lti-v1.0-node-library 1.0.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Jaakko Rajala
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,185 @@
+# lti-v1.0-node-library
+
+TypeScript library for LTI 1.0/1.1 integration with LMS platforms, including Basic Outcomes grade submission. Focused on LTI 1.0/1.1 support for platforms like older versions of A-Plus that don't support LTI 1.3.
+
+## Quick Start
+
+### Installation
+
+```bash
+npm install lti-v1.0-node-library
+```
+
+**Note:** The examples below use Express.js, but you can adapt the library to work with other Node.js frameworks. The library uses Express types for convenience, but the core functionality is framework-agnostic.
+
+### Express.js Example
+
+```typescript
+import express, { Request, Response } from 'express';
+import session from 'express-session';
+import { handleLti10Launch, submitGrade } from 'lti-v1.0-node-library';
+
+const app = express();
+app.use(express.urlencoded({ extended: true }));
+// SESSION_SECRET is for Express session encryption (separate from LTI consumer secret)
+app.use(session({ 
+  secret: process.env.SESSION_SECRET || 'your-session-secret', 
+  resave: true, 
+  saveUninitialized: true 
+}));
+
+// Set LTI environment variables (required for LTI authentication)
+// CONSUMER_KEY and CONSUMER_SECRET authenticate communication with your LMS
+process.env.CONSUMER_KEY = 'your-consumer-key';
+process.env.CONSUMER_SECRET = 'your-consumer-secret';
+
+// LTI launch endpoint
+app.post('/lti-launch', (req: Request, res: Response) => {
+  handleLti10Launch(req, res, {
+    onSuccess: (ltiData, userInfo, outcomeService) => {
+      // User is logged in, session data is stored in req.session
+      res.redirect('/app');
+    }
+  });
+});
+
+// Grade submission endpoint
+app.post('/submit-grade', async (req: Request, res: Response) => {
+  const outcomeService = req.session.outcomeService;
+  if (!outcomeService) {
+    return res.status(400).json({ error: 'Outcome service not available' });
+  }
+
+  const result = await submitGrade(outcomeService, req.body.grade, req.body.maxScore);
+  res.json(result);
+});
+```
+
+## Configuration
+
+### Environment Variables
+
+**Required:**
+
+```bash
+CONSUMER_KEY=your-consumer-key-from-lms
+CONSUMER_SECRET=your-consumer-secret-from-lms
+```
+
+**Why these are needed:**
+
+- **`CONSUMER_KEY`**: A unique identifier for your LTI tool in the LMS. The LMS sends this key with each launch request to identify which tool is being launched. It must match exactly what you configure in your LMS.
+
+- **`CONSUMER_SECRET`**: A shared secret used for OAuth 1.0 signature verification. The LMS signs launch requests using this secret, and your tool verifies the signature to ensure the request is authentic and hasn't been tampered with. It's also used when submitting grades back to the LMS.
+
+**Security Note:** These credentials authenticate communication between your LMS and your LTI tool. Keep them secure and never commit them to version control. Use environment variables or a secure secrets manager.
+
+### LMS Configuration (A-Plus Example)
+
+1. **Launch URL**: `http://your-server:port/lti-launch`
+2. **Consumer Key**: Must match your `CONSUMER_KEY` environment variable exactly
+3. **Consumer Secret**: Must match your `CONSUMER_SECRET` environment variable exactly
+4. **Privacy Notice URL**: `http://your-server:port/privacy` (mandatory for external services)
+5. **Enable**: "Send grades back to LMS" option (required for grade submission)
+
+### Privacy Notice URL
+
+**Required for external services:** A link to your service's privacy notice is mandatory for LTI tools outside your organization.
+
+- **Privacy Notice URL**: `http://your-server:port/privacy`
+- This URL should point to a page that explains your data collection and usage practices
+- Configure this in your LMS admin panel alongside the Launch URL
+- Users may be required to accept the privacy notice before accessing your tool
+- The privacy notice page should be publicly accessible (no authentication required)
+
+## API
+
+### `handleLti10Launch(req, res, options?)`
+
+Handles LTI 1.0/1.1 launch. Uses Express `Request` and `Response` types, and stores data in `req.session` (requires Express with session middleware).
+
+**Stores in `req.session`:**
+- `lti10Data` - Complete LTI launch data
+- `userInfo` - User information
+- `outcomeService` - Grade submission configuration (if available)
+
+**Options:**
+- `consumerKey?: string` - Override env var (default: `process.env.CONSUMER_KEY`)
+- `consumerSecret?: string` - Override env var (default: `process.env.CONSUMER_SECRET`)
+- `onSuccess?: (ltiData, userInfo, outcomeService?) => void` - Success callback
+- `onError?: (error: Error) => void` - Error callback
+
+### `submitGrade(outcomeService, grade, maxScore?)`
+
+Submits grade using LTI Basic Outcomes.
+
+**Parameters:**
+- `outcomeService` - From `req.session.outcomeService`
+- `grade` - Grade value (e.g., 85)
+- `maxScore` - Maximum score (default: 1.0)
+
+**Returns:** `Promise<{ success: boolean, response?: any, status?: number, error?: string }>`
+
+
+## Types
+
+```typescript
+import { 
+  Lti10Data, 
+  OutcomeService, 
+  UserInfo, 
+  GradeSubmissionResult 
+} from '1.0-lti-node-library';
+```
+
+## Framework Support
+
+The library currently uses Express.js types (`Request`, `Response`) and accesses `req.session` for session storage. This makes it convenient for Express.js applications, but you can adapt it for other frameworks by:
+
+1. Using the utility functions directly (`extractUserInfo`, `extractOutcomeService`, `submitGrade`)
+2. Implementing your own session storage mechanism
+3. Adapting the request/response handling to your framework
+
+## Examples
+
+### Express.js App
+
+```typescript
+import express from 'express';
+import session from 'express-session';
+import { handleLti10Launch, submitGrade } from '1.0-lti-node-library';
+
+const app = express();
+app.use(express.urlencoded({ extended: true }));
+app.use(session({ 
+  secret: process.env.SESSION_SECRET || 'secret',
+  resave: true,
+  saveUninitialized: true 
+}));
+
+// LTI launch
+app.post('/lti-launch', (req, res) => {
+  handleLti10Launch(req, res, {
+    onSuccess: (ltiData, userInfo) => {
+      console.log('User:', userInfo.name);
+      res.redirect('/app');
+    }
+  });
+});
+
+// Submit grade
+app.post('/submit-grade', async (req, res) => {
+  const result = await submitGrade(
+    req.session.outcomeService,
+    req.body.grade,
+    req.body.maxScore
+  );
+  res.json(result);
+});
+
+app.listen(3000);
+```
+
+## License
+
+MIT

