@axa-fr/oidc-client 7.26.7 → 7.27.0

package/dist/index.js

@@ -1,4 +1,4 @@
-class j {
+class Q {
   open(n) {
     window.location.href = n;
   }
@@ -16,10 +16,10 @@ class j {
     return window.origin;
   }
 }
-const de = 2e3, $ = console;
-class De {
-  constructor(n, t, s, o = de, i = !0) {
-    this._callback = n, this._client_id = t, this._url = s, this._interval = o || de, this._stopOnError = i;
+const ye = 2e3, K = console;
+class $e {
+  constructor(n, t, s, o = ye, i = !0) {
+    this._callback = n, this._client_id = t, this._url = s, this._interval = o || ye, this._stopOnError = i;
     const r = s.indexOf("/", s.indexOf("//") + 2);
     this._frame_origin = s.substring(0, r), this._frame = window.document.createElement("iframe"), this._frame.style.visibility = "hidden", this._frame.style.position = "absolute", this._frame.style.display = "none", this._frame.width = 0, this._frame.height = 0, this._frame.src = s;
   }
@@ -31,10 +31,10 @@ class De {
     });
   }
   _message(n) {
-    n.origin === this._frame_origin && n.source === this._frame.contentWindow && (n.data === "error" ? ($.error("CheckSessionIFrame: error message from check session op iframe"), this._stopOnError && this.stop()) : n.data === "changed" ? ($.debug(n), $.debug("CheckSessionIFrame: changed message from check session op iframe"), this.stop(), this._callback()) : $.debug("CheckSessionIFrame: " + n.data + " message from check session op iframe"));
+    n.origin === this._frame_origin && n.source === this._frame.contentWindow && (n.data === "error" ? (K.error("CheckSessionIFrame: error message from check session op iframe"), this._stopOnError && this.stop()) : n.data === "changed" ? (K.debug(n), K.debug("CheckSessionIFrame: changed message from check session op iframe"), this.stop(), this._callback()) : K.debug("CheckSessionIFrame: " + n.data + " message from check session op iframe"));
   }
   start(n) {
-    $.debug("CheckSessionIFrame.start :" + n), this.stop();
+    K.debug("CheckSessionIFrame.start :" + n), this.stop();
     const t = () => {
       this._frame.contentWindow.postMessage(
         this._client_id + " " + n,
@@ -44,10 +44,10 @@ class De {
     t(), this._timer = window.setInterval(t, this._interval);
   }
   stop() {
-    this._timer && ($.debug("CheckSessionIFrame.stop"), window.clearInterval(this._timer), this._timer = null);
+    this._timer && (K.debug("CheckSessionIFrame.stop"), window.clearInterval(this._timer), this._timer = null);
   }
 }
-const p = {
+const k = {
   service_worker_not_supported_by_browser: "service_worker_not_supported_by_browser",
   token_acquired: "token_acquired",
   logout_from_another_tab: "logout_from_another_tab",
@@ -76,89 +76,89 @@ const p = {
   syncTokensAsync_end: "syncTokensAsync_end",
   syncTokensAsync_error: "syncTokensAsync_error",
   tokensInvalidAndWaitingActionsToRefresh: "tokensInvalidAndWaitingActionsToRefresh"
-}, N = (e, n = sessionStorage) => {
-  const t = (h) => (n[`oidc.${e}`] = JSON.stringify({ tokens: null, status: h }), delete n[`oidc.${e}.userInfo`], Promise.resolve()), s = async () => {
+}, C = (e, n = sessionStorage, t) => {
+  const s = t ?? n, o = (w) => (n[`oidc.${e}`] = JSON.stringify({ tokens: null, status: w }), delete n[`oidc.${e}.userInfo`], t && t !== n && (delete s[`oidc.login.${e}`], delete s[`oidc.state.${e}`], delete s[`oidc.code_verifier.${e}`], delete s[`oidc.nonce.${e}`]), Promise.resolve()), i = async () => {
     if (!n[`oidc.${e}`])
       return n[`oidc.${e}`] = JSON.stringify({ tokens: null, status: null }), { tokens: null, status: null };
-    const h = JSON.parse(n[`oidc.${e}`]);
-    return Promise.resolve({ tokens: h.tokens, status: h.status });
-  }, o = (h) => {
-    n[`oidc.${e}`] = JSON.stringify({ tokens: h });
-  }, i = async (h) => {
-    n[`oidc.session_state.${e}`] = h;
-  }, r = async () => n[`oidc.session_state.${e}`], a = (h) => {
-    n[`oidc.nonce.${e}`] = h.nonce;
-  }, c = (h) => {
-    n[`oidc.jwk.${e}`] = JSON.stringify(h);
-  }, f = () => JSON.parse(n[`oidc.jwk.${e}`]), u = async () => ({ nonce: n[`oidc.nonce.${e}`] }), l = async (h) => {
-    n[`oidc.dpop_nonce.${e}`] = h;
-  }, d = () => n[`oidc.dpop_nonce.${e}`], _ = () => n[`oidc.${e}`] ? JSON.stringify({ tokens: JSON.parse(n[`oidc.${e}`]).tokens }) : null, w = {};
+    const w = JSON.parse(n[`oidc.${e}`]);
+    return Promise.resolve({ tokens: w.tokens, status: w.status });
+  }, r = (w) => {
+    n[`oidc.${e}`] = JSON.stringify({ tokens: w });
+  }, a = async (w) => {
+    n[`oidc.session_state.${e}`] = w;
+  }, c = async () => n[`oidc.session_state.${e}`], f = (w) => {
+    s[`oidc.nonce.${e}`] = w.nonce;
+  }, u = (w) => {
+    n[`oidc.jwk.${e}`] = JSON.stringify(w);
+  }, l = () => JSON.parse(n[`oidc.jwk.${e}`]), h = async () => ({ nonce: s[`oidc.nonce.${e}`] }), _ = async (w) => {
+    n[`oidc.dpop_nonce.${e}`] = w;
+  }, m = () => n[`oidc.dpop_nonce.${e}`], p = () => n[`oidc.${e}`] ? JSON.stringify({ tokens: JSON.parse(n[`oidc.${e}`]).tokens }) : null, g = {};
   return {
-    clearAsync: t,
-    initAsync: s,
-    setTokens: o,
-    getTokens: _,
-    setSessionStateAsync: i,
-    getSessionStateAsync: r,
-    setNonceAsync: a,
-    getNonceAsync: u,
-    setLoginParams: (h) => {
-      w[e] = h, n[`oidc.login.${e}`] = JSON.stringify(h);
+    clearAsync: o,
+    initAsync: i,
+    setTokens: r,
+    getTokens: p,
+    setSessionStateAsync: a,
+    getSessionStateAsync: c,
+    setNonceAsync: f,
+    getNonceAsync: h,
+    setLoginParams: (w) => {
+      g[e] = w, s[`oidc.login.${e}`] = JSON.stringify(w);
     },
     getLoginParams: () => {
-      const h = n[`oidc.login.${e}`];
-      return h ? (w[e] || (w[e] = JSON.parse(h)), w[e]) : (console.warn(
+      const w = s[`oidc.login.${e}`];
+      return w ? (g[e] || (g[e] = JSON.parse(w)), g[e]) : (console.warn(
         `storage[oidc.login.${e}] is empty, you should have an bad OIDC or code configuration somewhere.`
       ), null);
     },
-    getStateAsync: async () => n[`oidc.state.${e}`],
-    setStateAsync: async (h) => {
-      n[`oidc.state.${e}`] = h;
+    getStateAsync: async () => s[`oidc.state.${e}`],
+    setStateAsync: async (w) => {
+      s[`oidc.state.${e}`] = w;
     },
-    getCodeVerifierAsync: async () => n[`oidc.code_verifier.${e}`],
-    setCodeVerifierAsync: async (h) => {
-      n[`oidc.code_verifier.${e}`] = h;
+    getCodeVerifierAsync: async () => s[`oidc.code_verifier.${e}`],
+    setCodeVerifierAsync: async (w) => {
+      s[`oidc.code_verifier.${e}`] = w;
     },
-    setDemonstratingProofOfPossessionNonce: l,
-    getDemonstratingProofOfPossessionNonce: d,
-    setDemonstratingProofOfPossessionJwkAsync: c,
-    getDemonstratingProofOfPossessionJwkAsync: f
+    setDemonstratingProofOfPossessionNonce: _,
+    getDemonstratingProofOfPossessionNonce: m,
+    setDemonstratingProofOfPossessionJwkAsync: u,
+    getDemonstratingProofOfPossessionJwkAsync: l
   };
 };
-var B = /* @__PURE__ */ ((e) => (e.AutomaticBeforeTokenExpiration = "AutomaticBeforeTokensExpiration", e.AutomaticOnlyWhenFetchExecuted = "AutomaticOnlyWhenFetchExecuted", e))(B || {});
+var H = /* @__PURE__ */ ((e) => (e.AutomaticBeforeTokenExpiration = "AutomaticBeforeTokensExpiration", e.AutomaticOnlyWhenFetchExecuted = "AutomaticOnlyWhenFetchExecuted", e))(H || {});
 const Re = (e) => decodeURIComponent(
   Array.prototype.map.call(atob(e), (n) => "%" + ("00" + n.charCodeAt(0).toString(16)).slice(-2)).join("")
-), $e = (e) => JSON.parse(Re(e.replaceAll(/-/g, "+").replaceAll(/_/g, "/"))), he = (e) => {
+), Ke = (e) => JSON.parse(Re(e.replaceAll(/-/g, "+").replaceAll(/_/g, "/"))), ke = (e) => {
   try {
-    return e && Ke(e, ".") === 2 ? $e(e.split(".")[1]) : null;
+    return e && Ue(e, ".") === 2 ? Ke(e.split(".")[1]) : null;
   } catch (n) {
     console.warn(n);
   }
   return null;
-}, Ke = (e, n) => e.split(n).length - 1, Z = {
+}, Ue = (e, n) => e.split(n).length - 1, oe = {
   access_token_or_id_token_invalid: "access_token_or_id_token_invalid",
   access_token_invalid: "access_token_invalid",
   id_token_invalid: "id_token_invalid"
 };
-function Ue(e, n, t) {
+function Ve(e, n, t) {
   if (e.issuedAt) {
     if (typeof e.issuedAt == "string")
       return parseInt(e.issuedAt, 10);
   } else return n && n.iat ? n.iat : t && t.iat ? t.iat : (/* @__PURE__ */ new Date()).getTime() / 1e3;
   return e.issuedAt;
 }
-const ie = (e, n = null, t) => {
+const ue = (e, n = null, t) => {
   if (!e)
     return null;
   let s;
   const o = typeof e.expiresIn == "string" ? parseInt(e.expiresIn, 10) : e.expiresIn;
-  e.accessTokenPayload !== void 0 ? s = e.accessTokenPayload : s = he(e.accessToken);
+  e.accessTokenPayload !== void 0 ? s = e.accessTokenPayload : s = ke(e.accessToken);
   let i;
   n != null && "idToken" in n && !("idToken" in e) ? i = n.idToken : i = e.idToken;
-  const r = e.idTokenPayload ? e.idTokenPayload : he(i), a = r && r.exp ? r.exp : Number.MAX_VALUE, c = s && s.exp ? s.exp : e.issuedAt + o;
-  e.issuedAt = Ue(e, s, r);
+  const r = e.idTokenPayload ? e.idTokenPayload : ke(i), a = r && r.exp ? r.exp : Number.MAX_VALUE, c = s && s.exp ? s.exp : e.issuedAt + o;
+  e.issuedAt = Ve(e, s, r);
   let f;
-  e.expiresAt ? f = e.expiresAt : t === Z.access_token_invalid ? f = c : t === Z.id_token_invalid ? f = a : f = a < c ? a : c;
+  e.expiresAt ? f = e.expiresAt : t === oe.access_token_invalid ? f = c : t === oe.id_token_invalid ? f = a : f = a < c ? a : c;
   const u = {
     ...e,
     idTokenPayload: r,
@@ -171,7 +171,7 @@ const ie = (e, n = null, t) => {
     return { ...u, refreshToken: l };
   }
   return u;
-}, re = (e, n, t) => {
+}, _e = (e, n, t) => {
   if (!e)
     return null;
   if (!e.issued_at) {
@@ -186,30 +186,30 @@ const ie = (e, n = null, t) => {
     tokenType: e.token_type,
     issuedAt: e.issued_at
   };
-  return "refresh_token" in e && (s.refreshToken = e.refresh_token), e.accessTokenPayload !== void 0 && (s.accessTokenPayload = e.accessTokenPayload), e.idTokenPayload !== void 0 && (s.idTokenPayload = e.idTokenPayload), ie(s, n, t);
-}, F = (e, n) => {
+  return "refresh_token" in e && (s.refreshToken = e.refresh_token), e.accessTokenPayload !== void 0 && (s.accessTokenPayload = e.accessTokenPayload), e.idTokenPayload !== void 0 && (s.idTokenPayload = e.idTokenPayload), ue(s, n, t);
+}, B = (e, n) => {
   const t = (/* @__PURE__ */ new Date()).getTime() / 1e3, s = n - t;
   return Math.round(s - e);
-}, Ve = (e, n = 0) => e ? F(n, e.expiresAt) > 0 : !1, Ae = async (e, n = 200, t = 50) => {
+}, Fe = (e, n = 0) => e ? B(n, e.expiresAt) > 0 : !1, ve = async (e, n = 200, t = 50) => {
   let s = t, o = await e.syncTokensInfoAsync();
   for (; [
-    E.REQUIRE_SYNC_TOKENS,
-    E.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_INVALID,
-    E.TOKENS_INVALID
+    b.REQUIRE_SYNC_TOKENS,
+    b.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_INVALID,
+    b.TOKENS_INVALID
   ].includes(o) && s > 0; ) {
-    if (e.configuration.token_automatic_renew_mode == B.AutomaticOnlyWhenFetchExecuted) {
+    if (e.configuration.token_automatic_renew_mode == H.AutomaticOnlyWhenFetchExecuted) {
       await e.renewTokensAsync({});
       break;
     } else
-      await ae({ milliseconds: n });
+      await ne({ milliseconds: n });
     s = s - 1, o = await e.syncTokensInfoAsync();
   }
   return {
-    isTokensValid: Ve(e.getTokens()),
+    isTokensValid: Fe(e.getTokens()),
     tokens: e.getTokens(),
     numberWaited: s - t
   };
-}, Se = (e, n, t) => {
+}, Ee = (e, n, t) => {
   if (e.idTokenPayload) {
     const s = e.idTokenPayload;
     if (t.issuer !== s.iss)
@@ -236,7 +236,7 @@ const ie = (e, n = null, t) => {
       };
   }
   return { isValid: !0, reason: "" };
-}, D = (function() {
+}, $ = (function() {
   const e = typeof window > "u" ? global : window;
   return {
     setTimeout: setTimeout.bind(e),
@@ -244,32 +244,32 @@ const ie = (e, n = null, t) => {
     setInterval: setInterval.bind(e),
     clearInterval: clearInterval.bind(e)
   };
-})(), X = "7.26.7";
-let ge = null, q;
-const ae = ({ milliseconds: e }) => new Promise((n) => D.setTimeout(n, e)), Te = (e = "/") => {
+})(), te = "7.27.0";
+let me = null, Z;
+const ne = ({ milliseconds: e }) => new Promise((n) => $.setTimeout(n, e)), Oe = (e = "/") => {
