feat(medusa): Authentication overhaul (#4064)

* implemented bearer auth

* changed naming strat

* changed session auth to not use jwt

* typo

* changed auth header prefix for admin api token auth

* fixed supporting functions to work with new session type

* removed database calls for bearer auth improving performance

* removed unused deps

* changed auth in tests

* added integration tests

* Accepted suggested change

Co-authored-by: Carlos R. L. Rodrigues <37986729+carlos-r-l-rodrigues@users.noreply.github.com>

* Typo

Co-authored-by: Oliver Windall Juhl <59018053+olivermrbl@users.noreply.github.com>

* more typos

Co-authored-by: Oliver Windall Juhl <59018053+olivermrbl@users.noreply.github.com>

* proper formatting

Co-authored-by: Oliver Windall Juhl <59018053+olivermrbl@users.noreply.github.com>

* removed endregion

Co-authored-by: Oliver Windall Juhl <59018053+olivermrbl@users.noreply.github.com>

* removed startregion

Co-authored-by: Oliver Windall Juhl <59018053+olivermrbl@users.noreply.github.com>

* fixed admin JWT integration test

* added more fixes to integration tests

* Update OAS

* Create fluffy-donkeys-hope.md

* created API reference for new auth

* implemented getToken in medusa-js

* Apply suggestions from code review

Co-authored-by: Shahed Nasser <shahednasser@gmail.com>

* Apply suggestions from code review

Co-authored-by: Shahed Nasser <shahednasser@gmail.com>

* deleted files which should be autogenerated

* Update fluffy-donkeys-hope.md

* JSDoc update

Co-authored-by: Oli Juhl <59018053+olivermrbl@users.noreply.github.com>

* added missing route exports

* implemented runtime domain safety in jwt token manager

* fixed jwt manager

* lint get-token files

* Update fluffy-donkeys-hope.md

* Revert "deleted files which should be autogenerated"

This reverts commit cd5e86623b822e6a6ac37322b952143ccc493df9.

* Revert "Apply suggestions from code review"

This reverts commit f02f07ce58fd9fcc2dfc80cadbb9df2665108d65.

* Revert "created API reference for new auth"

This reverts commit c9eafbb36453f5cf8047c79e94f470cb2d023c7d.

* renamed header for sending api access tokens

* medusa-js - changed apiKey header

---------

Co-authored-by: Oliver Windall Juhl <59018053+olivermrbl@users.noreply.github.com>
Co-authored-by: Carlos R. L. Rodrigues <37986729+carlos-r-l-rodrigues@users.noreply.github.com>
Co-authored-by: olivermrbl <oliver@mrbltech.com>
Co-authored-by: Shahed Nasser <shahednasser@gmail.com>

integration-tests/api/__tests__/admin/store.js

@@ -40,7 +40,7 @@ describe("/admin/store", () => {
       const api = useApi()
 
       const response = await api.get("/admin/store", {
-        headers: { Authorization: "Bearer test_token " },
+        headers: { "x-medusa-access-token": "test_token " },
       })
 
       expect(response.status).toEqual(200)
@@ -99,7 +99,7 @@ describe("/admin/store", () => {
             default_currency_code: "eur",
           },
           {
-            headers: { Authorization: "Bearer test_token " },
+            headers: { "x-medusa-access-token": "test_token " },
           }
         )
       } catch (e) {
@@ -121,7 +121,7 @@ describe("/admin/store", () => {
             currencies: ["usd"],
           },
           {
-            headers: { Authorization: "Bearer test_token " },
+            headers: { "x-medusa-access-token": "test_token " },
           }
         )
       } catch (e) {
@@ -144,7 +144,7 @@ describe("/admin/store", () => {
             default_currency_code: "dkk",
           },
           {
-            headers: { Authorization: "Bearer test_token " },
+            headers: { "x-medusa-access-token": "test_token " },
           }
         )
         .catch((err) => console.log(err))
@@ -180,7 +180,7 @@ describe("/admin/store", () => {
           currencies: ["jpy", "usd"],
         },
         {
-          headers: { Authorization: "Bearer test_token " },
+          headers: { "x-medusa-access-token": "test_token " },
         }
       )
 
@@ -214,7 +214,7 @@ describe("/admin/store", () => {
           currencies: ["jpy", "usd"],
         },
         {
-          headers: { Authorization: "Bearer test_token " },
+          headers: { "x-medusa-access-token": "test_token " },
         }
       )