package/lib/index.d.ts

@@ -0,0 +1,7 @@
+export { handleLti10Launch, isLti10Launch } from './launch/lti10Handler';
+export { submitGrade } from './outcomes/basicOutcomes';
+export { extractUserInfo, extractOutcomeService, createSessionData } from './session/sessionHelpers';
+export { buildBasicOutcomesXml } from './utils/xmlBuilder';
+export { createOAuthInstance } from './oauth/oauth1';
+export type { Lti10Data, OutcomeService, UserInfo, SessionData, GradeSubmissionResult, Lti10LaunchOptions, GradeSubmissionOptions, RequestWithSession } from './types';
+//# sourceMappingURL=index.d.ts.map

package/lib/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAGzE,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AAGvD,OAAO,EAAE,eAAe,EAAE,qBAAqB,EAAE,iBAAiB,EAAE,MAAM,0BAA0B,CAAC;AAGrG,OAAO,EAAE,qBAAqB,EAAE,MAAM,oBAAoB,CAAC;AAC3D,OAAO,EAAE,mBAAmB,EAAE,MAAM,gBAAgB,CAAC;AAGrD,YAAY,EACV,SAAS,EACT,cAAc,EACd,QAAQ,EACR,WAAW,EACX,qBAAqB,EACrB,kBAAkB,EAClB,sBAAsB,EACtB,kBAAkB,EACnB,MAAM,SAAS,CAAC"}

package/lib/index.js

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createOAuthInstance = exports.buildBasicOutcomesXml = exports.createSessionData = exports.extractOutcomeService = exports.extractUserInfo = exports.submitGrade = exports.isLti10Launch = exports.handleLti10Launch = void 0;
+// Launch handlers
+var lti10Handler_1 = require("./launch/lti10Handler");
+Object.defineProperty(exports, "handleLti10Launch", { enumerable: true, get: function () { return lti10Handler_1.handleLti10Launch; } });
+Object.defineProperty(exports, "isLti10Launch", { enumerable: true, get: function () { return lti10Handler_1.isLti10Launch; } });
+// Grade submission
+var basicOutcomes_1 = require("./outcomes/basicOutcomes");
+Object.defineProperty(exports, "submitGrade", { enumerable: true, get: function () { return basicOutcomes_1.submitGrade; } });
+// Session helpers
+var sessionHelpers_1 = require("./session/sessionHelpers");
+Object.defineProperty(exports, "extractUserInfo", { enumerable: true, get: function () { return sessionHelpers_1.extractUserInfo; } });
+Object.defineProperty(exports, "extractOutcomeService", { enumerable: true, get: function () { return sessionHelpers_1.extractOutcomeService; } });
+Object.defineProperty(exports, "createSessionData", { enumerable: true, get: function () { return sessionHelpers_1.createSessionData; } });
+// Utilities
+var xmlBuilder_1 = require("./utils/xmlBuilder");
+Object.defineProperty(exports, "buildBasicOutcomesXml", { enumerable: true, get: function () { return xmlBuilder_1.buildBasicOutcomesXml; } });
+var oauth1_1 = require("./oauth/oauth1");
+Object.defineProperty(exports, "createOAuthInstance", { enumerable: true, get: function () { return oauth1_1.createOAuthInstance; } });
+//# sourceMappingURL=index.js.map

package/lib/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AAAA,kBAAkB;AAClB,sDAAyE;AAAhE,iHAAA,iBAAiB,OAAA;AAAE,6GAAA,aAAa,OAAA;AAEzC,mBAAmB;AACnB,0DAAuD;AAA9C,4GAAA,WAAW,OAAA;AAEpB,kBAAkB;AAClB,2DAAqG;AAA5F,iHAAA,eAAe,OAAA;AAAE,uHAAA,qBAAqB,OAAA;AAAE,mHAAA,iBAAiB,OAAA;AAElE,YAAY;AACZ,iDAA2D;AAAlD,mHAAA,qBAAqB,OAAA;AAC9B,yCAAqD;AAA5C,6GAAA,mBAAmB,OAAA"}

package/lib/launch/lti10Handler.d.ts

@@ -0,0 +1,21 @@
+import { Request, Response } from 'express';
+import { Lti10Data, Lti10LaunchOptions } from '../types';
+/**
+ * Detect if request is an LTI 1.0 launch
+ *
+ * @param body - Request body
+ * @returns True if this appears to be an LTI 1.0 launch
+ */
+export declare function isLti10Launch(body: any): body is Lti10Data;
+/**
+ * Handle LTI 1.0 launch request
+ *
+ * Extracts LTI data, validates consumer key, stores session data,
+ * and extracts outcome service information for grade submission.
+ *
+ * @param req - Express request object
+ * @param res - Express response object
+ * @param options - Launch handler options
+ */
+export declare function handleLti10Launch(req: Request, res: Response, options?: Lti10LaunchOptions): void;
+//# sourceMappingURL=lti10Handler.d.ts.map

