npm - poe-code - Versions diffs - 3.0.208 → 3.0.209 - Mend

poe-code 3.0.208 → 3.0.209

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.js CHANGED Viewed

@@ -35457,6 +35457,212 @@ var init_check_auth = __esm({
   }
 });
+// packages/poe-oauth/src/authorization-state.ts
+import crypto5 from "node:crypto";
+function parseAuthorizationState2(value) {
+  if (value === null || value.length === 0) {
+    return null;
+  }
+  try {
+    const decoded = Buffer.from(value, "base64url").toString("utf8");
+    const parsed = JSON.parse(decoded);
+    if (parsed.v !== 1 || typeof parsed.n !== "string" || parsed.n.length === 0 || typeof parsed.i !== "string" || parsed.i.length === 0 || typeof parsed.r !== "boolean") {
+      return null;
+    }
+    return {
+      issuer: parsed.i,
+      requireIssuer: parsed.r
+    };
+  } catch {
+    return null;
+  }
+}
+var init_authorization_state2 = __esm({
+  "packages/poe-oauth/src/authorization-state.ts"() {
+    "use strict";
+  }
+});
+// packages/poe-oauth/src/loopback-authorization.ts
+import http2 from "node:http";
+async function createLoopbackAuthorizationSession2(options = {}) {
+  const callbackPath = options.callbackPath ?? "/callback";
+  const server = options.createServer ? options.createServer() : http2.createServer();
+  const port = await startServer2(server);
+  const redirectUri = `http://127.0.0.1:${port}${callbackPath}`;
+  return {
+    redirectUri,
+    async waitForCode(authorizationUrl) {
+      return waitForAuthorizationCode2(server, authorizationUrl, options, callbackPath);
+    },
+    close() {
+      server.closeAllConnections?.();
+      server.close();
+    }
+  };
+}
+async function startServer2(server) {
+  return new Promise((resolve2) => {
+    server.listen(0, "127.0.0.1", () => {
+      const address = server.address();
+      resolve2(address.port);
+    });
+  });
+}
+function waitForAuthorizationCode2(server, authorizationUrl, options, callbackPath) {
+  const expectedAuthorization = readExpectedAuthorizationCallback2(authorizationUrl);
+  return new Promise((resolve2, reject) => {
+    let settled = false;
+    const settle = (fn) => {
+      if (!settled) {
+        settled = true;
+        fn();
+      }
+    };
+    server.on("request", (req, res) => {
+      const url = new URL(req.url ?? "/", "http://127.0.0.1");
+      if (url.pathname !== callbackPath) {
+        res.writeHead(404);
+        res.end("Not found");
+        return;
+      }
+      const error2 = url.searchParams.get("error");
+      if (error2 !== null) {
+        const description = url.searchParams.get("error_description") ?? error2;
+        res.writeHead(400);
+        res.end(`Authorization failed: ${description}`);
+        settle(() => reject(new Error(`OAuth authorization failed: ${error2} \u2014 ${description}`)));
+        return;
+      }
+      try {
+        const code = validateAuthorizationCallbackParameters2({
+          code: url.searchParams.get("code"),
+          state: url.searchParams.get("state"),
+          iss: url.searchParams.get("iss")
+        }, expectedAuthorization);
+        res.writeHead(200, { "Content-Type": "text/html" });
+        res.end(buildSuccessPage2(options.landingPage));
+        settle(() => resolve2(code));
+      } catch (error3) {
+        res.writeHead(400);
+        res.end(error3 instanceof Error ? error3.message : "Invalid OAuth callback");
+        settle(() => reject(error3 instanceof Error ? error3 : new Error(String(error3))));
+      }
+    });
+    if (options.readLine !== void 0) {
+      options.readLine().then((input) => {
+        const callbackParameters = extractCallbackParametersFromInput2(input);
+        if (callbackParameters === null) {
+          settle(() => reject(new Error("OAuth callback missing authorization code")));
+          return;
+        }
+        try {
+          const code = validateAuthorizationCallbackParameters2(
+            callbackParameters,
+            expectedAuthorization
+          );
+          settle(() => resolve2(code));
+        } catch (error2) {
+          settle(() => reject(error2 instanceof Error ? error2 : new Error(String(error2))));
+        }
+      }).catch(() => void 0);
+    }
+    if (options.openBrowser !== void 0) {
+      options.openBrowser(authorizationUrl).catch((error2) => {
+        settle(() => reject(error2));
+      });
+    }
+  });
+}
+function extractCallbackParametersFromInput2(input) {
+  const trimmed = input.replaceAll("\r", "").replaceAll("\n", "").trim();
+  if (trimmed.length === 0) {
+    return null;
+  }
+  try {
+    const url = new URL(trimmed);
