Server : Apache
System : Linux ks5.tuic.fr 6.1.0-18-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.76-1 (2024-02-01) x86_64
User : pragmatice ( 1003)
PHP Version : 8.2.24
Disable Function : NONE
Directory : /tmp/tsx-1023/
|
Server : Apache System : Linux ks5.tuic.fr 6.1.0-18-amd64 #1 SMP PREEMPT_DYNAMIC Debian 6.1.76-1 (2024-02-01) x86_64 User : pragmatice ( 1003) PHP Version : 8.2.24 Disable Function : NONE Directory : /tmp/tsx-1023/ |
{"code":"(()=>{\nvar __create=Object.create;var __defProp=Object.defineProperty;var __getOwnPropDesc=Object.getOwnPropertyDescriptor;var __getOwnPropNames=Object.getOwnPropertyNames;var __getProtoOf=Object.getPrototypeOf;var __hasOwnProp=Object.prototype.hasOwnProperty;var __name=(target,value)=>__defProp(target,\"name\",{value,configurable:true});var __export=(target,all)=>{for(var name in all)__defProp(target,name,{get:all[name],enumerable:true})};var __copyProps=(to,from,except,desc)=>{if(from&&typeof from===\"object\"||typeof from===\"function\"){for(let key of __getOwnPropNames(from))if(!__hasOwnProp.call(to,key)&&key!==except)__defProp(to,key,{get:()=>from[key],enumerable:!(desc=__getOwnPropDesc(from,key))||desc.enumerable})}return to};var __toESM=(mod,isNodeMode,target)=>(target=mod!=null?__create(__getProtoOf(mod)):{},__copyProps(isNodeMode||!mod||!mod.__esModule?__defProp(target,\"default\",{value:mod,enumerable:true}):target,mod));var __toCommonJS=mod=>__copyProps(__defProp({},\"__esModule\",{value:true}),mod);var introspection_exports={};__export(introspection_exports,{default:()=>introspectionAction});module.exports=__toCommonJS(introspection_exports);var import_validate_presence=__toESM(require(\"../helpers/validate_presence.js\"));var import_token_auth=__toESM(require(\"../shared/token_auth.js\"));var import_no_cache=__toESM(require(\"../shared/no_cache.js\"));var import_weak_cache=__toESM(require(\"../helpers/weak_cache.js\"));var import_selective_body=require(\"../shared/selective_body.js\");var import_reject_dupes=__toESM(require(\"../shared/reject_dupes.js\"));var import_assemble_params=__toESM(require(\"../shared/assemble_params.js\"));var import_errors=require(\"../helpers/errors.js\");const introspectable=new Set([\"AccessToken\",\"ClientCredentials\",\"RefreshToken\"]);const JWT=\"application/token-introspection+jwt\";function introspectionAction(provider){const{params:authParams,middleware:tokenAuth}=(0,import_token_auth.default)(provider);const PARAM_LIST=new Set([\"token\",\"token_type_hint\",...authParams]);const