box-node-sdk

import { serializeAccessToken } from '../schemas/accessToken'; import { deserializeAccessToken } from '../schemas/accessToken'; import { serializeOAuth2Error } from '../schemas/oAuth2Error'; import { deserializeOAuth2Error } from '../schemas/oAuth2Error'; import { serializePostOAuth2Token } from '../schemas/postOAuth2Token'; import { deserializePostOAuth2Token } from '../schemas/postOAuth2Token'; import { serializePostOAuth2TokenRefreshAccessToken } from '../schemas/postOAuth2TokenRefreshAccessToken'; import { deserializePostOAuth2TokenRefreshAccessToken } from '../schemas/postOAuth2TokenRefreshAccessToken'; import { serializePostOAuth2Revoke } from '../schemas/postOAuth2Revoke'; import { deserializePostOAuth2Revoke } from '../schemas/postOAuth2Revoke'; import { PostOAuth2TokenRefreshAccessTokenInput } from '../schemas/postOAuth2TokenRefreshAccessToken'; import { ResponseFormat } from '../networking/fetchOptions'; import { AccessToken } from '../schemas/accessToken'; import { OAuth2Error } from '../schemas/oAuth2Error'; import { PostOAuth2Token } from '../schemas/postOAuth2Token'; import { PostOAuth2TokenRefreshAccessToken } from '../schemas/postOAuth2TokenRefreshAccessToken'; import { PostOAuth2Revoke } from '../schemas/postOAuth2Revoke'; import { BoxSdkError } from '../box/errors'; import { Authentication } from '../networking/auth'; import { NetworkSession } from '../networking/network'; import { FetchOptions } from '../networking/fetchOptions'; import { FetchResponse } from '../networking/fetchResponse'; import { prepareParams } from '../internal/utils'; import { toString } from '../internal/utils'; import { ByteStream } from '../internal/utils'; import { CancellationToken } from '../internal/utils'; import { sdToJson } from '../serialization/json'; import { SerializedData } from '../serialization/json'; import { sdIsEmpty } from '../serialization/json'; import { sdIsBoolean } from '../serialization/json'; import { sdIsNumber } from '../serialization/json'; import { sdIsString } from '../serialization/json'; import { sdIsList } from '../serialization/json'; import { sdIsMap } from '../serialization/json'; export class AuthorizeUserOptionals { readonly headers: AuthorizeUserHeaders = new AuthorizeUserHeaders({}); readonly cancellationToken?: CancellationToken = void 0; constructor( fields: Omit<AuthorizeUserOptionals, 'headers' | 'cancellationToken'> & Partial<Pick<AuthorizeUserOptionals, 'headers' | 'cancellationToken'>>, ) { if (fields.headers !== undefined) { this.headers = fields.headers; } if (fields.cancellationToken !== undefined) { this.cancellationToken = fields.cancellationToken; } } } export interface AuthorizeUserOptionalsInput { readonly headers?: AuthorizeUserHeaders; readonly cancellationToken?: CancellationToken; } export class RequestAccessTokenOptionals { readonly headers: RequestAccessTokenHeaders = new RequestAccessTokenHeaders( {}, ); readonly cancellationToken?: CancellationToken = void 0; constructor( fields: Omit<RequestAccessTokenOptionals, 'headers' | 'cancellationToken'> & Partial< Pick<RequestAccessTokenOptionals, 'headers' | 'cancellationToken'> >, ) { if (fields.headers !== undefined) { this.headers = fields.headers; } if (fields.cancellationToken !== undefined) { this.cancellationToken = fields.cancellationToken; } } } export interface RequestAccessTokenOptionalsInput { readonly headers?: RequestAccessTokenHeaders; readonly cancellationToken?: CancellationToken; } export class RefreshAccessTokenOptionals { readonly headers: RefreshAccessTokenHeaders = new RefreshAccessTokenHeaders( {}, ); readonly cancellationToken?: CancellationToken = void 0; constructor( fields: Omit<RefreshAccessTokenOptionals, 'headers' | 'cancellationToken'> & Partial< Pick<RefreshAccessTokenOptionals, 'headers' | 'cancellationToken'> >, ) { if (fields.headers !== undefined) { this.headers = fields.headers; } if (fields.cancellationToken !