sst 3.0.0 → 3.0.1-1

package/node/auth/session.d.ts

@@ -1,76 +0,0 @@
-import { SignerOptions } from "fast-jwt";
-import { APIGatewayProxyStructuredResultV2 } from "aws-lambda";
-export interface SessionTypes {
-    public: {};
-}
-export type SessionValue = {
-    [type in keyof SessionTypes]: {
-        type: type;
-        properties: SessionTypes[type];
-    };
-}[keyof SessionTypes];
-export declare function useSession<T = SessionValue>(): T;
-/**
- * Creates a new session token with provided information
- *
- * @example
- * ```js
- * Session.create({
- *   type: "user",
- *   properties: {
- *     userID: "123"
- *   }
- * })
- * ```
- */
-declare function create<T extends keyof SessionTypes>(input: {
-    type: T;
-    properties: SessionTypes[T];
-    options?: Partial<SignerOptions>;
-}): string;
-/**
- * Returns a 302 redirect with an auth-token cookie set with the provided session information
- *
- * @example
- * ```js
- * Session.cookie({
- *   type: "user",
- *   properties: {
- *     userID: "123"
- *   },
- *   redirect: "https://app.example.com/"
- * })
- * ```
- */
-export declare function cookie<T extends keyof SessionTypes>(input: {
-    type: T;
-    properties: SessionTypes[T];
-    redirect: string;
-    options?: Partial<SignerOptions>;
-}): APIGatewayProxyStructuredResultV2;
-/**
- * Returns a 302 redirect with a query parameter named token set with the jwt value
- *
- * @example
- * ```js
- * Session.parameter({
- *   type: "user",
- *   properties: {
- *     userID: "123"
- *   },
- *   redirect: "https://app.example.com/"
- * })
- * ```
- */
-export declare function parameter<T extends keyof SessionTypes>(input: {
-    type: T;
-    redirect: string;
-    properties: SessionTypes[T];
-    options?: Partial<SignerOptions>;
-}): APIGatewayProxyStructuredResultV2;
-export declare const Session: {
-    create: typeof create;
-    cookie: typeof cookie;
-    parameter: typeof parameter;
-};
-export {};

package/node/auth/session.js

@@ -1,121 +0,0 @@
-import { createSigner, createVerifier } from "fast-jwt";
-import { Context } from "../../context/context2.js";
-import { useCookie, useHeader } from "../api/index.js";
-import { getPrivateKey, getPublicKey } from "./auth.js";
-import { useContextType } from "../../context/handler.js";
-const SessionMemo = /* @__PURE__ */ Context.memo(() => {
-    // Get the context type and hooks that match that type
-    let token = "";
-    const header = useHeader("authorization");
-    if (header)
-        token = header.substring(7);
-    const ctxType = useContextType();
-    const cookie = ctxType === "api" ? useCookie("auth-token") : undefined;
-    if (cookie)
-        token = cookie;
-    // WebSocket may also set the token in the protocol header
-    // TODO: Once https://github.com/sst/sst/pull/2838 is merged,
-    // then we should no longer need to check both casing for the header.
-    const wsProtocol = ctxType === "ws"
-        ? useHeader("sec-websocket-protocol") ||
-            useHeader("Sec-WebSocket-Protocol")
-        : undefined;
-    if (wsProtocol)
-        token = wsProtocol.split(",")[0].trim();
-    if (token) {
-        const jwt = createVerifier({
-            algorithms: ["RS512"],
-            key: getPublicKey(),
-        })(token);
-        return jwt;
-    }
-    return {
-        type: "public",
-        properties: {},
-    };
-});
-// This is a crazy TS hack to prevent the types from being evaluated too soon
-export function useSession() {
-    const ctx = SessionMemo();
-    return ctx;
-}
-/**
- * Creates a new session token with provided information
- *
- * @example
- * ```js
- * Session.create({
- *   type: "user",
- *   properties: {
- *     userID: "123"
- *   }
- * })
- * ```
- */
-function create(input) {
-    const signer = createSigner({
-        ...input.options,
-        key: getPrivateKey(),
-        algorithm: "RS512",
-    });
-    const token = signer({
-        type: input.type,
-        properties: input.properties,
-    });
-    return token;
-}
-/**
- * Returns a 302 redirect with an auth-token cookie set with the provided session information
- *
- * @example
- * ```js
- * Session.cookie({
- *   type: "user",
- *   properties: {
- *     userID: "123"
- *   },
- *   redirect: "https://app.example.com/"
- * })
- * ```
- */
-export function cookie(input) {
-    const token = create(input);
-    const expires = new Date(Date.now() + (input.options?.expiresIn || 1000 * 60 * 60 * 24 * 7));
-    return {
-        statusCode: 302,
-        headers: {
-            location: input.redirect,
-        },
-        cookies: [
-            `auth-token=${token}; HttpOnly; SameSite=None; Secure; Path=/; Expires=${expires}`,
-        ],
-    };
-}
-/**
- * Returns a 302 redirect with a query parameter named token set with the jwt value
- *
- * @example
- * ```js
- * Session.parameter({
- *   type: "user",
- *   properties: {
- *     userID: "123"
- *   },
- *   redirect: "https://app.example.com/"
- * })
- * ```
- */
-export function parameter(input) {
-    const token = create(input);
-    return {
-        statusCode: 302,
-        headers: {
-            location: input.redirect + "?token=" + token,
-        },
-    };
-}
-export const Session = {
-    create,
-    cookie,
-    parameter,
-};

