type-o fixes

Author: Colaski

README.md

@@ -1,24 +1,31 @@
+<!-- omit in toc -->
 # SwAuth
 
-SwAuth is an OAuth 2.0 HTTP request library for written in Swift iOS 15.0+, macOS 12.0+, watchOS 8.0+, and tvOS 15.0+.
+SwAuth is an OAuth 2.0 HTTP request library written in Swift iOS 15.0+, macOS 12.0+, watchOS 8.0+, and tvOS 15.0+.
+
+- [Features](#features)
+- [Requirements](#requirements)
+- [Installation/Integration](#installationintegration)
+- [Basic Usage](#basic-usage)
+- [Contributing](#contributing)
 
 ## Features
 
-- [x] Usable and beautiful syntax with async/await! Say goodbye to completion handler hell!
+- [x] Usable and beautiful syntax with async/await! Kiss completion handler hell and the closure jungle goodbye!
 - [x] Supports Authorization Code Grant (RFC 6749/6750), Proof Key for Code Exchange (PKCE) extension for Authorization Code Grant (RFC 7636), and the Device Authorization Grant (RFC 8628).
-- [x] Support for all Apple platforms.
+- [x] Support for all Apple device platforms.
 - [x] Retry errored requests.
 - [x] Automatically refreshes tokens.
-- [x] Tokens stored on Keychain, cross-site request forgery mitigation with state by default.
-- [x] Easily deal with JSON responses with built-in [SwiftyJSON](https://github.com/SwiftyJSON/SwiftyJSON).
+- [x] Tokens stored on Keychain and cross-site request forgery mitigation by default.
+- [x] Easily deal with JSON responses with [SwiftyJSON](https://github.com/SwiftyJSON/SwiftyJSON) built-in.
 - [x] Easily integrate with SwiftUI.
-- [x] [Complete, Meticulous, Thorough, documentation.](https://swauth.netlify.app/documentation/Swauth)
-- [x] Errors that are actually useful... well most of the time.
+- [x] [Complete, meticulous, thorough, documentation.](https://swauth.netlify.app/documentation/Swauth)
+- [x] Errors that are probably, maybe actually useful.
 - [x] Built on [SwiftNIO](https://github.com/apple/swift-nio) with [AsyncHTTPClient](https://github.com/swift-server/async-http-client).
 - [x] QR Code for the Device Authorization Flow (tvOS/watchOS).
 - [x] Sample/Example Apps.
 
-## Requirments
+## Requirements
 
 - Xcode 13+
 - iOS 15.0+ | macOS 12.0+ | watchOS 8.0+ | tvOS 15.0+
@@ -56,7 +63,7 @@ let keychain = Keychain(service: "com.your.bundleID",
 let keychain = Keychain(service: "com.your.bundleID",
                         accessGroup: "appIdentifierPrefix.com.your.bundleID").label("Your App Name")
 
-let spotify = AuthorizationCodeFlow(clientID: "YourClientID",
+let spotify = PKCEAuthorizationFlow(clientID: "YourClientID",
                                     authorizationEndpoint: URL(string: "https://accounts.spotify.com/authorize")!,
                                     tokenEndpoint: URL(string: "https://accounts.spotify.com/api/token")!,
                                     redirectURI: "someapp://callback",
@@ -118,7 +125,7 @@ Make your changes and submit and a PR for review!
 
 Nice to have list:
 
-- [ ] Include ready to go implementations of Web API's with endpoints like in the [exmaple app](https://github.com/Colaski/SwAuth/blob/main/SwAuthTestApp/SwAuthTestApp/Spotify.swift)
+- [ ] Include ready to go implementations of Web API's with endpoints like in the [example app](https://github.com/Colaski/SwAuth/blob/main/SwAuthTestApp/SwAuthTestApp/Spotify.swift)
     - Perhaps Spotify, Google, Azure/Microsoft, Github etc.
 
-- [ ] OAuth1 support
+- [ ] OAuth 1.0 support

Sources/SwAuth/AuthorizationCodeFlow.swift

@@ -43,7 +43,7 @@ import enum NIOHTTP1.HTTPMethod
 @available(iOS 15.0, macOS 12.0, watchOS 8.0, tvOS 15.0, *)
 open class AuthorizationCodeFlow: Swauthable {
     // MARK: - Properties
-    /// The client identifier issued by the server. Is initialzed.
+    /// The client identifier issued by the server. Is initialized.
     public let clientID: String
     /// The client secret issued by the server. Is initialized.
     let clientSecret: String
@@ -146,13 +146,13 @@ open class AuthorizationCodeFlow: Swauthable {
     open var authHeaderTokenType: String?
 
