@axa-fr/oidc-client-service-worker/src/dpop.ts

OpenID Connect & OAuth authentication service worker

import { defaultDemonstratingProofOfPossessionConfiguration } from './jwt';
import { Domain, DomainDetails } from './types.js';

const isDpop = (trustedDomain: Domain[] | DomainDetails): boolean => {
  if (Array.isArray(trustedDomain)) {
    return false;
  }
  return trustedDomain.demonstratingProofOfPossession ?? false;
};

export const getDpopConfiguration = (trustedDomain: Domain[] | DomainDetails) => {
  if (!isDpop(trustedDomain)) {
    return null;
  }

  if (Array.isArray(trustedDomain)) {
    return null;
  }

  return (
    trustedDomain.demonstratingProofOfPossessionConfiguration ??
    defaultDemonstratingProofOfPossessionConfiguration
  );
};

export const getDpopOnlyWhenDpopHeaderPresent = (trustedDomain: Domain[] | DomainDetails) => {
  if (!isDpop(trustedDomain)) {
    return null;
  }

  if (Array.isArray(trustedDomain)) {
    return null;
  }

  return trustedDomain.demonstratingProofOfPossessionOnlyWhenDpopHeaderPresent ?? true;
};