@civic/auth 0.4.4-alpha.0 → 0.4.4

package/dist/cjs/shared/lib/GenericAuthenticationRefresher copy.js

@@ -1,85 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.GenericAuthenticationRefresher = void 0;
-const constants_js_1 = require("../../constants.js");
-const util_js_1 = require("../../shared/lib/util.js");
-class GenericAuthenticationRefresher {
-    onError;
-    authConfig;
-    storage;
-    static refreshInProgress = false;
-    constructor(onError) {
-        this.onError = onError;
-    }
-    get oauthServer() {
-        return this.authConfig?.oauthServer || constants_js_1.DEFAULT_AUTH_SERVER;
-    }
-    async getRefreshToken() {
-        if (!this.storage)
-            throw new Error("No storage available");
-        const tokens = await (0, util_js_1.retrieveTokens)(this.storage);
-        console.log("getRefreshToken tokens", tokens);
-        if (!tokens?.refresh_token)
-            throw new Error("No refresh token available");
-        return tokens.refresh_token;
-    }
-    async refreshTokens() {
-        console.log("GenericAuthenticationRefresher refreshTokens calling refreshAccessToken()");
-        try {
-            return await this.refreshAccessToken();
-        }
-        catch (error) {
-            console.error("refreshTokens: Failed to refresh tokens:", error);
-            // TODO detect if refresh token has expired and if yes then logout
-            throw error;
-        }
-    }
-    async handleRefresh() {
-        try {
-            console.log("GenericAuthenticationRefresher handleRefresh REFRESH_IN_PROGRESS", localStorage.getItem(constants_js_1.REFRESH_IN_PROGRESS));
-            // ensure only one refresh is in progress
-            if (localStorage.getItem(constants_js_1.REFRESH_IN_PROGRESS) !== "true") {
-                localStorage.setItem(constants_js_1.REFRESH_IN_PROGRESS, "true");
-                await this.refreshTokens();
-                localStorage.removeItem(constants_js_1.REFRESH_IN_PROGRESS);
-                await this.setupAutorefresh(); // Reset the timeout after successful refresh
-            }
-        }
-        catch (error) {
-            console.error("Failed to refresh tokens:", error);
-            // TODO detect if refresh token has expired and if yes then logout
-            this.onError(error);
-        }
-    }
-    async setupAutorefresh() {
-        if (!this.storage)
-            throw new Error("No storage available");
-        console.log("removing REFRESH_IN_PROGRESS and AUTOREFRESH_TIMEOUT_NAME");
-        console.log("setupAutorefresh");
-        // Clear any existing timeout
-        this.clearAutorefresh();
-        localStorage.removeItem(constants_js_1.REFRESH_IN_PROGRESS);
-        localStorage.removeItem(constants_js_1.AUTOREFRESH_TIMEOUT_NAME);
-        // get expires_in
-        const now = Math.floor(Date.now() / 1000);
-        const expiresAt = (await (0, util_js_1.retrieveAccessTokenExpiresAt)(this.storage)) || now + 60;
-        // Calculate time until expiry (subtract 30 seconds as buffer)
-        const bufferTime = 30; // 30 seconds
-        const refreshTime = Math.max(0, expiresAt - bufferTime - now); // handle case were token has expired in the past
-        const refreshTimeout = setTimeout(() => {
-            this.handleRefresh();
-        }, 1000 * refreshTime);
-        localStorage.setItem(constants_js_1.AUTOREFRESH_TIMEOUT_NAME, refreshTimeout.toString());
-    }
-    clearAutorefresh() {
-        // use local storage to store the timeout id so that if multiple instances
-        // of the refresher are created they can all clear the same timeout
-        const existingTimeout = localStorage.getItem(constants_js_1.AUTOREFRESH_TIMEOUT_NAME);
-        if (existingTimeout) {
-            console.log("clearAutorefresh clearTimeout", existingTimeout);
-            clearTimeout(existingTimeout);
-        }
-    }
-}
-exports.GenericAuthenticationRefresher = GenericAuthenticationRefresher;
-//# sourceMappingURL=GenericAuthenticationRefresher%20copy.js.map

