@asgardeo/auth-spa 0.2.19 → 0.2.22

package/src/clients/web-worker-client.ts

@@ -18,15 +18,18 @@
 
 import {
     AUTHORIZATION_CODE,
+    AsgardeoAuthException,
     AuthClientConfig,
+    AuthenticationUtils,
     BasicUserInfo,
     CustomGrantConfig,
     DecodedIDTokenPayload,
+    FetchResponse,
     GetAuthURLConfig,
     OIDCEndpoints,
-    OIDCProviderMetaData,
     ResponseMode,
-    SESSION_STATE
+    SESSION_STATE,
+    STATE
 } from "@asgardeo/auth-js";
 import WorkerFile from "web-worker:../worker/client.worker.ts";
 import {
@@ -62,7 +65,6 @@ import {
     START_AUTO_REFRESH_TOKEN,
     UPDATE_CONFIG
 } from "../constants";
-import { AsgardeoSPAException } from "../exception";
 import { SessionManagementHelper } from "../helpers";
 import {
     AuthorizationInfo,
@@ -79,7 +81,9 @@ import {
 import { SPACustomGrantConfig } from "../models/request-custom-grant";
 import { SPAUtils } from "../utils";
 
-export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>): WebWorkerClientInterface => {
+export const WebWorkerClient = async (
+    config: AuthClientConfig<WebWorkerClientConfig>
+): Promise<WebWorkerClientInterface> => {
     /**
      * HttpClient handlers
      */
@@ -91,7 +95,7 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
     let _isHttpHandlerEnabled: boolean = true;
     let _getSignOutURLFromSessionStorage: boolean = false;
 
-    const _sessionManagementHelper = SessionManagementHelper(
+    const _sessionManagementHelper = await SessionManagementHelper(
         async () => {
             const message: Message<string> = {
                 type: SIGN_OUT
@@ -114,24 +118,22 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
     const communicate = <T, R>(message: Message<T>): Promise<R> => {
         const channel = new MessageChannel();
 
-        worker.postMessage(message, [channel.port2]);
+        worker.postMessage(message, [ channel.port2 ]);
 
         return new Promise((resolve, reject) => {
             const timer = setTimeout(() => {
                 reject(
-                    new AsgardeoSPAException(
-                        "WEB_WORKER_CLIENT-COM-TO-01",
-                        "web-worker-client",
-                        "communicate",
+                    new AsgardeoAuthException(
+                        "SPA-WEB_WORKER_CLIENT-COM-TO01",
                         "Operation timed out.",
                         "No response was received from the web worker for " +
-                            _requestTimeout / 1000 +
-                            " since dispatching the request"
+                        _requestTimeout / 1000 +
+                        " since dispatching the request"
                     )
                 );
             }, _requestTimeout);
 
-            return (channel.port1.onmessage = ({ data }: { data: ResponseMessage<string> }) => {
+            return (channel.port1.onmessage = ({ data }: { data: ResponseMessage<string>; }) => {
                 clearTimeout(timer);
 
                 if (data?.success) {
@@ -156,13 +158,13 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
      * @returns {Promise<HttpResponse|boolean>} A promise that resolves with a boolean value or the request
      * response if the the `returnResponse` attribute in the `requestParams` object is set to `true`.
      */
-    const requestCustomGrant = (requestParams: SPACustomGrantConfig): Promise<HttpResponse | BasicUserInfo> => {
+    const requestCustomGrant = (requestParams: SPACustomGrantConfig): Promise<FetchResponse | BasicUserInfo> => {
         const message: Message<CustomGrantConfig> = {
             data: requestParams,
             type: REQUEST_CUSTOM_GRANT
         };
 
-        return communicate<CustomGrantConfig, HttpResponse | BasicUserInfo>(message)
+        return communicate<CustomGrantConfig, FetchResponse | BasicUserInfo>(message)
             .then((response) => {
                 if (requestParams.preventSignOutURLUpdate) {
                     _getSignOutURLFromSessionStorage = true;
@@ -345,8 +347,7 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
             config.checkSessionInterval ?? 3,
             config.sessionRefreshInterval ?? 300,
             config.signInRedirectURL,
-            oidcEndpoints.authorizationEndpoint ?? "",
-            config.enablePKCE
+            async (params?: GetAuthURLConfig): Promise<string> => (await getAuthorizationURL(params)).authorizationURL
         );
     };
 
@@ -393,7 +394,11 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
         try {
             const response: AuthorizationResponse = await communicate<GetAuthURLConfig, AuthorizationResponse>(message);
 
