chore: update

logto-io · May 11, 2024 · 6e15784 · 6e15784
1 parent 65a0823
commit 6e15784
Show file tree

Hide file tree

Showing 2 changed files with 23 additions and 19 deletions.
diff --git a/packages/core/src/oidc/extra-token-claims.ts b/packages/core/src/oidc/extra-token-claims.ts
@@ -106,35 +106,30 @@ export const getExtraTokenClaimsForJwtCustomization = async (
  .map((field) => [field, Reflect.get(token, field)])
  );
 
- const commonPayload = {
- script,
- environmentVariables,
- token: readOnlyToken,
- };
-
  // We pass context to the cloud API only when it is a user's access token.
  const logtoUserInfo = conditional(
  !isTokenClientCredentials &&
  token.accountId &&
  (await libraries.jwtCustomizers.getUserContext(token.accountId))
  );
 
- const payload: CustomJwtFetcher = isTokenClientCredentials
- ? {
- ...commonPayload,
- tokenType: LogtoJwtTokenKeyType.ClientCredentials,
- }
- : {
- ...commonPayload,
- tokenType: LogtoJwtTokenKeyType.AccessToken,
- // TODO (LOG-8555): the newly added `UserProfile` type includes undefined fields and can not be directly assigned to `Json` type. And the `undefined` fields should be removed by zod guard.
- // eslint-disable-next-line no-restricted-syntax
- context: { user: logtoUserInfo as Record<string, Json> },
- };
+ const payload: CustomJwtFetcher = {
+ script,
+ environmentVariables,
+ token: readOnlyToken,
+ ...(isTokenClientCredentials
+ ? { tokenType: LogtoJwtTokenKeyType.ClientCredentials }
+ : {
+ tokenType: LogtoJwtTokenKeyType.AccessToken,
+ // TODO (LOG-8555): the newly added `UserProfile` type includes undefined fields and can not be directly assigned to `Json` type. And the `undefined` fields should be removed by zod guard.
+ // `context` parameter is only eligible for user's access token for now.
+ // eslint-disable-next-line no-restricted-syntax
+ context: { user: logtoUserInfo as Record<string, Json> },
+ }),
+ };
 
  if (EnvSet.values.isCloud) {
  const client = await cloudConnection.getClient();
- // `context` parameter is only eligible for user's access token for now.
  return await client.post(`/api/services/custom-jwt`, {
  body: payload,
  search: {},

diff --git a/packages/toolkit/core-kit/src/custom-jwt/script-execution.ts b/packages/toolkit/core-kit/src/custom-jwt/script-execution.ts
@@ -1,5 +1,14 @@
 import { runInNewContext } from 'node:vm';
 
+/**
+ * This function is used to execute a named function in a customized code script in a local
+ * virtual machine with the given payload as input.
+ *
+ * @param script Custom code snippet.
+ * @param functionName The name of the function to be executed.
+ * @param payload The input payload for the function.
+ * @returns The result of the function execution.
+ */
 export const runScriptFunctionInLocalVm = async (
  script: string,
  functionName: string,