samlesa 2.13.0 → 2.14.1

package/types/libsaml.d.ts

@@ -0,0 +1,208 @@
+import type { MetadataInterface } from './metadata.js';
+/**
+ * 生成 SAML Attribute 元素（不带 XML 声明头）
+ * @param {Array} attributeData - 属性配置数据
+ * @returns {string} SAML Attribute XML 字符串
+ */
+export interface SignatureConstructor {
+    rawSamlMessage: string;
+    referenceTagXPath?: string;
+    privateKey: string;
+    privateKeyPass?: string;
+    signatureAlgorithm: string;
+    signingCert: string | Buffer;
+    isBase64Output?: boolean;
+    signatureConfig?: any;
+    isMessageSigned?: boolean;
+    transformationAlgorithms?: string[];
+}
+export interface SignatureVerifierOptions {
+    metadata?: MetadataInterface;
+    keyFile?: string;
+    signatureAlgorithm?: string;
+}
+export interface ExtractorResult {
+    [key: string]: any;
+    signature?: string | string[];
+    issuer?: string | string[];
+    nameID?: string;
+    notexist?: boolean;
+}
+export interface LoginResponseAttribute {
+    name: string;
+    nameFormat: string;
+    valueXsiType: string;
+    valueTag: string;
+    valueXmlnsXs?: string;
+    valueXmlnsXsi?: string;
+    type?: string | string[];
+}
+export interface LoginResponseAdditionalTemplates {
+    attributeStatementTemplate?: AttributeStatementTemplate;
+    attributeTemplate?: AttributeTemplate;
+}
+export interface BaseSamlTemplate {
+    context: string;
+}
+export interface LoginResponseTemplate extends BaseSamlTemplate {
+    attributes?: LoginResponseAttribute[];
+    additionalTemplates?: LoginResponseAdditionalTemplates;
+}
+export interface AttributeStatementTemplate extends BaseSamlTemplate {
+}
+export interface AttributeTemplate extends BaseSamlTemplate {
+}
+export interface LoginRequestTemplate extends BaseSamlTemplate {
+}
+export interface LogoutRequestTemplate extends BaseSamlTemplate {
+}
+export interface LogoutResponseTemplate extends BaseSamlTemplate {
+}
+export type KeyUse = 'signing' | 'encryption';
+export interface KeyComponent {
+    [key: string]: any;
+}
+export interface LibSamlInterface {
+    getQueryParamByType: (type: string) => string;
+    createXPath: (local: any, isExtractAll?: boolean) => string;
+    replaceTagsByValue: (rawXML: string, tagValues: any) => string;
+    attributeStatementBuilder: (attributes: LoginResponseAttribute[], attributeTemplate: AttributeTemplate, attributeStatementTemplate: AttributeStatementTemplate) => string;
+    constructSAMLSignature: (opts: SignatureConstructor) => string;
+    verifySignature: (xml: string, opts: SignatureVerifierOptions) => [boolean, any];
+    createKeySection: (use: KeyUse, cert: string | Buffer) => {};
+    constructMessageSignature: (octetString: string, key: string, passphrase?: string, isBase64?: boolean, signingAlgorithm?: string) => string;
+    verifyMessageSignature: (metadata: any, octetString: string, signature: string | Buffer, verifyAlgorithm?: string) => boolean;
+    getKeyInfo: (x509Certificate: string, signatureConfig?: any) => void;
+    encryptAssertion: (sourceEntity: any, targetEntity: any, entireXML: string) => Promise<string>;
+    decryptAssertion: (here: any, entireXML: string) => Promise<[string, any]>;
+    getSigningScheme: (sigAlg: string) => string | null;
+    getDigestMethod: (sigAlg: string) => string | null;
+    nrsaAliasMapping: any;
+    defaultLoginRequestTemplate: LoginRequestTemplate;
+    defaultLoginResponseTemplate: LoginResponseTemplate;
+    defaultAttributeStatementTemplate: AttributeStatementTemplate;
+    defaultAttributeTemplate: AttributeTemplate;
+    defaultLogoutRequestTemplate: LogoutRequestTemplate;
+    defaultLogoutResponseTemplate: LogoutResponseTemplate;
+}
+declare const _default: {
+    createXPath: (local: any, isExtractAll?: boolean) => string;
+    getQueryParamByType: (type: string) => "SAMLRequest" | "SAMLResponse";
+    defaultLoginRequestTemplate: {
+        context: string;
+    };
+    defaultLoginResponseTemplate: {
+        context: string;
+        attributes: never[];
+        additionalTemplates: {
+            attributeStatementTemplate: {
+                context: string;
+            };
+            attributeTemplate: {
+                context: string;
+            };
+        };
+    };
+    defaultAttributeStatementTemplate: {
+        context: string;
+    };
+    defaultAttributeTemplate: {
+        context: string;
+    };
+    defaultLogoutRequestTemplate: {
+        context: string;
+    };
+    defaultLogoutResponseTemplate: {
+        context: string;
+    };
+    defaultAttributeValueTemplate: {
+        context: string;