-            response.pkce && config.enablePKCE && SPAUtils.setPKCE(response.pkce);
+            const pkceKey: string = AuthenticationUtils.extractPKCEKeyFromStateParam(
+                new URL(response.authorizationURL).searchParams.get(STATE) ?? ""
+            );
+
+            response.pkce && config.enablePKCE && SPAUtils.setPKCE(pkceKey, response.pkce);
 
             const urlString: string = response.authorizationURL;
 
@@ -422,7 +427,7 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
                 }
 
                 if (data?.type == CHECK_SESSION_SIGNED_IN && data?.data?.code) {
-                    requestAccessToken(data?.data?.code, data?.data?.sessionState)
+                    requestAccessToken(data?.data?.code, data?.data?.sessionState, data?.data?.state)
                         .then((response: BasicUserInfo) => {
                             window.removeEventListener("message", listenToPromptNoneIFrame);
                             resolve(response);
@@ -441,22 +446,54 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
         });
     };
 
+    /**
+     * Generates an authorization URL.
+     *
+     * @param {GetAuthURLConfig} params Authorization URL params.
+     * @returns {Promise<string>} Authorization URL.
+     */
+    const getAuthorizationURL = async (params?: GetAuthURLConfig): Promise<AuthorizationResponse> => {
+        const config: AuthClientConfig<WebWorkerClientConfig> = await getConfigData();
+
+        const message: Message<GetAuthURLConfig> = {
+            data: params,
+            type: GET_AUTH_URL
+        };
+
+        return communicate<GetAuthURLConfig, AuthorizationResponse>(message).then(
+            async (response: AuthorizationResponse) => {
+                if (response.pkce && config.enablePKCE) {
+                    const pkceKey: string = AuthenticationUtils.extractPKCEKeyFromStateParam(
+                        new URL(response.authorizationURL).searchParams.get(STATE) ?? ""
+                    );
+
+                    SPAUtils.setPKCE(pkceKey, response.pkce);
+                }
+
+                return Promise.resolve(response);
+            }
+        );
+    };
+
     const requestAccessToken = async (
         resolvedAuthorizationCode: string,
-        resolvedSessionState: string
+        resolvedSessionState: string,
+        resolvedState: string
     ): Promise<BasicUserInfo> => {
         const config: AuthClientConfig<WebWorkerClientConfig> = await getConfigData();
+        const pkceKey: string = AuthenticationUtils.extractPKCEKeyFromStateParam(resolvedState);
 
         const message: Message<AuthorizationInfo> = {
             data: {
                 code: resolvedAuthorizationCode,
-                pkce: config.enablePKCE ? SPAUtils.getPKCE() : undefined,
-                sessionState: resolvedSessionState
+                pkce: config.enablePKCE ? SPAUtils.getPKCE(pkceKey) : undefined,
+                sessionState: resolvedSessionState,
+                state: resolvedState
             },
             type: REQUEST_ACCESS_TOKEN
         };
 
-        config.enablePKCE && SPAUtils.removePKCE();
+        config.enablePKCE && SPAUtils.removePKCE(pkceKey);
 
         return communicate<AuthorizationInfo, BasicUserInfo>(message)
             .then((response) => {
@@ -494,7 +531,8 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
     const signIn = async (
         params?: GetAuthURLConfig,
         authorizationCode?: string,
-        sessionState?: string
+        sessionState?: string,
+        state?: string
     ): Promise<BasicUserInfo> => {
         const config: AuthClientConfig<WebWorkerClientConfig> = await getConfigData();
 
@@ -526,15 +564,7 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
 
             history.pushState(null, document.title, url.toString());
 
-            return Promise.reject(
-                new AsgardeoSPAException(
-                    "WEB_WORKER_CLIENT-SI-BE",
-                    "web-worker-client",
-                    "signIn",
-                    error,
-                    errorDescription ?? ""
-                )
-            );
+            throw new AsgardeoAuthException("SPA-WEB_WORKER_CLIENT-SI-SE01", error, errorDescription ?? "");
         }
 
         if (await isAuthenticated()) {
@@ -550,31 +580,26 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
 
         let resolvedAuthorizationCode: string;
         let resolvedSessionState: string;
+        let resolvedState: string;
 
         if (config?.responseMode === ResponseMode.formPost && authorizationCode) {
             resolvedAuthorizationCode = authorizationCode;
             resolvedSessionState = sessionState ?? "";
+            resolvedState = state ?? "";
         } else {
             resolvedAuthorizationCode = new URL(window.location.href).searchParams.get(AUTHORIZATION_CODE) ?? "";
             resolvedSessionState = new URL(window.location.href).searchParams.get(SESSION_STATE) ?? "";
+            resolvedState = new URL(window.location.href).searchParams.get(STATE) ?? "";
+
             SPAUtils.removeAuthorizationCode();
         }
 
