UNPKG

@sudowealth/schwab-api

Version:

TypeScript client for Charles Schwab API with OAuth support, market data, trading functionality, and complete type safety

github.com/sudowealth/schwab-api

sudowealth/schwab-api

257 lines (256 loc) 9.06 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
import { createLogger } from '../../utils/secure-logger'; const logger = createLogger('KVTokenStore'); /** * Default TTL of 31 days in seconds */ const DEFAULT_TTL = 31 * 24 * 60 * 60; /** * Token store implementation for Cloudflare KV * * This provides a robust token persistence layer with: * - Consistent key generation * - Automatic token migration * - TTL management * - Atomic operations * * @example * ```typescript * const store = new KVTokenStore(env.OAUTH_KV); * * // Use with EnhancedTokenManager * const auth = new EnhancedTokenManager({ * clientId: 'your-client-id', * clientSecret: 'your-client-secret', * redirectUri: 'your-redirect-uri', * load: () => store.load({ clientId: 'your-client-id' }), * save: (tokens) => store.save({ clientId: 'your-client-id' }, tokens) * }); * ``` */ export class KVTokenStore { kv; keyPrefix; ttl; autoMigrate; constructor(kv, options = {}) { this.kv = kv; this.keyPrefix = options.keyPrefix || 'token:'; this.ttl = options.ttl || DEFAULT_TTL; this.autoMigrate = options.autoMigrate !== false; } /** * Generate a consistent KV key from token identifiers * Priority: customId > schwabUserId > clientId * * @param ids Token identifiers * @returns The generated key * @throws Error if no identifier is provided */ generateKey(ids) { const identifier = ids.customId || ids.schwabUserId || ids.clientId; if (!identifier) { throw new Error('Token identifiers must include customId, schwabUserId, or clientId'); } return `${this.keyPrefix}${identifier}`; } /** * Load tokens from KV storage * Automatically handles migration between different key schemes * * @param ids Token identifiers to load * @returns Token data if found, null otherwise */ async load(ids) { try { // Build list of keys to check in priority order const keysToCheck = []; if (ids.customId) { keysToCheck.push(this.generateKey({ customId: ids.customId })); } if (ids.schwabUserId) { keysToCheck.push(this.generateKey({ schwabUserId: ids.schwabUserId })); } if (ids.clientId) { keysToCheck.push(this.generateKey({ clientId: ids.clientId })); } // Remove duplicates while preserving order const uniqueKeys = [...new Set(keysToCheck)]; logger.debug('Loading tokens from KV', { keysChecked: uniqueKeys.length, keys: uniqueKeys.map((k) => this.sanitizeKeyForLog(k)), }); // Try each key in order for (const key of uniqueKeys) { const value = await this.kv.get(key); if (value) { try { const tokenData = JSON.parse(value); // If we found tokens under a non-primary key and auto-migrate is enabled if (this.autoMigrate && key !== uniqueKeys[0] && uniqueKeys.length > 1) { logger.info('Auto-migrating token to primary key', { from: this.sanitizeKeyForLog(key), to: this.sanitizeKeyForLog(uniqueKeys[0]), }); // Migrate to the primary key await this.kv.put(uniqueKeys[0], value, { expirationTtl: this.ttl, }); await this.kv.delete(key); } logger.debug('Token loaded successfully', { key: this.sanitizeKeyForLog(key), hasRefreshToken: !!tokenData.refreshToken, }); return tokenData; } catch (error) { logger.error('Failed to parse token data', { key: this.sanitizeKeyForLog(key), error, }); // Continue to next key } } } logger.debug('No tokens found in KV'); return null; } catch (error) { logger.error('Failed to load tokens from KV', error); return null; } } /** * Save tokens to KV storage * * @param ids Token identifiers for key generation * @param tokens Token data to save */ async save(ids, tokens) { try { const key = this.generateKey(ids); const serialized = JSON.stringify(tokens); await this.kv.put(key, serialized, { expirationTtl: this.ttl }); logger.debug('Token saved to KV', { key: this.sanitizeKeyForLog(key), hasRefreshToken: !!tokens.refreshToken, }); } catch (error) { logger.error('Failed to save token to KV', error); throw error; } } /** * Delete tokens from KV storage * * @param ids Token identifiers for key generation */ async delete(ids) { try { const key = this.generateKey(ids); await this.kv.delete(key); logger.debug('Token deleted from KV', { key: this.sanitizeKeyForLog(key), }); } catch (error) { logger.error('Failed to delete token from KV', error); throw error; } } /** * Migrate tokens from one key to another * * @param fromIds Source token identifiers * @param toIds Destination token identifiers * @returns True if migration was successful, false if source not found */ async migrate(fromIds, toIds) { try { const fromKey = this.generateKey(fromIds); const toKey = this.generateKey(toIds); if (fromKey === toKey) { logger.debug('Migration not needed - keys are identical'); return true; } // Check if destination already exists const existingAtDestination = await this.kv.get(toKey); if (existingAtDestination) { logger.debug('Token already exists at destination', { toKey: this.sanitizeKeyForLog(toKey), }); // Clean up source if it exists try { await this.kv.delete(fromKey); } catch (error) { logger.debug('Failed to cleanup source after finding existing destination', error); } return false; } // Load from source const sourceData = await this.kv.get(fromKey); if (!sourceData) { logger.debug('No token found at source', { fromKey: this.sanitizeKeyForLog(fromKey), }); return false; } // Atomically migrate: write to destination first await this.kv.put(toKey, sourceData, { expirationTtl: this.ttl }); // Then delete source try { await this.kv.delete(fromKey); } catch (error) { logger.warn('Failed to delete source key after migration', { fromKey: this.sanitizeKeyForLog(fromKey), error, }); } logger.info('Token migrated successfully', { from: this.sanitizeKeyForLog(fromKey), to: this.sanitizeKeyForLog(toKey), }); return true; } catch (error) { logger.error('Token migration failed', error); return false; } } /** * Create load and save functions bound to specific identifiers * This is useful for integration with EnhancedTokenManager * * @param ids Token identifiers to bind * @returns Object with bound load and save functions */ createBoundFunctions(ids) { return { load: () => this.load(ids), save: (tokens) => this.save(ids, tokens), }; } /** * Sanitize a key for logging (show prefix and suffix only) */ sanitizeKeyForLog(key) { if (key.length <= 15) return key; return `${key.substring(0, 10)}...${key.substring(key.length - 5)}`; } } /** * Create a KV token store with default options * * @param kv KV namespace * @param options Optional configuration * @returns Configured KV token store instance */ export function createKVTokenStore(kv, options) { return new KVTokenStore(kv, options); }