@civic/auth 0.6.1-beta.3 → 0.6.1

package/dist/vanillajs/auth/handlers/OAuthCallbackHandler.js

@@ -1,301 +0,0 @@
-/**
- * OAuth Callback Handler for Vanilla JavaScript Applications
- *
- * This module provides functionality for handling OAuth redirect/callback pages in vanilla JavaScript
- * applications using the Civic Auth system. It processes the OAuth authorization code flow completion
- * by exchanging authorization codes for access tokens and managing the authentication state.
- *
- * Key responsibilities:
- * - Process OAuth callback URL parameters (code, state)
- * - Exchange authorization codes for access tokens using PKCE
- * - Store tokens and user session data using shared utilities
- * - Create DOM signals for iframe-based authentication flows
- * - Handle error states and cleanup during the OAuth flow
- *
- * This module works in conjunction with:
- * - CivicAuth class for initiating OAuth flows
- * - SignalObserver for detecting authentication completion in iframes
- * - Shared token storage utilities for consistent state management
- *
- * @example
- * ```typescript
- * // In an OAuth callback page
- * import { handleOAuthRedirectPage, LocalStorageAdapter } from '@civic/auth/vanillajs';
- *
- * const handled = await handleOAuthRedirectPage({
- *   clientId: 'your-client-id',
- *   redirectUrl: 'https://your-app.com/callback',
- *   oauthServer: 'https://auth.civic.com/oauth/',
- *   textSignals: {
- *     success: 'Authentication successful!',
- *     error: 'Authentication failed!'
- *   },
- *   storageAdapter: new LocalStorageAdapter()
- * });
- * ```
- */
-import { exchangeTokens, buildOauth2Client, getEndpointsWithOverrides, storeTokens as sharedStoreTokens, } from "../../../shared/lib/util.js";
-import { getUser } from "../../../shared/lib/session.js";
-import { GenericUserSession } from "../../../shared/lib/UserSession.js";
-import { CodeVerifier } from "../../../shared/lib/types.js";
-import { createLogger } from "../../utils/logger.js";
-import { GenericPublicClientPKCEProducer } from "../../../services/PKCE.js";
-/**
- * Store tokens using the shared utilities from /shared/lib
- * This ensures consistency with the React implementation and also handles user session storage
- */
-export async function storeTokens(tokens, storageAdapter, loggerInstance = createLogger("oauth-callback")) {
-    try {
-        // Use shared storeTokens utility for consistent token storage
-        await sharedStoreTokens(storageAdapter, tokens);
-        // Get user info using shared utilities
-        const user = await getUser(storageAdapter);
-        if (user) {
-            // Store user session using shared utilities
-            const userSession = new GenericUserSession(storageAdapter);
-            await userSession.set(user);
-            loggerInstance.info("CivicAuth: Tokens and user info stored successfully using shared utilities.");
-            return user;
-        }
-        else {
-            loggerInstance.warn("CivicAuth: Failed to extract user info from tokens.");
-            return null;
-        }
-    }
-    catch (error) {
-        loggerInstance.error("CivicAuth: Error storing tokens:", error);
-        throw error;
-    }
-}
-/**
- * Handle OAuth redirect page processing for vanilla JavaScript applications.
- * This function processes the OAuth callback URL parameters and exchanges the authorization code for tokens.
- *
- * @param config - Configuration object for handling the OAuth redirect
- * @param config.clientId - OAuth client ID
- * @param config.redirectUrl - URL to redirect to after authentication
- * @param config.oauthServer - OAuth server base URL
- * @param config.textSignals - Text signals for success and error states
- * @param config.storageAdapter - Storage adapter for persisting auth state (required)
- * @param config.logger - Optional logger instance
- * @returns Promise<boolean> - Returns true if callback was handled, false otherwise
- *
- * @example
- * ```typescript
- * import { handleOAuthRedirectPage, LocalStorageAdapter } from '@civic/auth/vanillajs';
- *
- * const handled = await handleOAuthRedirectPage({
- *   clientId: 'your-client-id',
- *   redirectUrl: 'https://your-app.com/callback',
- *   oauthServer: 'https://auth.civic.com/oauth/',
- *   textSignals: {
- *     success: 'Authentication successful!',
- *     error: 'Authentication failed!'
