@axa-fr/react-oidc 6.15.9 → 6.16.1

package/dist/vanilla/vanillaOidc.js

@@ -1,4 +1,3 @@
-"use strict";
 var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
@@ -8,11 +7,9 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.VanillaOidc = void 0;
-const oidc_1 = require("./oidc");
-const parseTokens_1 = require("./parseTokens");
-class VanillaOidc {
+import { Oidc } from './oidc';
+import { getValidTokenAsync } from './parseTokens';
+export class VanillaOidc {
     constructor(oidc) {
         this._oidc = oidc;
     }
@@ -26,10 +23,10 @@ class VanillaOidc {
         this._oidc.publishEvent(eventName, data);
     }
     static getOrCreate(configuration, name = 'default') {
-        return new VanillaOidc(oidc_1.Oidc.getOrCreate(configuration, name));
+        return new VanillaOidc(Oidc.getOrCreate(configuration, name));
     }
     static get(name = 'default') {
-        return new VanillaOidc(oidc_1.Oidc.get(name));
+        return new VanillaOidc(Oidc.get(name));
     }
     tryKeepExistingSessionAsync() {
         return this._oidc.tryKeepExistingSessionAsync();
@@ -57,7 +54,7 @@ class VanillaOidc {
     }
     getValidTokenAsync(waitMs = 200, numberWait = 50) {
         return __awaiter(this, void 0, void 0, function* () {
-            return (0, parseTokens_1.getValidTokenAsync)(this._oidc, waitMs, numberWait);
+            return getValidTokenAsync(this._oidc, waitMs, numberWait);
         });
     }
     userInfoAsync() {
@@ -66,6 +63,5 @@ class VanillaOidc {
         });
     }
 }
-exports.VanillaOidc = VanillaOidc;
-VanillaOidc.eventNames = oidc_1.Oidc.eventNames;
+VanillaOidc.eventNames = Oidc.eventNames;
 //# sourceMappingURL=vanillaOidc.js.map