package/node/bucket/index.d.ts

@@ -1,3 +0,0 @@
-export interface BucketResources {
-}
-export declare const Bucket: BucketResources;

package/node/bucket/index.js

@@ -1,2 +0,0 @@
-import { createProxy } from "../util/index.js";
-export const Bucket = /* @__PURE__ */ createProxy("Bucket");

package/node/config/index.d.ts

@@ -1,13 +0,0 @@
-export interface ParameterResources {
-}
-export interface SecretResources {
-}
-export interface ConfigTypes {
-}
-export type ParameterTypes = {
-    [T in keyof ParameterResources]: string;
-};
-export type SecretTypes = {
-    [T in keyof SecretResources]: string;
-};
-export declare const Config: ConfigTypes & ParameterTypes & SecretTypes;

package/node/config/index.js

@@ -1,22 +0,0 @@
-import { createProxy, getVariables2 } from "../util/index.js";
-export const Config = /* @__PURE__ */ createProxy("Config");
-const metadata = parseMetadataEnvironment();
-const parameters = flattenValues(getVariables2("Parameter"));
-const secrets = flattenValues(getVariables2("Secret"));
-Object.assign(Config, metadata, parameters, secrets);
-///////////////
-// Functions
-///////////////
-function parseMetadataEnvironment() {
-    return {
-        APP: process.env.SST_APP,
-        STAGE: process.env.SST_STAGE,
-    };
-}
-function flattenValues(configValues) {
-    const acc = {};
-    Object.keys(configValues).forEach((name) => {
-        acc[name] = configValues[name].value;
-    });
-    return acc;
-}

package/node/event-bus/index.d.ts

@@ -1,51 +0,0 @@
-export interface EventBusResources {
-}
-export declare const EventBus: EventBusResources;
-import { PutEventsCommandOutput } from "@aws-sdk/client-eventbridge";
-import { EventBridgeEvent } from "aws-lambda";
-import { ZodAny, ZodObject, ZodRawShape, z } from "zod";
-/**
- * PutEventsCommandOutput is used in return type of createEvent, in case the consumer of SST builds
- * their project with declaration files, this is not portable. In order to allow TS to generate a
- * declaration file without reference to @aws-sdk/client-eventbridge, we must re-export the type.
- *
- * More information here: https://github.com/microsoft/TypeScript/issues/47663#issuecomment-1519138189
- */
-export { PutEventsCommandOutput };
-export declare function createEventBuilder<Bus extends keyof typeof EventBus, MetadataShape extends ZodRawShape | undefined, MetadataFunction extends () => any>(props: {
-    bus: Bus;
-    metadata?: MetadataShape;
-    metadataFn?: MetadataFunction;
-}): <Type extends string, Shape extends ZodRawShape, Properties = z.objectOutputType<Shape, ZodAny, "strip">>(type: Type, properties: Shape) => {
-    publish: undefined extends MetadataShape ? (properties: Properties) => Promise<PutEventsCommandOutput> : (properties: Properties, metadata: z.infer<ZodObject<Exclude<MetadataShape, undefined>, "strip", ZodAny>>) => Promise<void>;
-    type: Type;
-    shape: {
-        metadata: Parameters<undefined extends MetadataShape ? (properties: Properties) => Promise<PutEventsCommandOutput> : (properties: Properties, metadata: z.infer<ZodObject<Exclude<MetadataShape, undefined>, "strip", ZodAny>>) => Promise<void>>[1];
-        properties: Properties;
-        metadataFn: ReturnType<MetadataFunction>;
-    };
-};
-export type inferEvent<T extends {
-    shape: ZodObject<any>;
-}> = z.infer<T["shape"]>;
-type Event = {
-    type: string;
-    shape: {
-        properties: any;
-        metadata: any;
-        metadataFn: any;
-    };
-};
-type EventPayload<E extends Event> = {
-    type: E["type"];
-    properties: E["shape"]["properties"];
-    metadata: undefined extends E["shape"]["metadata"] ? E["shape"]["metadataFn"] : E["shape"]["metadata"];
-    attempts: number;
-};
-export declare function EventHandler<Events extends Event>(_events: Events | Events[], cb: (evt: {
-    [K in Events["type"]]: EventPayload<Extract<Events, {
-        type: K;
-    }>>;
-}[Events["type"]]) => Promise<void>): (event: EventBridgeEvent<string, any> & {
-    attempts?: number;
-}) => Promise<void>;

