npm - @civic/auth - Versions diffs - 0.0.1-beta.31 → 0.0.1-beta.4 - Mend

@civic/auth 0.0.1-beta.31 → 0.0.1-beta.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (701) hide show

package/README.md +4 -26
package/dist/chunk-3UIVD6NR.mjs +268 -0
package/dist/chunk-3UIVD6NR.mjs.map +1 -0
package/dist/chunk-CRTRMMJ7.js +59 -0
package/dist/chunk-CRTRMMJ7.js.map +1 -0
package/dist/chunk-KBDRDCE5.mjs +239 -0
package/dist/chunk-KBDRDCE5.mjs.map +1 -0
package/dist/chunk-NQPMNXBL.mjs +154 -0
package/dist/chunk-NQPMNXBL.mjs.map +1 -0
package/dist/chunk-OLT5HB3G.js +239 -0
package/dist/chunk-OLT5HB3G.js.map +1 -0
package/dist/chunk-RGHW4PYM.mjs +59 -0
package/dist/chunk-RGHW4PYM.mjs.map +1 -0
package/dist/chunk-T47HULF6.js +268 -0
package/dist/chunk-T47HULF6.js.map +1 -0
package/dist/chunk-WPISYQG3.js +154 -0
package/dist/chunk-WPISYQG3.js.map +1 -0
package/dist/index-DoDoIY_K.d.mts +79 -0
package/dist/index-DoDoIY_K.d.ts +79 -0
package/dist/index.css +339 -0
package/dist/index.css.map +1 -0
package/dist/index.d.mts +3 -0
package/dist/index.d.ts +3 -0
package/dist/index.js +2 -0
package/dist/index.js.map +1 -0
package/dist/index.mjs +2 -0
package/dist/index.mjs.map +1 -0
package/dist/nextjs.d.mts +225 -0
package/dist/nextjs.d.ts +225 -0
package/dist/nextjs.js +253 -0
package/dist/nextjs.js.map +1 -0
package/dist/nextjs.mjs +253 -0
package/dist/nextjs.mjs.map +1 -0
package/dist/react.d.mts +119 -0
package/dist/react.d.ts +119 -0
package/dist/react.js +1179 -0
package/dist/react.js.map +1 -0
package/dist/react.mjs +1179 -0
package/dist/react.mjs.map +1 -0
package/dist/server.d.mts +61 -0
package/dist/server.d.ts +61 -0
package/dist/server.js +19 -0
package/dist/server.js.map +1 -0
package/dist/server.mjs +19 -0
package/dist/server.mjs.map +1 -0
package/package.json +42 -52
package/.eslintignore +0 -3
package/.eslintrc.json +0 -10
package/.prettierignore +0 -3
package/.prettierrc +0 -1
package/.turbo/turbo-build.log +0 -13
package/.turbo/turbo-lint$colon$fix.log +0 -16
package/.turbo/turbo-test.log +0 -1153
package/dist/cjs/src/browser/storage.d.ts +0 -6
package/dist/cjs/src/browser/storage.d.ts.map +0 -1
package/dist/cjs/src/browser/storage.js +0 -13
package/dist/cjs/src/browser/storage.js.map +0 -1
package/dist/cjs/src/config.d.ts +0 -3
package/dist/cjs/src/config.d.ts.map +0 -1
package/dist/cjs/src/config.js +0 -8
package/dist/cjs/src/config.js.map +0 -1
package/dist/cjs/src/constants.d.ts +0 -9
package/dist/cjs/src/constants.d.ts.map +0 -1
package/dist/cjs/src/constants.js +0 -26
package/dist/cjs/src/constants.js.map +0 -1
package/dist/cjs/src/index.d.ts +0 -4
package/dist/cjs/src/index.d.ts.map +0 -1
package/dist/cjs/src/index.js +0 -3
package/dist/cjs/src/index.js.map +0 -1
package/dist/cjs/src/lib/cookies.d.ts +0 -7
package/dist/cjs/src/lib/cookies.d.ts.map +0 -1
package/dist/cjs/src/lib/cookies.js +0 -26
package/dist/cjs/src/lib/cookies.js.map +0 -1
package/dist/cjs/src/lib/jwt.d.ts +0 -3
package/dist/cjs/src/lib/jwt.d.ts.map +0 -1
package/dist/cjs/src/lib/jwt.js +0 -13
package/dist/cjs/src/lib/jwt.js.map +0 -1
package/dist/cjs/src/lib/logger.d.ts +0 -26
package/dist/cjs/src/lib/logger.d.ts.map +0 -1
package/dist/cjs/src/lib/logger.js +0 -62
package/dist/cjs/src/lib/logger.js.map +0 -1
package/dist/cjs/src/lib/oauth.d.ts +0 -19
package/dist/cjs/src/lib/oauth.d.ts.map +0 -1
package/dist/cjs/src/lib/oauth.js +0 -67
package/dist/cjs/src/lib/oauth.js.map +0 -1
package/dist/cjs/src/lib/postMessage.d.ts +0 -4
package/dist/cjs/src/lib/postMessage.d.ts.map +0 -1
package/dist/cjs/src/lib/postMessage.js +0 -18
package/dist/cjs/src/lib/postMessage.js.map +0 -1
package/dist/cjs/src/lib/windowUtil.d.ts +0 -4
package/dist/cjs/src/lib/windowUtil.d.ts.map +0 -1
package/dist/cjs/src/lib/windowUtil.js +0 -34
package/dist/cjs/src/lib/windowUtil.js.map +0 -1
package/dist/cjs/src/nextjs/GetUser.d.ts +0 -6
package/dist/cjs/src/nextjs/GetUser.d.ts.map +0 -1
package/dist/cjs/src/nextjs/GetUser.js +0 -22
package/dist/cjs/src/nextjs/GetUser.js.map +0 -1
package/dist/cjs/src/nextjs/config.d.ts +0 -178
package/dist/cjs/src/nextjs/config.d.ts.map +0 -1
package/dist/cjs/src/nextjs/config.js +0 -167
package/dist/cjs/src/nextjs/config.js.map +0 -1
package/dist/cjs/src/nextjs/cookies.d.ts +0 -30
package/dist/cjs/src/nextjs/cookies.d.ts.map +0 -1
package/dist/cjs/src/nextjs/cookies.js +0 -119
package/dist/cjs/src/nextjs/cookies.js.map +0 -1
package/dist/cjs/src/nextjs/hooks/index.d.ts +0 -2
package/dist/cjs/src/nextjs/hooks/index.d.ts.map +0 -1
package/dist/cjs/src/nextjs/hooks/index.js +0 -6
package/dist/cjs/src/nextjs/hooks/index.js.map +0 -1
package/dist/cjs/src/nextjs/hooks/useTokenCookie.d.ts +0 -3
package/dist/cjs/src/nextjs/hooks/useTokenCookie.d.ts.map +0 -1
package/dist/cjs/src/nextjs/hooks/useTokenCookie.js +0 -41
package/dist/cjs/src/nextjs/hooks/useTokenCookie.js.map +0 -1
package/dist/cjs/src/nextjs/hooks/useUserCookie.d.ts +0 -3
package/dist/cjs/src/nextjs/hooks/useUserCookie.d.ts.map +0 -1
package/dist/cjs/src/nextjs/hooks/useUserCookie.js +0 -40
package/dist/cjs/src/nextjs/hooks/useUserCookie.js.map +0 -1
package/dist/cjs/src/nextjs/index.d.ts +0 -7
package/dist/cjs/src/nextjs/index.d.ts.map +0 -1
package/dist/cjs/src/nextjs/index.js +0 -18
package/dist/cjs/src/nextjs/index.js.map +0 -1
package/dist/cjs/src/nextjs/middleware/index.d.ts +0 -2
package/dist/cjs/src/nextjs/middleware/index.d.ts.map +0 -1
package/dist/cjs/src/nextjs/middleware/index.js +0 -8
package/dist/cjs/src/nextjs/middleware/index.js.map +0 -1
package/dist/cjs/src/nextjs/middleware.d.ts +0 -59
package/dist/cjs/src/nextjs/middleware.d.ts.map +0 -1
package/dist/cjs/src/nextjs/middleware.js +0 -116
package/dist/cjs/src/nextjs/middleware.js.map +0 -1
package/dist/cjs/src/nextjs/providers/NextAuthProvider.d.ts +0 -9
package/dist/cjs/src/nextjs/providers/NextAuthProvider.d.ts.map +0 -1
package/dist/cjs/src/nextjs/providers/NextAuthProvider.js +0 -76
package/dist/cjs/src/nextjs/providers/NextAuthProvider.js.map +0 -1
package/dist/cjs/src/nextjs/routeHandler.d.ts +0 -18
package/dist/cjs/src/nextjs/routeHandler.d.ts.map +0 -1
package/dist/cjs/src/nextjs/routeHandler.js +0 -217
package/dist/cjs/src/nextjs/routeHandler.js.map +0 -1
package/dist/cjs/src/nextjs/utils.d.ts +0 -3
package/dist/cjs/src/nextjs/utils.d.ts.map +0 -1
package/dist/cjs/src/nextjs/utils.js +0 -9
package/dist/cjs/src/nextjs/utils.js.map +0 -1
package/dist/cjs/src/reactjs/components/SignInButton.d.ts +0 -8
package/dist/cjs/src/reactjs/components/SignInButton.d.ts.map +0 -1
package/dist/cjs/src/reactjs/components/SignInButton.js +0 -20
package/dist/cjs/src/reactjs/components/SignInButton.js.map +0 -1
package/dist/cjs/src/reactjs/components/SignOutButton.d.ts +0 -6
package/dist/cjs/src/reactjs/components/SignOutButton.d.ts.map +0 -1
package/dist/cjs/src/reactjs/components/SignOutButton.js +0 -20
package/dist/cjs/src/reactjs/components/SignOutButton.js.map +0 -1
package/dist/cjs/src/reactjs/components/UserButton.d.ts +0 -8
package/dist/cjs/src/reactjs/components/UserButton.d.ts.map +0 -1
package/dist/cjs/src/reactjs/components/UserButton.js +0 -136
package/dist/cjs/src/reactjs/components/UserButton.js.map +0 -1
package/dist/cjs/src/reactjs/components/index.d.ts +0 -6
package/dist/cjs/src/reactjs/components/index.d.ts.map +0 -1
package/dist/cjs/src/reactjs/components/index.js +0 -14
package/dist/cjs/src/reactjs/components/index.js.map +0 -1
package/dist/cjs/src/reactjs/hooks/index.d.ts +0 -7
package/dist/cjs/src/reactjs/hooks/index.d.ts.map +0 -1
package/dist/cjs/src/reactjs/hooks/index.js +0 -16
package/dist/cjs/src/reactjs/hooks/index.js.map +0 -1
package/dist/cjs/src/reactjs/hooks/useAuth.d.ts +0 -3
package/dist/cjs/src/reactjs/hooks/useAuth.d.ts.map +0 -1
package/dist/cjs/src/reactjs/hooks/useAuth.js +0 -15
package/dist/cjs/src/reactjs/hooks/useAuth.js.map +0 -1
package/dist/cjs/src/reactjs/hooks/useUser.d.ts +0 -4
package/dist/cjs/src/reactjs/hooks/useUser.d.ts.map +0 -1
package/dist/cjs/src/reactjs/hooks/useUser.js +0 -15
package/dist/cjs/src/reactjs/hooks/useUser.js.map +0 -1
package/dist/cjs/src/reactjs/index.d.ts +0 -6
package/dist/cjs/src/reactjs/index.d.ts.map +0 -1
package/dist/cjs/src/reactjs/index.js +0 -30
package/dist/cjs/src/reactjs/index.js.map +0 -1
package/dist/cjs/src/reactjs/providers/index.d.ts +0 -8
package/dist/cjs/src/reactjs/providers/index.d.ts.map +0 -1
package/dist/cjs/src/reactjs/providers/index.js +0 -19
package/dist/cjs/src/reactjs/providers/index.js.map +0 -1
package/dist/cjs/src/server/ServerAuthenticationResolver.d.ts +0 -18
package/dist/cjs/src/server/ServerAuthenticationResolver.d.ts.map +0 -1
package/dist/cjs/src/server/ServerAuthenticationResolver.js +0 -61
package/dist/cjs/src/server/ServerAuthenticationResolver.js.map +0 -1
package/dist/cjs/src/server/config.d.ts +0 -16
package/dist/cjs/src/server/config.d.ts.map +0 -1
package/dist/cjs/src/server/config.js +0 -3
package/dist/cjs/src/server/config.js.map +0 -1
package/dist/cjs/src/server/index.d.ts +0 -6
package/dist/cjs/src/server/index.d.ts.map +0 -1
package/dist/cjs/src/server/index.js +0 -14
package/dist/cjs/src/server/index.js.map +0 -1
package/dist/cjs/src/server/login.d.ts +0 -17
package/dist/cjs/src/server/login.d.ts.map +0 -1
package/dist/cjs/src/server/login.js +0 -42
package/dist/cjs/src/server/login.js.map +0 -1
package/dist/cjs/src/server/refresh.d.ts +0 -7
package/dist/cjs/src/server/refresh.d.ts.map +0 -1
package/dist/cjs/src/server/refresh.js +0 -16
package/dist/cjs/src/server/refresh.js.map +0 -1
package/dist/cjs/src/services/AuthenticationService.d.ts +0 -87
package/dist/cjs/src/services/AuthenticationService.d.ts.map +0 -1