-        if (resolvedAuthorizationCode) {
-            return requestAccessToken(resolvedAuthorizationCode, resolvedSessionState);
+        if (resolvedAuthorizationCode && resolvedState) {
+            return requestAccessToken(resolvedAuthorizationCode, resolvedSessionState, resolvedState);
         }
 
-        const message: Message<GetAuthURLConfig> = {
-            data: params,
-            type: GET_AUTH_URL
-        };
-
-        return communicate<GetAuthURLConfig, AuthorizationResponse>(message)
-            .then(async (response) => {
-                if (response.pkce && config.enablePKCE) {
-                    SPAUtils.setPKCE(response.pkce);
-                }
-
+        return getAuthorizationURL(params)
+            .then(async (response: AuthorizationResponse) => {
                 location.href = response.authorizationURL;
 
                 await SPAUtils.waitTillPageRedirect();
@@ -651,12 +676,12 @@ export const WebWorkerClient = (config: AuthClientConfig<WebWorkerClientConfig>)
             });
     };
 
-    const getOIDCServiceEndpoints = (): Promise<OIDCProviderMetaData> => {
+    const getOIDCServiceEndpoints = (): Promise<OIDCEndpoints> => {
         const message: Message<null> = {
             type: GET_OIDC_SERVICE_ENDPOINTS
         };
 
-        return communicate<null, OIDCProviderMetaData>(message)
+        return communicate<null, OIDCEndpoints>(message)
             .then((response) => {
                 return Promise.resolve(response);
             })

package/src/constants/errors.ts

@@ -0,0 +1,19 @@
+/**
+ * Copyright (c) 2021, WSO2 Inc. (http://www.wso2.com) All Rights Reserved.
+ *
+ * WSO2 Inc. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied. See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+export const ACCESS_TOKEN_INVALID = "Access token is invalid";

package/src/constants/hooks.ts

@@ -25,5 +25,6 @@ export enum Hooks {
     HttpRequestError = "http-request-error",
     HttpRequestSuccess = "http-request-success",
     RevokeAccessToken = "revoke-access-token",
-    CustomGrant = "custom-grant"
+    CustomGrant = "custom-grant",
+    SignOutFailed = "sign-out-failed"
 }

package/src/constants/index.ts

@@ -21,3 +21,4 @@ export * from "./storage";
 export * from "./hooks";
 export * from "./session-management";
 export * from "./parameters";
+export * from "./errors";

package/src/constants/parameters.ts

@@ -19,3 +19,4 @@
 export const ERROR = "error";
 export const ERROR_DESCRIPTION = "error_description";
 export const CUSTOM_GRANT_CONFIG = "custom_grant_config";
+export const STATE_QUERY = "state";

package/src/helpers/session-management-helper.ts

@@ -16,7 +16,7 @@
  * under the License.
  */
 
-import { SESSION_STATE } from "@asgardeo/auth-js";
+import { GetAuthURLConfig, SESSION_STATE } from "@asgardeo/auth-js";
 import {
     CHECK_SESSION_SIGNED_IN,
     CHECK_SESSION_SIGNED_OUT,
@@ -27,6 +27,7 @@ import {
     SET_SESSION_STATE_FROM_IFRAME,
     SILENT_SIGN_IN_STATE,
     STATE,
+    STATE_QUERY,
     Storage
 } from "../constants";
 import { AuthorizationInfo, Message, SessionManagementHelperInterface } from "../models";
@@ -38,14 +39,13 @@ export const SessionManagementHelper = (() => {
     let _sessionState: () => Promise<string>;
     let _interval: number;
     let _redirectURL: string;
-    let _authorizationEndpoint: string;
     let _sessionRefreshInterval: number;
     let _signOut: () => Promise<string>;
     let _sessionRefreshIntervalTimeout: number;
     let _checkSessionIntervalTimeout: number;
     let _storage: Storage;
     let _setSessionState: (sessionState: string) => void;
-    let _isPKCEEnabled: boolean;
+    let _getAuthorizationURL: (params?: GetAuthURLConfig) => Promise<string>;
 