   try {
-    q = new AbortController(), fetch(
+    Z = new AbortController(), fetch(
       `${e}OidcKeepAliveServiceWorker.json?minSleepSeconds=150`,
-      { signal: q.signal }
+      { signal: Z.signal }
     ).catch((s) => {
       console.log(s);
-    }), ae({ milliseconds: 150 * 1e3 }).then(
-      () => Te(e)
+    }), ne({ milliseconds: 150 * 1e3 }).then(
+      () => Oe(e)
     );
   } catch (n) {
     console.log(n);
   }
-}, z = () => {
-  q && q.abort();
-}, ve = (e) => {
+}, X = () => {
+  Z && Z.abort();
+}, be = (e) => {
   const n = `oidc.tabId.${e}`, t = sessionStorage.getItem(n);
   if (t) return t;
   const s = globalThis.crypto.randomUUID();
   return sessionStorage.setItem(n, s), s;
-}, Fe = 5e3, Me = (e) => navigator.serviceWorker.controller ?? e.active ?? e.waiting ?? e.installing ?? null, O = (e, n) => (t) => {
-  const s = n?.timeoutMs ?? Fe;
+}, Me = 5e3, Be = (e) => navigator.serviceWorker.controller ?? e.active ?? e.waiting ?? e.installing ?? null, I = (e, n) => (t) => {
+  const s = n?.timeoutMs ?? Me;
   return new Promise((o, i) => {
-    const r = Me(e);
+    const r = Be(e);
     if (!r) {
       i(
         new Error(
@@ -282,12 +282,12 @@ const ae = ({ milliseconds: e }) => new Promise((n) => D.setTimeout(n, e)), Te =
     let c = null;
     const f = () => {
       try {
-        c != null && (D.clearTimeout(c), c = null), a.port1.onmessage = null, a.port1.close(), a.port2.close();
+        c != null && ($.clearTimeout(c), c = null), a.port1.onmessage = null, a.port1.close(), a.port2.close();
       } catch (u) {
         console.error(u);
       }
     };
-    c = D.setTimeout(() => {
+    c = $.setTimeout(() => {
       f(), i(
         new Error(`Service worker did not respond within ${s}ms (type=${t?.type})`)
       );
@@ -296,213 +296,238 @@ const ae = ({ milliseconds: e }) => new Promise((n) => D.setTimeout(n, e)), Te =
     };
     try {
       const u = t?.configurationName;
-      r.postMessage({ ...t, tabId: ve(u ?? "default") }, [
+      r.postMessage({ ...t, tabId: be(u ?? "default") }, [
         a.port2
       ]);
     } catch (u) {
       f(), i(u);
     }
   });
-}, Be = async (e) => navigator.serviceWorker.controller ? navigator.serviceWorker.controller : new Promise((n) => {
+}, Je = async (e) => navigator.serviceWorker.controller ? navigator.serviceWorker.controller : new Promise((n) => {
   let t = !1;
   const s = () => {
     t || (t = !0, navigator.serviceWorker.removeEventListener("controllerchange", s), n(navigator.serviceWorker.controller ?? null));
   };
-  navigator.serviceWorker.addEventListener("controllerchange", s), D.setTimeout(() => {
+  navigator.serviceWorker.addEventListener("controllerchange", s), $.setTimeout(() => {
     t || (t = !0, navigator.serviceWorker.removeEventListener("controllerchange", s), n(navigator.serviceWorker.controller ?? null));
   }, e);
-}), C = async (e, n) => {
+}), x = async (e, n) => {
   const t = e.service_worker_relative_url;
   if (typeof window > "u" || typeof navigator > "u" || !navigator.serviceWorker || !t || e.service_worker_activate() === !1)
     return null;
-  const s = `${t}?v=${X}`;
+  const s = `${t}?v=${te}`;
   let o = null;
   e.service_worker_register ? o = await e.service_worker_register(t) : o = await navigator.serviceWorker.register(s, {
     updateViaCache: "none"
   });
+  const i = `oidc.sw.version_mismatch_reload.${n}`, r = async () => {
+    X(), console.log("New SW waiting – SKIP_WAITING");
+    try {
+      await I(o, { timeoutMs: 8e3 })({
+        type: "SKIP_WAITING",
+        configurationName: n,
+        data: null
+      });
+    } catch (d) {
+      console.warn("SKIP_WAITING failed", d);
+    }
+  }, a = (d) => {
+    X(), d.addEventListener("statechange", async () => {
+      d.state === "installed" && navigator.serviceWorker.controller && await r();
+    });
+  };
+  o.addEventListener("updatefound", () => {
+    const d = o.installing;
+    d && a(d);
+  }), o.installing ? a(o.installing) : o.waiting && navigator.serviceWorker.controller && r();
   try {
     await o.update();
-  } catch (k) {
-    console.error(k);
+  } catch (d) {
+    console.error(d);
   }
-  o.addEventListener("updatefound", () => {
-    const k = o.installing;
-    z(), k?.addEventListener("statechange", async () => {
-      if (k.state === "installed" && navigator.serviceWorker.controller) {
-        z(), console.log("New SW waiting – SKIP_WAITING");
-        try {
-          await O(o, { timeoutMs: 8e3 })({
-            type: "SKIP_WAITING",
-            configurationName: n,
-            data: null
-          });
-        } catch (b) {
-          console.warn("SKIP_WAITING failed", b);
-        }
-      }
-    });
-  });
-  const i = `oidc.sw.controllerchange.reloaded.${n}`;
+  const c = `oidc.sw.controllerchange.reloaded.${n}`;
   navigator.serviceWorker.addEventListener("controllerchange", () => {
     try {
-      if (sessionStorage.getItem(i) === "1") return;
-      sessionStorage.setItem(i, "1");
+      if (sessionStorage.getItem(c) === "1") return;
+      sessionStorage.setItem(c, "1");
     } catch {
     }
-    console.log("SW controller changed – reloading page"), z(), window.location.reload();
+    console.log("SW controller changed – reloading page"), X(), window.location.reload();
   });
   try {
-    await navigator.serviceWorker.ready, navigator.serviceWorker.controller || (await O(o, { timeoutMs: 8e3 })({
+    await navigator.serviceWorker.ready, navigator.serviceWorker.controller || (await I(o, { timeoutMs: 8e3 })({
       type: "claim",
       configurationName: n,
       data: null
-    }), await Be(2e3));
-  } catch (k) {
-    return console.warn(`Failed init ServiceWorker ${k?.toString?.() ?? String(k)}`), null;
+    }), await Je(2e3));
+  } catch (d) {
+    return console.warn(`Failed init ServiceWorker ${d?.toString?.() ?? String(d)}`), null;
   }
-  const r = async (k) => O(o)({ type: "clear", data: { status: k }, configurationName: n }), a = async (k, b, m) => {
-    const W = await O(o)({
+  const f = async (d) => I(o)({ type: "clear", data: { status: d }, configurationName: n }), u = async (d, D, E) => {
+    const P = await I(o)({
       type: "init",
       data: {
-        oidcServerConfiguration: k,
-        where: b,
+        oidcServerConfiguration: d,
+        where: D,
         oidcConfiguration: {
-          token_renew_mode: m.token_renew_mode,
-          service_worker_convert_all_requests_to_cors: m.service_worker_convert_all_requests_to_cors
+          token_renew_mode: E.token_renew_mode,
+          service_worker_convert_all_requests_to_cors: E.service_worker_convert_all_requests_to_cors
         }
       },
       configurationName: n
-    }), V = W.version;
-    return V !== X && console.warn(
-      `Service worker ${V} version mismatch with js client version ${X}, unregistering and reloading`
-    ), {
-      tokens: re(W.tokens, null, m.token_renew_mode),
-      status: W.status
+    }), q = P.version;
+    if (q !== te) {
+      console.warn(
+        `Service worker ${q} version mismatch with js client version ${te}, unregistering and reloading`
+      );
+      const M = parseInt(sessionStorage.getItem(i) ?? "0", 10);
+      if (M < 3)
+        if (sessionStorage.setItem(i, String(M + 1)), o.waiting)
+          await r();
+        else {
+          X();
+          try {
+            await o.update();
+          } catch (he) {
+            console.error(he);
+          }
+          const Y = await o.unregister();
+          console.log(`Service worker unregistering ${Y}`), await ne({ milliseconds: 2e3 }), window.location.reload();
+        }
+      else
+        console.error(
+          `Service worker version mismatch persists after ${M} attempt(s). Continuing with mismatched version.`
+        ), sessionStorage.removeItem(i);
+    } else
+      sessionStorage.removeItem(i);
+    return {
+      tokens: _e(P.tokens, null, E.token_renew_mode),
+      status: P.status
     };
-  }, c = (k = "/") => {
-    ge == null && (ge = "not_null", Te(k));
-  }, f = (k) => O(o)({
+  }, l = (d = "/") => {
+    me == null && (me = "not_null", Oe(d));
+  }, h = (d) => I(o)({
     type: "setSessionState",
-    data: { sessionState: k },
+    data: { sessionState: d },
     configurationName: n
-  }), u = async () => (await O(o)({
+  }), _ = async () => (await I(o)({
     type: "getSessionState",
     data: null,
     configurationName: n
-  })).sessionState, l = (k) => (sessionStorage[`oidc.nonce.${n}`] = k.nonce, O(o)({
+  })).sessionState, m = (d) => (sessionStorage[`oidc.nonce.${n}`] = d.nonce, I(o)({
     type: "setNonce",
-    data: { nonce: k },
+    data: { nonce: d },
     configurationName: n
-  })), d = async (k = !0) => {
-    let m = (await O(o)({
+  })), p = async (d = !0) => {
+    let E = (await I(o)({
       type: "getNonce",
       data: null,
       configurationName: n
     })).nonce;
-    return m || (m = sessionStorage[`oidc.nonce.${n}`], console.warn("nonce not found in service worker, using sessionStorage"), k && (await l(m), m = (await d(!1)).nonce)), { nonce: m };
-  }, _ = {}, w = (k) => {
-    _[n] = k, localStorage[`oidc.login.${n}`] = JSON.stringify(k);
+    return E || (E = sessionStorage[`oidc.nonce.${n}`], console.warn("nonce not found in service worker, using sessionStorage"), d && (await m(E), E = (await p(!1)).nonce)), { nonce: E };
+  }, g = {}, y = (d) => {
+    g[n] = d, localStorage[`oidc.login.${n}`] = JSON.stringify(d);
   }, A = () => {
-    const k = localStorage[`oidc.login.${n}`];
-    return _[n] || (_[n] = JSON.parse(k)), _[n];
-  }, g = async (k) => {
-    await O(o)({
+    const d = localStorage[`oidc.login.${n}`];
+    return g[n] || (g[n] = JSON.parse(d)), g[n];
+  }, S = async (d) => {
+    await I(o)({
       type: "setDemonstratingProofOfPossessionNonce",
-      data: { demonstratingProofOfPossessionNonce: k },
+      data: { demonstratingProofOfPossessionNonce: d },
       configurationName: n
     });
-  }, y = async () => (await O(o)({
+  }, O = async () => (await I(o)({
     type: "getDemonstratingProofOfPossessionNonce",
     data: null,
     configurationName: n
-  })).demonstratingProofOfPossessionNonce, S = async (k) => {
-    const b = JSON.stringify(k);
-    await O(o)({
+  })).demonstratingProofOfPossessionNonce, T = async (d) => {
+    const D = JSON.stringify(d);
+    await I(o)({
       type: "setDemonstratingProofOfPossessionJwk",
-      data: { demonstratingProofOfPossessionJwkJson: b },
+      data: { demonstratingProofOfPossessionJwkJson: D },
       configurationName: n
     });
-  }, T = async () => {
-    const k = await O(o)({
+  }, N = async () => {
+    const d = await I(o)({
       type: "getDemonstratingProofOfPossessionJwk",
       data: null,
       configurationName: n
     });
-    return k.demonstratingProofOfPossessionJwkJson ? JSON.parse(k.demonstratingProofOfPossessionJwkJson) : null;
-  }, v = async (k = !0) => {
-    let m = (await O(o)({
+    return d.demonstratingProofOfPossessionJwkJson ? JSON.parse(d.demonstratingProofOfPossessionJwkJson) : null;
+  }, w = async (d = !0) => {
+    let E = (await I(o)({
       type: "getState",
       data: null,
       configurationName: n
     })).state;
-    return m || (m = sessionStorage[`oidc.state.${n}`], console.warn("state not found in service worker, using sessionStorage"), k && (await h(m), m = await v(!1))), m;
-  }, h = async (k) => (sessionStorage[`oidc.state.${n}`] = k, O(o)({
+    return E || (E = sessionStorage[`oidc.state.${n}`], console.warn("state not found in service worker, using sessionStorage"), d && (await F(E), E = await w(!1))), E;
+  }, F = async (d) => (sessionStorage[`oidc.state.${n}`] = d, I(o)({
     type: "setState",
-    data: { state: k },
+    data: { state: d },
     configurationName: n
-  })), P = async (k = !0) => {
-    let m = (await O(o)({
+  })), L = async (d = !0) => {
+    let E = (await I(o)({
       type: "getCodeVerifier",
       data: null,
       configurationName: n
     })).codeVerifier;
-    return m || (m = sessionStorage[`oidc.code_verifier.${n}`], console.warn("codeVerifier not found in service worker, using sessionStorage"), k && (await x(m), m = await P(!1))), m;