+    };
+    /**
+     * @desc Replace the tag (e.g. {tag}) inside the raw XML
+     * @param  {string} rawXML      raw XML string used to do keyword replacement
+     * @param  {array} tagValues    tag values
+     * @return {string}
+     */
+    replaceTagsByValue(rawXML: string, tagValues: Record<string, unknown>): string;
+    /**
+     * @desc Helper function to build the AttributeStatement tag
+     * @param  {LoginResponseAttribute} attributes    an array of attribute configuration
+     * @param  {AttributeTemplate} attributeTemplate    the attribute tag template to be used
+     * @param  {AttributeStatementTemplate} attributeStatementTemplate    the attributeStatement tag template to be used
+     * @return {string}
+     */
+    /** For Test */
+    attributeStatementBuilder(attributeData: any[]): string;
+    /**
+     * @desc Construct the XML signature for POST binding
+     * @param  {string} rawSamlMessage      request/response xml string
+     * @param  {string} referenceTagXPath    reference uri
+     * @param  {string} privateKey           declares the private key
+     * @param  {string} passphrase           passphrase of the private key [optional]
+     * @param  {string|buffer} signingCert   signing certificate
+     * @param  {string} signatureAlgorithm   signature algorithm
+     * @param  {string[]} transformationAlgorithms   canonicalization and transformation Algorithms
+     * @return {string} base64 encoded string
+     */
+    constructSAMLSignature(opts: SignatureConstructor): string;
+    /**
+     * @desc Verify the XML signature
+     * @param  {string} xml xml
+     * @param  {SignatureVerifierOptions} opts cert declares the X509 certificate
+     * @return {[boolean, string | null]} - A tuple where:
+     *   - The first element is `true` if the signature is valid, `false` otherwise.
+     *   - The second element is the cryptographically authenticated assertion node as a string, or `null` if not found.
+     */
+    verifySignature(xml: string, opts: SignatureVerifierOptions): (string | boolean)[] | (boolean | null)[];
+    /**
+     * @desc Helper function to create the key section in metadata (abstraction for signing and encrypt use)
+     * @param  {string} use          type of certificate (e.g. signing, encrypt)
+     * @param  {string} certString    declares the certificate String
+     * @return {object} object used in xml module
+     */
+    createKeySection(use: KeyUse, certString: string | Buffer): KeyComponent;
+    /**
+     * SAML 消息签名 (符合 SAML V2.0 绑定规范)
+     * @param octetString - 要签名的原始数据 (OCTET STRING)
+     * @param key - PEM 格式私钥
+     * @param passphrase - 私钥密码 (如果有加密)
+     * @param isBase64 - 是否返回 base64 编码 (默认 true)
+     * @param signingAlgorithm - 签名算法 (默认 'rsa-sha256')
+     * @returns 消息签名
+     */
+    constructMessageSignature(octetString: string | Buffer, key: string | Buffer, passphrase?: string, isBase64?: boolean, signingAlgorithm?: string): string | Buffer;
+    verifyMessageSignature(metadata: any, octetString: string, signature: string | Buffer, verifyAlgorithm?: string): boolean;
+    /**
+     * @desc Get the public key in string format
+     * @param  {string} x509Certificate certificate
+     * @return {string} public key
+     */
+    getKeyInfo(x509Certificate: string, signatureConfig?: any): {
+        getKeyInfo: () => string;
+        getKey: () => string;
+    };
+    /**
+     * @desc Encrypt the assertion section in Response
+     * @param  {Entity} sourceEntity             source entity
+     * @param  {Entity} targetEntity             target entity
+     * @param  {string} xml                      response in xml string format
+     * @return {Promise} a promise to resolve the finalized xml
+     */
+    encryptAssertion(sourceEntity: any, targetEntity: any, xml?: string): Promise<string>;
+    /**
+     * @desc Decrypt the assertion section in Response
+     * @param  {string} type             only accept SAMLResponse to proceed decryption
+     * @param  {Entity} here             this entity
+     * @param  {Entity} from             from the entity where the message is sent
+     * @param {string} entireXML         response in xml string format
+     * @return {function} a promise to get back the entire xml with decrypted assertion
+     */
+    decryptAssertion(here: any, entireXML: string): Promise<[string, any]>;
+    /**
+     * @desc Check if the xml string is valid and bounded
+     */
+    isValidXml(input: string): Promise<any>;
+};
+export default _default;
+//# sourceMappingURL=libsaml.d.ts.map

package/types/libsaml.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"libsaml.d.ts","sourceRoot":"","sources":["../src/libsaml.ts"],"names":[],"mappings":"AAUA,OAAO,KAAK,EAAC,iBAAiB,EAAC,MAAM,eAAe,CAAC;AAiCrD;;;;GAIG;AAGH,MAAM,WAAW,oBAAoB;IACnC,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,UAAU,EAAE,MAAM,CAAC;IACnB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,WAAW,EAAE,MAAM,GAAG,MAAM,CAAC;IAC7B,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,eAAe,CAAC,EAAE,GAAG,CAAC;IACtB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,wBAAwB,CAAC,EAAE,MAAM,EAAE,CAAC;CACrC;AAED,MAAM,WAAW,wBAAwB;IACvC,QAAQ,CAAC,EAAE,iBAAiB,CAAC;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,kBAAkB,CAAC,EAAE,MAAM,CAAC;CAC7B;AAED,MAAM,WAAW,eAAe;IAC9B,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;IAEnB,SAAS,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IAC9B,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,sBAAsB;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;CAC1B;AAED,MAAM,WAAW,gCAAgC;IAC/C,0BAA0B,CAAC,EAAE,0BAA0B,CAAC;IACxD,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;CACvC;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,qBAAsB,SAAQ,gBAAgB;IAC7D,UAAU,CAAC,EAAE,sBAAsB,EAAE,CAAC;IACtC,mBAAmB,CAAC,EAAE,gCAAgC,CAAC;CACxD;AAED,MAAM,WAAW,0BAA2B,SAAQ,gBAAgB;CACnE;AAED,MAAM,WAAW,iBAAkB,SAAQ,gBAAgB;CAC1D;AAED,MAAM,WAAW,oBAAqB,SAAQ,gBAAgB;CAC7D;AAED,MAAM,WAAW,qBAAsB,SAAQ,gBAAgB;CAC9D;AAED,MAAM,WAAW,sBAAuB,SAAQ,gBAAgB;CAC/D;AAED,MAAM,MAAM,MAAM,GAAG,SAAS,GAAG,YAAY,CAAC;AAE9C,MAAM,WAAW,YAAY;IAC3B,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,mBAAmB,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,CAAC;IAC9C,WAAW,EAAE,CAAC,KAAK,KAAA,EAAE,YAAY,CAAC,EAAE,OAAO,KAAK,MAAM,CAAC;IACvD,kBAAkB,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,KAAK,MAAM,CAAC;IAC/D,yBAAyB,EAAE,CAAC,UAAU,EAAE,sBAAsB,EAAE,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,0BAA0B,EAAE,0BAA0B,KAAK,MAAM,CAAC;IAC1K,sBAAsB,EAAE,CAAC,IAAI,EAAE,oBAAoB,KAAK,MAAM,CAAC;IAC/D,eAAe,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,wBAAwB,KAAK,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IACjF,gBAAgB,EAAE,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM,KAAK,EAAE,CAAC;IAC7D,yBAAyB,EAAE,CAAC,WAAW,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,OAAO,EAAE,gBAAgB,CAAC,EAAE,MAAM,KAAK,MAAM,CAAC;IAE5I,sBAAsB,EAAE,CAAC,QAAQ,KAAA,EAAE,WAAW,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC;IACzH,UAAU,EAAE,CAAC,eAAe,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,GAAG,KAAK,IAAI,CAAC;IACrE,gBAAgB,EAAE,CAAC,YAAY,KAAA,EAAE,YAAY,KAAA,EAAE,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,CAAC,CAAC;IACrF,gBAAgB,EAAE,CAAC,IAAI,KAAA,EAAE,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;IAEtE,gBAAgB,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,MAAM,GAAG,IAAI,CAAC;IACpD,eAAe,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK,MAAM,GAAG,IAAI,CAAC;IAEnD,gBAAgB,EAAE,GAAG,CAAC;IACtB,2BAA2B,EAAE,oBAAoB,CAAC;IAClD,4BAA4B,EAAE,qBAAqB,CAAC;IACpD,iCAAiC,EAAE,0BAA0B,CAAC;IAC9D,wBAAwB,EAAE,iBAAiB,CAAC;IAC5C,4BAA4B,EAAE,qBAAqB,CAAC;IACpD,6BAA6B,EAAE,sBAAsB,CAAC;CACvD;;6CAoH4C,OAAO,KAAG,MAAM;gCA5GxB,MAAM;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IAmJvC;;;;;OAKG;+BACwB,MAAM,aAAa,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM;IAS9E;;;;;;OAMG;IAmCH,eAAe;6CAC0B,GAAG,EAAE,GAAG,MAAM;IAyCvD;;;;;;;;;;OAUG;iCAC0B,oBAAoB;IA+CjD;;;;;;;OAOG;yBAEkB,MAAM,QAAQ,wBAAwB;IAyL3D;;;;;OAKG;0BACmB,MAAM,cAAc,MAAM,GAAG,MAAM,GAAG,YAAY;IAuBxE;;;;;;;;OAQG;2CAGY,MAAM,GAAG,MAAM,OACvB,MAAM,GAAG,MAAM,eACP,MAAM,aACT,OAAO,qBACC,MAAM,GACvB,MAAM,GAAG,MAAM;uDA8BH,MAAM,aACR,MAAM,GAAG,MAAM,oBACR,MAAM;IAc1B;;;;OAIG;gCACyB,MAAM,oBAAmB,GAAG;;;;IAWxD;;;;;;OAMG;iEAEgD,MAAM;IAqDzD;;;;;;;OAOG;2CAC+B,MAAM;IAkCxC;;OAEG;sBACqB,MAAM;;AA4BlC,wBAAyB"}

package/types/metadata-idp.d.ts

@@ -0,0 +1,25 @@
+/**
+* @file metadata-idp.ts
+* @author tngan
+* @desc  Metadata of identity provider
+*/
+import Metadata, { type MetadataInterface } from './metadata.js';
+import type { MetadataIdpConstructor } from './types.js';
+export interface IdpMetadataInterface extends MetadataInterface {
+}
+export default function (meta: MetadataIdpConstructor): IdpMetadata;
+export declare class IdpMetadata extends Metadata {
+    constructor(meta: MetadataIdpConstructor);
+    /**
+    * @desc Get the preference whether it wants a signed request
+    * @return {boolean} WantAuthnRequestsSigned
+    */
+    isWantAuthnRequestsSigned(): boolean;
+    /**
+    * @desc Get the entity endpoint for single sign on service
+    * @param  {string} binding      protocol binding (e.g. redirect, post)
+    * @return {string/object} location
+    */
+    getSingleSignOnService(binding: string): string | object;
+}
+//# sourceMappingURL=metadata-idp.d.ts.map

package/types/metadata-idp.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"metadata-idp.d.ts","sourceRoot":"","sources":["../src/metadata-idp.ts"],"names":[],"mappings":"AAAA;;;;EAIE;AACF,OAAO,QAAQ,EAAE,EAAE,KAAM,iBAAiB,EAAE,MAAM,eAAe,CAAC;AAClE,OAAQ,KAAK,EAAsB,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAM9E,MAAM,WAAW,oBAAqB,SAAQ,iBAAiB;CAE9D;AAKD,MAAM,CAAC,OAAO,WAAU,IAAI,EAAE,sBAAsB,eAEnD;AAED,qBAAa,WAAY,SAAQ,QAAQ;gBAE3B,IAAI,EAAE,sBAAsB;IA6FxC;;;MAGE;IACF,yBAAyB,IAAI,OAAO;IAQpC;;;;MAIE;IACF,sBAAsB,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM;CAUzD"}

package/types/metadata-sp.d.ts

@@ -0,0 +1,37 @@
+/**
+* @file metadata-sp.ts
+* @author tngan
+* @desc  Metadata of service provider
+*/
+import Metadata, { type MetadataInterface } from './metadata.js';
+import type { MetadataSpConstructor } from './types.js';
+export interface SpMetadataInterface extends MetadataInterface {
+}
+export default function (meta: MetadataSpConstructor): SpMetadata;
+/**
+* @desc SP Metadata is for creating Service Provider, provides a set of API to manage the actions in SP.
+*/
+export declare class SpMetadata extends Metadata {
+    /**
+    * @param  {object/string} meta (either xml string or configuration in object)
+    * @return {object} prototypes including public functions
+    */
+    constructor(meta: MetadataSpConstructor);
+    /**
+    * @desc Get the preference whether it wants a signed assertion response
+    * @return {boolean} Wantassertionssigned
+    */
+    isWantAssertionsSigned(): boolean;
+    /**
+    * @desc Get the preference whether it signs request
+    * @return {boolean} Authnrequestssigned
+    */
+    isAuthnRequestSigned(): boolean;
+    /**
+    * @desc Get the entity endpoint for assertion consumer service
+    * @param  {string} binding         protocol binding (e.g. redirect, post)
+    * @return {string/[string]} URL of endpoint(s)
+    */
+    getAssertionConsumerService(binding: string): string | string[];
+}
+//# sourceMappingURL=metadata-sp.d.ts.map

package/types/metadata-sp.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"metadata-sp.d.ts","sourceRoot":"","sources":["../src/metadata-sp.ts"],"names":[],"mappings":"AAAA;;;;EAIE;AACF,OAAO,QAAQ,EAAE,EAAC,KAAK,iBAAiB,EAAC,MAAM,eAAe,CAAC;AAE/D,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAC;AAMxD,MAAM,WAAW,mBAAoB,SAAQ,iBAAiB;CAE7D;AAcD,MAAM,CAAC,OAAO,WAAU,IAAI,EAAE,qBAAqB,cAElD;AAED;;EAEE;AACF,qBAAa,UAAW,SAAQ,QAAQ;IAEtC;;;MAGE;gBACU,IAAI,EAAE,qBAAqB;IA2LvC;;;MAGE;IACK,sBAAsB,IAAI,OAAO;IAGxC;;;MAGE;IACK,oBAAoB,IAAI,OAAO;IAGtC;;;;MAIE;IACK,2BAA2B,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,EAAE;CAoBvE"}

package/types/metadata.d.ts

@@ -0,0 +1,58 @@
+export interface MetadataInterface {
+    xmlString: string;
+    getMetadata: () => string;
+    exportMetadata: (exportFile: string) => void;
+    getEntityID: () => string;
+    getX509Certificate: (certType: string) => string | string[];
+    getNameIDFormat: () => any[];
+    getSingleLogoutService: (binding: string | undefined) => string | object;
+    getSupportBindings: (services: string[]) => string[];
+}
+export default class Metadata implements MetadataInterface {
+    xmlString: string;
+    meta: any;
+    /**
+    * @param  {string | Buffer} xml
+    * @param  {object} extraParse for custom metadata extractor
+    */
+    constructor(xml: string | Buffer, extraParse?: any);
+    /**
+    * @desc Get the metadata in xml format
+    * @return {string} metadata in xml format
+    */
+    getMetadata(): string;
+    /**
+    * @desc Export the metadata to specific file
+    * @param {string} exportFile is the output file path
+    */
+    exportMetadata(exportFile: string): void;
+    /**
+    * @desc Get the entityID in metadata
+    * @return {string} entityID
+    */
+    getEntityID(): string;
+    /**
+    * @desc Get the x509 certificate declared in entity metadata
+    * @param  {string} use declares the type of certificate
+    * @return {string} certificate in string format
+    */
+    getX509Certificate(use: string): any;
+    /**
+    * @desc Get the support NameID format declared in entity metadata
+    * @return {array} support NameID format
+    */
+    getNameIDFormat(): any;
+    /**
+    * @desc Get the entity endpoint for single logout service
+    * @param  {string} binding e.g. redirect, post
+    * @return {string/object} location
+    */
+    getSingleLogoutService(binding: string | undefined): string | object;
+    /**
+    * @desc Get the support bindings
+    * @param  {[string]} services
+    * @return {[string]} support bindings
+    */
+    getSupportBindings(services: string[]): string[];
+}
+//# sourceMappingURL=metadata.d.ts.map

package/types/metadata.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"metadata.d.ts","sourceRoot":"","sources":["../src/metadata.ts"],"names":[],"mappings":"AAUA,MAAM,WAAW,iBAAiB;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,MAAM,CAAC;IAC1B,cAAc,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,IAAI,CAAC;IAC7C,WAAW,EAAE,MAAM,MAAM,CAAC;IAC1B,kBAAkB,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,MAAM,GAAG,MAAM,EAAE,CAAC;IAC5D,eAAe,EAAE,MAAM,GAAG,EAAE,CAAC;IAC7B,sBAAsB,EAAE,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,KAAK,MAAM,GAAG,MAAM,CAAC;IACzE,kBAAkB,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,MAAM,EAAE,CAAC;CACtD;AAED,MAAM,CAAC,OAAO,OAAO,QAAS,YAAW,iBAAiB;IAExD,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,GAAG,CAAC;IAEV;;;MAGE;gBACU,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,UAAU,GAAE,GAAQ;IA2DtD;;;MAGE;IACK,WAAW,IAAI,MAAM;IAI5B;;;MAGE;IACK,cAAc,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAI/C;;;MAGE;IACK,WAAW,IAAI,MAAM;IAI5B;;;;MAIE;IACK,kBAAkB,CAAC,GAAG,EAAE,MAAM;IAIrC;;;MAGE;IACK,eAAe,IAAI,GAAG;IAI7B;;;;MAIE;IACK,sBAAsB,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,GAAG,MAAM,GAAG,MAAM;IAe3E;;;;MAIE;IACK,kBAAkB,CAAC,QAAQ,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;CAUxD"}

package/types/src/api.d.ts

@@ -1,13 +1,15 @@
-import { DOMParser as dom, Options as DOMParserOptions } from '@xmldom/xmldom';
-interface Context extends ValidatorContext, DOMParserContext {
-}
-interface ValidatorContext {
-    validate?: (xml: string) => Promise<any>;
-}
-interface DOMParserContext {
-    dom: dom;
-}
-export declare function getContext(): Context;
-export declare function setSchemaValidator(params: ValidatorContext): void;
-export declare function setDOMParserOptions(options?: DOMParserOptions): void;
-export {};
+import { DOMParser as dom } from '@xmldom/xmldom';
+import type { Options as DOMParserOptions } from '@xmldom/xmldom';
+interface Context extends ValidatorContext, DOMParserContext {
+}
+interface ValidatorContext {
+    validate?: (xml: string) => Promise<any>;
+}
+interface DOMParserContext {
+    dom: dom;
+}
+export declare function getContext(): Context;
+export declare function setSchemaValidator(params: ValidatorContext): void;
+export declare function setDOMParserOptions(options?: DOMParserOptions): void;
+export {};
+//# sourceMappingURL=api.d.ts.map

package/types/src/api.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../../src/api.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,IAAI,GAAG,EAAE,MAAM,gBAAgB,CAAC;AAClD,OAAO,KAAK,EAAE,OAAO,IAAI,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAElE,UAAU,OAAQ,SAAQ,gBAAgB,EAAE,gBAAgB;CAAG;AAE/D,UAAU,gBAAgB;IACxB,QAAQ,CAAC,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;CAC1C;AAED,UAAU,gBAAgB;IACxB,GAAG,EAAE,GAAG,CAAC;CACV;AAOD,wBAAgB,UAAU,IAAG,OAAO,CAEnC;AAED,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,gBAAgB,GAAE,IAAI,CAShE;AAED,wBAAgB,mBAAmB,CAAC,OAAO,GAAE,gBAAqB,GAAE,IAAI,CAEvE"}

package/types/src/binding-post.d.ts

@@ -1,47 +1,48 @@
-/**
-* @file binding-post.ts
-* @author tngan
-* @desc Binding-level API, declare the functions using POST binding
-*/
-import { BindingContext } from './entity.js';
-/**
-* @desc Generate a base64 encoded login request
-* @param  {string} referenceTagXPath           reference uri
-* @param  {object} entity                      object includes both idp and sp
-* @param  {function} customTagReplacement     used when developers have their own login response template
-*/
-declare function base64LoginRequest(referenceTagXPath: string, entity: any, customTagReplacement?: (template: string) => BindingContext): BindingContext;
-/**
- * @desc Generate a base64 encoded login response
- * @param  {object} requestInfo                 corresponding request, used to obtain the id
- * @param  {object} entity                      object includes both idp and sp
- * @param  {object} user                        current logged user (e.g. req.user)
- * @param  {function} customTagReplacement     used when developers have their own login response template
- * @param  {boolean}  encryptThenSign           whether or not to encrypt then sign first (if signing). Defaults to sign-then-encrypt
- * @param AttributeStatement
- */
-declare function base64LoginResponse(requestInfo: any, entity: any, user?: any, customTagReplacement?: (template: string) => BindingContext, encryptThenSign?: boolean, AttributeStatement?: never[]): Promise<BindingContext>;
-/**
-* @desc Generate a base64 encoded logout request
-* @param  {object} user                         current logged user (e.g. req.user)
-* @param  {string} referenceTagXPath            reference uri
-* @param  {object} entity                       object includes both idp and sp
-* @param  {function} customTagReplacement      used when developers have their own login response template
-* @return {string} base64 encoded request
-*/
-declare function base64LogoutRequest(user: any, referenceTagXPath: any, entity: any, customTagReplacement?: (template: string) => BindingContext): BindingContext;
-/**
-* @desc Generate a base64 encoded logout response
-* @param  {object} requestInfo                 corresponding request, used to obtain the id
-* @param  {string} referenceTagXPath           reference uri
-* @param  {object} entity                      object includes both idp and sp
-* @param  {function} customTagReplacement     used when developers have their own login response template
-*/
-declare function base64LogoutResponse(requestInfo: any, entity: any, customTagReplacement: (template: string) => BindingContext): BindingContext;
-declare const postBinding: {
-    base64LoginRequest: typeof base64LoginRequest;
-    base64LoginResponse: typeof base64LoginResponse;
-    base64LogoutRequest: typeof base64LogoutRequest;
-    base64LogoutResponse: typeof base64LogoutResponse;
-};
-export default postBinding;
+/**
+* @file binding-post.ts
+* @author tngan
+* @desc Binding-level API, declare the functions using POST binding
+*/
+import type { BindingContext } from './entity.js';
+/**
+* @desc Generate a base64 encoded login request
+* @param  {string} referenceTagXPath           reference uri
+* @param  {object} entity                      object includes both idp and sp
+* @param  {function} customTagReplacement     used when developers have their own login response template
+*/
+declare function base64LoginRequest(referenceTagXPath: string, entity: any, customTagReplacement?: (template: string) => BindingContext): BindingContext;
+/**
+ * @desc Generate a base64 encoded login response
+ * @param  {object} requestInfo                 corresponding request, used to obtain the id
+ * @param  {object} entity                      object includes both idp and sp
+ * @param  {object} user                        current logged user (e.g. req.user)
+ * @param  {function} customTagReplacement     used when developers have their own login response template
+ * @param  {boolean}  encryptThenSign           whether or not to encrypt then sign first (if signing). Defaults to sign-then-encrypt
+ * @param AttributeStatement
+ */
+declare function base64LoginResponse(requestInfo: any | undefined, entity: any, user?: any, customTagReplacement?: (template: string) => BindingContext, encryptThenSign?: boolean, AttributeStatement?: never[]): Promise<BindingContext>;
+/**
+* @desc Generate a base64 encoded logout request
+* @param  {object} user                         current logged user (e.g. req.user)
+* @param  {string} referenceTagXPath            reference uri
+* @param  {object} entity                       object includes both idp and sp
+* @param  {function} customTagReplacement      used when developers have their own login response template
+* @return {string} base64 encoded request
+*/
+declare function base64LogoutRequest(user: Record<string, unknown>, referenceTagXPath: string, entity: any, customTagReplacement?: (template: string) => BindingContext): BindingContext;
+/**
+* @desc Generate a base64 encoded logout response
+* @param  {object} requestInfo                 corresponding request, used to obtain the id
+* @param  {string} referenceTagXPath           reference uri
+* @param  {object} entity                      object includes both idp and sp
+* @param  {function} customTagReplacement     used when developers have their own login response template
+*/
+declare function base64LogoutResponse(requestInfo: any, entity: any, customTagReplacement: (template: string) => BindingContext): BindingContext;
+declare const postBinding: {
+    base64LoginRequest: typeof base64LoginRequest;
+    base64LoginResponse: typeof base64LoginResponse;
+    base64LogoutRequest: typeof base64LogoutRequest;
+    base64LogoutResponse: typeof base64LogoutResponse;
+};
+export default postBinding;
+//# sourceMappingURL=binding-post.d.ts.map