     const initialize = (
         clientID: string,
@@ -54,17 +54,15 @@ export const SessionManagementHelper = (() => {
         interval: number,
         sessionRefreshInterval: number,
         redirectURL: string,
-        authorizationEndpoint: string,
-        isPKCEEnabled: boolean
+        getAuthorizationURL: (params?: GetAuthURLConfig) => Promise<string>
     ): void => {
         _clientID = clientID;
         _checkSessionEndpoint = checkSessionEndpoint;
         _sessionState = getSessionState;
         _interval = interval;
         _redirectURL = redirectURL;
-        _authorizationEndpoint = authorizationEndpoint;
         _sessionRefreshInterval = sessionRefreshInterval;
-        _isPKCEEnabled = isPKCEEnabled;
+        _getAuthorizationURL = getAuthorizationURL;
 
         if (_interval > -1) {
             initiateCheckSession();
@@ -115,17 +113,6 @@ export const SessionManagementHelper = (() => {
         clearInterval(_sessionRefreshIntervalTimeout);
     }
 
-    const getRandomPKCEChallenge = (): string => {
-        const chars = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXTZabcdefghiklmnopqrstuvwxyz-_";
-        const stringLength = 43;
-        let randomString = "";
-        for (let i = 0; i < stringLength; i++) {
-            const rnum = Math.floor(Math.random() * chars.length);
-            randomString += chars.substring(rnum, rnum + 1);
-        }
-        return randomString;
-    };
-
     const listenToResponseFromOPIFrame = (): void => {
         async function receiveMessage(e: MessageEvent) {
             const targetOrigin = _checkSessionEndpoint;
@@ -149,7 +136,7 @@ export const SessionManagementHelper = (() => {
         window?.addEventListener("message", receiveMessage, false);
     };
 
-    const sendPromptNoneRequest = () => {
+    const sendPromptNoneRequest = async () => {
         const rpIFrame = document.getElementById(RP_IFRAME) as HTMLIFrameElement;
 
         const promptNoneIFrame: HTMLIFrameElement = rpIFrame?.contentDocument?.getElementById(
@@ -170,20 +157,12 @@ export const SessionManagementHelper = (() => {
                 window?.addEventListener("message", receiveMessageListener);
             }
 
-            const promptNoneURL = new URL(_authorizationEndpoint);
-            promptNoneURL.searchParams.set("response_type", "code");
-            promptNoneURL.searchParams.set("client_id", _clientID);
-            promptNoneURL.searchParams.set("scope", "openid");
-            promptNoneURL.searchParams.set("redirect_uri", _redirectURL);
-            promptNoneURL.searchParams.set("state", STATE);
-            promptNoneURL.searchParams.set("prompt", "none");
-
-            if(_isPKCEEnabled){
-                promptNoneURL.searchParams.set("code_challenge_method", "S256");
-                promptNoneURL.searchParams.set("code_challenge", getRandomPKCEChallenge());
-            }
+            const promptNoneURL: string = await _getAuthorizationURL({
+                prompt: "none",
+                state: STATE
+            });
 
-            promptNoneIFrame.src = promptNoneURL.toString();
+            promptNoneIFrame.src = promptNoneURL;
         }
     };
 
@@ -196,20 +175,21 @@ export const SessionManagementHelper = (() => {
     const receivePromptNoneResponse = async (
         setSessionState?: (sessionState: string | null) => Promise<void>
     ): Promise<boolean> => {
-        const state = new URL(window.location.href).searchParams.get("state");
+        const state = new URL(window.location.href).searchParams.get(STATE_QUERY);
         const sessionState = new URL(window.location.href).searchParams.get(SESSION_STATE);
         const parent = window.parent.parent;
 
-        if (state !== null && (state === STATE || state === SILENT_SIGN_IN_STATE)) {
+        if (state !== null && (state.includes(STATE) || state.includes(SILENT_SIGN_IN_STATE))) {
             // Prompt none response.
             const code = new URL(window.location.href).searchParams.get("code");
 
             if (code !== null && code.length !== 0) {
-                if (state === SILENT_SIGN_IN_STATE) {
+                if (state.includes(SILENT_SIGN_IN_STATE)) {
                     const message: Message<AuthorizationInfo> = {
                         data: {
                             code,
-                            sessionState: sessionState ?? ""
+                            sessionState: sessionState ?? "",
+                            state
                         },
                         type: CHECK_SESSION_SIGNED_IN
                     };
@@ -228,7 +208,7 @@ export const SessionManagementHelper = (() => {
                 const newSessionState = new URL(window.location.href).searchParams.get("session_state");
 