package/dist/cjs/src/services/AuthenticationService.js +0 -218
package/dist/cjs/src/services/AuthenticationService.js.map +0 -1
package/dist/cjs/src/services/PKCE.d.ts +0 -20
package/dist/cjs/src/services/PKCE.d.ts.map +0 -1
package/dist/cjs/src/services/PKCE.js +0 -50
package/dist/cjs/src/services/PKCE.js.map +0 -1
package/dist/cjs/src/services/types.d.ts +0 -23
package/dist/cjs/src/services/types.d.ts.map +0 -1
package/dist/cjs/src/services/types.js +0 -11
package/dist/cjs/src/services/types.js.map +0 -1
package/dist/cjs/src/shared/AuthProvider.d.ts +0 -18
package/dist/cjs/src/shared/AuthProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/AuthProvider.js +0 -246
package/dist/cjs/src/shared/AuthProvider.js.map +0 -1
package/dist/cjs/src/shared/CivicAuthProvider.d.ts +0 -6
package/dist/cjs/src/shared/CivicAuthProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/CivicAuthProvider.js +0 -19
package/dist/cjs/src/shared/CivicAuthProvider.js.map +0 -1
package/dist/cjs/src/shared/GenericAuthenticationRefresher.d.ts +0 -15
package/dist/cjs/src/shared/GenericAuthenticationRefresher.d.ts.map +0 -1
package/dist/cjs/src/shared/GenericAuthenticationRefresher.js +0 -47
package/dist/cjs/src/shared/GenericAuthenticationRefresher.js.map +0 -1
package/dist/cjs/src/shared/UserProvider.d.ts +0 -17
package/dist/cjs/src/shared/UserProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/UserProvider.js +0 -42
package/dist/cjs/src/shared/UserProvider.js.map +0 -1
package/dist/cjs/src/shared/UserSession.d.ts +0 -12
package/dist/cjs/src/shared/UserSession.d.ts.map +0 -1
package/dist/cjs/src/shared/UserSession.js +0 -24
package/dist/cjs/src/shared/UserSession.js.map +0 -1
package/dist/cjs/src/shared/components/CivicAuthIframe.d.ts +0 -8
package/dist/cjs/src/shared/components/CivicAuthIframe.d.ts.map +0 -1
package/dist/cjs/src/shared/components/CivicAuthIframe.js +0 -35
package/dist/cjs/src/shared/components/CivicAuthIframe.js.map +0 -1
package/dist/cjs/src/shared/components/CivicAuthIframeContainer.d.ts +0 -9
package/dist/cjs/src/shared/components/CivicAuthIframeContainer.d.ts.map +0 -1
package/dist/cjs/src/shared/components/CivicAuthIframeContainer.js +0 -154
package/dist/cjs/src/shared/components/CivicAuthIframeContainer.js.map +0 -1
package/dist/cjs/src/shared/components/CloseIcon.d.ts +0 -4
package/dist/cjs/src/shared/components/CloseIcon.d.ts.map +0 -1
package/dist/cjs/src/shared/components/CloseIcon.js +0 -12
package/dist/cjs/src/shared/components/CloseIcon.js.map +0 -1
package/dist/cjs/src/shared/components/LoadingIcon.d.ts +0 -4
package/dist/cjs/src/shared/components/LoadingIcon.d.ts.map +0 -1
package/dist/cjs/src/shared/components/LoadingIcon.js +0 -36
package/dist/cjs/src/shared/components/LoadingIcon.js.map +0 -1
package/dist/cjs/src/shared/hooks/index.d.ts +0 -5
package/dist/cjs/src/shared/hooks/index.d.ts.map +0 -1
package/dist/cjs/src/shared/hooks/index.js +0 -12
package/dist/cjs/src/shared/hooks/index.js.map +0 -1
package/dist/cjs/src/shared/hooks/useAuth.d.ts +0 -3
package/dist/cjs/src/shared/hooks/useAuth.d.ts.map +0 -1
package/dist/cjs/src/shared/hooks/useAuth.js +0 -15
package/dist/cjs/src/shared/hooks/useAuth.js.map +0 -1
package/dist/cjs/src/shared/hooks/useConfig.d.ts +0 -3
package/dist/cjs/src/shared/hooks/useConfig.d.ts.map +0 -1
package/dist/cjs/src/shared/hooks/useConfig.js +0 -16
package/dist/cjs/src/shared/hooks/useConfig.js.map +0 -1
package/dist/cjs/src/shared/hooks/useIframe.d.ts +0 -3
package/dist/cjs/src/shared/hooks/useIframe.d.ts.map +0 -1
package/dist/cjs/src/shared/hooks/useIframe.js +0 -16
package/dist/cjs/src/shared/hooks/useIframe.js.map +0 -1
package/dist/cjs/src/shared/hooks/useSession.d.ts +0 -3
package/dist/cjs/src/shared/hooks/useSession.d.ts.map +0 -1
package/dist/cjs/src/shared/hooks/useSession.js +0 -16
package/dist/cjs/src/shared/hooks/useSession.js.map +0 -1
package/dist/cjs/src/shared/hooks/useToken.d.ts +0 -3
package/dist/cjs/src/shared/hooks/useToken.d.ts.map +0 -1
package/dist/cjs/src/shared/hooks/useToken.js +0 -15
package/dist/cjs/src/shared/hooks/useToken.js.map +0 -1
package/dist/cjs/src/shared/lib/GenericAuthenticationRefresher.d.ts +0 -15
package/dist/cjs/src/shared/lib/GenericAuthenticationRefresher.d.ts.map +0 -1
package/dist/cjs/src/shared/lib/GenericAuthenticationRefresher.js +0 -43
package/dist/cjs/src/shared/lib/GenericAuthenticationRefresher.js.map +0 -1
package/dist/cjs/src/shared/lib/UserSession.d.ts +0 -12
package/dist/cjs/src/shared/lib/UserSession.d.ts.map +0 -1
package/dist/cjs/src/shared/lib/UserSession.js +0 -24
package/dist/cjs/src/shared/lib/UserSession.js.map +0 -1
package/dist/cjs/src/shared/lib/session.d.ts +0 -3
package/dist/cjs/src/shared/lib/session.d.ts.map +0 -1
package/dist/cjs/src/shared/lib/session.js +0 -13
package/dist/cjs/src/shared/lib/session.js.map +0 -1
package/dist/cjs/src/shared/lib/storage.d.ts +0 -25
package/dist/cjs/src/shared/lib/storage.d.ts.map +0 -1
package/dist/cjs/src/shared/lib/storage.js +0 -21
package/dist/cjs/src/shared/lib/storage.js.map +0 -1
package/dist/cjs/src/shared/lib/types.d.ts +0 -22
package/dist/cjs/src/shared/lib/types.d.ts.map +0 -1
package/dist/cjs/src/shared/lib/types.js +0 -19
package/dist/cjs/src/shared/lib/types.js.map +0 -1
package/dist/cjs/src/shared/lib/util.d.ts +0 -33
package/dist/cjs/src/shared/lib/util.d.ts.map +0 -1
package/dist/cjs/src/shared/lib/util.js +0 -163
package/dist/cjs/src/shared/lib/util.js.map +0 -1
package/dist/cjs/src/shared/providers/AuthContext.d.ts +0 -10
package/dist/cjs/src/shared/providers/AuthContext.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/AuthContext.js +0 -6
package/dist/cjs/src/shared/providers/AuthContext.js.map +0 -1
package/dist/cjs/src/shared/providers/AuthProvider.d.ts +0 -20
package/dist/cjs/src/shared/providers/AuthProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/AuthProvider.js +0 -289
package/dist/cjs/src/shared/providers/AuthProvider.js.map +0 -1
package/dist/cjs/src/shared/providers/CivicAuthProvider.d.ts +0 -6
package/dist/cjs/src/shared/providers/CivicAuthProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/CivicAuthProvider.js +0 -21
package/dist/cjs/src/shared/providers/CivicAuthProvider.js.map +0 -1
package/dist/cjs/src/shared/providers/ConfigProvider.d.ts +0 -21
package/dist/cjs/src/shared/providers/ConfigProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/ConfigProvider.js +0 -46
package/dist/cjs/src/shared/providers/ConfigProvider.js.map +0 -1
package/dist/cjs/src/shared/providers/IframeProvider.d.ts +0 -16
package/dist/cjs/src/shared/providers/IframeProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/IframeProvider.js +0 -38
package/dist/cjs/src/shared/providers/IframeProvider.js.map +0 -1
package/dist/cjs/src/shared/providers/SessionProvider.d.ts +0 -13
package/dist/cjs/src/shared/providers/SessionProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/SessionProvider.js +0 -40
package/dist/cjs/src/shared/providers/SessionProvider.js.map +0 -1
package/dist/cjs/src/shared/providers/TokenProvider.d.ts +0 -18
package/dist/cjs/src/shared/providers/TokenProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/TokenProvider.js +0 -80
package/dist/cjs/src/shared/providers/TokenProvider.js.map +0 -1
package/dist/cjs/src/shared/providers/UserProvider.d.ts +0 -18
package/dist/cjs/src/shared/providers/UserProvider.d.ts.map +0 -1
package/dist/cjs/src/shared/providers/UserProvider.js +0 -65
package/dist/cjs/src/shared/providers/UserProvider.js.map +0 -1
package/dist/cjs/src/shared/session.d.ts +0 -3
package/dist/cjs/src/shared/session.d.ts.map +0 -1
package/dist/cjs/src/shared/session.js +0 -13
package/dist/cjs/src/shared/session.js.map +0 -1
package/dist/cjs/src/shared/util.d.ts +0 -39
package/dist/cjs/src/shared/util.d.ts.map +0 -1
package/dist/cjs/src/shared/util.js +0 -162
package/dist/cjs/src/shared/util.js.map +0 -1
package/dist/cjs/src/types.d.ts +0 -146
package/dist/cjs/src/types.d.ts.map +0 -1
package/dist/cjs/src/types.js +0 -3
package/dist/cjs/src/types.js.map +0 -1
package/dist/cjs/src/utils.d.ts +0 -15
package/dist/cjs/src/utils.d.ts.map +0 -1
package/dist/cjs/src/utils.js +0 -47
package/dist/cjs/src/utils.js.map +0 -1
package/dist/cjs/tsconfig.cjs.tsbuildinfo +0 -1
package/dist/esm/src/browser/storage.d.ts +0 -6
package/dist/esm/src/browser/storage.d.ts.map +0 -1
package/dist/esm/src/browser/storage.js +0 -9
package/dist/esm/src/browser/storage.js.map +0 -1
package/dist/esm/src/config.d.ts +0 -3
package/dist/esm/src/config.d.ts.map +0 -1
package/dist/esm/src/config.js +0 -5
package/dist/esm/src/config.js.map +0 -1
package/dist/esm/src/constants.d.ts +0 -9
package/dist/esm/src/constants.d.ts.map +0 -1
package/dist/esm/src/constants.js +0 -17
package/dist/esm/src/constants.js.map +0 -1
package/dist/esm/src/index.d.ts +0 -4
package/dist/esm/src/index.d.ts.map +0 -1
package/dist/esm/src/index.js +0 -2
package/dist/esm/src/index.js.map +0 -1
package/dist/esm/src/lib/cookies.d.ts +0 -7
package/dist/esm/src/lib/cookies.d.ts.map +0 -1
package/dist/esm/src/lib/cookies.js +0 -23
package/dist/esm/src/lib/cookies.js.map +0 -1
package/dist/esm/src/lib/jwt.d.ts +0 -3
package/dist/esm/src/lib/jwt.d.ts.map +0 -1
package/dist/esm/src/lib/jwt.js +0 -9
package/dist/esm/src/lib/jwt.js.map +0 -1
package/dist/esm/src/lib/logger.d.ts +0 -26
package/dist/esm/src/lib/logger.d.ts.map +0 -1
package/dist/esm/src/lib/logger.js +0 -55
package/dist/esm/src/lib/logger.js.map +0 -1
package/dist/esm/src/lib/oauth.d.ts +0 -19
package/dist/esm/src/lib/oauth.d.ts.map +0 -1
package/dist/esm/src/lib/oauth.js +0 -60
package/dist/esm/src/lib/oauth.js.map +0 -1
