UNPKG

@auth/core

Version:

Authentication for the Web.

authjs.dev

nextauthjs/next-auth

80 lines 3.71 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
import type { CookiesOptions, InternalOptions, RequestInternal, User } from "../../../../types.js"; import type { Cookie } from "../../../utils/cookie.js"; import type { OAuthConfigInternal } from "../../../../providers/oauth.js"; import type { WebAuthnProviderType } from "../../../../providers/webauthn.js"; /** Returns a signed cookie. */ export declare function signCookie(type: keyof CookiesOptions, value: string, maxAge: number, options: InternalOptions<"oauth" | "oidc" | WebAuthnProviderType>, data?: any): Promise<Cookie>; export declare const pkce: { create(options: InternalOptions<"oauth">): Promise<{ cookie: Cookie; value: string; }>; /** * Returns code_verifier if the provider is configured to use PKCE, * and clears the container cookie afterwards. * An error is thrown if the code_verifier is missing or invalid. * @see https://www.rfc-editor.org/rfc/rfc7636 * @see https://danielfett.de/2020/05/16/pkce-vs-nonce-equivalent-or-not/#pkce */ use(cookies: RequestInternal["cookies"], resCookies: Cookie[], options: InternalOptions<"oauth">): Promise<string | undefined>; }; export declare function decodeState(value: string): { /** If defined, a redirect proxy is being used to support multiple OAuth apps with a single callback URL */ origin?: string; /** Random value for CSRF protection */ random: string; } | undefined; export declare const state: { create(options: InternalOptions<"oauth">, data?: object): Promise<{ cookie: Cookie; value: string; } | undefined>; /** * Returns state if the provider is configured to use state, * and clears the container cookie afterwards. * An error is thrown if the state is missing or invalid. * @see https://www.rfc-editor.org/rfc/rfc6749#section-10.12 * @see https://www.rfc-editor.org/rfc/rfc6749#section-4.1.1 */ use(cookies: RequestInternal["cookies"], resCookies: Cookie[], options: InternalOptions<"oauth">, paramRandom?: string): Promise<string | undefined>; }; export declare const nonce: { create(options: InternalOptions<"oidc">): Promise<{ cookie: Cookie; value: string; } | undefined>; /** * Returns nonce if the provider is configured to use nonce, * and clears the container cookie afterwards. * An error is thrown if the nonce is missing or invalid. * @see https://openid.net/specs/openid-connect-core-1_0.html#NonceNotes * @see https://danielfett.de/2020/05/16/pkce-vs-nonce-equivalent-or-not/#nonce */ use(cookies: RequestInternal["cookies"], resCookies: Cookie[], options: InternalOptions<"oidc">): Promise<string | undefined>; }; /** * When the authorization flow contains a state, we check if it's a redirect proxy * and if so, we return the random state and the original redirect URL. */ export declare function handleState(query: RequestInternal["query"], provider: OAuthConfigInternal<any>, isOnRedirectProxy: InternalOptions["isOnRedirectProxy"]): { randomState: string | undefined; proxyRedirect?: undefined; } | { randomState: string | undefined; proxyRedirect: string | undefined; }; type WebAuthnChallengeCookie = { challenge: string; registerData?: User; }; export declare const webauthnChallenge: { create(options: InternalOptions<WebAuthnProviderType>, challenge: string, registerData?: User): Promise<{ cookie: Cookie; }>; /** * Returns challenge if present, */ use(options: InternalOptions<WebAuthnProviderType>, cookies: RequestInternal["cookies"], resCookies: Cookie[]): Promise<WebAuthnChallengeCookie>; }; export {}; //# sourceMappingURL=checks.d.ts.map