configuration=(0,import_weak_cache.default)(provider).configuration();const{pairwiseIdentifier,features:{introspection:{allowedPolicy},jwtIntrospection}}=configuration;const{grantTypeHandlers}=(0,import_weak_cache.default)(provider);const{IdToken,AccessToken,ClientCredentials,RefreshToken,Client}=provider;function getAccessToken(token){return AccessToken.find(token)}__name(getAccessToken,\"getAccessToken\");function getClientCredentials(token){if(!grantTypeHandlers.has(\"client_credentials\")){return void 0}return ClientCredentials.find(token)}__name(getClientCredentials,\"getClientCredentials\");function getRefreshToken(token){if(!grantTypeHandlers.has(\"refresh_token\")){return void 0}return RefreshToken.find(token)}__name(getRefreshToken,\"getRefreshToken\");function findResult(results){return results.find(found=>!!found)}__name(findResult,\"findResult\");return[import_no_cache.default,import_selective_body.urlencoded,import_assemble_params.default.bind(void 0,PARAM_LIST),...tokenAuth,import_reject_dupes.default.bind(void 0,{}),__name(async function validateTokenPresence(ctx,next){(0,import_validate_presence.default)(ctx,\"token\");await next()},\"validateTokenPresence\"),__name(async function jwtIntrospectionResponse(ctx,next){if(jwtIntrospection.enabled){const{client}=ctx.oidc;const{introspectionEncryptedResponseAlg:encrypt,introspectionSignedResponseAlg:sign}=client;const accepts=ctx.accepts(\"json\",JWT);if(encrypt&&accepts!==JWT){throw new import_errors.InvalidRequest(`introspection must be requested with Accept: ${JWT} for this client`)}await next();if((encrypt||sign)&&accepts===JWT){const token=new IdToken({},{ctx});token.extra={token_introspection:ctx.body,aud:ctx.body.aud};ctx.body=await token.issue({use:\"introspection\"});ctx.type=\"application/token-introspection+jwt; charset=utf-8\"}}else{await next()}},\"jwtIntrospectionResponse\"),__name(async function renderTokenResponse(ctx,next){const{params}=ctx.oidc;ctx.body={active:false};let token;switch(params.token_type_hint){case\"access_token\":token=await getAccessToken(params.token).then(result=>{if(result)return result;return Promise.all([getClientCredentials(params.token),getRefreshToken(params.token)]).then(findResult)});break;case\"client_credentials\":token=await getClientCredentials(params.token).then(result=>{if(result)return result;return Promise.all([getAccessToken(params.token),getRefreshToken(params.token)]).then(findResult)});break;case\"refresh_token\":token=await getRefreshToken(params.token).then(result=>{if(result)return result;return Promise.all([getAccessToken(params.token),getClientCredentials(params.token)]).then(findResult)});break;default:token=await Promise.all([getAccessToken(params.token),getClientCredentials(params.token),getRefreshToken(params.token)]).then(findResult)}if(!token||!token.isValid){return}if(token.grantId){const grant=await ctx.oidc.provider.Grant.find(token.grantId,{ignoreExpiration:true});if(!grant)return;if(grant.isExpired)return;if(grant.clientId!