@paladen/auth - npm Package Compare versions

Comparing version 0.0.75 to 0.0.76

dist/index.d.ts

@@ -20,1 +20,7 @@ export * from "./AuthContext";
 };
+export declare const buildSessionCookieString: (name: string, value: string, expiryDate: string) => string;
+export declare const createSessionCookie: (tokens: Tokens, userId: string) => string;
+export declare const deleteSessionCookie: () => string;
+export declare const encodeCookieString: (str: string) => string;
+export declare const decodeCookieString: (str: string) => string;
+export declare const combineCookieStrings: (accessToken: string, refreshToken: string, userId: string) => string;

dist/index.js

@@ -10,2 +10,18 @@ 'use strict';
 
+var commonjsGlobal = typeof globalThis !== 'undefined' ? globalThis : typeof window !== 'undefined' ? window : typeof global !== 'undefined' ? global : typeof self !== 'undefined' ? self : {};
+
+function unwrapExports (x) {
+	return x && x.__esModule && Object.prototype.hasOwnProperty.call(x, 'default') ? x['default'] : x;
+}
+
+function createCommonjsModule(fn, module) {
+	return module = { exports: {} }, fn(module, module.exports), module.exports;
+}
+
+var dist = createCommonjsModule(function (module, exports) {
+
+Object.defineProperty(exports, '__esModule', {
+  value: true
+});
+
 function _defineProperty(obj, key, value) {
@@ -26,2 +42,103 @@ if (key in obj) {
 
+function ownKeys(object, enumerableOnly) {
+  var keys = Object.keys(object);
+
+  if (Object.getOwnPropertySymbols) {
+    var symbols = Object.getOwnPropertySymbols(object);
+    if (enumerableOnly) symbols = symbols.filter(function (sym) {
+      return Object.getOwnPropertyDescriptor(object, sym).enumerable;
+    });
+    keys.push.apply(keys, symbols);
+  }
+
+  return keys;
+}
+
+function _objectSpread(target) {
+  for (var i = 1; i < arguments.length; i++) {
+    var source = arguments[i] != null ? arguments[i] : {};
+
+    if (i % 2) {
+      ownKeys(Object(source), true).forEach(function (key) {
+        _defineProperty(target, key, source[key]);
+      });
+    } else if (Object.getOwnPropertyDescriptors) {
+      Object.defineProperties(target, Object.getOwnPropertyDescriptors(source));
+    } else {
+      ownKeys(Object(source)).forEach(function (key) {
+        Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key));
+      });
+    }
+  }
+
+  return target;
+}
+
+var getGlobal = function getGlobal(key) {
+  if (typeof window === "undefined") {
+    var globalAny = commonjsGlobal;
+    return globalAny.PALADEN_CONFIG[key];
+  } else {
+    var windowAny = window;
+    return windowAny.PALADEN_CONFIG[key];
+  }
+};
+
+var setGlobal = function setGlobal(key, value) {
+  if (typeof window === "undefined") {
+    var globalAny = commonjsGlobal;
+    globalAny.PALADEN_CONFIG[key] = value;
+  } else {
+    var windowAny = window;
+    windowAny.PALADEN_CONFIG[key] = value;
+  }
+};
+
+var getGlobals = function getGlobals() {
+  if (typeof window === "undefined") {
+    var globalAny = commonjsGlobal;
+    return globalAny.PALADEN_CONFIG;
+  } else {
+    var windowAny = window;
+    return windowAny.PALADEN_CONFIG;
+  }
+};
+
+var setGlobals = function setGlobals(globals) {
+  if (typeof window === "undefined") {
+    var globalAny = commonjsGlobal;
+    globalAny.PALADEN_CONFIG = _objectSpread({}, globalAny.PALADEN_CONFIG, {}, globals);
+  } else {
+    var windowAny = window;
+    windowAny.PALADEN_CONFIG = _objectSpread({}, windowAny.PALADEN_CONFIG, {}, globals);
+  }
+};
+
+exports.getGlobal = getGlobal;
+exports.getGlobals = getGlobals;
+exports.setGlobal = setGlobal;
+exports.setGlobals = setGlobals;
+});
+
+unwrapExports(dist);
+var dist_1 = dist.getGlobal;
+var dist_2 = dist.getGlobals;
+var dist_3 = dist.setGlobal;
+var dist_4 = dist.setGlobals;
+
+function _defineProperty(obj, key, value) {
+  if (key in obj) {
+    Object.defineProperty(obj, key, {
+      value: value,
+      enumerable: true,
+      configurable: true,
+      writable: true
+    });
+  } else {
+    obj[key] = value;
+  }
+
+  return obj;
+}
+
 function _classCallCheck(instance, Constructor) {
@@ -165,3 +282,45 @@ if (!(instance instanceof Constructor)) {
 