package/node/event-bus/index.js

@@ -1,76 +0,0 @@
-import { createProxy } from "../util/index.js";
-export const EventBus = 
-/* @__PURE__ */ createProxy("EventBus");
-import { EventBridgeClient, PutEventsCommand, } from "@aws-sdk/client-eventbridge";
-import { z } from "zod";
-import { useLoader } from "../util/loader.js";
-import { Config } from "../config/index.js";
-const client = new EventBridgeClient({});
-export function createEventBuilder(props) {
-    return function createEvent(type, properties) {
-        const propertiesSchema = z.object(properties);
-        const metadataSchema = props.metadata
-            ? z.object(props.metadata)
-            : undefined;
-        const publish = async (properties, metadata) => {
-            const result = await useLoader("sst.bus.publish", async (input) => {
-                const size = 10;
-                const promises = [];
-                for (let i = 0; i < input.length; i += size) {
-                    const chunk = input.slice(i, i + size);
-                    promises.push(client.send(new PutEventsCommand({
-                        Entries: chunk,
-                    })));
-                }
-                const settled = await Promise.allSettled(promises);
-                const result = new Array(input.length);
-                for (let i = 0; i < result.length; i++) {
-                    const item = settled[Math.floor(i / 10)];
-                    if (item.status === "rejected") {
-                        result[i] = item.reason;
-                        continue;
-                    }
-                    result[i] = item.value;
-                }
-                return result;
-            })({
-                // @ts-expect-error
-                EventBusName: EventBus[props.bus].eventBusName,
-                // @ts-expect-error
-                Source: Config.APP,
-                Detail: JSON.stringify({
-                    properties: propertiesSchema.parse(properties),
-                    metadata: (() => {
-                        if (metadataSchema) {
-                            return metadataSchema.parse(metadata);
-                        }
-                        if (props.metadataFn) {
-                            return props.metadataFn();
-                        }
-                    })(),
-                }),
-                DetailType: type,
-            });
-            return result;
-        };
-        return {
-            publish: publish,
-            type,
-            shape: {
-                metadata: {},
-                properties: {},
-                metadataFn: {},
-            },
-        };
-    };
-}
-export function EventHandler(_events, cb) {
-    return async (event) => {
-        await cb({
-            type: event["detail-type"],
-            properties: event.detail.properties,
-            metadata: event.detail.metadata,
-            attempts: event.attempts ?? 0,
-        });
-    };
-}

package/node/function/index.d.ts

@@ -1,3 +0,0 @@
-export interface FunctionResources {
-}
-export declare const Function: FunctionResources;

package/node/function/index.js

@@ -1,3 +0,0 @@
-import { createProxy } from "../util/index.js";
-export const Function = 
-/* @__PURE__ */ createProxy("Function");