     /// Some servers may allow or want the client id and client secret to be parameters in a HTTP request's
-    /// body instead of a Basic authorization. Set false if that is the case, otherwsie a Basic Authorization will
+    /// body instead of a Basic authorization. Set false if that is the case, otherwise a Basic Authorization will
     /// be used by default.
     open var useBasicAuthorization = true
 
     // MARK: - Methods
     /// Handles the callback URL from an ASWebAuthenticationSession
-    /// and sends a HTTP request to the initalized token endpoint for the tokens.
+    /// and sends a HTTP request to the initialized token endpoint for the tokens.
     ///
     /// Tokens are saved to the Keychain instance provided by the initializer. The tokens are saved using
     /// the instance's client id and the string "tokens" separated by a colon as the key. For example:
@@ -209,7 +209,7 @@ open class AuthorizationCodeFlow: Swauthable {
 
      Example Code:
      ```swift
-     // the "accessGroup" parameter is only necessary if you wish to share the keychain accross
+     // the "accessGroup" parameter is only necessary if you wish to share the keychain across
      // multiple targets using a keychain sharing entitlement
      let keychain = Keychain(service: "your.app.bundleID", accessGroup: "appIdentifierPrefix.your.app.bundleID")
          .label("Your App Name")
@@ -257,7 +257,7 @@ open class AuthorizationCodeFlow: Swauthable {
 
      Example Code:
      ```swift
-     // the "accessGroup" parameter is only necessary if you wish to share the keychain accross
+     // the "accessGroup" parameter is only necessary if you wish to share the keychain across
      // multiple targets using a keychain sharing entitlement
      let keychain = Keychain(service: "your.app.bundleID", accessGroup: "appIdentifierPrefix.your.app.bundleID")
          .label("Your App Name")

Sources/SwAuth/DeviceAuthorizationFlow+DeviceAuthResponse.swift

@@ -85,7 +85,7 @@ extension DeviceAuthorizationFlow {
         public let verificationURI: String
         /**
          The server may respond with a complete verification URI in addition to a verification URI (the verification
-         URI combined with the user code). Following the complete verification URI alows the user to not have to type-in
+         URI combined with the user code). Following the complete verification URI allows the user to not have to type-in
          the user code. Is nil if one was not provided.
 
          - Important: As per RFC 8628, do not display the ``completeVerificationURI`` directly to the
@@ -155,7 +155,7 @@ extension DeviceAuthorizationFlow {
         }
 
         // MARK: - Method
-        /// Generates a CGImage QR code from a verificaion URL.
+        /// Generates a CGImage QR code from a verification URL.
         internal func verificationQRCode() -> CGImage? {
             let string = completeVerificationURI != nil ? completeVerificationURI! : verificationURI
             return EFQRCode.generate(for: string)

Sources/SwAuth/DeviceAuthorizationFlow.swift

@@ -34,7 +34,7 @@ import enum NIOHTTP1.HTTPMethod
  authorization grant is designed for Internet-connected devices that either lack a browser to perform a
  user-agent-based authorization or are input constrained to the extent that requiring the user to input
  text in order to authenticate during the authorization flow is impractical." So, this authorization
- flow is particularly useful for tvOS and perhaps watchOS aswell.
+ flow is particularly useful for tvOS and perhaps watchOS as well.
 
  Conforms to the ``Swauthable`` protocol.
 
@@ -45,18 +45,18 @@ import enum NIOHTTP1.HTTPMethod
 @available(iOS 15.0, macOS 12.0, watchOS 8.0, tvOS 15.0, *)
 open class DeviceAuthorizationFlow: Swauthable {
     // MARK: - Properties
-    /// The client identifier issued by the server. Is initalized.
+    /// The client identifier issued by the server. Is initialized.
     public let clientID: String
 
-    /// Instance of KeychainAccess.  Is initalized.
+    /// Instance of KeychainAccess.  Is initialized.
     public let keychain: Keychain
 
     /// The scopes you want your app to be authorized for, separated by spaces.
     open var scopes: String?
 
     /// The server authorization endpoint URL. Is initialized.
     public let authorizationEndpoint: URL
-    /// The body parameters for the authorizaion endpoint request. Read-only.
+    /// The body parameters for the authorization endpoint request. Read-only.
     ///
     /// Not including ``scopes`` and ``additionalAuthorizationParams``, this property is:
     /// ```swift
@@ -229,7 +229,7 @@ open class DeviceAuthorizationFlow: Swauthable {
 
      Example Code:
      ```swift
-     // the "accessGroup" parameter is only necessary if you wish to share the keychain accross
+     // the "accessGroup" parameter is only necessary if you wish to share the keychain across
      // multiple targets using a keychain sharing entitlement
      let keychain = Keychain(service: "your.app.bundleID", accessGroup: "appIdentifierPrefix.your.app.bundleID")
         .label("Your App Name")
@@ -264,11 +264,11 @@ open class DeviceAuthorizationFlow: Swauthable {
 
      This initializer calls
      ``DeviceAuthorizationFlow/init(clientID:authorizationEndpoint:tokenEndpoint:keychain:)``,
-     and initiializes the scopes property.
+     and initializes the scopes property.
 