package/dist/cjs/shared/lib/GenericAuthenticationRefresher copy.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"GenericAuthenticationRefresher copy.js","sourceRoot":"","sources":["../../../../src/shared/lib/GenericAuthenticationRefresher copy.ts"],"names":[],"mappings":";;;AAAA,iDAIwB;AAGxB,kDAG8B;AAG9B,MAAsB,8BAA8B;IAO7B;IAJX,UAAU,CAAyB;IACnC,OAAO,CAA0B;IAC3C,MAAM,CAAC,iBAAiB,GAAG,KAAK,CAAC;IAEjC,YAAqB,OAAwC;QAAxC,YAAO,GAAP,OAAO,CAAiC;IAAG,CAAC;IAEjE,IAAI,WAAW;QACb,OAAO,IAAI,CAAC,UAAU,EAAE,WAAW,IAAI,kCAAmB,CAAC;IAC7D,CAAC;IAMD,KAAK,CAAC,eAAe;QACnB,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAE3D,MAAM,MAAM,GAAG,MAAM,IAAA,wBAAc,EAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,OAAO,CAAC,GAAG,CAAC,wBAAwB,EAAE,MAAM,CAAC,CAAC;QAC9C,IAAI,CAAC,MAAM,EAAE,aAAa;YAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAC1E,OAAO,MAAM,CAAC,aAAa,CAAC;IAC9B,CAAC;IAED,KAAK,CAAC,aAAa;QACjB,OAAO,CAAC,GAAG,CACT,2EAA2E,CAC5E,CAAC;QACF,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACzC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,0CAA0C,EAAE,KAAK,CAAC,CAAC;YACjE,kEAAkE;YAClE,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,aAAa;QACzB,IAAI,CAAC;YACH,OAAO,CAAC,GAAG,CACT,kEAAkE,EAClE,YAAY,CAAC,OAAO,CAAC,kCAAmB,CAAC,CAC1C,CAAC;YACF,yCAAyC;YACzC,IAAI,YAAY,CAAC,OAAO,CAAC,kCAAmB,CAAC,KAAK,MAAM,EAAE,CAAC;gBACzD,YAAY,CAAC,OAAO,CAAC,kCAAmB,EAAE,MAAM,CAAC,CAAC;gBAClD,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;gBAC3B,YAAY,CAAC,UAAU,CAAC,kCAAmB,CAAC,CAAC;gBAC7C,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC,CAAC,6CAA6C;YAC9E,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,2BAA2B,EAAE,KAAK,CAAC,CAAC;YAClD,kEAAkE;YAClE,IAAI,CAAC,OAAO,CAAC,KAAc,CAAC,CAAC;QAC/B,CAAC;IACH,CAAC;IAED,KAAK,CAAC,gBAAgB;QACpB,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAC3D,OAAO,CAAC,GAAG,CAAC,2DAA2D,CAAC,CAAC;QACzE,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;QAChC,6BAA6B;QAC7B,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAExB,YAAY,CAAC,UAAU,CAAC,kCAAmB,CAAC,CAAC;QAC7C,YAAY,CAAC,UAAU,CAAC,uCAAwB,CAAC,CAAC;QAElD,iBAAiB;QACjB,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAC1C,MAAM,SAAS,GACb,CAAC,MAAM,IAAA,sCAA4B,EAAC,IAAI,CAAC,OAAO,CAAC,CAAC,IAAI,GAAG,GAAG,EAAE,CAAC;QAEjE,8DAA8D;QAC9D,MAAM,UAAU,GAAG,EAAE,CAAC,CAAC,aAAa;QACpC,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,UAAU,GAAG,GAAG,CAAC,CAAC,CAAC,iDAAiD;QAEhH,MAAM,cAAc,GAAG,UAAU,CAAC,GAAG,EAAE;YACrC,IAAI,CAAC,aAAa,EAAE,CAAC;QACvB,CAAC,EAAE,IAAI,GAAG,WAAW,CAAC,CAAC;QACvB,YAAY,CAAC,OAAO,CAAC,uCAAwB,EAAE,cAAc,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC5E,CAAC;IAED,gBAAgB;QACd,0EAA0E;QAC1E,mEAAmE;QACnE,MAAM,eAAe,GAAG,YAAY,CAAC,OAAO,CAAC,uCAAwB,CAAC,CAAC;QACvE,IAAI,eAAe,EAAE,CAAC;YACpB,OAAO,CAAC,GAAG,CAAC,+BAA+B,EAAE,eAAe,CAAC,CAAC;YAC9D,YAAY,CAAC,eAAe,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;;AA5FH,wEA6FC","sourcesContent":["import {\n  AUTOREFRESH_TIMEOUT_NAME,\n  DEFAULT_AUTH_SERVER,\n  REFRESH_IN_PROGRESS,\n} from \"@/constants.js\";\nimport type { AuthConfig } from \"@/server/config.js\";\nimport type { AuthenticationRefresher } from \"@/services/types.js\";\nimport {\n  retrieveAccessTokenExpiresAt,\n  retrieveTokens,\n} from \"@/shared/lib/util.js\";\nimport type { AuthStorage, OIDCTokenResponseBody } from \"@/types.js\";\n\nexport abstract class GenericAuthenticationRefresher\n  implements AuthenticationRefresher\n{\n  protected authConfig: AuthConfig | undefined;\n  protected storage: AuthStorage | undefined;\n  static refreshInProgress = false;\n\n  constructor(readonly onError: (error: Error) => Promise<void>) {}\n\n  get oauthServer(): string {\n    return this.authConfig?.oauthServer || DEFAULT_AUTH_SERVER;\n  }\n\n  abstract refreshAccessToken(\n    refreshToken?: string,\n  ): Promise<OIDCTokenResponseBody>;\n\n  async getRefreshToken(): Promise<string> {\n    if (!this.storage) throw new Error(\"No storage available\");\n\n    const tokens = await retrieveTokens(this.storage);\n    console.log(\"getRefreshToken tokens\", tokens);\n    if (!tokens?.refresh_token) throw new Error(\"No refresh token available\");\n    return tokens.refresh_token;\n  }\n\n  async refreshTokens() {\n    console.log(\n      \"GenericAuthenticationRefresher refreshTokens calling refreshAccessToken()\",\n    );\n    try {\n      return await this.refreshAccessToken();\n    } catch (error) {\n      console.error(\"refreshTokens: Failed to refresh tokens:\", error);\n      // TODO detect if refresh token has expired and if yes then logout\n      throw error;\n    }\n  }\n\n  private async handleRefresh() {\n    try {\n      console.log(\n        \"GenericAuthenticationRefresher handleRefresh REFRESH_IN_PROGRESS\",\n        localStorage.getItem(REFRESH_IN_PROGRESS),\n      );\n      // ensure only one refresh is in progress\n      if (localStorage.getItem(REFRESH_IN_PROGRESS) !== \"true\") {\n        localStorage.setItem(REFRESH_IN_PROGRESS, \"true\");\n        await this.refreshTokens();\n        localStorage.removeItem(REFRESH_IN_PROGRESS);\n        await this.setupAutorefresh(); // Reset the timeout after successful refresh\n      }\n    } catch (error) {\n      console.error(\"Failed to refresh tokens:\", error);\n      // TODO detect if refresh token has expired and if yes then logout\n      this.onError(error as Error);\n    }\n  }\n\n  async setupAutorefresh() {\n    if (!this.storage) throw new Error(\"No storage available\");\n    console.log(\"removing REFRESH_IN_PROGRESS and AUTOREFRESH_TIMEOUT_NAME\");\n    console.log(\"setupAutorefresh\");\n    // Clear any existing timeout\n    this.clearAutorefresh();\n\n    localStorage.removeItem(REFRESH_IN_PROGRESS);\n    localStorage.removeItem(AUTOREFRESH_TIMEOUT_NAME);\n\n    // get expires_in\n    const now = Math.floor(Date.now() / 1000);\n    const expiresAt =\n      (await retrieveAccessTokenExpiresAt(this.storage)) || now + 60;\n\n    // Calculate time until expiry (subtract 30 seconds as buffer)\n    const bufferTime = 30; // 30 seconds\n    const refreshTime = Math.max(0, expiresAt - bufferTime - now); // handle case were token has expired in the past\n\n    const refreshTimeout = setTimeout(() => {\n      this.handleRefresh();\n    }, 1000 * refreshTime);\n    localStorage.setItem(AUTOREFRESH_TIMEOUT_NAME, refreshTimeout.toString());\n  }\n\n  clearAutorefresh() {\n    // use local storage to store the timeout id so that if multiple instances\n    // of the refresher are created they can all clear the same timeout\n    const existingTimeout = localStorage.getItem(AUTOREFRESH_TIMEOUT_NAME);\n    if (existingTimeout) {\n      console.log(\"clearAutorefresh clearTimeout\", existingTimeout);\n      clearTimeout(existingTimeout);\n    }\n  }\n}\n"]}

package/dist/cjs/shared/lib/GenericAuthenticationRefresher.d.ts

@@ -1,14 +0,0 @@
-import type { AuthConfig } from "../../server/config.js";
-import type { AuthenticationRefresher } from "../../services/types.js";
-import type { AuthStorage, OIDCTokenResponseBody } from "../../types.js";
-export declare abstract class GenericAuthenticationRefresher implements AuthenticationRefresher {
-    readonly onError: (error: Error) => Promise<void>;
-    protected authConfig: AuthConfig | undefined;
-    protected storage: AuthStorage | undefined;
-    constructor(onError: (error: Error) => Promise<void>);
-    get oauthServer(): string;
-    abstract refreshAccessToken(refreshToken?: string): Promise<OIDCTokenResponseBody>;
-    getRefreshToken(): Promise<string>;
-    refreshTokens(): Promise<OIDCTokenResponseBody>;
-}
-//# sourceMappingURL=GenericAuthenticationRefresher.d.ts.map