package/lib/launch/lti10Handler.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"lti10Handler.d.ts","sourceRoot":"","sources":["../../src/launch/lti10Handler.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,SAAS,EAAE,kBAAkB,EAAsB,MAAM,UAAU,CAAC;AAG7E;;;;;GAKG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,GAAG,GAAG,IAAI,IAAI,SAAS,CAE1D;AAED;;;;;;;;;GASG;AACH,wBAAgB,iBAAiB,CAC/B,GAAG,EAAE,OAAO,EACZ,GAAG,EAAE,QAAQ,EACb,OAAO,CAAC,EAAE,kBAAkB,GAC3B,IAAI,CA4DN"}

package/lib/launch/lti10Handler.js

@@ -0,0 +1,73 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isLti10Launch = isLti10Launch;
+exports.handleLti10Launch = handleLti10Launch;
+const sessionHelpers_1 = require("../session/sessionHelpers");
+/**
+ * Detect if request is an LTI 1.0 launch
+ *
+ * @param body - Request body
+ * @returns True if this appears to be an LTI 1.0 launch
+ */
+function isLti10Launch(body) {
+    return !!(body && (body.oauth_consumer_key || body.lti_version));
+}
+/**
+ * Handle LTI 1.0 launch request
+ *
+ * Extracts LTI data, validates consumer key, stores session data,
+ * and extracts outcome service information for grade submission.
+ *
+ * @param req - Express request object
+ * @param res - Express response object
+ * @param options - Launch handler options
+ */
+function handleLti10Launch(req, res, options) {
+    const body = req.body;
+    // Check if this is an LTI 1.0 launch
+    if (!isLti10Launch(body)) {
+        if (options?.onError) {
+            options.onError(new Error('Not an LTI 1.0 launch'));
+        }
+        return;
+    }
+    const reqWithSession = req;
+    // Get consumer key and secret from options or environment
+    const expectedConsumerKey = options?.consumerKey || process.env.CONSUMER_KEY;
+    const consumerSecret = options?.consumerSecret || process.env.CONSUMER_SECRET || '';
+    const consumerKeyFromLaunch = body.oauth_consumer_key || '';
+    // Validate consumer key if expected key is provided
+    if (expectedConsumerKey && consumerKeyFromLaunch !== expectedConsumerKey) {
+        const error = new Error('Consumer key mismatch');
+        if (options?.onError) {
+            options.onError(error);
+        }
+        return;
+    }
+    // Create session data
+    const sessionData = (0, sessionHelpers_1.createSessionData)(body, consumerKeyFromLaunch || expectedConsumerKey || '', consumerSecret);
+    // Store in session
+    reqWithSession.session.lti10Data = body;
+    reqWithSession.session.ltiVersion = sessionData.ltiVersion;
+    reqWithSession.session.userLoggedIn = sessionData.userLoggedIn;
+    reqWithSession.session.userInfo = sessionData.userInfo;
+    reqWithSession.session.outcomeService = sessionData.outcomeService;
+    // Store return URL if available
+    if (body.launch_presentation_return_url) {
+        reqWithSession.session.returnUrl = body.launch_presentation_return_url;
+    }
+    // Store raw request for debugging
+    reqWithSession.session.rawRequest = {
+        method: req.method,
+        url: req.url,
+        headers: req.headers,
+        query: req.query,
+        body: req.body,
+        timestamp: new Date().toISOString()
+    };
+    // Call success callback if provided
+    if (options?.onSuccess) {
+        options.onSuccess(body, sessionData.userInfo, sessionData.outcomeService);
+    }
+}
+//# sourceMappingURL=lti10Handler.js.map

package/lib/launch/lti10Handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"lti10Handler.js","sourceRoot":"","sources":["../../src/launch/lti10Handler.ts"],"names":[],"mappings":";;AAUA,sCAEC;AAYD,8CAgEC;AAtFD,8DAA8D;AAE9D;;;;;GAKG;AACH,SAAgB,aAAa,CAAC,IAAS;IACrC,OAAO,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,kBAAkB,IAAI,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC;AACnE,CAAC;AAED;;;;;;;;;GASG;AACH,SAAgB,iBAAiB,CAC/B,GAAY,EACZ,GAAa,EACb,OAA4B;IAE5B,MAAM,IAAI,GAAG,GAAG,CAAC,IAAiB,CAAC;IAEnC,qCAAqC;IACrC,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,EAAE,CAAC;QACzB,IAAI,OAAO,EAAE,OAAO,EAAE,CAAC;YACrB,OAAO,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC,CAAC;QACtD,CAAC;QACD,OAAO;IACT,CAAC;IAED,MAAM,cAAc,GAAG,GAAyB,CAAC;IAEjD,0DAA0D;IAC1D,MAAM,mBAAmB,GAAG,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;IAC7E,MAAM,cAAc,GAAG,OAAO,EAAE,cAAc,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,EAAE,CAAC;IACpF,MAAM,qBAAqB,GAAG,IAAI,CAAC,kBAAkB,IAAI,EAAE,CAAC;IAE5D,oDAAoD;IACpD,IAAI,mBAAmB,IAAI,qBAAqB,KAAK,mBAAmB,EAAE,CAAC;QACzE,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;QACjD,IAAI,OAAO,EAAE,OAAO,EAAE,CAAC;YACrB,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;QACD,OAAO;IACT,CAAC;IAED,sBAAsB;IACtB,MAAM,WAAW,GAAG,IAAA,kCAAiB,EACnC,IAAI,EACJ,qBAAqB,IAAI,mBAAmB,IAAI,EAAE,EAClD,cAAc,CACf,CAAC;IAEF,mBAAmB;IACnB,cAAc,CAAC,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC;IACxC,cAAc,CAAC,OAAO,CAAC,UAAU,GAAG,WAAW,CAAC,UAAU,CAAC;IAC3D,cAAc,CAAC,OAAO,CAAC,YAAY,GAAG,WAAW,CAAC,YAAY,CAAC;IAC/D,cAAc,CAAC,OAAO,CAAC,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAC;IACvD,cAAc,CAAC,OAAO,CAAC,cAAc,GAAG,WAAW,CAAC,cAAc,CAAC;IAEnE,gCAAgC;IAChC,IAAI,IAAI,CAAC,8BAA8B,EAAE,CAAC;QACxC,cAAc,CAAC,OAAO,CAAC,SAAS,GAAG,IAAI,CAAC,8BAA8B,CAAC;IACzE,CAAC;IAED,kCAAkC;IAClC,cAAc,CAAC,OAAO,CAAC,UAAU,GAAG;QAClC,MAAM,EAAE,GAAG,CAAC,MAAM;QAClB,GAAG,EAAE,GAAG,CAAC,GAAG;QACZ,OAAO,EAAE,GAAG,CAAC,OAAO;QACpB,KAAK,EAAE,GAAG,CAAC,KAAK;QAChB,IAAI,EAAE,GAAG,CAAC,IAAI;QACd,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC;IAEF,oCAAoC;IACpC,IAAI,OAAO,EAAE,SAAS,EAAE,CAAC;QACvB,OAAO,CAAC,SAAS,CAAC,IAAI,EAAE,WAAW,CAAC,QAAQ,EAAE,WAAW,CAAC,cAAc,CAAC,CAAC;IAC5E,CAAC;AACH,CAAC"}