package/dist/vanilla/vanillaOidc.js.map

@@ -1 +1 @@
-{"version":3,"file":"vanillaOidc.js","sourceRoot":"","sources":["../../src/oidc/vanilla/vanillaOidc.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,iCAA6C;AAC7C,+CAAuE;AAOvE,MAAa,WAAW;IAEpB,YAAY,IAAU;QAClB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,eAAe,CAAC,IAAoB;QAChC,OAAO,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;IAC5C,CAAC;IAED,uBAAuB,CAAC,EAAS;QAC7B,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,EAAE,CAAC,CAAC;IAC3C,CAAC;IAED,YAAY,CAAC,SAAgB,EAAE,IAAQ;QACnC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IAC7C,CAAC;IAED,MAAM,CAAC,WAAW,CAAC,aAA+B,EAAE,IAAI,GAAG,SAAS;QAChE,OAAO,IAAI,WAAW,CAAC,WAAI,CAAC,WAAW,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,CAAC,GAAG,CAAC,IAAI,GAAG,SAAS;QACvB,OAAO,IAAI,WAAW,CAAC,WAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;IAC3C,CAAC;IAGD,2BAA2B;QACvB,OAAO,IAAI,CAAC,KAAK,CAAC,2BAA2B,EAAE,CAAC;IACpD,CAAC;IAED,UAAU,CAAC,eAAsB,SAAS,EAAE,SAAmB,IAAI,EAAE,cAAc,GAAG,KAAK,EAAE,QAAe,SAAS,EAAE,eAAe,GAAG,KAAK;QAC1I,OAAO,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,eAAe,CAAC,CAAC;IAC/F,CAAC;IAED,WAAW,CAAC,oBAA+C,SAAS,EAAE,SAAoB,IAAI;QAC1F,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,iBAAiB,EAAE,MAAM,CAAC,CAAC;IAC7D,CAAC;IAED,wBAAwB;QACpB,OAAO,IAAI,CAAC,KAAK,CAAC,wBAAwB,EAAE,CAAC;IACjD,CAAC;IAED,gBAAgB,CAAC,SAAmB,IAAI;QACpC,OAAO,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED,kBAAkB;QACd,OAAO,IAAI,CAAC,KAAK,CAAC,qCAAqC,EAAE,CAAC;IAC9D,CAAC;IAED,IAAI,MAAM;QACN,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;IAC7B,CAAC;IAED,IAAI,aAAa;QACb,OAAO,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC;IACpC,CAAC;IAEK,kBAAkB,CAAC,MAAM,GAAG,GAAG,EAAE,UAAU,GAAG,EAAE;;YAClD,OAAO,IAAA,gCAAkB,EAAC,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;QAC9D,CAAC;KAAA;IAEK,aAAa;;YACf,OAAO,IAAI,CAAC,KAAK,CAAC,aAAa,EAAE,CAAC;QACtC,CAAC;KAAA;;AAjEL,kCAkEC;AAxCU,sBAAU,GAAG,WAAI,CAAC,UAAU,CAAC"}
+{"version":3,"file":"vanillaOidc.js","sourceRoot":"","sources":["../../src/oidc/vanilla/vanillaOidc.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAiB,IAAI,EAAE,MAAM,QAAQ,CAAC;AAC7C,OAAO,EAAE,kBAAkB,EAAsB,MAAM,eAAe,CAAC;AAOvE,MAAM,OAAO,WAAW;IAEpB,YAAY,IAAU;QAClB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,eAAe,CAAC,IAAoB;QAChC,OAAO,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;IAC5C,CAAC;IAED,uBAAuB,CAAC,EAAS;QAC7B,IAAI,CAAC,KAAK,CAAC,uBAAuB,CAAC,EAAE,CAAC,CAAC;IAC3C,CAAC;IAED,YAAY,CAAC,SAAgB,EAAE,IAAQ;QACnC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IAC7C,CAAC;IAED,MAAM,CAAC,WAAW,CAAC,aAA+B,EAAE,IAAI,GAAG,SAAS;QAChE,OAAO,IAAI,WAAW,CAAC,IAAI,CAAC,WAAW,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,CAAC,GAAG,CAAC,IAAI,GAAG,SAAS;QACvB,OAAO,IAAI,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;IAC3C,CAAC;IAGD,2BAA2B;QACvB,OAAO,IAAI,CAAC,KAAK,CAAC,2BAA2B,EAAE,CAAC;IACpD,CAAC;IAED,UAAU,CAAC,eAAsB,SAAS,EAAE,SAAmB,IAAI,EAAE,cAAc,GAAG,KAAK,EAAE,QAAe,SAAS,EAAE,eAAe,GAAG,KAAK;QAC1I,OAAO,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,eAAe,CAAC,CAAC;IAC/F,CAAC;IAED,WAAW,CAAC,oBAA+C,SAAS,EAAE,SAAoB,IAAI;QAC1F,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,iBAAiB,EAAE,MAAM,CAAC,CAAC;IAC7D,CAAC;IAED,wBAAwB;QACpB,OAAO,IAAI,CAAC,KAAK,CAAC,wBAAwB,EAAE,CAAC;IACjD,CAAC;IAED,gBAAgB,CAAC,SAAmB,IAAI;QACpC,OAAO,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED,kBAAkB;QACd,OAAO,IAAI,CAAC,KAAK,CAAC,qCAAqC,EAAE,CAAC;IAC9D,CAAC;IAED,IAAI,MAAM;QACN,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;IAC7B,CAAC;IAED,IAAI,aAAa;QACb,OAAO,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC;IACpC,CAAC;IAEK,kBAAkB,CAAC,MAAM,GAAG,GAAG,EAAE,UAAU,GAAG,EAAE;;YAClD,OAAO,kBAAkB,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;QAC9D,CAAC;KAAA;IAEK,aAAa;;YACf,OAAO,IAAI,CAAC,KAAK,CAAC,aAAa,EAAE,CAAC;QACtC,CAAC;KAAA;;AAvCM,sBAAU,GAAG,IAAI,CAAC,UAAU,CAAC"}

