UNPKG

@trimble-oss/trimble-id

Version:

Trimble Identity SDK for JavaScript/TypeScript

github.com/trimble-oss/trimble-id-sdk-docs-for-js

138 lines (137 loc) 5.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
/** * Copyright (c) Trimble Inc. */ import { TokenProvider } from '../interfaces/TokenProvider'; import { EndpointProvider } from '../interfaces/EndpointProvider'; import HttpClient from '../HttpClient'; /** * The Refresh Token grant type is used by clients to exchange a refresh token for an access token when the access token has expired. */ export default class RefreshableTokenProvider implements TokenProvider { protected readonly _endpointProvider: EndpointProvider; protected readonly _clientId: string; protected _clientSecret?: string; protected _codeVerifier?: any; private _accessToken?; private _tokenExpiry?; private _idToken?; private _refreshToken?; protected _logoutRedirectUrl?: string; protected readonly _httpClient: HttpClient; /** * Static method to generate a code verifier * * @returns A code verifier string */ static GenerateCodeVerifier(): string; /** * Public constructor for RefreshableTokenProvider class * * @param endpointProvider An endpoint provider that provides the URL for the Trimble Identity token endpoint. * It can be OpenIdEndpointProvider/FixedEndpointProvider * @param clientId The client id for the calling application */ constructor(endpointProvider: EndpointProvider, clientId: string); /** * Fluent extension for Authorization Code with PKCE * * @param codeVerifier The PKCE code verifier for the calling application */ WithProofKeyForCodeExchange(codeVerifier: string): this; /** * Fluent extension for Authorization Code with consumer secret * * @param consumerSecret The consumer secret for the calling application * @deprecated */ WithConsumerSecret(consumerSecret: string): this; /** * Fluent extension for Authorization Code with client secret * * @param clientSecret The client secret for the calling application */ WithClientSecret(clientSecret: string): this; /** * Fluent extension for Authorization Code with access token * * @param accessToken The access token for the calling application * @param tokenExpiry The access token expiry as a Date object */ WithAccessToken(accessToken: string, tokenExpiry: Date): this; /** * Fluent extension for Authorization Code with access token * * @param accessToken The access token for the calling application * @param tokenExpiry The access token expiry for the calling application * @deprecated Use the overload that accepts Date instead of any for better type safety */ WithAccessToken(accessToken: string, tokenExpiry: any): this; /** * Fluent extension for Authorization Code with id token * * @param idToken The ID token for the calling application */ WithIdToken(idToken: string): this; /** * Fluent extension for Authorization Code with refresh token * * @param refreshToken The refresh token for the calling application */ WithRefreshToken(refreshToken: string): this; /** * Fluent extension to add logout redirect URL * * @param logoutRedirectUrl The logout redirect URL */ WithLogoutRedirect(logoutRedirectUrl: string): this; /** * Retrieves an access token for the authenticated user * * @returns A Promise that resolves to the value of the access token on completion * @throws Thrown when a token endpoint is not provided by the endpoint provider * @throws Thrown when a call to the token endpoint fails */ RetrieveToken(): Promise<string>; /** * Retrieves an access token expiry for the authenticated user * * @returns A Promise that resolves to the value of the access token expiry on completion */ RetrieveTokenExpiry(): Promise<Date>; /** * Retrieves an ID token for the authenticated user * * @returns A Promise that resolves to the value of the ID token on completion * @throws Thrown when a token endpoint is not provided by the endpoint provider * @throws Thrown when a call to the token endpoint fails */ RetrieveIdToken(): Promise<string>; /** * Retrieves a refresh token for the authenticated user * * @returns A Promise that resolves to the value of the refresh token on completion * @throws Thrown when a token endpoint is not provided by the endpoint provider * @throws Thrown when a call to the token endpoint fails */ RetrieveRefreshToken(): Promise<string>; /** * Retrieves a code verifier for the authenticated user for PKCE grant * * @returns A Promise that resolves to the value of the code verifier on completion * @throws Thrown when a token endpoint is not provided by the endpoint provider * @throws Thrown when a call to the token endpoint fails */ RetrieveCodeVerifier(): Promise<string>; /** * Revokes a refresh token for the authenticated user * * @returns A Promise that resolves to true if the refresh token is revoked * @throws Thrown when a token endpoint is not provided by the endpoint provider * @throws Thrown when a call to the token endpoint fails */ RevokeRefreshToken(): Promise<boolean>; private _isJwt; private _jwtExpiry; private _refreshTokenInternal; protected _GenerateCodeChallenge(codeVerifier: string): string; }