npm - @auth0/auth0-spa-js - Versions diffs - 2.15.0 → 2.17.0 - Mend

@auth0/auth0-spa-js 2.15.0 → 2.17.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/README.md +1 -1
package/dist/auth0-spa-js.development.js +59 -24
package/dist/auth0-spa-js.development.js.map +1 -1
package/dist/auth0-spa-js.production.esm.js +1 -1
package/dist/auth0-spa-js.production.esm.js.map +1 -1
package/dist/auth0-spa-js.production.js +1 -1
package/dist/auth0-spa-js.production.js.map +1 -1
package/dist/lib/auth0-spa-js.cjs.js +60 -24
package/dist/lib/auth0-spa-js.cjs.js.map +1 -1
package/dist/typings/Auth0Client.d.ts +21 -0
package/dist/typings/constants.d.ts +6 -0
package/dist/typings/global.d.ts +21 -0
package/dist/typings/index.d.ts +1 -1
package/dist/typings/version.d.ts +1 -1
package/package.json +1 -1
package/src/Auth0Client.ts +114 -29
package/src/constants.ts +7 -0
package/src/global.ts +22 -0
package/src/index.ts +1 -1
package/src/version.ts +1 -1

package/README.md CHANGED Viewed

@@ -30,7 +30,7 @@ npm install @auth0/auth0-spa-js
 From the CDN:
 ```html
-<script src="https://cdn.auth0.com/js/auth0-spa-js/2.15/auth0-spa-js.production.js"></script>
+<script src="https://cdn.auth0.com/js/auth0-spa-js/2.17/auth0-spa-js.production.js"></script>
 ```
 ### Configure Auth0

package/dist/auth0-spa-js.development.js CHANGED Viewed

@@ -15,7 +15,7 @@
         var e = new Error(message);
         return e.name = "SuppressedError", e.error = error, e.suppressed = suppressed, e;
     };
-    var version = "2.15.0";
+    var version = "2.17.0";
     const DEFAULT_AUTHORIZE_TIMEOUT_IN_SECONDS = 60;
     const DEFAULT_POPUP_CONFIG_OPTIONS = {
         timeoutInSeconds: DEFAULT_AUTHORIZE_TIMEOUT_IN_SECONDS
@@ -27,6 +27,7 @@
     const MISSING_REFRESH_TOKEN_ERROR_MESSAGE = "Missing Refresh Token";
     const INVALID_REFRESH_TOKEN_ERROR_MESSAGE = "invalid refresh token";
     const USER_BLOCKED_ERROR_MESSAGE = "user is blocked";
+    const MFA_STEP_UP_ERROR_DESCRIPTION = "Multifactor authentication required";
     const DEFAULT_SCOPE = "openid profile email";
     const DEFAULT_SESSION_CHECK_EXPIRY_DAYS = 1;
     const DEFAULT_AUTH0_CLIENT = {
@@ -7715,29 +7716,60 @@
                 return;
             }
             const lockKey = buildGetTokenSilentlyLockKey(this.options.clientId, getTokenOptions.authorizationParams.audience || "default");
-            return await this.lockManager.runWithLock(lockKey, 5e3, (async () => {
-                if (cacheMode !== "off") {
-                    const entry = await this._getEntryFromCache({
-                        scope: getTokenOptions.authorizationParams.scope,
-                        audience: getTokenOptions.authorizationParams.audience || DEFAULT_AUDIENCE,
-                        clientId: this.options.clientId
-                    });
-                    if (entry) {
-                        return entry;
+            try {
+                return await this.lockManager.runWithLock(lockKey, 5e3, (async () => {
+                    if (cacheMode !== "off") {
+                        const entry = await this._getEntryFromCache({
+                            scope: getTokenOptions.authorizationParams.scope,
+                            audience: getTokenOptions.authorizationParams.audience || DEFAULT_AUDIENCE,
+                            clientId: this.options.clientId
+                        });
+                        if (entry) {
+                            return entry;
+                        }
                     }
+                    const authResult = this.options.useRefreshTokens ? await this._getTokenUsingRefreshToken(getTokenOptions) : await this._getTokenFromIFrame(getTokenOptions);
+                    const {id_token: id_token, token_type: token_type, access_token: access_token, oauthTokenScope: oauthTokenScope, expires_in: expires_in} = authResult;
+                    return Object.assign(Object.assign({
+                        id_token: id_token,
+                        token_type: token_type,
+                        access_token: access_token
+                    }, oauthTokenScope ? {
+                        scope: oauthTokenScope
+                    } : null), {
+                        expires_in: expires_in
+                    });
+                }));
+            } catch (error) {
+                if (this._isInteractiveError(error) && this.options.interactiveErrorHandler === "popup") {
+                    return await this._handleInteractiveErrorWithPopup(getTokenOptions);
                 }
-                const authResult = this.options.useRefreshTokens ? await this._getTokenUsingRefreshToken(getTokenOptions) : await this._getTokenFromIFrame(getTokenOptions);
-                const {id_token: id_token, token_type: token_type, access_token: access_token, oauthTokenScope: oauthTokenScope, expires_in: expires_in} = authResult;
-                return Object.assign(Object.assign({
-                    id_token: id_token,
-                    token_type: token_type,
-                    access_token: access_token
-                }, oauthTokenScope ? {
-                    scope: oauthTokenScope
-                } : null), {
-                    expires_in: expires_in
+                throw error;
+            }
+        }
+        _isInteractiveError(error) {
+            return error instanceof MfaRequiredError || error instanceof GenericError && this._isIframeMfaError(error);
+        }
+        _isIframeMfaError(error) {
+            return error.error === "login_required" && error.error_description === MFA_STEP_UP_ERROR_DESCRIPTION;
+        }
+        async _handleInteractiveErrorWithPopup(options) {
+            try {
+                await this.loginWithPopup({
+                    authorizationParams: options.authorizationParams
                 });
-            }));
+                const entry = await this._getEntryFromCache({
+                    scope: options.authorizationParams.scope,
+                    audience: options.authorizationParams.audience || DEFAULT_AUDIENCE,
+                    clientId: this.options.clientId
+                });
+                if (!entry) {
+                    throw new GenericError("interactive_handler_cache_miss", "Token not found in cache after interactive authentication");
+                }
+                return entry;
+            } catch (error) {
+                throw error;
+            }
         }
         async getTokenWithPopup() {
             let options = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {};
@@ -7844,9 +7876,12 @@
                 }));
             } catch (e) {
                 if (e.error === "login_required") {
-                    this.logout({
-                        openUrl: false
-                    });
+                    const shouldSkipLogoutForMfaStepUp = e instanceof GenericError && this._isIframeMfaError(e) && this.options.interactiveErrorHandler === "popup";
+                    if (!shouldSkipLogoutForMfaStepUp) {
+                        this.logout({
+                            openUrl: false
+                        });
+                    }
                 }
                 throw e;
             }