@civic/auth 0.6.0-beta.2 → 0.6.0

package/dist/vanillajs/utils/page-handlers.js

@@ -0,0 +1,165 @@
+import { exchangeTokens, buildOauth2Client, getEndpointsWithOverrides, getCookiesMaxAge, } from "../../shared/lib/util.js";
+import { OAuthTokenTypes, CodeVerifier } from "../../shared/lib/types.js";
+import { BrowserCookieStorageAdapter } from "../storage/BrowserCookieStorageAdapter.js";
+import { getCurrentLogger } from "./logger.js";
+import { GenericPublicClientPKCEProducer } from "../../services/PKCE.js";
+// Default cookie configuration
+const defaultCookiesMaxAge = 60 * 60; // 1 hour
+const defaultCookieOptions = {
+    secure: true,
+    httpOnly: false,
+    sameSite: "lax", // Added type for sameSite
+    path: "/",
+    maxAge: defaultCookiesMaxAge,
+};
+const cookieConfig = {
+    tokens: {
+        [OAuthTokenTypes.ID_TOKEN]: { ...defaultCookieOptions },
+        [OAuthTokenTypes.ACCESS_TOKEN]: { ...defaultCookieOptions },
+        [OAuthTokenTypes.REFRESH_TOKEN]: { ...defaultCookieOptions },
+        [OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT]: {
+            ...defaultCookieOptions,
+            httpOnly: false,
+        },
+        [CodeVerifier.COOKIE_NAME]: { ...defaultCookieOptions, httpOnly: true },
+        [CodeVerifier.APP_URL]: { ...defaultCookieOptions, httpOnly: true },
+    },
+    user: {
+        ...defaultCookieOptions,
+        httpOnly: false,
+    },
+};
+export async function storeTokens(tokens, storageAdapter, 
+// eslint-disable-next-line @typescript-eslint/no-explicit-any
+customCookieConfig, loggerInstance = getCurrentLogger()) {
+    const { accessTokenMaxAge, refreshTokenMaxAge } = getCookiesMaxAge(tokens);
+    let userInfoForReturn = null; // To store userInfo for returning
+    const idTokenCookieOpts = customCookieConfig?.tokens?.[OAuthTokenTypes.ID_TOKEN] ??
+        cookieConfig.tokens[OAuthTokenTypes.ID_TOKEN];
+    await storageAdapter.setItem(OAuthTokenTypes.ID_TOKEN, tokens.id_token, {
+        ...idTokenCookieOpts,
+        maxAge: accessTokenMaxAge,
+    });
+    const accessTokenValue = tokens.access_token || "";
+    const accessTokenCookieOpts = customCookieConfig?.tokens?.[OAuthTokenTypes.ACCESS_TOKEN] ??
+        cookieConfig.tokens[OAuthTokenTypes.ACCESS_TOKEN];
+    await storageAdapter.setItem(OAuthTokenTypes.ACCESS_TOKEN, accessTokenValue, {
+        ...accessTokenCookieOpts,
+        maxAge: accessTokenMaxAge,
+    });
+    if (tokens.refresh_token) {
+        const refreshTokenCookieOpts = customCookieConfig?.tokens?.[OAuthTokenTypes.REFRESH_TOKEN] ??
+            cookieConfig.tokens[OAuthTokenTypes.REFRESH_TOKEN];
+        await storageAdapter.setItem(OAuthTokenTypes.REFRESH_TOKEN, tokens.refresh_token, {
+            ...refreshTokenCookieOpts,
+            maxAge: refreshTokenMaxAge,
+        });
+    }
+    if (tokens.expires_in) {
+        const expiresAt = Math.floor(Date.now() / 1000) + tokens.expires_in;
+        const expiresAtCookieOpts = customCookieConfig?.tokens?.[OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT] ??