                 if (_storage === Storage.LocalStorage || _storage === Storage.SessionStorage) {
-                    setSessionState && await setSessionState(newSessionState);
+                    setSessionState && (await setSessionState(newSessionState));
                 } else {
                     const message: Message<string> = {
                         data: newSessionState ?? "",
@@ -246,7 +226,7 @@ export const SessionManagementHelper = (() => {
 
                 return true;
             } else {
-                if (state === SILENT_SIGN_IN_STATE) {
+                if (state.includes(SILENT_SIGN_IN_STATE)) {
                     const message: Message<null> = {
                         type: CHECK_SESSION_SIGNED_OUT
                     };
@@ -275,15 +255,16 @@ export const SessionManagementHelper = (() => {
         return false;
     };
 
-    return (
+    return async (
         signOut: () => Promise<string>,
         storage: Storage,
         setSessionState: (sessionState: string) => void
-    ): SessionManagementHelperInterface => {
+    ): Promise<SessionManagementHelperInterface> => {
         let rpIFrame = document.createElement("iframe");
         rpIFrame.setAttribute("id", RP_IFRAME);
         rpIFrame.style.display = "none";
 
+        let rpIframeLoaded: boolean = false;
         rpIFrame.onload = () => {
             rpIFrame = document.getElementById(RP_IFRAME) as HTMLIFrameElement;
 
@@ -303,6 +284,8 @@ export const SessionManagementHelper = (() => {
 
             opIFrame && rpIFrame?.contentDocument?.body?.appendChild(opIFrame);
             promptNoneIFrame && rpIFrame?.contentDocument?.body?.appendChild(promptNoneIFrame);
+
+            rpIframeLoaded = true;
         }
 
         document?.body?.appendChild(rpIFrame);
@@ -312,6 +295,14 @@ export const SessionManagementHelper = (() => {
         _storage = storage;
         _setSessionState = setSessionState;
 
+        const sleep = (): Promise<any> => {
+            return new Promise((resolve) => setTimeout(resolve, 1));
+        };
+
+        while (rpIframeLoaded === false) {
+            await sleep();
+        }
+
         return {
             initialize,
             receivePromptNoneResponse,

package/src/index-polyfill.ts

@@ -17,7 +17,6 @@
  */
 
 import "core-js/stable";
-import "regenerator-runtime/runtime";
 
 // Export the public API.
 export * from "./public-api";

package/src/models/client.ts

@@ -21,8 +21,8 @@ import {
     BasicUserInfo,
     CustomGrantConfig,
     DecodedIDTokenPayload,
-    OIDCEndpoints,
-    OIDCProviderMetaData
+    FetchResponse,
+    OIDCEndpoints
 } from "@asgardeo/auth-js";
 import {
     HttpError,
@@ -51,7 +51,7 @@ export interface MainThreadClientInterface {
         signInRedirectURL?: string
     ): Promise<BasicUserInfo>;
     signOut(signOutRedirectURL?: string): Promise<boolean>;
-    requestCustomGrant(config: CustomGrantConfig): Promise<BasicUserInfo | HttpResponse>;
+    requestCustomGrant(config: CustomGrantConfig): Promise<BasicUserInfo | FetchResponse>;
     refreshAccessToken(): Promise<BasicUserInfo>;
     revokeAccessToken(): Promise<boolean>;
     getBasicUserInfo(): Promise<BasicUserInfo>;
@@ -65,7 +65,7 @@ export interface MainThreadClientInterface {
 }
 
 export interface WebWorkerClientInterface {
-    requestCustomGrant(requestParams: CustomGrantConfig): Promise<HttpResponse | BasicUserInfo>;
+    requestCustomGrant(requestParams: CustomGrantConfig): Promise<FetchResponse | BasicUserInfo>;
     httpRequest<T = any>(config: HttpRequestConfig): Promise<HttpResponse<T>>;
     httpRequestAll<T = any>(configs: HttpRequestConfig[]): Promise<HttpResponse<T>[]>;
     enableHttpHandler(): Promise<boolean>;
@@ -79,7 +79,7 @@ export interface WebWorkerClientInterface {
     ): Promise<BasicUserInfo>;
     signOut(signOutRedirectURL?: string): Promise<boolean>;
     revokeAccessToken(): Promise<boolean>;
-    getOIDCServiceEndpoints(): Promise<OIDCProviderMetaData>;
+    getOIDCServiceEndpoints(): Promise<OIDCEndpoints>;
     getBasicUserInfo(): Promise<BasicUserInfo>;
     getDecodedIDToken(): Promise<DecodedIDTokenPayload>;
     getIDToken(): Promise<string>;