package/package.json

@@ -1,7 +1,8 @@
 {
   "name": "@axa-fr/react-oidc",
-  "version": "6.15.9",
+  "version": "6.16.1",
   "private": false,
+  "type": "module",
   "main": "dist/index.js",
   "jsnext:main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -15,6 +16,7 @@
     "bin",
     "src/oidc",
     "src/override",
+    "service_worker",
     "README.md",
     "package.json",
     "package-lock.json"
@@ -30,15 +32,17 @@
     "next"
   ],
   "scripts": {
-    "copy": "copyfiles -f ./dist/OidcServiceWorker.js ./public && copyfiles -f -soft ./dist/OidcTrustedDomains.js ./public",
-    "start": "npm run build:service-worker && npm run copy && cross-env PORT=4200 react-scripts start",
-    "build": "npm run build:service-worker && npm run copy && react-scripts build",
+    "copy:public": "copyfiles -f ./service_worker/dist/* ./public && copyfiles -f -soft ./dist/OidcTrustedDomains.js ./public",
+    "copy:dist": "copyfiles -f ./service_worker/dist/* ./dist/service_worker && copyfiles -f ./service_worker/dist/utils/* ./dist/service_worker/utils && copyfiles -f ./service_worker/oidcTrustedDomains.js ./dist",
+    "start": "npm run build:service-worker && npm run copy:public && cross-env PORT=4200 react-scripts start",
+    "build": "npm run build:service-worker && npm run copy:public && react-scripts build",
     "test": "react-scripts test --coverage",
     "eject": "react-scripts eject",
-    "clean": "rimraf dist",
-    "postinstall": "node ./bin/copy.js",
-    "build:service-worker": "tsc --build \"./service_worker/tsconfig.json\" && copyfiles -f ./service_worker/OidcTrustedDomains.js ./dist",
-    "prepare": "npm run clean && tsc --build \"./tsconfig.json\" && npm run build:service-worker && node ./bin/copy.js",
+    "clean": "rimraf dist && rimraf service_worker/dist",
+    "postinstall": "node ./bin/copy.cjs",
+    "test:service-worker": "vitest --root ./service_worker --coverage",
+    "build:service-worker": "tsc -p ./service_worker/tsconfig.json && vite build ./service_worker --config ./vite.serviceWorker.config.js",
+    "prepare": "npm run clean && tsc --build \"./tsconfig.json\" && npm run build && npm run copy:dist",
     "lint": "eslint src"
   },
   "dependencies": {
@@ -55,6 +59,7 @@
     "@types/react": "^18.0.21",
     "@typescript-eslint/eslint-plugin": "^5.40.1",
     "@typescript-eslint/parser": "^5.40.1",
+    "@vitest/coverage-c8": "^0.29.2",
     "bootstrap": "4.6.1",
     "copyfiles": "2.4.1",
     "cross-env": "^7.0.3",
@@ -69,7 +74,10 @@
     "react-dom": "^18.2.0",
     "react-router-dom": "6.3.0",
     "react-scripts": "5.0.1",
-    "typescript": "4.8.2"
+    "typescript": "4.8.2",
+    "vite": "^4.1.4",
+    "vite-plugin-dts": "^2.0.2",
+    "vitest": "^0.29.2"
   },
   "license": "MIT",
   "publishConfig": {