-  }, x = async (k) => (sessionStorage[`oidc.code_verifier.${n}`] = k, O(o)({
+    return E || (E = sessionStorage[`oidc.code_verifier.${n}`], console.warn("codeVerifier not found in service worker, using sessionStorage"), d && (await v(E), E = await L(!1))), E;
+  }, v = async (d) => (sessionStorage[`oidc.code_verifier.${n}`] = d, I(o)({
     type: "setCodeVerifier",
-    data: { codeVerifier: k },
+    data: { codeVerifier: d },
     configurationName: n
   }));
   return {
-    clearAsync: r,
-    initAsync: a,
-    startKeepAliveServiceWorker: () => c(e.service_worker_keep_alive_path),
-    setSessionStateAsync: f,
-    getSessionStateAsync: u,
-    setNonceAsync: l,
-    getNonceAsync: d,
-    setLoginParams: w,
+    clearAsync: f,
+    initAsync: u,
+    startKeepAliveServiceWorker: () => l(e.service_worker_keep_alive_path),
+    setSessionStateAsync: h,
+    getSessionStateAsync: _,
+    setNonceAsync: m,
+    getNonceAsync: p,
+    setLoginParams: y,
     getLoginParams: A,
-    getStateAsync: v,
-    setStateAsync: h,
-    getCodeVerifierAsync: P,
-    setCodeVerifierAsync: x,
-    setDemonstratingProofOfPossessionNonce: g,
-    getDemonstratingProofOfPossessionNonce: y,
-    setDemonstratingProofOfPossessionJwkAsync: S,
-    getDemonstratingProofOfPossessionJwkAsync: T
+    getStateAsync: w,
+    setStateAsync: F,
+    getCodeVerifierAsync: L,
+    setCodeVerifierAsync: v,
+    setDemonstratingProofOfPossessionNonce: S,
+    getDemonstratingProofOfPossessionNonce: O,
+    setDemonstratingProofOfPossessionJwkAsync: T,
+    getDemonstratingProofOfPossessionJwkAsync: N
   };
-}, K = {}, Je = (e, n = window.sessionStorage, t) => {
-  if (!K[e] && n) {
+}, U = {}, He = (e, n = window.sessionStorage, t) => {
+  if (!U[e] && n) {
     const o = n.getItem(e);
-    o && (K[e] = JSON.parse(o));
+    o && (U[e] = JSON.parse(o));
   }
   const s = 1e3 * t;
-  return K[e] && K[e].timestamp + s > Date.now() ? K[e].result : null;
-}, He = (e, n, t = window.sessionStorage) => {
+  return U[e] && U[e].timestamp + s > Date.now() ? U[e].result : null;
+}, Ge = (e, n, t = window.sessionStorage) => {
   const s = Date.now();
-  K[e] = { result: n, timestamp: s }, t && t.setItem(e, JSON.stringify({ result: n, timestamp: s }));
+  U[e] = { result: n, timestamp: s }, t && t.setItem(e, JSON.stringify({ result: n, timestamp: s }));
 };
-function Ee(e) {
+function Pe(e) {
   return new TextEncoder().encode(e);
 }
-function Oe(e) {
+function Ie(e) {
   return btoa(e).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+/g, "");
 }
-function Ge(e) {
+function je(e) {
   return encodeURIComponent(e).replace(/%([0-9A-F]{2})/g, function(t, s) {
     return String.fromCharCode(parseInt(s, 16));
   });
 }
-const ce = (e) => {
+const fe = (e) => {
   let n = "";
   return e.forEach(function(t) {
     n += String.fromCharCode(t);
-  }), Oe(n);
+  }), Ie(n);
 };
-function ye(e) {
-  return Oe(Ge(e));
+function we(e) {
+  return Ie(je(e));
 }
-const je = {
+const qe = {
   importKeyAlgorithm: {
     name: "ECDSA",
     namedCurve: "P-256",
@@ -515,7 +540,7 @@ const je = {
   },
   digestAlgorithm: { name: "SHA-256" },
   jwtHeaderAlgorithm: "ES256"
-}, qe = (e) => async (n, t, s, o, i = "dpop+jwt") => {
+}, Ye = (e) => async (n, t, s, o, i = "dpop+jwt") => {
   switch (n = Object.assign({}, n), t.typ = i, t.alg = o.jwtHeaderAlgorithm, t.alg) {
     case "ES256":
       t.jwk = { kty: n.kty, crv: n.crv, x: n.x, y: n.y };
@@ -529,22 +554,22 @@ const je = {
   const r = {
     // @ts-ignore
     // JWT "headers" really means JWS "protected headers"
-    protected: ye(JSON.stringify(t)),
+    protected: we(JSON.stringify(t)),
     // @ts-ignore
     // JWT "claims" are really a JSON-defined JWS "payload"
-    payload: ye(JSON.stringify(s))
-  }, a = o.importKeyAlgorithm, c = !0, f = ["sign"], u = await e.crypto.subtle.importKey("jwk", n, a, c, f), l = Ee(`${r.protected}.${r.payload}`), d = o.signAlgorithm, _ = await e.crypto.subtle.sign(d, u, l);
-  return r.signature = ce(new Uint8Array(_)), `${r.protected}.${r.payload}.${r.signature}`;
-}, Ye = { sign: qe }, Xe = (e) => async (n) => {
+    payload: we(JSON.stringify(s))
+  }, a = o.importKeyAlgorithm, c = !0, f = ["sign"], u = await e.crypto.subtle.importKey("jwk", n, a, c, f), l = Pe(`${r.protected}.${r.payload}`), h = o.signAlgorithm, _ = await e.crypto.subtle.sign(h, u, l);
+  return r.signature = fe(new Uint8Array(_)), `${r.protected}.${r.payload}.${r.signature}`;
+}, Xe = { sign: Ye }, ze = (e) => async (n) => {
   const t = n, s = !0, o = ["sign", "verify"], i = await e.crypto.subtle.generateKey(t, s, o);
   return await e.crypto.subtle.exportKey("jwk", i.privateKey);
-}, ze = (e) => {
+}, Qe = (e) => {
   const n = Object.assign({}, e);
   return delete n.d, n.key_ops = ["verify"], n;
-}, Qe = {
-  generate: Xe,
-  neuter: ze
-}, Ze = (e) => async (n, t) => {
+}, Ze = {
+  generate: ze,
+  neuter: Qe
+}, en = (e) => async (n, t) => {
   let s;
   switch (n.kty) {
     case "EC":
@@ -556,80 +581,80 @@ const je = {
     default:
       throw new Error("Unknown or not implemented JWK type");
   }
-  const o = await e.crypto.subtle.digest(t, Ee(s));
-  return ce(new Uint8Array(o));
-}, en = { thumbprint: Ze }, nn = (e) => async (n) => await Qe.generate(e)(n), be = (e) => (n) => async (t, s = "POST", o, i = {}) => {
+  const o = await e.crypto.subtle.digest(t, Pe(s));
+  return fe(new Uint8Array(o));
+}, nn = { thumbprint: en }, tn = (e) => async (n) => await Ze.generate(e)(n), Ne = (e) => (n) => async (t, s = "POST", o, i = {}) => {
   const r = {
     // https://www.rfc-editor.org/rfc/rfc9449.html#name-concept
-    jti: btoa(tn()),
+    jti: btoa(sn()),
     htm: s,
     htu: o,
     iat: Math.round(Date.now() / 1e3),
     ...i
-  }, a = await en.thumbprint(e)(
+  }, a = await nn.thumbprint(e)(
     t,
     n.digestAlgorithm
   );
-  return await Ye.sign(e)(
+  return await Xe.sign(e)(
     t,
     { kid: a },
     r,
     n
   );
-}, tn = () => {
+}, sn = () => {
   const e = "xxxxxxxx-xxxx-4xxx-yxxx-xxxxxxxxxxxx", n = "0123456789abcdef";
   let t = 0, s = "";
   for (let o = 0; o < 36; o++)
     e[o] !== "-" && e[o] !== "4" && (t = Math.random() * 16 | 0), e[o] === "x" ? s += n[t] : e[o] === "y" ? (t &= 3, t |= 8, s += n[t]) : s += e[o];
   return s;
-}, Pe = () => {
+}, Ce = () => {
   const e = typeof window < "u" && !!window.crypto, n = e && !!window.crypto.subtle;
   return { hasCrypto: e, hasSubtleCrypto: n };
-}, ee = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789", sn = (e) => {
+}, ie = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789", on = (e) => {
   const n = [];
   for (let t = 0; t < e.byteLength; t += 1) {
-    const s = e[t] % ee.length;
-    n.push(ee[s]);
+    const s = e[t] % ie.length;
+    n.push(ie[s]);
   }
   return n.join("");
-}, ne = (e) => {
-  const n = new Uint8Array(e), { hasCrypto: t } = Pe();
+}, re = (e) => {
+  const n = new Uint8Array(e), { hasCrypto: t } = Ce();
   if (t)
     window.crypto.getRandomValues(n);
   else
     for (let s = 0; s < e; s += 1)
-      n[s] = Math.random() * ee.length | 0;
-  return sn(n);
+      n[s] = Math.random() * ie.length | 0;
+  return on(n);
 };
-function on(e) {
+function rn(e) {
   const n = new ArrayBuffer(e.length), t = new Uint8Array(n);
   for (let s = 0; s < e.length; s++)
     t[s] = e.charCodeAt(s);
   return t;
 }
-function Ie(e) {
+function xe(e) {
   return new Promise((n, t) => {
-    crypto.subtle.digest("SHA-256", on(e)).then(
-      (s) => n(ce(new Uint8Array(s))),
+    crypto.subtle.digest("SHA-256", rn(e)).then(
+      (s) => n(fe(new Uint8Array(s))),
       (s) => t(s)
     );
   });
 }
-const rn = (e) => {
+const an = (e) => {
   if (e.length < 43 || e.length > 128)
     return Promise.reject(new Error("Invalid code length."));
-  const { hasSubtleCrypto: n } = Pe();
-  return n ? Ie(e) : Promise.reject(new Error("window.crypto.subtle is unavailable."));
-}, an = 3600, cn = (e) => async (n, t = an, s = window.sessionStorage, o = 1e4) => {
-  const i = `${n}/.well-known/openid-configuration`, r = `oidc.server:${n}`, a = Je(r, s, t);
+  const { hasSubtleCrypto: n } = Ce();
+  return n ? xe(e) : Promise.reject(new Error("window.crypto.subtle is unavailable."));
+}, cn = 3600, ln = (e) => async (n, t = cn, s = window.sessionStorage, o = 1e4) => {
+  const i = `${n}/.well-known/openid-configuration`, r = `oidc.server:${n}`, a = He(r, s, t);
   if (a)
-    return new oe(a);
-  const c = await H(e)(i, {}, o);
+    return new le(a);
+  const c = await j(e)(i, {}, o);
   if (c.status !== 200)
     return null;
   const f = await c.json();
-  return He(r, f, s), new oe(f);
-}, H = (e) => async (n, t = {}, s = 1e4, o = 0) => {
+  return Ge(r, f, s), new le(f);
+}, j = (e) => async (n, t = {}, s = 1e4, o = 0) => {
   let i;
   try {
     const r = new AbortController();
@@ -637,30 +662,30 @@ const rn = (e) => {
   } catch (r) {
     if (r.name === "AbortError" || r.message === "Network request failed") {
       if (o <= 1)
-        return await H(e)(n, t, s, o + 1);
+        return await j(e)(n, t, s, o + 1);
       throw r;
     } else
       throw console.error(r.message), r;
   }
   return i;
-}, te = {
+}, ae = {
   refresh_token: "refresh_token",
   access_token: "access_token"
-}, ke = (e) => async (n, t, s = te.refresh_token, o, i = {}, r = 1e4) => {
+}, pe = (e) => async (n, t, s = ae.refresh_token, o, i = {}, r = 1e4) => {
   const a = {
     token: t,
     token_type_hint: s,
     client_id: o
   };
-  for (const [l, d] of Object.entries(i))
-    a[l] === void 0 && (a[l] = d);
+  for (const [l, h] of Object.entries(i))
+    a[l] === void 0 && (a[l] = h);
   const c = [];
   for (const l in a) {
-    const d = encodeURIComponent(l), _ = encodeURIComponent(a[l]);
-    c.push(`${d}=${_}`);
+    const h = encodeURIComponent(l), _ = encodeURIComponent(a[l]);
+    c.push(`${h}=${_}`);
   }
   const f = c.join("&");
-  return (await H(e)(
+  return (await j(e)(
     n,
     {
       method: "POST",
@@ -673,15 +698,15 @@ const rn = (e) => {
   )).status !== 200 ? { success: !1 } : {
     success: !0
   };
-}, ln = (e) => async (n, t, s, o, i = {}, r, a = 1e4) => {
-  for (const [_, w] of Object.entries(s))
-    t[_] === void 0 && (t[_] = w);
+}, un = (e) => async (n, t, s, o, i = {}, r, a = 1e4) => {
+  for (const [_, m] of Object.entries(s))
+    t[_] === void 0 && (t[_] = m);
   const c = [];
   for (const _ in t) {
-    const w = encodeURIComponent(_), A = encodeURIComponent(t[_]);
-    c.push(`${w}=${A}`);
+    const m = encodeURIComponent(_), p = encodeURIComponent(t[_]);
+    c.push(`${m}=${p}`);
   }
-  const f = c.join("&"), u = await H(e)(
+  const f = c.join("&"), u = await j(e)(
     n,
     {
       method: "POST",
@@ -700,32 +725,32 @@ const rn = (e) => {
       demonstratingProofOfPossessionNonce: null
     };
   const l = await u.json();
-  let d = null;
-  return u.headers.has(Y) && (d = u.headers.get(
-    Y
+  let h = null;
+  return u.headers.has(ee) && (h = u.headers.get(
+    ee
   )), {
     success: !0,
     status: u.status,
-    data: re(l, o, r),
-    demonstratingProofOfPossessionNonce: d
+    data: _e(l, o, r),
+    demonstratingProofOfPossessionNonce: h
   };
-}, un = (e, n) => async (t, s) => {
+}, _n = (e, n) => async (t, s) => {
   s = s ? { ...s } : {};
-  const o = ne(128), i = await rn(o);
+  const o = re(128), i = await an(o);
   await e.setCodeVerifierAsync(o), await e.setStateAsync(s.state), s.code_challenge = i, s.code_challenge_method = "S256";
   let r = "";
   if (s)
     for (const [a, c] of Object.entries(s))
       r === "" ? r += "?" : r += "&", r += `${a}=${encodeURIComponent(c)}`;
   n.open(`${t}${r}`);
-}, Y = "DPoP-Nonce", _n = (e) => async (n, t, s, o, i = 1e4) => {
+}, ee = "DPoP-Nonce", fn = (e) => async (n, t, s, o, i = 1e4) => {
   t = t ? { ...t } : {}, t.code_verifier = await e.getCodeVerifierAsync();
   const r = [];
   for (const l in t) {
-    const d = encodeURIComponent(l), _ = encodeURIComponent(t[l]);
-    r.push(`${d}=${_}`);
+    const h = encodeURIComponent(l), _ = encodeURIComponent(t[l]);
+    r.push(`${h}=${_}`);
   }
-  const a = r.join("&"), c = await H(fetch)(
+  const a = r.join("&"), c = await j(fetch)(
     n,
