UNPKG

@aws-amplify/auth

Version:

Auth category of aws-amplify

aws-amplify.github.io

aws-amplify/amplify-js

52 lines (50 loc) 2.44 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
'use strict'; // Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. // SPDX-License-Identifier: Apache-2.0 Object.defineProperty(exports, "__esModule", { value: true }); exports.refreshAuthTokensWithoutDedupe = exports.refreshAuthTokens = void 0; const utils_1 = require("@aws-amplify/core/internals/utils"); const parsers_1 = require("../../../foundation/parsers"); const types_1 = require("../utils/types"); const AuthError_1 = require("../../../errors/AuthError"); const factories_1 = require("../factories"); const cognitoIdentityProvider_1 = require("../../../foundation/factories/serviceClients/cognitoIdentityProvider"); const refreshAuthTokensFunction = async ({ tokens, authConfig, username, }) => { (0, utils_1.assertTokenProviderConfig)(authConfig?.Cognito); const { userPoolId, userPoolClientId, userPoolEndpoint } = authConfig.Cognito; const region = (0, parsers_1.getRegionFromUserPoolId)(userPoolId); (0, types_1.assertAuthTokensWithRefreshToken)(tokens); const getTokensFromRefreshToken = (0, cognitoIdentityProvider_1.createGetTokensFromRefreshTokenClient)({ endpointResolver: (0, factories_1.createCognitoUserPoolEndpointResolver)({ endpointOverride: userPoolEndpoint, }), }); const { AuthenticationResult } = await getTokensFromRefreshToken({ region }, { ClientId: userPoolClientId, RefreshToken: tokens.refreshToken, DeviceKey: tokens.deviceMetadata?.deviceKey, }); const accessToken = (0, utils_1.decodeJWT)(AuthenticationResult?.AccessToken ?? ''); const idToken = AuthenticationResult?.IdToken ? (0, utils_1.decodeJWT)(AuthenticationResult.IdToken) : undefined; const { iat } = accessToken.payload; // This should never happen. If it does, it's a bug from the service. if (!iat) { throw new AuthError_1.AuthError({ name: 'iatNotFoundException', message: 'iat not found in access token', }); } const clockDrift = iat * 1000 - new Date().getTime(); return { accessToken, idToken, clockDrift, refreshToken: AuthenticationResult?.RefreshToken ?? tokens.refreshToken, username, }; }; exports.refreshAuthTokens = (0, utils_1.deDupeAsyncFunction)(refreshAuthTokensFunction); exports.refreshAuthTokensWithoutDedupe = refreshAuthTokensFunction; //# sourceMappingURL=refreshAuthTokens.js.map