+            cookieConfig.tokens[OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT];
+        await storageAdapter.setItem(OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT, String(expiresAt), {
+            ...expiresAtCookieOpts,
+            maxAge: accessTokenMaxAge,
+        });
+    }
+    try {
+        if (typeof tokens.id_token === "string") {
+            const parts = tokens.id_token.split(".");
+            if (parts.length === 3) {
+                const idTokenPayload = JSON.parse(atob(parts[1]));
+                const userInfo = {
+                    name: idTokenPayload.name,
+                    picture: idTokenPayload.picture,
+                    email: idTokenPayload.email,
+                    id: idTokenPayload.sub,
+                };
+                userInfoForReturn = userInfo; // Assign for returning
+                const encodedUserInfo = encodeURIComponent(JSON.stringify(userInfo));
+                const userCookieOpts = customCookieConfig?.user ?? cookieConfig.user;
+                await storageAdapter.setItem("user", encodedUserInfo, {
+                    ...userCookieOpts,
+                    maxAge: accessTokenMaxAge,
+                });
+                loggerInstance.info("CivicAuth: User info stored successfully from id_token.");
+            }
+            else {
+                loggerInstance.warn("CivicAuth: Error storing user info - id_token does not have the expected JWT structure (header.payload.signature).");
+                userInfoForReturn = null;
+            }
+        }
+        else {
+            loggerInstance.warn("CivicAuth: Error storing user info - id_token is missing or not a string.");
+            userInfoForReturn = null;
+        }
+    }
+    catch (error) {
+        loggerInstance.error("CivicAuth: Error processing or storing user info from id_token:", error);
+        userInfoForReturn = null;
+    }
+    return userInfoForReturn; // Return the user info object or null
+}
+/**
+ * Adapter to convert BrowserCookieStorageAdapter to AuthStorage interface
+ */
+class CookieStorageToAuthStorage {
+    storage;
+    constructor(storage) {
+        this.storage = storage;
+    }
+    async get(key) {
+        return this.storage.getItem(key);
+    }
+    async set(key, value) {
+        await this.storage.setItem(key, value);
+    }
+    async delete(key) {
+        await this.storage.removeItem(key);
+    }
+}
+export async function handleOAuthRedirectPage(config) {
+    const loggerInstance = config.logger || getCurrentLogger();
+    const urlParams = new URLSearchParams(window.location.search);
+    const code = urlParams.get("code");
+    const state = urlParams.get("state");
+    if (code && state) {
+        loggerInstance.info("CivicAuth: OAuth callback detected with code:", code);
+        const storage = config.storageAdapter || new BrowserCookieStorageAdapter();
+        const authStorage = new CookieStorageToAuthStorage(storage);
+        const pkceProducer = new GenericPublicClientPKCEProducer(authStorage);
+        try {
+            const endpoints = await getEndpointsWithOverrides(config.oauthServer);
+            const oauth2Client = buildOauth2Client(config.clientId, config.redirectUrl, endpoints);
+            const tokenResponse = await exchangeTokens(code, state, pkceProducer, oauth2Client, config.oauthServer, endpoints);