     {
       method: "POST",
@@ -740,23 +765,23 @@ const rn = (e) => {
   if (await Promise.all([e.setCodeVerifierAsync(null), e.setStateAsync(null)]), c.status !== 200)
     return { success: !1, status: c.status };
   let f = null;
-  c.headers.has(Y) && (f = c.headers.get(
-    Y
+  c.headers.has(ee) && (f = c.headers.get(
+    ee
   ));
   const u = await c.json();
   return {
     success: !0,
     data: {
       state: t.state,
-      tokens: re(u, null, o),
+      tokens: _e(u, null, o),
       demonstratingProofOfPossessionNonce: f
     }
   };
 };
-async function me(e, n, t, s = null) {
+async function Ae(e, n, t, s = null) {
   const o = (c) => {
     e.tokens = c;
-  }, { tokens: i, status: r } = await G(e)(
+  }, { tokens: i, status: r } = await z(e)(
     o,
     0,
     0,
@@ -764,35 +789,39 @@ async function me(e, n, t, s = null) {
     t,
     s
   );
-  return await C(e.configuration, e.configurationName) || N(e.configurationName, e.configuration.storage).setTokens(e.tokens), e.tokens ? i : (await e.destroyAsync(r), null);
+  return await x(e.configuration, e.configurationName) || C(
+    e.configurationName,
+    e.configuration.storage,
+    e.configuration.login_state_storage ?? e.configuration.storage
+  ).setTokens(e.tokens), e.tokens ? i : (await e.destroyAsync(r), null);
 }
-async function Ne(e, n = !1, t = null, s = null) {
+async function We(e, n = !1, t = null, s = null) {
   const o = e.configuration, i = `${o.client_id}_${e.configurationName}_${o.authority}`;
   let r;
-  const a = await C(e.configuration, e.configurationName);
+  const a = await x(e.configuration, e.configurationName);
   if (o?.storage === window?.sessionStorage && !a || !navigator.locks)
-    r = await me(e, n, t, s);
+    r = await Ae(e, n, t, s);
   else {
     let c = "retry";
     for (; c === "retry"; )
       c = await navigator.locks.request(
         i,
         { ifAvailable: !0 },
-        async (f) => f ? await me(e, n, t, s) : (e.publishEvent(L.eventNames.syncTokensAsync_lock_not_available, {
+        async (f) => f ? await Ae(e, n, t, s) : (e.publishEvent(W.eventNames.syncTokensAsync_lock_not_available, {
           lock: "lock not available"
         }), "retry")
       );
     r = c;
   }
-  return r ? (e.timeoutId && (e.timeoutId = J(e, e.tokens.expiresAt, t, s)), e.tokens) : null;
+  return r ? (e.timeoutId && (e.timeoutId = G(e, e.tokens.expiresAt, t, s)), e.tokens) : null;
 }
-const J = (e, n, t = null, s = null) => {
+const G = (e, n, t = null, s = null) => {
   const o = e.configuration.refresh_time_before_tokens_expiration_in_second;
-  return e.timeoutId && D.clearTimeout(e.timeoutId), D.setTimeout(async () => {
-    const r = { timeLeft: F(o, n) };
-    e.publishEvent(L.eventNames.token_timer, r), await Ne(e, !1, t, s);
+  return e.timeoutId && $.clearTimeout(e.timeoutId), $.setTimeout(async () => {
+    const r = { timeLeft: B(o, n) };
+    e.publishEvent(W.eventNames.token_timer, r), await We(e, !1, t, s);
   }, 1e3);
-}, E = {
+}, b = {
   FORCE_REFRESH: "FORCE_REFRESH",
   SESSION_LOST: "SESSION_LOST",
   NOT_CONNECTED: "NOT_CONNECTED",
@@ -802,17 +831,17 @@ const J = (e, n, t = null, s = null) => {
   LOGOUT_FROM_ANOTHER_TAB: "LOGOUT_FROM_ANOTHER_TAB",
   REQUIRE_SYNC_TOKENS: "REQUIRE_SYNC_TOKENS",
   TOKENS_INVALID: "TOKENS_INVALID"
-}, le = (e) => async (n, t, s, o = !1) => {
+}, de = (e) => async (n, t, s, o = !1) => {
   const i = { nonce: null };
   if (!s)
-    return { tokens: null, status: E.NOT_CONNECTED, nonce: i };
+    return { tokens: null, status: b.NOT_CONNECTED, nonce: i };
   let r = i;
   const a = await e.initAsync(
     n.authority,
     n.authority_configuration
-  ), c = await C(n, t);
+  ), c = await x(n, t);
   if (c) {
-    const { status: l, tokens: d } = await c.initAsync(
+    const { status: l, tokens: h } = await c.initAsync(
       a,
       "syncTokensAsync",
       n
@@ -820,95 +849,103 @@ const J = (e, n, t = null, s = null) => {
     if (l === "LOGGED_OUT")
       return {
         tokens: null,
-        status: E.LOGOUT_FROM_ANOTHER_TAB,
+        status: b.LOGOUT_FROM_ANOTHER_TAB,
         nonce: i
       };
     if (l === "SESSIONS_LOST")
-      return { tokens: null, status: E.SESSION_LOST, nonce: i };
-    if (!l || !d)
+      return { tokens: null, status: b.SESSION_LOST, nonce: i };
+    if (!l || !h)
       return {
         tokens: null,
-        status: E.REQUIRE_SYNC_TOKENS,
+        status: b.REQUIRE_SYNC_TOKENS,
         nonce: i
       };
-    if (d.issuedAt !== s.issuedAt) {
-      const w = F(
+    if (h.issuedAt !== s.issuedAt) {
+      const m = B(
         n.refresh_time_before_tokens_expiration_in_second,
-        d.expiresAt
-      ) > 0 ? E.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID : E.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_INVALID, A = await c.getNonceAsync();
-      return { tokens: d, status: w, nonce: A };
+        h.expiresAt
+      ) > 0 ? b.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID : b.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_INVALID, p = await c.getNonceAsync();
+      return { tokens: h, status: m, nonce: p };
     }
     r = await c.getNonceAsync();
   } else {
-    const l = N(t, n.storage ?? sessionStorage), d = await l.initAsync();
-    let { tokens: _ } = d;
-    const { status: w } = d;
-    if (_ && (_ = ie(_, e.tokens, n.token_renew_mode)), _) {
-      if (w === "SESSIONS_LOST")
-        return { tokens: null, status: E.SESSION_LOST, nonce: i };
+    const l = C(
+      t,
+      n.storage ?? sessionStorage,
+      n.login_state_storage ?? n.storage ?? sessionStorage
+    ), h = await l.initAsync();
+    let { tokens: _ } = h;
+    const { status: m } = h;
+    if (_ && (_ = ue(_, e.tokens, n.token_renew_mode)), _) {
+      if (m === "SESSIONS_LOST")
+        return { tokens: null, status: b.SESSION_LOST, nonce: i };
       if (_.issuedAt !== s.issuedAt) {
-        const g = F(
+        const g = B(
           n.refresh_time_before_tokens_expiration_in_second,
           _.expiresAt
-        ) > 0 ? E.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID : E.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_INVALID, y = await l.getNonceAsync();
+        ) > 0 ? b.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID : b.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_INVALID, y = await l.getNonceAsync();
         return { tokens: _, status: g, nonce: y };
       }
     } else return {
       tokens: null,
-      status: E.LOGOUT_FROM_ANOTHER_TAB,
+      status: b.LOGOUT_FROM_ANOTHER_TAB,
       nonce: i
     };
     r = await l.getNonceAsync();
   }
-  const u = F(
+  const u = B(
     n.refresh_time_before_tokens_expiration_in_second,
     s.expiresAt
   ) > 0 ? "TOKENS_VALID" : "TOKENS_INVALID";
   return o ? { tokens: s, status: "FORCE_REFRESH", nonce: r } : { tokens: s, status: u, nonce: r };
-}, G = (e) => async (n, t = 0, s = 0, o = !1, i = null, r = null) => {
+}, z = (e) => async (n, t = 0, s = 0, o = !1, i = null, r = null) => {
   if (!navigator.onLine && document.hidden)
     return { tokens: e.tokens, status: "GIVE_UP" };
   let a = 6;
   const c = o ? 2 : 5, f = 5;
   for (; !navigator.onLine && a > 0; )
-    await ae({ milliseconds: 1e3 }), a--, e.publishEvent(p.refreshTokensAsync, {
+    await ne({ milliseconds: 1e3 }), a--, e.publishEvent(k.refreshTokensAsync, {
       message: `wait because navigator is offline try ${a}`
     });
-  const u = document.hidden, l = u ? t : t + 1, d = u ? s + 1 : s;
+  const u = document.hidden, l = u ? t : t + 1, h = u ? s + 1 : s;
   if (t >= c || s >= f)
-    return n(null), e.publishEvent(p.refreshTokensAsync_error, { message: "refresh token" }), { tokens: null, status: "SESSION_LOST" };
+    return n(null), e.publishEvent(k.refreshTokensAsync_error, { message: "refresh token" }), { tokens: null, status: "SESSION_LOST" };
   i || (i = {});
-  const _ = e.configuration, w = (g, y = null, S = null) => ue(
+  const _ = e.configuration, m = (g, y = null, A = null) => ge(
     e.configurationName,
     e.configuration,
     e.publishEvent.bind(e)
-  )(g, y, S), A = async () => {
+  )(g, y, A), p = async () => {
     try {
       let g;
-      const y = await C(_, e.configurationName);
-      y ? g = y.getLoginParams() : g = N(e.configurationName, _.storage).getLoginParams();
-      const S = {};
+      const y = await x(_, e.configurationName);
+      y ? g = y.getLoginParams() : g = C(
+        e.configurationName,
+        _.storage,
+        _.login_state_storage ?? _.storage
+      ).getLoginParams();
+      const A = {};
       if (g && g.extras)
-        for (const [v, h] of Object.entries(g.extras))
-          h != null && (S[v] = h);
+        for (const [O, T] of Object.entries(g.extras))
+          T != null && (A[O] = T);
       if (i)
-        for (const [v, h] of Object.entries(i))
-          h != null && (S[v] = h);
-      S.prompt = "none", r && (S.scope = r);
-      const T = await w(S);
-      return T ? T.error ? (n(null), e.publishEvent(p.refreshTokensAsync_error, {
+        for (const [O, T] of Object.entries(i))
+          T != null && (A[O] = T);
+      A.prompt = "none", r && (A.scope = r);
+      const S = await m(A);
+      return S ? S.error ? (n(null), e.publishEvent(k.refreshTokensAsync_error, {
         message: "refresh token silent"
-      }), { tokens: null, status: "SESSION_LOST" }) : (n(T.tokens), e.publishEvent(L.eventNames.token_renewed, {}), { tokens: T.tokens, status: "LOGGED" }) : (n(null), e.publishEvent(p.refreshTokensAsync_error, {
+      }), { tokens: null, status: "SESSION_LOST" }) : (n(S.tokens), e.publishEvent(W.eventNames.token_renewed, {}), { tokens: S.tokens, status: "LOGGED" }) : (n(null), e.publishEvent(k.refreshTokensAsync_error, {
         message: "refresh token silent not active"
       }), { tokens: null, status: "SESSION_LOST" });
     } catch (g) {
-      return console.error(g), e.publishEvent(p.refreshTokensAsync_silent_error, {
+      return console.error(g), e.publishEvent(k.refreshTokensAsync_silent_error, {
         message: "exceptionSilent",
         exception: g.message
-      }), await G(e)(
+      }), await z(e)(
         n,
         l,
-        d,
+        h,
         o,
         i,
         r
@@ -916,99 +953,103 @@ const J = (e, n, t = null, s = null) => {
     }
   };
   try {
-    const { status: g, tokens: y, nonce: S } = await le(e)(
+    const { status: g, tokens: y, nonce: A } = await de(e)(
       _,
       e.configurationName,
       e.tokens,
       o
     );
     switch (g) {
-      case E.SESSION_LOST:
-        return n(null), e.publishEvent(p.refreshTokensAsync_error, {
+      case b.SESSION_LOST:
+        return n(null), e.publishEvent(k.refreshTokensAsync_error, {
           message: "refresh token session lost"
         }), { tokens: null, status: "SESSION_LOST" };
-      case E.NOT_CONNECTED:
+      case b.NOT_CONNECTED:
         return n(null), { tokens: null, status: null };
-      case E.TOKENS_VALID:
+      case b.TOKENS_VALID:
         return n(y), { tokens: y, status: "LOGGED_IN" };
-      case E.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID:
-        return n(y), e.publishEvent(L.eventNames.token_renewed, {
+      case b.TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID:
+        return n(y), e.publishEvent(W.eventNames.token_renewed, {
           reason: "TOKEN_UPDATED_BY_ANOTHER_TAB_TOKENS_VALID"
         }), { tokens: y, status: "LOGGED_IN" };
-      case E.LOGOUT_FROM_ANOTHER_TAB:
-        return n(null), e.publishEvent(p.logout_from_another_tab, {
+      case b.LOGOUT_FROM_ANOTHER_TAB:
+        return n(null), e.publishEvent(k.logout_from_another_tab, {
           status: "session syncTokensAsync"
         }), { tokens: null, status: "LOGGED_OUT" };
-      case E.REQUIRE_SYNC_TOKENS:
-        return _.token_automatic_renew_mode == B.AutomaticOnlyWhenFetchExecuted && !o ? (e.publishEvent(p.tokensInvalidAndWaitingActionsToRefresh, {}), { tokens: e.tokens, status: "GIVE_UP" }) : (e.publishEvent(p.refreshTokensAsync_begin, { tryNumber: t }), await A());
+      case b.REQUIRE_SYNC_TOKENS:
