Add Vercel OIDC auth and Presigned URLs (#1056)

* Add Vercel OIDC auth

* up

* header

* up

* prioritize token

* normalize storeId in OIDC auth resolution

BLOB_STORE_ID and the storeId option are accepted in either store_<id>
or <id> form (Vercel env pull writes the prefixed form), and may be
mixed-case. resolveBlobAuth was passing those through verbatim, so the
storeId in API headers and CDN host subdomains could be malformed —
e.g. blob.get against a private store with `store_WdsHBk1w9fDO4vPW`
built `https://store_WdsHBk1w9fDO4vPW.private.blob.vercel-storage.com/...`
and 404'd. The RW path was unaffected because parseStoreIdFromReadWriteToken
yields a bare lowercase id from the token's structure.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

* preserve case when normalizing storeId

The first pass also lowercased — that breaks API requests, since the
Vercel Blob API is case-sensitive on the storeId (header and bearer
parsing). The CDN host accepts either case, so prefix-strip alone is
sufficient and works for both consumers. Verified end-to-end against
a private store: blob get and blob list both succeed.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

* add oidcToken option

* minor version

* Vercel Presigned URLs (#1057)

* presigned urls

* up

* normalize

* fix

* update to new signing string

* [wip] presigned url version of handleUpload (#1059)

* [wip] presigned url version of handleUpload

* up

* up

* up

* add presigned urls for mpu

* update options shape

* webhook signature

* update example

* up

* up

* up

* change to operation

* up

* up

* verify webhook signature

* up

* callbackUrl

* non-null

* presigned url opts

* new delegation token + url opts

* dont lowercase store id

* validUntil instead of ttlSeconds

* up

* up

* Add 'delete' to DelegationOperation for presigned DELETE URLs (#1061)

Mirrors the API-side change that adds `delete` to the issue_signed_token
allowed operations. `presignUrl` now signs canonical
`operation=delete\npathname=...` against the public blob object URL
(same host shape as `get`/`head`, just used with HTTP DELETE).

Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* change upload to put

* delete

* up

* presigned url payload

* update app

* fix

* docs

* refactor presign url

* up

* up

* up

* add head

* up

* add params to url

* add keys first

* token payload

* add buildPresignedGetUrl

* up

* presignUrl returns url, not accepted in sdk methods

* up

* up

* feat(blob): presigned HEAD & DELETE URLs (#1064)

* feat(blob): presigned DELETE URLs

Wires the `'delete'` DelegationOperation (added in #1061, since rebased
out of elliot/presigned-urls) through `presignUrl`. A token issued with
`operations: ['delete']` can now mint a presigned `DELETE /?pathname=…`
against the control-plane API.

- `PresignDeleteUrlOptions` accepts `pathname`, optional `validUntil`,
  optional `ifMatch`. Upload-only fields are rejected at the type level.
- `presign()` gates on the delegation scope including `'delete'`.
- `buildPresignedDeleteUrl()` mirrors the PUT URL shape; the HTTP method
  is the discriminator (canonical signing string carries `operation=delete`).
- `buildPresignCanonicalQueryEntries()` for `delete` emits only
  `validUntil` (when below the delegation ceiling) and `ifMatch`.
- E2E test route + delete button on the presigned-upload demo page.

Based on `elliot/presigned-urls`, not `main`.

* feat(blob): presigned HEAD URLs (#1065)

`HEAD` mirrors `GET` against the blob object host
(`<storeId>.<access>.blob.vercel-storage.com/<pathname>`); the URL shape
is identical and the HTTP method is the discriminator. `operation=head`
goes into the canonical signing string so a GET-signed URL cannot be
replayed as a HEAD (and vice versa).

- `'head'` added to `DelegationOperation`.
- `PresignHeadUrlOptions` — same shape as `PresignGetUrlOptions`
  (`pathname`, optional `validUntil`).
- `presign()` gates on the delegation scope including `'head'`.
- `presignUrl()` reuses `buildPresignedGetUrl()` for `operation: 'head'`.
- `buildPresignCanonicalQueryEntries()` for `head` emits only
  `validUntil` (when below the delegation ceiling) — same as `get`.
- E2E test route + HEAD button on the presigned-upload demo page.

Stacked on `falcoagustin/presigned-delete-impl` (#1064).

* environment error

* up

* cleanup

---------

Co-authored-by: Agustin Falco <agusfalco_11@hotmail.com>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>

* up

* rm dead code

* throw on manual token

* up

* up

---------

Co-authored-by: Agustin Falco <agusfalco_11@hotmail.com>
Co-authored-by: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Author: 3 people

.changeset/empty-things-say.md

@@ -0,0 +1,5 @@
+---
+"@vercel/blob": minor
+---
+
+Add Vercel OIDC auth and presigned URLs

packages/blob/src/api.node.test.ts

@@ -21,6 +21,8 @@ describe('api', () => {
       jest.restoreAllMocks();
 
       process.env = { ...OLD_ENV };
+      delete process.env.BLOB_STORE_ID;
+      delete process.env.VERCEL_OIDC_TOKEN;
     });
 
     it('should throw if no token is provided', async () => {
@@ -33,6 +35,8 @@ describe('api', () => {
       );
 
       process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      process.env.BLOB_STORE_ID = undefined;
+      process.env.VERCEL_OIDC_TOKEN = undefined;
 
       await expect(
         requestApi('/method', { method: 'GET' }, undefined),
@@ -41,6 +45,272 @@ describe('api', () => {
       expect(fetchMock).toHaveBeenCalledTimes(0);
     });
 