package/service_worker/.eslintrc.cjs

@@ -0,0 +1,18 @@
+module.exports = {
+  extends: [__dirname + '/config/defaultEslintConfig'],
+  parserOptions: {
+    project: '../tsconfig.eslint.json',
+    tsconfigRootDir: __dirname,
+  },
+  rules: {
+    '@typescript-eslint/naming-convention': [
+      'error',
+      {
+        selector: 'variable',
+        types: ['boolean'],
+        format: ['PascalCase'],
+        prefix: ['is', 'with', 'should', 'has', 'can', 'did', 'will'],
+      },
+    ],
+  },
+};

package/service_worker/OidcServiceWorker.ts

@@ -0,0 +1,387 @@
+import { acceptAnyDomainToken, TOKEN, scriptFilename } from './constants';
+import {
+  TrustedDomains,
+  Database,
+  OidcConfig,
+  OidcConfiguration,
+  MessageEventData,
+} from './types';
+import {
+  checkDomain,
+  getCurrentDatabaseDomain,
+  hideTokens,
+  isTokensValid,
+  serializeHeaders,
+  sleep,
+} from './utils';
+
+const _self = self as ServiceWorkerGlobalScope & typeof globalThis;
+
+declare let trustedDomains: TrustedDomains;
+
+_self.importScripts(scriptFilename);
+
+const id = Math.round(new Date().getTime() / 1000).toString();
+
+const keepAliveJsonFilename = 'OidcKeepAliveServiceWorker.json';
+const handleInstall = (event: ExtendableEvent) => {
+  console.log('[OidcServiceWorker] service worker installed ' + id);
+  event.waitUntil(_self.skipWaiting());
+};
+
+const handleActivate = (event: ExtendableEvent) => {
+  console.log('[OidcServiceWorker] service worker activated ' + id);
+  event.waitUntil(_self.clients.claim());
+};
+
+let currentLoginCallbackConfigurationName: string | null = null;
+const database: Database = {
+  default: {
+    configurationName: 'default',
+    tokens: null,
+    status: null,
+    state: null,
+    codeVerifier: null,
+    nonce: null,
+    oidcServerConfiguration: null,
+  },
+};
+
+const getCurrentDatabasesTokenEndpoint = (database: Database, url: string) => {
+  const databases: OidcConfig[] = [];
+  for (const [, value] of Object.entries<OidcConfig>(database)) {
+    if (
+      value.oidcServerConfiguration != null &&
+      url.startsWith(value.oidcServerConfiguration.tokenEndpoint)
+    ) {
+      databases.push(value);
+    } else if (
+      value.oidcServerConfiguration != null &&
+      value.oidcServerConfiguration.revocationEndpoint &&
+      url.startsWith(value.oidcServerConfiguration.revocationEndpoint)
+    ) {
+      databases.push(value);
+    }
+  }
+  return databases;
+};
+
+const keepAliveAsync = async (event: FetchEvent) => {
+  const originalRequest = event.request;
+  const isFromVanilla = originalRequest.headers.has('oidc-vanilla');
+  const init = { status: 200, statusText: 'oidc-service-worker' };
+  const response = new Response('{}', init);
+  if (!isFromVanilla) {
+    for (let i = 0; i < 240; i++) {
+      await sleep(1000 + Math.floor(Math.random() * 1000));
+      const cache = await caches.open('oidc_dummy_cache');
+      await cache.put(event.request, response.clone());
+    }
+  }
+
+  return response;
+};
+
+const handleFetch = async (event: FetchEvent) => {
+  const originalRequest = event.request;
+  const url = originalRequest.url;
+  if (originalRequest.url.includes(keepAliveJsonFilename)) {
+    event.respondWith(keepAliveAsync(event));
+    return;
+  }
+
+  const currentDatabaseForRequestAccessToken = getCurrentDatabaseDomain(
+    database,
+    originalRequest.url,
+    trustedDomains
+  );
+  if (
+    currentDatabaseForRequestAccessToken &&
+    currentDatabaseForRequestAccessToken.tokens &&
+    currentDatabaseForRequestAccessToken.tokens.access_token
+  ) {
+    while (
+      currentDatabaseForRequestAccessToken.tokens &&
+      !isTokensValid(currentDatabaseForRequestAccessToken.tokens)
+    ) {
+      await sleep(200);
+    }
+    const newRequest = new Request(originalRequest, {
+      headers: {
+        ...serializeHeaders(originalRequest.headers),
+        authorization:
+          'Bearer ' + currentDatabaseForRequestAccessToken.tokens.access_token,
+      },
+      mode: (
+        currentDatabaseForRequestAccessToken.oidcConfiguration as OidcConfiguration
+      ).service_worker_convert_all_requests_to_cors
+        ? 'cors'
+        : originalRequest.mode,
+    });
+
+    //@ts-ignore -- TODO: review, waitUntil takes a promise, this returns a void
+    event.waitUntil(event.respondWith(fetch(newRequest)));
+
+    return;
+  }
+
+  if (event.request.method !== 'POST') {
+    return;
+  }
+
+  let currentDatabase: OidcConfig | null = null;