package/dist/esm/src/lib/postMessage.d.ts +0 -4
package/dist/esm/src/lib/postMessage.d.ts.map +0 -1
package/dist/esm/src/lib/postMessage.js +0 -15
package/dist/esm/src/lib/postMessage.js.map +0 -1
package/dist/esm/src/lib/windowUtil.d.ts +0 -4
package/dist/esm/src/lib/windowUtil.d.ts.map +0 -1
package/dist/esm/src/lib/windowUtil.js +0 -30
package/dist/esm/src/lib/windowUtil.js.map +0 -1
package/dist/esm/src/nextjs/GetUser.d.ts +0 -6
package/dist/esm/src/nextjs/GetUser.d.ts.map +0 -1
package/dist/esm/src/nextjs/GetUser.js +0 -18
package/dist/esm/src/nextjs/GetUser.js.map +0 -1
package/dist/esm/src/nextjs/config.d.ts +0 -178
package/dist/esm/src/nextjs/config.d.ts.map +0 -1
package/dist/esm/src/nextjs/config.js +0 -162
package/dist/esm/src/nextjs/config.js.map +0 -1
package/dist/esm/src/nextjs/cookies.d.ts +0 -30
package/dist/esm/src/nextjs/cookies.d.ts.map +0 -1
package/dist/esm/src/nextjs/cookies.js +0 -112
package/dist/esm/src/nextjs/cookies.js.map +0 -1
package/dist/esm/src/nextjs/hooks/index.d.ts +0 -2
package/dist/esm/src/nextjs/hooks/index.d.ts.map +0 -1
package/dist/esm/src/nextjs/hooks/index.js +0 -2
package/dist/esm/src/nextjs/hooks/index.js.map +0 -1
package/dist/esm/src/nextjs/hooks/useTokenCookie.d.ts +0 -3
package/dist/esm/src/nextjs/hooks/useTokenCookie.d.ts.map +0 -1
package/dist/esm/src/nextjs/hooks/useTokenCookie.js +0 -37
package/dist/esm/src/nextjs/hooks/useTokenCookie.js.map +0 -1
package/dist/esm/src/nextjs/hooks/useUserCookie.d.ts +0 -3
package/dist/esm/src/nextjs/hooks/useUserCookie.d.ts.map +0 -1
package/dist/esm/src/nextjs/hooks/useUserCookie.js +0 -36
package/dist/esm/src/nextjs/hooks/useUserCookie.js.map +0 -1
package/dist/esm/src/nextjs/index.d.ts +0 -7
package/dist/esm/src/nextjs/index.d.ts.map +0 -1
package/dist/esm/src/nextjs/index.js +0 -6
package/dist/esm/src/nextjs/index.js.map +0 -1
package/dist/esm/src/nextjs/middleware/index.d.ts +0 -2
package/dist/esm/src/nextjs/middleware/index.d.ts.map +0 -1
package/dist/esm/src/nextjs/middleware/index.js +0 -2
package/dist/esm/src/nextjs/middleware/index.js.map +0 -1
package/dist/esm/src/nextjs/middleware.d.ts +0 -59
package/dist/esm/src/nextjs/middleware.d.ts.map +0 -1
package/dist/esm/src/nextjs/middleware.js +0 -107
package/dist/esm/src/nextjs/middleware.js.map +0 -1
package/dist/esm/src/nextjs/providers/NextAuthProvider.d.ts +0 -9
package/dist/esm/src/nextjs/providers/NextAuthProvider.d.ts.map +0 -1
package/dist/esm/src/nextjs/providers/NextAuthProvider.js +0 -50
package/dist/esm/src/nextjs/providers/NextAuthProvider.js.map +0 -1
package/dist/esm/src/nextjs/routeHandler.d.ts +0 -18
package/dist/esm/src/nextjs/routeHandler.d.ts.map +0 -1
package/dist/esm/src/nextjs/routeHandler.js +0 -212
package/dist/esm/src/nextjs/routeHandler.js.map +0 -1
package/dist/esm/src/nextjs/utils.d.ts +0 -3
package/dist/esm/src/nextjs/utils.d.ts.map +0 -1
package/dist/esm/src/nextjs/utils.js +0 -5
package/dist/esm/src/nextjs/utils.js.map +0 -1
package/dist/esm/src/reactjs/components/SignInButton.d.ts +0 -8
package/dist/esm/src/reactjs/components/SignInButton.d.ts.map +0 -1
package/dist/esm/src/reactjs/components/SignInButton.js +0 -14
package/dist/esm/src/reactjs/components/SignInButton.js.map +0 -1
package/dist/esm/src/reactjs/components/SignOutButton.d.ts +0 -6
package/dist/esm/src/reactjs/components/SignOutButton.d.ts.map +0 -1
package/dist/esm/src/reactjs/components/SignOutButton.js +0 -14
package/dist/esm/src/reactjs/components/SignOutButton.js.map +0 -1
package/dist/esm/src/reactjs/components/UserButton.d.ts +0 -8
package/dist/esm/src/reactjs/components/UserButton.d.ts.map +0 -1
package/dist/esm/src/reactjs/components/UserButton.js +0 -110
package/dist/esm/src/reactjs/components/UserButton.js.map +0 -1
package/dist/esm/src/reactjs/components/index.d.ts +0 -6
package/dist/esm/src/reactjs/components/index.d.ts.map +0 -1
package/dist/esm/src/reactjs/components/index.js +0 -6
package/dist/esm/src/reactjs/components/index.js.map +0 -1
package/dist/esm/src/reactjs/hooks/index.d.ts +0 -7
package/dist/esm/src/reactjs/hooks/index.d.ts.map +0 -1
package/dist/esm/src/reactjs/hooks/index.js +0 -7
package/dist/esm/src/reactjs/hooks/index.js.map +0 -1
package/dist/esm/src/reactjs/hooks/useAuth.d.ts +0 -3
package/dist/esm/src/reactjs/hooks/useAuth.d.ts.map +0 -1
package/dist/esm/src/reactjs/hooks/useAuth.js +0 -12
package/dist/esm/src/reactjs/hooks/useAuth.js.map +0 -1
package/dist/esm/src/reactjs/hooks/useUser.d.ts +0 -4
package/dist/esm/src/reactjs/hooks/useUser.d.ts.map +0 -1
package/dist/esm/src/reactjs/hooks/useUser.js +0 -12
package/dist/esm/src/reactjs/hooks/useUser.js.map +0 -1
package/dist/esm/src/reactjs/index.d.ts +0 -6
package/dist/esm/src/reactjs/index.d.ts.map +0 -1
package/dist/esm/src/reactjs/index.js +0 -8
package/dist/esm/src/reactjs/index.js.map +0 -1
package/dist/esm/src/reactjs/providers/index.d.ts +0 -8
package/dist/esm/src/reactjs/providers/index.d.ts.map +0 -1
package/dist/esm/src/reactjs/providers/index.js +0 -7
package/dist/esm/src/reactjs/providers/index.js.map +0 -1
package/dist/esm/src/server/ServerAuthenticationResolver.d.ts +0 -18
package/dist/esm/src/server/ServerAuthenticationResolver.d.ts.map +0 -1
package/dist/esm/src/server/ServerAuthenticationResolver.js +0 -57
package/dist/esm/src/server/ServerAuthenticationResolver.js.map +0 -1
package/dist/esm/src/server/config.d.ts +0 -16
package/dist/esm/src/server/config.d.ts.map +0 -1
package/dist/esm/src/server/config.js +0 -2
package/dist/esm/src/server/config.js.map +0 -1
package/dist/esm/src/server/index.d.ts +0 -6
package/dist/esm/src/server/index.d.ts.map +0 -1
package/dist/esm/src/server/index.js +0 -5
package/dist/esm/src/server/index.js.map +0 -1
package/dist/esm/src/server/login.d.ts +0 -17
package/dist/esm/src/server/login.d.ts.map +0 -1
package/dist/esm/src/server/login.js +0 -37
package/dist/esm/src/server/login.js.map +0 -1
package/dist/esm/src/server/refresh.d.ts +0 -7
package/dist/esm/src/server/refresh.d.ts.map +0 -1
package/dist/esm/src/server/refresh.js +0 -13
package/dist/esm/src/server/refresh.js.map +0 -1
package/dist/esm/src/services/AuthenticationService.d.ts +0 -87
package/dist/esm/src/services/AuthenticationService.d.ts.map +0 -1
package/dist/esm/src/services/AuthenticationService.js +0 -212
package/dist/esm/src/services/AuthenticationService.js.map +0 -1
package/dist/esm/src/services/PKCE.d.ts +0 -20
package/dist/esm/src/services/PKCE.d.ts.map +0 -1
package/dist/esm/src/services/PKCE.js +0 -44
package/dist/esm/src/services/PKCE.js.map +0 -1
package/dist/esm/src/services/types.d.ts +0 -23
package/dist/esm/src/services/types.d.ts.map +0 -1
package/dist/esm/src/services/types.js +0 -7
package/dist/esm/src/services/types.js.map +0 -1
package/dist/esm/src/shared/components/CivicAuthIframe.d.ts +0 -8
package/dist/esm/src/shared/components/CivicAuthIframe.d.ts.map +0 -1
package/dist/esm/src/shared/components/CivicAuthIframe.js +0 -9
package/dist/esm/src/shared/components/CivicAuthIframe.js.map +0 -1
package/dist/esm/src/shared/components/CivicAuthIframeContainer.d.ts +0 -9
package/dist/esm/src/shared/components/CivicAuthIframeContainer.d.ts.map +0 -1
package/dist/esm/src/shared/components/CivicAuthIframeContainer.js +0 -128
package/dist/esm/src/shared/components/CivicAuthIframeContainer.js.map +0 -1
package/dist/esm/src/shared/components/CloseIcon.d.ts +0 -4
package/dist/esm/src/shared/components/CloseIcon.d.ts.map +0 -1
package/dist/esm/src/shared/components/CloseIcon.js +0 -6
package/dist/esm/src/shared/components/CloseIcon.js.map +0 -1
package/dist/esm/src/shared/components/LoadingIcon.d.ts +0 -4
package/dist/esm/src/shared/components/LoadingIcon.d.ts.map +0 -1
package/dist/esm/src/shared/components/LoadingIcon.js +0 -30
package/dist/esm/src/shared/components/LoadingIcon.js.map +0 -1
package/dist/esm/src/shared/hooks/index.d.ts +0 -5
package/dist/esm/src/shared/hooks/index.d.ts.map +0 -1
package/dist/esm/src/shared/hooks/index.js +0 -5
package/dist/esm/src/shared/hooks/index.js.map +0 -1
package/dist/esm/src/shared/hooks/useAuth.d.ts +0 -3
package/dist/esm/src/shared/hooks/useAuth.d.ts.map +0 -1
package/dist/esm/src/shared/hooks/useAuth.js +0 -12
package/dist/esm/src/shared/hooks/useAuth.js.map +0 -1
package/dist/esm/src/shared/hooks/useConfig.d.ts +0 -3
package/dist/esm/src/shared/hooks/useConfig.d.ts.map +0 -1
package/dist/esm/src/shared/hooks/useConfig.js +0 -13
package/dist/esm/src/shared/hooks/useConfig.js.map +0 -1
package/dist/esm/src/shared/hooks/useIframe.d.ts +0 -3
package/dist/esm/src/shared/hooks/useIframe.d.ts.map +0 -1
package/dist/esm/src/shared/hooks/useIframe.js +0 -13
package/dist/esm/src/shared/hooks/useIframe.js.map +0 -1
package/dist/esm/src/shared/hooks/useSession.d.ts +0 -3
package/dist/esm/src/shared/hooks/useSession.d.ts.map +0 -1
package/dist/esm/src/shared/hooks/useSession.js +0 -13
package/dist/esm/src/shared/hooks/useSession.js.map +0 -1
package/dist/esm/src/shared/hooks/useToken.d.ts +0 -3
package/dist/esm/src/shared/hooks/useToken.d.ts.map +0 -1
package/dist/esm/src/shared/hooks/useToken.js +0 -12
package/dist/esm/src/shared/hooks/useToken.js.map +0 -1
package/dist/esm/src/shared/lib/GenericAuthenticationRefresher.d.ts +0 -15
package/dist/esm/src/shared/lib/GenericAuthenticationRefresher.d.ts.map +0 -1
package/dist/esm/src/shared/lib/GenericAuthenticationRefresher.js +0 -39
package/dist/esm/src/shared/lib/GenericAuthenticationRefresher.js.map +0 -1
package/dist/esm/src/shared/lib/UserSession.d.ts +0 -12
package/dist/esm/src/shared/lib/UserSession.d.ts.map +0 -1
package/dist/esm/src/shared/lib/UserSession.js +0 -20
package/dist/esm/src/shared/lib/UserSession.js.map +0 -1