package/dist/cjs/shared/lib/GenericAuthenticationRefresher.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"GenericAuthenticationRefresher.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/GenericAuthenticationRefresher.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AACrD,OAAO,KAAK,EAAE,uBAAuB,EAAE,MAAM,qBAAqB,CAAC;AAEnE,OAAO,KAAK,EAAE,WAAW,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAC;AAErE,8BAAsB,8BACpB,YAAW,uBAAuB;IAKtB,QAAQ,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,OAAO,CAAC,IAAI,CAAC;IAH7D,SAAS,CAAC,UAAU,EAAE,UAAU,GAAG,SAAS,CAAC;IAC7C,SAAS,CAAC,OAAO,EAAE,WAAW,GAAG,SAAS,CAAC;gBAEtB,OAAO,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,OAAO,CAAC,IAAI,CAAC;IAE7D,IAAI,WAAW,IAAI,MAAM,CAExB;IAED,QAAQ,CAAC,kBAAkB,CACzB,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC,qBAAqB,CAAC;IAE3B,eAAe,IAAI,OAAO,CAAC,MAAM,CAAC;IASlC,aAAa;CAepB"}

package/dist/cjs/shared/lib/GenericAuthenticationRefresher.js

@@ -1,38 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.GenericAuthenticationRefresher = void 0;
-const constants_js_1 = require("../../constants.js");
-const util_js_1 = require("../../shared/lib/util.js");
-class GenericAuthenticationRefresher {
-    onError;
-    authConfig;
-    storage;
-    constructor(onError) {
-        this.onError = onError;
-    }
-    get oauthServer() {
-        return this.authConfig?.oauthServer || constants_js_1.DEFAULT_AUTH_SERVER;
-    }
-    async getRefreshToken() {
-        if (!this.storage)
-            throw new Error("No storage available");
-        const tokens = await (0, util_js_1.retrieveTokens)(this.storage);
-        console.log("getRefreshToken tokens", tokens);
-        if (!tokens?.refresh_token)
-            throw new Error("No refresh token available");
-        return tokens.refresh_token;
-    }
-    async refreshTokens() {
-        console.log("GenericAuthenticationRefresher refreshTokens calling refreshAccessToken()");
-        try {
-            return await this.refreshAccessToken();
-        }
-        catch (error) {
-            console.error("GenericAuthenticationRefresher: Failed to refresh tokens:", error);
-            // TODO detect if refresh token has expired and if yes then logout
-            throw error;
-        }
-    }
-}
-exports.GenericAuthenticationRefresher = GenericAuthenticationRefresher;
-//# sourceMappingURL=GenericAuthenticationRefresher.js.map

package/dist/cjs/shared/lib/GenericAuthenticationRefresher.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"GenericAuthenticationRefresher.js","sourceRoot":"","sources":["../../../../src/shared/lib/GenericAuthenticationRefresher.ts"],"names":[],"mappings":";;;AAAA,iDAAqD;AAGrD,kDAAsD;AAGtD,MAAsB,8BAA8B;IAM7B;IAHX,UAAU,CAAyB;IACnC,OAAO,CAA0B;IAE3C,YAAqB,OAAwC;QAAxC,YAAO,GAAP,OAAO,CAAiC;IAAG,CAAC;IAEjE,IAAI,WAAW;QACb,OAAO,IAAI,CAAC,UAAU,EAAE,WAAW,IAAI,kCAAmB,CAAC;IAC7D,CAAC;IAMD,KAAK,CAAC,eAAe;QACnB,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAE3D,MAAM,MAAM,GAAG,MAAM,IAAA,wBAAc,EAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,OAAO,CAAC,GAAG,CAAC,wBAAwB,EAAE,MAAM,CAAC,CAAC;QAC9C,IAAI,CAAC,MAAM,EAAE,aAAa;YAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;QAC1E,OAAO,MAAM,CAAC,aAAa,CAAC;IAC9B,CAAC;IAED,KAAK,CAAC,aAAa;QACjB,OAAO,CAAC,GAAG,CACT,2EAA2E,CAC5E,CAAC;QACF,IAAI,CAAC;YACH,OAAO,MAAM,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACzC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CACX,2DAA2D,EAC3D,KAAK,CACN,CAAC;YACF,kEAAkE;YAClE,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;CACF;AAxCD,wEAwCC","sourcesContent":["import { DEFAULT_AUTH_SERVER } from \"@/constants.js\";\nimport type { AuthConfig } from \"@/server/config.js\";\nimport type { AuthenticationRefresher } from \"@/services/types.js\";\nimport { retrieveTokens } from \"@/shared/lib/util.js\";\nimport type { AuthStorage, OIDCTokenResponseBody } from \"@/types.js\";\n\nexport abstract class GenericAuthenticationRefresher\n  implements AuthenticationRefresher\n{\n  protected authConfig: AuthConfig | undefined;\n  protected storage: AuthStorage | undefined;\n\n  constructor(readonly onError: (error: Error) => Promise<void>) {}\n\n  get oauthServer(): string {\n    return this.authConfig?.oauthServer || DEFAULT_AUTH_SERVER;\n  }\n\n  abstract refreshAccessToken(\n    refreshToken?: string,\n  ): Promise<OIDCTokenResponseBody>;\n\n  async getRefreshToken(): Promise<string> {\n    if (!this.storage) throw new Error(\"No storage available\");\n\n    const tokens = await retrieveTokens(this.storage);\n    console.log(\"getRefreshToken tokens\", tokens);\n    if (!tokens?.refresh_token) throw new Error(\"No refresh token available\");\n    return tokens.refresh_token;\n  }\n\n  async refreshTokens() {\n    console.log(\n      \"GenericAuthenticationRefresher refreshTokens calling refreshAccessToken()\",\n    );\n    try {\n      return await this.refreshAccessToken();\n    } catch (error) {\n      console.error(\n        \"GenericAuthenticationRefresher: Failed to refresh tokens:\",\n        error,\n      );\n      // TODO detect if refresh token has expired and if yes then logout\n      throw error;\n    }\n  }\n}\n"]}

package/dist/cjs/shared/lib/UserSession.d.ts

@@ -1,17 +0,0 @@
-import type { AuthStorage, ForwardedTokensJWT, UnknownObject, User } from "../../types.js";
-export interface UserSession<T extends UnknownObject> {
-    get(): Promise<User<T> | null>;
-    set(user: User<T> & {
-        forwardedTokens?: ForwardedTokensJWT;
-    }): Promise<void>;
-}
-export declare class GenericUserSession<T extends UnknownObject> implements UserSession<T> {
-    readonly storage: AuthStorage;
-    constructor(storage: AuthStorage);
-    get(): Promise<User<T> | null>;
-    set(user: (User<T> & {
-        forwardedTokens?: ForwardedTokensJWT;
-    }) | null): Promise<void>;
-    clear(): Promise<void>;
-}
-//# sourceMappingURL=UserSession.d.ts.map

package/dist/cjs/shared/lib/UserSession.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserSession.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/UserSession.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,WAAW,EACX,kBAAkB,EAClB,aAAa,EACb,IAAI,EACL,MAAM,YAAY,CAAC;AAIpB,MAAM,WAAW,WAAW,CAAC,CAAC,SAAS,aAAa;IAClD,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAC/B,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,GAAG;QAAE,eAAe,CAAC,EAAE,kBAAkB,CAAA;KAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9E;AAED,qBAAa,kBAAkB,CAAC,CAAC,SAAS,aAAa,CACrD,YAAW,WAAW,CAAC,CAAC,CAAC;IAEb,QAAQ,CAAC,OAAO,EAAE,WAAW;gBAApB,OAAO,EAAE,WAAW;IAEnC,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;IAK9B,GAAG,CACP,IAAI,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG;QAAE,eAAe,CAAC,EAAE,kBAAkB,CAAA;KAAE,CAAC,GAAG,IAAI,GAChE,OAAO,CAAC,IAAI,CAAC;IAQV,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAG7B"}

package/dist/cjs/shared/lib/UserSession.js

@@ -1,27 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.GenericUserSession = void 0;
-const types_js_1 = require("../../shared/lib/types.js");
-const jwt_js_1 = require("../../lib/jwt.js");
-class GenericUserSession {
-    storage;
-    constructor(storage) {
-        this.storage = storage;
-    }
-    async get() {
-        const user = await this.storage.get(types_js_1.UserStorage.USER);
-        return user ? JSON.parse(user) : null;
-    }
-    async set(user) {
-        const forwardedTokens = user?.forwardedTokens
-            ? (0, jwt_js_1.convertForwardedTokenFormat)(user?.forwardedTokens)
-            : null;
-        const value = user ? JSON.stringify({ ...user, forwardedTokens }) : "";
-        await this.storage.set(types_js_1.UserStorage.USER, value);
-    }
-    async clear() {
-        await this.storage.delete(types_js_1.UserStorage.USER);
-    }
-}
-exports.GenericUserSession = GenericUserSession;
-//# sourceMappingURL=UserSession.js.map

package/dist/cjs/shared/lib/UserSession.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"UserSession.js","sourceRoot":"","sources":["../../../../src/shared/lib/UserSession.ts"],"names":[],"mappings":";;;AAMA,oDAAoD;AACpD,yCAA2D;AAO3D,MAAa,kBAAkB;IAGR;IAArB,YAAqB,OAAoB;QAApB,YAAO,GAAP,OAAO,CAAa;IAAG,CAAC;IAE7C,KAAK,CAAC,GAAG;QACP,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,sBAAW,CAAC,IAAI,CAAC,CAAC;QACtD,OAAO,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACxC,CAAC;IAED,KAAK,CAAC,GAAG,CACP,IAAiE;QAEjE,MAAM,eAAe,GAAG,IAAI,EAAE,eAAe;YAC3C,CAAC,CAAC,IAAA,oCAA2B,EAAC,IAAI,EAAE,eAAqC,CAAC;YAC1E,CAAC,CAAC,IAAI,CAAC;QACT,MAAM,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,GAAG,IAAI,EAAE,eAAe,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QACvE,MAAM,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,sBAAW,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;IAClD,CAAC;IAED,KAAK,CAAC,KAAK;QACT,MAAM,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,sBAAW,CAAC,IAAI,CAAC,CAAC;IAC9C,CAAC;CACF;AAvBD,gDAuBC","sourcesContent":["import type {\n  AuthStorage,\n  ForwardedTokensJWT,\n  UnknownObject,\n  User,\n} from \"@/types.js\";\nimport { UserStorage } from \"@/shared/lib/types.js\";\nimport { convertForwardedTokenFormat } from \"@/lib/jwt.js\";\n\nexport interface UserSession<T extends UnknownObject> {\n  get(): Promise<User<T> | null>;\n  set(user: User<T> & { forwardedTokens?: ForwardedTokensJWT }): Promise<void>;\n}\n\nexport class GenericUserSession<T extends UnknownObject>\n  implements UserSession<T>\n{\n  constructor(readonly storage: AuthStorage) {}\n\n  async get(): Promise<User<T> | null> {\n    const user = await this.storage.get(UserStorage.USER);\n    return user ? JSON.parse(user) : null;\n  }\n\n  async set(\n    user: (User<T> & { forwardedTokens?: ForwardedTokensJWT }) | null,\n  ): Promise<void> {\n    const forwardedTokens = user?.forwardedTokens\n      ? convertForwardedTokenFormat(user?.forwardedTokens as ForwardedTokensJWT)\n      : null;\n    const value = user ? JSON.stringify({ ...user, forwardedTokens }) : \"\";\n    await this.storage.set(UserStorage.USER, value);\n  }\n\n  async clear(): Promise<void> {\n    await this.storage.delete(UserStorage.USER);\n  }\n}\n"]}

package/dist/cjs/shared/lib/iframeUtils.d.ts

@@ -1,6 +0,0 @@
-type ExtendedIframeElement = HTMLIFrameElement & {
-    getElement: () => HTMLIFrameElement;
-};
-export declare const getIframeRef: (iframeRef: HTMLIFrameElement | ExtendedIframeElement | null) => HTMLIFrameElement;
-export {};
-//# sourceMappingURL=iframeUtils.d.ts.map

package/dist/cjs/shared/lib/iframeUtils.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"iframeUtils.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/iframeUtils.ts"],"names":[],"mappings":"AAAA,KAAK,qBAAqB,GAAG,iBAAiB,GAAG;IAC/C,UAAU,EAAE,MAAM,iBAAiB,CAAC;CACrC,CAAC;AACF,eAAO,MAAM,YAAY,cACZ,iBAAiB,GAAG,qBAAqB,GAAG,IAAI,KAC1D,iBAKF,CAAC"}

package/dist/cjs/shared/lib/iframeUtils.js

@@ -1,11 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getIframeRef = void 0;
-const getIframeRef = (iframeRef) => {
-    if (!iframeRef) {
-        throw new Error("iframeRef is required for displayMode 'iframe'");
-    }
-    return iframeRef?.getElement?.() ?? iframeRef;
-};
-exports.getIframeRef = getIframeRef;
-//# sourceMappingURL=iframeUtils.js.map

package/dist/cjs/shared/lib/iframeUtils.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"iframeUtils.js","sourceRoot":"","sources":["../../../../src/shared/lib/iframeUtils.ts"],"names":[],"mappings":";;;AAGO,MAAM,YAAY,GAAG,CAC1B,SAA2D,EACxC,EAAE;IACrB,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACpE,CAAC;IACD,OAAQ,SAAmC,EAAE,UAAU,EAAE,EAAE,IAAI,SAAS,CAAC;AAC3E,CAAC,CAAC;AAPW,QAAA,YAAY,gBAOvB","sourcesContent":["type ExtendedIframeElement = HTMLIFrameElement & {\n  getElement: () => HTMLIFrameElement;\n};\nexport const getIframeRef = (\n  iframeRef: HTMLIFrameElement | ExtendedIframeElement | null,\n): HTMLIFrameElement => {\n  if (!iframeRef) {\n    throw new Error(\"iframeRef is required for displayMode 'iframe'\");\n  }\n  return (iframeRef as ExtendedIframeElement)?.getElement?.() ?? iframeRef;\n};\n"]}