+    it('should throw if BLOB_STORE_ID is set without an OIDC token', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      process.env.BLOB_STORE_ID = 'my-store';
+      process.env.VERCEL_OIDC_TOKEN = undefined;
+
+      await expect(
+        requestApi('/method', { method: 'GET' }, undefined),
+      ).rejects.toThrow(BlobError);
+
+      expect(fetchMock).toHaveBeenCalledTimes(0);
+    });
+
+    it('should use BLOB_STORE_ID and VERCEL_OIDC_TOKEN when set', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      process.env.BLOB_STORE_ID = 'oidcStore';
+      process.env.VERCEL_OIDC_TOKEN = 'oidc-jwt';
+
+      const res = await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({ foo: 'bar' }) },
+        undefined,
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers.authorization).toBe('Bearer oidc-jwt');
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^oidcStore:\d+:[a-f0-9]+$/,
+      );
+      expect(res).toEqual({ success: true });
+    });
+
+    it('should prefer OIDC when store id and VERCEL_OIDC_TOKEN are set, even if BLOB_READ_WRITE_TOKEN is set', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN =
+        'vercel_blob_rw_fromRwToken_30FakeRandomCharacters12345678';
+      process.env.BLOB_STORE_ID = 'oidcStore';
+      process.env.VERCEL_OIDC_TOKEN = 'oidc-jwt';
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        undefined,
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers.authorization).toBe('Bearer oidc-jwt');
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^oidcStore:\d+:[a-f0-9]+$/,
+      );
+    });
+
+    it('should use storeId option over BLOB_STORE_ID for OIDC', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      process.env.BLOB_STORE_ID = 'fromEnv';
+      process.env.VERCEL_OIDC_TOKEN = 'oidc-jwt';
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        { storeId: 'fromOption' },
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers.authorization).toBe('Bearer oidc-jwt');
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^fromOption:\d+:[a-f0-9]+$/,
+      );
+    });
+
+    it('should use oidcToken option with storeId for OIDC auth', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      delete process.env.BLOB_STORE_ID;
+      delete process.env.VERCEL_OIDC_TOKEN;
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        { storeId: 'fromOption', oidcToken: 'oidc-from-option' },
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers.authorization).toBe('Bearer oidc-from-option');
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^fromOption:\d+:[a-f0-9]+$/,
+      );
+    });
+
+    it('should prefer oidcToken option over VERCEL_OIDC_TOKEN', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      process.env.BLOB_STORE_ID = 'fromEnv';
+      process.env.VERCEL_OIDC_TOKEN = 'oidc-from-env';
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        { oidcToken: 'oidc-from-option' },
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers.authorization).toBe('Bearer oidc-from-option');
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^fromEnv:\d+:[a-f0-9]+$/,
+      );
+    });
+
+    it('should strip the "store_" prefix from BLOB_STORE_ID for OIDC', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      // What `vercel env pull` writes: prefixed, original case.
+      process.env.BLOB_STORE_ID = 'store_WdsHBk1w9fDO4vPW';
+      process.env.VERCEL_OIDC_TOKEN = 'oidc-jwt';
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        undefined,
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      // Bare id with original case preserved — the API is case-sensitive.
+      expect(call[1].headers['x-vercel-blob-store-id']).toBe(
+        'WdsHBk1w9fDO4vPW',
+      );
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^WdsHBk1w9fDO4vPW:\d+:[a-f0-9]+$/,
+      );
+    });
+
+    it('should strip the "store_" prefix from the OIDC storeId option', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN = undefined;
+      delete process.env.BLOB_STORE_ID;
+      process.env.VERCEL_OIDC_TOKEN = 'oidc-jwt';
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        { storeId: 'store_AbCDef' },
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers['x-vercel-blob-store-id']).toBe('AbCDef');
+    });
+
+    it('should fall back to BLOB_READ_WRITE_TOKEN when OIDC is set but store id is missing', async () => {
+      const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
+        jest.fn().mockResolvedValue({
+          status: 200,
+          ok: true,
+          json: () => Promise.resolve({ success: true }),
+        }),
+      );
+
+      process.env.BLOB_READ_WRITE_TOKEN =
+        'vercel_blob_rw_fallbackStore_30FakeRandomCharacters12345678';
+      delete process.env.BLOB_STORE_ID;
+      process.env.VERCEL_OIDC_TOKEN = 'orphan-oidc';
+
+      await requestApi<{ success: boolean }>(
+        '/method',
+        { method: 'POST', body: JSON.stringify({}) },
+        undefined,
+      );
+
+      expect(fetchMock).toHaveBeenCalledTimes(1);
+      const call = fetchMock.mock.calls[0] as [
+        string,
+        { headers: Record<string, string> },
+      ];
+      expect(call[1].headers.authorization).toBe(
+        'Bearer vercel_blob_rw_fallbackStore_30FakeRandomCharacters12345678',
+      );
+      expect(call[1].headers['x-api-blob-request-id']).toMatch(
+        /^fallbackStore:\d+:[a-f0-9]+$/,
+      );
+    });
+
     it('should not retry successful request', async () => {
       const fetchMock = jest.spyOn(undici, 'fetch').mockImplementation(
         jest.fn().mockResolvedValue({
@@ -67,6 +337,7 @@ describe('api', () => {
             authorization: 'Bearer 123',
             'x-api-blob-request-attempt': '0',
             'x-api-blob-request-id': expect.any(String) as string,
+            'x-vercel-blob-store-id': '',
             'x-api-version': '12',
           },
           method: 'POST',