      Example Code:
      ```swift
-     // the "accessGroup" parameter is only necessary if you wish to share the keychain accross
+     // the "accessGroup" parameter is only necessary if you wish to share the keychain across
      // multiple targets using a keychain sharing entitlement
      let keychain = Keychain(service: "your.app.bundleID", accessGroup: "appIdentifierPrefix.your.app.bundleID")
         .label("Your App Name")

Sources/SwAuth/Extensions.swift

@@ -60,7 +60,7 @@ internal extension Dictionary {
 // MARK: - Data+jsonToDict, jsonString
 internal extension Data {
     /// JSON data as an NSString
-    var jsonString: NSString? { // NSString is printed all nice while mormal String is not :(.
+    var jsonString: NSString? { // NSString is printed all nice while normal String is not :(.
         guard let object = try? JSONSerialization.jsonObject(with: self, options: []),
               let data = try? JSONSerialization.data(withJSONObject: object, options: [.prettyPrinted]),
               let string = NSString(data: data, encoding: String.Encoding.utf8.rawValue) else { return nil }
@@ -85,7 +85,7 @@ internal extension URL {
     /// Returns a URL appended with query items from a dictionary. If query items couldn't be appended,
     /// returns the original URL.
     ///
-    /// The dictionary ["q":"hello"] as the function paramter would return the URL:
+    /// The dictionary ["q":"hello"] as the function parameter would return the URL:
     ///
     ///     www.domain.com/search
     /// as

Sources/SwAuth/HTTPRequest.swift

@@ -64,7 +64,7 @@ public struct HTTPRequest {
     /// will void that default behavior. If the request has not been completed after the amount of time set by this property, it
     /// will terminate.
     ///
-    /// Suppports nanoseconds, microseconds, milliseconds, seconds, minutes, hours.
+    /// Supports nanoseconds, microseconds, milliseconds, seconds, minutes, hours.
     ///
     /// examples: `.seconds(10)`
     public var timeoutAfter: TimeAmount?
@@ -86,7 +86,7 @@ public struct HTTPRequest {
     public struct Response {
         /// The data from the request.
         public let data: Data
-        /// Retruns a [SwiftyJSON](https://github.com/SwiftyJSON/SwiftyJSON) JSON instance
+        /// Returns a [SwiftyJSON](https://github.com/SwiftyJSON/SwiftyJSON) JSON instance
         /// from the request.
         public func json() throws -> JSON {
             return try data.toSwiftyJSON()

Sources/SwAuth/PKCEAuthorizationFlow.swift

@@ -56,7 +56,7 @@ open class PKCEAuthorizationFlow: Swauthable {
         pkce.codeChallenge
     }
 
-    /// The client identifier issued by the server. Is initialzed.
+    /// The client identifier issued by the server. Is initialized.
     public let clientID: String
 
     /// Instance of KeychainAccess. Is initialized.
@@ -154,7 +154,7 @@ open class PKCEAuthorizationFlow: Swauthable {
 
     // MARK: - Methods
     /// Handles the callback URL from an ASWebAuthenticationSession
-    /// and sends a HTTP request to the initalized token endpoint for the tokens.
+    /// and sends a HTTP request to the initialized token endpoint for the tokens.
     ///
     /// Tokens are saved to the Keychain instance provided by the initializer. The tokens are saved using
     /// the instance's client id and the string "tokens" separated by a colon as the key. For example:
@@ -194,7 +194,7 @@ open class PKCEAuthorizationFlow: Swauthable {
     // MARK: - Structs
     // Most of the code in this struct is derivative of:
     // https://bootstragram.com/blog/oauth-pkce-swift-secure-code-verifiers-and-code-challenges/
-    /// Tthe proof keys for the Proof Key for Code Exchange (PKCE) extension to the OAuth 2.0
+    /// The proof keys for the Proof Key for Code Exchange (PKCE) extension to the OAuth 2.0
     /// Authorization Code Flow according to RFC 7636.
     internal struct PKCE {
         let codeVerifier: String
@@ -241,7 +241,7 @@ open class PKCEAuthorizationFlow: Swauthable {
 
      Example Code:
      ```swift
-     // the "accessGroup" parameter is only necessary if you wish to share the keychain accross
+     // the "accessGroup" parameter is only necessary if you wish to share the keychain across
      // multiple targets using a keychain sharing entitlement
      let keychain = Keychain(service: "your.app.bundleID", accessGroup: "appIdentifierPrefix.your.app.bundleID")
         .label("Your App Name")
@@ -282,11 +282,11 @@ open class PKCEAuthorizationFlow: Swauthable {
 
      This initializer calls
      ``PKCEAuthorizationFlow/init(clientID:authorizationEndpoint:tokenEndpoint:redirectURI:keychain:)``,
-     and initiializes the scopes property.
+     and initializes the scopes property.
 