package/dist/cjs/shared/lib/session.d.ts

@@ -1,4 +0,0 @@
-import { type AuthStorage, type OAuthTokens, type User, type EmptyObject, type UnknownObject } from "../../types.js";
-export declare function getUser<T extends UnknownObject = EmptyObject>(storage: AuthStorage): Promise<User<T> | null>;
-export declare function getTokens(storage: AuthStorage): Promise<OAuthTokens | null>;
-//# sourceMappingURL=session.d.ts.map

package/dist/cjs/shared/lib/session.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"session.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/session.ts"],"names":[],"mappings":"AAEA,OAAO,EAEL,KAAK,WAAW,EAChB,KAAK,WAAW,EAChB,KAAK,IAAI,EACT,KAAK,WAAW,EAChB,KAAK,aAAa,EACnB,MAAM,YAAY,CAAC;AAsBpB,wBAAsB,OAAO,CAAC,CAAC,SAAS,aAAa,GAAG,WAAW,EACjE,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAoBzB;AAED,wBAAsB,SAAS,CAC7B,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAS7B"}

package/dist/cjs/shared/lib/session.js

@@ -1,48 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getUser = getUser;
-exports.getTokens = getTokens;
-const util_js_1 = require("../../shared/lib/util.js");
-const jose_1 = require("jose");
-const types_js_1 = require("../../types.js");
-const constants_js_1 = require("../../constants.js");
-// Function to omit keys from an object
-const omitKeys = (keys, obj) => {
-    const result = { ...obj };
-    keys.forEach((key) => {
-        delete result[key];
-    });
-    return result;
-};
-const parseJWTToType = (jwt) => {
-    const parseResult = (0, jose_1.decodeJwt)(jwt);
-    return parseResult;
-};
-async function getUser(storage) {
-    const tokens = await (0, util_js_1.retrieveTokens)(storage);
-    if (!tokens)
-        return null;
-    const parsedToken = parseJWTToType(tokens.id_token);
-    // it might be preferable to throw here
-    if (!parsedToken.sub)
-        return null;
-    // set the user ID from the token sub
-    const userWithAdditionalTokenFields = {
-        ...parsedToken,
-        id: parsedToken.sub,
-    };
-    // Assumes all information is in the ID token
-    // remove the token keys from the user object to stop it getting too large
-    return omitKeys([...constants_js_1.JWT_PAYLOAD_KNOWN_CLAIM_KEYS, ...types_js_1.tokenKeys], userWithAdditionalTokenFields);
-}
-async function getTokens(storage) {
-    const storageData = await (0, util_js_1.retrieveTokens)(storage);
-    if (!storageData)
-        return null;
-    return {
-        idToken: storageData.id_token,
-        accessToken: storageData.access_token,
-        refreshToken: storageData.refresh_token,
-    };
-}
-//# sourceMappingURL=session.js.map

package/dist/cjs/shared/lib/session.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"session.js","sourceRoot":"","sources":["../../../../src/shared/lib/session.ts"],"names":[],"mappings":";;AA+BA,0BAsBC;AAED,8BAWC;AAlED,kDAAsD;AACtD,+BAAkD;AAClD,yCAOoB;AACpB,iDAA8D;AAE9D,uCAAuC;AACvC,MAAM,QAAQ,GAAG,CACf,IAAS,EACT,GAAM,EACM,EAAE;IACd,MAAM,MAAM,GAAG,EAAE,GAAG,GAAG,EAAE,CAAC;IAC1B,IAAI,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;QACnB,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC;IACrB,CAAC,CAAC,CAAC;IACH,OAAO,MAAM,CAAC;AAChB,CAAC,CAAC;AAEF,MAAM,cAAc,GAAG,CACrB,GAAW,EACK,EAAE;IAClB,MAAM,WAAW,GAAG,IAAA,gBAAS,EAAC,GAAG,CAAC,CAAC;IACnC,OAAO,WAA6B,CAAC;AACvC,CAAC,CAAC;AAEK,KAAK,UAAU,OAAO,CAC3B,OAAoB;IAEpB,MAAM,MAAM,GAAG,MAAM,IAAA,wBAAc,EAAC,OAAO,CAAC,CAAC;IAC7C,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IAEzB,MAAM,WAAW,GAAG,cAAc,CAAI,MAAM,CAAC,QAAQ,CAAC,CAAC;IACvD,uCAAuC;IACvC,IAAI,CAAC,WAAW,CAAC,GAAG;QAAE,OAAO,IAAI,CAAC;IAElC,qCAAqC;IACrC,MAAM,6BAA6B,GAAG;QACpC,GAAI,WAAiB;QACrB,EAAE,EAAE,WAAW,CAAC,GAAG;KACpB,CAAC;IAEF,6CAA6C;IAC7C,0EAA0E;IAC1E,OAAO,QAAQ,CACb,CAAC,GAAG,2CAA4B,EAAE,GAAG,oBAAS,CAAC,EAC/C,6BAA6B,CACnB,CAAC;AACf,CAAC;AAEM,KAAK,UAAU,SAAS,CAC7B,OAAoB;IAEpB,MAAM,WAAW,GAAG,MAAM,IAAA,wBAAc,EAAC,OAAO,CAAC,CAAC;IAClD,IAAI,CAAC,WAAW;QAAE,OAAO,IAAI,CAAC;IAE9B,OAAO;QACL,OAAO,EAAE,WAAW,CAAC,QAAQ;QAC7B,WAAW,EAAE,WAAW,CAAC,YAAY;QACrC,YAAY,EAAE,WAAW,CAAC,aAAa;KACxC,CAAC;AACJ,CAAC","sourcesContent":["import { retrieveTokens } from \"@/shared/lib/util.js\";\nimport { decodeJwt, type JWTPayload } from \"jose\";\nimport {\n  tokenKeys,\n  type AuthStorage,\n  type OAuthTokens,\n  type User,\n  type EmptyObject,\n  type UnknownObject,\n} from \"@/types.js\";\nimport { JWT_PAYLOAD_KNOWN_CLAIM_KEYS } from \"@/constants.js\";\n\n// Function to omit keys from an object\nconst omitKeys = <K extends keyof T, T extends Record<string, unknown>>(\n  keys: K[],\n  obj: T,\n): Omit<T, K> => {\n  const result = { ...obj };\n  keys.forEach((key) => {\n    delete result[key];\n  });\n  return result;\n};\n\nconst parseJWTToType = <T extends UnknownObject = EmptyObject>(\n  jwt: string,\n): JWTPayload & T => {\n  const parseResult = decodeJwt(jwt);\n  return parseResult as JWTPayload & T;\n};\n\nexport async function getUser<T extends UnknownObject = EmptyObject>(\n  storage: AuthStorage,\n): Promise<User<T> | null> {\n  const tokens = await retrieveTokens(storage);\n  if (!tokens) return null;\n\n  const parsedToken = parseJWTToType<T>(tokens.id_token);\n  // it might be preferable to throw here\n  if (!parsedToken.sub) return null;\n\n  // set the user ID from the token sub\n  const userWithAdditionalTokenFields = {\n    ...(parsedToken as T),\n    id: parsedToken.sub,\n  };\n\n  // Assumes all information is in the ID token\n  // remove the token keys from the user object to stop it getting too large\n  return omitKeys(\n    [...JWT_PAYLOAD_KNOWN_CLAIM_KEYS, ...tokenKeys],\n    userWithAdditionalTokenFields,\n  ) as User<T>;\n}\n\nexport async function getTokens(\n  storage: AuthStorage,\n): Promise<OAuthTokens | null> {\n  const storageData = await retrieveTokens(storage);\n  if (!storageData) return null;\n\n  return {\n    idToken: storageData.id_token,\n    accessToken: storageData.access_token,\n    refreshToken: storageData.refresh_token,\n  };\n}\n"]}