+        return _.token_automatic_renew_mode == H.AutomaticOnlyWhenFetchExecuted && !o ? (e.publishEvent(k.tokensInvalidAndWaitingActionsToRefresh, {}), { tokens: e.tokens, status: "GIVE_UP" }) : (e.publishEvent(k.refreshTokensAsync_begin, { tryNumber: t }), await p());
       default: {
-        if (_.token_automatic_renew_mode == B.AutomaticOnlyWhenFetchExecuted && E.FORCE_REFRESH !== g)
-          return e.publishEvent(p.tokensInvalidAndWaitingActionsToRefresh, {}), { tokens: e.tokens, status: "GIVE_UP" };
-        if (e.publishEvent(p.refreshTokensAsync_begin, {
+        if (_.token_automatic_renew_mode == H.AutomaticOnlyWhenFetchExecuted && b.FORCE_REFRESH !== g)
+          return e.publishEvent(k.tokensInvalidAndWaitingActionsToRefresh, {}), { tokens: e.tokens, status: "GIVE_UP" };
+        if (e.publishEvent(k.refreshTokensAsync_begin, {
           refreshToken: y.refreshToken,
           status: g,
           tryNumber: t,
           backgroundTry: s
         }), !y.refreshToken)
-          return await A();
-        const T = _.client_id, v = _.redirect_uri, h = _.authority, x = { ..._.token_request_extras ? _.token_request_extras : {} };
-        for (const [b, m] of Object.entries(i))
-          b.endsWith(":token_request") && (x[b.replace(":token_request", "")] = m);
+          return await p();
+        const S = _.client_id, O = _.redirect_uri, T = _.authority, w = { ..._.token_request_extras ? _.token_request_extras : {} };
+        for (const [L, v] of Object.entries(i))
+          L.endsWith(":token_request") && (w[L.replace(":token_request", "")] = v);
         return await (async () => {
-          const b = {
-            client_id: T,
-            redirect_uri: v,
+          const L = {
+            client_id: S,
+            redirect_uri: O,
             grant_type: "refresh_token",
             refresh_token: y.refreshToken
-          }, m = await e.initAsync(
-            h,
+          }, v = await e.initAsync(
+            T,
             _.authority_configuration
-          ), W = document.hidden ? 1e4 : 3e4 * 10, V = m.tokenEndpoint, _e = {};
-          _.demonstrating_proof_of_possession && (_e.DPoP = await e.generateDemonstrationOfProofOfPossessionAsync(
+          ), d = document.hidden ? 1e4 : 3e4 * 10, D = v.tokenEndpoint, E = {};
+          _.demonstrating_proof_of_possession && (E.DPoP = await e.generateDemonstrationOfProofOfPossessionAsync(
             y.accessToken,
-            V,
+            D,
             "POST"
           ));
-          const I = await ln(e.getFetch())(
-            V,
-            b,
-            x,
+          const P = await un(e.getFetch())(
+            D,
+            L,
+            w,
             y,
-            _e,
+            E,
             _.token_renew_mode,
-            W
+            d
           );
-          if (I.success) {
-            const { isValid: We, reason: Le } = Se(
-              I.data,
-              S.nonce,
-              m
+          if (P.success) {
+            const { isValid: q, reason: M } = Ee(
+              P.data,
+              A.nonce,
+              v
             );
-            if (!We)
-              return n(null), e.publishEvent(p.refreshTokensAsync_error, {
-                message: `refresh token return not valid tokens, reason: ${Le}`
+            if (!q)
+              return n(null), e.publishEvent(k.refreshTokensAsync_error, {
+                message: `refresh token return not valid tokens, reason: ${M}`
               }), { tokens: null, status: "SESSION_LOST" };
-            if (n(I.data), I.demonstratingProofOfPossessionNonce) {
-              const fe = await C(_, e.configurationName);
-              fe ? await fe.setDemonstratingProofOfPossessionNonce(
-                I.demonstratingProofOfPossessionNonce
-              ) : await N(e.configurationName, _.storage).setDemonstratingProofOfPossessionNonce(
-                I.demonstratingProofOfPossessionNonce
+            if (n(P.data), P.demonstratingProofOfPossessionNonce) {
+              const Y = await x(_, e.configurationName);
+              Y ? await Y.setDemonstratingProofOfPossessionNonce(
+                P.demonstratingProofOfPossessionNonce
+              ) : await C(
+                e.configurationName,
+                _.storage,
+                _.login_state_storage ?? _.storage
+              ).setDemonstratingProofOfPossessionNonce(
+                P.demonstratingProofOfPossessionNonce
               );
             }
-            return e.publishEvent(p.refreshTokensAsync_end, {
-              success: I.success
-            }), e.publishEvent(L.eventNames.token_renewed, { reason: "REFRESH_TOKEN" }), { tokens: I.data, status: "LOGGED_IN" };
+            return e.publishEvent(k.refreshTokensAsync_end, {
+              success: P.success
+            }), e.publishEvent(W.eventNames.token_renewed, { reason: "REFRESH_TOKEN" }), { tokens: P.data, status: "LOGGED_IN" };
           } else
-            return e.publishEvent(p.refreshTokensAsync_silent_error, {
+            return e.publishEvent(k.refreshTokensAsync_silent_error, {
               message: "bad request",
-              tokenResponse: I
-            }), I.status >= 400 && I.status < 500 ? (n(null), e.publishEvent(p.refreshTokensAsync_error, {
-              message: `session lost: ${I.status}`
-            }), { tokens: null, status: "SESSION_LOST" }) : await G(e)(
+              tokenResponse: P
+            }), P.status >= 400 && P.status < 500 ? (n(null), e.publishEvent(k.refreshTokensAsync_error, {
+              message: `session lost: ${P.status}`
+            }), { tokens: null, status: "SESSION_LOST" }) : await z(e)(
               n,
               l,
-              d,
+              h,
               o,
               i,
               r
@@ -1017,75 +1058,75 @@ const J = (e, n, t = null, s = null) => {
       }
     }
   } catch (g) {
-    return console.error(g), e.publishEvent(p.refreshTokensAsync_silent_error, {
+    return console.error(g), e.publishEvent(k.refreshTokensAsync_silent_error, {
       message: "exception",
       exception: g.message
-    }), new Promise((y, S) => {
+    }), new Promise((y, A) => {
       setTimeout(() => {
-        G(e)(
+        z(e)(
           n,
           l,
-          d,
+          h,
           o,
           i,
           r
-        ).then(y).catch(S);
+        ).then(y).catch(A);
       }, 1e3);
     });
   }
-}, ue = (e, n, t) => (s = null, o = null, i = null) => {
+}, ge = (e, n, t) => (s = null, o = null, i = null) => {
   if (!n.silent_redirect_uri || !n.silent_login_uri)
     return Promise.resolve(null);
   try {
-    t(p.silentLoginAsync_begin, {});
+    t(k.silentLoginAsync_begin, {});
     let r = "";
     if (o && (s == null && (s = {}), s.state = o), i != null && (s == null && (s = {}), s.scope = i), s != null)
-      for (const [l, d] of Object.entries(s))
-        d != null && (r === "" ? r = `?${encodeURIComponent(l)}=${encodeURIComponent(d)}` : r += `&${encodeURIComponent(l)}=${encodeURIComponent(d)}`);
+      for (const [l, h] of Object.entries(s))
+        h != null && (r === "" ? r = `?${encodeURIComponent(l)}=${encodeURIComponent(h)}` : r += `&${encodeURIComponent(l)}=${encodeURIComponent(h)}`);
     const a = n.silent_login_uri + r, c = a.indexOf("/", a.indexOf("//") + 2), f = a.substring(0, c), u = document.createElement("iframe");
-    return u.width = "0px", u.height = "0px", u.id = `${e}_oidc_iframe`, u.setAttribute("src", a), u.style.display = "none", document.body.appendChild(u), new Promise((l, d) => {
+    return u.width = "0px", u.height = "0px", u.id = `${e}_oidc_iframe`, u.setAttribute("src", a), u.style.display = "none", document.body.appendChild(u), new Promise((l, h) => {
       let _ = !1;
-      const w = () => {
-        window.removeEventListener("message", A), u.remove(), _ = !0;
-      }, A = (g) => {
+      const m = () => {
+        window.removeEventListener("message", p), u.remove(), _ = !0;
+      }, p = (g) => {
         if (g.origin === f && g.source === u.contentWindow) {
-          const y = `${e}_oidc_tokens:`, S = `${e}_oidc_error:`, T = `${e}_oidc_exception:`, v = g.data;
-          if (v && typeof v == "string" && !_) {
-            if (v.startsWith(y)) {
-              const h = JSON.parse(g.data.replace(y, ""));
-              t(p.silentLoginAsync_end, {}), l(h), w();
-            } else if (v.startsWith(S)) {
-              const h = JSON.parse(g.data.replace(S, ""));
-              t(p.silentLoginAsync_error, h), l({ error: "oidc_" + h.error, tokens: null, sessionState: null }), w();
-            } else if (v.startsWith(T)) {
-              const h = JSON.parse(g.data.replace(T, ""));
-              t(p.silentLoginAsync_error, h), d(new Error(h.error)), w();
+          const y = `${e}_oidc_tokens:`, A = `${e}_oidc_error:`, S = `${e}_oidc_exception:`, O = g.data;
+          if (O && typeof O == "string" && !_) {
+            if (O.startsWith(y)) {
+              const T = JSON.parse(g.data.replace(y, ""));
+              t(k.silentLoginAsync_end, {}), l(T), m();
+            } else if (O.startsWith(A)) {
+              const T = JSON.parse(g.data.replace(A, ""));
+              t(k.silentLoginAsync_error, T), l({ error: "oidc_" + T.error, tokens: null, sessionState: null }), m();
+            } else if (O.startsWith(S)) {
+              const T = JSON.parse(g.data.replace(S, ""));
+              t(k.silentLoginAsync_error, T), h(new Error(T.error)), m();
             }
           }
         }
       };
       try {
-        window.addEventListener("message", A);
+        window.addEventListener("message", p);
         const g = n.silent_login_timeout;
         setTimeout(() => {
-          _ || (w(), t(p.silentLoginAsync_error, { reason: "timeout" }), d(new Error("timeout")));
+          _ || (m(), t(k.silentLoginAsync_error, { reason: "timeout" }), h(new Error("timeout")));
         }, g);
       } catch (g) {
-        w(), t(p.silentLoginAsync_error, g), d(g);
+        m(), t(k.silentLoginAsync_error, g), h(g);
       }
     });
   } catch (r) {
-    throw t(p.silentLoginAsync_error, r), r;
+    throw t(k.silentLoginAsync_error, r), r;
   }
-}, fn = (e, n, t, s, o) => (i = null, r = void 0) => {
+}, dn = (e, n, t, s, o) => (i = null, r = void 0) => {
   i = { ...i };
-  const a = (f, u, l) => ue(n, t, s.bind(o))(
+  const a = (f, u, l) => ge(n, t, s.bind(o))(
     f,
     u,
     l
   );
   return (async () => {
-    o.timeoutId && D.clearTimeout(o.timeoutId);
+    o.timeoutId && $.clearTimeout(o.timeoutId);
     let f;
     i && "state" in i && (f = i.state, delete i.state);
     try {
@@ -1098,13 +1139,13 @@ const J = (e, n, t = null, s = null) => {
         r
       );
       if (l)
-        return o.tokens = l.tokens, s(p.token_acquired, {}), o.timeoutId = J(o, o.tokens.expiresAt, i, r), {};
+        return o.tokens = l.tokens, s(k.token_acquired, {}), o.timeoutId = G(o, o.tokens.expiresAt, i, r), {};
     } catch (u) {
       return u;
     }
   })();
-}, dn = (e, n, t) => (s, o, i, r = !1) => {
-  const a = (c, f = void 0, u = void 0) => ue(e.configurationName, t, e.publishEvent.bind(e))(
+}, gn = (e, n, t) => (s, o, i, r = !1) => {
+  const a = (c, f = void 0, u = void 0) => ge(e.configurationName, t, e.publishEvent.bind(e))(
     c,
     f,
     u
@@ -1116,18 +1157,18 @@ const J = (e, n, t = null, s = null) => {
         const l = e.tokens;
         if (l === null)
           return;
-        const d = l.idToken, _ = l.idTokenPayload;
+        const h = l.idToken, _ = l.idTokenPayload;
         return a({
           prompt: "none",
-          id_token_hint: d,
+          id_token_hint: h,
           scope: t.scope || "openid"
-        }).then((w) => {
-          if (w.error)
-            throw new Error(w.error);
-          const A = w.tokens.idTokenPayload;
-          if (_.sub === A.sub) {
-            const g = w.sessionState;
-            e.checkSessionIFrame.start(w.sessionState), _.sid === A.sid ? console.debug(
+        }).then((m) => {
+          if (m.error)
+            throw new Error(m.error);
+          const p = m.tokens.idTokenPayload;
+          if (_.sub === p.sub) {
+            const g = m.sessionState;
+            e.checkSessionIFrame.start(m.sessionState), _.sid === p.sid ? console.debug(