+            // Get userInfo from storeTokens
+            const userInfo = await storeTokens(tokenResponse, storage, config.cookieOptions, loggerInstance);
+            loggerInstance.info("CivicAuth: Tokens stored successfully.");
+            const signalElement = document.createElement("div");
+            signalElement.id = "civic-auth-success-signal";
+            signalElement.textContent = config.textSignals.success;
+            if (userInfo) {
+                // Embed userInfo if available
+                signalElement.setAttribute("data-user-info", JSON.stringify(userInfo));
+            }
+            signalElement.style.display = "none";
+            document.body.appendChild(signalElement);
+            loggerInstance.info("CivicAuth: Appended success signal to body.");
+            // Clean up the code verifier
+            await authStorage.delete(CodeVerifier.COOKIE_NAME);
+        }
+        catch (error) {
+            loggerInstance.error("CivicAuth: Token exchange error:", error);
+            const errorSignalElement = document.createElement("div");
+            errorSignalElement.id = "civic-auth-error-signal";
+            const errorMessage = error instanceof Error ? error.message : "Unknown error";
+            errorSignalElement.textContent = `${config.textSignals.error} (Error: ${errorMessage})`;
+            errorSignalElement.style.display = "none";
+            document.body.appendChild(errorSignalElement);
+            return true;
+        }
+        return true;
+    }
+    return false;
+}
+//# sourceMappingURL=page-handlers.js.map

package/dist/vanillajs/utils/page-handlers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"page-handlers.js","sourceRoot":"","sources":["../../../src/vanillajs/utils/page-handlers.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,yBAAyB,EACzB,gBAAgB,GACjB,MAAM,0BAA0B,CAAC;AAClC,OAAO,EAAE,eAAe,EAAE,YAAY,EAAE,MAAM,2BAA2B,CAAC;AAC1E,OAAO,EAAE,2BAA2B,EAAE,MAAM,2CAA2C,CAAC;AACxF,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,+BAA+B,EAAE,MAAM,wBAAwB,CAAC;AAWzE,+BAA+B;AAC/B,MAAM,oBAAoB,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,SAAS;AAC/C,MAAM,oBAAoB,GAAG;IAC3B,MAAM,EAAE,IAAI;IACZ,QAAQ,EAAE,KAAK;IACf,QAAQ,EAAE,KAAkC,EAAE,0BAA0B;IACxE,IAAI,EAAE,GAAG;IACT,MAAM,EAAE,oBAAoB;CAC7B,CAAC;AAEF,MAAM,YAAY,GAAG;IACnB,MAAM,EAAE;QACN,CAAC,eAAe,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,oBAAoB,EAAE;QACvD,CAAC,eAAe,CAAC,YAAY,CAAC,EAAE,EAAE,GAAG,oBAAoB,EAAE;QAC3D,CAAC,eAAe,CAAC,aAAa,CAAC,EAAE,EAAE,GAAG,oBAAoB,EAAE;QAC5D,CAAC,eAAe,CAAC,uBAAuB,CAAC,EAAE;YACzC,GAAG,oBAAoB;YACvB,QAAQ,EAAE,KAAK;SAChB;QACD,CAAC,YAAY,CAAC,WAAW,CAAC,EAAE,EAAE,GAAG,oBAAoB,EAAE,QAAQ,EAAE,IAAI,EAAE;QACvE,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,EAAE,GAAG,oBAAoB,EAAE,QAAQ,EAAE,IAAI,EAAE;KACpE;IACD,IAAI,EAAE;QACJ,GAAG,oBAAoB;QACvB,QAAQ,EAAE,KAAK;KAChB;CACF,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAA6B,EAC7B,cAA2C;AAC3C,8DAA8D;AAC9D,kBAAwB,EACxB,cAAc,GAAG,gBAAgB,EAAE;IAEnC,MAAM,EAAE,iBAAiB,EAAE,kBAAkB,EAAE,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAC3E,IAAI,iBAAiB,GAAkB,IAAI,CAAC,CAAC,kCAAkC;IAE/E,MAAM,iBAAiB,GACrB,kBAAkB,EAAE,MAAM,EAAE,CAAC,eAAe,CAAC,QAAQ,CAAC;QACtD,YAAY,CAAC,MAAM,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;IAChD,MAAM,cAAc,CAAC,OAAO,CAAC,eAAe,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE;QACtE,GAAG,iBAAiB;QACpB,MAAM,EAAE,iBAAiB;KAC1B,CAAC,CAAC;IAEH,MAAM,gBAAgB,GAAG,MAAM,CAAC,YAAY,IAAI,EAAE,CAAC;IACnD,MAAM,qBAAqB,GACzB,kBAAkB,EAAE,MAAM,EAAE,CAAC,eAAe,CAAC,YAAY,CAAC;QAC1D,YAAY,CAAC,MAAM,CAAC,eAAe,CAAC,YAAY,CAAC,CAAC;IACpD,MAAM,cAAc,CAAC,OAAO,CAAC,eAAe,CAAC,YAAY,EAAE,gBAAgB,EAAE;QAC3E,GAAG,qBAAqB;QACxB,MAAM,EAAE,iBAAiB;KAC1B,CAAC,CAAC;IAEH,IAAI,MAAM,CAAC,aAAa,EAAE,CAAC;QACzB,MAAM,sBAAsB,GAC1B,kBAAkB,EAAE,MAAM,EAAE,CAAC,eAAe,CAAC,aAAa,CAAC;YAC3D,YAAY,CAAC,MAAM,CAAC,eAAe,CAAC,aAAa,CAAC,CAAC;QACrD,MAAM,cAAc,CAAC,OAAO,CAC1B,eAAe,CAAC,aAAa,EAC7B,MAAM,CAAC,aAAa,EACpB;YACE,GAAG,sBAAsB;YACzB,MAAM,EAAE,kBAAkB;SAC3B,CACF,CAAC;IACJ,CAAC;IAED,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC;QACpE,MAAM,mBAAmB,GACvB,kBAAkB,EAAE,MAAM,EAAE,CAAC,eAAe,CAAC,uBAAuB,CAAC;YACrE,YAAY,CAAC,MAAM,CAAC,eAAe,CAAC,uBAAuB,CAAC,CAAC;QAC/D,MAAM,cAAc,CAAC,OAAO,CAC1B,eAAe,CAAC,uBAAuB,EACvC,MAAM,CAAC,SAAS,CAAC,EACjB;YACE,GAAG,mBAAmB;YACtB,MAAM,EAAE,iBAAiB;SAC1B,CACF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC;QACH,IAAI,OAAO,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YACxC,MAAM,KAAK,GAAG,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACzC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACvB,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,CAAC,CAAC;gBACnD,MAAM,QAAQ,GAAG;oBACf,IAAI,EAAE,cAAc,CAAC,IAAI;oBACzB,OAAO,EAAE,cAAc,CAAC,OAAO;oBAC/B,KAAK,EAAE,cAAc,CAAC,KAAK;oBAC3B,EAAE,EAAE,cAAc,CAAC,GAAG;iBACvB,CAAC;gBACF,iBAAiB,GAAG,QAAQ,CAAC,CAAC,uBAAuB;gBACrD,MAAM,eAAe,GAAG,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;gBACrE,MAAM,cAAc,GAAG,kBAAkB,EAAE,IAAI,IAAI,YAAY,CAAC,IAAI,CAAC;gBACrE,MAAM,cAAc,CAAC,OAAO,CAAC,MAAM,EAAE,eAAe,EAAE;oBACpD,GAAG,cAAc;oBACjB,MAAM,EAAE,iBAAiB;iBAC1B,CAAC,CAAC;gBACH,cAAc,CAAC,IAAI,CACjB,yDAAyD,CAC1D,CAAC;YACJ,CAAC;iBAAM,CAAC;gBACN,cAAc,CAAC,IAAI,CACjB,oHAAoH,CACrH,CAAC;gBACF,iBAAiB,GAAG,IAAI,CAAC;YAC3B,CAAC;QACH,CAAC;aAAM,CAAC;YACN,cAAc,CAAC,IAAI,CACjB,2EAA2E,CAC5E,CAAC;YACF,iBAAiB,GAAG,IAAI,CAAC;QAC3B,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,cAAc,CAAC,KAAK,CAClB,iEAAiE,EACjE,KAAK,CACN,CAAC;QACF,iBAAiB,GAAG,IAAI,CAAC;IAC3B,CAAC;IACD,OAAO,iBAAiB,CAAC,CAAC,sCAAsC;AAClE,CAAC;AAgBD;;GAEG;AACH,MAAM,0BAA0B;IACV;IAApB,YAAoB,OAAoC;QAApC,YAAO,GAAP,OAAO,CAA6B;IAAG,CAAC;IAE5D,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;IACnC,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,KAAa;QAClC,MAAM,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW;QACtB,MAAM,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;IACrC,CAAC;CACF;AAED,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,MAAiC;IAEjC,MAAM,cAAc,GAAG,MAAM,CAAC,MAAM,IAAI,gBAAgB,EAAE,CAAC;IAC3D,MAAM,SAAS,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC9D,MAAM,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACnC,MAAM,KAAK,GAAG,SAAS,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAErC,IAAI,IAAI,IAAI,KAAK,EAAE,CAAC;QAClB,cAAc,CAAC,IAAI,CAAC,+CAA+C,EAAE,IAAI,CAAC,CAAC;QAE3E,MAAM,OAAO,GAAG,MAAM,CAAC,cAAc,IAAI,IAAI,2BAA2B,EAAE,CAAC;QAC3E,MAAM,WAAW,GAAG,IAAI,0BAA0B,CAAC,OAAO,CAAC,CAAC;QAC5D,MAAM,YAAY,GAAG,IAAI,+BAA+B,CAAC,WAAW,CAAC,CAAC;QAEtE,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,yBAAyB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YACtE,MAAM,YAAY,GAAG,iBAAiB,CACpC,MAAM,CAAC,QAAQ,EACf,MAAM,CAAC,WAAW,EAClB,SAAS,CACV,CAAC;YAEF,MAAM,aAAa,GAAG,MAAM,cAAc,CACxC,IAAI,EACJ,KAAK,EACL,YAAY,EACZ,YAAY,EACZ,MAAM,CAAC,WAAW,EAClB,SAAS,CACV,CAAC;YAEF,gCAAgC;YAChC,MAAM,QAAQ,GAAG,MAAM,WAAW,CAChC,aAAa,EACb,OAAO,EACP,MAAM,CAAC,aAAa,EACpB,cAAc,CACf,CAAC;YACF,cAAc,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;YAE9D,MAAM,aAAa,GAAG,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YACpD,aAAa,CAAC,EAAE,GAAG,2BAA2B,CAAC;YAC/C,aAAa,CAAC,WAAW,GAAG,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC;YACvD,IAAI,QAAQ,EAAE,CAAC;gBACb,8BAA8B;gBAC9B,aAAa,CAAC,YAAY,CAAC,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;YACzE,CAAC;YACD,aAAa,CAAC,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YACzC,cAAc,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAC;YAEnE,6BAA6B;YAC7B,MAAM,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;QACrD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,cAAc,CAAC,KAAK,CAAC,kCAAkC,EAAE,KAAK,CAAC,CAAC;YAChE,MAAM,kBAAkB,GAAG,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YACzD,kBAAkB,CAAC,EAAE,GAAG,yBAAyB,CAAC;YAClD,MAAM,YAAY,GAChB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC3D,kBAAkB,CAAC,WAAW,GAAG,GAAG,MAAM,CAAC,WAAW,CAAC,KAAK,YAAY,YAAY,GAAG,CAAC;YACxF,kBAAkB,CAAC,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC;YAC1C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC;YAC9C,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC","sourcesContent":["import {\n  exchangeTokens,\n  buildOauth2Client,\n  getEndpointsWithOverrides,\n  getCookiesMaxAge,\n} from \"../../shared/lib/util.js\";\nimport { OAuthTokenTypes, CodeVerifier } from \"../../shared/lib/types.js\";\nimport { BrowserCookieStorageAdapter } from \"../storage/BrowserCookieStorageAdapter.js\";\nimport { getCurrentLogger } from \"./logger.js\";\nimport { GenericPublicClientPKCEProducer } from \"../../services/PKCE.js\";\nimport type { AuthStorage } from \"../../types.js\";\n\n// Types\ninterface ExchangeTokenResponse {\n  id_token: string; // Required readonly string\n  access_token?: string;\n  refresh_token?: string;\n  expires_in?: number;\n}\n\n// Default cookie configuration\nconst defaultCookiesMaxAge = 60 * 60; // 1 hour\nconst defaultCookieOptions = {\n  secure: true,\n  httpOnly: false,\n  sameSite: \"lax\" as \"lax\" | \"strict\" | \"none\", // Added type for sameSite\n  path: \"/\",\n  maxAge: defaultCookiesMaxAge,\n};\n\nconst cookieConfig = {\n  tokens: {\n    [OAuthTokenTypes.ID_TOKEN]: { ...defaultCookieOptions },\n    [OAuthTokenTypes.ACCESS_TOKEN]: { ...defaultCookieOptions },\n    [OAuthTokenTypes.REFRESH_TOKEN]: { ...defaultCookieOptions },\n    [OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT]: {\n      ...defaultCookieOptions,\n      httpOnly: false,\n    },\n    [CodeVerifier.COOKIE_NAME]: { ...defaultCookieOptions, httpOnly: true },\n    [CodeVerifier.APP_URL]: { ...defaultCookieOptions, httpOnly: true },\n  },\n  user: {\n    ...defaultCookieOptions,\n    httpOnly: false,\n  },\n};\n\nexport async function storeTokens(\n  tokens: ExchangeTokenResponse,\n  storageAdapter: BrowserCookieStorageAdapter,\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  customCookieConfig?: any,\n  loggerInstance = getCurrentLogger(),\n): Promise<object | null> {\n  const { accessTokenMaxAge, refreshTokenMaxAge } = getCookiesMaxAge(tokens);\n  let userInfoForReturn: object | null = null; // To store userInfo for returning\n\n  const idTokenCookieOpts =\n    customCookieConfig?.tokens?.