package/dist/esm/src/shared/lib/session.d.ts +0 -3
package/dist/esm/src/shared/lib/session.d.ts.map +0 -1
package/dist/esm/src/shared/lib/session.js +0 -10
package/dist/esm/src/shared/lib/session.js.map +0 -1
package/dist/esm/src/shared/lib/storage.d.ts +0 -25
package/dist/esm/src/shared/lib/storage.d.ts.map +0 -1
package/dist/esm/src/shared/lib/storage.js +0 -17
package/dist/esm/src/shared/lib/storage.js.map +0 -1
package/dist/esm/src/shared/lib/types.d.ts +0 -22
package/dist/esm/src/shared/lib/types.d.ts.map +0 -1
package/dist/esm/src/shared/lib/types.js +0 -16
package/dist/esm/src/shared/lib/types.js.map +0 -1
package/dist/esm/src/shared/lib/util.d.ts +0 -33
package/dist/esm/src/shared/lib/util.d.ts.map +0 -1
package/dist/esm/src/shared/lib/util.js +0 -127
package/dist/esm/src/shared/lib/util.js.map +0 -1
package/dist/esm/src/shared/providers/AuthContext.d.ts +0 -10
package/dist/esm/src/shared/providers/AuthContext.d.ts.map +0 -1
package/dist/esm/src/shared/providers/AuthContext.js +0 -3
package/dist/esm/src/shared/providers/AuthContext.js.map +0 -1
package/dist/esm/src/shared/providers/AuthProvider.d.ts +0 -20
package/dist/esm/src/shared/providers/AuthProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/AuthProvider.js +0 -263
package/dist/esm/src/shared/providers/AuthProvider.js.map +0 -1
package/dist/esm/src/shared/providers/CivicAuthProvider.d.ts +0 -6
package/dist/esm/src/shared/providers/CivicAuthProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/CivicAuthProvider.js +0 -15
package/dist/esm/src/shared/providers/CivicAuthProvider.js.map +0 -1
package/dist/esm/src/shared/providers/ConfigProvider.d.ts +0 -21
package/dist/esm/src/shared/providers/ConfigProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/ConfigProvider.js +0 -19
package/dist/esm/src/shared/providers/ConfigProvider.js.map +0 -1
package/dist/esm/src/shared/providers/IframeProvider.d.ts +0 -16
package/dist/esm/src/shared/providers/IframeProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/IframeProvider.js +0 -11
package/dist/esm/src/shared/providers/IframeProvider.js.map +0 -1
package/dist/esm/src/shared/providers/SessionProvider.d.ts +0 -13
package/dist/esm/src/shared/providers/SessionProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/SessionProvider.js +0 -13
package/dist/esm/src/shared/providers/SessionProvider.js.map +0 -1
package/dist/esm/src/shared/providers/TokenProvider.d.ts +0 -18
package/dist/esm/src/shared/providers/TokenProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/TokenProvider.js +0 -53
package/dist/esm/src/shared/providers/TokenProvider.js.map +0 -1
package/dist/esm/src/shared/providers/UserProvider.d.ts +0 -18
package/dist/esm/src/shared/providers/UserProvider.d.ts.map +0 -1
package/dist/esm/src/shared/providers/UserProvider.js +0 -38
package/dist/esm/src/shared/providers/UserProvider.js.map +0 -1
package/dist/esm/src/types.d.ts +0 -146
package/dist/esm/src/types.d.ts.map +0 -1
package/dist/esm/src/types.js +0 -2
package/dist/esm/src/types.js.map +0 -1
package/dist/esm/src/utils.d.ts +0 -15
package/dist/esm/src/utils.d.ts.map +0 -1
package/dist/esm/src/utils.js +0 -43
package/dist/esm/src/utils.js.map +0 -1
package/dist/esm/tsconfig.esm.tsbuildinfo +0 -1
package/dist/src/nextjs/cookies.d.ts.map +0 -1
package/dist/src/nextjs/cookies.js +0 -113
package/dist/src/nextjs/cookies.js.map +0 -1
package/dist/tsconfig.tsbuildinfo +0 -1
package/src/browser/storage.ts +0 -11
package/src/config.ts +0 -6
package/src/constants.ts +0 -29
package/src/index.ts +0 -16
package/src/lib/cookies.ts +0 -28
package/src/lib/jwt.ts +0 -15
package/src/lib/logger.ts +0 -72
package/src/lib/oauth.ts +0 -83
package/src/lib/postMessage.ts +0 -22
package/src/lib/windowUtil.ts +0 -29
package/src/nextjs/GetUser.ts +0 -22
package/src/nextjs/config.ts +0 -205
package/src/nextjs/cookies.ts +0 -162
package/src/nextjs/hooks/index.ts +0 -1
package/src/nextjs/hooks/useTokenCookie.ts +0 -41
package/src/nextjs/hooks/useUserCookie.ts +0 -41
package/src/nextjs/index.ts +0 -20
package/src/nextjs/middleware/index.ts +0 -1
package/src/nextjs/middleware.ts +0 -155
package/src/nextjs/providers/NextAuthProvider.tsx +0 -87
package/src/nextjs/routeHandler.ts +0 -297
package/src/nextjs/utils.ts +0 -9
package/src/reactjs/components/SignInButton.tsx +0 -32
package/src/reactjs/components/SignOutButton.tsx +0 -24
package/src/reactjs/components/UserButton.tsx +0 -215
package/src/reactjs/components/index.ts +0 -5
package/src/reactjs/hooks/index.ts +0 -6
package/src/reactjs/hooks/useAuth.ts +0 -15
package/src/reactjs/hooks/useUser.ts +0 -20
package/src/reactjs/index.ts +0 -19
package/src/reactjs/providers/index.ts +0 -27
package/src/server/ServerAuthenticationResolver.ts +0 -102
package/src/server/config.ts +0 -17
package/src/server/index.ts +0 -12
package/src/server/login.ts +0 -59
package/src/server/refresh.ts +0 -23
package/src/services/AuthenticationService.ts +0 -324
package/src/services/PKCE.ts +0 -45
package/src/services/types.ts +0 -54
package/src/shared/components/CivicAuthIframe.tsx +0 -26
package/src/shared/components/CivicAuthIframeContainer.tsx +0 -190
package/src/shared/components/CloseIcon.tsx +0 -21
package/src/shared/components/LoadingIcon.tsx +0 -53
package/src/shared/hooks/index.ts +0 -4
package/src/shared/hooks/useAuth.ts +0 -15
package/src/shared/hooks/useConfig.ts +0 -14
package/src/shared/hooks/useIframe.ts +0 -14
package/src/shared/hooks/useSession.ts +0 -14
package/src/shared/hooks/useToken.ts +0 -15
package/src/shared/lib/GenericAuthenticationRefresher.ts +0 -70
package/src/shared/lib/UserSession.ts +0 -25
package/src/shared/lib/session.ts +0 -11
package/src/shared/lib/storage.ts +0 -40
package/src/shared/lib/types.ts +0 -26
package/src/shared/lib/util.ts +0 -217
package/src/shared/providers/AuthContext.tsx +0 -11
package/src/shared/providers/AuthProvider.tsx +0 -390
package/src/shared/providers/CivicAuthProvider.tsx +0 -31
package/src/shared/providers/ConfigProvider.tsx +0 -50
package/src/shared/providers/IframeProvider.tsx +0 -34
package/src/shared/providers/SessionProvider.tsx +0 -29
package/src/shared/providers/TokenProvider.tsx +0 -78
package/src/shared/providers/UserProvider.tsx +0 -80
package/src/types.ts +0 -227
package/src/utils.ts +0 -58
package/test/integration/sdk.test.tsx +0 -266
package/test/support/fixtures.ts +0 -56
package/test/support/tokens.json +0 -26
package/test/unit/lib/oauth.test.ts +0 -72
package/test/unit/logger.test.ts +0 -175
package/test/unit/nextjs/NextAuthProvider.test.tsx +0 -38
package/test/unit/nextjs/config.test.ts +0 -218
package/test/unit/nextjs/getUser.test.ts +0 -41
package/test/unit/nextjs/middleware.test.ts +0 -138
package/test/unit/nextjs/routeHandler.test.ts.skipped +0 -369
package/test/unit/nextjs/utils.test.ts +0 -17
package/test/unit/publicApi/__snapshots__/apiSnapshot.test.ts.snap +0 -17
package/test/unit/publicApi/apiSnapshot.test.ts +0 -11
package/test/unit/react/components/SignInButton.test.tsx +0 -50
package/test/unit/react/components/SignOutButton.test.tsx +0 -49
package/test/unit/server/login.test.ts +0 -181
package/test/unit/server/session.test.ts +0 -51
package/test/unit/services/AuthenticationService.test.ts +0 -152
package/test/unit/services/ServerAuthenticationResolver.test.ts +0 -115
package/test/unit/shared/GenericAuthenticationRefresher.test.ts +0 -89
package/test/unit/shared/UserSession.test.ts +0 -42
package/test/unit/shared/components/CivicAuthIframeContainer.test.tsx +0 -154
package/test/unit/shared/storage.test.ts +0 -67
package/test/unit/utils.test.ts +0 -48
package/tsconfig.build.json +0 -5
package/tsconfig.cjs.json +0 -8
package/tsconfig.esm.json +0 -7
package/tsconfig.json +0 -42
package/vitest.config.ts +0 -41

package/README.md CHANGED Viewed

@@ -29,6 +29,10 @@ yarn add @civic/auth
 First, import the CSS styles in your main application file (e.g., `_app.tsx` for Next.js):
+```tsx
+import "@civic/auth/styles.css";
+```
 ### Setup CivicAuthProvider
 To use the Civic Auth Client SDK, wrap your application with the `CivicAuthProvider` component. This will allow the authentication context to be accessible throughout your app.
@@ -114,32 +118,6 @@ function Header() {
 }
 ```
-### Embedding the login iframe in your page
-The default displayMode for user login is 'iframe' which will show a modal containing the login page for users, when the `signIn` hook is called. If you want to customize where this page is shown and embed it into your page instead i.e. in the case where you have a landing page and don't want users to have to click on a 'sign-in' button, you can embed the login iframe directly inside your page and it will work just like in the modal, as long as it is a child of a <CivicAuthProvider>. In this mode, the iframe auto-loads the login page.
-To enable this mode, you need to set the parameter 'modalIframe' to `false` (it defaults to `true` in normal operation).
-The example below shows the iframe centered inside a div embedded on the page:
-```tsx
-import { CivicAuthProvider } from "@civic/auth/react";
-function App({ children }) {
-  return (
-    <CivicAuthProvider
-      clientId="your-client-id"
-      redirectUrl="https://your-app.com/callback"
-      modalIframe={false}
-    >
-      {children}
-      <div className="flex min-h-[200px] items-center justify-center">
-        <CivicAuthIframeContainer />
-      </div>
-    </CivicAuthProvider>
-  );
-}
-```
 ### Token Management with useToken Hook
 The `useToken` hook can be used to access and manage tokens within your application. This hook provides the current access and ID tokens, a refresh function, and token loading/error states.