               "SessionMonitor._callback: Same sub still logged in at OP, restarting check session iframe; session_state:",
               g
             ) : console.debug(
@@ -1137,18 +1178,18 @@ const J = (e, n, t = null, s = null) => {
           } else
             console.debug(
               "SessionMonitor._callback: Different subject signed into OP:",
-              A.sub
+              p.sub
             );
-        }).catch(async (w) => {
+        }).catch(async (m) => {
           console.warn(
             "SessionMonitor._callback: Silent login failed, logging out other tabs:",
-            w
+            m
           );
-          for (const [, A] of Object.entries(n))
-            await A.logoutOtherTabAsync(t.client_id, _.sub);
+          for (const [, p] of Object.entries(n))
+            await p.logoutOtherTabAsync(t.client_id, _.sub);
         });
       };
-      e.checkSessionIFrame = new De(
+      e.checkSessionIFrame = new $e(
         u,
         o,
         s
@@ -1160,7 +1201,7 @@ const J = (e, n, t = null, s = null) => {
     } else
       c(null);
   });
-}, hn = (e) => !!(e.os === "iOS" && e.osVersion.startsWith("12") || e.os === "Mac OS X" && e.osVersion.startsWith("10_15_6")), gn = (e) => {
+}, hn = (e) => !!(e.os === "iOS" && e.osVersion.startsWith("12") || e.os === "Mac OS X" && e.osVersion.startsWith("10_15_6")), yn = (e) => {
   const n = e.appVersion, t = e.userAgent, s = "-";
   let o = s;
   const i = [
@@ -1220,7 +1261,7 @@ const J = (e, n, t = null, s = null) => {
     osVersion: r
   };
 };
-function yn() {
+function kn() {
   const e = navigator.userAgent;
   let n, t = e.match(/(opera|chrome|safari|firefox|msie|trident(?=\/))\/?\s*(\d+)/i) || [];
   if (/trident/i.test(t[1]))
@@ -1238,23 +1279,23 @@ function yn() {
     version: t[1]
   };
 }
-const kn = () => {
-  const { name: e, version: n } = yn();
+const mn = () => {
+  const { name: e, version: n } = kn();
   if (e === "chrome" && parseInt(n) <= 70 || e === "opera" && (!n || parseInt(n.split(".")[0]) < 80) || e === "ie")
     return !1;
-  const t = gn(navigator);
+  const t = yn(navigator);
   return !hn(t);
-}, mn = async (e) => {
+}, wn = async (e) => {
   let n;
   if (e.tokens != null)
     return !1;
-  e.publishEvent(p.tryKeepExistingSessionAsync_begin, {});
+  e.publishEvent(k.tryKeepExistingSessionAsync_begin, {});
   try {
     const t = e.configuration, s = await e.initAsync(
       t.authority,
       t.authority_configuration
     );
-    if (n = await C(t, e.configurationName), n) {
+    if (n = await x(t, e.configurationName), n) {
       const { tokens: o } = await n.initAsync(
         s,
         "tryKeepExistingSessionAsync",
@@ -1263,7 +1304,7 @@ const kn = () => {
       if (o) {
         n.startKeepAliveServiceWorker(), e.tokens = o;
         const i = n.getLoginParams(e.configurationName);
-        e.timeoutId = J(
+        e.timeoutId = G(
           e,
           e.tokens.expiresAt,
           i.extras,
@@ -1274,24 +1315,28 @@ const kn = () => {
           s.checkSessionIframe,
           t.client_id,
           r
-        ), t.preload_user_info && await e.userInfoAsync(), e.publishEvent(p.tryKeepExistingSessionAsync_end, {
+        ), t.preload_user_info && await e.userInfoAsync(), e.publishEvent(k.tryKeepExistingSessionAsync_end, {
           success: !0,
           message: "tokens inside ServiceWorker are valid"
         }), !0;
       }
-      e.publishEvent(p.tryKeepExistingSessionAsync_end, {
+      e.publishEvent(k.tryKeepExistingSessionAsync_end, {
         success: !1,
         message: "no exiting session found"
       });
     } else {
-      t.service_worker_relative_url && e.publishEvent(p.service_worker_not_supported_by_browser, {
+      t.service_worker_relative_url && e.publishEvent(k.service_worker_not_supported_by_browser, {
         message: "service worker is not supported by this browser"
       });
-      const o = N(e.configurationName, t.storage ?? sessionStorage), { tokens: i } = await o.initAsync();
+      const o = C(
+        e.configurationName,
+        t.storage ?? sessionStorage,
+        t.login_state_storage ?? t.storage ?? sessionStorage
+      ), { tokens: i } = await o.initAsync();
       if (i) {
-        e.tokens = ie(i, null, t.token_renew_mode);
+        e.tokens = ue(i, null, t.token_renew_mode);
         const r = o.getLoginParams();
-        e.timeoutId = J(
+        e.timeoutId = G(
           e,
           e.tokens.expiresAt,
           r.extras,
@@ -1302,23 +1347,23 @@ const kn = () => {
           s.checkSessionIframe,
           t.client_id,
           a
-        ), t.preload_user_info && await e.userInfoAsync(), e.publishEvent(p.tryKeepExistingSessionAsync_end, {
+        ), t.preload_user_info && await e.userInfoAsync(), e.publishEvent(k.tryKeepExistingSessionAsync_end, {
           success: !0,
           message: "tokens inside storage are valid"
         }), !0;
       }
     }
-    return e.publishEvent(p.tryKeepExistingSessionAsync_end, {
+    return e.publishEvent(k.tryKeepExistingSessionAsync_end, {
       success: !1,
       message: n ? "service worker sessions not retrieved" : "session storage sessions not retrieved"
     }), !1;
   } catch (t) {
     return console.error(t), n && await n.clearAsync(), e.publishEvent(
-      p.tryKeepExistingSessionAsync_error,
+      k.tryKeepExistingSessionAsync_error,
       "tokens inside ServiceWorker are invalid"
     ), !1;
   }
-}, Ce = (e) => {
+}, Le = (e) => {
   const n = e.match(
     // eslint-disable-next-line no-useless-escape
     /^([a-z][\w-]+\:)\/\/(([^:\/?#]*)(?:\:([0-9]+))?)([\/]{0,1}[^?#]*)(\?[^#]*|)(#.*|)$/
@@ -1341,75 +1386,80 @@ const kn = () => {
     hash: s
   };
 }, Cn = (e) => {
-  const n = Ce(e);
+  const n = Le(e);
   let { path: t } = n;
   t.endsWith("/") && (t = t.slice(0, -1));
   let { hash: s } = n;
   return s === "#_=_" && (s = ""), s && (t += s), t;
-}, se = (e) => {
-  const n = Ce(e), { search: t } = n;
-  return wn(t);
-}, wn = (e) => {
+}, ce = (e) => {
+  const n = Le(e), { search: t } = n;
+  return pn(t);
+}, pn = (e) => {
   const n = {};
   let t, s, o;
   const i = e.split("&");
   for (s = 0, o = i.length; s < o; s++)
     t = i[s].split("="), n[decodeURIComponent(t[0])] = decodeURIComponent(t[1]);
   return n;
-}, pn = (e, n, t, s, o) => (i = void 0, r = null, a = !1, c = void 0) => {
+}, An = (e, n, t, s, o) => (i = void 0, r = null, a = !1, c = void 0) => {
   const f = r;
   return r = { ...r }, (async () => {
     const l = i || o.getPath();
-    if ("state" in r || (r.state = ne(16)), t(p.loginAsync_begin, {}), r)
-      for (const d of Object.keys(r))
-        d.endsWith(":token_request") && delete r[d];
+    if ("state" in r || (r.state = re(16)), t(k.loginAsync_begin, {}), r)
+      for (const h of Object.keys(r))
+        h.endsWith(":token_request") && delete r[h];
     try {
-      const d = a ? n.silent_redirect_uri : n.redirect_uri;
+      const h = a ? n.silent_redirect_uri : n.redirect_uri;
       c || (c = n.scope);
       const _ = n.extras ? { ...n.extras, ...r } : r;
-      _.nonce || (_.nonce = ne(12));
-      const w = { nonce: _.nonce }, A = await C(n, e), g = await s(
+      _.nonce || (_.nonce = re(12));
+      const m = { nonce: _.nonce }, p = await x(n, e), g = await s(
         n.authority,
         n.authority_configuration
       );
       let y;
-      if (A)
-        A.setLoginParams({ callbackPath: l, extras: f, scope: c }), await A.initAsync(g, "loginAsync", n), await A.setNonceAsync(w), A.startKeepAliveServiceWorker(), y = A;
+      if (p)
+        p.setLoginParams({ callbackPath: l, extras: f, scope: c }), await p.initAsync(g, "loginAsync", n), await p.setNonceAsync(m), p.startKeepAliveServiceWorker(), y = p;
       else {
-        const T = N(e, n.storage ?? sessionStorage);
-        T.setLoginParams({ callbackPath: l, extras: f, scope: c }), await T.setNonceAsync(w), y = T;
+        const S = C(
+          e,
+          n.storage ?? sessionStorage,
+          n.login_state_storage ?? n.storage ?? sessionStorage
+        );
+        S.setLoginParams({ callbackPath: l, extras: f, scope: c }), await S.setNonceAsync(m), y = S;
       }
-      const S = {
+      const A = {
         client_id: n.client_id,
-        redirect_uri: d,
+        redirect_uri: h,
         scope: c,
         response_type: "code",
         ..._
       };
-      await un(y, o)(
+      await _n(y, o)(
         g.authorizationEndpoint,
-        S
+        A
       );
-    } catch (d) {
-      throw t(p.loginAsync_error, d), d;
+    } catch (h) {
+      throw t(k.loginAsync_error, h), h;
     }
   })();
-}, An = (e) => async (n = !1) => {
+}, Sn = (e) => async (n = !1) => {
   try {
-    e.publishEvent(p.loginCallbackAsync_begin, {});
+    e.publishEvent(k.loginCallbackAsync_begin, {});
     const t = e.configuration, s = t.client_id, o = n ? t.silent_redirect_uri : t.redirect_uri, i = t.authority, r = t.token_request_timeout, a = await e.initAsync(
       i,
       t.authority_configuration
-    ), c = e.location.getCurrentHref(), f = se(c), u = f.session_state, l = await C(t, e.configurationName);
-    let d, _, w, A;
+    ), c = e.location.getCurrentHref(), f = ce(c), u = f.session_state, l = await x(t, e.configurationName);
+    let h, _, m, p;
     if (l)
-      await l.initAsync(a, "loginCallbackAsync", t), await l.setSessionStateAsync(u), _ = await l.getNonceAsync(), w = l.getLoginParams(), A = await l.getStateAsync(), l.startKeepAliveServiceWorker(), d = l;
+      await l.initAsync(a, "loginCallbackAsync", t), await l.setSessionStateAsync(u), _ = await l.getNonceAsync(), m = l.getLoginParams(), p = await l.getStateAsync(), l.startKeepAliveServiceWorker(), h = l;
     else {
-      const m = N(
+      const v = C(
         e.configurationName,
-        t.storage ?? sessionStorage
+        t.storage ?? sessionStorage,
+        t.login_state_storage ?? t.storage ?? sessionStorage
       );
-      await m.setSessionStateAsync(u), _ = await m.getNonceAsync(), w = m.getLoginParams(), A = await m.getStateAsync(), d = m;
+      await v.setSessionStateAsync(u), _ = await v.getNonceAsync(), m = v.getLoginParams(), p = await v.getStateAsync(), h = v;
     }
     if (f.error || f.error_description)
       throw new Error(
@@ -1419,8 +1469,8 @@ const kn = () => {
       throw console.error(), new Error(
         `Issuer not valid (expected: ${a.issuer}, received: ${f.iss})`
       );
-    if (f.state && f.state !== A)
-      throw new Error(`State not valid (expected: ${A}, received: ${f.state})`);
+    if (f.state && f.state !== p)
+      throw new Error(`State not valid (expected: ${p}, received: ${f.state})`);
     const g = {
       code: f.code,
       grant_type: "authorization_code",
@@ -1428,78 +1478,86 @@ const kn = () => {
       redirect_uri: o
     }, y = {};
     if (t.token_request_extras)
-      for (const [m, W] of Object.entries(t.token_request_extras))
-        y[m] = W;
-    if (w?.extras)
-      for (const [m, W] of Object.entries(w.extras))
-        m.endsWith(":token_request") && (y[m.replace(":token_request", "")] = W);
-    const S = a.tokenEndpoint, T = {};
+      for (const [v, d] of Object.entries(t.token_request_extras))
+        y[v] = d;
+    if (m?.extras)
+      for (const [v, d] of Object.entries(m.extras))
+        v.endsWith(":token_request") && (y[v.replace(":token_request", "")] = d);
+    const A = a.tokenEndpoint, S = {};
     if (t.demonstrating_proof_of_possession)
       if (l)
-        T.DPoP = `DPOP_SECURED_BY_OIDC_SERVICE_WORKER_${e.configurationName}`;
+        S.DPoP = `DPOP_SECURED_BY_OIDC_SERVICE_WORKER_${e.configurationName}`;
       else {
-        const m = await nn(window)(
+        const v = await tn(window)(
           t.demonstrating_proof_of_possession_configuration.generateKeyAlgorithm
         );
-        await N(e.configurationName, t.storage).setDemonstratingProofOfPossessionJwkAsync(m), T.DPoP = await be(window)(
+        await C(
+          e.configurationName,
+          t.storage,
+          t.login_state_storage ?? t.storage
+        ).setDemonstratingProofOfPossessionJwkAsync(v), S.DPoP = await Ne(window)(
           t.demonstrating_proof_of_possession_configuration
-        )(m, "POST", S);
+        )(v, "POST", A);
       }