==token.clientId)return;if(grant.accountId!==token.accountId)return;ctx.oidc.entity(\"Grant\",grant)}if(introspectable.has(token.kind)){ctx.oidc.entity(token.kind,token)}else{return}if(!await allowedPolicy(ctx,ctx.oidc.client,token)){return}if(token.accountId){ctx.body.sub=token.accountId;if(token.clientId!==ctx.oidc.client.clientId){const client=await Client.find(token.clientId);if(client.subjectType===\"pairwise\"){ctx.body.sub=await pairwiseIdentifier(ctx,ctx.body.sub,client)}}else if(ctx.oidc.client.subjectType===\"pairwise\"){ctx.body.sub=await pairwiseIdentifier(ctx,ctx.body.sub,ctx.oidc.client)}}Object.assign(ctx.body,{...token.extra,active:true,client_id:token.clientId,exp:token.exp,iat:token.iat,sid:token.sid,iss:provider.issuer,jti:token.jti!==params.token?token.jti:void 0,aud:token.aud,scope:token.scope,cnf:token.isSenderConstrained()?{}:void 0,token_type:token.kind!==\"RefreshToken\"?token.tokenType:void 0});if(token[\"x5t#S256\"]){ctx.body.cnf[\"x5t#S256\"]=token[\"x5t#S256\"]}if(token.jkt){ctx.body.cnf.jkt=token.jkt}await next()},\"renderTokenResponse\")]}__name(introspectionAction,\"introspectionAction\");\n})()\n","warnings":[],"map":{"version":3,"mappings":";i/BAAA,+KAAqB,oDACrB,sBAAyB,4CACzB,oBAAoB,0CACpB,sBAAqB,6CACrB,0BAAwC,uCACxC,wBAAwB,8CACxB,2BAA6B,iDAC7B,kBAA+B,gCAE/B,MAAM,eAAiB,IAAI,IAAI,CAAC,cAAe,oBAAqB,cAAc,CAAC,EACnF,MAAM,IAAM,sCAEG,SAAR,oBAAqC,SAAU,CACpD,KAAM,CAAE,OAAQ,WAAY,WAAY,SAAU,KAAI,kBAAAA,SAAa,QAAQ,EAC3E,MAAM,WAAa,IAAI,IAAI,CAAC,QAAS,kBAAmB,GAAG,UAAU,CAAC,EACtE,MAAM,iBAAgB,kBAAAC,SAAS,QAAQ,EAAE,cAAc,EACvD,KAAM,CACJ,mBAAoB,SAAU,CAC5B,cAAe,CAAE,aAAc,EAC/B,gBACF,CACF,EAAI,cACJ,KAAM,CAAE,iBAAkB,KAAI,kBAAAA,SAAS,QAAQ,EAC/C,KAAM,CACJ,QAAS,YAAa,kBAAmB,aAAc,MACzD,EAAI,SAEJ,SAAS,eAAe,MAAO,CAC7B,OAAO,YAAY,KAAK,KAAK,CAC/B,CAFS,wCAIT,SAAS,qBAAqB,MAAO,CACnC,GAAI,CAAC,kBAAkB,IAAI,oBAAoB,EAAG,CAChD,OAAO,MACT,CACA,OAAO,kBAAkB,KAAK,KAAK,CACrC,CALS,oDAOT,SAAS,gBAAgB,MAAO,CAC9B,GAAI,CAAC,kBAAkB,IAAI,eAAe,EAAG,CAC3C,OAAO,MACT,CACA,OAAO,aAAa,KAAK,KAAK,CAChC,CALS,0CAOT,SAAS,WAAW,QAAS,CAC3B,OAAO,QAAQ,KAAM,OAAU,CAAC,CAAC,KAAK,CACxC,CAFS,gCAIT,MAAO,CACL,gBAAAC,QACA,sBAAAC,WACA,uBAAAC,QAAiB,KAAK,OAAW,UAAU,EAC3C,GAAG,UACH,oBAAAC,QAAY,KAAK,OAAW,CAAC,CAAC,EAE9B,sBAAe,sBAAsB,IAAK,KAAM,IAC9C,yBAAAC,SAAS,IAAK,OAAO,EACrB,MAAM,KAAK,CACb,EAHA,yBAKA,sBAAe,yBAAyB,IAAK,KAAM,CACjD,GAAI,iBAAiB,QAAS,CAC5B,KAAM,CAAE,MAAO,EAAI,IAAI,KAEvB,KAAM,CACJ,kCAAmC,QACnC,+BAAgC,IAClC,EAAI,OAEJ,MAAM,QAAU,IAAI,QAAQ,OAAQ,GAAG