UNPKG

@scayle/storefront-core

Version:

Collection of essential utilities to work with the Storefront API

github.com/scayle/storefront-core

164 lines (163 loc) 6 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
import type { GuestRequest, LoginRequest, Oauth, RefreshTokenRequest, RegisterRequest, SendResetPasswordEmailRequest, UpdatePasswordByHashRequest, UpdatePasswordRequest } from '../types/api/auth'; import type { RpcContext } from '../types/api/context'; import type { Log } from '../utils/log'; /** * Options for configuring the OAuth client. */ export interface OAuthOptions { clientId: string; clientSecret: string; apiHost: string; additionalHeaders?: HeadersInit; } /** * Error thrown when OAuth API request fails. */ export declare class OAuthRequestError extends Error { constructor(message: string, options?: ErrorOptions); } /** * Creates and returns an OAuthClient instance using the provided RPC context. * * @param context The RPC context containing OAuth configuration. * * @returns An instance of the OAuthClient. * * @throws {Error} If OAuth configuration is missing in the context. */ export declare function getOAuthClient(context: RpcContext): OAuthClient; /** * A client for interacting with the Checkout Authentication API * * @see https://scayle.dev/en/api-guides/authentication-api/ */ export declare class OAuthClient { /** * Headers for API requests. */ headers: HeadersInit; /** * Base URL for the API. */ baseURL: string; /** * Logger instance. */ logger?: Log; /** * OAuth client ID. */ clientId: string; /** * Creates a new instance of the OAuthClient. * * @param options OAuth client options. * @param logger Optional logger instance. * * @throws {MissingCredentialsError} If client ID or client secret are missing. */ constructor(options: OAuthOptions, logger?: Log); /** * Register a new User and receive an access token. * * @param payload The registration data. * * @returns The OAuth response containing access and refresh tokens. * * @see https://scayle.dev/en/api-guides/authentication-api/resources/oauth-client/create-new-user */ register(payload: RegisterRequest): Promise<Oauth>; /** * Login a User and receive an access token. * * @param payload The login credentials, including the `shopId`. * * @returns The OAuth response containing access and refresh tokens. * * @see https://scayle.dev/en/api-guides/authentication-api/resources/oauth-client/log-in-users */ login(payload: LoginRequest): Promise<Oauth>; /** * Login a User as a guest and receive an access token. * * @param payload The guest login data. * * @returns The OAuth response containing access and refresh tokens. * * @see https://scayle.dev/en/api-guides/authentication-api/resources/oauth-client/log-in-users-as-guest */ guestLogin(payload: GuestRequest): Promise<Oauth>; /** * Send a reset password email to a User. * * @param payload The data for sending the reset password email. * * @returns Nothing (resolves when the request completes successfully). * * @see https://scayle.dev/en/api-guides/authentication-api/resources/oauth-client/send-password-reset-email */ sendPasswordResetEmail(payload: SendResetPasswordEmailRequest): Promise<void>; /** * Update password by using hash. * All older tokens of the User are also invalidated. * * @param payload The data for updating the password by hash. * * @returns The new OAuth response with updated tokens. * * @see https://scayle.dev/en/api-guides/authentication-api/resources/oauth-client/update-password-by-hash */ updatePasswordByHash(payload: UpdatePasswordByHashRequest): Promise<Oauth>; /** * Update password via plain string. * * @param payload The data for updating the password (current and new password). * @param accessToken The current access token. * * @returns Nothing (resolves when the request completes successfully). */ updatePassword(payload: UpdatePasswordRequest, accessToken: string): Promise<void>; /** * Generate a new access token via a refresh token. * * @param payload The refresh token request data. * @returns The new OAuth response with updated access token. */ refreshToken(payload: RefreshTokenRequest): Promise<Oauth>; /** * Validate a token. * * @param accessToken The access token to validate. * * @returns Nothing (resolves if the token is valid, rejects otherwise). * * @see https://scayle.dev/en/api-guides/authentication-api/resources/bearer-auth/validate-present-token */ validateToken(accessToken: string): Promise<void>; /** * Revoke an Access Token and all related Refresh Tokens. * * Uses a valid Bearer Access Token in the Authorization header and will * revoke the token with the given ID (_which could be a different token_). * If a external identity provider was used for the target token, * the corresponding IDP-AccessToken and IDP-RefreshToken will be revoked as well. * In case the identity provider does not support revoking tokens over api calls * (_because a frontend redirect is required_) this step will be skipped and the IDP-Tokens * will remain valid until they expire or are revoked from IDP side. * * @param shopId The ID of the shop. * @param accessToken The access token to use for authorization. * @returns Nothing (resolves when the token is successfully revoked). * * @see https://scayle.dev/en/api-guides/authentication-api/resources/bearer-auth/delete-access-token-with-id */ revokeToken(shopId: number, accessToken: string): Promise<void>; /** * Generate a new token based on authorization code. * * @param code The authorization code. * * @returns The new OAuth response. */ generateToken(code: string): Promise<Oauth>; }