UNPKG

@atproto/oauth-scopes

Version:

A library for manipulating and validating ATproto OAuth scopes in TypeScript.

atproto.com

bluesky-social/atproto

54 lines 2.53 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
import { AtprotoAudience } from '@atproto/did'; import { LexPermission, LexPermissionSet } from '../lib/lexicon.js'; import { Nsid, isNsid } from '../lib/nsid.js'; import { Parser } from '../lib/parser.js'; import { ScopeSyntax } from '../lib/syntax.js'; import { BlobPermission } from './blob-permission.js'; import { RepoPermission } from './repo-permission.js'; import { RpcPermission } from './rpc-permission.js'; export { type LexPermission, type LexPermissionSet, type Nsid, isNsid }; /** * This is used to handle "include:" oauth scope values, used to include * permissions from a lexicon defined permission set. Not being a resource * permission, it does not implement `Matchable`. */ export declare class IncludeScope { readonly nsid: Nsid; readonly aud: undefined | AtprotoAudience; constructor(nsid: Nsid, aud?: undefined | AtprotoAudience); toString(): import("../lib/syntax.js").ScopeStringFor<"include">; /** * Converts an "include:" to the list of permissions it includes, based on the * lexicon defined permission set. */ toPermissions(permissionSet: LexPermissionSet): (BlobPermission | RepoPermission | RpcPermission)[]; protected parsePermission(permission: LexPermission): BlobPermission | RepoPermission | RpcPermission | null; /** * Verifies that a permission included through a lexicon permission set is * allowed in the context of the `include:` scope. This basically checks that * the permission is "under" the namespace authority of the `include:` scope, * and that it only contains "repo:", "rpc:", or "blob:" permissions. */ protected isAllowedPermission(permission: unknown): permission is RpcPermission | RepoPermission | BlobPermission; /** * Verifies that a permission item's nsid is under the same authority as the * nsid of the lexicon itself (which is the same as the nsid of the `include:` * scope). */ isParentAuthorityOf(otherNsid: '*' | Nsid): boolean; protected static readonly parser: Parser<"include", { nsid: { multiple: false; required: true; validate: (v: unknown) => v is Nsid; }; aud: { multiple: false; required: false; validate: (value: unknown) => value is AtprotoAudience; }; }>; static fromString(scope: string): IncludeScope | null; static fromSyntax(syntax: ScopeSyntax<'include'>): IncludeScope | null; } //# sourceMappingURL=include-scope.d.ts.map