package/lib/oauth/oauth1.d.ts

@@ -0,0 +1,13 @@
+import OAuth from 'oauth-1.0a';
+/**
+ * Create OAuth 1.0 instance configured for LTI Basic Outcomes
+ *
+ * This includes the critical body_hash_function that calculates SHA1 hash
+ * of the request body (not HMAC) for oauth_body_hash parameter.
+ *
+ * @param consumerKey - OAuth consumer key
+ * @param consumerSecret - OAuth consumer secret
+ * @returns Configured OAuth instance
+ */
+export declare function createOAuthInstance(consumerKey: string, consumerSecret: string): OAuth;
+//# sourceMappingURL=oauth1.d.ts.map

package/lib/oauth/oauth1.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth1.d.ts","sourceRoot":"","sources":["../../src/oauth/oauth1.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,YAAY,CAAC;AAG/B;;;;;;;;;GASG;AACH,wBAAgB,mBAAmB,CAAC,WAAW,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,GAAG,KAAK,CAkBtF"}

package/lib/oauth/oauth1.js

@@ -0,0 +1,38 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createOAuthInstance = createOAuthInstance;
+const oauth_1_0a_1 = __importDefault(require("oauth-1.0a"));
+const crypto_1 = __importDefault(require("crypto"));
+/**
+ * Create OAuth 1.0 instance configured for LTI Basic Outcomes
+ *
+ * This includes the critical body_hash_function that calculates SHA1 hash
+ * of the request body (not HMAC) for oauth_body_hash parameter.
+ *
+ * @param consumerKey - OAuth consumer key
+ * @param consumerSecret - OAuth consumer secret
+ * @returns Configured OAuth instance
+ */
+function createOAuthInstance(consumerKey, consumerSecret) {
+    return new oauth_1_0a_1.default({
+        consumer: {
+            key: consumerKey,
+            secret: consumerSecret
+        },
+        signature_method: 'HMAC-SHA1',
+        hash_function(base_string, key) {
+            return crypto_1.default.createHmac('sha1', key).update(base_string).digest('base64');
+        },
+        // Body hash function: SHA1 hash of body (not HMAC, just SHA1)
+        // The library passes (body, signingKey) but for body hash we only use body
+        // This is critical for LTI Basic Outcomes - oauth_body_hash must be SHA1(body), not HMAC(body, key)
+        body_hash_function(body, key) {
+            // Ignore key parameter - OAuth body hash is just SHA1 of body
+            return crypto_1.default.createHash('sha1').update(body, 'utf8').digest('base64');
+        }
+    });
+}
+//# sourceMappingURL=oauth1.js.map

package/lib/oauth/oauth1.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth1.js","sourceRoot":"","sources":["../../src/oauth/oauth1.ts"],"names":[],"mappings":";;;;;AAaA,kDAkBC;AA/BD,4DAA+B;AAC/B,oDAA4B;AAE5B;;;;;;;;;GASG;AACH,SAAgB,mBAAmB,CAAC,WAAmB,EAAE,cAAsB;IAC7E,OAAO,IAAI,oBAAK,CAAC;QACf,QAAQ,EAAE;YACR,GAAG,EAAE,WAAW;YAChB,MAAM,EAAE,cAAc;SACvB;QACD,gBAAgB,EAAE,WAAW;QAC7B,aAAa,CAAC,WAAmB,EAAE,GAAW;YAC5C,OAAO,gBAAM,CAAC,UAAU,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC7E,CAAC;QACD,8DAA8D;QAC9D,2EAA2E;QAC3E,oGAAoG;QACpG,kBAAkB,CAAC,IAAY,EAAE,GAAW;YAC1C,8DAA8D;YAC9D,OAAO,gBAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QACzE,CAAC;KACF,CAAC,CAAC;AACL,CAAC"}

package/lib/outcomes/basicOutcomes.d.ts

@@ -0,0 +1,13 @@
+import { OutcomeService, GradeSubmissionResult, GradeSubmissionOptions } from '../types';
+/**
+ * Submit a grade to A-Plus using LTI Basic Outcomes Service
+ *
+ * @param outcomeService - Outcome service configuration
+ * @param grade - The grade value to submit
+ * @param maxScore - Maximum possible score (default: 1.0)
+ * @param options - Additional options (reserved for future use)
+ * @returns Promise resolving to grade submission result
+ * @throws Error if outcome service info is missing or submission fails
+ */
+export declare function submitGrade(outcomeService: OutcomeService, grade: number, maxScore?: number, options?: GradeSubmissionOptions): Promise<GradeSubmissionResult>;
+//# sourceMappingURL=basicOutcomes.d.ts.map

