att,b=m.prf,j=[].concat(g);return null!=d&&d.length&&(j=u(d,g)),null!=v&&v.length&&(j=c([].concat(g,v))),Promise.resolve(s(f({issuer:n({secretKey:y}),audience:P,proofs:b},t.data,{capabilities:j}))).then(function(e){var r=l(e);return Promise.resolve(p(r)).then(function(e){var n;if(!e)throw new Error("Invalid ucan generated when updating");return Promise.resolve(new _(i,t).patch(o,(n={},n[h]=r,n))).then(function(e){return t.result={raw:t.data,encoded:r,subject:e},t})})})})})}catch(e){return Promise.reject(e)}}};export{_ as CoreCall,P as NotAuthError,B as allUcanAuth,w as anyAuth,E as bareAuth,g as genAuthService,O as noThrow,k as noThrowAuth,R as orVerifyLoop,q as ucanAuth,C as updateUcan,S as verifyAgainstReqs};
1	+ import{_get as e,validateUcan as t,ucanToken as r,parseUcan as n,encodeKeyPair as o,buildUcan as i,_set as c,verifyUcan as a,genCapability as u,_flatten as s,stackAbilities as l,reduceAbilities as p}from"symbol-ucan";import{authenticate as h}from"@feathersjs/authentication";function v(){return v=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},v.apply(this,arguments)}function f(e,t){e.prototype=Object.create(t.prototype),e.prototype.constructor=e,m(e,t)}function d(e){return d=Object.setPrototypeOf?Object.getPrototypeOf.bind():function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},d(e)}function m(e,t){return m=Object.setPrototypeOf?Object.setPrototypeOf.bind():function(e,t){return e.__proto__=t,e},m(e,t)}function y(e,t,r){return y=function(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}()?Reflect.construct.bind():function(e,t,r){var n=[null];n.push.apply(n,t);var o=new(Function.bind.apply(e,n));return r&&m(o,r.prototype),o},y.apply(null,arguments)}function g(e){var t="function"==typeof Map?new Map:void 0;return g=function(e){if(null===e\|\|-1===Function.toString.call(e).indexOf("[native code]"))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==t){if(t.has(e))return t.get(e);t.set(e,r)}function r(){return y(e,arguments,d(this).constructor)}return r.prototype=Object.create(e.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),m(r,e)},g(e)}var P=/#__PURE__/function(e){function t(t){return e.call(this,t)\|\|this}return f(t,e),t}(/#__PURE__/g(Error)),_=function(c,a){/#__PURE__/return function(c){function u(e,t,r){var n;return void 0===t&&(t="authentication"),void 0===r&&(r={}),(n=c.call(this,e,t,r)\|\|this).app=e,n}return f(u,c),u.prototype.create=function(c,u){try{var s,l=this,p=(null==a?void 0:a.NotAuthenticated)\|\|P,h=l.app.get("authentication"),f=h.entity,d=h.service,m=h.ucan_path,y=void 0===m?"ucan":m,g=(null==(s=u)?void 0:s.authStrategies)\|\|l.configuration.authStrategies;if(u\|\|(u={}),!g.length)throw new p("No authentication strategies allowed for creating a JWT (`authStrategies`)");return Promise.resolve(l.authenticate.apply(l,[c,u].concat(g)).catch(function(e){throw new Error(e.message)})).then(function(a){if(a.accessToken)return a;var s=c.did\|\|e(a,[f,"did"]),p=c.ucan\|\|e(a,[f,"ucan"]);if(!s)throw new Error("No did audience provided");if(!p)throw new Error("No ucan provided to authentication call");return Promise.resolve(t(p).catch(function(e){console.log("Could not validate ucan: ",e.message);var t={code:0,message:"Unknown Issue Validating Ucan"};return e.message.indexOf("Expired.")>-1&&(t.code=1,t.message="Expired Ucan"),console.warn("Could not validate ucan",p,t.message),null})).then(function(e){function t(){var e=r(p);return v({accessToken:e},a,{authentication:v({},a.authentication,{payload:e})})}var c=function(){if(!e){var t=n(p),c=l.app.get("authentication"),s=o({secretKey:c.secret});return Promise.resolve(i({audience:t.payload.aud,issuer:s,capabilities:t.payload.att})).then(function(e){var t;return p=e,u.admin_pass=!0,Promise.resolve(l.app.service(d).patch(a[f]._id,(t={},t[y]=r(p),t),v({},u))).then(function(){})})}}();return c&&c.then?c.then(t):t()})})}catch(e){return Promise.reject(e)}},u}(c)},b=/#__PURE__/function(){function e(e,t,r){var n;this.context=void 0,this.service=void 0,this.core=void 0,this.service=e,this.context=t,this.core=v({},null==(n=t.params)?void 0:n.core,r)}var t=e.prototype;return t.get=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).get(e,v({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t.find=function(e){void 0===e&&(e={});try{var t,r,n=this,o=n.context.app.get("authentication").core_path;return Promise.resolve(null==(t=n.context.app)?void 0:t.service(n.service).find(v({},e,((r={})[o]=n.core,r))))}catch(e){return Promise.reject(e)}},t.create=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).create(e,v({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t.patch=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).patch(e,t,v({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.update=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service).update(e,t,v({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.remove=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).remove(e,v({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._get=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._get(e,v({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._find=function(e){void 0===e&&(e={});try{var t,r,n=this,o=n.context.app.get("authentication").core_path;return Promise.resolve(null==(t=n.context.app)?void 0:t.service(n.service)._find(v({},e,((r={})[o]=n.core,r))))}catch(e){return Promise.reject(e)}},t._create=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._create(e,v({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},t._patch=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._patch(e,t,v({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._update=function(e,t,r){void 0===r&&(r={});try{var n,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(n=i.context.app)?void 0:n.service(i.service)._update(e,t,v({},r,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._remove=function(e,t){void 0===t&&(t={});try{var r,n,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._remove(e,v({},t,((n={})[i]=o.core,n))))}catch(e){return Promise.reject(e)}},e}(),w=["ucan"];function j(e,t,r){if(!e.s){if(r instanceof x){if(!r.s)return void(r.o=j.bind(null,e,t));1&t&&(t=r.s),r=r.v}if(r&&r.then)return void r.then(j.bind(null,e,t),j.bind(null,e,2));e.s=t,e.v=r;var n=e.o;n&&n(e)}}const x=/#__PURE__/function(){function e(){}return e.prototype.then=function(t,r){const n=new e,o=this.s;if(o){const e=1&o?t:r;if(e){try{j(n,1,e(this.v))}catch(e){j(n,2,e)}return n}return this}return this.o=function(e){try{const o=e.v;1&e.s?j(n,1,t?t(o):o):r?j(n,1,r(o)):j(n,2,o)}catch(e){j(n,2,e)}},n},e}();var O="",k="$",E=function(t){try{var r=t.app.get("authentication"),n=e(t,["auth",r.entity]);return n&&(t=c(t,[r.core_path,r.entity],n)),Promise.resolve(h("jwt")(t).catch(function(e){return console.error("got error in no throw auth",e),t})).then(function(e){return t=e})}catch(e){return Promise.reject(e)}},S=function(t){try{var r=t.app.get("authentication"),n=e(t,["auth",r.entity]);return n&&(t=c(t,[r.core_path,r.entity],n)),Promise.resolve(h("jwt")(t))}catch(e){return Promise.reject(e)}},C=function(e){try{var t,r={ok:!1,value:[]},n=function(n,o,i){var c=[];for(var u in n)c.push(u);return function(e,t,r){var n,o,i=-1;return function c(a){try{for(;++i<e.length&&(!r\|\|!r());)if((a=t(i))&&a.then){if(!((u=a)instanceof x&&1&u.s))return void a.then(c,o\|\|(o=j.bind(null,n=new x,2)));a=a.v}n?j(n,1,a):n=a}catch(e){j(n\|\|(n=new x),2,e)}var u}(),n}(c,function(n){return function(n){var o=function(){var o;if(null==(o=r)\|\|!o.ok){var i=e[n],c=i.ucan,u=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)t.indexOf(r=i[n])>=0\|\|(o[r]=e[r]);return o}(i,w);return Promise.resolve(function(e,t){try{return Promise.resolve(a(e,t))}catch(e){return Promise.reject(e)}}(c,u)).then(function(e){r=e})}t=1}();if(o&&o.then)return o.then(function(){})}(c[n])},function(){return t})}(e);return Promise.resolve(n&&n.then?n.then(function(){return r}):r)}catch(e){return Promise.reject(e)}},N=function(e,t,r,n){return function(o){try{var i;return e&&t&&null!=n&&null!=(i=n.or)&&i.includes(o.method)?Promise.resolve(C((r\|\|[]).map(function(r){return{ucan:e,audience:t,requiredCapabilities:[r]}}))):Promise.resolve(a(e,{audience:t,requiredCapabilities:r}))}catch(e){return Promise.reject(e)}}},R=function(t,r){return function(n){try{var i,a=function(a){return i?a:Promise.resolve(S(n)).then(function(i){var a;if(n=i,""===t)return n;if(null!=r&&r.adminPass&&n.params.admin_pass)return n;var l=n.app.get("authentication"),p={ok:!1,value:[]},h=o({secretKey:l.secret}).did(),v=n.app.get("authentication"),f=(t\|\|[]).map(function(e){var t={defaultScheme:v.defaultScheme,defaultHierPart:v.defaultHierPart};return{capability:Array.isArray(e)?u({with:{scheme:v.defaultScheme,hierPart:v.defaultHierPart},can:{namespace:e[0],segments:"string"==typeof e[1]?[e[1]]:e[1]}},t):u(e,t),rootIssuer:h}}),d=e(n.params,v.client_ucan),m=e(n.params,v.ucan_aud);if(f.length?p=N(d,m,f,r):p.ok=!0,null!=(a=p)&&a.ok)return n;var y=function(){var t;if(null==(t=p)\|\|!t.ok){var o=!1,i=[];f.forEach(function(t,r){var n=(e(t,"capability.can.namespace")\|\|"").split(":");n[1]&&(t=c(t,"capability.can.namespace",n[0]),o=!0),i.push(t)}),o&&(p=N(d,m,f,r))}if(p.ok)return n;throw console.error("Ucan capabilities requirements not met: ",p,n.type,n.path),new Error("Missing proper capabilities for this action: "+n.type+": "+n.path+" - "+n.method)},g=r\|\|{creatorPass:!1},P=g.creatorPass,_=g.loginPass,w=function(){if(P&&(""===P\|\|P.includes(n.method))\|\|null!=_&&_.length&&(""===_[1]\|\|_[1].includes(n.method)))return Promise.resolve(new b(n.path,n,{skipJoins:!0}).get(n.id)).then(function(t){var r,o;if(P)p.ok=(null==t\|\|null==(r=t.createdBy)?void 0:r.login)===((null==(o=n.login)?void 0:o._id)\|\|"***");else if(_){var i,c=s(_[0].map(function(r){return e(t,r)}));p.ok=c.filter(function(e){return!!e}).includes(null==(i=n.login)?void 0:i._id)}})}();return w&&w.then?w.then(y):y()})},l=function(){if("$"===t)return Promise.resolve(E(n)).then(function(e){return i=1,e})}();return Promise.resolve(l&&l.then?l.then(a):a(l))}catch(e){return Promise.reject(e)}}},q=function(e,t){return function(r){try{var n=r.app.get("authentication"),o=r.auth[n.entity];if(o&&(r=c(r,[n.core_path,n.entity],o)),"before"===r.type){var i=r.method;return Promise.resolve(e[i]\|\|e.all?R(e[i]\|\|e.all,t)(r):r)}return Promise.resolve(r)}catch(e){return Promise.reject(e)}}},I=function(){return function(c){try{var u=c.data,s=u.add,h=void 0===s?[]:s,f=u.remove,d=void 0===f?[]:f;if(!(null!=h&&h.length\|\|null!=d&&d.length))throw new Error("No new capabilities passed");var m=c.app.get("authentication"),y=m.secret,g=m.ucan_aud,P=o({secretKey:y}).did(),_=l([].concat(h,d));return Promise.resolve(a(c.params.login.ucan,{audience:e(c.params,g),requiredCapabilities:_.map(function(e){return{capability:e,rootIssuer:P}})})).then(function(a){if(null==a\|\|!a.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");var u=c.id,s=c.data.service\|\|"logins",f=c.data.path\|\|"ucan";return Promise.resolve(new b(s,c,{skipJoins:!0}).get(u)).then(function(a){var m=n(e(a,f)).payload,g=m.aud,P=m.att,_=m.prf,w=[].concat(P);return null!=d&&d.length&&(w=p(d,P)),null!=h&&h.length&&(w=l([].concat(P,h))),Promise.resolve(i(v({issuer:o({secretKey:y}),audience:g,proofs:_},c.data,{capabilities:w}))).then(function(e){var n=r(e);return Promise.resolve(t(n)).then(function(e){var t;if(!e)throw new Error("Invalid ucan generated when updating");return Promise.resolve(new b(s,c).patch(u,(t={},t[f]=n,t))).then(function(e){return c.result={raw:c.data,encoded:n,subject:e},c})})})})})}catch(e){return Promise.reject(e)}}};export{b as CoreCall,P as NotAuthError,q as allUcanAuth,O as anyAuth,S as bareAuth,_ as genAuthService,k as noThrow,E as noThrowAuth,C as orVerifyLoop,R as ucanAuth,I as updateUcan,N as verifyAgainstReqs};