== undefined) { this.cancellationToken = fields.cancellationToken; } } } export interface RefreshAccessTokenOptionalsInput { readonly headers?: RefreshAccessTokenHeaders; readonly cancellationToken?: CancellationToken; } export class RevokeAccessTokenOptionals { readonly headers: RevokeAccessTokenHeaders = new RevokeAccessTokenHeaders({}); readonly cancellationToken?: CancellationToken = void 0; constructor( fields: Omit<RevokeAccessTokenOptionals, 'headers' | 'cancellationToken'> & Partial< Pick<RevokeAccessTokenOptionals, 'headers' | 'cancellationToken'> >, ) { if (fields.headers !== undefined) { this.headers = fields.headers; } if (fields.cancellationToken !== undefined) { this.cancellationToken = fields.cancellationToken; } } } export interface RevokeAccessTokenOptionalsInput { readonly headers?: RevokeAccessTokenHeaders; readonly cancellationToken?: CancellationToken; } export type AuthorizeUserQueryParamsResponseTypeField = 'code' | string; export interface AuthorizeUserQueryParams { /** * The type of response we'd like to receive. */ readonly responseType: AuthorizeUserQueryParamsResponseTypeField; /** * The Client ID of the application that is requesting to authenticate * the user. To get the Client ID for your application, log in to your * Box developer console and click the **Edit Application** link for * the application you're working with. In the OAuth 2.0 Parameters section * of the configuration page, find the item labelled `client_id`. The * text of that item is your application's Client ID. */ readonly clientId: string; /** * The URI to which Box redirects the browser after the user has granted * or denied the application permission. This URI match one of the redirect * URIs in the configuration of your application. It must be a * valid HTTPS URI and it needs to be able to handle the redirection to * complete the next step in the OAuth 2.0 flow. * Although this parameter is optional, it must be a part of the * authorization URL if you configured multiple redirect URIs * for the application in the developer console. A missing parameter causes * a `redirect_uri_missing` error after the user grants application access. */ readonly redirectUri?: string; /** * A custom string of your choice. Box will pass the same string to * the redirect URL when authentication is complete. This parameter * can be used to identify a user on redirect, as well as protect * against hijacked sessions and other exploits. */ readonly state?: string; /** * A space-separated list of application scopes you'd like to * authenticate the user for. This defaults to all the scopes configured * for the application in its configuration page. */ readonly scope?: string; } export class AuthorizeUserHeaders { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; } = {}; constructor( fields: Omit<AuthorizeUserHeaders, 'extraHeaders'> & Partial<Pick<AuthorizeUserHeaders, 'extraHeaders'>>, ) { if (fields.extraHeaders !== undefined) { this.extraHeaders = fields.extraHeaders; } } } export interface AuthorizeUserHeadersInput { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; }; } export class RequestAccessTokenHeaders { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; } = {}; constructor( fields: Omit<RequestAccessTokenHeaders, 'extraHeaders'> & Partial<Pick<RequestAccessTokenHeaders, 'extraHeaders'>>, ) { if (fields.extraHeaders !== undefined) { this.extraHeaders = fields.extraHeaders; } } } export interface RequestAccessTokenHeadersInput { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; }; } export class RefreshAccessTokenHeaders { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; } = {}; constructor( fields: Omit<RefreshAccessTokenHeaders, 'extraHeaders'> & Partial<Pick<RefreshAccessTokenHeaders, 'extraHeaders'>>, ) { if (fields.extraHeaders !== undefined) { this.extraHeaders = fields.extraHeaders; } } } export interface RefreshAccessTokenHeadersInput { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; }; } export class RevokeAccessTokenHeaders { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; } = {}; constructor( fields: Omit<RevokeAccessTokenHeaders, 'extraHeaders'> & Partial<Pick<RevokeAccessTokenHeaders, 'extraHeaders'>>, ) { if (fields.extraHeaders !