package/dist/cjs/shared/lib/storage.d.ts

@@ -1,35 +0,0 @@
-import type { AuthStorage, SessionData, UnknownObject, User } from "../../types.js";
-import type { CookieConfig } from "./types.js";
-type SameSiteOption = "strict" | "lax" | "none";
-export interface SessionStorage {
-    get(): SessionData;
-    getUser(): User<UnknownObject> | null;
-    set(data: Partial<SessionData>): void;
-    setUser(data: User<UnknownObject> | null): void;
-    clear(): void;
-}
-export type CookieStorageSettings = {
-    httpOnly: boolean;
-    secure: boolean;
-    sameSite: SameSiteOption;
-    expires: Date;
-    path: string;
-};
-export declare const DEFAULT_COOKIE_DURATION: number;
-export declare abstract class CookieStorage implements AuthStorage {
-    protected settings: CookieStorageSettings;
-    protected constructor(settings?: Partial<CookieStorageSettings>);
-    abstract get(key: string): Promise<string | null>;
-    abstract set(key: string, value: string, cookieConfigOverride?: Partial<CookieConfig>): Promise<void>;
-    abstract delete(key: string): Promise<void>;
-}
-export type AuthCookieStorageSettings = {
-    httpOnly: boolean;
-    secure: boolean;
-    sameSite: SameSiteOption;
-    expires: Date;
-    path: string;
-    timestamp: Date;
-};
-export {};
-//# sourceMappingURL=storage.d.ts.map

package/dist/cjs/shared/lib/storage.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"storage.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/storage.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,aAAa,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AAChF,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE/C,KAAK,cAAc,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAEhD,MAAM,WAAW,cAAc;IAC7B,GAAG,IAAI,WAAW,CAAC;IACnB,OAAO,IAAI,IAAI,CAAC,aAAa,CAAC,GAAG,IAAI,CAAC;IACtC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC;IACtC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,aAAa,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC;IAChD,KAAK,IAAI,IAAI,CAAC;CACf;AAED,MAAM,MAAM,qBAAqB,GAAG;IAClC,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,cAAc,CAAC;IACzB,OAAO,EAAE,IAAI,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;CACd,CAAC;AAEF,eAAO,MAAM,uBAAuB,QAAU,CAAC;AAE/C,8BAAsB,aAAc,YAAW,WAAW;IACxD,SAAS,CAAC,QAAQ,EAAE,qBAAqB,CAAC;IAC1C,SAAS,aAAa,QAAQ,GAAE,OAAO,CAAC,qBAAqB,CAAM;IAanE,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;IACjD,QAAQ,CAAC,GAAG,CACV,GAAG,EAAE,MAAM,EACX,KAAK,EAAE,MAAM,EACb,oBAAoB,CAAC,EAAE,OAAO,CAAC,YAAY,CAAC,GAC3C,OAAO,CAAC,IAAI,CAAC;IAChB,QAAQ,CAAC,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAC5C;AAED,MAAM,MAAM,yBAAyB,GAAG;IACtC,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,cAAc,CAAC;IACzB,OAAO,EAAE,IAAI,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,IAAI,CAAC;CACjB,CAAC"}

package/dist/cjs/shared/lib/storage.js

@@ -1,21 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.CookieStorage = exports.DEFAULT_COOKIE_DURATION = void 0;
-exports.DEFAULT_COOKIE_DURATION = 60 * 15; // 15 minutes
-class CookieStorage {
-    settings;
-    constructor(settings = {}) {
-        this.settings = {
-            httpOnly: settings.httpOnly ?? true,
-            secure: settings.secure ?? true,
-            // the callback request comes the auth server
-            // 'lax' ensures the code_verifier cookie is sent with the request
-            sameSite: settings.sameSite ?? "lax",
-            expires: settings.expires ??
-                new Date(Date.now() + 1000 * exports.DEFAULT_COOKIE_DURATION),
-            path: settings.path ?? "/",
-        };
-    }
-}
-exports.CookieStorage = CookieStorage;
-//# sourceMappingURL=storage.js.map

package/dist/cjs/shared/lib/storage.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"storage.js","sourceRoot":"","sources":["../../../../src/shared/lib/storage.ts"],"names":[],"mappings":";;;AAqBa,QAAA,uBAAuB,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,aAAa;AAE7D,MAAsB,aAAa;IACvB,QAAQ,CAAwB;IAC1C,YAAsB,WAA2C,EAAE;QACjE,IAAI,CAAC,QAAQ,GAAG;YACd,QAAQ,EAAE,QAAQ,CAAC,QAAQ,IAAI,IAAI;YACnC,MAAM,EAAE,QAAQ,CAAC,MAAM,IAAI,IAAI;YAC/B,6CAA6C;YAC7C,kEAAkE;YAClE,QAAQ,EAAE,QAAQ,CAAC,QAAQ,IAAI,KAAK;YACpC,OAAO,EACL,QAAQ,CAAC,OAAO;gBAChB,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,+BAAuB,CAAC;YACvD,IAAI,EAAE,QAAQ,CAAC,IAAI,IAAI,GAAG;SAC3B,CAAC;IACJ,CAAC;CAQF;AAtBD,sCAsBC","sourcesContent":["import type { AuthStorage, SessionData, UnknownObject, User } from \"@/types.js\";\nimport type { CookieConfig } from \"./types.js\";\n\ntype SameSiteOption = \"strict\" | \"lax\" | \"none\";\n\nexport interface SessionStorage {\n  get(): SessionData;\n  getUser(): User<UnknownObject> | null;\n  set(data: Partial<SessionData>): void;\n  setUser(data: User<UnknownObject> | null): void;\n  clear(): void;\n}\n\nexport type CookieStorageSettings = {\n  httpOnly: boolean;\n  secure: boolean;\n  sameSite: SameSiteOption;\n  expires: Date;\n  path: string;\n};\n\nexport const DEFAULT_COOKIE_DURATION = 60 * 15; // 15 minutes\n\nexport abstract class CookieStorage implements AuthStorage {\n  protected settings: CookieStorageSettings;\n  protected constructor(settings: Partial<CookieStorageSettings> = {}) {\n    this.settings = {\n      httpOnly: settings.httpOnly ?? true,\n      secure: settings.secure ?? true,\n      // the callback request comes the auth server\n      // 'lax' ensures the code_verifier cookie is sent with the request\n      sameSite: settings.sameSite ?? \"lax\",\n      expires:\n        settings.expires ??\n        new Date(Date.now() + 1000 * DEFAULT_COOKIE_DURATION),\n      path: settings.path ?? \"/\",\n    };\n  }\n  abstract get(key: string): Promise<string | null>;\n  abstract set(\n    key: string,\n    value: string,\n    cookieConfigOverride?: Partial<CookieConfig>,\n  ): Promise<void>;\n  abstract delete(key: string): Promise<void>;\n}\n\nexport type AuthCookieStorageSettings = {\n  httpOnly: boolean;\n  secure: boolean;\n  sameSite: SameSiteOption;\n  expires: Date;\n  path: string;\n  timestamp: Date;\n};\n"]}