package/lib/index.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{_get as t,~~_set~~ as e,~~verifyUcan~~ as a,encodeKeyPair as i,~~genCapability~~ as n,~~_flatten~~ as r,~~stackAbilities~~ as c,~~parseUcan~~ as s,~~reduceAbilities~~ as o,~~buildUcan~~ as p,~~ucanToken~~ as h,~~validateUcan~~ as u}from"symbol-ucan";import{authenticate as l}from"@feathersjs/authentication";function d(){return d=Object.assign?Object.assign.bind():function(t){for(var e=1;e<arguments.length;e++){var a=arguments[e];for(var i in a)Object.prototype.hasOwnProperty.call(a,i)&&(t[i]=a[i])}return t},d.apply(this,arguments)}function v(t,e){if(null==t)return{};var a,i,n={},r=Object.keys(t);for(i=0;i<r.length;i++)e.indexOf(a=r[i])>=0\|\|(n[a]=t[a]);return n}class g extends Error{constructor(t){super(t)}}const y=(t,e)=>{};class f{constructor(t,e,a){var i;this.context=void 0,this.service=void 0,this.core=void 0,this.service=t,this.context=e,this.core=d({},null==(i=e.params)?void 0:i.core,a)}async get(t,e={}){var a;const{core_path:i}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service).get(t,d({},e,{[i]:this.core}))}async find(t={}){var e;const{core_path:a}=this.context.app.get("authentication");return null==(e=this.context.app)?void 0:e.service(this.service).find(d({},t,{[a]:this.core}))}async create(t,e={}){var a;const{core_path:i}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service).create(t,d({},e,{[i]:this.core}))}async patch(t,e,a={}){var i;const{core_path:n}=this.context.app.get("authentication");return null==(i=this.context.app)?void 0:i.service(this.service).patch(t,e,d({},a,{[n]:this.core}))}async update(t,e,a={}){var i;const{core_path:n}=this.context.app.get("authentication");return null==(i=this.context.app)?void 0:i.service(this.service).update(t,e,d({},a,{[n]:this.core}))}async remove(t,e={}){var a;const{core_path:i}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service).remove(t,d({},e,{[i]:this.core}))}async _get(t,e={}){var a;const{core_path:i}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service)._get(t,d({},e,{[i]:this.core}))}async _find(t={}){var e;const{core_path:a}=this.context.app.get("authentication");return null==(e=this.context.app)?void 0:e.service(this.service)._find(d({},t,{[a]:this.core}))}async _create(t,e={}){var a;const{core_path:i}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service)._create(t,d({},e,{[i]:this.core}))}async _patch(t,e,a={}){var i;const{core_path:n}=this.context.app.get("authentication");return null==(i=this.context.app)?void 0:i.service(this.service)._patch(t,e,d({},a,{[n]:this.core}))}async _update(t,e,a={}){var i;const{core_path:n}=this.context.app.get("authentication");return null==(i=this.context.app)?void 0:i.service(this.service)._update(t,e,d({},a,{[n]:this.core}))}async _remove(t,e={}){var a;const{core_path:i}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service)._remove(t,d({},e,{[i]:this.core}))}}const m=["ucan"],_="",w="$",x=async a=>{const i=a.app.get("authentication"),n=t(a,["auth",i.entity]);return n&&(a=e(a,[i.core_path,i.entity],n)),a=await l("jwt")(a).catch(t=>(console.error("got error in no throw auth",t),a))},b=async a=>{const i=a.app.get("authentication"),n=t(a,["auth",i.entity]);return n&&(a=e(a,[i.core_path,i.entity],n)),l("jwt")(a)},k=async t=>{let e={ok:!1,value:[]};const i=async(t,e)=>await a(t,e);for(const a in t){var n;if(null!=(n=e)&&n.ok)break;{const n=t[a],{ucan:r}=n,c=v(n,m);e=await i(r,c)}}return e},P=(t,e,i,n)=>async r=>{var c;return t&&e&&null!=n&&null!=(c=n.or)&&c.includes(r.method)?await k((i\|\|[]).map(a=>({ucan:t,audience:e,requiredCapabilities:[a]}))):await a(t,{audience:e,requiredCapabilities:i})},j=(a,c)=>async s=>{var o;if("$"===a)return await x(s);if(s=await b(s),""===a)return s;if(null!=c&&c.adminPass&&s.params.admin_pass)return s;const{secret:p}=s.app.get("authentication");let h={ok:!1,value:[]};const u=i({secretKey:p}).did(),l=s.app.get("authentication"),d=(a\|\|[]).map(t=>{const e={defaultScheme:l.defaultScheme,defaultHierPart:l.defaultHierPart};return{capability:Array.isArray(t)?n({with:{scheme:l.defaultScheme,hierPart:l.defaultHierPart},can:{namespace:t[0],segments:"string"==typeof t[1]?[t[1]]:t[1]}},e):n(t,e),rootIssuer:u}}),v=t(s.params,l.client_ucan),g=t(s.params,l.ucan_aud);if(d.length?h=P(v,g,d,c):h.ok=!0,null!=(o=h)&&o.ok)return s;{var y;const{creatorPass:a,loginPass:i}=c\|\|{creatorPass:!1};if(a&&(""===a\|\|a.includes(s.method))\|\|null!=i&&i.length&&(""===i[1]\|\|i[1].includes(s.method))){const e=await new f(s.path,s,{skipJoins:!0}).get(s.id);var m,_;if(a)h.ok=(null==e\|\|null==(m=e.createdBy)?void 0:m.login)===((null==(_=s.login)?void 0:_._id)\|\|"***");else if(i){var w;const a=r(i[0].map(a=>t(e,a)));h.ok=a.filter(t=>!!t).includes(null==(w=s.login)?void 0:w._id)}}if(null==(y=h)\|\|!y.ok){let a=!1;d.forEach((i,n)=>{const r=(t(i,"capability.can.namespace")\|\|"").split(":");r[1]&&(i=e(i,"capability.can.namespace",r[0]),a=!0)}),a&&(h=P(v,g,d,c))}if(h.ok)return s;throw console.error("Ucan capabilities requirements not met: ",h,s.type,s.path),new Error("Missing proper capabilities for this action: "+s.type+": "+s.path+" - "+s.method)}},E=(t,a)=>async i=>{const n=i.app.get("authentication"),r=i.auth[n.entity];if(r&&(i=e(i,[n.core_path,n.entity],r)),"before"===i.type){const{method:e}=i;return t[e]\|\|t.all?j(t[e]\|\|t.all,a)(i):i}return i},O=()=>async e=>{const{add:n=[],remove:r=[]}=e.data;if(!(null!=n&&n.length\|\|null!=r&&r.length))throw new Error("No new capabilities passed");const{secret:l,ucan_aud:v}=e.app.get("authentication"),g=i({secretKey:l}).did(),y=c([...n,...r]),m=await a(e.params.login.ucan,{audience:t(e.params,v),requiredCapabilities:y.map(t=>({capability:t,rootIssuer:g}))});if(null==m\|\|!m.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");const _=e.id,w=e.data.service\|\|"logins",x=e.data.path\|\|"ucan",b=await new f(w,e,{skipJoins:!0}).get(_),k=s(t(b,x)),{aud:P,att:j,prf:E}=k.payload;let O=[...j];null!=r&&r.length&&(O=o(r,j)),null!=n&&n.length&&(O=c([...j,...n]));const q=await p(d({issuer:i({secretKey:l}),audience:P,proofs:E},e.data,{capabilities:O})),C=h(q);if(!await u(C))throw new Error("Invalid ucan generated when updating");const H=await new f(w,e).patch(_,{[x]:C});return e.result={raw:e.data,encoded:C,subject:H},e};export{f as CoreCall,g as NotAuthError,E as allUcanAuth,_ as anyAuth,b as bareAuth,y as genAuthService,w as noThrow,x as noThrowAuth,k as orVerifyLoop,j as ucanAuth,O as updateUcan,P as verifyAgainstReqs};
1	+ import{_get as t,validateUcan as e,parseUcan as a,encodeKeyPair as n,buildUcan as i,ucanToken as r,_set as c,verifyUcan as s,genCapability as o,_flatten as u,stackAbilities as h,reduceAbilities as p}from"symbol-ucan";import{authenticate as l}from"@feathersjs/authentication";function d(){return d=Object.assign?Object.assign.bind():function(t){for(var e=1;e<arguments.length;e++){var a=arguments[e];for(var n in a)Object.prototype.hasOwnProperty.call(a,n)&&(t[n]=a[n])}return t},d.apply(this,arguments)}function v(t,e){if(null==t)return{};var a,n,i={},r=Object.keys(t);for(n=0;n<r.length;n++)e.indexOf(a=r[n])>=0\|\|(i[a]=t[a]);return i}class g extends Error{constructor(t){super(t)}}const f=(c,s)=>class extends c{constructor(t,e="authentication",a={}){super(t,e,a),this.app=t}async create(c,o){var u;const h=(null==s?void 0:s.NotAuthenticated)\|\|g,{entity:p,service:l,ucan_path:v="ucan"}=this.app.get("authentication"),f=(null==(u=o)?void 0:u.authStrategies)\|\|this.configuration.authStrategies;if(o\|\|(o={}),!f.length)throw new h("No authentication strategies allowed for creating a JWT (`authStrategies`)");const y=await this.authenticate(c,o,...f).catch(t=>{throw new Error(t.message)});if(y.accessToken)return y;const w=c.did\|\|t(y,[p,"did"]);let m=c.ucan\|\|t(y,[p,"ucan"]);if(!w)throw new Error("No did audience provided");if(!m)throw new Error("No ucan provided to authentication call");if(!await e(m).catch(t=>{console.log("Could not validate ucan: ",t.message);const e={code:0,message:"Unknown Issue Validating Ucan"};return t.message.indexOf("Expired.")>-1&&(e.code=1,e.message="Expired Ucan"),console.warn("Could not validate ucan",m,e.message),null})){const t=a(m);let{secret:e}=this.app.get("authentication");const c=n({secretKey:e});m=await i({audience:t.payload.aud,issuer:c,capabilities:t.payload.att}),o.admin_pass=!0,await this.app.service(l).patch(y[p]._id,{[v]:r(m)},d({},o))}const _=r(m);return d({accessToken:_},y,{authentication:d({},y.authentication,{payload:_})})}};class y{constructor(t,e,a){var n;this.context=void 0,this.service=void 0,this.core=void 0,this.service=t,this.context=e,this.core=d({},null==(n=e.params)?void 0:n.core,a)}async get(t,e={}){var a;const{core_path:n}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service).get(t,d({},e,{[n]:this.core}))}async find(t={}){var e;const{core_path:a}=this.context.app.get("authentication");return null==(e=this.context.app)?void 0:e.service(this.service).find(d({},t,{[a]:this.core}))}async create(t,e={}){var a;const{core_path:n}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service).create(t,d({},e,{[n]:this.core}))}async patch(t,e,a={}){var n;const{core_path:i}=this.context.app.get("authentication");return null==(n=this.context.app)?void 0:n.service(this.service).patch(t,e,d({},a,{[i]:this.core}))}async update(t,e,a={}){var n;const{core_path:i}=this.context.app.get("authentication");return null==(n=this.context.app)?void 0:n.service(this.service).update(t,e,d({},a,{[i]:this.core}))}async remove(t,e={}){var a;const{core_path:n}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service).remove(t,d({},e,{[n]:this.core}))}async _get(t,e={}){var a;const{core_path:n}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service)._get(t,d({},e,{[n]:this.core}))}async _find(t={}){var e;const{core_path:a}=this.context.app.get("authentication");return null==(e=this.context.app)?void 0:e.service(this.service)._find(d({},t,{[a]:this.core}))}async _create(t,e={}){var a;const{core_path:n}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service)._create(t,d({},e,{[n]:this.core}))}async _patch(t,e,a={}){var n;const{core_path:i}=this.context.app.get("authentication");return null==(n=this.context.app)?void 0:n.service(this.service)._patch(t,e,d({},a,{[i]:this.core}))}async _update(t,e,a={}){var n;const{core_path:i}=this.context.app.get("authentication");return null==(n=this.context.app)?void 0:n.service(this.service)._update(t,e,d({},a,{[i]:this.core}))}async _remove(t,e={}){var a;const{core_path:n}=this.context.app.get("authentication");return null==(a=this.context.app)?void 0:a.service(this.service)._remove(t,d({},e,{[n]:this.core}))}}const w=["ucan"],m="",_="$",x=async e=>{const a=e.app.get("authentication"),n=t(e,["auth",a.entity]);return n&&(e=c(e,[a.core_path,a.entity],n)),e=await l("jwt")(e).catch(t=>(console.error("got error in no throw auth",t),e))},b=async e=>{const a=e.app.get("authentication"),n=t(e,["auth",a.entity]);return n&&(e=c(e,[a.core_path,a.entity],n)),l("jwt")(e)},k=async t=>{let e={ok:!1,value:[]};const a=async(t,e)=>await s(t,e);for(const i in t){var n;if(null!=(n=e)&&n.ok)break;{const n=t[i],{ucan:r}=n,c=v(n,w);e=await a(r,c)}}return e},E=(t,e,a,n)=>async i=>{var r;return t&&e&&null!=n&&null!=(r=n.or)&&r.includes(i.method)?await k((a\|\|[]).map(a=>({ucan:t,audience:e,requiredCapabilities:[a]}))):await s(t,{audience:e,requiredCapabilities:a})},P=(e,a)=>async i=>{var r;if("$"===e)return await x(i);if(i=await b(i),""===e)return i;if(null!=a&&a.adminPass&&i.params.admin_pass)return i;const{secret:s}=i.app.get("authentication");let h={ok:!1,value:[]};const p=n({secretKey:s}).did(),l=i.app.get("authentication"),d=(e\|\|[]).map(t=>{const e={defaultScheme:l.defaultScheme,defaultHierPart:l.defaultHierPart};return{capability:Array.isArray(t)?o({with:{scheme:l.defaultScheme,hierPart:l.defaultHierPart},can:{namespace:t[0],segments:"string"==typeof t[1]?[t[1]]:t[1]}},e):o(t,e),rootIssuer:p}}),v=t(i.params,l.client_ucan),g=t(i.params,l.ucan_aud);if(d.length?h=E(v,g,d,a):h.ok=!0,null!=(r=h)&&r.ok)return i;{var f;const{creatorPass:e,loginPass:n}=a\|\|{creatorPass:!1};if(e&&(""===e\|\|e.includes(i.method))\|\|null!=n&&n.length&&(""===n[1]\|\|n[1].includes(i.method))){const a=await new y(i.path,i,{skipJoins:!0}).get(i.id);var w,m;if(e)h.ok=(null==a\|\|null==(w=a.createdBy)?void 0:w.login)===((null==(m=i.login)?void 0:m._id)\|\|"***");else if(n){var _;const e=u(n[0].map(e=>t(a,e)));h.ok=e.filter(t=>!!t).includes(null==(_=i.login)?void 0:_._id)}}if(null==(f=h)\|\|!f.ok){let e=!1;d.forEach((a,n)=>{const i=(t(a,"capability.can.namespace")\|\|"").split(":");i[1]&&(a=c(a,"capability.can.namespace",i[0]),e=!0)}),e&&(h=E(v,g,d,a))}if(h.ok)return i;throw console.error("Ucan capabilities requirements not met: ",h,i.type,i.path),new Error("Missing proper capabilities for this action: "+i.type+": "+i.path+" - "+i.method)}},j=(t,e)=>async a=>{const n=a.app.get("authentication"),i=a.auth[n.entity];if(i&&(a=c(a,[n.core_path,n.entity],i)),"before"===a.type){const{method:n}=a;return t[n]\|\|t.all?P(t[n]\|\|t.all,e)(a):a}return a},O=()=>async c=>{const{add:o=[],remove:u=[]}=c.data;if(!(null!=o&&o.length\|\|null!=u&&u.length))throw new Error("No new capabilities passed");const{secret:l,ucan_aud:v}=c.app.get("authentication"),g=n({secretKey:l}).did(),f=h([...o,...u]),w=await s(c.params.login.ucan,{audience:t(c.params,v),requiredCapabilities:f.map(t=>({capability:t,rootIssuer:g}))});if(null==w\|\|!w.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");const m=c.id,_=c.data.service\|\|"logins",x=c.data.path\|\|"ucan",b=await new y(_,c,{skipJoins:!0}).get(m),k=a(t(b,x)),{aud:E,att:P,prf:j}=k.payload;let O=[...P];null!=u&&u.length&&(O=p(u,P)),null!=o&&o.length&&(O=h([...P,...o]));const S=await i(d({issuer:n({secretKey:l}),audience:E,proofs:j},c.data,{capabilities:O})),C=r(S);if(!await e(C))throw new Error("Invalid ucan generated when updating");const N=await new y(_,c).patch(m,{[x]:C});return c.result={raw:c.data,encoded:C,subject:N},c};export{y as CoreCall,g as NotAuthError,j as allUcanAuth,m as anyAuth,b as bareAuth,f as genAuthService,_ as noThrow,x as noThrowAuth,k as orVerifyLoop,P as ucanAuth,O as updateUcan,E as verifyAgainstReqs};

package/lib/index.umd.js CHANGED Viewed

	@@ -1 +1 @@
1	- !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports,require("symbol-ucan"),require("@feathersjs/authentication")):"function"==typeof define&&define.amd?define(["exports","symbol-ucan","@feathersjs/authentication"],t):t((e\|\|self).feathersUcan={},e.symbolUcan,e.authentication)}(this,function(e,t,r){function n(){return n=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},n.apply(this,arguments)}function o(e){return o=Object.setPrototypeOf?Object.getPrototypeOf.bind():function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},o(e)}function i(e,t){return i=Object.setPrototypeOf?Object.setPrototypeOf.bind():function(e,t){return e.__proto__=t,e},i(e,t)}function c(e,t,r){return c=function(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}()?Reflect.construct.bind():function(e,t,r){var n=[null];n.push.apply(n,t);var o=new(Function.bind.apply(e,n));return r&&i(o,r.prototype),o},c.apply(null,arguments)}function a(e){var t="function"==typeof Map?new Map:void 0;return a=function(e){if(null===e\|\|-1===Function.toString.call(e).indexOf("[native code]"))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==t){if(t.has(e))return t.get(e);t.set(e,r)}function r(){return c(e,arguments,o(this).constructor)}return r.prototype=Object.create(e.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),i(r,e)},a(e)}var u=/#__PURE__/function(e){var t,r;function n(t){return e.call(this,t)\|\|this}return r=e,(t=n).prototype=Object.create(r.prototype),t.prototype.constructor=t,i(t,r),n}(/#__PURE__/a(Error)),s=/#__PURE__/function(){function e(e,t,r){var o;this.context=void 0,this.service=void 0,this.core=void 0,this.service=e,this.context=t,this.core=n({},null==(o=t.params)?void 0:o.core,r)}var t=e.prototype;return t.get=function(e,t){void 0===t&&(t={});try{var r,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(r=i.context.app)?void 0:r.service(i.service).get(e,n({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.find=function(e){void 0===e&&(e={});try{var t,r,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(t=o.context.app)?void 0:t.service(o.service).find(n({},e,((r={})[i]=o.core,r))))}catch(e){return Promise.reject(e)}},t.create=function(e,t){void 0===t&&(t={});try{var r,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(r=i.context.app)?void 0:r.service(i.service).create(e,n({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t.patch=function(e,t,r){void 0===r&&(r={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service).patch(e,t,n({},r,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t.update=function(e,t,r){void 0===r&&(r={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service).update(e,t,n({},r,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t.remove=function(e,t){void 0===t&&(t={});try{var r,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(r=i.context.app)?void 0:r.service(i.service).remove(e,n({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._get=function(e,t){void 0===t&&(t={});try{var r,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(r=i.context.app)?void 0:r.service(i.service)._get(e,n({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._find=function(e){void 0===e&&(e={});try{var t,r,o=this,i=o.context.app.get("authentication").core_path;return Promise.resolve(null==(t=o.context.app)?void 0:t.service(o.service)._find(n({},e,((r={})[i]=o.core,r))))}catch(e){return Promise.reject(e)}},t._create=function(e,t){void 0===t&&(t={});try{var r,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(r=i.context.app)?void 0:r.service(i.service)._create(e,n({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},t._patch=function(e,t,r){void 0===r&&(r={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service)._patch(e,t,n({},r,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t._update=function(e,t,r){void 0===r&&(r={});try{var o,i,c=this,a=c.context.app.get("authentication").core_path;return Promise.resolve(null==(o=c.context.app)?void 0:o.service(c.service)._update(e,t,n({},r,((i={})[a]=c.core,i))))}catch(e){return Promise.reject(e)}},t._remove=function(e,t){void 0===t&&(t={});try{var r,o,i=this,c=i.context.app.get("authentication").core_path;return Promise.resolve(null==(r=i.context.app)?void 0:r.service(i.service)._remove(e,n({},t,((o={})[c]=i.core,o))))}catch(e){return Promise.reject(e)}},e}(),l=["ucan"];function p(e,t,r){if(!e.s){if(r instanceof f){if(!r.s)return void(r.o=p.bind(null,e,t));1&t&&(t=r.s),r=r.v}if(r&&r.then)return void r.then(p.bind(null,e,t),p.bind(null,e,2));e.s=t,e.v=r;var n=e.o;n&&n(e)}}const f=/#__PURE__/function(){function e(){}return e.prototype.then=function(t,r){const n=new e,o=this.s;if(o){const e=1&o?t:r;if(e){try{p(n,1,e(this.v))}catch(e){p(n,2,e)}return n}return this}return this.o=function(e){try{const o=e.v;1&e.s?p(n,1,t?t(o):o):r?p(n,1,r(o)):p(n,2,o)}catch(e){p(n,2,e)}},n},e}();var h=function(e){try{var n=e.app.get("authentication"),o=t._get(e,["auth",n.entity]);return o&&(e=t._set(e,[n.core_path,n.entity],o)),Promise.resolve(r.authenticate("jwt")(e).catch(function(t){return console.error("got error in no throw auth",t),e})).then(function(t){return e=t})}catch(e){return Promise.reject(e)}},v=function(e){try{var n=e.app.get("authentication"),o=t._get(e,["auth",n.entity]);return o&&(e=t._set(e,[n.core_path,n.entity],o)),Promise.resolve(r.authenticate("jwt")(e))}catch(e){return Promise.reject(e)}},d=function(e){try{var r,n={ok:!1,value:[]},o=function(o,i,c){var a=[];for(var u in o)a.push(u);return function(e,t,r){var n,o,i=-1;return function c(a){try{for(;++i<e.length&&(!r\|\|!r());)if((a=t(i))&&a.then){if(!