UNPKG

@jaarnio/tripplite-pdu-sdk

Version:

Unified Tripplite PDU SDK with integrated real-time WebSocket server for monitoring and control

github.com/jaarnio/tripplite-pdu-sdk

jaarnio/tripplite-pdu-sdk

227 lines (213 loc) 8.05 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
"use strict"; const axios = require('axios'); const errorHandler = require('./error-handler'); const config = require('./config'); class AuthService { constructor() { this.accessToken = null; this.refreshToken = null; this.tokenExpiry = null; // Add a buffer time before token expiry (5 minutes) this.tokenExpiryBuffer = 5 * 60 * 1000; // Prevent concurrent token refresh attempts this.refreshInProgress = false; this.refreshPromise = null; } async login(username, password) { try { // If we already have a valid token, don't create a new session if (this.isTokenValid()) { console.log('Using existing valid token'); return { access_token: this.accessToken, refresh_token: this.refreshToken }; } // Use config values const baseUrl = config.getBaseUrl(); username = username || config.username; password = password || config.password; if (!username || !password) { throw new Error('Username and password are required for authentication'); } console.log('Performing new authentication...'); // Match the exact format from the example const raw = JSON.stringify({ username, password, grant_type: 'password' }); const response = await axios.post(`${baseUrl}/oauth/token`, raw, { headers: { 'Content-Type': 'application/vnd.api+json', 'Accept-Version': '1.0.0' }, httpsAgent: new (require('https').Agent)({ rejectUnauthorized: false }) }); this.accessToken = response.data.access_token; this.refreshToken = response.data.refresh_token; // Extract real expiry time from JWT token this.tokenExpiry = this._extractJWTExpiry(this.accessToken); const expiryDate = new Date(this.tokenExpiry); const expiresIn = Math.floor((this.tokenExpiry - Date.now()) / 1000); console.log(`Authentication successful. Token expires in ${expiresIn} seconds at: ${expiryDate.toISOString()}`); return response.data; } catch (error) { // If we hit the session limit, try to refresh the token instead if (error.response && error.response.status === 429) { if (this.refreshToken) { console.log('Session limit reached, attempting to refresh token...'); return this.refreshAccessToken(); } } return errorHandler.handleApiError(error, 'Authentication'); } } async refreshAccessToken() { if (!this.refreshToken) { console.log('No refresh token available for refresh'); throw new Error('No refresh token available'); } // If refresh is already in progress, wait for it to complete if (this.refreshInProgress && this.refreshPromise) { console.log('Token refresh already in progress, waiting...'); return await this.refreshPromise; } // Set refresh in progress and create promise this.refreshInProgress = true; this.refreshPromise = this._performTokenRefresh(); try { const result = await this.refreshPromise; return result; } finally { // Reset refresh state this.refreshInProgress = false; this.refreshPromise = null; } } async _performTokenRefresh() { try { console.log('Refreshing access token...'); const baseUrl = config.getBaseUrl(); const response = await axios.post(`${baseUrl}/oauth/token/refresh`, '', { headers: { 'Authorization': `Bearer ${this.refreshToken}`, 'Content-Type': 'application/vnd.api+json', 'Accept-Version': '1.0.0' }, httpsAgent: new (require('https').Agent)({ rejectUnauthorized: false }) }); this.accessToken = response.data.access_token; // Sometimes refresh token API also returns a new refresh token if (response.data.refresh_token) { this.refreshToken = response.data.refresh_token; } // Extract real expiry time from JWT token this.tokenExpiry = this._extractJWTExpiry(this.accessToken); const expiryDate = new Date(this.tokenExpiry); const expiresIn = Math.floor((this.tokenExpiry - Date.now()) / 1000); console.log(`Token refresh successful. New token expires in ${expiresIn} seconds at: ${expiryDate.toISOString()}`); return response.data; } catch (error) { console.log(`Token refresh failed: ${error.response?.status} ${error.response?.statusText || error.message}`); // If refresh fails with 401, the refresh token may be invalid or expired // Clear tokens to force a new login if (error.response && error.response.status === 401) { console.log('Refresh token expired or invalid, clearing tokens'); this.accessToken = null; this.refreshToken = null; this.tokenExpiry = null; } return errorHandler.handleApiError(error, 'Token refresh'); } } async logout() { if (!this.accessToken) { return; // Nothing to do if not logged in } try { // First, try the explicit token revocation endpoint if it exists const baseUrl = config.getBaseUrl(); // Note: Some Tripplite PDU API versions may not support this endpoint // In that case we'll just clear our local tokens try { await axios.post(`${baseUrl}/oauth/token/revoke`, '', { headers: { 'Authorization': `Bearer ${this.accessToken}`, 'Content-Type': 'application/vnd.api+json', 'Accept-Version': '1.0.0' }, httpsAgent: new (require('https').Agent)({ rejectUnauthorized: false }) }); } catch (error) { // If the endpoint doesn't exist (404) or fails for other reasons, // we'll still clear our local tokens below } } finally { // Always clear tokens this.accessToken = null; this.refreshToken = null; this.tokenExpiry = null; } } isTokenValid() { if (!this.accessToken || !this.tokenExpiry) { return false; } const now = Date.now(); const expiryWithBuffer = this.tokenExpiry - this.tokenExpiryBuffer; return now < expiryWithBuffer; } getAccessToken() { return this.accessToken; } needsRefresh() { return this.accessToken && this.tokenExpiry && !this.isTokenValid() && this.refreshToken; } /** * Extract expiry time from JWT token * @param {string} token JWT token * @returns {number} Expiry timestamp in milliseconds */ _extractJWTExpiry(token) { try { // JWT format: header.payload.signature const parts = token.split('.'); if (parts.length !== 3) { console.log('Invalid JWT format, falling back to 1 hour default'); return Date.now() + 3600 * 1000; } // Decode the payload (base64url) const payload = parts[1]; // Add padding if needed for base64 decoding const padded = payload + '='.repeat((4 - payload.length % 4) % 4); const decoded = Buffer.from(padded.replace(/-/g, '+').replace(/_/g, '/'), 'base64'); const claims = JSON.parse(decoded.toString()); if (claims.exp) { // JWT exp is in seconds, convert to milliseconds const expiryMs = claims.exp * 1000; console.log(`JWT expiry extracted: ${new Date(expiryMs).toISOString()}`); return expiryMs; } else { console.log('No exp claim found in JWT, falling back to 1 hour default'); return Date.now() + 3600 * 1000; } } catch (error) { console.log(`Failed to parse JWT token: ${error.message}, falling back to 1 hour default`); return Date.now() + 3600 * 1000; } } } // Create a singleton instance const authInstance = new AuthService(); // Export both the class and the singleton instance // This allows for both ES module and CommonJS compatibility module.exports = authInstance; module.exports.default = authInstance; //# sourceMappingURL=auth.js.map