package/dist/cjs/shared/lib/types.d.ts

@@ -1,39 +0,0 @@
-import type { Endpoints } from "../../types.js";
-export declare enum OAuthTokens {
-    ID_TOKEN = "id_token",
-    ACCESS_TOKEN = "access_token",
-    REFRESH_TOKEN = "refresh_token",
-    ACCESS_TOKEN_EXPIRES_AT = "access_token_expires_at"
-}
-export declare const AUTH_SERVER_SESSION = "_session";
-export declare const AUTH_SERVER_LEGACY_SESSION = "_session.legacy";
-export declare enum CodeVerifier {
-    COOKIE_NAME = "code_verifier",
-    APP_URL = "app_url"
-}
-export declare enum UserStorage {
-    USER = "user"
-}
-export interface CookieConfig {
-    secure?: boolean;
-    sameSite?: "strict" | "lax" | "none";
-    domain?: string;
-    path?: string;
-    maxAge?: number;
-    httpOnly?: boolean;
-}
-export type KeySetter = OAuthTokens | CodeVerifier | UserStorage;
-export type TokensCookieConfig = Record<OAuthTokens | CodeVerifier, CookieConfig>;
-export type CivicAuthConfig = null | {
-    clientId: string;
-    redirectUrl: string;
-    logoutRedirectUrl: string;
-    oauthServer: string;
-    endpoints: Endpoints;
-    scopes: string[];
-    nonce?: string;
-    challengeUrl?: string;
-    refreshUrl?: string;
-    logoutUrl?: string;
-};
-//# sourceMappingURL=types.d.ts.map

package/dist/cjs/shared/lib/types.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,YAAY,CAAC;AAE5C,oBAAY,WAAW;IACrB,QAAQ,aAAa;IACrB,YAAY,iBAAiB;IAC7B,aAAa,kBAAkB;IAC/B,uBAAuB,4BAA4B;CACpD;AAED,eAAO,MAAM,mBAAmB,aAAa,CAAC;AAC9C,eAAO,MAAM,0BAA0B,oBAAoB,CAAC;AAE5D,oBAAY,YAAY;IACtB,WAAW,kBAAkB;IAC7B,OAAO,YAAY;CACpB;AACD,oBAAY,WAAW;IACrB,IAAI,SAAS;CACd;AACD,MAAM,WAAW,YAAY;IAC3B,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;IACrC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AACD,MAAM,MAAM,SAAS,GAAG,WAAW,GAAG,YAAY,GAAG,WAAW,CAAC;AAEjE,MAAM,MAAM,kBAAkB,GAAG,MAAM,CACrC,WAAW,GAAG,YAAY,EAC1B,YAAY,CACb,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,IAAI,GAAG;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,SAAS,CAAC;IACrB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,CAAC"}

package/dist/cjs/shared/lib/types.js

@@ -1,22 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.UserStorage = exports.CodeVerifier = exports.AUTH_SERVER_LEGACY_SESSION = exports.AUTH_SERVER_SESSION = exports.OAuthTokens = void 0;
-var OAuthTokens;
-(function (OAuthTokens) {
-    OAuthTokens["ID_TOKEN"] = "id_token";
-    OAuthTokens["ACCESS_TOKEN"] = "access_token";
-    OAuthTokens["REFRESH_TOKEN"] = "refresh_token";
-    OAuthTokens["ACCESS_TOKEN_EXPIRES_AT"] = "access_token_expires_at";
-})(OAuthTokens || (exports.OAuthTokens = OAuthTokens = {}));
-exports.AUTH_SERVER_SESSION = "_session";
-exports.AUTH_SERVER_LEGACY_SESSION = "_session.legacy";
-var CodeVerifier;
-(function (CodeVerifier) {
-    CodeVerifier["COOKIE_NAME"] = "code_verifier";
-    CodeVerifier["APP_URL"] = "app_url";
-})(CodeVerifier || (exports.CodeVerifier = CodeVerifier = {}));
-var UserStorage;
-(function (UserStorage) {
-    UserStorage["USER"] = "user";
-})(UserStorage || (exports.UserStorage = UserStorage = {}));
-//# sourceMappingURL=types.js.map

package/dist/cjs/shared/lib/types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../../src/shared/lib/types.ts"],"names":[],"mappings":";;;AAEA,IAAY,WAKX;AALD,WAAY,WAAW;IACrB,oCAAqB,CAAA;IACrB,4CAA6B,CAAA;IAC7B,8CAA+B,CAAA;IAC/B,kEAAmD,CAAA;AACrD,CAAC,EALW,WAAW,2BAAX,WAAW,QAKtB;AAEY,QAAA,mBAAmB,GAAG,UAAU,CAAC;AACjC,QAAA,0BAA0B,GAAG,iBAAiB,CAAC;AAE5D,IAAY,YAGX;AAHD,WAAY,YAAY;IACtB,6CAA6B,CAAA;IAC7B,mCAAmB,CAAA;AACrB,CAAC,EAHW,YAAY,4BAAZ,YAAY,QAGvB;AACD,IAAY,WAEX;AAFD,WAAY,WAAW;IACrB,4BAAa,CAAA;AACf,CAAC,EAFW,WAAW,2BAAX,WAAW,QAEtB","sourcesContent":["import type { Endpoints } from \"@/types.js\";\n\nexport enum OAuthTokens {\n  ID_TOKEN = \"id_token\",\n  ACCESS_TOKEN = \"access_token\",\n  REFRESH_TOKEN = \"refresh_token\",\n  ACCESS_TOKEN_EXPIRES_AT = \"access_token_expires_at\",\n}\n\nexport const AUTH_SERVER_SESSION = \"_session\";\nexport const AUTH_SERVER_LEGACY_SESSION = \"_session.legacy\";\n\nexport enum CodeVerifier {\n  COOKIE_NAME = \"code_verifier\",\n  APP_URL = \"app_url\",\n}\nexport enum UserStorage {\n  USER = \"user\",\n}\nexport interface CookieConfig {\n  secure?: boolean;\n  sameSite?: \"strict\" | \"lax\" | \"none\";\n  domain?: string;\n  path?: string;\n  maxAge?: number;\n  httpOnly?: boolean;\n}\nexport type KeySetter = OAuthTokens | CodeVerifier | UserStorage;\n\nexport type TokensCookieConfig = Record<\n  OAuthTokens | CodeVerifier,\n  CookieConfig\n>;\n\nexport type CivicAuthConfig = null | {\n  clientId: string;\n  redirectUrl: string;\n  logoutRedirectUrl: string;\n  oauthServer: string;\n  endpoints: Endpoints;\n  scopes: string[];\n  nonce?: string;\n  challengeUrl?: string;\n  refreshUrl?: string;\n  logoutUrl?: string;\n};\n"]}