package/src/models/http-client.ts

@@ -33,8 +33,9 @@ export interface HttpRequestConfig extends AxiosRequestConfig {
 
 export {
     AxiosResponse as HttpResponse,
-    Method,
-    AxiosTransformer as HttpTransformer,
+    Method as HttpMethod,
+    AxiosRequestTransformer as HttpRequestTransformer,
+    AxiosResponseTransformer as HttpResponseTransformer,
     AxiosAdapter as HttpAdapter,
     AxiosBasicCredentials as HttpBasicCredentials,
     ResponseType,

package/src/models/index.ts

@@ -23,3 +23,4 @@ export * from "./web-worker";
 export * from "./session-management-helper";
 export * from "./client-config";
 export * from "./sign-in";
+export * from "./sign-out-error";

package/src/models/message.ts

@@ -66,6 +66,7 @@ export interface AuthorizationInfo {
     code: string;
     sessionState: string;
     pkce?: string;
+    state: string;
 }
 
 export type MessageType =

package/src/models/session-management-helper.ts

@@ -16,6 +16,8 @@
  * under the License.
  */
 
+import { GetAuthURLConfig } from "..";
+
 export interface SessionManagementHelperInterface {
     initialize(
         clientID: string,
@@ -24,8 +26,7 @@ export interface SessionManagementHelperInterface {
         interval: number,
         sessionRefreshInterval: number,
         redirectURL: string,
-        authorizationEndpoint: string,
-        isPKCEEnabled?: boolean
+        getAuthorizationURL: (params?: GetAuthURLConfig) => Promise<string>
     ): void;
     receivePromptNoneResponse(
         setSessionState?: (sessionState: string | null) => Promise<void>

package/{dist/src/exception/index.d.ts → src/models/sign-out-error.ts}

@@ -1,5 +1,5 @@
 /**
-* Copyright (c) 2020, WSO2 Inc. (http://www.wso2.org) All Rights Reserved.
+* Copyright (c) 2022, WSO2 Inc. (http://www.wso2.com) All Rights Reserved.
 *
 * WSO2 Inc. licenses this file to you under the Apache License,
 * Version 2.0 (the "License"); you may not use this file except
@@ -15,5 +15,8 @@
 * specific language governing permissions and limitations
 * under the License.
 */
-export * from "./exception";
-//# sourceMappingURL=index.d.ts.map
+
+export interface SignOutError {
+    error: string;
+    description: string;
+}

package/src/models/web-worker.ts

@@ -22,6 +22,7 @@ import {
     BasicUserInfo,
     CustomGrantConfig,
     DecodedIDTokenPayload,
+    FetchResponse,
     OIDCEndpoints
 } from "@asgardeo/auth-js";
 import { HttpRequestConfig, HttpResponse, Message } from ".";
@@ -44,10 +45,15 @@ export interface WebWorkerCoreInterface {
     enableHttpHandler(): void;
     disableHttpHandler(): void;
     getAuthorizationURL(params?: AuthorizationURLParams, signInRedirectURL?: string): Promise<AuthorizationResponse>;
-    requestAccessToken(authorizationCode?: string, sessionState?: string, pkce?: string): Promise<BasicUserInfo>;
+    requestAccessToken(
+        authorizationCode?: string,
+        sessionState?: string,
+        pkce?: string,
+        state?: string
+    ): Promise<BasicUserInfo>;
     signOut(signOutRedirectURL?: string): Promise<string>;
     getSignOutURL(signOutRedirectURL?: string): Promise<string>;
-    requestCustomGrant(config: CustomGrantConfig): Promise<BasicUserInfo | HttpResponse>;
+    requestCustomGrant(config: CustomGrantConfig): Promise<BasicUserInfo | FetchResponse>;
     refreshAccessToken(): Promise<BasicUserInfo>;
     revokeAccessToken(): Promise<boolean>;
     getBasicUserInfo(): Promise<BasicUserInfo>;

package/src/public-api.ts

@@ -26,6 +26,7 @@ export * from "./models";
 export * from "./utils/spa-utils"
 
 // Constants
-export * from "@asgardeo/auth-js";
 export * from "./constants/storage";
 export * from "./constants/hooks";
+
+export * from "@asgardeo/auth-js";