package/lib/outcomes/basicOutcomes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"basicOutcomes.d.ts","sourceRoot":"","sources":["../../src/outcomes/basicOutcomes.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,cAAc,EAAE,qBAAqB,EAAE,sBAAsB,EAAE,MAAM,UAAU,CAAC;AAIzF;;;;;;;;;GASG;AACH,wBAAsB,WAAW,CAC/B,cAAc,EAAE,cAAc,EAC9B,KAAK,EAAE,MAAM,EACb,QAAQ,GAAE,MAAY,EACtB,OAAO,CAAC,EAAE,sBAAsB,GAC/B,OAAO,CAAC,qBAAqB,CAAC,CAkEhC"}

package/lib/outcomes/basicOutcomes.js

@@ -0,0 +1,75 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.submitGrade = submitGrade;
+const axios_1 = __importDefault(require("axios"));
+const xml2js_1 = require("xml2js");
+const oauth1_1 = require("../oauth/oauth1");
+const xmlBuilder_1 = require("../utils/xmlBuilder");
+/**
+ * Submit a grade to A-Plus using LTI Basic Outcomes Service
+ *
+ * @param outcomeService - Outcome service configuration
+ * @param grade - The grade value to submit
+ * @param maxScore - Maximum possible score (default: 1.0)
+ * @param options - Additional options (reserved for future use)
+ * @returns Promise resolving to grade submission result
+ * @throws Error if outcome service info is missing or submission fails
+ */
+async function submitGrade(outcomeService, grade, maxScore = 1.0, options) {
+    // Validate outcome service
+    if (!outcomeService || !outcomeService.url || !outcomeService.sourcedid) {
+        throw new Error('Outcome service information missing');
+    }
+    if (!outcomeService.consumerKey || !outcomeService.consumerSecret) {
+        throw new Error('Consumer key or secret missing. Make sure the consumer secret matches what was configured in A-Plus.');
+    }
+    // Create OAuth instance
+    const oauth = (0, oauth1_1.createOAuthInstance)(outcomeService.consumerKey, outcomeService.consumerSecret);
+    // Build XML payload
+    const xmlBody = (0, xmlBuilder_1.buildBasicOutcomesXml)(outcomeService.sourcedid, grade, maxScore);
+    // Prepare request data with body hash
+    const requestData = {
+        url: outcomeService.url,
+        method: 'POST',
+        includeBodyHash: true, // This tells the library to calculate and include oauth_body_hash
+        data: xmlBody // Pass as string - library will use body_hash_function on this
+    };
+    // Generate OAuth authorization
+    // The library will automatically:
+    // 1. Call getBodyHash() which uses body_hash_function(xmlBody, signingKey)
+    // 2. Include oauth_body_hash in OAuth params
+    // 3. Include oauth_body_hash in signature base string
+    // No token for LTI Basic Outcomes - pass empty object
+    const authParams = oauth.authorize(requestData, {});
+    // Convert to header format
+    const authHeader = oauth.toHeader(authParams);
+    try {
+        const response = await axios_1.default.post(outcomeService.url, xmlBody, {
+            headers: {
+                'Content-Type': 'application/xml',
+                ...authHeader
+            }
+        });
+        // Parse response XML
+        const parser = new xml2js_1.Parser();
+        const result = await parser.parseStringPromise(response.data);
+        return {
+            success: true,
+            response: result,
+            status: response.status
+        };
+    }
+    catch (error) {
+        const axiosError = error;
+        return {
+            success: false,
+            error: axiosError.message,
+            details: axiosError.response ? axiosError.response.data : null,
+            status: axiosError.response?.status
+        };
+    }
+}
+//# sourceMappingURL=basicOutcomes.js.map

package/lib/outcomes/basicOutcomes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"basicOutcomes.js","sourceRoot":"","sources":["../../src/outcomes/basicOutcomes.ts"],"names":[],"mappings":";;;;;AAgBA,kCAuEC;AAvFD,kDAA0C;AAC1C,mCAAgC;AAEhC,4CAAsD;AACtD,oDAA4D;AAE5D;;;;;;;;;GASG;AACI,KAAK,UAAU,WAAW,CAC/B,cAA8B,EAC9B,KAAa,EACb,WAAmB,GAAG,EACtB,OAAgC;IAEhC,2BAA2B;IAC3B,IAAI,CAAC,cAAc,IAAI,CAAC,cAAc,CAAC,GAAG,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE,CAAC;QACxE,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;IACzD,CAAC;IAED,IAAI,CAAC,cAAc,CAAC,WAAW,IAAI,CAAC,cAAc,CAAC,cAAc,EAAE,CAAC;QAClE,MAAM,IAAI,KAAK,CAAC,sGAAsG,CAAC,CAAC;IAC1H,CAAC;IAED,wBAAwB;IACxB,MAAM,KAAK,GAAG,IAAA,4BAAmB,EAAC,cAAc,CAAC,WAAW,EAAE,cAAc,CAAC,cAAc,CAAC,CAAC;IAE7F,oBAAoB;IACpB,MAAM,OAAO,GAAG,IAAA,kCAAqB,EAAC,cAAc,CAAC,SAAS,EAAE,KAAK,EAAE,QAAQ,CAAC,CAAC;IAEjF,sCAAsC;IACtC,MAAM,WAAW,GAAG;QAClB,GAAG,EAAE,cAAc,CAAC,GAAG;QACvB,MAAM,EAAE,MAAe;QACvB,eAAe,EAAE,IAAI,EAAE,kEAAkE;QACzF,IAAI,EAAE,OAAO,CAAC,+DAA+D;KAC9E,CAAC;IAEF,+BAA+B;IAC/B,kCAAkC;IAClC,2EAA2E;IAC3E,6CAA6C;IAC7C,sDAAsD;IACtD,sDAAsD;IACtD,MAAM,UAAU,GAAG,KAAK,CAAC,SAAS,CAAC,WAAW,EAAE,EAAS,CAAC,CAAC;IAE3D,2BAA2B;IAC3B,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAE9C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,eAAK,CAAC,IAAI,CAC/B,cAAc,CAAC,GAAG,EAClB,OAAO,EACP;YACE,OAAO,EAAE;gBACP,cAAc,EAAE,iBAAiB;gBACjC,GAAG,UAAU;aACd;SACF,CACF,CAAC;QAEF,qBAAqB;QACrB,MAAM,MAAM,GAAG,IAAI,eAAM,EAAE,CAAC;QAC5B,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,kBAAkB,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAE9D,OAAO;YACL,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE,MAAM;YAChB,MAAM,EAAE,QAAQ,CAAC,MAAM;SACxB,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,UAAU,GAAG,KAAmB,CAAC;QAEvC,OAAO;YACL,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,UAAU,CAAC,OAAO;YACzB,OAAO,EAAE,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI;YAC9D,MAAM,EAAE,UAAU,CAAC,QAAQ,EAAE,MAAM;SACpC,CAAC;IACJ,CAAC;AACH,CAAC"}

