2024-08-27 22:26:56 -04:00
|
|
|
import { createGrpcTransport, GrpcTransportOptions } from "@connectrpc/connect-node";
|
2024-07-25 23:16:07 -04:00
|
|
|
import { NewAuthorizationBearerInterceptor } from "@zitadel/client";
|
2024-05-28 11:24:12 -04:00
|
|
|
import { importPKCS8, SignJWT } from "jose";
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Create a server transport with the given token and configuration options.
|
|
|
|
|
* @param token
|
|
|
|
|
* @param opts
|
|
|
|
|
*/
|
2024-08-27 22:26:56 -04:00
|
|
|
export function createServerTransport(token: string, opts: GrpcTransportOptions) {
|
2024-07-16 09:20:40 -04:00
|
|
|
return createGrpcTransport({
|
2024-05-28 11:24:12 -04:00
|
|
|
...opts,
|
2024-08-27 22:26:56 -04:00
|
|
|
interceptors: [...(opts.interceptors || []), NewAuthorizationBearerInterceptor(token)],
|
2024-05-28 11:24:12 -04:00
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
export async function newSystemToken() {
|
|
|
|
|
return await new SignJWT({})
|
|
|
|
|
.setProtectedHeader({ alg: "RS256" })
|
|
|
|
|
.setIssuedAt()
|
|
|
|
|
.setExpirationTime("1h")
|
|
|
|
|
.setIssuer(process.env.ZITADEL_SYSTEM_API_USERID ?? "")
|
|
|
|
|
.setSubject(process.env.ZITADEL_SYSTEM_API_USERID ?? "")
|
|
|
|
|
.setAudience(process.env.ZITADEL_ISSUER ?? "")
|
|
|
|
|
.sign(await importPKCS8(process.env.ZITADEL_SYSTEM_API_KEY ?? "", "RS256"));
|
|
|
|
|
}
|