((u=a)instanceof f&&1&u.s))return void a.then(c,o\|\|(o=p.bind(null,n=new f,2)));a=a.v}n?p(n,1,a):n=a}catch(e){p(n\|\|(n=new f),2,e)}var u}(),n}(a,function(o){return function(o){var i=function(){var i;if(null==(i=n)\|\|!i.ok){var c=e[o],a=c.ucan,u=function(e,t){if(null==e)return{};var r,n,o={},i=Object.keys(e);for(n=0;n<i.length;n++)t.indexOf(r=i[n])>=0\|\|(o[r]=e[r]);return o}(c,l);return Promise.resolve(function(e,r){try{return Promise.resolve(t.verifyUcan(e,r))}catch(e){return Promise.reject(e)}}(a,u)).then(function(e){n=e})}r=1}();if(i&&i.then)return i.then(function(){})}(a[o])},function(){return r})}(e);return Promise.resolve(o&&o.then?o.then(function(){return n}):n)}catch(e){return Promise.reject(e)}},m=function(e,r,n,o){return function(i){try{var c;return e&&r&&null!=o&&null!=(c=o.or)&&c.includes(i.method)?Promise.resolve(d((n\|\|[]).map(function(t){return{ucan:e,audience:r,requiredCapabilities:[t]}}))):Promise.resolve(t.verifyUcan(e,{audience:r,requiredCapabilities:n}))}catch(e){return Promise.reject(e)}}},y=function(e,r){return function(n){try{var o,i=function(i){return o?i:Promise.resolve(v(n)).then(function(o){var i;if(n=o,""===e)return n;if(null!=r&&r.adminPass&&n.params.admin_pass)return n;var c=n.app.get("authentication"),a={ok:!1,value:[]},u=t.encodeKeyPair({secretKey:c.secret}).did(),l=n.app.get("authentication"),p=(e\|\|[]).map(function(e){var r={defaultScheme:l.defaultScheme,defaultHierPart:l.defaultHierPart};return{capability:Array.isArray(e)?t.genCapability({with:{scheme:l.defaultScheme,hierPart:l.defaultHierPart},can:{namespace:e[0],segments:"string"==typeof e[1]?[e[1]]:e[1]}},r):t.genCapability(e,r),rootIssuer:u}}),f=t._get(n.params,l.client_ucan),h=t._get(n.params,l.ucan_aud);if(p.length?a=m(f,h,p,r):a.ok=!0,null!=(i=a)&&i.ok)return n;var v=function(){var e;if(null==(e=a)\|\|!e.ok){var o=!1,i=[];p.forEach(function(e,r){var n=(t._get(e,"capability.can.namespace")\|\|"").split(":");n[1]&&(e=t._set(e,"capability.can.namespace",n[0]),o=!0),i.push(e)}),o&&(a=m(f,h,p,r))}if(a.ok)return n;throw console.error("Ucan capabilities requirements not met: ",a,n.type,n.path),new Error("Missing proper capabilities for this action: "+n.type+": "+n.path+" - "+n.method)},d=r\|\|{creatorPass:!1},y=d.creatorPass,P=d.loginPass,g=function(){if(y&&(""===y\|\|y.includes(n.method))\|\|null!=P&&P.length&&(""===P[1]\|\|P[1].includes(n.method)))return Promise.resolve(new s(n.path,n,{skipJoins:!0}).get(n.id)).then(function(e){var r,o;if(y)a.ok=(null==e\|\|null==(r=e.createdBy)?void 0:r.login)===((null==(o=n.login)?void 0:o._id)\|\|"*");else if(P){var i,c=t._flatten(P[0].map(function(r){return t._get(e,r)}));a.ok=c.filter(function(e){return!!e}).includes(null==(i=n.login)?void 0:i._id)}})}();return g&&g.then?g.then(v):v()})},c=function(){if("$"===e)return Promise.resolve(h(n)).then(function(e){return o=1,e})}();return Promise.resolve(c&&c.then?c.then(i):i(c))}catch(e){return Promise.reject(e)}}};e.CoreCall=s,e.NotAuthError=u,e.allUcanAuth=function(e,r){return function(n){try{var o=n.app.get("authentication"),i=n.auth[o.entity];if(i&&(n=t._set(n,[o.core_path,o.entity],i)),"before"===n.type){var c=n.method;return Promise.resolve(e[c]\|\|e.all?y(e[c]\|\|e.all,r)(n):n)}return Promise.resolve(n)}catch(e){return Promise.reject(e)}}},e.anyAuth="",e.bareAuth=v,e.genAuthService=function(e,t){},e.noThrow="$",e.noThrowAuth=h,e.orVerifyLoop=d,e.ucanAuth=y,e.updateUcan=function(){return function(e){try{var r=e.data,o=r.add,i=void 0===o?[]:o,c=r.remove,a=void 0===c?[]:c;if(!(null!=i&&i.length\|\|null!=a&&a.length))throw new Error("No new capabilities passed");var u=e.app.get("authentication"),l=u.secret,p=u.ucan_aud,f=t.encodeKeyPair({secretKey:l}).did(),h=t.stackAbilities([].concat(i,a));return Promise.resolve(t.verifyUcan(e.params.login.ucan,{audience:t._get(e.params,p),requiredCapabilities:h.map(function(e){return{capability:e,rootIssuer:f}})})).then(function(r){if(null==r\|\|!r.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");var o=e.id,c=e.data.service\|\|"logins",u=e.data.path\|\|"ucan";return Promise.resolve(new s(c,e,{skipJoins:!0}).get(o)).then(function(r){var p=t.parseUcan(t._get(r,u)).payload,f=p.aud,h=p.att,v=p.prf,d=[].concat(h);return null!=a&&a.length&&(d=t.reduceAbilities(a,h)),null!=i&&i.length&&(d=t.stackAbilities([].concat(h,i))),Promise.resolve(t.buildUcan(n({issuer:t.encodeKeyPair({secretKey:l}),audience:f,proofs:v},e.data,{capabilities:d}))).then(function(r){var n=t.ucanToken(r);return Promise.resolve(t.validateUcan(n)).then(function(t){var r;if(!t)throw new Error("Invalid ucan generated when updating");return Promise.resolve(new s(c,e).patch(o,(r={},r[u]=n,r))).then(function(t){return e.result={raw:e.data,encoded:n,subject:t},e})})})})})}catch(e){return Promise.reject(e)}}},e.verifyAgainstReqs=m});