package/node/future/auth/adapter/adapter.d.ts

@@ -1,10 +0,0 @@
-import { APIGatewayProxyEventV2, APIGatewayProxyStructuredResultV2 } from "aws-lambda";
-export type Adapter<T = any> = (evt: APIGatewayProxyEventV2) => Promise<{
-    type: "step";
-    properties: APIGatewayProxyStructuredResultV2;
-} | {
-    type: "success";
-    properties: T;
-} | {
-    type: "error";
-}>;

package/node/future/auth/adapter/adapter.js

@@ -1 +0,0 @@
-export {};

package/node/future/auth/adapter/code.d.ts

@@ -1,17 +0,0 @@
-import { APIGatewayProxyStructuredResultV2 } from "aws-lambda";
-export declare function CodeAdapter(config: {
-    length?: number;
-    onCodeRequest: (code: string, claims: Record<string, any>) => Promise<APIGatewayProxyStructuredResultV2>;
-    onCodeInvalid: (code: string, claims: Record<string, any>) => Promise<APIGatewayProxyStructuredResultV2>;
-}): () => Promise<{
-    type: "step";
-    properties: APIGatewayProxyStructuredResultV2;
-} | {
-    type: "error";
-    properties?: undefined;
-} | {
-    type: "success";
-    properties: {
-        claims: any;
-    };
-}>;

package/node/future/auth/adapter/code.js

@@ -1,68 +0,0 @@
-import { useCookie, usePathParam, useQueryParam, useQueryParams, useResponse, } from "../../../api/index.js";
-import { randomBytes } from "crypto";
-import { decrypt, encrypt } from "../encryption.js";
-export function CodeAdapter(config) {
-    const length = config.length || 6;
-    function generate() {
-        const buffer = randomBytes(length);
-        const otp = Array.from(buffer)
-            .map((byte) => byte % 10)
-            .join("");
-        return otp;
-    }
-    return async function () {
-        const step = usePathParam("step");
-        if (step === "authorize") {
-            const code = generate();
-            const claims = useQueryParams();
-            delete claims["client_id"];
-            delete claims["redirect_uri"];
-            delete claims["response_type"];
-            delete claims["provider"];
-            useResponse().cookies({
-                authorization: encrypt(JSON.stringify({
-                    claims,
-                    code,
-                })),
-            }, {
-                maxAge: 3600,
-                secure: true,
-                sameSite: "None",
-                httpOnly: true,
-            });
-            return {
-                type: "step",
-                properties: await config.onCodeRequest(code, claims),
-            };
-        }
-        if (step === "callback") {
-            const { code, claims } = JSON.parse(decrypt(useCookie("authorization")));
-            if (!code || !claims) {
-                return {
-                    type: "error",
-                };
-            }
-            const compare = useQueryParam("code");
-            if (code !== compare) {
-                return {
-                    type: "step",
-                    properties: await config.onCodeInvalid(code, claims),
-                };
-            }
-            useResponse().cookies({
-                authorization: "",
-            }, {
-                expires: new Date(1),
-            });
-            return {
-                type: "success",
-                properties: {
-                    claims: claims,
-                },
-            };
-        }
-        return {
-            type: "error",
-        };
-    };
-}

package/node/future/auth/adapter/facebook.d.ts

@@ -1,16 +0,0 @@
-import { OauthBasicConfig } from "./oauth.js";
-export declare const FacebookAdapter: (config: OauthBasicConfig) => () => Promise<{
-    type: "success";
-    properties: {
-        tokenset: import("openid-client").TokenSet;
-        client: import("openid-client").BaseClient;
-    };
-} | {
-    type: "step";
-    properties: {
-        statusCode: number;
-        headers: {
-            location: string;
-        };
-    };
-}>;

package/node/future/auth/adapter/facebook.js

@@ -1,27 +0,0 @@
-import { Issuer } from "openid-client";
-import { OauthAdapter } from "./oauth.js";
-// Facebook's OIDC flow returns "id_token" as uri hash in redirect uri. Hashes
-// are not passed to Lambda event object. It is likely that Facebook only wants
-// to support redirecting to a frontend uri.
-//
-// We are only going to support the OAuth flow for now. More details about the flow:
-// https://developers.facebook.com/docs/facebook-login/guides/advanced/oidc-token
-//
-// Also note that Facebook's discover uri does not work for the OAuth flow, as the
-// token_endpoint and userinfo_endpoint are not included in the response.
-// await Issuer.discover("https://www.facebook.com/.well-known/openid-configuration/");
-const issuer = new Issuer({
-    issuer: "https://www.facebook.com",
-    authorization_endpoint: "https://facebook.com/dialog/oauth/",
-    jwks_uri: "https://www.facebook.com/.well-known/oauth/openid/jwks/",
-    token_endpoint: "https://graph.facebook.com/oauth/access_token",
-    userinfo_endpoint: "https://graph.facebook.com/oauth/access_token",
-});
-export const FacebookAdapter = 
-/* @__PURE__ */
-(config) => {
-    return OauthAdapter({
-        issuer,
-        ...config,
-    });
-};