,EACvC,GAAI,SAAW,UAAY,IAAK,CAC9B,MAAM,IAAI,6BAAe,gDAAgD,GAAG,kBAAkB,CAChG,CAEA,MAAM,KAAK,EAEX,IAAK,SAAW,OAAS,UAAY,IAAK,CACxC,MAAM,MAAQ,IAAI,QAAQ,CAAC,EAAG,CAAE,GAAI,CAAC,EACrC,MAAM,MAAQ,CACZ,oBAAqB,IAAI,KACzB,IAAK,IAAI,KAAK,GAChB,EAEA,IAAI,KAAO,MAAM,MAAM,MAAM,CAAE,IAAK,eAAgB,CAAC,EACrD,IAAI,KAAO,oDACb,CACF,KAAO,CACL,MAAM,KAAK,CACb,CACF,EA7BA,4BA+BA,sBAAe,oBAAoB,IAAK,KAAM,CAC5C,KAAM,CAAE,MAAO,EAAI,IAAI,KAEvB,IAAI,KAAO,CAAE,OAAQ,KAAM,EAE3B,IAAI,MAEJ,OAAQ,OAAO,gBAAiB,CAC9B,IAAK,eACH,MAAQ,MAAM,eAAe,OAAO,KAAK,EACtC,KAAM,QAAW,CAChB,GAAI,OAAQ,OAAO,OACnB,OAAO,QAAQ,IAAI,CACjB,qBAAqB,OAAO,KAAK,EACjC,gBAAgB,OAAO,KAAK,CAC9B,CAAC,EAAE,KAAK,UAAU,CACpB,CAAC,EACH,MACF,IAAK,qBACH,MAAQ,MAAM,qBAAqB,OAAO,KAAK,EAC5C,KAAM,QAAW,CAChB,GAAI,OAAQ,OAAO,OACnB,OAAO,QAAQ,IAAI,CACjB,eAAe,OAAO,KAAK,EAC3B,gBAAgB,OAAO,KAAK,CAC9B,CAAC,EAAE,KAAK,UAAU,CACpB,CAAC,EACH,MACF,IAAK,gBACH,MAAQ,MAAM,gBAAgB,OAAO,KAAK,EACvC,KAAM,QAAW,CAChB,GAAI,OAAQ,OAAO,OACnB,OAAO,QAAQ,IAAI,CACjB,eAAe,OAAO,KAAK,EAC3B,qBAAqB,OAAO,KAAK,CACnC,CAAC,EAAE,KAAK,UAAU,CACpB,CAAC,EACH,MACF,QACE,MAAQ,MAAM,QAAQ,IAAI,CACxB,eAAe,OAAO,KAAK,EAC3B,qBAAqB,OAAO,KAAK,EACjC,gBAAgB,OAAO,KAAK,CAC9B,CAAC,EAAE,KAAK,UAAU,CACtB,CAEA,GAAI,CAAC,OAAS,CAAC,MAAM,QAAS,CAC5B,MACF,CAEA,GAAI,MAAM,QAAS,CACjB,MAAM,MAAQ,MAAM,IAAI,KAAK,SAAS,MAAM,KAAK,MAAM,QAAS,CAC9D,iBAAkB,IACpB,CAAC,EAED,GAAI,CAAC,MAAO,OACZ,GAAI,MAAM,UAAW,OACrB,GAAI,MAAM,WAAa,MAAM,SAAU,OACvC,GAAI,MAAM,YAAc,MAAM,UAAW,OAEzC,IAAI,KAAK,OAAO,QAAS,KAAK,CAChC,CAEA,GAAI,eAAe,IAAI,MAAM,IAAI,EAAG,CAClC,IAAI,KAAK,OAAO,MAAM,KAAM,KAAK,CACnC,KAAO,CACL,MACF,CAEA,GAAI,CAAE,MAAM,cAAc,IAAK,IAAI,KAAK,OAAQ,KAAK,EAAI,CACvD,MACF,CAEA,GAAI,MAAM,UAAW,CACnB,IAAI,KAAK,IAAM,MAAM,UACrB,GAAI,MAAM,WAAa,IAAI,KAAK,OAAO,SAAU,CAC/C,MAAM,OAAS,MAAM,OAAO,KAAK,MAAM,QAAQ,EAC/C,GAAI,OAAO,cAAgB,WAAY,CACrC,IAAI,KAAK,IAAM,MAAM,mBAAmB,IAAK,IAAI,KAAK,IAAK,MAAM,CACnE,CACF,SAAW,IAAI,KAAK,OAAO,cAAgB,WAAY,CACrD,IAAI,KAAK,IAAM,MAAM,mBAAmB,IAAK,IAAI,KAAK,IAAK,IAAI,KAAK,MAAM,CAC5E,CACF,CAEA,OAAO,OAAO,IAAI,KAAM,CACtB,GAAG,MAAM,MACT,OAAQ,KACR,UAAW,MAAM,SACjB,IAAK,MAAM,IACX,IAAK,MAAM,IACX,IAAK,MAAM,IACX,IAAK,SAAS,OACd,IAAK,MAAM,MAAQ,OAAO,MAAQ,MAAM,IAAM,OAC9C,IAAK,MAAM,IACX,MAAO,MAAM,MACb,IAAK,MAAM,oBAAoB,EAAI,CAAC,EAAI,OACxC,WAAY,MAAM,OAAS,eAAiB,MAAM,UAAY,MAChE,CAAC,EAED,GAAI,MAAM,UAAU,EAAG,CACrB,IAAI,KAAK,IAAI,UAAU,EAAI,MAAM,UAAU,CAC7C,CAEA,GAAI,MAAM,IAAK,CACb,IAAI,KAAK,IAAI,IAAM,MAAM,GAC3B,CAEA,MAAM,KAAK,CACb,EA7GA,sBA8GF,CACF,CA/LwB","names":["getTokenAuth","instance","noCache","parseBody","paramsMiddleware","rejectDupes","presence"],"ignoreList":[],"sources":["/home/etherpad/node_modules/.pnpm/oidc-provider@8.4.6/node_modules/oidc-provider/lib/actions/introspection.js"],"sourcesContent":[null]}}