@adobe/helix-html-pipeline 3.0.1 → 3.0.2

package/CHANGELOG.md

@@ -1,3 +1,10 @@
+## [3.0.2](https://github.com/adobe/helix-html-pipeline/compare/v3.0.1...v3.0.2) (2022-06-16)
+
+
+### Bug Fixes
+
+* make crypto.randomUUID() portable ([d40ba5a](https://github.com/adobe/helix-html-pipeline/commit/d40ba5ab67c764726d923061d4844e5adb162c86))
+
 ## [3.0.1](https://github.com/adobe/helix-html-pipeline/compare/v3.0.0...v3.0.1) (2022-06-14)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@adobe/helix-html-pipeline",
-  "version": "3.0.1",
+  "version": "3.0.2",
   "description": "Helix HTML Pipeline",
   "main": "src/index.js",
   "types": "src/index.d.ts",

package/src/utils/auth.js

@@ -10,7 +10,6 @@
  * governing permissions and limitations under the License.
  */
 // eslint-disable-next-line max-classes-per-file
-import crypto from 'crypto';
 import {
   createLocalJWKSet, createRemoteJWKSet, decodeJwt, jwtVerify, UnsecuredJWT,
 } from 'jose';
@@ -18,6 +17,17 @@ import { clearAuthCookie, getAuthCookie, setAuthCookie } from './auth-cookie.js'
 
 import idpMicrosoft from './idp-configs/microsoft.js';
 
+let cryptoImpl;
+import('crypto')
+  .then((crypto) => {
+    cryptoImpl = crypto;
+  })
+  /* c8 ignore next 3 */
+  .catch(() => {
+    // eslint-disable-next-line no-undef
+    cryptoImpl = crypto;
+  });
+
 export const IDPS = [
   idpMicrosoft,
 ];
@@ -179,7 +189,7 @@ export class AuthInfo {
     url.searchParams.append('client_id', clientId);
     url.searchParams.append('response_type', 'code');
     url.searchParams.append('scope', idp.scope);
-    url.searchParams.append('nonce', crypto.randomUUID());
+    url.searchParams.append('nonce', cryptoImpl.randomUUID());
     url.searchParams.append('state', tokenState);
     url.searchParams.append('redirect_uri', state.createExternalLocation(AUTH_REDIRECT_URL));
     url.searchParams.append('prompt', 'select_account');