package/node/future/auth/adapter/github.d.ts

@@ -1,23 +0,0 @@
-import { OauthBasicConfig } from "./oauth.js";
-import { OidcBasicConfig } from "./oidc.js";
-type Config = ({
-    mode: "oauth";
-} & OauthBasicConfig) | ({
-    mode: "oidc";
-} & OidcBasicConfig);
-export declare const GithubAdapter: (config: Config) => () => Promise<{
-    type: "success";
-    properties: {
-        tokenset: import("openid-client").TokenSet;
-        client: import("openid-client").BaseClient;
-    };
-} | {
-    type: "step";
-    properties: {
-        statusCode: number;
-        headers: {
-            location: string;
-        };
-    };
-}>;
-export {};

package/node/future/auth/adapter/github.js

@@ -1,23 +0,0 @@
-import { Issuer } from "openid-client";
-import { OauthAdapter } from "./oauth.js";
-import { OidcAdapter } from "./oidc.js";
-const issuer = new Issuer({
-    issuer: "https://github.com",
-    authorization_endpoint: "https://github.com/login/oauth/authorize",
-    token_endpoint: "https://github.com/login/oauth/access_token",
-});
-export const GithubAdapter = 
-/* @__PURE__ */
-(config) => {
-    if (config.mode === "oauth") {
-        return OauthAdapter({
-            issuer,
-            ...config,
-        });
-    }
-    return OidcAdapter({
-        issuer,
-        scope: "openid email profile",
-        ...config,
-    });
-};

package/node/future/auth/adapter/google.d.ts

@@ -1,28 +0,0 @@
-import { OidcBasicConfig } from "./oidc.js";
-import { OauthBasicConfig } from "./oauth.js";
-type GooglePrompt = "none" | "consent" | "select_account";
-type GoogleAccessType = "offline" | "online";
-type GoogleConfig = (OauthBasicConfig & {
-    mode: "oauth";
-    prompt?: GooglePrompt;
-    accessType?: GoogleAccessType;
-}) | (OidcBasicConfig & {
-    mode: "oidc";
-    prompt?: GooglePrompt;
-});
-export declare function GoogleAdapter(config: GoogleConfig): () => Promise<{
-    type: "success";
-    properties: {
-        tokenset: import("openid-client").TokenSet;
-        client: import("openid-client").BaseClient;
-    };
-} | {
-    type: "step";
-    properties: {
-        statusCode: number;
-        headers: {
-            location: string;
-        };
-    };
-}>;
-export {};

package/node/future/auth/adapter/google.js

@@ -1,22 +0,0 @@
-import { Issuer } from "openid-client";
-import { OidcAdapter } from "./oidc.js";
-import { OauthAdapter } from "./oauth.js";
-const issuer = await Issuer.discover("https://accounts.google.com");
-export function GoogleAdapter(config) {
-    /* @__PURE__ */
-    if (config.mode === "oauth") {
-        return OauthAdapter({
-            issuer,
-            ...config,
-            params: {
-                ...(config.accessType && { access_type: config.accessType }),
-                ...config.params,
-            },
-        });
-    }
-    return OidcAdapter({
-        issuer,
-        scope: "openid email profile",
-        ...config,
-    });
-}

package/node/future/auth/adapter/link.d.ts

@@ -1,13 +0,0 @@
-import { APIGatewayProxyStructuredResultV2 } from "aws-lambda";
-export declare function LinkAdapter(config: {
-    onLink: (link: string, claims: Record<string, any>) => Promise<APIGatewayProxyStructuredResultV2>;
-}): () => Promise<{
-    type: "step";
-    properties: APIGatewayProxyStructuredResultV2;
-} | {
-    type: "success";
-    properties: any;
-} | {
-    type: "error";
-    properties?: undefined;
-}>;