1	+ !function(e,t){"object"==typeof exports&&"undefined"!=typeof module?t(exports,require("symbol-ucan"),require("@feathersjs/authentication")):"function"==typeof define&&define.amd?define(["exports","symbol-ucan","@feathersjs/authentication"],t):t((e\|\|self).feathersUcan={},e.symbolUcan,e.authentication)}(this,function(e,t,r){function n(){return n=Object.assign?Object.assign.bind():function(e){for(var t=1;t<arguments.length;t++){var r=arguments[t];for(var n in r)Object.prototype.hasOwnProperty.call(r,n)&&(e[n]=r[n])}return e},n.apply(this,arguments)}function i(e,t){e.prototype=Object.create(t.prototype),e.prototype.constructor=e,a(e,t)}function o(e){return o=Object.setPrototypeOf?Object.getPrototypeOf.bind():function(e){return e.__proto__\|\|Object.getPrototypeOf(e)},o(e)}function a(e,t){return a=Object.setPrototypeOf?Object.setPrototypeOf.bind():function(e,t){return e.__proto__=t,e},a(e,t)}function c(e,t,r){return c=function(){if("undefined"==typeof Reflect\|\|!Reflect.construct)return!1;if(Reflect.construct.sham)return!1;if("function"==typeof Proxy)return!0;try{return Boolean.prototype.valueOf.call(Reflect.construct(Boolean,[],function(){})),!0}catch(e){return!1}}()?Reflect.construct.bind():function(e,t,r){var n=[null];n.push.apply(n,t);var i=new(Function.bind.apply(e,n));return r&&a(i,r.prototype),i},c.apply(null,arguments)}function u(e){var t="function"==typeof Map?new Map:void 0;return u=function(e){if(null===e\|\|-1===Function.toString.call(e).indexOf("[native code]"))return e;if("function"!=typeof e)throw new TypeError("Super expression must either be null or a function");if(void 0!==t){if(t.has(e))return t.get(e);t.set(e,r)}function r(){return c(e,arguments,o(this).constructor)}return r.prototype=Object.create(e.prototype,{constructor:{value:r,enumerable:!1,writable:!0,configurable:!0}}),a(r,e)},u(e)}var s=/#__PURE__/function(e){function t(t){return e.call(this,t)\|\|this}return i(t,e),t}(/#__PURE__/u(Error)),l=/#__PURE__/function(){function e(e,t,r){var i;this.context=void 0,this.service=void 0,this.core=void 0,this.service=e,this.context=t,this.core=n({},null==(i=t.params)?void 0:i.core,r)}var t=e.prototype;return t.get=function(e,t){void 0===t&&(t={});try{var r,i,o=this,a=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).get(e,n({},t,((i={})[a]=o.core,i))))}catch(e){return Promise.reject(e)}},t.find=function(e){void 0===e&&(e={});try{var t,r,i=this,o=i.context.app.get("authentication").core_path;return Promise.resolve(null==(t=i.context.app)?void 0:t.service(i.service).find(n({},e,((r={})[o]=i.core,r))))}catch(e){return Promise.reject(e)}},t.create=function(e,t){void 0===t&&(t={});try{var r,i,o=this,a=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).create(e,n({},t,((i={})[a]=o.core,i))))}catch(e){return Promise.reject(e)}},t.patch=function(e,t,r){void 0===r&&(r={});try{var i,o,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(i=a.context.app)?void 0:i.service(a.service).patch(e,t,n({},r,((o={})[c]=a.core,o))))}catch(e){return Promise.reject(e)}},t.update=function(e,t,r){void 0===r&&(r={});try{var i,o,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(i=a.context.app)?void 0:i.service(a.service).update(e,t,n({},r,((o={})[c]=a.core,o))))}catch(e){return Promise.reject(e)}},t.remove=function(e,t){void 0===t&&(t={});try{var r,i,o=this,a=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service).remove(e,n({},t,((i={})[a]=o.core,i))))}catch(e){return Promise.reject(e)}},t._get=function(e,t){void 0===t&&(t={});try{var r,i,o=this,a=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._get(e,n({},t,((i={})[a]=o.core,i))))}catch(e){return Promise.reject(e)}},t._find=function(e){void 0===e&&(e={});try{var t,r,i=this,o=i.context.app.get("authentication").core_path;return Promise.resolve(null==(t=i.context.app)?void 0:t.service(i.service)._find(n({},e,((r={})[o]=i.core,r))))}catch(e){return Promise.reject(e)}},t._create=function(e,t){void 0===t&&(t={});try{var r,i,o=this,a=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._create(e,n({},t,((i={})[a]=o.core,i))))}catch(e){return Promise.reject(e)}},t._patch=function(e,t,r){void 0===r&&(r={});try{var i,o,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(i=a.context.app)?void 0:i.service(a.service)._patch(e,t,n({},r,((o={})[c]=a.core,o))))}catch(e){return Promise.reject(e)}},t._update=function(e,t,r){void 0===r&&(r={});try{var i,o,a=this,c=a.context.app.get("authentication").core_path;return Promise.resolve(null==(i=a.context.app)?void 0:i.service(a.service)._update(e,t,n({},r,((o={})[c]=a.core,o))))}catch(e){return Promise.reject(e)}},t._remove=function(e,t){void 0===t&&(t={});try{var r,i,o=this,a=o.context.app.get("authentication").core_path;return Promise.resolve(null==(r=o.context.app)?void 0:r.service(o.service)._remove(e,n({},t,((i={})[a]=o.core,i))))}catch(e){return Promise.reject(e)}},e}(),p=["ucan"];function h(e,t,r){if(!e.s){if(r instanceof f){if(!r.s)return void(r.o=h.bind(null,e,t));1&t&&(t=r.s),r=r.v}if(r&&r.then)return void r.then(h.bind(null,e,t),h.bind(null,e,2));e.s=t,e.v=r;var n=e.o;n&&n(e)}}const f=/#__PURE__/function(){function e(){}return e.prototype.then=function(t,r){const n=new e,i=this.s;if(i){const e=1&i?t:r;if(e){try{h(n,1,e(this.v))}catch(e){h(n,2,e)}return n}return this}return this.o=function(e){try{const i=e.v;1&e.s?h(n,1,t?t(i):i):r?h(n,1,r(i)):h(n,2,i)}catch(e){h(n,2,e)}},n},e}();var v=function(e){try{var n=e.app.get("authentication"),i=t._get(e,["auth",n.entity]);return i&&(e=t._set(e,[n.core_path,n.entity],i)),Promise.resolve(r.authenticate("jwt")(e).catch(function(t){return console.error("got error in no throw auth",t),e})).then(function(t){return e=t})}catch(e){return Promise.reject(e)}},d=function(e){try{var n=e.app.get("authentication"),i=t._get(e,["auth",n.entity]);return i&&(e=t._set(e,[n.core_path,n.entity],i)),Promise.resolve(r.authenticate("jwt")(e))}catch(e){return Promise.reject(e)}},m=function(e){try{var r,n={ok:!1,value:[]},i=function(i,o,a){var c=[];for(var u in i)c.push(u);return function(e,t,r){var n,i,o=-1;return function a(c){try{for(;++o<e.length&&(!r\|\|!r());)if((c=t(o))&&c.then){if(!((u=c)instanceof f&&1&u.s))return void c.then(a,i\|\|(i=h.bind(null,n=new f,2)));c=c.v}n?h(n,1,c):n=c}catch(e){h(n\|\|(n=new f),2,e)}var u}(),n}(c,function(i){return function(i){var o=function(){var o;if(null==(o=n)\|\|!o.ok){var a=e[i],c=a.ucan,u=function(e,t){if(null==e)return{};var r,n,i={},o=Object.keys(e);for(n=0;n<o.length;n++)t.indexOf(r=o[n])>=0\|\|(i[r]=e[r]);return i}(a,p);return Promise.resolve(function(e,r){try{return Promise.resolve(t.verifyUcan(e,r))}catch(e){return Promise.reject(e)}}(c,u)).then(function(e){n=e})}r=1}();if(o&&o.then)return o.then(function(){})}(c[i])},function(){return r})}(e);return Promise.resolve(i&&i.then?i.then(function(){return n}):n)}catch(e){return Promise.reject(e)}},y=function(e,r,n,i){return function(o){try{var a;return e&&r&&null!