package/lib/session/sessionHelpers.d.ts

@@ -0,0 +1,33 @@
+import { Lti10Data, UserInfo, OutcomeService } from '../types';
+/**
+ * Extract user information from LTI 1.0 launch data
+ *
+ * @param ltiBody - LTI 1.0 launch body data
+ * @returns Extracted user information
+ */
+export declare function extractUserInfo(ltiBody: Lti10Data): UserInfo;
+/**
+ * Extract outcome service information from LTI 1.0 launch data
+ *
+ * @param ltiBody - LTI 1.0 launch body data
+ * @param consumerKey - Consumer key (from launch or environment)
+ * @param consumerSecret - Consumer secret (from environment)
+ * @returns Outcome service configuration or undefined if not available
+ */
+export declare function extractOutcomeService(ltiBody: Lti10Data, consumerKey: string, consumerSecret: string): OutcomeService | undefined;
+/**
+ * Create complete session data structure from LTI 1.0 launch
+ *
+ * @param ltiBody - LTI 1.0 launch body data
+ * @param consumerKey - Consumer key (from launch or environment)
+ * @param consumerSecret - Consumer secret (from environment)
+ * @returns Complete session data structure
+ */
+export declare function createSessionData(ltiBody: Lti10Data, consumerKey: string, consumerSecret: string): {
+    lti10Data: Lti10Data;
+    ltiVersion: string;
+    userLoggedIn: boolean;
+    userInfo: UserInfo;
+    outcomeService?: OutcomeService;
+};
+//# sourceMappingURL=sessionHelpers.d.ts.map

package/lib/session/sessionHelpers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sessionHelpers.d.ts","sourceRoot":"","sources":["../../src/session/sessionHelpers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AAE/D;;;;;GAKG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,SAAS,GAAG,QAAQ,CAW5D;AAED;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CACnC,OAAO,EAAE,SAAS,EAClB,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,GACrB,cAAc,GAAG,SAAS,CAW5B;AAED;;;;;;;GAOG;AACH,wBAAgB,iBAAiB,CAC/B,OAAO,EAAE,SAAS,EAClB,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,GACrB;IACD,SAAS,EAAE,SAAS,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,OAAO,CAAC;IACtB,QAAQ,EAAE,QAAQ,CAAC;IACnB,cAAc,CAAC,EAAE,cAAc,CAAC;CACjC,CAWA"}

package/lib/session/sessionHelpers.js

@@ -0,0 +1,62 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.extractUserInfo = extractUserInfo;
+exports.extractOutcomeService = extractOutcomeService;
+exports.createSessionData = createSessionData;
+/**
+ * Extract user information from LTI 1.0 launch data
+ *
+ * @param ltiBody - LTI 1.0 launch body data
+ * @returns Extracted user information
+ */
+function extractUserInfo(ltiBody) {
+    return {
+        userId: ltiBody.user_id,
+        name: `${ltiBody.lis_person_name_given || ''} ${ltiBody.lis_person_name_family || ''}`.trim(),
+        email: ltiBody.lis_person_contact_email_primary,
+        roles: ltiBody.roles,
+        contextId: ltiBody.context_id,
+        contextLabel: ltiBody.context_label,
+        contextTitle: ltiBody.context_title,
+        resourceLinkId: ltiBody.resource_link_id
+    };
+}
+/**
+ * Extract outcome service information from LTI 1.0 launch data
+ *
+ * @param ltiBody - LTI 1.0 launch body data
+ * @param consumerKey - Consumer key (from launch or environment)
+ * @param consumerSecret - Consumer secret (from environment)
+ * @returns Outcome service configuration or undefined if not available
+ */
+function extractOutcomeService(ltiBody, consumerKey, consumerSecret) {
+    if (!ltiBody.lis_outcome_service_url || !ltiBody.lis_result_sourcedid) {
+        return undefined;
+    }
+    return {
+        url: ltiBody.lis_outcome_service_url,
+        sourcedid: ltiBody.lis_result_sourcedid,
+        consumerKey: consumerKey,
+        consumerSecret: consumerSecret
+    };
+}
+/**
+ * Create complete session data structure from LTI 1.0 launch
+ *
+ * @param ltiBody - LTI 1.0 launch body data
+ * @param consumerKey - Consumer key (from launch or environment)
+ * @param consumerSecret - Consumer secret (from environment)
+ * @returns Complete session data structure
+ */
+function createSessionData(ltiBody, consumerKey, consumerSecret) {
+    const userInfo = extractUserInfo(ltiBody);
+    const outcomeService = extractOutcomeService(ltiBody, consumerKey, consumerSecret);
+    return {
+        lti10Data: ltiBody,
+        ltiVersion: '1.0',
+        userLoggedIn: true,
+        userInfo,
+        outcomeService
+    };
+}
+//# sourceMappingURL=sessionHelpers.js.map