      Example Code:
      ```swift
-     // the "accessGroup" parameter is only necessary if you wish to share the keychain accross
+     // the "accessGroup" parameter is only necessary if you wish to share the keychain across
      // multiple targets using a keychain sharing entitlement
      let keychain = Keychain(service: "your.app.bundleID", accessGroup: "appIdentifierPrefix.your.app.bundleID")
         .label("Your App Name")

Sources/SwAuth/Response.swift

@@ -26,7 +26,7 @@ import Foundation
 
 /// A response to be handled by a ``Swauthable/authorizationResponseHandler(for:)``.
 ///
-/// A repsonse is either a URL from an ASWebAuthenticationSession or a
+/// A response is either a URL from an ASWebAuthenticationSession or a
 /// ``DeviceAuthorizationFlow/DeviceAuthResponse``
 /// returned from the ``DeviceAuthorizationFlow/deviceFlowAuthorizationRequest()`` method.
 ///

Sources/SwAuth/SwAuth Documentation.docc/Choosing the right Authorization Flow.md

@@ -10,10 +10,10 @@ Thus, if you are using SwAuth to send authorized requests to your server please
 
 ## PKCEAuthorizationFlow
 
-Much like the AuthorizationCodeFlow, the ``PKCEAuthorizationFlow`` is used for devices that are not input-constrained (like iOS, iPadOS, and macOS). Unlike the AuthorizationCodeFlow, the PKCE Authorization Code Flow is safe for use in native applications (the spec was created for such purpose). No need to provide the client secret, with PKCE (Proof Key for Code Exchange) an attacker in possesion of an intercepted Authorization Code can't exchange it for a token unless they have the on-device-cryptographically-generated code verifer. 
+Much like the AuthorizationCodeFlow, the ``PKCEAuthorizationFlow`` is used for devices that are not input-constrained (like iOS, iPadOS, and macOS). Unlike the AuthorizationCodeFlow, the PKCE Authorization Code Flow is safe for use in native applications (the spec was created for such purpose). No need to provide the client secret, with PKCE (Proof Key for Code Exchange) an attacker in possession of an intercepted Authorization Code can't exchange it for a token unless they have the on-device-cryptographically-generated code verifier. 
 
 The downside is that the Proof Key for Code Exchange extension to the OAuth 2.0 Authorization Code Grant needs to be supported by the Web API you are trying to send requests to. If you own the server, great! implement [RFC 7636](https://datatracker.ietf.org/doc/html/rfc7636) and/or find a server-side framework or library that implements it ([again, here's one for Node.js](https://github.com/panva/node-oidc-provider)). Otherwise, ask the owner to implement it.
 
 ## DeviceAuthorizationFlow
 
-The ``DeviceAuthorizationFlow`` is used for use on devices that are input-constrained (like watchOS and tvOS). If the Web API you are trying to send requests to does not support the  Device Authorization Grant ask the owner. If you own the server implement it or use a server-side library/framework that supports it.
+The ``DeviceAuthorizationFlow`` is used for use on devices that are input-constrained (like watchOS and tvOS). If the Web API you are trying to send requests to does not support the  Device Authorization Grant ask the owner. If you own the server implement it or use a server-side library/framework that supports it.

Sources/SwAuth/SwAuth Documentation.docc/DeviceAuthorizationFlow.md

@@ -14,7 +14,7 @@ let googleTV = DeviceAuthorizationFlow(clientID: "YourClientID",
                                        keychain: keychain
                                        scopes: "email provider")
 googleTV.additionalTokenRequestParams = ["client_secret": "YourClientSecret"]
-googleTV.additionalRefreshTokenBodyParams = ["client_id": "YourClientID", "client_secret": "YourClientSectret"]
+googleTV.additionalRefreshTokenBodyParams = ["client_id": "YourClientID", "client_secret": "YourClientSecret"]
 ```
 
 Now send the authorization request and handle the response:
@@ -24,7 +24,7 @@ let deviceAuthReq = try await googleTV.deviceFlowAuthorizationRequest()
 try await googleTV.authorizationResponseHandler(for: deviceAuthReq)
 ```
 
-Obviously, you will need to diplay the authorization code and URL to the user. See ``DeviceAuthResponse`` for more information.
+Obviously, you will need to display the authorization code and URL to the user. See ``DeviceAuthResponse`` for more information.
 
 Assuming no errors were thrown, you can now successfully make an authorized HTTP request to the endpoint of your choice and print the resulting JSON: