@axa-fr/react-oidc 6.26.6 → 7.0.1-alpha.996

package/README.md

@@ -1,13 +1,21 @@
 # @axa-fr/react-oidc
 
-[![Continuous Integration](https://github.com/AxaGuilDEv/react-oidc/actions/workflows/npm-publish.yml/badge.svg)](https://github.com/AxaGuilDEv/react-oidc/actions/workflows/npm-publish.yml)
+[![Continuous Integration](https://github.com/AxaFrance/react-oidc/actions/workflows/npm-publish.yml/badge.svg)](https://github.com/AxaFrance/react-oidc/actions/workflows/npm-publish.yml)
 [![Quality Gate](https://sonarcloud.io/api/project_badges/measure?project=AxaGuilDEv_react-oidc&metric=alert_status)](https://sonarcloud.io/dashboard?id=AxaGuilDEv_react-oidc) [![Reliability](https://sonarcloud.io/api/project_badges/measure?project=AxaGuilDEv_react-oidc&metric=reliability_rating)](https://sonarcloud.io/component_measures?id=AxaGuilDEv_react-oidc&metric=reliability_rating) [![Security](https://sonarcloud.io/api/project_badges/measure?project=AxaGuilDEv_react-oidc&metric=security_rating)](https://sonarcloud.io/component_measures?id=AxaGuilDEv_react-oidc&metric=security_rating) [![Code Corevage](https://sonarcloud.io/api/project_badges/measure?project=AxaGuilDEv_react-oidc&metric=coverage)](https://sonarcloud.io/component_measures?id=AxaGuilDEv_react-oidc&metric=Coverage) [![Twitter](https://img.shields.io/twitter/follow/GuildDEvOpen?style=social)](https://twitter.com/intent/follow?screen_name=GuildDEvOpen)
 
-Try the demo at https://black-rock-0dc6b0d03.1.azurestaticapps.net/
+**@axa-fr/oidc-client** the lightest and securest library to manage authentication with OpenID Connect (OIDC) and OAuth2 protocol. It is compatible with all OIDC providers.
+**@axa-fr/oidc-client** is a pure javascript library. It works with any JavaScript framework or library.
 
-![Sample React OIDC](https://github.com/AxaGuilDEv/react-oidc/blob/master/docs/img/introduction.gif?raw=true)
+We provide a wrapper **@axa-fr/react-oidc** for **React** (compatible next.js) and we expect soon to provide one for **Vue**, **Angular** and **Svelte**.
 
-A set of react components to make OIDC (OpenID Connect) client easy. It aim to simplify OAuth authentication between multiples providers.
+- Try the react demo at https://black-rock-0dc6b0d03.1.azurestaticapps.net/ (most advanced)
+- Try the pure javascript demo at https://icy-glacier-004ab4303.2.azurestaticapps.net/
+
+<p align="center">
+    <img src="https://github.com/AxaFrance/react-oidc/blob/master/docs/img/introduction.gif?raw=true"
+     alt="Sample React Oicd"
+      />
+</p>
 
 - [About](#about)
 - [Getting Started](#getting-started)
@@ -20,22 +28,21 @@ A set of react components to make OIDC (OpenID Connect) client easy. It aim to s
 
 ## About
 
-Easy set up of OIDC for react.
-It is a real alternative to existing oidc-client libraries.
+@axa-fr/react is:
 
 - **Secure** :
-  - With the use of Service Worker, your tokens (refresh_token and access_token) are not accessible to the JavaScript client code (big protection against XSRF attacks)
-  - OIDC using client side Code Credential Grant with PKCE only
-- **Lightweight**
-- **Simple** :
+  - With the use of Service Worker, your tokens (refresh_token and access_token) are not accessible to the JavaScript client code (big protection against XSS attacks)
+  - OIDC using client side Code Credential Grant with pkce only
+- **Lightweight** : Unpacked Size on npm is **274 kB**
+- **Simple**
   - refresh_token and access_token are auto refreshed in background
-  - with the use of the Service Worker, you do not need to inject the access_token in every fetch, you have only to configure `OidcTrustedDomains.js` file
-- **No cookies problem** : You can disable silent signin (that internally use an iframe). For your information, your OIDC server should be in the same domain of your website in order to be able to send OIDC server cookies from your website via an internal IFRAME, else, you may encounter COOKIES problem.
+  - with the use of the Service Worker, you do not need to inject the access_token in every fetch, you have only to configure OidcTrustedDomains.js file
 - **Multiple Authentication** :
   - You can authenticate many times to the same provider with different scope (for example you can acquire a new 'payment' scope for a payment)
   - You can authenticate to multiple different providers inside the same SPA (single page application) website
 - **Flexible** :
-  - Work with Service Worker (more secure) and without for older browser (less secure)
+  - Work with Service Worker (more secure) and without for older browser (less secure).
+  - You can disable Service Worker if you want (but less secure) and just use SessionStorage or LocalStorage mode.
 
 ![](https://github.com/AxaGuilDEv/react-oidc/blob/master/docs/img/schema_pcke_client_side_with_service_worker.png?raw=true)
 
@@ -63,23 +70,32 @@ The only file you should edit is "OidcTrustedDomains.js".
 
 // Domains used by OIDC server must be also declared here
 const trustedDomains = {
-  default: ["https://demo.duendesoftware.com", "https://www.myapi.com/users"],
+  default: {
+    oidcDomains :["https://demo.duendesoftware.com"],
+    accessTokenDomains : ["https://www.myapi.com/users"]
+  },
 };
 
 // Service worker will continue to give access token to the JavaScript client
 // Ideal to hide refresh token from client JavaScript, but to retrieve access_token for some
 // scenarios which require it. For example, to send it via websocket connection.
-trustedDomains.config_show_access_token = { domains : ["https://demo.duendesoftware.com"], showAccessToken: true };
+trustedDomains.config_show_access_token = { 
+    oidcDomains :["https://demo.duendesoftware.com"],
+    accessTokenDomains : ["https://www.myapi.com/users"], 
+    showAccessToken: true 
+};
 
 ```
 
 ## Run The Demo
 
 ```sh
-git clone https://github.com/AxaGuilDEv/react-oidc.git
-cd react-oidc/packages/react
-npm install
-npm start
+git clone https://github.com/AxaFrance/oidc-client.git
+cd oidc-client
+pnpm install
+cd /examples/react-oidc-demo
+pnpm install
+pnpm start
 # then navigate to http://localhost:4200
 ```
 
@@ -111,7 +127,7 @@ const configuration = {
     window.location.origin + "/authentication/silent-callback",
   scope: "openid profile email api offline_access", // offline_access scope allow your client to retrieve the refresh_token
   authority: "https://demo.duendesoftware.com",
-  service_worker_relative_url: "/OidcServiceWorker.js",
+  service_worker_relative_url: "/OidcServiceWorker.js", // just comment that line to disable service worker mode
   service_worker_only: false,
 };
 
@@ -128,49 +144,50 @@ render(<App />, document.getElementById("root"));
 ```
 
 ```javascript
-const propTypes = {
-  loadingComponent: PropTypes.elementType, // you can inject your own loading component
-  sessionLostComponent: PropTypes.elementType, // you can inject your own session lost component
-  authenticating: PropTypes.elementType, // you can inject your own authenticationg component
-  authenticatingErrorComponent: PropTypes.elementType,
-  callbackSuccessComponent: PropTypes.elementType, // you can inject your own call back success component
-  serviceWorkerNotSupportedComponent: PropTypes.elementType, // you can inject your page that explain your require a more modern browser
-  onSessionLost: PropTypes.function, // If set "sessionLostComponent" is not displayed and onSessionLost callback is called instead
-  configuration: PropTypes.shape({
-    client_id: PropTypes.string.isRequired, // oidc client id
-    redirect_uri: PropTypes.string.isRequired, // oidc redirect url
-    silent_redirect_uri: PropTypes.string, // Optional activate silent-signin that use cookies between OIDC server and client javascript to restore sessions
-    silent_login_uri: PropTypes.string, // Optional, route that trigger the signin
-    silent_login_timeout: PropTypes.number, // Optional default is 12000 milliseconds
-    scope: PropTypes.string.isRequired, // oidc scope (you need to set "offline_access")
-    authority: PropTypes.string.isRequired,
-    storage: Storage, // Default sessionStorage, you can set localStorage but it is less secure to XSS attacks
-    authority_configuration: PropTypes.shape({
-      // Optional for providers that does not implement OIDC server auto discovery via a .wellknowurl
-      authorization_endpoint: PropTypes.string,
-      token_endpoint: PropTypes.string,
-      userinfo_endpoint: PropTypes.string,
-      end_session_endpoint: PropTypes.string,
-      revocation_endpoint: PropTypes.string,
-      check_session_iframe: PropTypes.string,
-      issuer: PropTypes.string,
-    }),
-    refresh_time_before_tokens_expiration_in_second: PropTypes.number, // default is 120 seconds
-    service_worker_relative_url: PropTypes.string,
-    service_worker_only: PropTypes.boolean, // default false
-    service_worker_convert_all_requests_to_cors: PropTypes.boolean, // force all requests that servie worker upgrades to have 'cors' mode. This allows setting authentication token on requests initialted by html parsing(e.g. img tags, download links etc).
-    extras: StringMap | undefined, // ex: {'prompt': 'consent', 'access_type': 'offline'} list of key/value that are send to the oidc server (more info: https://github.com/openid/AppAuth-JS)
-    token_request_extras: StringMap | undefined, // ex: {'prompt': 'consent', 'access_type': 'offline'} list of key/value that are send to the oidc server during token request (more info: https://github.com/openid/AppAuth-JS)
-    withCustomHistory: PropTypes.function, // Override history modification, return instance with replaceState(url, stateHistory) implemented (like History.replaceState())
-    authority_time_cache_wellknowurl_in_second: 60 * 60, // Time to cache in second of openid wellknowurl, default is 1 hour
-    authority_timeout_wellknowurl_in_millisecond: 10000, // Timeout in millisecond of openid wellknowurl, default is 10 seconds, then error is throwed
-    monitor_session: PropTypes.boolean, // Add OpenId monitor session, default is false (more information https://openid.net/specs/openid-connect-session-1_0.html), if you need to set it to true consider https://infi.nl/nieuws/spa-necromancy/
-    onLogoutFromAnotherTab: Function, // Optional, can be set to override the default behavior, this function is triggered when user with the same subject is logged out from another tab when session_monitor is active
-    onLogoutFromSameTab: Function, // Optional, can be set to override the default behavior, this function is triggered when user is logged out from same tab when session_monitor is active
-    token_renew_mode: PropTypes.string, // Optional, update tokens base on the selected token(s) lifetime: "access_token_or_id_token_invalid" (default), "access_token_invalid" , "id_token_invalid"
-    logout_tokens_to_invalidate : Array<string> // Optional tokens to invalidate during logout, default: ['access_token', 'refresh_token']
-  }).isRequired,
+const configuration = {
+  loadingComponent: ReactComponent, // you can inject your own loading component
+  sessionLostComponent: ReactComponent, // you can inject your own session lost component
+  authenticating: ReactComponent, // you can inject your own authenticating component
+  authenticatingErrorComponent: ReactComponent,
+  callbackSuccessComponent: ReactComponent, // you can inject your own call back success component
+  serviceWorkerNotSupportedComponent: ReactComponent, // you can inject your page that explains you require a more modern browser
+  onSessionLost: Function, // If set, "sessionLostComponent" is not displayed, and onSessionLost callback is called instead
+  configuration: {
+    client_id: String.isRequired, // oidc client id
+    redirect_uri: String.isRequired, // oidc redirect url
+    silent_redirect_uri: String, // Optional activate silent-signin that use cookies between OIDC server and client javascript to restore sessions
+    silent_login_uri: String, // Optional, route that triggers the signin
+    silent_login_timeout: Number, // Optional, default is 12000 milliseconds
+    scope: String.isRequired, // oidc scope (you need to set "offline_access")
+    authority: String.isRequired,
+    storage: Storage, // Default sessionStorage, you can set localStorage, but it is less secure against XSS attacks
+    authority_configuration: {
+      // Optional for providers that do not implement OIDC server auto-discovery via a .wellknown URL
+      authorization_endpoint: String,
+      token_endpoint: String,
+      userinfo_endpoint: String,
+      end_session_endpoint: String,
+      revocation_endpoint: String,
+      check_session_iframe: String,
+      issuer: String,
+    },
+    refresh_time_before_tokens_expiration_in_second: Number, // default is 120 seconds
+    service_worker_relative_url: String,
+    service_worker_only: Boolean, // default false
+    service_worker_convert_all_requests_to_cors: Boolean, // force all requests that service worker upgrades to have 'cors' mode. This allows setting an authentication token on requests initiated by HTML parsing (e.g., img tags, download links, etc.).
+    extras: StringMap | undefined, // ex: {'prompt': 'consent', 'access_type': 'offline'} list of key/value that is sent to the OIDC server (more info: https://github.com/openid/AppAuth-JS)
+    token_request_extras: StringMap | undefined, // ex: {'prompt': 'consent', 'access_type': 'offline'} list of key/value that is sent to the OIDC server during token request (more info: https://github.com/openid/AppAuth-JS)
+    withCustomHistory: Function, // Override history modification, return an instance with replaceState(url, stateHistory) implemented (like History.replaceState())
+    authority_time_cache_wellknowurl_in_second: 60 * 60, // Time to cache in seconds of the openid well-known URL, default is 1 hour
+    authority_timeout_wellknowurl_in_millisecond: 10000, // Timeout in milliseconds of the openid well-known URL, default is 10 seconds, then an error is thrown
+    monitor_session: Boolean, // Add OpenID monitor session, default is false (more information https://openid.net/specs/openid-connect-session-1_0.html), if you need to set it to true consider https://infi.nl/nieuws/spa-necromancy/
+    onLogoutFromAnotherTab: Function, // Optional, can be set to override the default behavior, this function is triggered when a user with the same subject is logged out from another tab when session_monitor is active
+    onLogoutFromSameTab: Function, // Optional, can be set to override the default behavior, this function is triggered when a user is logged out from the same tab when session_monitor is active
+    token_renew_mode: String, // Optional, update tokens based on the selected token(s) lifetime: "access_token_or_id_token_invalid" (default), "access_token_invalid", "id_token_invalid"
+    logout_tokens_to_invalidate: Array<string>, // Optional tokens to invalidate during logout, default: ['access_token', 'refresh_token']
+  }.isRequired,
 };
+
 ```
 
 ## How to consume
@@ -626,10 +643,3 @@ export const configurationIdentityServerWithHash = {
   service_worker_only: false,
 };
 ```
-
-## Service Worker Support
-
-- Firefox : tested on Firefox 98.0.2
-- Chrome/Edge : tested on version upper to 90
-- Opera : tested on version upper to 80
-- Safari : tested on Safari/605.1.15

package/dist/FetchToken.d.ts

@@ -6,4 +6,3 @@ export declare const withOidcFetch: (fetch?: Fetch, configurationName?: string)
 export declare const useOidcFetch: (fetch?: Fetch, configurationName?: string) => {
     fetch: (input: RequestInfo | URL, init?: RequestInit) => Promise<Response>;
 };
-//# sourceMappingURL=FetchToken.d.ts.map

package/dist/OidcProvider.d.ts

@@ -1,8 +1,8 @@
-import { Fetch, OidcConfiguration, VanillaOidc } from '@axa-fr/oidc-client';
+import { Fetch, OidcConfiguration, OidcClient } from '@axa-fr/oidc-client';
 import { ComponentType, FC, PropsWithChildren } from 'react';
 import { CustomHistory } from './core/routes/withRouter.js';
 export type oidcContext = {
-    (name?: string): VanillaOidc;
+    (name?: string): OidcClient;
 };
 export type OidcProviderProps = {
     callbackSuccessComponent?: ComponentType<any>;
@@ -27,4 +27,3 @@ export type OidcSessionProps = {
 };
 export declare const OidcProvider: FC<PropsWithChildren<OidcProviderProps>>;
 export default OidcProvider;
-//# sourceMappingURL=OidcProvider.d.ts.map

package/dist/OidcSecure.d.ts

@@ -7,4 +7,3 @@ export type OidcSecureProps = {
 };
 export declare const OidcSecure: FC<PropsWithChildren<OidcSecureProps>>;
 export declare const withOidcSecure: (WrappedComponent: FC<PropsWithChildren<OidcSecureProps>>, callbackPath?: any, extras?: any, configurationName?: string) => (props: any) => import("react/jsx-runtime").JSX.Element;
-//# sourceMappingURL=OidcSecure.d.ts.map

package/dist/ReactOidc.d.ts

@@ -15,4 +15,3 @@ export type OidcIdToken = {
     idTokenPayload?: any;
 };
 export declare const useOidcIdToken: (configurationName?: string) => OidcIdToken;
-//# sourceMappingURL=ReactOidc.d.ts.map

package/dist/User.d.ts

@@ -14,4 +14,3 @@ export declare const useOidcUser: <T extends OidcUserInfo = OidcUserInfo>(config
     oidcUserLoadingState: OidcUserStatus;
     reloadOidcUser: () => void;
 };
-//# sourceMappingURL=User.d.ts.map

package/dist/core/default-component/AuthenticateError.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 declare const AuthenticatingError: ComponentType<any>;
 export default AuthenticatingError;
-//# sourceMappingURL=AuthenticateError.component.d.ts.map

package/dist/core/default-component/Authenticating.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 declare const Authenticating: ComponentType<any>;
 export default Authenticating;
-//# sourceMappingURL=Authenticating.component.d.ts.map

package/dist/core/default-component/Callback.component.d.ts

@@ -2,4 +2,3 @@ import { ComponentType } from 'react';
 export declare const CallBackSuccess: ComponentType<any>;
 declare const CallbackManager: ComponentType<any>;
 export default CallbackManager;
-//# sourceMappingURL=Callback.component.d.ts.map

package/dist/core/default-component/Loading.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 declare const Loading: ComponentType<any>;
 export default Loading;
-//# sourceMappingURL=Loading.component.d.ts.map

package/dist/core/default-component/ServiceWorkerNotSupported.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 declare const ServiceWorkerNotSupported: ComponentType<any>;
 export default ServiceWorkerNotSupported;
-//# sourceMappingURL=ServiceWorkerNotSupported.component.d.ts.map

package/dist/core/default-component/SessionLost.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 export declare const SessionLost: ComponentType<any>;
 export default SessionLost;
-//# sourceMappingURL=SessionLost.component.d.ts.map

package/dist/core/default-component/SilentCallback.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 declare const SilentCallbackManager: ComponentType<any>;
 export default SilentCallbackManager;
-//# sourceMappingURL=SilentCallback.component.d.ts.map

package/dist/core/default-component/SilentLogin.component.d.ts

@@ -1,4 +1,3 @@
 import { ComponentType } from 'react';
 declare const SilentLogin: ComponentType<any>;
 export default SilentLogin;
-//# sourceMappingURL=SilentLogin.component.d.ts.map

package/dist/core/default-component/index.d.ts

@@ -4,4 +4,3 @@ export { default as Callback, CallBackSuccess } from './Callback.component.js';
 export { default as Loading } from './Loading.component.js';
 export { default as ServiceWorkerNotSupported } from './ServiceWorkerNotSupported.component.js';
 export { default as SessionLost } from './SessionLost.component.js';
-//# sourceMappingURL=index.d.ts.map

package/dist/core/routes/OidcRoutes.d.ts

@@ -12,4 +12,3 @@ type OidcRoutesProps = {
 };
 declare const _default: React.NamedExoticComponent<React.PropsWithChildren<OidcRoutesProps>>;
 export default _default;
-//# sourceMappingURL=OidcRoutes.d.ts.map

package/dist/core/routes/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/src/core/routes/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,UAAU,EAAE,MAAM,cAAc,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/core/routes/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,UAAU,EAAE,MAAM,cAAc,CAAC;AACrD,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC"}

package/dist/core/routes/withRouter.d.ts

@@ -17,4 +17,3 @@ export type CustomHistory = {
 };
 export declare const getCustomHistory: () => CustomHistory;
 export {};
-//# sourceMappingURL=withRouter.d.ts.map

package/dist/index.d.ts

@@ -5,4 +5,3 @@ export { useOidc, useOidcAccessToken, useOidcIdToken } from './ReactOidc.js';
 export { OidcUserStatus, useOidcUser } from './User.js';
 export type { AuthorityConfiguration, Fetch, OidcConfiguration, StringMap, } from '@axa-fr/oidc-client';
 export { type OidcUserInfo, TokenRenewMode } from '@axa-fr/oidc-client';
-//# sourceMappingURL=index.d.ts.map

package/dist/index.js

@@ -1,5 +1,5 @@
 import be, { useCallback as kt, useState as P, useEffect as O } from "react";
-import { VanillaOidc as f, getParseQueryStringFromLocation as mt, getPath as z, getFetchDefault as Et } from "@axa-fr/oidc-client";
+import { OidcClient as f, getParseQueryStringFromLocation as mt, getPath as z, getFetchDefault as Et } from "@axa-fr/oidc-client";
 import { TokenRenewMode as rr } from "@axa-fr/oidc-client";
 var ye = { exports: {} }, G = {};
 /**
@@ -18,14 +18,14 @@ function Tt() {
   Ye = 1;
   var o = be, s = Symbol.for("react.element"), r = Symbol.for("react.fragment"), a = Object.prototype.hasOwnProperty, u = o.__SECRET_INTERNALS_DO_NOT_USE_OR_YOU_WILL_BE_FIRED.ReactCurrentOwner, l = { key: !0, ref: !0, __self: !0, __source: !0 };
   function h(c, v, g) {
-    var b, m = {}, R = null, D = null;
-    g !== void 0 && (R = "" + g), v.key !== void 0 && (R = "" + v.key), v.ref !== void 0 && (D = v.ref);
+    var b, m = {}, C = null, D = null;
+    g !== void 0 && (C = "" + g), v.key !== void 0 && (C = "" + v.key), v.ref !== void 0 && (D = v.ref);
     for (b in v)
       a.call(v, b) && !l.hasOwnProperty(b) && (m[b] = v[b]);
     if (c && c.defaultProps)
       for (b in v = c.defaultProps, v)
         m[b] === void 0 && (m[b] = v[b]);
-    return { $$typeof: s, type: c, key: R, ref: D, props: m, _owner: u.current };
+    return { $$typeof: s, type: c, key: C, ref: D, props: m, _owner: u.current };
   }
   return G.Fragment = r, G.jsx = h, G.jsxs = h, G;
 }
@@ -42,7 +42,7 @@ var H = {};
 var Me;
 function wt() {
   return Me || (Me = 1, process.env.NODE_ENV !== "production" && function() {
-    var o = be, s = Symbol.for("react.element"), r = Symbol.for("react.portal"), a = Symbol.for("react.fragment"), u = Symbol.for("react.strict_mode"), l = Symbol.for("react.profiler"), h = Symbol.for("react.provider"), c = Symbol.for("react.context"), v = Symbol.for("react.forward_ref"), g = Symbol.for("react.suspense"), b = Symbol.for("react.suspense_list"), m = Symbol.for("react.memo"), R = Symbol.for("react.lazy"), D = Symbol.for("react.offscreen"), K = Symbol.iterator, U = "@@iterator";
+    var o = be, s = Symbol.for("react.element"), r = Symbol.for("react.portal"), a = Symbol.for("react.fragment"), u = Symbol.for("react.strict_mode"), l = Symbol.for("react.profiler"), h = Symbol.for("react.provider"), c = Symbol.for("react.context"), v = Symbol.for("react.forward_ref"), g = Symbol.for("react.suspense"), b = Symbol.for("react.suspense_list"), m = Symbol.for("react.memo"), C = Symbol.for("react.lazy"), D = Symbol.for("react.offscreen"), K = Symbol.iterator, U = "@@iterator";
     function ne(e) {
       if (e === null || typeof e != "object")
         return null;
@@ -50,7 +50,7 @@ function wt() {
       return typeof t == "function" ? t : null;
     }
     var L = o.__SECRET_INTERNALS_DO_NOT_USE_OR_YOU_WILL_BE_FIRED;
-    function C(e) {
+    function R(e) {
       {
         for (var t = arguments.length, n = new Array(t > 1 ? t - 1 : 0), d = 1; d < t; d++)
           n[d - 1] = arguments[d];
@@ -70,7 +70,7 @@ function wt() {
     var oe = !1, se = !1, ae = !1, ie = !1, W = !1, X;
     X = Symbol.for("react.module.reference");
     function ce(e) {
-      return !!(typeof e == "string" || typeof e == "function" || e === a || e === l || W || e === u || e === g || e === b || ie || e === D || oe || se || ae || typeof e == "object" && e !== null && (e.$$typeof === R || e.$$typeof === m || e.$$typeof === h || e.$$typeof === c || e.$$typeof === v || // This needs to include all possible module reference object
+      return !!(typeof e == "string" || typeof e == "function" || e === a || e === l || W || e === u || e === g || e === b || ie || e === D || oe || se || ae || typeof e == "object" && e !== null && (e.$$typeof === C || e.$$typeof === m || e.$$typeof === h || e.$$typeof === c || e.$$typeof === v || // This needs to include all possible module reference object
       // types supported by any Flight configuration anywhere since
       // we don't know which Flight build this will end up being used
       // with.
@@ -89,7 +89,7 @@ function wt() {
     function A(e) {
       if (e == null)
         return null;
-      if (typeof e.tag == "number" && C("Received an unexpected object in getComponentNameFromType(). This is likely a bug in React. Please file an issue."), typeof e == "function")
+      if (typeof e.tag == "number" && R("Received an unexpected object in getComponentNameFromType(). This is likely a bug in React. Please file an issue."), typeof e == "function")
         return e.displayName || e.name || null;
       if (typeof e == "string")
         return e;
@@ -120,7 +120,7 @@ function wt() {
           case m:
             var d = e.displayName || null;
             return d !== null ? d : A(e.type) || "Memo";
-          case R: {
+          case C: {
             var y = e, k = y._payload, _ = y._init;
             try {
               return A(_(k));
@@ -131,18 +131,18 @@ function wt() {
         }
       return null;
     }
-    var S = Object.assign, F = 0, T, N, me, Ee, Te, we, Re;
-    function Ce() {
+    var S = Object.assign, F = 0, T, N, me, Ee, Te, we, Ce;
+    function Re() {
     }
-    Ce.__reactDisabledLog = !0;
+    Re.__reactDisabledLog = !0;
     function Je() {
       {
         if (F === 0) {
-          T = console.log, N = console.info, me = console.warn, Ee = console.error, Te = console.group, we = console.groupCollapsed, Re = console.groupEnd;
+          T = console.log, N = console.info, me = console.warn, Ee = console.error, Te = console.group, we = console.groupCollapsed, Ce = console.groupEnd;
           var e = {
             configurable: !0,
             enumerable: !0,
-            value: Ce,
+            value: Re,
             writable: !0
           };
           Object.defineProperties(console, {
@@ -186,11 +186,11 @@ function wt() {
               value: we
             }),
             groupEnd: S({}, e, {
-              value: Re
+              value: Ce
             })
           });
         }
-        F < 0 && C("disabledDepth fell below zero. This is a bug in React. Please file an issue.");
+        F < 0 && R("disabledDepth fell below zero. This is a bug in React. Please file an issue.");
       }
     }
     var le = L.ReactCurrentDispatcher, ue;
@@ -309,7 +309,7 @@ function wt() {
             return Qe(e.render);
           case m:
             return ee(e.type, t, n);
-          case R: {
+          case C: {
             var d = e, y = d._payload, k = d._init;
             try {
               return ee(k(y), t, n);
@@ -342,7 +342,7 @@ function wt() {
             } catch (E) {
               p = E;
             }
-            p && !(p instanceof Error) && (re(y), C("%s: type specification of %s `%s` is invalid; the type checker function must return `null` or an `Error` but returned a %s. You may have forgotten to pass an argument to the type checker creator (arrayOf, instanceOf, objectOf, oneOf, oneOfType, and shape all require an argument).", d || "React class", n, _, typeof p), re(null)), p instanceof Error && !(p.message in je) && (je[p.message] = !0, re(y), C("Failed %s type: %s", n, p.message), re(null));
+            p && !(p instanceof Error) && (re(y), R("%s: type specification of %s `%s` is invalid; the type checker function must return `null` or an `Error` but returned a %s. You may have forgotten to pass an argument to the type checker creator (arrayOf, instanceOf, objectOf, oneOf, oneOfType, and shape all require an argument).", d || "React class", n, _, typeof p), re(null)), p instanceof Error && !(p.message in je) && (je[p.message] = !0, re(y), R("Failed %s type: %s", n, p.message), re(null));
           }
       }
     }
@@ -368,7 +368,7 @@ function wt() {
     }
     function Pe(e) {
       if (nt(e))
-        return C("The provided key is an unsupported type %s. This value must be coerced to a string before before using it here.", rt(e)), Se(e);
+        return R("The provided key is an unsupported type %s. This value must be coerced to a string before before using it here.", rt(e)), Se(e);
     }
     var q = L.ReactCurrentOwner, ot = {
       key: !0,
@@ -396,13 +396,13 @@ function wt() {
     function it(e, t) {
       if (typeof e.ref == "string" && q.current && t && q.current.stateNode !== t) {
         var n = A(q.current.type);
-        ve[n] || (C('Component "%s" contains the string ref "%s". Support for string refs will be removed in a future major release. This case cannot be automatically converted to an arrow function. We ask you to manually fix this case by using useRef() or createRef() instead. Learn more about using refs safely here: https://reactjs.org/link/strict-mode-string-ref', A(q.current.type), e.ref), ve[n] = !0);
+        ve[n] || (R('Component "%s" contains the string ref "%s". Support for string refs will be removed in a future major release. This case cannot be automatically converted to an arrow function. We ask you to manually fix this case by using useRef() or createRef() instead. Learn more about using refs safely here: https://reactjs.org/link/strict-mode-string-ref', A(q.current.type), e.ref), ve[n] = !0);
       }
     }
     function ct(e, t) {
       {
         var n = function() {
-          Ae || (Ae = !0, C("%s: `key` is not a prop. Trying to access it will result in `undefined` being returned. If you need to access the same value within the child component, you should pass it as a different prop. (https://reactjs.org/link/special-props)", t));
+          Ae || (Ae = !0, R("%s: `key` is not a prop. Trying to access it will result in `undefined` being returned. If you need to access the same value within the child component, you should pass it as a different prop. (https://reactjs.org/link/special-props)", t));
         };
         n.isReactWarning = !0, Object.defineProperty(e, "key", {
           get: n,
@@ -413,7 +413,7 @@ function wt() {
     function lt(e, t) {
       {
         var n = function() {
-          Fe || (Fe = !0, C("%s: `ref` is not a prop. Trying to access it will result in `undefined` being returned. If you need to access the same value within the child component, you should pass it as a different prop. (https://reactjs.org/link/special-props)", t));
+          Fe || (Fe = !0, R("%s: `ref` is not a prop. Trying to access it will result in `undefined` being returned. If you need to access the same value within the child component, you should pass it as a different prop. (https://reactjs.org/link/special-props)", t));
         };
         n.isReactWarning = !0, Object.defineProperty(e, "ref", {
           get: n,
@@ -527,7 +527,7 @@ Check the top-level render call using <` + n + ">.");
           return;
         De[n] = !0;
         var d = "";
-        e && e._owner && e._owner !== he.current && (d = " It was passed a child from " + A(e._owner.type) + "."), V(e), C('Each child in a list should have a unique "key" prop.%s%s See https://reactjs.org/link/warning-keys for more information.', n, d), V(null);
+        e && e._owner && e._owner !== he.current && (d = " It was passed a child from " + A(e._owner.type) + "."), V(e), R('Each child in a list should have a unique "key" prop.%s%s See https://reactjs.org/link/warning-keys for more information.', n, d), V(null);
       }
     }
     function We(e, t) {
@@ -569,9 +569,9 @@ Check the top-level render call using <` + n + ">.");
         } else if (t.PropTypes !== void 0 && !pe) {
           pe = !0;
           var y = A(t);
-          C("Component %s declared `PropTypes` instead of `propTypes`. Did you misspell the property assignment?", y || "Unknown");
+          R("Component %s declared `PropTypes` instead of `propTypes`. Did you misspell the property assignment?", y || "Unknown");
         }
-        typeof t.getDefaultProps == "function" && !t.getDefaultProps.isReactClassApproved && C("getDefaultProps is only used on classic React.createClass definitions. Use a static property named `defaultProps` instead.");
+        typeof t.getDefaultProps == "function" && !t.getDefaultProps.isReactClassApproved && R("getDefaultProps is only used on classic React.createClass definitions. Use a static property named `defaultProps` instead.");
       }
     }
     function pt(e) {
@@ -579,11 +579,11 @@ Check the top-level render call using <` + n + ">.");
         for (var t = Object.keys(e.props), n = 0; n < t.length; n++) {
           var d = t[n];
           if (d !== "children" && d !== "key") {
-            V(e), C("Invalid prop `%s` supplied to `React.Fragment`. React.Fragment can only have `key` and `children` props.", d), V(null);
+            V(e), R("Invalid prop `%s` supplied to `React.Fragment`. React.Fragment can only have `key` and `children` props.", d), V(null);
             break;
           }
         }
-        e.ref !== null && (V(e), C("Invalid attribute `ref` supplied to `React.Fragment`."), V(null));
+        e.ref !== null && (V(e), R("Invalid attribute `ref` supplied to `React.Fragment`."), V(null));
       }
     }
     function Ue(e, t, n, d, y, k) {
@@ -595,7 +595,7 @@ Check the top-level render call using <` + n + ">.");
           var x = ft(y);
           x ? p += x : p += Ie();
           var E;
-          e === null ? E = "null" : fe(e) ? E = "array" : e !== void 0 && e.$$typeof === s ? (E = "<" + (A(e.type) || "Unknown") + " />", p = " Did you accidentally export a JSX literal instead of a component?") : E = typeof e, C("React.jsx: type is invalid -- expected a string (for built-in components) or a class/function (for composite components) but got: %s.%s", E, p);