=i&&null!=(a=i.or)&&a.includes(o.method)?Promise.resolve(m((n\|\|[]).map(function(t){return{ucan:e,audience:r,requiredCapabilities:[t]}}))):Promise.resolve(t.verifyUcan(e,{audience:r,requiredCapabilities:n}))}catch(e){return Promise.reject(e)}}},g=function(e,r){return function(n){try{var i,o=function(o){return i?o:Promise.resolve(d(n)).then(function(i){var o;if(n=i,""===e)return n;if(null!=r&&r.adminPass&&n.params.admin_pass)return n;var a=n.app.get("authentication"),c={ok:!1,value:[]},u=t.encodeKeyPair({secretKey:a.secret}).did(),s=n.app.get("authentication"),p=(e\|\|[]).map(function(e){var r={defaultScheme:s.defaultScheme,defaultHierPart:s.defaultHierPart};return{capability:Array.isArray(e)?t.genCapability({with:{scheme:s.defaultScheme,hierPart:s.defaultHierPart},can:{namespace:e[0],segments:"string"==typeof e[1]?[e[1]]:e[1]}},r):t.genCapability(e,r),rootIssuer:u}}),h=t._get(n.params,s.client_ucan),f=t._get(n.params,s.ucan_aud);if(p.length?c=y(h,f,p,r):c.ok=!0,null!=(o=c)&&o.ok)return n;var v=function(){var e;if(null==(e=c)\|\|!e.ok){var i=!1,o=[];p.forEach(function(e,r){var n=(t._get(e,"capability.can.namespace")\|\|"").split(":");n[1]&&(e=t._set(e,"capability.can.namespace",n[0]),i=!0),o.push(e)}),i&&(c=y(h,f,p,r))}if(c.ok)return n;throw console.error("Ucan capabilities requirements not met: ",c,n.type,n.path),new Error("Missing proper capabilities for this action: "+n.type+": "+n.path+" - "+n.method)},d=r\|\|{creatorPass:!1},m=d.creatorPass,g=d.loginPass,P=function(){if(m&&(""===m\|\|m.includes(n.method))\|\|null!=g&&g.length&&(""===g[1]\|\|g[1].includes(n.method)))return Promise.resolve(new l(n.path,n,{skipJoins:!0}).get(n.id)).then(function(e){var r,i;if(m)c.ok=(null==e\|\|null==(r=e.createdBy)?void 0:r.login)===((null==(i=n.login)?void 0:i._id)\|\|"*");else if(g){var o,a=t._flatten(g[0].map(function(r){return t._get(e,r)}));c.ok=a.filter(function(e){return!!e}).includes(null==(o=n.login)?void 0:o._id)}})}();return P&&P.then?P.then(v):v()})},a=function(){if("$"===e)return Promise.resolve(v(n)).then(function(e){return i=1,e})}();return Promise.resolve(a&&a.then?a.then(o):o(a))}catch(e){return Promise.reject(e)}}};e.CoreCall=l,e.NotAuthError=s,e.allUcanAuth=function(e,r){return function(n){try{var i=n.app.get("authentication"),o=n.auth[i.entity];if(o&&(n=t._set(n,[i.core_path,i.entity],o)),"before"===n.type){var a=n.method;return Promise.resolve(e[a]\|\|e.all?g(e[a]\|\|e.all,r)(n):n)}return Promise.resolve(n)}catch(e){return Promise.reject(e)}}},e.anyAuth="",e.bareAuth=d,e.genAuthService=function(e,r){/#__PURE__/return function(e){function o(t,r,n){var i;return void 0===r&&(r="authentication"),void 0===n&&(n={}),(i=e.call(this,t,r,n)\|\|this).app=t,i}return i(o,e),o.prototype.create=function(e,i){try{var o,a=this,c=(null==r?void 0:r.NotAuthenticated)\|\|s,u=a.app.get("authentication"),l=u.entity,p=u.service,h=u.ucan_path,f=void 0===h?"ucan":h,v=(null==(o=i)?void 0:o.authStrategies)\|\|a.configuration.authStrategies;if(i\|\|(i={}),!v.length)throw new c("No authentication strategies allowed for creating a JWT (`authStrategies`)");return Promise.resolve(a.authenticate.apply(a,[e,i].concat(v)).catch(function(e){throw new Error(e.message)})).then(function(r){if(r.accessToken)return r;var o=e.did\|\|t._get(r,[l,"did"]),c=e.ucan\|\|t._get(r,[l,"ucan"]);if(!o)throw new Error("No did audience provided");if(!c)throw new Error("No ucan provided to authentication call");return Promise.resolve(t.validateUcan(c).catch(function(e){console.log("Could not validate ucan: ",e.message);var t={code:0,message:"Unknown Issue Validating Ucan"};return e.message.indexOf("Expired.")>-1&&(t.code=1,t.message="Expired Ucan"),console.warn("Could not validate ucan",c,t.message),null})).then(function(e){function o(){var e=t.ucanToken(c);return n({accessToken:e},r,{authentication:n({},r.authentication,{payload:e})})}var u=function(){if(!e){var o=t.parseUcan(c),u=a.app.get("authentication"),s=t.encodeKeyPair({secretKey:u.secret});return Promise.resolve(t.buildUcan({audience:o.payload.aud,issuer:s,capabilities:o.payload.att})).then(function(e){var o;return c=e,i.admin_pass=!0,Promise.resolve(a.app.service(p).patch(r[l]._id,(o={},o[f]=t.ucanToken(c),o),n({},i))).then(function(){})})}}();return u&&u.then?u.then(o):o()})})}catch(e){return Promise.reject(e)}},o}(e)},e.noThrow="$",e.noThrowAuth=v,e.orVerifyLoop=m,e.ucanAuth=g,e.updateUcan=function(){return function(e){try{var r=e.data,i=r.add,o=void 0===i?[]:i,a=r.remove,c=void 0===a?[]:a;if(!(null!=o&&o.length\|\|null!=c&&c.length))throw new Error("No new capabilities passed");var u=e.app.get("authentication"),s=u.secret,p=u.ucan_aud,h=t.encodeKeyPair({secretKey:s}).did(),f=t.stackAbilities([].concat(o,c));return Promise.resolve(t.verifyUcan(e.params.login.ucan,{audience:t._get(e.params,p),requiredCapabilities:f.map(function(e){return{capability:e,rootIssuer:h}})})).then(function(r){if(null==r\|\|!r.ok)throw new Error("You don't have sufficient capabilities to grant those capabilities");var i=e.id,a=e.data.service\|\|"logins",u=e.data.path\|\|"ucan";return Promise.resolve(new l(a,e,{skipJoins:!0}).get(i)).then(function(r){var p=t.parseUcan(t._get(r,u)).payload,h=p.aud,f=p.att,v=p.prf,d=[].concat(f);return null!=c&&c.length&&(d=t.reduceAbilities(c,f)),null!=o&&o.length&&(d=t.stackAbilities([].concat(f,o))),Promise.resolve(t.buildUcan(n({issuer:t.encodeKeyPair({secretKey:s}),audience:h,proofs:v},e.data,{capabilities:d}))).then(function(r){var n=t.ucanToken(r);return Promise.resolve(t.validateUcan(n)).then(function(t){var r;if(!t)throw new Error("Invalid ucan generated when updating");return Promise.resolve(new l(a,e).patch(i,(r={},r[u]=n,r))).then(function(t){return e.result={raw:e.data,encoded:n,subject:t},e})})})})})}catch(e){return Promise.reject(e)}}},e.verifyAgainstReqs=y});

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "feathers-ucan",
-  "version": "0.0.1",
+  "version": "0.0.2",
   "description": "Ucan extension of feathers jwt auth",
   "source": "src/index.ts",
   "unpkg": "lib/index.umd.js",