npm - spacetimedb - Versions diffs - 1.6.2 → 1.7.0 - Mend

spacetimedb 1.6.2 → 1.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (19) hide show

package/LICENSE.txt +2 -2
package/dist/server/index.cjs +118 -6
package/dist/server/index.cjs.map +1 -1
package/dist/server/index.d.ts +2 -1
package/dist/server/index.d.ts.map +1 -1
package/dist/server/index.mjs +118 -6
package/dist/server/index.mjs.map +1 -1
package/dist/server/reducers.d.ts +33 -0
package/dist/server/reducers.d.ts.map +1 -1
package/dist/server/runtime.d.ts +2 -0
package/dist/server/runtime.d.ts.map +1 -1
package/dist/server/schema.d.ts +2 -2
package/dist/server/schema.d.ts.map +1 -1
package/package.json +1 -1
package/src/server/index.ts +2 -1
package/src/server/reducers.ts +43 -0
package/src/server/runtime.ts +145 -2
package/src/server/schema.ts +5 -3
package/src/server/sys.d.ts +1 -0

package/LICENSE.txt CHANGED Viewed

@@ -5,7 +5,7 @@ Business Source License 1.1
 Parameters
 Licensor:             Clockwork Laboratories, Inc.
-Licensed Work:        SpacetimeDB 1.6.0
+Licensed Work:        SpacetimeDB 1.7.0
                       The Licensed Work is
                       (c) 2023 Clockwork Laboratories, Inc.
@@ -21,7 +21,7 @@ Additional Use Grant: You may make use of the Licensed Work provided your
                       Licensed Work by creating tables whose schemas are
                       controlled by such third parties.
-Change Date:          2030-10-15
+Change Date:          2030-10-31
 Change License:       GNU Affero General Public License v3.0 with a linking
                       exception

package/dist/server/index.cjs CHANGED Viewed

@@ -53,9 +53,9 @@ var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__ge
   mod
 ));
-// ../../../../../../../../mnt/nutera/localhd-symlinks/home/lead/work/clockwork-localhd/SpacetimeDBPrivate/public/node_modules/.pnpm/base64-js@1.5.1/node_modules/base64-js/index.js
+// ../../node_modules/.pnpm/base64-js@1.5.1/node_modules/base64-js/index.js
 var require_base64_js = __commonJS({
-  "../../../../../../../../mnt/nutera/localhd-symlinks/home/lead/work/clockwork-localhd/SpacetimeDBPrivate/public/node_modules/.pnpm/base64-js@1.5.1/node_modules/base64-js/index.js"(exports) {
+  "../../node_modules/.pnpm/base64-js@1.5.1/node_modules/base64-js/index.js"(exports) {
     exports.byteLength = byteLength;
     exports.toByteArray = toByteArray;
     exports.fromByteArray = fromByteArray2;
@@ -153,9 +153,9 @@ var require_base64_js = __commonJS({
   }
 });
-// ../../../../../../../../mnt/nutera/localhd-symlinks/home/lead/work/clockwork-localhd/SpacetimeDBPrivate/public/node_modules/.pnpm/fast-text-encoding@1.0.6/node_modules/fast-text-encoding/text.min.js
+// ../../node_modules/.pnpm/fast-text-encoding@1.0.6/node_modules/fast-text-encoding/text.min.js
 var require_text_min = __commonJS({
-  "../../../../../../../../mnt/nutera/localhd-symlinks/home/lead/work/clockwork-localhd/SpacetimeDBPrivate/public/node_modules/.pnpm/fast-text-encoding@1.0.6/node_modules/fast-text-encoding/text.min.js"(exports) {
+  "../../node_modules/.pnpm/fast-text-encoding@1.0.6/node_modules/fast-text-encoding/text.min.js"(exports) {
     (function(scope) {
       function B(r, e) {
         var f;
@@ -1605,8 +1605,10 @@ var Schema = class {
   reducer(name, paramsOrFn, fn) {
     if (typeof paramsOrFn === "function") {
       reducer(name, {}, paramsOrFn);
+      return paramsOrFn;
     } else {
       reducer(name, paramsOrFn, fn);
+      return fn;
     }
   }
   // eslint-disable-next-line @typescript-eslint/no-empty-object-type
@@ -4912,6 +4914,111 @@ var sys = freeze(
     ])
   )
 );
+function parseJsonObject(json) {
+  let value;
+  try {
+    value = JSON.parse(json);
+  } catch {
+    throw new Error("Invalid JSON: failed to parse string");
+  }
+  if (value === null || typeof value !== "object" || Array.isArray(value)) {
+    throw new Error("Expected a JSON object at the top level");
+  }
+  return value;
+}
+var JwtClaimsImpl = class {
+  /**
+   * Creates a new JwtClaims instance.
+   * @param rawPayload The JWT payload as a raw JSON string.
+   * @param identity The identity for this JWT. We are only taking this because we don't have a blake3 implementation (which we need to compute it).
+   */
+  constructor(rawPayload, identity) {
+    this.rawPayload = rawPayload;
+    this.fullPayload = parseJsonObject(rawPayload);
+    this._identity = identity;
+  }
+  fullPayload;
+  _identity;
+  get identity() {
+    return this._identity;
+  }
+  get subject() {
+    return this.fullPayload["sub"];
+  }
+  get issuer() {
+    return this.fullPayload["iss"];
+  }
+  get audience() {
+    const aud = this.fullPayload["aud"];
+    if (aud == null) {
+      return [];
+    }
+    return typeof aud === "string" ? [aud] : aud;
+  }
+};
+var AuthCtxImpl = class _AuthCtxImpl {
+  isInternal;
+  // Source of the JWT payload string, if there is one.
+  _jwtSource;
+  // Whether we have initialized the JWT claims.
+  _initializedJWT = false;
+  _jwtClaims;
+  _senderIdentity;
+  constructor(opts) {
+    this.isInternal = opts.isInternal;
+    this._jwtSource = opts.jwtSource;
+    this._senderIdentity = opts.senderIdentity;
+  }
+  _initializeJWT() {
+    if (this._initializedJWT) return;
+    this._initializedJWT = true;
+    const token = this._jwtSource();
+    if (!token) {
+      this._jwtClaims = null;
+    } else {
+      this._jwtClaims = new JwtClaimsImpl(token, this._senderIdentity);
+    }
+    Object.freeze(this);
+  }
+  /** Lazily compute whether a JWT exists and is parseable. */
+  get hasJWT() {
+    this._initializeJWT();
+    return this._jwtClaims !== null;
+  }
+  /** Lazily parse the JwtClaims only when accessed. */
+  get jwt() {
+    this._initializeJWT();
+    return this._jwtClaims;
+  }
+  /** Create a context representing internal (non-user) requests. */
+  static internal() {
+    return new _AuthCtxImpl({
+      isInternal: true,
+      jwtSource: () => null,
+      senderIdentity: Identity.zero()
+    });
+  }
+  /** If there is a connection id, look up the JWT payload from the system tables. */
+  static fromSystemTables(connectionId, sender) {
+    if (connectionId === null) {
+      return new _AuthCtxImpl({
+        isInternal: false,
+        jwtSource: () => null,
+        senderIdentity: sender
+      });
+    }
+    return new _AuthCtxImpl({
+      isInternal: false,
+      jwtSource: () => {
+        const payloadBuf = sys.get_jwt_payload(connectionId.__connection_id__);
+        if (payloadBuf.length === 0) return null;
+        const payloadStr = new TextDecoder().decode(payloadBuf);
+        return payloadStr;
+      },
+      senderIdentity: sender
+    });
+  }
+};
 var hooks = {
   __describe_module__() {
     const writer = new BinaryWriter(128);
@@ -4927,14 +5034,19 @@ var hooks = {
       argsType,
       MODULE_DEF.typespace
     );
+    const senderIdentity = new Identity(sender);
     const ctx = freeze({
-      sender: new Identity(sender),
+      sender: senderIdentity,
       get identity() {
         return new Identity(sys.identity().__identity__);
       },
       timestamp: new Timestamp(timestamp),
       connectionId: ConnectionId.nullIfZero(new ConnectionId(connId)),
-      db: getDbView()
+      db: getDbView(),
+      senderAuth: AuthCtxImpl.fromSystemTables(
+        ConnectionId.nullIfZero(new ConnectionId(connId)),
+        senderIdentity
+      )
     });
     try {
       return REDUCERS[reducerId](ctx, args) ?? { tag: "ok" };