+  const currentDatabases = getCurrentDatabasesTokenEndpoint(
+    database,
+    originalRequest.url
+  );
+  const numberDatabase = currentDatabases.length;
+  if (numberDatabase > 0) {
+    const maPromesse = new Promise<Response>((resolve, reject) => {
+      const clonedRequest = originalRequest.clone();
+      const response = clonedRequest.text().then((actualBody) => {
+        if (
+          actualBody.includes(TOKEN.REFRESH_TOKEN) ||
+          actualBody.includes(TOKEN.ACCESS_TOKEN)
+        ) {
+          let newBody = actualBody;
+          for (let i = 0; i < numberDatabase; i++) {
+            const currentDb = currentDatabases[i];
+
+            if (currentDb && currentDb.tokens != null) {
+              const keyRefreshToken =
+                TOKEN.REFRESH_TOKEN + '_' + currentDb.configurationName;
+              if (actualBody.includes(keyRefreshToken)) {
+                newBody = newBody.replace(
+                  keyRefreshToken,
+                  encodeURIComponent(currentDb.tokens.refresh_token as string)
+                );
+                currentDatabase = currentDb;
+                break;
+              }
+              const keyAccessToken =
+                TOKEN.ACCESS_TOKEN + '_' + currentDb.configurationName;
+              if (actualBody.includes(keyAccessToken)) {
+                newBody = newBody.replace(
+                  keyAccessToken,
+                  encodeURIComponent(currentDb.tokens.access_token)
+                );
+                currentDatabase = currentDb;
+                break;
+              }
+            }
+          }
+          const fetchPromise = fetch(originalRequest, {
+            body: newBody,
+            method: clonedRequest.method,
+            headers: {
+              ...serializeHeaders(originalRequest.headers),
+            },
+            mode: clonedRequest.mode,
+            cache: clonedRequest.cache,
+            redirect: clonedRequest.redirect,
+            referrer: clonedRequest.referrer,
+            credentials: clonedRequest.credentials,
+            integrity: clonedRequest.integrity,
+          });
+
+          if (
+            currentDatabase &&
+            currentDatabase.oidcServerConfiguration != null &&
+            currentDatabase.oidcServerConfiguration.revocationEndpoint &&
+            url.startsWith(
+              currentDatabase.oidcServerConfiguration.revocationEndpoint
+            )
+          ) {
+            return fetchPromise.then(async (response) => {
+              const text = await response.text();
+              return new Response(text, response);
+            });
+          }
+          return fetchPromise.then(hideTokens(currentDatabase as OidcConfig)); //todo type assertion to OidcConfig but could be null, NEEDS REVIEW
+        } else if (
+          actualBody.includes('code_verifier=') &&
+          currentLoginCallbackConfigurationName
+        ) {
+          currentDatabase = database[currentLoginCallbackConfigurationName];
+          currentLoginCallbackConfigurationName = null;
+          let newBody = actualBody;
+          if (currentDatabase && currentDatabase.codeVerifier != null) {
+            const keyCodeVerifier =
+              TOKEN.CODE_VERIFIER + '_' + currentDatabase.configurationName;
+            if (actualBody.includes(keyCodeVerifier)) {
+              newBody = newBody.replace(
+                keyCodeVerifier,
+                currentDatabase.codeVerifier
+              );
+            }
+          }
+
+          return fetch(originalRequest, {
+            body: newBody,
+            method: clonedRequest.method,
+            headers: {
+              ...serializeHeaders(originalRequest.headers),
+            },
+            mode: clonedRequest.mode,
+            cache: clonedRequest.cache,
+            redirect: clonedRequest.redirect,
+            referrer: clonedRequest.referrer,
+            credentials: clonedRequest.credentials,
+            integrity: clonedRequest.integrity,
+          }).then(hideTokens(currentDatabase));
+        }
+        return undefined;
+      });
+      response
+        .then((r) => {
+          if (r !== undefined) {
+            resolve(r);
+          } else {
+            console.log('success undefined');
+            reject(new Error('Response is undefined inside a success'));
+          }
+        })
+        .catch((err) => {
+          if (err !== undefined) {
+            reject(err);
+          } else {
+            console.log('error undefined');
