UNPKG

@openapi-qraft/react

Version:

OpenAPI client for React, providing type-safe requests and dynamic TanStack Query React Hooks via a modular, Proxy-based architecture.

openapi-qraft.github.io/openapi-qraft/

OpenAPI-Qraft/openapi-qraft

201 lines (197 loc) 8.19 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
'use client'; 'use strict'; var reactQuery = require('@tanstack/react-query'); var react = require('react'); var index = require('./lib/jwt-decode/index.cjs'); function QraftSecureRequestFn({ children, requestFn, securitySchemes, queryClient: inQueryClient }) { const queryClient = react.useMemo(()=>inQueryClient ?? new reactQuery.QueryClient({ defaultOptions: { queries: { staleTime: 300_000, gcTime: 300_000, refetchOnWindowFocus: false, refetchOnMount: false, refetchOnReconnect: false } } }), [ inQueryClient ]); react.useEffect(()=>{ queryClient.mount(); return ()=>{ return void queryClient.unmount(); }; }, [ queryClient ]); const secureRequestFn = useSecuritySchemeAuth({ securitySchemes, requestFn, queryClient }); return react.createElement(react.Fragment, { children: children(secureRequestFn) }); } const useSecuritySchemeAuth = ({ securitySchemes, requestFn, queryClient })=>{ reactQuery.useQueries({ queries: Object.entries(securitySchemes).map(([securitySchemeName])=>{ const queryKey = [ securitySchemeName ]; return { enabled: Boolean(queryClient.getQueryData(queryKey)), queryKey: queryKey, queryFn: ({ signal })=>{ const securitySchemeHandler = securitySchemes[securitySchemeName]; return securitySchemeHandler({ signal, isRefreshing: true }); } }; }) }, queryClient); return react.useMemo(()=>createSecureRequestFn(securitySchemes, requestFn, queryClient), [ securitySchemes, requestFn, queryClient ]); }; /** * Create a secure `requestFn` that manages security schemes. * It will automatically fetch and refresh tokens when needed * using QueryClient and the provided security schemes. * * @param securitySchemes OpenAPI security schemes. * @param requestFn Qraft `requestFn` * @param queryClient QueryClient instance. */ function createSecureRequestFn(securitySchemes, requestFn, queryClient) { return async function secureRequestFn(schema, requestInfo, options) { const availableSecuritySchemes = Object.keys(securitySchemes); const securitySchemeName = schema.security?.find((security)=>availableSecuritySchemes.includes(security)); if (!securitySchemeName) { return requestFn(schema, requestInfo, options); } const securitySchemeHandler = securitySchemes[securitySchemeName]; return requestFn(schema, await createSecureRequestInfo(securitySchemeHandler, [ securitySchemeName ], requestInfo, queryClient), options); }; } /** * Calculate the interval at which a token should be refreshed. */ function getJwtTokenRefreshInterval(token) { const parsedToken = index.jwtDecode(token); if (!parsedToken.iat || !parsedToken.exp) { throw new Error("JWT token must contain both 'iat' and 'exp' fields."); } return (parsedToken.exp - parsedToken.iat) * 1000; } /** * Refresh the token if it is about to expire * @returns The string to be used as the `Authorization` header or the object to be used in the request. */ async function createSecureRequestInfo(handler, queryKey, requestInfo, queryClient) { const prevSecurityResult = queryClient.getQueryData(queryKey); const abortQuery = ()=>queryClient.cancelQueries({ queryKey, exact: true }); requestInfo.signal?.addEventListener('abort', abortQuery); const securityResult = await queryClient.fetchQuery({ queryKey, queryFn: ({ signal })=>handler({ signal, isRefreshing: Boolean(prevSecurityResult) }) }).catch((error)=>{ throw requestInfo.signal?.aborted ? requestInfo.signal.reason : error; }).finally(()=>void requestInfo.signal?.removeEventListener('abort', abortQuery)); if (!shallowEqualObjects(securityResult, prevSecurityResult)) { const securityRefreshInterval = getSecurityRefreshInterval(securityResult); if (securityRefreshInterval !== undefined && securityRefreshInterval > 0) { // remove the already fetched query, before setting new defaults queryClient.removeQueries({ queryKey, exact: true }); // set query new defaults (staleTime and gcTime) setSecurityQueryDefaults(queryClient, queryKey, securityRefreshInterval); // Set query data with the new token, since the old one was removed. // New query data will follow the new defaults staleTime and gcTime. queryClient.setQueryData(queryKey, securityResult); } } const securityParameters = createSecureRequestParameters(securityResult); if (!securityParameters) return requestInfo; return { ...requestInfo, parameters: { ...requestInfo.parameters, [securityParameters.in]: { [securityParameters.name]: securityParameters.value, ...requestInfo.parameters?.[securityParameters.in] } } }; } function setSecurityQueryDefaults(queryClient, queryKey, refreshInterval) { // set staleTime and gcTime based on token lifetime queryClient.setQueryDefaults(queryKey, { // stale the token 90% before it expires staleTime: isFinite(refreshInterval) ? refreshInterval * 0.9 : refreshInterval, // garbage collect the token after it expires gcTime: isFinite(refreshInterval) ? refreshInterval : refreshInterval, // refetch the token 80% before it expires refetchInterval: isFinite(refreshInterval) ? refreshInterval * 0.8 : refreshInterval, // always refetch the token, even in the background refetchIntervalInBackground: true }); } function createSecureRequestParameters(securityResult) { if (typeof securityResult === 'string' || 'token' in securityResult) { return { in: 'header', name: 'Authorization', value: `Bearer ${typeof securityResult === 'string' ? securityResult : securityResult.token}` }; } if ('credentials' in securityResult) { return { in: 'header', name: 'Authorization', value: `Basic ${securityResult.credentials}` }; } if ('in' in securityResult && securityResult.in !== 'cookie') { return securityResult; } throw new Error('Security scheme must be a string, an object with a token property, an object with a credentials property, or an object with an in property that is not equal to "cookie".'); } function getSecurityRefreshInterval(securityResult) { if (typeof securityResult === 'string') { return getJwtTokenRefreshInterval(securityResult); } if ('refreshInterval' in securityResult) { return securityResult.refreshInterval; } } /** * @internal */ function shallowEqualObjects(newObj, prevObj) { if (typeof newObj !== typeof prevObj) return false; if (typeof newObj === 'string') return newObj === prevObj; if (typeof newObj !== 'object' || newObj === null || typeof prevObj !== 'object' || prevObj === null || prevObj === undefined) return false; if (Object.keys(newObj).length !== Object.keys(prevObj).length) return false; for(const key in newObj){ if (!Object.prototype.hasOwnProperty.call(newObj, key)) return false; if (newObj[key] !== prevObj[key]) return false; } return true; } exports.QraftSecureRequestFn = QraftSecureRequestFn; exports.createSecureRequestFn = createSecureRequestFn; exports.shallowEqualObjects = shallowEqualObjects; exports.useSecuritySchemeAuth = useSecuritySchemeAuth; //# sourceMappingURL=Unstable_QraftSecureRequestFn.cjs.map