Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More →
botbuilder
Advanced tools
botbuilder - npm Package Compare versions
Comparing version 3.10.2 to 3.11.0
@@ -26,9 +26,8 @@ "use strict"; | ||
| botConnectorAudience: this.settings.appId, | ||
| msaOpenIdMetadata: 'https://login.microsoftonline.com/common/v2.0/.well-known/openid-configuration', | ||
| msaIssuer: 'https://sts.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/', | ||
| msaAudience: 'https://graph.microsoft.com', | ||
| emulatorOpenIdMetadata: 'https://login.microsoftonline.com/botframework.com/v2.0/.well-known/openid-configuration', | ||
| emulatorAudience: this.settings.appId, | ||
| emulatorIssuerV1: 'https://sts.windows.net/d6d49420-f39b-4df7-a1dc-d59a935871db/', | ||
| emulatorIssuerV2: 'https://login.microsoftonline.com/d6d49420-f39b-4df7-a1dc-d59a935871db/v2.0', | ||
| emulatorAuthV31IssuerV1: 'https://sts.windows.net/d6d49420-f39b-4df7-a1dc-d59a935871db/', | ||
| emulatorAuthV31IssuerV2: 'https://login.microsoftonline.com/d6d49420-f39b-4df7-a1dc-d59a935871db/v2.0', | ||
| emulatorAuthV32IssuerV1: 'https://sts.windows.net/f8cdef31-a31e-4b4a-93e4-5f571e91255a/', | ||
| emulatorAuthV32IssuerV2: 'https://login.microsoftonline.com/f8cdef31-a31e-4b4a-93e4-5f571e91255a/v2.0', | ||
| stateEndpoint: this.settings.stateEndpoint || 'https://state.botframework.com' | ||
@@ -38,3 +37,2 @@ }; | ||
| this.botConnectorOpenIdMetadata = new OpenIdMetadata_1.OpenIdMetadata(this.settings.endpoint.botConnectorOpenIdMetadata); | ||
| this.msaOpenIdMetadata = new OpenIdMetadata_1.OpenIdMetadata(this.settings.endpoint.msaOpenIdMetadata); | ||
| this.emulatorOpenIdMetadata = new OpenIdMetadata_1.OpenIdMetadata(this.settings.endpoint.emulatorOpenIdMetadata); | ||
@@ -76,30 +74,34 @@ } | ||
| var algorithms = ['RS256', 'RS384', 'RS512']; | ||
| if (isEmulator && decoded_1.payload.iss == this.settings.endpoint.msaIssuer) { | ||
| openIdMetadata = this.msaOpenIdMetadata; | ||
| verifyOptions = { | ||
| algorithms: algorithms, | ||
| issuer: this.settings.endpoint.msaIssuer, | ||
| audience: this.settings.endpoint.msaAudience, | ||
| clockTolerance: 300 | ||
| }; | ||
| if (isEmulator) { | ||
| if ((decoded_1.payload.ver === '2.0' && decoded_1.payload.azp !== this.settings.appId) || | ||
| (decoded_1.payload.ver !== '2.0' && decoded_1.payload.appid !== this.settings.appId)) { | ||
| logger.error('ChatConnector: receive - invalid token. Requested by unexpected app ID.'); | ||
| res.status(403); | ||
| res.end(); | ||
| return; | ||
| } | ||
| var issuer = void 0; | ||
| if (decoded_1.payload.ver === '1.0' && decoded_1.payload.iss == this.settings.endpoint.emulatorAuthV31IssuerV1) { | ||
| issuer = this.settings.endpoint.emulatorAuthV31IssuerV1; | ||
| } | ||
| else if (decoded_1.payload.ver === '2.0' && decoded_1.payload.iss == this.settings.endpoint.emulatorAuthV31IssuerV2) { | ||
| issuer = this.settings.endpoint.emulatorAuthV31IssuerV2; | ||
| } | ||
| else if (decoded_1.payload.ver === '1.0' && decoded_1.payload.iss == this.settings.endpoint.emulatorAuthV32IssuerV1) { | ||
| issuer = this.settings.endpoint.emulatorAuthV32IssuerV1; | ||
| } | ||
| else if (decoded_1.payload.ver === '2.0' && decoded_1.payload.iss == this.settings.endpoint.emulatorAuthV32IssuerV2) { | ||
| issuer = this.settings.endpoint.emulatorAuthV32IssuerV2; | ||
| } | ||
| if (issuer) { | ||
| openIdMetadata = this.emulatorOpenIdMetadata; | ||
| verifyOptions = { | ||
| algorithms: algorithms, | ||
| issuer: issuer, | ||
| audience: this.settings.endpoint.emulatorAudience, | ||
| clockTolerance: 300 | ||
| }; | ||
| } | ||
| } | ||
| else if (isEmulator && decoded_1.payload.ver === '1.0' && decoded_1.payload.iss == this.settings.endpoint.emulatorIssuerV1) { | ||
| openIdMetadata = this.emulatorOpenIdMetadata; | ||
| verifyOptions = { | ||
| algorithms: algorithms, | ||
| issuer: this.settings.endpoint.emulatorIssuerV1, | ||
| audience: this.settings.endpoint.emulatorAudience, | ||
| clockTolerance: 300 | ||
| }; | ||
| } | ||
| else if (isEmulator && decoded_1.payload.ver === '2.0' && decoded_1.payload.iss == this.settings.endpoint.emulatorIssuerV2) { | ||
| openIdMetadata = this.emulatorOpenIdMetadata; | ||
| verifyOptions = { | ||
| algorithms: algorithms, | ||
| issuer: this.settings.endpoint.emulatorIssuerV2, | ||
| audience: this.settings.endpoint.emulatorAudience, | ||
| clockTolerance: 300 | ||
| }; | ||
| } | ||
| else { | ||
| if (!verifyOptions) { | ||
| openIdMetadata = this.botConnectorOpenIdMetadata; | ||
@@ -112,9 +114,2 @@ verifyOptions = { | ||
| } | ||
| if (isEmulator && ((decoded_1.payload.ver === '2.0' && decoded_1.payload.azp !== this.settings.appId) || | ||
| (decoded_1.payload.ver !== '2.0' && decoded_1.payload.appid !== this.settings.appId))) { | ||
| logger.error('ChatConnector: receive - invalid token. Requested by unexpected app ID.'); | ||
| res.status(403); | ||
| res.end(); | ||
| return; | ||
| } | ||
| openIdMetadata.getKey(decoded_1.header.kid, function (key) { | ||
@@ -121,0 +116,0 @@ if (key) { |
@@ -5,3 +5,3 @@ { | ||
| "description": "Bot Builder is a dialog system for building rich bots on virtually any platform.", | ||
| "version": "3.10.2", | ||
| "version": "3.11.0", | ||
| "license": "MIT", | ||
@@ -8,0 +8,0 @@ "keywords": [ |
New alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Fixed alerts
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
Worsened metrics
- Total package byte prevSize
- decreased by-0.02%
615021
- Lines of code
- decreased by-0.04%
13169
No dependency changes