== undefined) { this.extraHeaders = fields.extraHeaders; } } } export interface RevokeAccessTokenHeadersInput { /** * Extra headers that will be included in the HTTP request. */ readonly extraHeaders?: { readonly [key: string]: undefined | string; }; } export class AuthorizationManager { readonly auth?: Authentication; readonly networkSession: NetworkSession = new NetworkSession({}); constructor( fields: Omit< AuthorizationManager, | 'networkSession' | 'authorizeUser' | 'requestAccessToken' | 'refreshAccessToken' | 'revokeAccessToken' > & Partial<Pick<AuthorizationManager, 'networkSession'>>, ) { if (fields.auth !== undefined) { this.auth = fields.auth; } if (fields.networkSession !== undefined) { this.networkSession = fields.networkSession; } } /** * Authorize a user by sending them through the [Box](https://box.com) * website and request their permission to act on their behalf. * * This is the first step when authenticating a user using * OAuth 2.0. To request a user's authorization to use the Box APIs * on their behalf you will need to send a user to the URL with this * format. * @param {AuthorizeUserQueryParams} queryParams Query parameters of authorizeUser method * @param {AuthorizeUserOptionalsInput} optionalsInput * @returns {Promise<undefined>} */ async authorizeUser( queryParams: AuthorizeUserQueryParams, optionalsInput: AuthorizeUserOptionalsInput = {}, ): Promise<undefined> { const optionals: AuthorizeUserOptionals = new AuthorizeUserOptionals({ headers: optionalsInput.headers, cancellationToken: optionalsInput.cancellationToken, }); const headers: any = optionals.headers; const cancellationToken: any = optionals.cancellationToken; const queryParamsMap: { readonly [key: string]: string; } = prepareParams({ ['response_type']: toString(queryParams.responseType) as string, ['client_id']: toString(queryParams.clientId) as string, ['redirect_uri']: toString(queryParams.redirectUri) as string, ['state']: toString(queryParams.state) as string, ['scope']: toString(queryParams.scope) as string, }); const headersMap: { readonly [key: string]: string; } = prepareParams({ ...{}, ...headers.extraHeaders }); const response: FetchResponse = await this.networkSession.networkClient.fetch( new FetchOptions({ url: ''.concat( this.networkSession.baseUrls.oauth2Url, '/authorize', ) as string, method: 'GET', params: queryParamsMap, headers: headersMap, responseFormat: 'no_content' as ResponseFormat, auth: this.auth, networkSession: this.networkSession, cancellationToken: cancellationToken, }), ); return void 0; } /** * Request an Access Token using either a client-side obtained OAuth 2.0 * authorization code or a server-side JWT assertion. * * An Access Token is a string that enables Box to verify that a * request belongs to an authorized session. In the normal order of * operations you will begin by requesting authentication from the * [authorize](#get-authorize) endpoint and Box will send you an * authorization code. * * You will then send this code to this endpoint to exchange it for * an Access Token. The returned Access Token can then be used to to make * Box API calls. * @param {PostOAuth2Token} requestBody Request body of requestAccessToken method * @param {RequestAccessTokenOptionalsInput} optionalsInput * @returns {Promise<AccessToken>} */ async requestAccessToken( requestBody: PostOAuth2Token, optionalsInput: RequestAccessTokenOptionalsInput = {}, ): Promise<AccessToken> { const optionals: RequestAccessTokenOptionals = new RequestAccessTokenOptionals({ headers: optionalsInput.headers, cancellationToken: optionalsInput.cancellationToken, }); const headers: any = optionals.headers; const cancellationToken: any = optionals.cancellationToken; const headersMap: { readonly [key: string]: string; } = prepareParams({ ...