package/types/src/binding-post.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"binding-post.d.ts","sourceRoot":"","sources":["../../src/binding-post.ts"],"names":[],"mappings":"AAAA;;;;EAIE;AAGF,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAMlD;;;;;EAKE;AACF,iBAAS,kBAAkB,CAAC,iBAAiB,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,GAAG,cAAc,CAqD/I;AACD;;;;;;;;GAQG;AACH,iBAAe,mBAAmB,CAAC,WAAW,EAAE,GAAG,YAAK,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,GAAE,GAAQ,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,EAAE,eAAe,GAAE,OAAe,EAAG,kBAAkB,UAAG,GAAG,OAAO,CAAC,cAAc,CAAC,CAuIrO;AACD;;;;;;;EAOE;AACF,iBAAS,mBAAmB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,iBAAiB,EAAC,MAAM,EAAE,MAAM,KAAA,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,GAAG,cAAc,CAkDzK;AACD;;;;;;EAME;AACF,iBAAS,oBAAoB,CAAC,WAAW,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,oBAAoB,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,GAAG,cAAc,CAsDvI;AAED,QAAA,MAAM,WAAW;;;;;CAKhB,CAAC;AAEF,eAAe,WAAW,CAAC"}

package/types/src/binding-redirect.d.ts

@@ -1,53 +1,54 @@
-import { BindingContext } from './entity.js';
-import { IdentityProvider as Idp } from './entity-idp.js';
-import { ServiceProvider as Sp } from './entity-sp.js';
-export interface BuildRedirectConfig {
-    baseUrl: string;
-    type: string;
-    isSigned: boolean;
-    context: string;
-    entitySetting: any;
-    relayState?: string;
-}
-/**
- * @desc Redirect URL for login request
- * @param  {object} entity                       object includes both idp and sp
- * @param  {function} customTagReplacement      used when developers have their own login response template
- * @return {string} redirect URL
- */
-declare function loginRequestRedirectURL(entity: {
-    idp: Idp;
-    sp: Sp;
-}, customTagReplacement?: (template: string) => BindingContext): BindingContext;
-/**
- * @desc Redirect URL for login response
- * @param  {object} requestInfo             corresponding request, used to obtain the id
- * @param  {object} entity                      object includes both idp and sp
- * @param  {object} user                         current logged user (e.g. req.user)
- * @param  {String} relayState                the relaystate sent by sp corresponding request
- * @param  {function} customTagReplacement     used when developers have their own login response template
- * @param AttributeStatement
- */
-declare function loginResponseRedirectURL(requestInfo: any, entity: any, user?: any, relayState?: string, customTagReplacement?: (template: string) => BindingContext, AttributeStatement?: never[]): BindingContext;
-/**
- * @desc Redirect URL for logout request
- * @param  {object} user                        current logged user (e.g. req.user)
- * @param  {object} entity                      object includes both idp and sp
- * @param  {function} customTagReplacement     used when developers have their own login response template
- * @return {string} redirect URL
- */
-declare function logoutRequestRedirectURL(user: any, entity: any, relayState?: string, customTagReplacement?: (template: string, tags: object) => BindingContext): BindingContext;
-/**
- * @desc Redirect URL for logout response
- * @param  {object} requescorresponding request, used to obtain the id
- * @param  {object} entity                      object includes both idp and sp
- * @param  {function} customTagReplacement     used when developers have their own login response template
- */
-declare function logoutResponseRedirectURL(requestInfo: any, entity: any, relayState?: string, customTagReplacement?: (template: string) => BindingContext): BindingContext;
-declare const redirectBinding: {
-    loginRequestRedirectURL: typeof loginRequestRedirectURL;
-    loginResponseRedirectURL: typeof loginResponseRedirectURL;
-    logoutRequestRedirectURL: typeof logoutRequestRedirectURL;
-    logoutResponseRedirectURL: typeof logoutResponseRedirectURL;
-};
-export default redirectBinding;
+import type { BindingContext } from './entity.js';
+import { IdentityProvider as Idp } from './entity-idp.js';