-    const v = await _n(d)(
-      S,
+    const O = await fn(h)(
+      A,
       { ...g, ...y },
-      T,
+      S,
       e.configuration.token_renew_mode,
       r
     );
-    if (!v.success)
+    if (!O.success)
       throw new Error("Token request failed");
-    let h;
-    const P = v.data.tokens, x = v.data.demonstratingProofOfPossessionNonce;
-    if (v.data.state !== y.state)
+    let T;
+    const N = O.data.tokens, w = O.data.demonstratingProofOfPossessionNonce;
+    if (O.data.state !== y.state)
       throw new Error("state is not valid");
-    const { isValid: k, reason: b } = Se(
-      P,
+    const { isValid: F, reason: L } = Ee(
+      N,
       _.nonce,
       a
     );
-    if (!k)
-      throw new Error(`Tokens are not OpenID valid, reason: ${b}`);
+    if (!F)
+      throw new Error(`Tokens are not OpenID valid, reason: ${L}`);
     if (l) {
-      if (P.refreshToken && !P.refreshToken.includes("SECURED_BY_OIDC_SERVICE_WORKER"))
+      if (N.refreshToken && !N.refreshToken.includes("SECURED_BY_OIDC_SERVICE_WORKER"))
         throw new Error("Refresh token should be hidden by service worker");
-      if (x && P?.accessToken.includes("SECURED_BY_OIDC_SERVICE_WORKER"))
+      if (w && N?.accessToken.includes("SECURED_BY_OIDC_SERVICE_WORKER"))
         throw new Error(
           "Demonstration of proof of possession require Access token not hidden by service worker"
         );
     }
     if (l)
-      await l.initAsync(a, "syncTokensAsync", t), h = l.getLoginParams(), x && await l.setDemonstratingProofOfPossessionNonce(
-        x
+      await l.initAsync(a, "syncTokensAsync", t), T = l.getLoginParams(), w && await l.setDemonstratingProofOfPossessionNonce(
+        w
       );
     else {
-      const m = N(e.configurationName, t.storage);
-      h = m.getLoginParams(), x && await m.setDemonstratingProofOfPossessionNonce(x);
+      const v = C(
+        e.configurationName,
+        t.storage,
+        t.login_state_storage ?? t.storage
+      );
+      T = v.getLoginParams(), w && await v.setDemonstratingProofOfPossessionNonce(w);
     }
     return await e.startCheckSessionAsync(
       a.checkSessionIframe,
       s,
       u,
       n
-    ), e.publishEvent(p.loginCallbackAsync_end, {}), {
-      tokens: P,
+    ), e.publishEvent(k.loginCallbackAsync_end, {}), {
+      tokens: N,
       state: "request.state",
-      callbackPath: h.callbackPath,
+      callbackPath: T.callbackPath,
       scope: f.scope,
-      extras: h.extras
+      extras: T.extras
     };
   } catch (t) {
-    throw console.error(t), e.publishEvent(p.loginCallbackAsync_error, t), t;
+    throw console.error(t), e.publishEvent(k.loginCallbackAsync_error, t), t;
   }
-}, we = {
+}, Se = {
   access_token: "access_token",
   refresh_token: "refresh_token"
-}, Q = (e, n) => {
+}, se = (e, n) => {
   const t = {};
   if (e) {
     for (const [s, o] of Object.entries(e))
@@ -1510,7 +1568,7 @@ const kn = () => {
     return t;
   }
   return t;
-}, Sn = (e) => {
+}, Tn = (e) => {
   const n = {};
   if (e) {
     for (const [t, s] of Object.entries(e))
@@ -1518,11 +1576,15 @@ const kn = () => {
     return n;
   }
   return n;
-}, Tn = (e) => async (n) => {
-  D.clearTimeout(e.timeoutId), e.timeoutId = null, e.checkSessionIFrame && e.checkSessionIFrame.stop();
-  const t = await C(e.configuration, e.configurationName);
-  t ? await t.clearAsync(n) : await N(e.configurationName, e.configuration.storage).clearAsync(n), e.tokens = null, e.userInfo = null;
-}, vn = (e, n, t, s, o) => async (i = void 0, r = null) => {
+}, vn = (e) => async (n) => {
+  $.clearTimeout(e.timeoutId), e.timeoutId = null, e.checkSessionIFrame && e.checkSessionIFrame.stop();
+  const t = await x(e.configuration, e.configurationName);
+  t ? await t.clearAsync(n) : await C(
+    e.configurationName,
+    e.configuration.storage,
+    e.configuration.login_state_storage ?? e.configuration.storage
+  ).clearAsync(n), e.tokens = null, e.userInfo = null;
+}, En = (e, n, t, s, o) => async (i = void 0, r = null) => {
   const a = e.configuration, c = await e.initAsync(
     a.authority,
     a.authority_configuration
@@ -1531,33 +1593,33 @@ const kn = () => {
   const f = i ?? o.getPath();
   let u = !1;
   i && (u = i.includes("https://") || i.includes("http://"));
-  const l = u ? i : o.getOrigin() + f, d = e.tokens ? e.tokens.idToken : "";
+  const l = u ? i : o.getOrigin() + f, h = e.tokens ? e.tokens.idToken : "";
   try {
     const y = c.revocationEndpoint;
     if (y) {
-      const S = [], T = e.tokens ? e.tokens.accessToken : null;
-      if (T && a.logout_tokens_to_invalidate.includes(we.access_token)) {
-        const h = Q(r, ":revoke_access_token"), P = ke(t)(
+      const A = [], S = e.tokens ? e.tokens.accessToken : null;
+      if (S && a.logout_tokens_to_invalidate.includes(Se.access_token)) {
+        const T = se(r, ":revoke_access_token"), N = pe(t)(
           y,
-          T,
-          te.access_token,
+          S,
+          ae.access_token,
           a.client_id,
-          h
+          T
         );
-        S.push(P);
+        A.push(N);
       }
-      const v = e.tokens ? e.tokens.refreshToken : null;
-      if (v && a.logout_tokens_to_invalidate.includes(we.refresh_token)) {
-        const h = Q(r, ":revoke_refresh_token"), P = ke(t)(
+      const O = e.tokens ? e.tokens.refreshToken : null;
+      if (O && a.logout_tokens_to_invalidate.includes(Se.refresh_token)) {
+        const T = se(r, ":revoke_refresh_token"), N = pe(t)(
           y,
-          v,
-          te.refresh_token,
+          O,
+          ae.refresh_token,
           a.client_id,
-          h
+          T
         );
-        S.push(P);
+        A.push(N);
       }
-      S.length > 0 && await Promise.all(S);
+      A.length > 0 && await Promise.all(A);
     }
   } catch (y) {
     s.warn(
@@ -1567,20 +1629,20 @@ const kn = () => {
   const _ = e.tokens?.idTokenPayload?.sub ?? null;
   await e.destroyAsync("LOGGED_OUT");
   for (const [, y] of Object.entries(n))
-    y !== e ? await e.logoutSameTabAsync(e.configuration.client_id, _) : e.publishEvent(p.logout_from_same_tab, {});
-  const w = Q(r, ":oidc");
-  if (w && w.no_reload === "true")
+    y !== e ? await e.logoutSameTabAsync(e.configuration.client_id, _) : e.publishEvent(k.logout_from_same_tab, {});
+  const m = se(r, ":oidc");
+  if (m && m.no_reload === "true")
     return;
-  const g = Sn(r);
+  const g = Tn(r);
   if (c.endSessionEndpoint) {
-    "id_token_hint" in g || (g.id_token_hint = d), !("post_logout_redirect_uri" in g) && i !== null && (g.post_logout_redirect_uri = l);
+    "id_token_hint" in g || (g.id_token_hint = h), !("post_logout_redirect_uri" in g) && i !== null && (g.post_logout_redirect_uri = l);
     let y = "";
-    for (const [S, T] of Object.entries(g))
-      T != null && (y === "" ? y += "?" : y += "&", y += `${S}=${encodeURIComponent(T)}`);
+    for (const [A, S] of Object.entries(g))
+      S != null && (y === "" ? y += "?" : y += "&", y += `${A}=${encodeURIComponent(S)}`);
     o.open(`${c.endSessionEndpoint}${y}`);
   } else
     o.reload();
-}, xe = (e, n, t = !1) => async (...s) => {
+}, De = (e, n, t = !1) => async (...s) => {
   const [o, i, ...r] = s, a = i ? { ...i } : { method: "GET" };
   let c = new Headers();
   a.headers && (c = a.headers instanceof Headers ? a.headers : new Headers(a.headers));
@@ -1591,7 +1653,7 @@ const kn = () => {
       refresh_time_before_tokens_expiration_in_second: n.configuration.refresh_time_before_tokens_expiration_in_second
     },
     syncTokensInfoAsync: async () => {
-      const { status: _ } = await le(n)(
+      const { status: _ } = await de(n)(
         n.configuration,
         n.configurationName,
         n.tokens,
@@ -1600,7 +1662,7 @@ const kn = () => {
       return _;
     },
     renewTokensAsync: n.renewTokensAsync.bind(n)
-  }, l = (await Ae(f))?.tokens?.accessToken;
+  }, l = (await ve(f))?.tokens?.accessToken;
   if (c.has("Accept") || c.set("Accept", "application/json"), l) {
     if (n.configuration.demonstrating_proof_of_possession && t) {
       const _ = await n.generateDemonstrationOfProofOfPossessionAsync(
@@ -1613,9 +1675,9 @@ const kn = () => {
       c.set("Authorization", `Bearer ${l}`);
     a.credentials || (a.credentials = "same-origin");
   }
-  const d = { ...a, headers: c };
-  return await e(o, d, ...r);
-}, En = (e) => async (n = !1, t = !1) => {
+  const h = { ...a, headers: c };
+  return await e(o, h, ...r);
+}, On = (e) => async (n = !1, t = !1) => {
   if (e.userInfo != null && !n)
     return e.userInfo;
   const s = !n && e.configuration.storage?.getItem(`oidc.${e.configurationName}.userInfo`);
@@ -1625,49 +1687,49 @@ const kn = () => {
     o.authority,
     o.authority_configuration
   )).userInfoEndpoint, c = await (async () => {
-    const u = await xe(fetch, e, t)(r);
+    const u = await De(fetch, e, t)(r);
     return u.status !== 200 ? null : u.json();
   })();
   return e.userInfo = c, c && e.configuration.storage?.setItem(
     `oidc.${e.configurationName}.userInfo`,
     JSON.stringify(c)
   ), c;
-}, On = () => fetch;
-class oe {
+}, bn = () => fetch;
+class le {
   constructor(n) {
     this.authorizationEndpoint = n.authorization_endpoint, this.tokenEndpoint = n.token_endpoint, this.revocationEndpoint = n.revocation_endpoint, this.userInfoEndpoint = n.userinfo_endpoint, this.checkSessionIframe = n.check_session_iframe, this.issuer = n.issuer, this.endSessionEndpoint = n.end_session_endpoint;
   }
 }
-const R = {}, bn = (e, n = new j()) => (t, s = "default") => (R[s] || (R[s] = new L(t, s, e, n)), R[s]), Pn = async (e) => {
+const R = {}, Pn = (e, n = new Q()) => (t, s = "default") => (R[s] || (R[s] = new W(t, s, e, n)), R[s]), In = async (e) => {
   const { parsedTokens: n, callbackPath: t, extras: s, scope: o } = await e.loginCallbackAsync();
-  return e.timeoutId = J(e, n.expiresAt, s, o), { callbackPath: t };
-}, In = (e) => Math.floor(Math.random() * e), M = class M {
-  constructor(n, t = "default", s, o = new j()) {
+  return e.timeoutId = G(e, n.expiresAt, s, o), { callbackPath: t };
+}, Nn = (e) => Math.floor(Math.random() * e), J = class J {
+  constructor(n, t = "default", s, o = new Q()) {
     this.initPromise = null, this.tryKeepExistingSessionPromise = null, this.loginPromise = null, this.loginCallbackPromise = null, this.loginCallbackWithAutoTokensRenewPromise = null, this.userInfoPromise = null, this.renewTokensPromise = null, this.logoutPromise = null;
     let i = n.silent_login_uri;
     n.silent_redirect_uri && !n.silent_login_uri && (i = `${n.silent_redirect_uri.replace("-callback", "").replace("callback", "")}-login`);
     let r = n.refresh_time_before_tokens_expiration_in_second ?? 120;
-    r > 60 && (r = r - Math.floor(Math.random() * 40)), this.location = o ?? new j(), this.configuration = {
+    r > 60 && (r = r - Math.floor(Math.random() * 40)), this.location = o ?? new Q(), this.configuration = {
       ...n,
       silent_login_uri: i,
-      token_automatic_renew_mode: n.token_automatic_renew_mode ?? B.AutomaticBeforeTokenExpiration,
+      token_automatic_renew_mode: n.token_automatic_renew_mode ?? H.AutomaticBeforeTokenExpiration,
       monitor_session: n.monitor_session ?? !1,
       refresh_time_before_tokens_expiration_in_second: r,
       silent_login_timeout: n.silent_login_timeout ?? 12e3,
-      token_renew_mode: n.token_renew_mode ?? Z.access_token_or_id_token_invalid,
+      token_renew_mode: n.token_renew_mode ?? oe.access_token_or_id_token_invalid,
       demonstrating_proof_of_possession: n.demonstrating_proof_of_possession ?? !1,
       authority_timeout_wellknowurl_in_millisecond: n.authority_timeout_wellknowurl_in_millisecond ?? 1e4,
       logout_tokens_to_invalidate: n.logout_tokens_to_invalidate ?? [
         "access_token",
         "refresh_token"
       ],
-      service_worker_activate: n.service_worker_activate ?? kn,
-      demonstrating_proof_of_possession_configuration: n.demonstrating_proof_of_possession_configuration ?? je,
+      service_worker_activate: n.service_worker_activate ?? mn,
+      demonstrating_proof_of_possession_configuration: n.demonstrating_proof_of_possession_configuration ?? qe,
