Skip to content
This repository was archived by the owner on Nov 15, 2024. It is now read-only.

feat: Use client-session-token header #188

Merged
merged 1 commit into from
Apr 27, 2023
Merged

feat: Use client-session-token header #188

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 4 additions & 4 deletions docs/classes/Seam.md
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

25 changes: 16 additions & 9 deletions src/seam-connect/client.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,34 +58,38 @@ export const getSeamClientOptionsWithDefaults = (
}
}

const getBearerToken = ({
const getAuthHeaders = ({
clientSessionToken,
apiKey,
workspaceId,
}: {
clientSessionToken?: string
apiKey?: string
workspaceId?: string
}): string => {
}): Record<string, string> => {
if (apiKey && clientSessionToken) {
throw new Error("You can't use clientSessionToken AND specify apiKey.")
}

if (clientSessionToken) {
if (clientSessionToken.startsWith("seam_cst")) return clientSessionToken
else throw new Error("clientSessionToken must start with seam_cst")
if (!clientSessionToken.startsWith("seam_cst")) {
throw new Error("clientSessionToken must start with seam_cst")
}
return { "client-session-token": clientSessionToken }
}

if (apiKey) {
if (apiKey.startsWith("seam_cst")) {
console.warn(
"Using API Key as Client Session Token is deprecated. Please use the clientSessionToken option instead."
)
return apiKey
return { "client-session-token": apiKey }
}
if (!apiKey.startsWith("seam_at") && workspaceId)
throw new Error(
"You can't use API Key Authentication AND specify a workspace. Your API Key only works for the workspace it was created in. To use Session Key Authentication with multi-workspace support, contact Seam support."
)
return apiKey
return { authorization: `Bearer ${apiKey}` }
}
throw new Error(
"Must provide either clientSessionToken or apiKey (API Key or Access Token with Workspace ID)."
Expand All @@ -101,12 +105,15 @@ export class Seam extends Routes {
const { apiKey, endpoint, workspaceId, axiosOptions, clientSessionToken } =
getSeamClientOptionsWithDefaults(apiKeyOrOptions)

const bearer =
`Bearer ` + getBearerToken({ clientSessionToken, apiKey, workspaceId })
const authHeaders = getAuthHeaders({
clientSessionToken,
apiKey,
workspaceId,
})

const headers: AxiosRequestHeaders = {
...axiosOptions?.headers,
Authorization: bearer,
...authHeaders,
...(!workspaceId ? {} : { "Seam-Workspace": workspaceId }), // only needed for session key authentication
// 'seam-sdk-version': version // TODO: resolve error Access to XMLHttpRequest at 'http://localhost:3020/devices/list' from origin 'http://localhost:5173' has been blocked by CORS policy: Request header field seam-sdk-version is not allowed by Access-Control-Allow-Headers in preflight response.
}
Expand Down