package/lib/session/sessionHelpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sessionHelpers.js","sourceRoot":"","sources":["../../src/session/sessionHelpers.ts"],"names":[],"mappings":";;AAQA,0CAWC;AAUD,sDAeC;AAUD,8CAqBC;AAzED;;;;;GAKG;AACH,SAAgB,eAAe,CAAC,OAAkB;IAChD,OAAO;QACL,MAAM,EAAE,OAAO,CAAC,OAAO;QACvB,IAAI,EAAE,GAAG,OAAO,CAAC,qBAAqB,IAAI,EAAE,IAAI,OAAO,CAAC,sBAAsB,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE;QAC7F,KAAK,EAAE,OAAO,CAAC,gCAAgC;QAC/C,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,SAAS,EAAE,OAAO,CAAC,UAAU;QAC7B,YAAY,EAAE,OAAO,CAAC,aAAa;QACnC,YAAY,EAAE,OAAO,CAAC,aAAa;QACnC,cAAc,EAAE,OAAO,CAAC,gBAAgB;KACzC,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAgB,qBAAqB,CACnC,OAAkB,EAClB,WAAmB,EACnB,cAAsB;IAEtB,IAAI,CAAC,OAAO,CAAC,uBAAuB,IAAI,CAAC,OAAO,CAAC,oBAAoB,EAAE,CAAC;QACtE,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,OAAO;QACL,GAAG,EAAE,OAAO,CAAC,uBAAuB;QACpC,SAAS,EAAE,OAAO,CAAC,oBAAoB;QACvC,WAAW,EAAE,WAAW;QACxB,cAAc,EAAE,cAAc;KAC/B,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAgB,iBAAiB,CAC/B,OAAkB,EAClB,WAAmB,EACnB,cAAsB;IAQtB,MAAM,QAAQ,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAC1C,MAAM,cAAc,GAAG,qBAAqB,CAAC,OAAO,EAAE,WAAW,EAAE,cAAc,CAAC,CAAC;IAEnF,OAAO;QACL,SAAS,EAAE,OAAO;QAClB,UAAU,EAAE,KAAK;QACjB,YAAY,EAAE,IAAI;QAClB,QAAQ;QACR,cAAc;KACf,CAAC;AACJ,CAAC"}

package/lib/types/index.d.ts

@@ -0,0 +1,103 @@
+import { Request } from 'express';
+/**
+ * LTI 1.0 launch data structure
+ */
+export interface Lti10Data {
+    oauth_consumer_key?: string;
+    oauth_signature?: string;
+    oauth_signature_method?: string;
+    oauth_timestamp?: string;
+    oauth_nonce?: string;
+    oauth_version?: string;
+    lti_version?: string;
+    lti_message_type?: string;
+    resource_link_id?: string;
+    user_id?: string;
+    roles?: string;
+    lis_person_name_given?: string;
+    lis_person_name_family?: string;
+    lis_person_contact_email_primary?: string;
+    context_id?: string;
+    context_label?: string;
+    context_title?: string;
+    launch_presentation_document_target?: string;
+    launch_presentation_return_url?: string;
+    lis_outcome_service_url?: string;
+    lis_result_sourcedid?: string;
+    [key: string]: any;
+}
+/**
+ * Outcome service configuration for grade submission
+ */
+export interface OutcomeService {
+    url: string;
+    sourcedid: string;
+    consumerKey: string;
+    consumerSecret: string;
+}
+/**
+ * Extracted user information from LTI launch
+ */
+export interface UserInfo {
+    userId?: string;
+    name?: string;
+    email?: string;
+    roles?: string;
+    contextId?: string;
+    contextLabel?: string;
+    contextTitle?: string;
+    resourceLinkId?: string;
+}
+/**
+ * Complete session data structure
+ */
+export interface SessionData {
+    lti10Data?: Lti10Data;
+    ltiVersion?: string;
+    userLoggedIn?: boolean;
+    userInfo?: UserInfo;
+    outcomeService?: OutcomeService;
+    returnUrl?: string;
+    rawRequest?: {
+        method: string;
+        url: string;
+        headers: any;
+        query: any;
+        body: any;
+        timestamp: string;
+    };
+}
+/**
+ * Grade submission result
+ */
+export interface GradeSubmissionResult {
+    success: boolean;
+    response?: any;
+    status?: number;
+    error?: string;
+    details?: any;
+}
+/**
+ * Options for LTI 1.0 launch handler
+ */
+export interface Lti10LaunchOptions {
+    consumerKey?: string;
+    consumerSecret?: string;
+    onSuccess?: (ltiData: Lti10Data, userInfo: UserInfo, outcomeService?: OutcomeService) => void;
+    onError?: (error: Error) => void;
+}
+/**
+ * Options for grade submission
+ */
+export interface GradeSubmissionOptions {
+    [key: string]: any;
+}
+/**
+ * Express request with session
+ */
+export interface RequestWithSession extends Request {
+    session: SessionData & {
+        [key: string]: any;
+    };
+}
+//# sourceMappingURL=index.d.ts.map

package/lib/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAY,MAAM,SAAS,CAAC;AAE5C;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gCAAgC,CAAC,EAAE,MAAM,CAAC;IAC1C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,mCAAmC,CAAC,EAAE,MAAM,CAAC;IAC7C,8BAA8B,CAAC,EAAE,MAAM,CAAC;IACxC,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,SAAS,CAAC,EAAE,SAAS,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE;QACX,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,OAAO,EAAE,GAAG,CAAC;QACb,KAAK,EAAE,GAAG,CAAC;QACX,IAAI,EAAE,GAAG,CAAC;QACV,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,GAAG,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,GAAG,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,QAAQ,EAAE,cAAc,CAAC,EAAE,cAAc,KAAK,IAAI,CAAC;IAC9F,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;CAClC;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IAErC,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAmB,SAAQ,OAAO;IACjD,OAAO,EAAE,WAAW,GAAG;QACrB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;KACpB,CAAC;CACH"}

