@aws-amplify/auth
Version:
Auth category of aws-amplify
49 lines (47 loc) • 2.33 kB
JavaScript
// Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
// SPDX-License-Identifier: Apache-2.0
Object.defineProperty(exports, "__esModule", { value: true });
exports.verifyTOTPSetup = verifyTOTPSetup;
const core_1 = require("@aws-amplify/core");
const utils_1 = require("@aws-amplify/core/internals/utils");
const validation_1 = require("../../../errors/types/validation");
const assertValidationError_1 = require("../../../errors/utils/assertValidationError");
const parsers_1 = require("../../../foundation/parsers");
const types_1 = require("../utils/types");
const utils_2 = require("../../../utils");
const cognitoIdentityProvider_1 = require("../../../foundation/factories/serviceClients/cognitoIdentityProvider");
const factories_1 = require("../factories");
/**
* Verifies an OTP code retrieved from an associated authentication app.
*
* @param input - The VerifyTOTPSetupInput
* @throws -{@link VerifySoftwareTokenException }:
* Thrown due to an invalid MFA token.
* @throws -{@link AuthValidationErrorCode }:
* Thrown when `code` is not defined.
* @throws AuthTokenConfigException - Thrown when the token provider config is invalid.
*/
async function verifyTOTPSetup(input) {
const authConfig = core_1.Amplify.getConfig().Auth?.Cognito;
(0, utils_1.assertTokenProviderConfig)(authConfig);
const { userPoolEndpoint, userPoolId } = authConfig;
const { code, options } = input;
(0, assertValidationError_1.assertValidationError)(!!code, validation_1.AuthValidationErrorCode.EmptyVerifyTOTPSetupCode);
const { tokens } = await (0, core_1.fetchAuthSession)({ forceRefresh: false });
(0, types_1.assertAuthTokens)(tokens);
const verifySoftwareToken = (0, cognitoIdentityProvider_1.createVerifySoftwareTokenClient)({
endpointResolver: (0, factories_1.createCognitoUserPoolEndpointResolver)({
endpointOverride: userPoolEndpoint,
}),
});
await verifySoftwareToken({
region: (0, parsers_1.getRegionFromUserPoolId)(userPoolId),
userAgentValue: (0, utils_2.getAuthUserAgentValue)(utils_1.AuthAction.VerifyTOTPSetup),
}, {
AccessToken: tokens.accessToken.toString(),
UserCode: code,
FriendlyDeviceName: options?.friendlyDeviceName,
});
}
//# sourceMappingURL=verifyTOTPSetup.js.map
;