{}, ...headers.extraHeaders }); const response: FetchResponse = await this.networkSession.networkClient.fetch( new FetchOptions({ url: ''.concat( this.networkSession.baseUrls.baseUrl, '/oauth2/token', ) as string, method: 'POST', headers: headersMap, data: serializePostOAuth2Token(requestBody), contentType: 'application/x-www-form-urlencoded', responseFormat: 'json' as ResponseFormat, auth: this.auth, networkSession: this.networkSession, cancellationToken: cancellationToken, }), ); return { ...deserializeAccessToken(response.data!), rawData: response.data!, }; } /** * Refresh an Access Token using its client ID, secret, and refresh token. * @param {PostOAuth2TokenRefreshAccessTokenInput} requestBodyInput Request body of refreshAccessToken method * @param {RefreshAccessTokenOptionalsInput} optionalsInput * @returns {Promise<AccessToken>} */ async refreshAccessToken( requestBodyInput: PostOAuth2TokenRefreshAccessTokenInput, optionalsInput: RefreshAccessTokenOptionalsInput = {}, ): Promise<AccessToken> { const requestBody: PostOAuth2TokenRefreshAccessToken = new PostOAuth2TokenRefreshAccessToken({ grantType: requestBodyInput.grantType, clientId: requestBodyInput.clientId, clientSecret: requestBodyInput.clientSecret, refreshToken: requestBodyInput.refreshToken, }); const optionals: RefreshAccessTokenOptionals = new RefreshAccessTokenOptionals({ headers: optionalsInput.headers, cancellationToken: optionalsInput.cancellationToken, }); const headers: any = optionals.headers; const cancellationToken: any = optionals.cancellationToken; const headersMap: { readonly [key: string]: string; } = prepareParams({ ...{}, ...headers.extraHeaders }); const response: FetchResponse = await this.networkSession.networkClient.fetch( new FetchOptions({ url: ''.concat( this.networkSession.baseUrls.baseUrl, '/oauth2/token#refresh', ) as string, method: 'POST', headers: headersMap, data: serializePostOAuth2TokenRefreshAccessToken(requestBody), contentType: 'application/x-www-form-urlencoded', responseFormat: 'json' as ResponseFormat, auth: this.auth, networkSession: this.networkSession, cancellationToken: cancellationToken, }), ); return { ...deserializeAccessToken(response.data!), rawData: response.data!, }; } /** * Revoke an active Access Token, effectively logging a user out * that has been previously authenticated. * @param {PostOAuth2Revoke} requestBody Request body of revokeAccessToken method * @param {RevokeAccessTokenOptionalsInput} optionalsInput * @returns {Promise<undefined>} */ async revokeAccessToken( requestBody: PostOAuth2Revoke, optionalsInput: RevokeAccessTokenOptionalsInput = {}, ): Promise<undefined> { const optionals: RevokeAccessTokenOptionals = new RevokeAccessTokenOptionals({ headers: optionalsInput.headers, cancellationToken: optionalsInput.cancellationToken, }); const headers: any = optionals.headers; const cancellationToken: any = optionals.cancellationToken; const headersMap: { readonly [key: string]: string; } = prepareParams({ ...{}, ...headers.extraHeaders }); const response: FetchResponse = await this.networkSession.networkClient.fetch( new FetchOptions({ url: ''.concat( this.networkSession.baseUrls.baseUrl, '/oauth2/revoke', ) as string, method: 'POST', headers: headersMap, data: serializePostOAuth2Revoke(requestBody), contentType: 'application/x-www-form-urlencoded', responseFormat: 'no_content' as ResponseFormat, auth: this.auth, networkSession: this.networkSession, cancellationToken: cancellationToken, }), ); return void 0; } } export interface AuthorizationManagerInput { readonly auth?: Authentication; readonly networkSession?: NetworkSession; } export function serializeAuthorizeUserQueryParamsResponseTypeField( val: AuthorizeUserQueryParamsResponseTypeField, ): SerializedData { return val; } export function deserializeAuthorizeUserQueryParamsResponseTypeField( val: SerializedData, ): AuthorizeUserQueryParamsResponseTypeField { if (val == 'code') { return val; } if (sdIsString(val)) { return val; } throw new BoxSdkError({ message: "Can't deserialize AuthorizeUserQueryParamsResponseTypeField", }); }