UNPKG

@shopify/cli-kit

Version:

A set of utilities, interfaces, and models that are common across all the platform features

github.com/Shopify/cli

Shopify/cli

70 lines 2.16 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
import { zod } from '../../../public/node/schema.js'; const DateSchema = zod.preprocess((arg) => { if (typeof arg === 'string' || arg instanceof Date) return new Date(arg); return null; }, zod.date()); /** * The schema represents an Identity token. */ const IdentityTokenSchema = zod.object({ accessToken: zod.string(), refreshToken: zod.string(), expiresAt: DateSchema, scopes: zod.array(zod.string()), userId: zod.string(), }); /** * The schema represents an application token. */ const ApplicationTokenSchema = zod.object({ accessToken: zod.string(), expiresAt: DateSchema, scopes: zod.array(zod.string()), }); /** * This schema represents the format of the session * that we cache in the system to avoid unnecessary * token exchanges. * * @example * ``` * { * "accounts.shopify.com": { * "identity": {...} // IdentityTokenSchema * "applications": { * "${domain}-application-id": { // Admin APIs includes domain in the key * "accessToken": "...", * }, * "$application-id": { // ApplicationTokenSchema * "accessToken": "...", * }, * } * }, * "identity.spin.com": {...} * } * ``` */ export const SessionSchema = zod.object({}).catchall(zod.object({ /** * It contains the identity token. Before usint it, we exchange it * to get a token that we can use with different applications. The exchanged * tokens for the applications are stored under applications. */ identity: IdentityTokenSchema, /** * It contains exchanged tokens for the applications the CLI * authenticates with. Tokens are scoped under the fqdn of the applications. */ applications: zod.object({}).catchall(ApplicationTokenSchema), })); /** * Confirms that a given identity token structure matches what the schema currently defines. * * A full re-auth is the expectation if this validation fails. */ export function validateCachedIdentityTokenStructure(identityToken) { const parsed = IdentityTokenSchema.safeParse(identityToken); return parsed.success; } //# sourceMappingURL=schema.js.map