+import { ServiceProvider as Sp } from './entity-sp.js';
+export interface BuildRedirectConfig {
+    baseUrl: string;
+    type: string;
+    isSigned: boolean;
+    context: string;
+    entitySetting: any;
+    relayState?: string;
+}
+/**
+ * @desc Redirect URL for login request
+ * @param  {object} entity                       object includes both idp and sp
+ * @param  {function} customTagReplacement      used when developers have their own login response template
+ * @return {string} redirect URL
+ */
+declare function loginRequestRedirectURL(entity: {
+    idp: Idp;
+    sp: Sp;
+}, customTagReplacement?: (template: string) => BindingContext): BindingContext;
+/**
+ * @desc Redirect URL for login response
+ * @param  {object} requestInfo             corresponding request, used to obtain the id
+ * @param  {object} entity                      object includes both idp and sp
+ * @param  {object} user                         current logged user (e.g. req.user)
+ * @param  {String} relayState                the relaystate sent by sp corresponding request
+ * @param  {function} customTagReplacement     used when developers have their own login response template
+ * @param AttributeStatement
+ */
+declare function loginResponseRedirectURL(requestInfo: any, entity: any, user?: any, relayState?: string, customTagReplacement?: (template: string) => BindingContext, AttributeStatement?: never[]): BindingContext;
+/**
+ * @desc Redirect URL for logout request
+ * @param  {object} user                        current logged user (e.g. req.user)
+ * @param  {object} entity                      object includes both idp and sp
+ * @param  {function} customTagReplacement     used when developers have their own login response template
+ * @return {string} redirect URL
+ */
+declare function logoutRequestRedirectURL(user: any, entity: any, relayState?: string, customTagReplacement?: (template: string, tags: object) => BindingContext): BindingContext;
+/**
+ * @desc Redirect URL for logout response
+ * @param  {object} requescorresponding request, used to obtain the id
+ * @param  {object} entity                      object includes both idp and sp
+ * @param  {function} customTagReplacement     used when developers have their own login response template
+ */
+declare function logoutResponseRedirectURL(requestInfo: any, entity: any, relayState?: string, customTagReplacement?: (template: string) => BindingContext): BindingContext;
+declare const redirectBinding: {
+    loginRequestRedirectURL: typeof loginRequestRedirectURL;
+    loginResponseRedirectURL: typeof loginResponseRedirectURL;
+    logoutRequestRedirectURL: typeof logoutRequestRedirectURL;
+    logoutResponseRedirectURL: typeof logoutResponseRedirectURL;
+};
+export default redirectBinding;
+//# sourceMappingURL=binding-redirect.d.ts.map

package/types/src/binding-redirect.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"binding-redirect.d.ts","sourceRoot":"","sources":["../../src/binding-redirect.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAC,cAAc,EAAC,MAAM,aAAa,CAAC;AAChD,OAAO,EAAC,gBAAgB,IAAI,GAAG,EAAC,MAAM,iBAAiB,CAAC;AACxD,OAAO,EAAC,eAAe,IAAI,EAAE,EAAC,MAAM,gBAAgB,CAAC;AAOrD,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,OAAO,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,GAAG,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAgED;;;;;GAKG;AACH,iBAAS,uBAAuB,CAAC,MAAM,EAAE;IACvC,GAAG,EAAE,GAAG,CAAC;IACT,EAAE,EAAE,EAAE,CAAA;CACP,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,GAAG,cAAc,CAyC9E;AAED;;;;;;;;GAQG;AACH,iBAAS,wBAAwB,CAAC,WAAW,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,GAAE,GAAQ,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,EAAC,kBAAkB,UAAI,GAAG,cAAc,CAoGxM;AAED;;;;;;GAMG;AACH,iBAAS,wBAAwB,CAAC,IAAI,KAAA,EAAE,MAAM,KAAA,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,cAAc,GAAG,cAAc,CAwC9J;AAED;;;;;GAKG;AACH,iBAAS,yBAAyB,CAAC,WAAW,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,UAAU,CAAC,EAAE,MAAM,EAAE,oBAAoB,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,cAAc,GAAG,cAAc,CAyClK;AAED,QAAA,MAAM,eAAe;;;;;CAKpB,CAAC;AAEF,eAAe,eAAe,CAAC"}