UNPKG

@donation-alerts/auth

Version:

Authentication provider for Donation Alerts API with ability to automatically refresh user tokens.

github.com/StimulCross/donation-alerts/tree/main/packages/auth

StimulCross/donation-alerts

105 lines (104 loc) 3.99 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
import { __decorate } from "tslib"; import { extractUserId, ReadDocumentation } from '@donation-alerts/common'; import { nonenumerable } from '@stimulcross/shared-utils'; import { InvalidTokenError, UnregisteredUserError } from "../errors/index.mjs"; import { compareScopes } from "../helpers.mjs"; /** * A non-refreshable (static) authentication provider that always returns * the initially provided credentials. */ let StaticAuthProvider = class StaticAuthProvider { /** * Creates a new instance of StaticAuthProvider. * * @param clientId The client ID associated with your application. * @param scopes An optional list of required scopes to validate against. */ constructor(clientId, scopes) { this._registry = new Map(); this._clientId = clientId; this._scopes = scopes; } get clientId() { return this._clientId; } /** * Checks if the specified user is already registered in this auth provider. * * @param user The ID of the user to look for. * @returns A boolean indicating whether the user is registered. */ hasUser(user) { return this._registry.has(extractUserId(user)); } /** * Adds a user and their related token data to this auth provider. * * @param user The ID of the user. * @param accessToken The access token. * @param scopes An optional list of scopes associated with the access token. * These scopes will be compared against the scopes specified in the constructor. * the scopes specified in the constructor (if any). * * @throws {@link InvalidTokenError} if the access token is empty or undefined. * @throws {@link MissingScopeError} if the token scopes miss required scopes. */ addUser(user, accessToken, scopes) { const userId = extractUserId(user); if (!accessToken) { throw new InvalidTokenError(userId, `The access token of user "${userId}" is invalid. Make sure it's a non-empty string.`); } if (scopes) { compareScopes(scopes, this._scopes, userId); } this._registry.set(userId, { accessToken, refreshToken: '', expiresIn: 0, obtainmentTimestamp: Date.now(), scopes, }); } /** * Removes an existing user from this auth provider. * * @param user The ID of the user to remove. */ removeUser(user) { this._registry.delete(extractUserId(user)); } getScopesForUser(user) { const userId = extractUserId(user); if (!this._registry.has(userId)) { throw new UnregisteredUserError(userId, `User "${userId}" could not be located in the authentication provider registry. Please add the user first by using addUser method.`); } return this._registry.get(userId).scopes ?? []; } async getAccessTokenForUser(user, scopes) { const userId = extractUserId(user); if (!this._registry.has(userId)) { throw new UnregisteredUserError(userId, `User "${userId}" could not be located in the authentication provider registry. Please add the user first by using addUser method.`); } const token = this._registry.get(userId); if (!token.accessToken) { throw new InvalidTokenError(userId, `The access token of user "${userId}" is invalid. Make sure it's a non-empty string.`); } if (token.scopes) { compareScopes(token.scopes, scopes, userId); } return { ...token, userId }; } }; __decorate([ nonenumerable ], StaticAuthProvider.prototype, "_clientId", void 0); __decorate([ nonenumerable ], StaticAuthProvider.prototype, "_scopes", void 0); __decorate([ nonenumerable ], StaticAuthProvider.prototype, "_registry", void 0); StaticAuthProvider = __decorate([ ReadDocumentation('events') ], StaticAuthProvider); export { StaticAuthProvider };