Hugging Face's logo

Darochin
/
openskynet

English
Spanish
agent
autonomy
research
typescript
nodejs
llm
Model card Files
xet
 Community
openskynet / src /agents /auth-profiles /credential-state.ts
Darochin's picture
Darochin
Mirror OpenSkyNet workspace snapshot from Git HEAD
fc93158 verified
raw
history blame contribute delete
2.44 kB
import { coerceSecretRef, normalizeSecretInputString } from "../../config/types.secrets.js";
import type { AuthProfileCredential } from "./types.js";
export type AuthCredentialReasonCode =
 | "ok"
 | "missing_credential"
 | "invalid_expires"
 | "expired"
 | "unresolved_ref";
export type TokenExpiryState = "missing" | "valid" | "expired" | "invalid_expires";
export function resolveTokenExpiryState(expires: unknown, now = Date.now()): TokenExpiryState {
 if (expires === undefined) {
 return "missing";
 }
 if (typeof expires !== "number") {
 return "invalid_expires";
 }
 if (!Number.isFinite(expires) || expires <= 0) {
 return "invalid_expires";
 }
 return now >= expires ? "expired" : "valid";
}
function hasConfiguredSecretRef(value: unknown): boolean {
 return coerceSecretRef(value) !== null;
}
function hasConfiguredSecretString(value: unknown): boolean {
 return normalizeSecretInputString(value) !== undefined;
}
export function evaluateStoredCredentialEligibility(params: {
 credential: AuthProfileCredential;
 now?: number;
}): { eligible: boolean; reasonCode: AuthCredentialReasonCode } {
 const now = params.now ?? Date.now();
 const credential = params.credential;
if (credential.type === "api_key") {
 const hasKey = hasConfiguredSecretString(credential.key);
 const hasKeyRef = hasConfiguredSecretRef(credential.keyRef);
 if (!hasKey && !hasKeyRef) {
 return { eligible: false, reasonCode: "missing_credential" };
 }
 return { eligible: true, reasonCode: "ok" };
 }
if (credential.type === "token") {
 const hasToken = hasConfiguredSecretString(credential.token);
 const hasTokenRef = hasConfiguredSecretRef(credential.tokenRef);
 if (!hasToken && !hasTokenRef) {
 return { eligible: false, reasonCode: "missing_credential" };
 }
const expiryState = resolveTokenExpiryState(credential.expires, now);
 if (expiryState === "invalid_expires") {
 return { eligible: false, reasonCode: "invalid_expires" };
 }
 if (expiryState === "expired") {
 return { eligible: false, reasonCode: "expired" };
 }
 return { eligible: true, reasonCode: "ok" };
 }
if (
 normalizeSecretInputString(credential.access) === undefined &&
 normalizeSecretInputString(credential.refresh) === undefined
 ) {
 return { eligible: false, reasonCode: "missing_credential" };
 }
 return { eligible: true, reasonCode: "ok" };
}