package/dist/chunk-3UIVD6NR.mjs ADDED Viewed

@@ -0,0 +1,268 @@
+import {
+  AUTH_SERVER,
+  DEFAULT_SCOPES,
+  deriveCodeChallenge,
+  exchangeTokens,
+  generateOauthLoginUrl,
+  generateOauthLogoutUrl,
+  getEndpointsWithOverrides,
+  retrieveTokens,
+  storeTokens
+} from "./chunk-KBDRDCE5.mjs";
+import {
+  __async,
+  __spreadProps,
+  __spreadValues
+} from "./chunk-RGHW4PYM.mjs";
+// src/shared/storage.ts
+var DEFAULT_COOKIE_DURATION = 60 * 15;
+var CookieStorage = class {
+  constructor(settings = {}) {
+    var _a, _b, _c, _d, _e;
+    this.settings = {
+      httpOnly: (_a = settings.httpOnly) != null ? _a : true,
+      secure: (_b = settings.secure) != null ? _b : true,
+      // the callback request comes the auth server
+      // 'lax' ensures the code_verifier cookie is sent with the request
+      sameSite: (_c = settings.sameSite) != null ? _c : "lax",
+      expires: (_d = settings.expires) != null ? _d : new Date(Date.now() + 1e3 * DEFAULT_COOKIE_DURATION),
+      path: (_e = settings.path) != null ? _e : "/"
+    };
+  }
+};
+// src/services/PKCE.ts
+import { generateCodeVerifier } from "oslo/oauth2";
+var GenericPublicClientPKCEProducer = class {
+  constructor(storage) {
+    this.storage = storage;
+  }
+  // if there is already a verifier, return it,
+  // If not, create a new one and store it
+  getCodeChallenge() {
+    return __async(this, null, function* () {
+      const verifier = generateCodeVerifier();
+      this.storage.set("code_verifier", verifier);
+      return deriveCodeChallenge(verifier);
+    });
+  }
+  // if there is already a verifier, return it,
+  getCodeVerifier() {
+    return __async(this, null, function* () {
+      return this.storage.get("code_verifier");
+    });
+  }
+};
+// src/services/AuthenticationService.ts
+import { OAuth2Client } from "oslo/oauth2";
+var GenericAuthenticationInitiator = class {
+  constructor(config) {
+    this.config = config;
+  }
+  // Use the config (Client ID, scopes OAuth Server, Endpoints, PKCEConsumer) to generate a new login url
+  // and simply return the url
+  signIn() {
+    return __async(this, null, function* () {
+      return generateOauthLoginUrl(this.config);
+    });
+  }
+  signOut() {
+    return __async(this, null, function* () {
+      return generateOauthLogoutUrl(this.config);
+    });
+  }
+};
+// src/server/ServerAuthenticationResolver.ts
+import { OAuth2Client as OAuth2Client2 } from "oslo/oauth2";
+var ServerAuthenticationResolver = class _ServerAuthenticationResolver {
+  constructor(authConfig, storage, endpointOverrides) {
+    this.authConfig = authConfig;
+    this.storage = storage;
+    this.endpointOverrides = endpointOverrides;
+    this.pkceProducer = new GenericPublicClientPKCEProducer(storage);
+  }
+  init() {
+    return __async(this, null, function* () {
+      this.endpoints = yield getEndpointsWithOverrides(
+        this.authConfig.oauthServer,
+        this.endpointOverrides
+      );
+      this.oauth2client = new OAuth2Client2(
+        this.authConfig.clientId,
+        this.endpoints.auth,
+        this.endpoints.token,
+        {
+          redirectURI: this.authConfig.redirectUrl
+        }
+      );
+      return this;
+    });
+  }
+  tokenExchange(code, state) {
+    return __async(this, null, function* () {
+      if (!this.oauth2client) yield this.init();
+      const codeVerifier = yield this.pkceProducer.getCodeVerifier();
+      if (!codeVerifier) throw new Error("Code verifier not found in storage");
+      const tokens = yield exchangeTokens(
+        code,
+        state,
+        this.pkceProducer,
+        this.oauth2client,
+        // clean up types here to avoid the ! operator
+        this.authConfig.oauthServer,
+        this.endpoints
+        // clean up types here to avoid the ! operator
+      );
+      storeTokens(this.storage, tokens);
+      return tokens;
+    });
+  }
+  getSessionData() {
+    return __async(this, null, function* () {
+      const storageData = retrieveTokens(this.storage);
+      if (!storageData) return null;
+      return {
+        authenticated: !!storageData.id_token,
+        idToken: storageData.id_token,
+        accessToken: storageData.access_token,
+        refreshToken: storageData.refresh_token
+      };
+    });
+  }
+  static build(authConfig, storage, endpointOverrides) {
+    return __async(this, null, function* () {
+      const resolver = new _ServerAuthenticationResolver(
+        authConfig,
+        storage,
+        endpointOverrides
+      );
+      yield resolver.init();
+      return resolver;
+    });
+  }
+};
+// src/server/login.ts
+function resolveOAuthAccessCode(code, state, storage, config) {
+  return __async(this, null, function* () {
+    var _a;
+    const authSessionService = yield ServerAuthenticationResolver.build(
+      __spreadProps(__spreadValues({}, config), {
+        oauthServer: (_a = config.oauthServer) != null ? _a : AUTH_SERVER
+      }),
+      storage,
+      config.endpointOverrides
+    );
+    return authSessionService.tokenExchange(code, state);
+  });
+}
+function isLoggedIn(storage) {
+  return !!storage.get("id_token");
+}
+function buildLoginUrl(config, storage) {
+  return __async(this, null, function* () {
+    var _a, _b, _c;
+    const state = (_a = config.state) != null ? _a : Math.random().toString(36).substring(2);
+    const scopes = (_b = config.scopes) != null ? _b : DEFAULT_SCOPES;
+    const pkceProducer = new GenericPublicClientPKCEProducer(storage);
+    const authInitiator = new GenericAuthenticationInitiator(__spreadProps(__spreadValues({}, config), {
+      state,
+      scopes,
+      oauthServer: (_c = config.oauthServer) != null ? _c : AUTH_SERVER,
+      // When retrieving the PKCE challenge on the server-side, we produce it and store it in the session
+      pkceConsumer: pkceProducer
+    }));
+    return authInitiator.signIn();
+  });
+}
+// src/server/session.ts
+import { parseJWT } from "oslo/jwt";
+function getUser(storage) {
+  return __async(this, null, function* () {
+    var _a, _b;
+    const tokens = retrieveTokens(storage);
+    if (!tokens) return null;
+    return (_b = (_a = parseJWT(tokens.id_token)) == null ? void 0 : _a.payload) != null ? _b : null;
+  });
+}
+// src/shared/GenericAuthenticationRefresher.ts
+import { OAuth2Client as OAuth2Client3 } from "oslo/oauth2";
+var GenericAuthenticationRefresher = class _GenericAuthenticationRefresher {
+  constructor(authConfig, storage, endpointOverrides) {
+    this.authConfig = authConfig;
+    this.storage = storage;
+    this.endpointOverrides = endpointOverrides;
+  }
+  init() {
+    return __async(this, null, function* () {
+      this.endpoints = yield getEndpointsWithOverrides(
+        this.authConfig.oauthServer,
+        this.endpointOverrides
+      );
+      this.oauth2client = new OAuth2Client3(
+        this.authConfig.clientId,
+        this.endpoints.auth,
+        this.endpoints.token,
+        {
+          redirectURI: this.authConfig.redirectUrl
+        }
+      );
+      return this;
+    });
+  }
+  static build(authConfig, storage, endpointOverrides) {
+    return __async(this, null, function* () {
+      const refresher = new _GenericAuthenticationRefresher(
+        authConfig,
+        storage,
+        endpointOverrides
+      );
+      yield refresher.init();
+      return refresher;
+    });
+  }
+  refreshTokens() {
+    return __async(this, null, function* () {
+      if (!this.oauth2client) yield this.init();
+      const tokens = retrieveTokens(this.storage);
+      if (!(tokens == null ? void 0 : tokens.refresh_token)) throw new Error("No refresh token available");
+      const oauth2Client = this.oauth2client;
+      const refreshedTokens = yield oauth2Client.refreshAccessToken(
+        tokens.refresh_token
+      );
+      storeTokens(this.storage, refreshedTokens);
+      return tokens;
+    });
+  }
+};
+// src/server/refresh.ts
+function refreshTokens(storage, config) {
+  return __async(this, null, function* () {
+    var _a;
+    const refresher = yield GenericAuthenticationRefresher.build(
+      __spreadProps(__spreadValues({}, config), {
+        oauthServer: (_a = config.oauthServer) != null ? _a : AUTH_SERVER
+      }),
+      storage,
+      config.endpointOverrides
+    );
+    return refresher.refreshTokens();
+  });
+}
+export {
+  CookieStorage,
+  GenericPublicClientPKCEProducer,
+  resolveOAuthAccessCode,
+  isLoggedIn,
+  buildLoginUrl,
+  getUser,
+  refreshTokens
+};
+//# sourceMappingURL=chunk-3UIVD6NR.mjs.map

package/dist/chunk-3UIVD6NR.mjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/shared/storage.ts","../src/services/PKCE.ts","../src/services/AuthenticationService.ts","../src/server/ServerAuthenticationResolver.ts","../src/server/login.ts","../src/server/session.ts","../src/shared/GenericAuthenticationRefresher.ts","../src/server/refresh.ts"],"sourcesContent":["import { SessionData, UnknownObject, User } from \"@/types.js\";\n\ntype SameSiteOption = \"strict\" | \"lax\" | \"none\";\n\nexport interface SessionStorage {\n get(): SessionData;\n getUser(): User<UnknownObject> | null;\n set(data: Partial<SessionData>): void;\n setUser(data: User<UnknownObject> | null): void;\n clear(): void;\n}\n\nexport interface AuthStorage {\n get(key: string): string | null;\n set(key: string, value: string): void;\n}\n\nexport type CookieStorageSettings = {\n httpOnly: boolean;\n secure: boolean;\n sameSite: SameSiteOption;\n expires: Date;\n path: string;\n};\n\nexport const DEFAULT_COOKIE_DURATION = 60 * 15; // 15 minutes\n\nexport abstract class CookieStorage implements AuthStorage {\n protected settings: CookieStorageSettings;\n protected constructor(settings: Partial<CookieStorageSettings> = {}) {\n this.settings = {\n httpOnly: settings.httpOnly ?? true,\n secure: settings.secure ?? true,\n // the callback request comes the auth server\n // 'lax' ensures the code_verifier cookie is sent with the request\n sameSite: settings.sameSite ?? \"lax\",\n expires:\n settings.expires ??\n new Date(Date.now() + 1000 * DEFAULT_COOKIE_DURATION),\n path: settings.path ?? \"/\",\n };\n }\n abstract get(key: string): string | null;\n abstract set(key: string, value: string): void;\n}\n","import { deriveCodeChallenge } from \"@/shared/util.js\";\nimport { generateCodeVerifier } from \"oslo/oauth2\";\nimport { AuthStorage } from \"@/shared/storage.js\";\nimport { LocalStorageAdapter } from \"@/browser/storage.js\";\nimport { PKCEConsumer, PKCEProducer } from \"@/services/types.ts\";\n\n/** A PKCE consumer that retrieves the challenge from a server endpoint */\nexport class ConfidentialClientPKCEConsumer implements PKCEConsumer {\n constructor(private pkceChallengeEndpoint: string) {}\n async getCodeChallenge(): Promise<string> {\n const response = await fetch(this.pkceChallengeEndpoint);\n const data = (await response.json()) as { challenge: string };\n return data.challenge;\n }\n}\n\n/** A PKCE Producer that can generate and store a code verifier, but is agnostic as to the storage location */\nexport class GenericPublicClientPKCEProducer implements PKCEProducer {\n constructor(private storage: AuthStorage) {}\n\n // if there is already a verifier, return it,\n // If not, create a new one and store it\n async getCodeChallenge(): Promise<string> {\n // let verifier = await this.getCodeVerifier();\n // if (!verifier) {\n const verifier = generateCodeVerifier();\n this.storage.set(\"code_verifier\", verifier);\n // }\n return deriveCodeChallenge(verifier);\n }\n // if there is already a verifier, return it,\n async getCodeVerifier(): Promise<string | null> {\n return this.storage.get(\"code_verifier\");\n }\n}\n\n/** A PKCE Producer that is expected to run on a browser, and does not need a backend */\nexport class BrowserPublicClientPKCEProducer extends GenericPublicClientPKCEProducer {\n constructor() {\n super(new LocalStorageAdapter());\n }\n}\n","// Proposals for revised versions of the SessionService AKA AuthSessionService\n\nimport {\n DisplayMode,\n Endpoints,\n OIDCTokenResponseBody,\n SessionData,\n} from \"@/types.js\";\nimport { BrowserPublicClientPKCEProducer } from \"@/services/PKCE.js\";\nimport {\n exchangeTokens,\n generateOauthLoginUrl,\n generateOauthLogoutUrl,\n getEndpointsWithOverrides,\n retrieveTokens,\n storeTokens,\n} from \"@/shared/util.js\";\nimport { generateState } from \"@/lib/oauth.js\";\nimport { OAuth2Client } from \"oslo/oauth2\";\nimport { LocalStorageAdapter } from \"@/browser/storage.js\";\nimport {\n AuthenticationInitiator,\n AuthenticationResolver,\n PKCEConsumer,\n} from \"@/services/types.js\";\n\n/**\n * An authentication initiator that works on a browser. Since this is just triggering\n * login and logout, session data is not stored here.\n * An associated AuthenticationResolver would be needed to get the session data.\n * Storage is needed for the code verifier, this is the domain of the PKCEConsumer\n * The storage used by the PKCEConsumer should be available to the AuthenticationResolver.\n *\n * Example usage:\n *\n * 1) Client-only SPA -eg a react app with no server:\n * new BrowserAuthenticationInitiator({\n * pkceConsumer: new BrowserPublicClientPKCEProducer(), // generate and retrieve the challenge client-side\n * ... other config\n * })\n *\n * 2) Client-side of a client/server app - eg a react app with a backend:\n * new BrowserAuthenticationInitiator({\n * pkceConsumer: new ConfidentialClientPKCEConsumer(\"https://myserver.com/pkce\"), // get the challenge from the server\n * ... other config\n * })\n */\nexport class BrowserAuthenticationInitiator implements AuthenticationInitiator {\n protected config: {\n clientId: string;\n redirectUrl: string;\n state: string;\n scopes: string[];\n // determines whether to trigger the login/logout in an iframe, a new browser window, or redirect the current one.\n displayMode: DisplayMode;\n oauthServer: string;\n // the endpoints to use for the login (if not obtained from the auth server\n endpointOverrides?: Partial<Endpoints>;\n // used to get the PKCE challenge\n pkceConsumer: PKCEConsumer;\n };\n\n constructor(config: typeof this.config) {\n this.config = config;\n }\n\n // Use the config (Client ID, scopes OAuth Server, Endpoints, PKCEConsumer) to generate a new login url\n // and then use the display mode to decide how to send the user there\n async signIn(): Promise<URL> {\n const url = await generateOauthLoginUrl(this.config);\n // TODO open the iframe or new tab etc\n\n return url;\n }\n\n async signOut(): Promise<URL> {\n const url = await generateOauthLogoutUrl(this.config);\n // TODO open the iframe or new tab etc\n\n return url;\n }\n}\n\n/** A general-purpose authentication initiator, that just generates urls, but lets\n * the caller decide how to use them. This is useful for server-side applications\n * that may serve this URL to their front-ends or just call them directly\n */\nexport class GenericAuthenticationInitiator implements AuthenticationInitiator {\n protected config: {\n clientId: string;\n redirectUrl: string;\n state: string;\n scopes: string[];\n oauthServer: string;\n nonce?: string;\n // the endpoints to use for the login (if not obtained from the auth server)\n endpointOverrides?: Partial<Endpoints>;\n // used to get the PKCE challenge\n pkceConsumer: PKCEConsumer;\n };\n\n constructor(config: typeof this.config) {\n this.config = config;\n }\n\n // Use the config (Client ID, scopes OAuth Server, Endpoints, PKCEConsumer) to generate a new login url\n // and simply return the url\n async signIn(): Promise<URL> {\n return generateOauthLoginUrl(this.config);\n }\n\n async signOut(): Promise<URL> {\n return generateOauthLogoutUrl(this.config);\n }\n}\n\ntype BrowserAuthenticationConfig = {\n clientId: string;\n redirectUrl: string;\n scopes: string[];\n oauthServer: string;\n endpointOverrides?: Partial<Endpoints>;\n displayMode: DisplayMode;\n};\n\n/**\n * An authentication resolver that can run on the browser (i.e. a public client)\n * It uses PKCE for security. PKCE and Session data are stored in local storage\n */\nexport class BrowserAuthenticationService extends BrowserAuthenticationInitiator {\n private oauth2client: OAuth2Client | undefined;\n private endpoints: Endpoints | undefined;\n\n // TODO WIP - perhaps we want to keep resolver and initiator separate here\n constructor(\n config: BrowserAuthenticationConfig,\n // Since we are running fully on the client, we produce as well as consume the PKCE challenge\n protected pkceProducer = new BrowserPublicClientPKCEProducer(),\n ) {\n super({\n ...config,\n state: generateState(config.displayMode),\n // Store and retrieve the PKCE challenge in local storage\n pkceConsumer: pkceProducer,\n });\n }\n\n // TODO too much code duplication here between the browser and the server variant.\n // Suggestion for refactor: Standardise the config for AuthenticationResolvers and create a one-shot\n // function for generating an oauth2client from it\n async init(): Promise<this> {\n // resolve oauth config\n this.endpoints = await getEndpointsWithOverrides(\n this.config.oauthServer,\n this.config.endpointOverrides,\n );\n this.oauth2client = new OAuth2Client(\n this.config.clientId,\n this.endpoints.auth,\n this.endpoints.token,\n {\n redirectURI: this.config.redirectUrl,\n },\n );\n\n return this;\n }\n\n // Two responsibilities:\n // 1. resolve the auth code to get the tokens (should use library code)\n // 2. store the tokens in local storage\n async tokenExchange(\n code: string,\n state: string,\n ): Promise<OIDCTokenResponseBody> {\n if (!this.oauth2client) await this.init();\n const codeVerifier = await this.pkceProducer.getCodeVerifier();\n if (!codeVerifier) throw new Error(\"Code verifier not found in storage\");\n\n // exchange auth code for tokens\n const tokens = await exchangeTokens(\n code,\n state,\n this.pkceProducer,\n this.oauth2client!, // clean up types here to avoid the ! operator\n this.config.oauthServer,\n this.endpoints!, // clean up types here to avoid the ! operator\n );\n\n storeTokens(new LocalStorageAdapter(), tokens);\n\n return tokens;\n }\n\n // Get the session data from local storage\n async getSessionData(): Promise<SessionData | null> {\n const storageData = retrieveTokens(new LocalStorageAdapter());\n\n if (!storageData) return null;\n\n return {\n authenticated: !!storageData.id_token,\n idToken: storageData.id_token,\n accessToken: storageData.access_token,\n refreshToken: storageData.refresh_token,\n };\n }\n\n static async build(\n config: BrowserAuthenticationConfig,\n ): Promise<AuthenticationResolver> {\n const resolver = new BrowserAuthenticationService(config);\n await resolver.init();\n\n return resolver;\n }\n}\n","import { GenericPublicClientPKCEProducer } from \"@/services/PKCE.js\";\nimport { OAuth2Client } from \"oslo/oauth2\";\nimport { Endpoints, OIDCTokenResponseBody, SessionData } from \"@/types.js\";\nimport { AuthConfig } from \"@/server/config.js\";\nimport { AuthStorage } from \"@/shared/storage.js\";\nimport {\n exchangeTokens,\n getEndpointsWithOverrides,\n retrieveTokens,\n storeTokens,\n} from \"@/shared/util.js\";\nimport { AuthenticationResolver, PKCEProducer } from \"@/services/types.ts\";\n\nexport class ServerAuthenticationResolver implements AuthenticationResolver {\n private pkceProducer: PKCEProducer;\n private oauth2client: OAuth2Client | undefined;\n private endpoints: Endpoints | undefined;\n\n private constructor(\n readonly authConfig: AuthConfig,\n readonly storage: AuthStorage,\n readonly endpointOverrides?: Partial<Endpoints>,\n ) {\n this.pkceProducer = new GenericPublicClientPKCEProducer(storage);\n }\n\n async init(): Promise<this> {\n // resolve oauth config\n this.endpoints = await getEndpointsWithOverrides(\n this.authConfig.oauthServer,\n this.endpointOverrides,\n );\n this.oauth2client = new OAuth2Client(\n this.authConfig.clientId,\n this.endpoints.auth,\n this.endpoints.token,\n {\n redirectURI: this.authConfig.redirectUrl,\n },\n );\n\n return this;\n }\n\n async tokenExchange(\n code: string,\n state: string,\n ): Promise<OIDCTokenResponseBody> {\n if (!this.oauth2client) await this.init();\n const codeVerifier = await this.pkceProducer.getCodeVerifier();\n if (!codeVerifier) throw new Error(\"Code verifier not found in storage\");\n\n // exchange auth code for tokens\n const tokens = await exchangeTokens(\n code,\n state,\n this.pkceProducer,\n this.oauth2client!, // clean up types here to avoid the ! operator\n this.authConfig.oauthServer,\n this.endpoints!, // clean up types here to avoid the ! operator\n );\n\n storeTokens(this.storage, tokens);\n\n return tokens;\n }\n\n async getSessionData(): Promise<SessionData | null> {\n const storageData = retrieveTokens(this.storage);\n\n if (!storageData) return null;\n\n return {\n authenticated: !!storageData.id_token,\n idToken: storageData.id_token,\n accessToken: storageData.access_token,\n refreshToken: storageData.refresh_token,\n };\n }\n\n static async build(\n authConfig: AuthConfig,\n storage: AuthStorage,\n endpointOverrides?: Partial<Endpoints>,\n ): Promise<AuthenticationResolver> {\n const resolver = new ServerAuthenticationResolver(\n authConfig,\n storage,\n endpointOverrides,\n );\n await resolver.init();\n\n return resolver;\n }\n}\n","import { AuthStorage } from \"@/shared/storage.js\";\nimport { OIDCTokenResponseBody } from \"@/types.js\";\nimport { AUTH_SERVER, DEFAULT_SCOPES } from \"@/constants.js\";\nimport { GenericAuthenticationInitiator } from \"@/services/AuthenticationService.js\";\nimport { GenericPublicClientPKCEProducer } from \"@/services/PKCE.js\";\nimport { ServerAuthenticationResolver } from \"@/server/ServerAuthenticationResolver.js\";\nimport { AuthConfig } from \"@/server/config.ts\";\n/**\n * Resolve an OAuth access code to a set of OIDC tokens\n * @param code The access code, typically from a query parameter in the redirect url\n * @param state The oauth random state string, used to distinguish between requests. Typically also passed in the redirect url\n * @param storage The place that this server uses to store session data (e.g. a cookie store)\n * @param config Oauth Server configuration\n */\nexport async function resolveOAuthAccessCode(\n code: string,\n state: string,\n storage: AuthStorage,\n config: AuthConfig,\n): Promise<OIDCTokenResponseBody> {\n const authSessionService = await ServerAuthenticationResolver.build(\n {\n ...config,\n oauthServer: config.oauthServer ?? AUTH_SERVER,\n },\n storage,\n config.endpointOverrides,\n );\n\n return authSessionService.tokenExchange(code, state);\n}\n\nexport function isLoggedIn(storage: AuthStorage): boolean {\n return !!storage.get(\"id_token\");\n}\n\nexport async function buildLoginUrl(\n config: Pick<AuthConfig, \"oauthServer\" | \"clientId\" | \"redirectUrl\"> & {\n scopes?: string[];\n state?: string;\n nonce?: string;\n },\n storage: AuthStorage,\n): Promise<URL> {\n // generate a random state if not provided\n const state = config.state ?? Math.random().toString(36).substring(2);\n const scopes = config.scopes ?? DEFAULT_SCOPES;\n const pkceProducer = new GenericPublicClientPKCEProducer(storage);\n const authInitiator = new GenericAuthenticationInitiator({\n ...config,\n state,\n scopes,\n oauthServer: config.oauthServer ?? AUTH_SERVER,\n // When retrieving the PKCE challenge on the server-side, we produce it and store it in the session\n pkceConsumer: pkceProducer,\n });\n\n return authInitiator.signIn();\n}\n","import { retrieveTokens } from \"@/shared/util.js\";\nimport { parseJWT } from \"oslo/jwt\";\nimport { User } from \"@/types.js\";\nimport { AuthStorage } from \"@/shared/storage.js\";\n\nexport async function getUser(storage: AuthStorage): Promise<User | null> {\n const tokens = retrieveTokens(storage);\n if (!tokens) return null;\n\n // Assumes all information is in the ID token\n return (parseJWT(tokens.id_token)?.payload as User) ?? null;\n}\n","import { AuthenticationRefresher } from \"@/services/types.ts\";\nimport { Endpoints, OIDCTokenResponseBody } from \"@/types\";\nimport {\n getEndpointsWithOverrides,\n retrieveTokens,\n storeTokens,\n} from \"@/shared/util.ts\";\nimport { AuthStorage } from \"@/shared/storage.ts\";\nimport { AuthConfig } from \"@/server/config.ts\";\nimport { OAuth2Client } from \"oslo/oauth2\";\n\nexport class GenericAuthenticationRefresher implements AuthenticationRefresher {\n private oauth2client: OAuth2Client | undefined;\n private endpoints: Endpoints | undefined;\n\n private constructor(\n private authConfig: AuthConfig,\n private storage: AuthStorage,\n private endpointOverrides?: Partial<Endpoints>,\n ) {}\n\n async init(): Promise<this> {\n // resolve oauth config\n this.endpoints = await getEndpointsWithOverrides(\n this.authConfig.oauthServer,\n this.endpointOverrides,\n );\n this.oauth2client = new OAuth2Client(\n this.authConfig.clientId,\n this.endpoints.auth,\n this.endpoints.token,\n {\n redirectURI: this.authConfig.redirectUrl,\n },\n );\n\n return this;\n }\n\n static async build(\n authConfig: AuthConfig,\n storage: AuthStorage,\n endpointOverrides?: Partial<Endpoints>,\n ): Promise<GenericAuthenticationRefresher> {\n const refresher = new GenericAuthenticationRefresher(\n authConfig,\n storage,\n endpointOverrides,\n );\n await refresher.init();\n\n return refresher;\n }\n\n async refreshTokens() {\n if (!this.oauth2client) await this.init();\n\n const tokens = retrieveTokens(this.storage);\n if (!tokens?.refresh_token) throw new Error(\"No refresh token available\");\n\n const oauth2Client = this.oauth2client!;\n const refreshedTokens =\n await oauth2Client.refreshAccessToken<OIDCTokenResponseBody>(\n tokens.refresh_token,\n );\n\n storeTokens(this.storage, refreshedTokens);\n\n return tokens;\n }\n}\n","import { AuthStorage } from \"@/shared/storage.js\";\nimport { OIDCTokenResponseBody } from \"@/types.js\";\nimport { AUTH_SERVER } from \"@/constants.js\";\nimport { GenericAuthenticationRefresher } from \"@/shared/GenericAuthenticationRefresher.ts\";\nimport { AuthConfig } from \"@/server/config.ts\";\n\n/**\n * Refresh the current set of OIDC tokens\n */\nexport async function refreshTokens(\n storage: AuthStorage,\n config: AuthConfig,\n): Promise<OIDCTokenResponseBody> {\n const refresher = await GenericAuthenticationRefresher.build(\n {\n ...config,\n oauthServer: config.oauthServer ?? AUTH_SERVER,\n },\n storage,\n config.endpointOverrides,\n );\n\n return refresher.refreshTokens();\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAyBO,IAAM,0BAA0B,KAAK;AAErC,IAAe,gBAAf,MAAoD;AAAA,EAE/C,YAAY,WAA2C,CAAC,GAAG;AA7BvE;AA8BI,SAAK,WAAW;AAAA,MACd,WAAU,cAAS,aAAT,YAAqB;AAAA,MAC/B,SAAQ,cAAS,WAAT,YAAmB;AAAA;AAAA;AAAA,MAG3B,WAAU,cAAS,aAAT,YAAqB;AAAA,MAC/B,UACE,cAAS,YAAT,YACA,IAAI,KAAK,KAAK,IAAI,IAAI,MAAO,uBAAuB;AAAA,MACtD,OAAM,cAAS,SAAT,YAAiB;AAAA,IACzB;AAAA,EACF;AAGF;;;AC3CA,SAAS,4BAA4B;AAgB9B,IAAM,kCAAN,MAA8D;AAAA,EACnE,YAAoB,SAAsB;AAAtB;AAAA,EAAuB;AAAA;AAAA;AAAA,EAIrC,mBAAoC;AAAA;AAGxC,YAAM,WAAW,qBAAqB;AACtC,WAAK,QAAQ,IAAI,iBAAiB,QAAQ;AAE1C,aAAO,oBAAoB,QAAQ;AAAA,IACrC;AAAA;AAAA;AAAA,EAEM,kBAA0C;AAAA;AAC9C,aAAO,KAAK,QAAQ,IAAI,eAAe;AAAA,IACzC;AAAA;AACF;;;AChBA,SAAS,oBAAoB;AAqEtB,IAAM,iCAAN,MAAwE;AAAA,EAc7E,YAAY,QAA4B;AACtC,SAAK,SAAS;AAAA,EAChB;AAAA;AAAA;AAAA,EAIM,SAAuB;AAAA;AAC3B,aAAO,sBAAsB,KAAK,MAAM;AAAA,IAC1C;AAAA;AAAA,EAEM,UAAwB;AAAA;AAC5B,aAAO,uBAAuB,KAAK,MAAM;AAAA,IAC3C;AAAA;AACF;;;ACjHA,SAAS,gBAAAA,qBAAoB;AAYtB,IAAM,+BAAN,MAAM,8BAA+D;AAAA,EAKlE,YACG,YACA,SACA,mBACT;AAHS;AACA;AACA;AAET,SAAK,eAAe,IAAI,gCAAgC,OAAO;AAAA,EACjE;AAAA,EAEM,OAAsB;AAAA;AAE1B,WAAK,YAAY,MAAM;AAAA,QACrB,KAAK,WAAW;AAAA,QAChB,KAAK;AAAA,MACP;AACA,WAAK,eAAe,IAAIC;AAAA,QACtB,KAAK,WAAW;AAAA,QAChB,KAAK,UAAU;AAAA,QACf,KAAK,UAAU;AAAA,QACf;AAAA,UACE,aAAa,KAAK,WAAW;AAAA,QAC/B;AAAA,MACF;AAEA,aAAO;AAAA,IACT;AAAA;AAAA,EAEM,cACJ,MACA,OACgC;AAAA;AAChC,UAAI,CAAC,KAAK,aAAc,OAAM,KAAK,KAAK;AACxC,YAAM,eAAe,MAAM,KAAK,aAAa,gBAAgB;AAC7D,UAAI,CAAC,aAAc,OAAM,IAAI,MAAM,oCAAoC;AAGvE,YAAM,SAAS,MAAM;AAAA,QACnB;AAAA,QACA;AAAA,QACA,KAAK;AAAA,QACL,KAAK;AAAA;AAAA,QACL,KAAK,WAAW;AAAA,QAChB,KAAK;AAAA;AAAA,MACP;AAEA,kBAAY,KAAK,SAAS,MAAM;AAEhC,aAAO;AAAA,IACT;AAAA;AAAA,EAEM,iBAA8C;AAAA;AAClD,YAAM,cAAc,eAAe,KAAK,OAAO;AAE/C,UAAI,CAAC,YAAa,QAAO;AAEzB,aAAO;AAAA,QACL,eAAe,CAAC,CAAC,YAAY;AAAA,QAC7B,SAAS,YAAY;AAAA,QACrB,aAAa,YAAY;AAAA,QACzB,cAAc,YAAY;AAAA,MAC5B;AAAA,IACF;AAAA;AAAA,EAEA,OAAa,MACX,YACA,SACA,mBACiC;AAAA;AACjC,YAAM,WAAW,IAAI;AAAA,QACnB;AAAA,QACA;AAAA,QACA;AAAA,MACF;AACA,YAAM,SAAS,KAAK;AAEpB,aAAO;AAAA,IACT;AAAA;AACF;;;AChFA,SAAsB,uBACpB,MACA,OACA,SACA,QACgC;AAAA;AAnBlC;AAoBE,UAAM,qBAAqB,MAAM,6BAA6B;AAAA,MAC5D,iCACK,SADL;AAAA,QAEE,cAAa,YAAO,gBAAP,YAAsB;AAAA,MACrC;AAAA,MACA;AAAA,MACA,OAAO;AAAA,IACT;AAEA,WAAO,mBAAmB,cAAc,MAAM,KAAK;AAAA,EACrD;AAAA;AAEO,SAAS,WAAW,SAA+B;AACxD,SAAO,CAAC,CAAC,QAAQ,IAAI,UAAU;AACjC;AAEA,SAAsB,cACpB,QAKA,SACc;AAAA;AA3ChB;AA6CE,UAAM,SAAQ,YAAO,UAAP,YAAgB,KAAK,OAAO,EAAE,SAAS,EAAE,EAAE,UAAU,CAAC;AACpE,UAAM,UAAS,YAAO,WAAP,YAAiB;AAChC,UAAM,eAAe,IAAI,gCAAgC,OAAO;AAChE,UAAM,gBAAgB,IAAI,+BAA+B,iCACpD,SADoD;AAAA,MAEvD;AAAA,MACA;AAAA,MACA,cAAa,YAAO,gBAAP,YAAsB;AAAA;AAAA,MAEnC,cAAc;AAAA,IAChB,EAAC;AAED,WAAO,cAAc,OAAO;AAAA,EAC9B;AAAA;;;ACzDA,SAAS,gBAAgB;AAIzB,SAAsB,QAAQ,SAA4C;AAAA;AAL1E;AAME,UAAM,SAAS,eAAe,OAAO;AACrC,QAAI,CAAC,OAAQ,QAAO;AAGpB,YAAQ,oBAAS,OAAO,QAAQ,MAAxB,mBAA2B,YAA3B,YAA+C;AAAA,EACzD;AAAA;;;ACFA,SAAS,gBAAAC,qBAAoB;AAEtB,IAAM,iCAAN,MAAM,gCAAkE;AAAA,EAIrE,YACE,YACA,SACA,mBACR;AAHQ;AACA;AACA;AAAA,EACP;AAAA,EAEG,OAAsB;AAAA;AAE1B,WAAK,YAAY,MAAM;AAAA,QACrB,KAAK,WAAW;AAAA,QAChB,KAAK;AAAA,MACP;AACA,WAAK,eAAe,IAAIC;AAAA,QACtB,KAAK,WAAW;AAAA,QAChB,KAAK,UAAU;AAAA,QACf,KAAK,UAAU;AAAA,QACf;AAAA,UACE,aAAa,KAAK,WAAW;AAAA,QAC/B;AAAA,MACF;AAEA,aAAO;AAAA,IACT;AAAA;AAAA,EAEA,OAAa,MACX,YACA,SACA,mBACyC;AAAA;AACzC,YAAM,YAAY,IAAI;AAAA,QACpB;AAAA,QACA;AAAA,QACA;AAAA,MACF;AACA,YAAM,UAAU,KAAK;AAErB,aAAO;AAAA,IACT;AAAA;AAAA,EAEM,gBAAgB;AAAA;AACpB,UAAI,CAAC,KAAK,aAAc,OAAM,KAAK,KAAK;AAExC,YAAM,SAAS,eAAe,KAAK,OAAO;AAC1C,UAAI,EAAC,iCAAQ,eAAe,OAAM,IAAI,MAAM,4BAA4B;AAExE,YAAM,eAAe,KAAK;AAC1B,YAAM,kBACJ,MAAM,aAAa;AAAA,QACjB,OAAO;AAAA,MACT;AAEF,kBAAY,KAAK,SAAS,eAAe;AAEzC,aAAO;AAAA,IACT;AAAA;AACF;;;AC7DA,SAAsB,cACpB,SACA,QACgC;AAAA;AAZlC;AAaE,UAAM,YAAY,MAAM,+BAA+B;AAAA,MACrD,iCACK,SADL;AAAA,QAEE,cAAa,YAAO,gBAAP,YAAsB;AAAA,MACrC;AAAA,MACA;AAAA,MACA,OAAO;AAAA,IACT;AAEA,WAAO,UAAU,cAAc;AAAA,EACjC;AAAA;","names":["OAuth2Client","OAuth2Client","OAuth2Client","OAuth2Client"]}

package/dist/chunk-CRTRMMJ7.js ADDED Viewed

@@ -0,0 +1,59 @@
+"use strict";Object.defineProperty(exports, "__esModule", {value: true});var __defProp = Object.defineProperty;
+var __defProps = Object.defineProperties;
+var __getOwnPropDescs = Object.getOwnPropertyDescriptors;
+var __getOwnPropSymbols = Object.getOwnPropertySymbols;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __propIsEnum = Object.prototype.propertyIsEnumerable;
+var __defNormalProp = (obj, key, value) => key in obj ? __defProp(obj, key, { enumerable: true, configurable: true, writable: true, value }) : obj[key] = value;
+var __spreadValues = (a, b) => {
+  for (var prop in b || (b = {}))
+    if (__hasOwnProp.call(b, prop))
+      __defNormalProp(a, prop, b[prop]);
+  if (__getOwnPropSymbols)
+    for (var prop of __getOwnPropSymbols(b)) {
+      if (__propIsEnum.call(b, prop))
+        __defNormalProp(a, prop, b[prop]);
+    }
+  return a;
+};
+var __spreadProps = (a, b) => __defProps(a, __getOwnPropDescs(b));
+var __objRest = (source, exclude) => {
+  var target = {};
+  for (var prop in source)
+    if (__hasOwnProp.call(source, prop) && exclude.indexOf(prop) < 0)
+      target[prop] = source[prop];
+  if (source != null && __getOwnPropSymbols)
+    for (var prop of __getOwnPropSymbols(source)) {
+      if (exclude.indexOf(prop) < 0 && __propIsEnum.call(source, prop))
+        target[prop] = source[prop];
+    }
+  return target;
+};
+var __async = (__this, __arguments, generator) => {
+  return new Promise((resolve, reject) => {
+    var fulfilled = (value) => {
+      try {
+        step(generator.next(value));
+      } catch (e) {
+        reject(e);
+      }
+    };
+    var rejected = (value) => {
+      try {
+        step(generator.throw(value));
+      } catch (e) {
+        reject(e);
+      }
+    };
+    var step = (x) => x.done ? resolve(x.value) : Promise.resolve(x.value).then(fulfilled, rejected);
+    step((generator = generator.apply(__this, __arguments)).next());
+  });
+};
+exports.__spreadValues = __spreadValues; exports.__spreadProps = __spreadProps; exports.__objRest = __objRest; exports.__async = __async;
+//# sourceMappingURL=chunk-CRTRMMJ7.js.map

package/dist/chunk-CRTRMMJ7.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["/Users/lucas/dev/civic/civic-auth/packages/civic-auth-client/dist/chunk-CRTRMMJ7.js"],"names":[],"mappings":"AAAA,6EAAI,UAAU,EAAE,MAAM,CAAC,cAAc;AACrC,IAAI,WAAW,EAAE,MAAM,CAAC,gBAAgB;AACxC,IAAI,kBAAkB,EAAE,MAAM,CAAC,yBAAyB;AACxD,IAAI,oBAAoB,EAAE,MAAM,CAAC,qBAAqB;AACtD,IAAI,aAAa,EAAE,MAAM,CAAC,SAAS,CAAC,cAAc;AAClD,IAAI,aAAa,EAAE,MAAM,CAAC,SAAS,CAAC,oBAAoB;AACxD,IAAI,gBAAgB,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE,SAAS,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,EAAE,EAAE,GAAG,CAAC,GAAG,EAAE,EAAE,KAAK;AAC/J,IAAI,eAAe,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,GAAG;AAC/B,EAAE,IAAI,CAAC,IAAI,KAAK,GAAG,EAAE,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;AAChC,IAAI,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC;AAClC,MAAM,eAAe,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC;AACvC,EAAE,GAAG,CAAC,mBAAmB;AACzB,IAAI,IAAI,CAAC,IAAI,KAAK,GAAG,mBAAmB,CAAC,CAAC,CAAC,EAAE;AAC7C,MAAM,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,EAAE,IAAI,CAAC;AACpC,QAAQ,eAAe,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC;AACzC,IAAI;AACJ,EAAE,OAAO,CAAC;AACV,CAAC;AACD,IAAI,cAAc,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,GAAG,UAAU,CAAC,CAAC,EAAE,iBAAiB,CAAC,CAAC,CAAC,CAAC;AACjE,IAAI,UAAU,EAAE,CAAC,MAAM,EAAE,OAAO,EAAE,GAAG;AACrC,EAAE,IAAI,OAAO,EAAE,CAAC,CAAC;AACjB,EAAE,IAAI,CAAC,IAAI,KAAK,GAAG,MAAM;AACzB,IAAI,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;AACpE,MAAM,MAAM,CAAC,IAAI,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC;AACjC,EAAE,GAAG,CAAC,OAAO,GAAG,KAAK,GAAG,mBAAmB;AAC3C,IAAI,IAAI,CAAC,IAAI,KAAK,GAAG,mBAAmB,CAAC,MAAM,CAAC,EAAE;AAClD,MAAM,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,EAAE,GAAG,YAAY,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC;AACtE,QAAQ,MAAM,CAAC,IAAI,EAAE,EAAE,MAAM,CAAC,IAAI,CAAC;AACnC,IAAI;AACJ,EAAE,OAAO,MAAM;AACf,CAAC;AACD,IAAI,QAAQ,EAAE,CAAC,MAAM,EAAE,WAAW,EAAE,SAAS,EAAE,GAAG;AAClD,EAAE,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG;AAC1C,IAAI,IAAI,UAAU,EAAE,CAAC,KAAK,EAAE,GAAG;AAC/B,MAAM,IAAI;AACV,QAAQ,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;AACnC,MAAM,EAAE,MAAM,CAAC,CAAC,EAAE;AAClB,QAAQ,MAAM,CAAC,CAAC,CAAC;AACjB,MAAM;AACN,IAAI,CAAC;AACL,IAAI,IAAI,SAAS,EAAE,CAAC,KAAK,EAAE,GAAG;AAC9B,MAAM,IAAI;AACV,QAAQ,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;AACpC,MAAM,EAAE,MAAM,CAAC,CAAC,EAAE;AAClB,QAAQ,MAAM,CAAC,CAAC,CAAC;AACjB,MAAM;AACN,IAAI,CAAC;AACL,IAAI,IAAI,KAAK,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC,CAAC,KAAK,EAAE,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC;AACpG,IAAI,IAAI,CAAC,CAAC,UAAU,EAAE,SAAS,CAAC,KAAK,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;AACnE,EAAE,CAAC,CAAC;AACJ,CAAC;AACD;AACA;AACE;AACA;AACA;AACA;AACF,yIAAC","file":"/Users/lucas/dev/civic/civic-auth/packages/civic-auth-client/dist/chunk-CRTRMMJ7.js"}

package/dist/chunk-KBDRDCE5.mjs ADDED Viewed

@@ -0,0 +1,239 @@
+import {
+  __async,
+  __spreadValues
+} from "./chunk-RGHW4PYM.mjs";
+// src/utils.ts
+import { clsx } from "clsx";
+import { twMerge } from "tailwind-merge";
+var isPopupBlocked = () => {
+  const popup = window.open("", "", "width=1,height=1");
+  if (!popup) {
+    return true;
+  }
+  try {
+    if (typeof popup.closed === "undefined") {
+      throw new Error("Popup is blocked");
+    }
+  } catch (e) {
+    return true;
+  }
+  popup.close();
+  return false;
+};
+var cn = (...inputs) => {
+  return twMerge(clsx(inputs));
+};
+var withoutUndefined = (obj) => {
+  const result = {};
+  for (const key in obj) {
+    if (obj[key] !== void 0) {
+      result[key] = obj[key];
+    }
+  }
+  return result;
+};
+// src/shared/types.ts
+var NextjsServerCookies = /* @__PURE__ */ ((NextjsServerCookies2) => {
+  NextjsServerCookies2["ID_TOKEN"] = "id_token";
+  NextjsServerCookies2["ACCESS_TOKEN"] = "access_token";
+  NextjsServerCookies2["REFRESH_TOKEN"] = "refresh_token";
+  return NextjsServerCookies2;
+})(NextjsServerCookies || {});
+// src/shared/util.ts
+import { OAuth2Client } from "oslo/oauth2";
+// src/lib/oauth.ts
+import { v4 as uuid } from "uuid";
+var getIssuerVariations = (issuer) => {
+  const issuerWithoutSlash = issuer.endsWith("/") ? issuer.slice(0, issuer.length - 1) : issuer;
+  const issuerWithSlash = `${issuerWithoutSlash}/`;
+  return [issuerWithoutSlash, issuerWithSlash];
+};
+var addSlashIfNeeded = (url) => url.endsWith("/") ? url : `${url}/`;
+var getOauthEndpoints = (oauthServer) => __async(void 0, null, function* () {
+  const openIdConfigResponse = yield fetch(
+    `${addSlashIfNeeded(oauthServer)}.well-known/openid-configuration`
+  );
+  const openIdConfig = yield openIdConfigResponse.json();
+  return {
+    jwks: openIdConfig.jwks_uri,
+    auth: openIdConfig.authorization_endpoint,
+    token: openIdConfig.token_endpoint,
+    userinfo: openIdConfig.userinfo_endpoint
+  };
+});
+var generateState = (displayMode) => {
+  const jsonString = JSON.stringify({
+    uuid: uuid(),
+    displayMode
+  });
+  return btoa(jsonString);
+};
+var displayModeFromState = (state, sessionDisplayMode) => {
+  try {
+    const jsonString = btoa(state);
+    return JSON.parse(jsonString).displayMode;
+  } catch (e) {
+    console.error("Failed to parse displayMode from state:", state);
+    return sessionDisplayMode;
+  }
+};
+// src/shared/util.ts
+import * as jose from "jose";
+function deriveCodeChallenge(codeVerifier, method = "S256") {
+  return __async(this, null, function* () {
+    if (method === "Plain") {
+      console.warn("Using insecure plain code challenge method");
+      return codeVerifier;
+    }
+    const encoder = new TextEncoder();
+    const data = encoder.encode(codeVerifier);
+    const digest = yield crypto.subtle.digest("SHA-256", data);
+    return btoa(String.fromCharCode(...new Uint8Array(digest))).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  });
+}
+function getEndpointsWithOverrides(_0) {
+  return __async(this, arguments, function* (oauthServer, endpointOverrides = {}) {
+    const endpoints = yield getOauthEndpoints(oauthServer);
+    return __spreadValues(__spreadValues({}, endpoints), endpointOverrides);
+  });
+}
+function generateOauthLoginUrl(config) {
+  return __async(this, null, function* () {
+    const endpoints = yield getEndpointsWithOverrides(
+      config.oauthServer,
+      config.endpointOverrides
+    );
+    const oauth2Client = buildOauth2Client(
+      config.clientId,
+      config.redirectUrl,
+      endpoints
+    );
+    const challenge = yield config.pkceConsumer.getCodeChallenge();
+    const oAuthUrl = yield oauth2Client.createAuthorizationURL({
+      state: config.state,
+      scopes: config.scopes
+    });
+    oAuthUrl.searchParams.append("code_challenge", challenge);
+    oAuthUrl.searchParams.append("code_challenge_method", "S256");
+    if (config.nonce) {
+      oAuthUrl.searchParams.append("nonce", config.nonce);
+    }
+    oAuthUrl.searchParams.append("prompt", "consent");
+    console.log("Generated OAuth URL", oAuthUrl.toString());
+    return oAuthUrl;
+  });
+}
+function generateOauthLogoutUrl(config) {
+  return __async(this, null, function* () {
+    console.log(config);
+    return new URL("http://localhost");
+  });
+}
+function buildOauth2Client(clientId, redirectUri, endpoints) {
+  return new OAuth2Client(clientId, endpoints.auth, endpoints.token, {
+    redirectURI: redirectUri
+  });
+}
+function exchangeTokens(code, state, pkceProducer, oauth2Client, oauthServer, endpoints) {
+  return __async(this, null, function* () {
+    const codeVerifier = yield pkceProducer.getCodeVerifier();
+    if (!codeVerifier) throw new Error("Code verifier not found in state");
+    const tokens = yield oauth2Client.validateAuthorizationCode(code, {
+      codeVerifier
+    });
+    try {
+      yield validateOauth2Tokens(tokens, endpoints, oauth2Client, oauthServer);
+    } catch (error) {
+      console.error("tokenExchange error", { error, tokens });
+      throw new Error(
+        `OIDC tokens validation failed: ${error.message}`
+      );
+    }
+    return tokens;
+  });
+}
+function storeTokens(storage, tokens) {
+  storage.set("id_token" /* ID_TOKEN */, tokens.id_token);
+  storage.set("access_token" /* ACCESS_TOKEN */, tokens.access_token);
+  if (tokens.refresh_token)
+    storage.set("refresh_token" /* REFRESH_TOKEN */, tokens.refresh_token);
+}
+function clearTokens(storage) {
+  Object.values(NextjsServerCookies).forEach((cookie) => {
+    storage.set(cookie, "");
+  });
+}
+function retrieveTokens(storage) {
+  const idToken = storage.get("id_token" /* ID_TOKEN */);
+  const accessToken = storage.get("access_token" /* ACCESS_TOKEN */);
+  const refreshToken = storage.get("refresh_token" /* REFRESH_TOKEN */);
+  if (!idToken || !accessToken) return null;
+  return {
+    id_token: idToken,
+    access_token: accessToken,
+    refresh_token: refreshToken != null ? refreshToken : void 0
+  };
+}
+function validateOauth2Tokens(tokens, endpoints, oauth2Client, oauthServer) {
+  return __async(this, null, function* () {
+    const JWKS = jose.createRemoteJWKSet(new URL(endpoints.jwks));
+    const idTokenResponse = yield jose.jwtVerify(
+      tokens.id_token,
+      JWKS,
+      {
+        issuer: getIssuerVariations(oauthServer),
+        audience: oauth2Client.clientId
+      }
+    );
+    const accessTokenResponse = yield jose.jwtVerify(
+      tokens.access_token,
+      JWKS,
+      {
+        issuer: getIssuerVariations(oauthServer)
+      }
+    );
+    return withoutUndefined({
+      id_token: idTokenResponse.payload,
+      access_token: accessTokenResponse.payload,
+      refresh_token: tokens.refresh_token
+    });
+  });
+}
+// src/constants.ts
+var DEFAULT_SCOPES = [
+  "openid",
+  "profile",
+  "email",
+  "forwardedTokens",
+  "offline_access"
+];
+var IFRAME_ID = "civic-auth-iframe";
+var AUTH_SERVER = "https://auth-dev.civic.com/oauth";
+export {
+  getOauthEndpoints,
+  generateState,
+  displayModeFromState,
+  isPopupBlocked,
+  cn,
+  deriveCodeChallenge,
+  getEndpointsWithOverrides,
+  generateOauthLoginUrl,
+  generateOauthLogoutUrl,
+  buildOauth2Client,
+  exchangeTokens,
+  storeTokens,
+  clearTokens,
+  retrieveTokens,
+  validateOauth2Tokens,
+  DEFAULT_SCOPES,
+  IFRAME_ID,
+  AUTH_SERVER
+};
+//# sourceMappingURL=chunk-KBDRDCE5.mjs.map