       preload_user_info: n.preload_user_info ?? !1
-    }, this.getFetch = s ?? On, this.configurationName = t, this.tokens = null, this.userInfo = null, this.events = [], this.timeoutId = null, this.loginCallbackWithAutoTokensRenewAsync.bind(this), this.initAsync.bind(this), this.loginCallbackAsync.bind(this), this.subscribeEvents.bind(this), this.removeEventSubscription.bind(this), this.publishEvent.bind(this), this.destroyAsync.bind(this), this.logoutAsync.bind(this), this.renewTokensAsync.bind(this), this.initAsync(this.configuration.authority, this.configuration.authority_configuration);
+    }, this.getFetch = s ?? bn, this.configurationName = t, this.tokens = null, this.userInfo = null, this.events = [], this.timeoutId = null, this.loginCallbackWithAutoTokensRenewAsync.bind(this), this.initAsync.bind(this), this.loginCallbackAsync.bind(this), this.subscribeEvents.bind(this), this.removeEventSubscription.bind(this), this.publishEvent.bind(this), this.destroyAsync.bind(this), this.logoutAsync.bind(this), this.renewTokensAsync.bind(this), this.initAsync(this.configuration.authority, this.configuration.authority_configuration);
   }
   subscribeEvents(n) {
-    const t = In(9999999999999).toString();
+    const t = Nn(9999999999999).toString();
     return this.events.push({ id: t, func: n }), t;
   }
   removeEventSubscription(n) {
@@ -1688,7 +1750,7 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
   }
   _silentLoginCallbackFromIFrame() {
     if (this.configuration.silent_redirect_uri && this.configuration.silent_login_uri) {
-      const n = this.location, t = se(n.getCurrentHref());
+      const n = this.location, t = ce(n.getCurrentHref());
       window.parent.postMessage(
         `${this.configurationName}_oidc_tokens:${JSON.stringify({ tokens: this.tokens, sessionState: t.session_state })}`,
         n.getOrigin()
@@ -1697,7 +1759,7 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
   }
   _silentLoginErrorCallbackFromIFrame(n = null) {
     if (this.configuration.silent_redirect_uri && this.configuration.silent_login_uri) {
-      const t = this.location, s = se(t.getCurrentHref());
+      const t = this.location, s = ce(t.getCurrentHref());
       s.error ? window.parent.postMessage(
         `${this.configurationName}_oidc_error:${JSON.stringify({ error: s.error })}`,
         t.getOrigin()
@@ -1719,7 +1781,7 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
       return this.initPromise;
     const s = async () => {
       if (t != null)
-        return new oe({
+        return new le({
           authorization_endpoint: t.authorization_endpoint,
           end_session_endpoint: t.end_session_endpoint,
           revocation_endpoint: t.revocation_endpoint,
@@ -1728,8 +1790,8 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
           check_session_iframe: t.check_session_iframe,
           issuer: t.issuer
         });
-      const i = await C(this.configuration, this.configurationName) ? this.configuration.storage || window.sessionStorage : this.configuration.storage;
-      return await cn(this.getFetch())(
+      const i = await x(this.configuration, this.configurationName) ? this.configuration.storage || window.sessionStorage : this.configuration.storage;
+      return await ln(this.getFetch())(
         n,
         this.configuration.authority_time_cache_wellknowurl_in_second ?? 3600,
         i,
@@ -1741,12 +1803,12 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
     });
   }
   async tryKeepExistingSessionAsync() {
-    return this.tryKeepExistingSessionPromise !== null ? this.tryKeepExistingSessionPromise : (this.tryKeepExistingSessionPromise = mn(this), this.tryKeepExistingSessionPromise.finally(() => {
+    return this.tryKeepExistingSessionPromise !== null ? this.tryKeepExistingSessionPromise : (this.tryKeepExistingSessionPromise = wn(this), this.tryKeepExistingSessionPromise.finally(() => {
       this.tryKeepExistingSessionPromise = null;
     }));
   }
   async startCheckSessionAsync(n, t, s, o = !1) {
-    await dn(this, R, this.configuration)(
+    await gn(this, R, this.configuration)(
       n,
       t,
       s,
@@ -1754,13 +1816,13 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
     );
   }
   async loginAsync(n = void 0, t = null, s = !1, o = void 0, i = !1) {
-    return this.logoutPromise && await this.logoutPromise, this.loginPromise !== null ? this.loginPromise : (i ? this.loginPromise = fn(
+    return this.logoutPromise && await this.logoutPromise, this.loginPromise !== null ? this.loginPromise : (i ? this.loginPromise = dn(
       window,
       this.configurationName,
       this.configuration,
       this.publishEvent.bind(this),
       this
-    )(t, o) : this.loginPromise = pn(
+    )(t, o) : this.loginPromise = An(
       this.configurationName,
       this.configuration,
       this.publishEvent.bind(this),
@@ -1774,8 +1836,12 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
     if (this.loginCallbackPromise !== null)
       return this.loginCallbackPromise;
     const t = async () => {
-      const s = await An(this)(n), o = s.tokens;
-      return this.tokens = o, await C(this.configuration, this.configurationName) || N(this.configurationName, this.configuration.storage).setTokens(o), this.publishEvent(M.eventNames.token_acquired, o), this.configuration.preload_user_info && await this.userInfoAsync(), {
+      const s = await Sn(this)(n), o = s.tokens;
+      return this.tokens = o, await x(this.configuration, this.configurationName) || C(
+        this.configurationName,
+        this.configuration.storage,
+        this.configuration.login_state_storage ?? this.configuration.storage
+      ).setTokens(o), this.publishEvent(J.eventNames.token_acquired, o), this.configuration.preload_user_info && await this.userInfoAsync(), {
         parsedTokens: o,
         state: s.state,
         callbackPath: s.callbackPath,
@@ -1789,23 +1855,27 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
   }
   async generateDemonstrationOfProofOfPossessionAsync(n, t, s, o = {}) {
     const i = this.configuration, r = {
-      ath: await Ie(n),
+      ath: await xe(n),
       ...o
     };
-    if (await C(i, this.configurationName))
-      return `DPOP_SECURED_BY_OIDC_SERVICE_WORKER_${this.configurationName}#tabId=${ve(this.configurationName)}`;
-    const c = N(this.configurationName, i.storage), f = await c.getDemonstratingProofOfPossessionJwkAsync(), u = c.getDemonstratingProofOfPossessionNonce();
-    return u && (r.nonce = u), await be(window)(
+    if (await x(i, this.configurationName))
+      return `DPOP_SECURED_BY_OIDC_SERVICE_WORKER_${this.configurationName}#tabId=${be(this.configurationName)}`;
+    const c = C(
+      this.configurationName,
+      i.storage,
+      i.login_state_storage ?? i.storage
+    ), f = await c.getDemonstratingProofOfPossessionJwkAsync(), u = c.getDemonstratingProofOfPossessionNonce();
+    return u && (r.nonce = u), await Ne(window)(
       i.demonstrating_proof_of_possession_configuration
     )(f, s, t, r);
   }
   loginCallbackWithAutoTokensRenewAsync() {
-    return this.loginCallbackWithAutoTokensRenewPromise !== null ? this.loginCallbackWithAutoTokensRenewPromise : (this.loginCallbackWithAutoTokensRenewPromise = Pn(this), this.loginCallbackWithAutoTokensRenewPromise.finally(() => {
+    return this.loginCallbackWithAutoTokensRenewPromise !== null ? this.loginCallbackWithAutoTokensRenewPromise : (this.loginCallbackWithAutoTokensRenewPromise = In(this), this.loginCallbackWithAutoTokensRenewPromise.finally(() => {
       this.loginCallbackWithAutoTokensRenewPromise = null;
     }));
   }
   userInfoAsync(n = !1, t = !1) {
-    return this.userInfoPromise !== null ? this.userInfoPromise : (this.userInfoPromise = En(this)(n, t), this.userInfoPromise.finally(() => {
+    return this.userInfoPromise !== null ? this.userInfoPromise : (this.userInfoPromise = On(this)(n, t), this.userInfoPromise.finally(() => {
       this.userInfoPromise = null;
     }));
   }
@@ -1813,21 +1883,21 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
     if (this.renewTokensPromise !== null)
       return this.renewTokensPromise;
     if (this.timeoutId)
-      return D.clearTimeout(this.timeoutId), this.renewTokensPromise = Ne(this, !0, n, t), this.renewTokensPromise.finally(() => {
+      return $.clearTimeout(this.timeoutId), this.renewTokensPromise = We(this, !0, n, t), this.renewTokensPromise.finally(() => {
         this.renewTokensPromise = null;
       });
   }
   async destroyAsync(n) {
-    return await Tn(this)(n);
+    return await vn(this)(n);
   }
   async logoutSameTabAsync(n, t) {
-    this.configuration.monitor_session && this.configuration.client_id === n && t && this.tokens && this.tokens.idTokenPayload && this.tokens.idTokenPayload.sub === t && (await this.destroyAsync("LOGGED_OUT"), this.publishEvent(p.logout_from_same_tab, { mmessage: "SessionMonitor", sub: t }));
+    this.configuration.monitor_session && this.configuration.client_id === n && t && this.tokens && this.tokens.idTokenPayload && this.tokens.idTokenPayload.sub === t && (await this.destroyAsync("LOGGED_OUT"), this.publishEvent(k.logout_from_same_tab, { mmessage: "SessionMonitor", sub: t }));
   }
   async logoutOtherTabAsync(n, t) {
-    this.configuration.monitor_session && this.configuration.client_id === n && t && this.tokens && this.tokens.idTokenPayload && this.tokens.idTokenPayload.sub === t && (await this.destroyAsync("LOGGED_OUT"), this.publishEvent(p.logout_from_another_tab, { message: "SessionMonitor", sub: t }));
+    this.configuration.monitor_session && this.configuration.client_id === n && t && this.tokens && this.tokens.idTokenPayload && this.tokens.idTokenPayload.sub === t && (await this.destroyAsync("LOGGED_OUT"), this.publishEvent(k.logout_from_another_tab, { message: "SessionMonitor", sub: t }));
   }
   async logoutAsync(n = void 0, t = null) {
-    return this.logoutPromise ? this.logoutPromise : (this.logoutPromise = vn(
+    return this.logoutPromise ? this.logoutPromise : (this.logoutPromise = En(
       this,
       R,
       this.getFetch(),
@@ -1838,9 +1908,9 @@ Please checkout that you are using OIDC hook inside a <OidcProvider configuratio
     }));
   }
 };
-M.getOrCreate = (n, t) => (s, o = "default") => bn(n, t)(s, o), M.eventNames = p;
-let L = M;
-const U = class U {
+J.getOrCreate = (n, t) => (s, o = "default") => Pn(n, t)(s, o), J.eventNames = k;
+let W = J;
+const V = class V {
   constructor(n) {
     this._oidc = n;
   }
@@ -1854,7 +1924,7 @@ const U = class U {
     this._oidc.publishEvent(n, t);
   }
   static get(n = "default") {
-    return new U(L.get(n));
+    return new V(W.get(n));
   }
   tryKeepExistingSessionAsync() {
     return this._oidc.tryKeepExistingSessionAsync();
@@ -1896,7 +1966,7 @@ const U = class U {
         refresh_time_before_tokens_expiration_in_second: s.configuration.refresh_time_before_tokens_expiration_in_second
       },
       syncTokensInfoAsync: async () => {
-        const { status: i } = await le(s)(
+        const { status: i } = await de(s)(
           s.configuration,
           s.configurationName,
           s.tokens,
@@ -1906,10 +1976,10 @@ const U = class U {
       },
       renewTokensAsync: s.renewTokensAsync.bind(s)
     };
-    return Ae(o, n, t);
+    return ve(o, n, t);
   }
   fetchWithTokens(n, t = !1) {
-    return xe(n, this._oidc, t);
+    return De(n, this._oidc, t);
   }
   async userInfoAsync(n = !1, t = !1) {
     return this._oidc.userInfoAsync(n, t);
@@ -1918,14 +1988,14 @@ const U = class U {
     return this._oidc.userInfo;
   }
 };
-U.getOrCreate = (n, t = new j()) => (s, o = "default") => new U(L.getOrCreate(n, t)(s, o)), U.eventNames = L.eventNames;
-let pe = U;
+V.getOrCreate = (n, t = new Q()) => (s, o = "default") => new V(W.getOrCreate(n, t)(s, o)), V.eventNames = W.eventNames;
+let Te = V;
 export {
-  pe as OidcClient,
-  j as OidcLocation,
-  B as TokenAutomaticRenewMode,
-  Z as TokenRenewMode,
-  On as getFetchDefault,
-  se as getParseQueryStringFromLocation,
+  Te as OidcClient,
+  Q as OidcLocation,
+  H as TokenAutomaticRenewMode,
+  oe as TokenRenewMode,
+  bn as getFetchDefault,
+  ce as getParseQueryStringFromLocation,
   Cn as getPath
 };