+            reject(new Error('Response is undefined inside a error'));
+          }
+        });
+    });
+
+    //@ts-ignore -- TODO: review, waitUntil takes a promise, this returns a void
+    event.waitUntil(event.respondWith(maPromesse));
+  }
+};
+
+const handleMessage = (event: ExtendableMessageEvent) => {
+  const port = event.ports[0];
+  const data = event.data as MessageEventData;
+  const configurationName = data.configurationName;
+  let currentDatabase = database[configurationName];
+
+  if (!currentDatabase) {
+    database[configurationName] = {
+      tokens: null,
+      state: null,
+      codeVerifier: null,
+      oidcServerConfiguration: null,
+      oidcConfiguration: undefined,
+      nonce: null,
+      status: null,
+      configurationName,
+    };
+    currentDatabase = database[configurationName];
+    if (!trustedDomains[configurationName]) {
+      trustedDomains[configurationName] = [];
+    }
+  }
+
+  switch (data.type) {
+    case 'clear':
+      currentDatabase.tokens = null;
+      currentDatabase.state = null;
+      currentDatabase.codeVerifier = null;
+      currentDatabase.status = data.data.status;
+      port.postMessage({ configurationName });
+      return;
+    case 'init': {
+      const oidcServerConfiguration = data.data.oidcServerConfiguration;
+      const domains = trustedDomains[configurationName];
+      if (!domains.find((f) => f === acceptAnyDomainToken)) {
+        [
+          oidcServerConfiguration.tokenEndpoint,
+          oidcServerConfiguration.revocationEndpoint,
+          oidcServerConfiguration.userInfoEndpoint,
+          oidcServerConfiguration.issuer,
+        ].forEach((url) => {
+          checkDomain(domains, url);
+        });
+      }
+      currentDatabase.oidcServerConfiguration = oidcServerConfiguration;
+      currentDatabase.oidcConfiguration = data.data.oidcConfiguration;
+      const where = data.data.where;
+      if (
+        where === 'loginCallbackAsync' ||
+        where === 'tryKeepExistingSessionAsync'
+      ) {
+        currentLoginCallbackConfigurationName = configurationName;
+      } else {
+        currentLoginCallbackConfigurationName = null;
+      }
+
+      if (!currentDatabase.tokens) {
+        port.postMessage({
+          tokens: null,
+          status: currentDatabase.status,
+          configurationName,
+        });
+      } else {
+        const tokens = {
+          ...currentDatabase.tokens,
+          access_token: TOKEN.ACCESS_TOKEN + '_' + configurationName,
+        };
+        if (tokens.refresh_token) {
+          tokens.refresh_token = TOKEN.REFRESH_TOKEN + '_' + configurationName;
+        }
+        if (
+          tokens.idTokenPayload &&
+          tokens.idTokenPayload.nonce &&
+          currentDatabase.nonce != null
+        ) {
+          tokens.idTokenPayload.nonce =
+            TOKEN.NONCE_TOKEN + '_' + configurationName;
+        }
+        port.postMessage({
+          tokens,
+          status: currentDatabase.status,
+          configurationName,
+        });
+      }
+      return;
+    }
+    case 'setState':
+      currentDatabase.state = data.data.state;
+      port.postMessage({ configurationName });
+      return;
+    case 'getState': {
+      const state = currentDatabase.state;
+      port.postMessage({ configurationName, state });
+      return;
+    }
+    case 'setCodeVerifier':
+      currentDatabase.codeVerifier = data.data.codeVerifier;
+      port.postMessage({ configurationName });
+      return;
+    case 'getCodeVerifier': {
+      port.postMessage({
+        configurationName,
+        codeVerifier: TOKEN.CODE_VERIFIER + '_' + configurationName,
+      });
+      return;
+    }
+    case 'setSessionState':
+      currentDatabase.sessionState = data.data.sessionState;
+      port.postMessage({ configurationName });
+      return;
+    case 'getSessionState': {
+      const sessionState = currentDatabase.sessionState;
+      port.postMessage({ configurationName, sessionState });
+      return;
+    }
+    case 'setNonce':
+      currentDatabase.nonce = data.data.nonce;
+      port.postMessage({ configurationName });
+      return;
+    default:
+      currentDatabase.items = { ...data.data };
+      port.postMessage({ configurationName });
+  }
+};
+
+_self.addEventListener('install', handleInstall);
+_self.addEventListener('activate', handleActivate);
+_self.addEventListener('fetch', handleFetch);
+_self.addEventListener('message', handleMessage);