package/dist/cjs/shared/lib/util.d.ts

@@ -1,40 +0,0 @@
-import type { AuthStorage, Endpoints, OIDCTokenResponseBody, ParsedTokens } from "../../types.js";
-import { OAuth2Client } from "oslo/oauth2";
-import type { PKCEConsumer, PKCEProducer } from "../../services/types.js";
-import type { CookieStorage } from "./storage.js";
-/**
- * Given a PKCE code verifier, derive the code challenge using SHA
- */
-export declare function deriveCodeChallenge(codeVerifier: string, method?: "Plain" | "S256"): Promise<string>;
-export declare function getEndpointsWithOverrides(oauthServer: string, endpointOverrides?: Partial<Endpoints>): Promise<Endpoints>;
-export declare function generateOauthLoginUrl(config: {
-    clientId: string;
-    scopes: string[];
-    state: string;
-    redirectUrl: string;
-    oauthServer: string;
-    nonce?: string;
-    endpointOverrides?: Partial<Endpoints>;
-    pkceConsumer: PKCEConsumer;
-}): Promise<URL>;
-export declare function generateOauthLogoutUrl(config: {
-    clientId: string;
-    redirectUrl: string;
-    idToken: string;
-    state: string;
-    oauthServer: string;
-    endpointOverrides?: Partial<Endpoints>;
-}): Promise<URL>;
-export declare function buildOauth2Client(clientId: string, redirectUri: string, endpoints: Endpoints): OAuth2Client;
-export declare function exchangeTokens(code: string, state: string, pkceProducer: PKCEProducer, oauth2Client: OAuth2Client, oauthServer: string, endpoints: Endpoints): Promise<OIDCTokenResponseBody>;
-export declare const getAccessTokenExpiresAt: (tokens: OIDCTokenResponseBody) => number;
-export declare function setAccessTokenExpiresAt(storage: AuthStorage | CookieStorage, tokens: OIDCTokenResponseBody): Promise<void>;
-export declare function storeTokens(storage: AuthStorage, tokens: OIDCTokenResponseBody): Promise<void>;
-export declare function storeServerTokens(storage: AuthStorage | CookieStorage, tokens: OIDCTokenResponseBody): Promise<void>;
-export declare function clearTokens(storage: AuthStorage): Promise<void>;
-export declare function clearAuthServerSession(storage: AuthStorage): Promise<void>;
-export declare function clearUser(storage: AuthStorage): Promise<void>;
-export declare function retrieveTokens(storage: AuthStorage): Promise<OIDCTokenResponseBody | null>;
-export declare function retrieveAccessTokenExpiresAt(storage: AuthStorage): Promise<number>;
-export declare function validateOauth2Tokens(tokens: OIDCTokenResponseBody, endpoints: Endpoints, oauth2Client: OAuth2Client, issuer: string): Promise<ParsedTokens>;
-//# sourceMappingURL=util.d.ts.map

package/dist/cjs/shared/lib/util.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"util.d.ts","sourceRoot":"","sources":["../../../../src/shared/lib/util.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EACV,WAAW,EACX,SAAS,EACT,qBAAqB,EACrB,YAAY,EACb,MAAM,YAAY,CAAC;AAMpB,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAI3C,OAAO,KAAK,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAGtE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAOlD;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,YAAY,EAAE,MAAM,EACpB,MAAM,GAAE,OAAO,GAAG,MAAe,GAChC,OAAO,CAAC,MAAM,CAAC,CAajB;AAED,wBAAsB,yBAAyB,CAC7C,WAAW,EAAE,MAAM,EACnB,iBAAiB,GAAE,OAAO,CAAC,SAAS,CAAM,GACzC,OAAO,CAAC,SAAS,CAAC,CAMpB;AAED,wBAAsB,qBAAqB,CAAC,MAAM,EAAE;IAClD,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,iBAAiB,CAAC,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;IAEvC,YAAY,EAAE,YAAY,CAAC;CAC5B,GAAG,OAAO,CAAC,GAAG,CAAC,CA2Bf;AAED,wBAAsB,sBAAsB,CAAC,MAAM,EAAE;IACnD,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,iBAAiB,CAAC,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;CACxC,GAAG,OAAO,CAAC,GAAG,CAAC,CAcf;AAED,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,MAAM,EAChB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,SAAS,GACnB,YAAY,CAId;AAED,wBAAsB,cAAc,CAClC,IAAI,EAAE,MAAM,EACZ,KAAK,EAAE,MAAM,EACb,YAAY,EAAE,YAAY,EAC1B,YAAY,EAAE,YAAY,EAC1B,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,SAAS,kCAoBrB;AAED,eAAO,MAAM,uBAAuB,WAC1B,qBAAqB,KAC5B,MAUF,CAAC;AACF,wBAAsB,uBAAuB,CAC3C,OAAO,EAAE,WAAW,GAAG,aAAa,EACpC,MAAM,EAAE,qBAAqB,iBAQ9B;AAED,wBAAsB,WAAW,CAC/B,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,qBAAqB,iBAQ9B;AAED,wBAAsB,iBAAiB,CACrC,OAAO,EAAE,WAAW,GAAG,aAAa,EACpC,MAAM,EAAE,qBAAqB,iBA8C9B;AAED,wBAAsB,WAAW,CAAC,OAAO,EAAE,WAAW,iBAYrD;AAED,wBAAsB,sBAAsB,CAAC,OAAO,EAAE,WAAW,iBAGhE;AAED,wBAAsB,SAAS,CAAC,OAAO,EAAE,WAAW,iBAGnD;AAED,wBAAsB,cAAc,CAClC,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,qBAAqB,GAAG,IAAI,CAAC,CAkBvC;AAED,wBAAsB,4BAA4B,CAChD,OAAO,EAAE,WAAW,GACnB,OAAO,CAAC,MAAM,CAAC,CAEjB;AAED,wBAAsB,oBAAoB,CACxC,MAAM,EAAE,qBAAqB,EAC7B,SAAS,EAAE,SAAS,EACpB,YAAY,EAAE,YAAY,EAC1B,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,YAAY,CAAC,CA2BvB"}