package/lib/types/index.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=index.js.map

package/lib/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":""}

package/lib/utils/xmlBuilder.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Build XML payload for LTI Basic Outcomes replaceResultRequest
+ *
+ * @param sourcedId - The sourced ID from the LTI launch
+ * @param grade - The grade value
+ * @param maxScore - Maximum possible score (default: 1.0)
+ * @returns XML string for Basic Outcomes request
+ */
+export declare function buildBasicOutcomesXml(sourcedId: string, grade: number, maxScore?: number): string;
+//# sourceMappingURL=xmlBuilder.d.ts.map

package/lib/utils/xmlBuilder.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"xmlBuilder.d.ts","sourceRoot":"","sources":["../../src/utils/xmlBuilder.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,wBAAgB,qBAAqB,CACnC,SAAS,EAAE,MAAM,EACjB,KAAK,EAAE,MAAM,EACb,QAAQ,GAAE,MAAY,GACrB,MAAM,CAiCR"}

package/lib/utils/xmlBuilder.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.buildBasicOutcomesXml = buildBasicOutcomesXml;
+const xml2js_1 = require("xml2js");
+/**
+ * Build XML payload for LTI Basic Outcomes replaceResultRequest
+ *
+ * @param sourcedId - The sourced ID from the LTI launch
+ * @param grade - The grade value
+ * @param maxScore - Maximum possible score (default: 1.0)
+ * @returns XML string for Basic Outcomes request
+ */
+function buildBasicOutcomesXml(sourcedId, grade, maxScore = 1.0) {
+    const xmlBuilder = new xml2js_1.Builder();
+    const normalizedGrade = (grade / maxScore).toFixed(2);
+    const xmlBody = xmlBuilder.buildObject({
+        'imsx_POXEnvelopeRequest': {
+            '$': { xmlns: 'http://www.imsglobal.org/services/ltiv1p1/xsd/imsoms_v1p0' },
+            'imsx_POXHeader': {
+                'imsx_POXRequestHeaderInfo': {
+                    'imsx_version': 'V1.0',
+                    'imsx_messageIdentifier': Date.now().toString()
+                }
+            },
+            'imsx_POXBody': {
+                'replaceResultRequest': {
+                    'resultRecord': {
+                        'sourcedGUID': {
+                            'sourcedId': sourcedId
+                        },
+                        'result': {
+                            'resultScore': {
+                                'language': 'en',
+                                'textString': normalizedGrade
+                            }
+                        }
+                    }
+                }
+            }
+        }
+    });
+    return xmlBody;
+}
+//# sourceMappingURL=xmlBuilder.js.map

package/lib/utils/xmlBuilder.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"xmlBuilder.js","sourceRoot":"","sources":["../../src/utils/xmlBuilder.ts"],"names":[],"mappings":";;AAUA,sDAqCC;AA/CD,mCAAiC;AAEjC;;;;;;;GAOG;AACH,SAAgB,qBAAqB,CACnC,SAAiB,EACjB,KAAa,EACb,WAAmB,GAAG;IAEtB,MAAM,UAAU,GAAG,IAAI,gBAAO,EAAE,CAAC;IAEjC,MAAM,eAAe,GAAG,CAAC,KAAK,GAAG,QAAQ,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IAEtD,MAAM,OAAO,GAAG,UAAU,CAAC,WAAW,CAAC;QACrC,yBAAyB,EAAE;YACzB,GAAG,EAAE,EAAE,KAAK,EAAE,2DAA2D,EAAE;YAC3E,gBAAgB,EAAE;gBAChB,2BAA2B,EAAE;oBAC3B,cAAc,EAAE,MAAM;oBACtB,wBAAwB,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;iBAChD;aACF;YACD,cAAc,EAAE;gBACd,sBAAsB,EAAE;oBACtB,cAAc,EAAE;wBACd,aAAa,EAAE;4BACb,WAAW,EAAE,SAAS;yBACvB;wBACD,QAAQ,EAAE;4BACR,aAAa,EAAE;gCACb,UAAU,EAAE,IAAI;gCAChB,YAAY,EAAE,eAAe;6BAC9B;yBACF;qBACF;iBACF;aACF;SACF;KACF,CAAC,CAAC;IAEH,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/package.json

@@ -0,0 +1,39 @@
+{
+  "name": "lti-v1.0-node-library",
+  "version": "1.0.0",
+  "description": "TypeScript library for LTI 1.0/1.1 integration with LMS platforms (including older versions of A-Plus), including Basic Outcomes grade submission. Focused on LTI 1.0/1.1 support for platforms like older versions of A-Plus that don't support LTI 1.3.",
+  "main": "lib/index.js",
+  "types": "lib/index.d.ts",
+  "files": [
+    "lib/**/*"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "prepublishOnly": "npm run build",
+    "watch": "tsc --watch",
+    "clean": "rm -rf lib"
+  },
+  "keywords": [
+    "lti",
+    "lti-v1.0",
+    "lti-v1.1",
+    "a-plus",
+    "plussa",
+    "lms",
+    "basic-outcomes",
+    "grade-submission"
+  ],
+  "author": "Jaakko Rajala <jaakko.rajala@tuni.fi>",
+  "license": "MIT",
+  "dependencies": {
+    "oauth-1.0a": "^2.2.6",
+    "axios": "^1.7.7",
+    "xml2js": "^0.6.2"
+  },
+  "devDependencies": {
+    "typescript": "^5.0.0",
+    "@types/node": "^20.0.0",
+    "@types/express": "^4.17.21",
+    "@types/xml2js": "^0.4.14"
+  }
+}