package/service_worker/constants.ts

@@ -0,0 +1,32 @@
+const scriptFilename = 'OidcTrustedDomains.js'; /* global trustedDomains */
+const acceptAnyDomainToken = '*';
+
+type TokenType = {
+  readonly REFRESH_TOKEN: string;
+  readonly ACCESS_TOKEN: string;
+  readonly NONCE_TOKEN: string;
+  readonly CODE_VERIFIER: string;
+};
+
+const TOKEN: TokenType = {
+  REFRESH_TOKEN: 'REFRESH_TOKEN_SECURED_BY_OIDC_SERVICE_WORKER',
+  ACCESS_TOKEN: 'ACCESS_TOKEN_SECURED_BY_OIDC_SERVICE_WORKER',
+  NONCE_TOKEN: 'NONCE_SECURED_BY_OIDC_SERVICE_WORKER',
+  CODE_VERIFIER: 'CODE_VERIFIER_SECURED_BY_OIDC_SERVICE_WORKER',
+};
+
+type TokenRenewModeType = {
+  readonly access_token_or_id_token_invalid: string;
+  readonly access_token_invalid: string;
+  readonly id_token_invalid: string;
+};
+
+const TokenRenewMode: TokenRenewModeType = {
+  access_token_or_id_token_invalid: 'access_token_or_id_token_invalid',
+  access_token_invalid: 'access_token_invalid',
+  id_token_invalid: 'id_token_invalid',
+};
+
+const openidWellknownUrlEndWith = '/.well-known/openid-configuration';
+
+export { scriptFilename, acceptAnyDomainToken, TOKEN, TokenRenewMode, openidWellknownUrlEndWith };

package/service_worker/dist/OidcServiceWorker.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=OidcServiceWorker.d.ts.map

package/service_worker/dist/OidcServiceWorker.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OidcServiceWorker.d.ts","sourceRoot":"","sources":["../OidcServiceWorker.ts"],"names":[],"mappings":""}