+var buildSessionCookieString = function buildSessionCookieString(name, value, expiryDate) {
+  return ["".concat(name, "=").concat(value), "path=/", "SameSite=Lax", "expires=".concat(expiryDate), "HttpOnly", process.env.NODE_ENV === "production" ? "Secure;" : null].join(";");
+};
+var createSessionCookie = function createSessionCookie(tokens, userId) {
+  var _getGlobals = dist_2(),
+      SESSION_COOKIE_EXPIRY_MINS = _getGlobals.SESSION_COOKIE_EXPIRY_MINS,
+      SESSION_COOKIE_NAME = _getGlobals.SESSION_COOKIE_NAME;
+
+  var dateFuture = Date.now() + 60000 * SESSION_COOKIE_EXPIRY_MINS;
+  var expiryDate = new Date(dateFuture).toUTCString();
+  var combinedCookieString = combineCookieStrings(tokens.access, tokens.refresh, userId);
+  var encodedCookieString = encodeCookieString(combinedCookieString);
+  return buildSessionCookieString(SESSION_COOKIE_NAME, encodedCookieString, expiryDate);
+};
+var deleteSessionCookie = function deleteSessionCookie() {
+  var _getGlobals2 = dist_2(),
+      SESSION_COOKIE_NAME = _getGlobals2.SESSION_COOKIE_NAME;
+
+  var expiryDate = new Date(0).toUTCString();
+  return buildSessionCookieString(SESSION_COOKIE_NAME, "", expiryDate);
+};
+var encodeCookieString = function encodeCookieString(str) {
+  return Buffer.from(str, "binary").toString("base64");
+};
+var decodeCookieString = function decodeCookieString(str) {
+  return Buffer.from(str, "base64").toString("binary");
+};
+var combineCookieStrings = function combineCookieStrings(accessToken, refreshToken, userId) {
+  var _getGlobals3 = dist_2(),
+      SESSION_COOKIE_ACCESS_TOKEN_KEY = _getGlobals3.SESSION_COOKIE_ACCESS_TOKEN_KEY,
+      SESSION_COOKIE_REFRESH_TOKEN_KEY = _getGlobals3.SESSION_COOKIE_REFRESH_TOKEN_KEY,
+      SESSION_COOKIE_USER_ID_KEY = _getGlobals3.SESSION_COOKIE_USER_ID_KEY;
+
+  return "".concat(SESSION_COOKIE_ACCESS_TOKEN_KEY, "=").concat(accessToken, ";") + "".concat(SESSION_COOKIE_REFRESH_TOKEN_KEY, "=").concat(refreshToken, ";") + "".concat(SESSION_COOKIE_USER_ID_KEY, "=").concat(userId, ";");
+};
+
 exports.AuthContext = AuthContext;
 exports.AuthContextProvider = AuthContextProvider;
+exports.buildSessionCookieString = buildSessionCookieString;
+exports.combineCookieStrings = combineCookieStrings;
+exports.createSessionCookie = createSessionCookie;
+exports.decodeCookieString = decodeCookieString;
+exports.deleteSessionCookie = deleteSessionCookie;
+exports.encodeCookieString = encodeCookieString;

package.json

 {
   "name": "@paladen/auth",
-  "version": "0.0.75",
+  "version": "0.0.76",
   "repository": "https://github.com/samstr/paladen",
@@ -18,3 +18,3 @@ "main": "dist/index.js",
   "dependencies": {
-    "@paladen/config": "^0.0.75",
+    "@paladen/config": "^0.0.76",
     "react": "^16.13.0",
@@ -32,3 +32,3 @@ "react-dom": "^16.13.0"
   },
-  "gitHead": "c0600bbd519fb643a5033c718335c6d1c2d67c71"
+  "gitHead": "23a0814bffd12b8075e19ca15f1e8cf1e779cb73"
 }

New alerts

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

12656

increased by90.26%

Lines of code

306

increased by86.59%

Worsened metrics

Number of low supply chain risk alerts

2

increased by100%

Dependency changes

• + Added@paladen/config@0.0.76(transitive)

• - Removed@paladen/config@0.0.75(transitive)

• Updated@paladen/config@^0.0.76