[OAuthTokenTypes.ID_TOKEN] ??\n    cookieConfig.tokens[OAuthTokenTypes.ID_TOKEN];\n  await storageAdapter.setItem(OAuthTokenTypes.ID_TOKEN, tokens.id_token, {\n    ...idTokenCookieOpts,\n    maxAge: accessTokenMaxAge,\n  });\n\n  const accessTokenValue = tokens.access_token || \"\";\n  const accessTokenCookieOpts =\n    customCookieConfig?.tokens?.[OAuthTokenTypes.ACCESS_TOKEN] ??\n    cookieConfig.tokens[OAuthTokenTypes.ACCESS_TOKEN];\n  await storageAdapter.setItem(OAuthTokenTypes.ACCESS_TOKEN, accessTokenValue, {\n    ...accessTokenCookieOpts,\n    maxAge: accessTokenMaxAge,\n  });\n\n  if (tokens.refresh_token) {\n    const refreshTokenCookieOpts =\n      customCookieConfig?.tokens?.[OAuthTokenTypes.REFRESH_TOKEN] ??\n      cookieConfig.tokens[OAuthTokenTypes.REFRESH_TOKEN];\n    await storageAdapter.setItem(\n      OAuthTokenTypes.REFRESH_TOKEN,\n      tokens.refresh_token,\n      {\n        ...refreshTokenCookieOpts,\n        maxAge: refreshTokenMaxAge,\n      },\n    );\n  }\n\n  if (tokens.expires_in) {\n    const expiresAt = Math.floor(Date.now() / 1000) + tokens.expires_in;\n    const expiresAtCookieOpts =\n      customCookieConfig?.tokens?.[OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT] ??\n      cookieConfig.tokens[OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT];\n    await storageAdapter.setItem(\n      OAuthTokenTypes.ACCESS_TOKEN_EXPIRES_AT,\n      String(expiresAt),\n      {\n        ...expiresAtCookieOpts,\n        maxAge: accessTokenMaxAge,\n      },\n    );\n  }\n\n  try {\n    if (typeof tokens.id_token === \"string\") {\n      const parts = tokens.id_token.split(\".\");\n      if (parts.length === 3) {\n        const idTokenPayload = JSON.parse(atob(parts[1]!));\n        const userInfo = {\n          name: idTokenPayload.name,\n          picture: idTokenPayload.picture,\n          email: idTokenPayload.email,\n          id: idTokenPayload.sub,\n        };\n        userInfoForReturn = userInfo; // Assign for returning\n        const encodedUserInfo = encodeURIComponent(JSON.stringify(userInfo));\n        const userCookieOpts = customCookieConfig?.user ?? cookieConfig.user;\n        await storageAdapter.setItem(\"user\", encodedUserInfo, {\n          ...userCookieOpts,\n          maxAge: accessTokenMaxAge,\n        });\n        loggerInstance.info(\n          \"CivicAuth: User info stored successfully from id_token.\",\n        );\n      } else {\n        loggerInstance.warn(\n          \"CivicAuth: Error storing user info - id_token does not have the expected JWT structure (header.payload.signature).\",\n        );\n        userInfoForReturn = null;\n      }\n    } else {\n      loggerInstance.warn(\n        \"CivicAuth: Error storing user info - id_token is missing or not a string.\",\n      );\n      userInfoForReturn = null;\n    }\n  } catch (error) {\n    loggerInstance.error(\n      \"CivicAuth: Error processing or storing user info from id_token:\",\n      error,\n    );\n    userInfoForReturn = null;\n  }\n  return userInfoForReturn; // Return the user info object or null\n}\n\nexport interface HandleOAuthRedirectConfig {\n  clientId: string;\n  redirectUrl: string;\n  oauthServer: string;\n  textSignals: {\n    success: string;\n    error: string;\n  };\n  storageAdapter?: BrowserCookieStorageAdapter;\n  // eslint-disable-next-line @typescript-eslint/no-explicit-any\n  