+          e === null ? E = "null" : fe(e) ? E = "array" : e !== void 0 && e.$$typeof === s ? (E = "<" + (A(e.type) || "Unknown") + " />", p = " Did you accidentally export a JSX literal instead of a component?") : E = typeof e, R("React.jsx: type is invalid -- expected a string (for built-in components) or a class/function (for composite components) but got: %s.%s", E, p);
         }
         var w = dt(e, t, n, y, k);
         if (w == null)
@@ -609,7 +609,7 @@ Check the top-level render call using <` + n + ">.");
                   We(j[B], e);
                 Object.freeze && Object.freeze(j);
               } else
-                C("React.jsx: Static children should always be an array. You are likely explicitly calling React.jsxs or React.jsxDEV. Use the Babel transform instead.");
+                R("React.jsx: Static children should always be an array. You are likely explicitly calling React.jsxs or React.jsxDEV. Use the Babel transform instead.");
             else
               We(j, e);
         }
@@ -628,22 +628,22 @@ Check the top-level render call using <` + n + ">.");
 }
 process.env.NODE_ENV === "production" ? ye.exports = Tt() : ye.exports = wt();
 var i = ye.exports;
-const Be = "default", Rt = (o, s) => async (...r) => {
-  var R;
+const Be = "default", Ct = (o, s) => async (...r) => {
+  var C;
   const [a, u, ...l] = r, h = u ? { ...u } : { method: "GET" };
   let c = new Headers();
   h.headers && (c = h.headers instanceof Headers ? h.headers : new Headers(h.headers));
-  const g = await s().getValidTokenAsync(), b = (R = g == null ? void 0 : g.tokens) == null ? void 0 : R.accessToken;
+  const g = await s().getValidTokenAsync(), b = (C = g == null ? void 0 : g.tokens) == null ? void 0 : C.accessToken;
   c.has("Accept") || c.set("Accept", "application/json"), b && (c.set("Authorization", `Bearer ${b}`), h.credentials || (h.credentials = "same-origin"));
   const m = { ...h, headers: c };
   return await o(a, m, ...l);
 }, Gt = (o = null, s = Be) => (r) => (a) => {
-  const { fetch: u } = Ct(o || a.fetch, s);
+  const { fetch: u } = Rt(o || a.fetch, s);
   return /* @__PURE__ */ i.jsx(r, { ...a, fetch: u });
-}, Ct = (o = null, s = Be) => {
+}, Rt = (o = null, s = Be) => {
   const r = o || window.fetch, a = f.get;
   return { fetch: kt(
-    (l, h) => Rt(r, () => a(s))(l, h),
+    (l, h) => Ct(r, () => a(s))(l, h),
     [r, s]
   ) };
 }, qe = () => /* @__PURE__ */ i.jsx("div", { className: "oidc-authenticating", children: /* @__PURE__ */ i.jsxs("div", { className: "oidc-authenticating__container", children: [
@@ -714,8 +714,8 @@ const Be = "default", Rt = (o, s) => async (...r) => {
 }) => {
   const v = window ? z(window.location.href) : "", [g, b] = P(v);
   O(() => {
-    const R = () => b(z(window.location.href));
-    return R(), window.addEventListener("popstate", R, !1), () => window.removeEventListener("popstate", R, !1);
+    const C = () => b(z(window.location.href));
+    return C(), window.addEventListener("popstate", C, !1), () => window.removeEventListener("popstate", C, !1);
   }, []);
   const m = z(r);
   if (a && g === z(a))
@@ -756,11 +756,11 @@ const Be = "default", Rt = (o, s) => async (...r) => {
   onSessionLost: g = null,
   onLogoutFromAnotherTab: b = null,
   onLogoutFromSameTab: m = null,
-  withCustomHistory: R = null,
+  withCustomHistory: C = null,
   onEvent: D = null,
   getFetch: K = null
 }) => {
-  const U = (S = "default") => f.getOrCreate(K ?? Et)(s, S), [ne, L] = P(!0), [C, $] = P(Ve), [oe, se] = P("default");
+  const U = (S = "default") => f.getOrCreate(K ?? Et)(s, S), [ne, L] = P(!0), [R, $] = P(Ve), [oe, se] = P("default");
   O(() => {
     const F = U(r).subscribeEvents((T, N) => {
       D && D(r, T, N);
@@ -790,7 +790,7 @@ const Be = "default", Rt = (o, s) => async (...r) => {
     };
   }, [s, r]);
   const ae = v, ie = u, W = l, X = h, ce = c, Y = ne || oe !== r, M = U(r);
-  switch (C.name) {
+  switch (R.name) {
     case f.eventNames.service_worker_not_supported_by_browser:
       return /* @__PURE__ */ i.jsx(J, { loadingComponent: W, isLoading: Y, configurationName: r, children: /* @__PURE__ */ i.jsx(X, { configurationName: r }) });
     case f.eventNames.loginAsync_begin:
@@ -813,7 +813,7 @@ const Be = "default", Rt = (o, s) => async (...r) => {
           callbackErrorComponent: c,
           authenticatingComponent: u,
           configurationName: r,
-          withCustomHistory: R,
+          withCustomHistory: C,
           children: /* @__PURE__ */ i.jsx($t, { loadingComponent: W, configurationName: r, children: o })
         }
       ) });
@@ -956,7 +956,7 @@ export {
   rr as TokenRenewMode,
   Kt as useOidc,
   Xt as useOidcAccessToken,
-  Ct as useOidcFetch,
+  Rt as useOidcFetch,
   Qt as useOidcIdToken,
   Zt as useOidcUser,
   Gt as withOidcFetch,