+    return {
+      code: url.searchParams.get("code"),
+      state: url.searchParams.get("state"),
+      iss: url.searchParams.get("iss")
+    };
+  } catch {
+    return {
+      code: trimmed,
+      state: null,
+      iss: null
+    };
+  }
+}
+function readExpectedAuthorizationCallback2(authorizationUrl) {
+  const url = new URL(authorizationUrl);
+  const state = url.searchParams.get("state");
+  const parsedState = parseAuthorizationState2(state);
+  return {
+    state,
+    issuer: parsedState?.issuer ?? null,
+    requireIssuer: parsedState?.requireIssuer ?? false
+  };
+}
+function validateAuthorizationCallbackParameters2(callback, expected) {
+  if (callback.code === null || callback.code.length === 0) {
+    throw new Error("OAuth callback missing authorization code");
+  }
+  if (expected.state !== null) {
+    if (callback.state === null || callback.state.length === 0) {
+      throw new Error("OAuth callback missing state");
+    }
+    if (callback.state !== expected.state) {
+      throw new Error("OAuth callback state mismatch");
+    }
+  }
+  if (expected.requireIssuer) {
+    if (callback.iss === null || callback.iss.length === 0) {
+      throw new Error("OAuth callback missing issuer");
+    }
+  }
+  if (callback.iss !== null && callback.iss.length > 0 && expected.issuer !== null && callback.iss !== expected.issuer) {
+    throw new Error("OAuth callback issuer mismatch");
+  }
+  return callback.code;
+}
+function escapeHtml2(text5) {
+  return text5.replaceAll("&", "&amp;").replaceAll("<", "&lt;").replaceAll(">", "&gt;").replaceAll('"', "&quot;");
+}
+function buildSuccessPage2(landingPage) {
+  const title = landingPage?.title ?? "Connected";
+  const body = landingPage?.body ?? "You can close this tab and return to your terminal.";
+  return [
+    "<!DOCTYPE html>",
+    `<html><head><meta charset=utf-8><title>${escapeHtml2(title)}</title></head>`,
+    '<body style="font-family:system-ui,sans-serif;display:flex;align-items:center;justify-content:center;min-height:100vh;margin:0">',
+    '<div style="text-align:center">',
+    `<h1>${escapeHtml2(title)}</h1>`,
+    `<p style="color:#666">${escapeHtml2(body)}</p>`,
+    "</div></body></html>"
+  ].join("");
+}
+var init_loopback_authorization2 = __esm({
+  "packages/poe-oauth/src/loopback-authorization.ts"() {
+    "use strict";
+    init_authorization_state2();
+  }
+});
+// packages/poe-oauth/src/pkce.ts
+import crypto6 from "node:crypto";
+function generateCodeVerifier2() {
+  return crypto6.randomBytes(32).toString("base64url");
+}
+function generateCodeChallenge2(verifier) {
+  return crypto6.createHash("sha256").update(verifier).digest("base64url");
+}
+var init_pkce2 = __esm({
+  "packages/poe-oauth/src/pkce.ts"() {
+    "use strict";
+  }
+});
 // packages/poe-oauth/src/oauth-client.ts
 function createOAuthClient(config) {
   const fetchFn = config.fetch ?? globalThis.fetch;
@@ -35464,15 +35670,15 @@ function createOAuthClient(config) {
     authorize: () => startAuthorization(config, fetchFn)
   };
 }
-function generateCodeVerifier2() {
-  return generateCodeVerifier();
+function generateCodeVerifier3() {
+  return generateCodeVerifier2();
 }
 async function startAuthorization(config, fetchFn) {
   const authorizationEndpoint = config.authorizationEndpoint ?? DEFAULT_AUTHORIZATION_ENDPOINT;
   const tokenEndpoint = config.tokenEndpoint ?? DEFAULT_TOKEN_ENDPOINT;
-  const codeVerifier = generateCodeVerifier2();
-  const codeChallenge = generateCodeChallenge(codeVerifier);
-  const loopbackSession = await createLoopbackAuthorizationSession({
+  const codeVerifier = generateCodeVerifier3();
+  const codeChallenge = generateCodeChallenge2(codeVerifier);
+  const loopbackSession = await createLoopbackAuthorizationSession2({
     openBrowser: config.openBrowser,
     readLine: config.readLine,
     createServer: config.createServer,
@@ -35559,7 +35765,8 @@ var DEFAULT_AUTHORIZATION_ENDPOINT, DEFAULT_TOKEN_ENDPOINT;
 var init_oauth_client = __esm({
   "packages/poe-oauth/src/oauth-client.ts"() {
     "use strict";
-    init_dist();
+    init_loopback_authorization2();
+    init_pkce2();
     DEFAULT_AUTHORIZATION_ENDPOINT = "https://poe.com/oauth/authorize";
     DEFAULT_TOKEN_ENDPOINT = "https://api.poe.com/token";
   }
@@ -81069,7 +81276,7 @@ var init_package2 = __esm({
   "package.json"() {
     package_default2 = {
       name: "poe-code",
-      version: "3.0.208",
+      version: "3.0.209",
       description: "CLI tool to configure Poe API for developer workflows.",
       type: "module",
       main: "./dist/index.js",