cookieOptions?: any; // To pass custom cookie configurations if needed\n  logger?: ReturnType<typeof getCurrentLogger>;\n}\n\n/**\n * Adapter to convert BrowserCookieStorageAdapter to AuthStorage interface\n */\nclass CookieStorageToAuthStorage implements AuthStorage {\n  constructor(private storage: BrowserCookieStorageAdapter) {}\n\n  async get(key: string): Promise<string | null> {\n    return this.storage.getItem(key);\n  }\n\n  async set(key: string, value: string): Promise<void> {\n    await this.storage.setItem(key, value);\n  }\n\n  async delete(key: string): Promise<void> {\n    await this.storage.removeItem(key);\n  }\n}\n\nexport async function handleOAuthRedirectPage(\n  config: HandleOAuthRedirectConfig,\n): Promise<boolean> {\n  const loggerInstance = config.logger || getCurrentLogger();\n  const urlParams = new URLSearchParams(window.location.search);\n  const code = urlParams.get(\"code\");\n  const state = urlParams.get(\"state\");\n\n  if (code && state) {\n    loggerInstance.info(\"CivicAuth: OAuth callback detected with code:\", code);\n\n    const storage = config.storageAdapter || new BrowserCookieStorageAdapter();\n    const authStorage = new CookieStorageToAuthStorage(storage);\n    const pkceProducer = new GenericPublicClientPKCEProducer(authStorage);\n\n    try {\n      const endpoints = await getEndpointsWithOverrides(config.oauthServer);\n      const oauth2Client = buildOauth2Client(\n        config.clientId,\n        config.redirectUrl,\n        endpoints,\n      );\n\n      const tokenResponse = await exchangeTokens(\n        code,\n        state,\n        pkceProducer,\n        oauth2Client,\n        config.oauthServer,\n        endpoints,\n      );\n\n      // Get userInfo from storeTokens\n      const userInfo = await storeTokens(\n        tokenResponse,\n        storage,\n        config.cookieOptions,\n        loggerInstance,\n      );\n      loggerInstance.info(\"CivicAuth: Tokens stored successfully.\");\n\n      const signalElement = document.createElement(\"div\");\n      signalElement.id = \"civic-auth-success-signal\";\n      signalElement.textContent = config.textSignals.success;\n      if (userInfo) {\n        // Embed userInfo if available\n        signalElement.setAttribute(\"data-user-info\", JSON.stringify(userInfo));\n      }\n      signalElement.style.display = \"none\";\n      document.body.appendChild(signalElement);\n      loggerInstance.info(\"CivicAuth: Appended success signal to body.\");\n\n      // Clean up the code verifier\n      await authStorage.delete(CodeVerifier.COOKIE_NAME);\n    } catch (error) {\n      loggerInstance.error(\"CivicAuth: Token exchange error:\", error);\n      const errorSignalElement = document.createElement(\"div\");\n      errorSignalElement.id = \"civic-auth-error-signal\";\n      const errorMessage =\n        error instanceof Error ? error.message : \"Unknown error\";\n      errorSignalElement.textContent = `${config.textSignals.error} (Error: ${errorMessage})`;\n      errorSignalElement.style.display = \"none\";\n      document.body.appendChild(errorSignalElement);\n      return true;\n    }\n    return true;\n  }\n  return false;\n}\n"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@civic/auth",
-  "version": "0.6.0-beta.2",
+  "version": "0.6.0",
   "type": "module",
   "main": "./dist/index.js",
   "module": "./dist/index.js",