- *   },
- *   storageAdapter: new LocalStorageAdapter()
- * });
- * ```
- */
-export async function handleOAuthRedirectPage(config) {
-    const loggerInstance = config.logger || createLogger("oauth-callback");
-    const urlParams = new URLSearchParams(window.location.search);
-    const code = urlParams.get("code");
-    const state = urlParams.get("state");
-    const error = urlParams.get("error");
-    // Check if we're in a popup window
-    const isPopup = window.opener && window.opener !== window;
-    loggerInstance.info("CivicAuth: Callback page context", {
-        isPopup,
-        hasOpener: !!window.opener,
-        hasCode: !!code,
-        hasError: !!error,
-        currentUrl: window.location.href,
-    });
-    if (error) {
-        loggerInstance.error("CivicAuth: OAuth error in callback", { error });
-        // Create error signal for iframe mode
-        const errorSignalElement = document.createElement("div");
-        errorSignalElement.id = "civic-auth-error-signal";
-        errorSignalElement.textContent = `${config.textSignals.error} (Error: ${error})`;
-        errorSignalElement.style.display = "none";
-        document.body.appendChild(errorSignalElement);
-        // Send postMessage for popup mode
-        if (isPopup && window.opener) {
-            loggerInstance.info("CivicAuth: Sending error message to parent window", {
-                hasOpener: !!window.opener,
-                openerOrigin: window.opener.origin || "unknown",
-                currentUrl: window.location.href,
-                messageData: {
-                    type: "auth_error",
-                    detail: `OAuth error: ${error}`,
-                    error: error,
-                },
-            });
-            try {
-                window.opener.postMessage({
-                    type: "auth_error",
-                    detail: `OAuth error: ${error}`,
-                    error: error,
-                }, "*");
-                loggerInstance.info("CivicAuth: Error postMessage sent successfully");
-            }
-            catch (postMessageError) {
-                loggerInstance.error("CivicAuth: Failed to send error postMessage", {
-                    error: postMessageError,
-                });
-            }
-            // Close popup after a short delay
-            setTimeout(() => {
-                loggerInstance.info("CivicAuth: Closing popup window");
-                try {
-                    window.close();
-                }
-                catch (closeError) {
-                    loggerInstance.warn("CivicAuth: Failed to close popup window", {
-                        error: closeError,
-                    });
-                }
-            }, 1000);
-        }
-        else {
-            loggerInstance.debug("CivicAuth: Not in popup mode or no opener", {
-                isPopup,
-                hasOpener: !!window.opener,
-            });
-        }
-        return true;
-    }
-    if (code && state) {
-        loggerInstance.info("CivicAuth: OAuth callback detected with code:", code);
-        // Use the provided storage adapter from config
-        const storage = config.storageAdapter;
-        const pkceProducer = new GenericPublicClientPKCEProducer(storage);
-        try {
-            const endpoints = await getEndpointsWithOverrides(config.oauthServer);
-            const oauth2Client = buildOauth2Client(config.clientId, config.redirectUrl, endpoints);
-            const tokenResponse = await exchangeTokens(code, state, pkceProducer, oauth2Client, config.oauthServer, endpoints);
-            // Get userInfo from storeTokens using shared utilities
-            const userInfo = await storeTokens(tokenResponse, storage, loggerInstance);
-            loggerInstance.info("CivicAuth: Tokens stored successfully using shared utilities.");
-            // Create success signal for iframe mode
-            const signalElement = document.createElement("div");
-            signalElement.id = "civic-auth-success-signal";
-            signalElement.textContent = config.textSignals.success;
-            if (userInfo) {
-                // Embed userInfo if available
-                signalElement.setAttribute("data-user-info", JSON.stringify(userInfo));
-            }
-            signalElement.style.display = "none";
-            document.body.appendChild(signalElement);
-            loggerInstance.info("CivicAuth: Appended success signal to body.");
-            // Send postMessage for popup mode
-            if (isPopup && window.opener) {
-                loggerInstance.info("CivicAuth: Sending success message to parent window", {
-                    hasOpener: !!window.opener,
-                    openerOrigin: window.opener.origin || "unknown",
-                    currentUrl: window.location.href,
-                    messageData: {
-                        type: "auth_success",
-                        detail: "Authentication successful",
-                        hasUser: !!userInfo,
-                        hasTokens: !!tokenResponse,
-                    },
-                });
-                try {
-                    window.opener.postMessage({
-                        type: "auth_success",
-                        detail: "Authentication successful",
-                        data: {
-                            user: userInfo,
-                            tokens: tokenResponse,
-                        },
-                    }, "*");
-                    loggerInstance.info("CivicAuth: Success postMessage sent successfully");
-                }
-                catch (postMessageError) {
-                    loggerInstance.error("CivicAuth: Failed to send success postMessage", {
-                        error: postMessageError,
-                    });
-                }
-                // Close popup after a short delay
-                setTimeout(() => {
-                    loggerInstance.info("CivicAuth: Closing popup window");
-                    try {
-                        window.close();
-                    }
-                    catch (closeError) {
-                        loggerInstance.warn("CivicAuth: Failed to close popup window", {
-                            error: closeError,
-                        });
-                    }
-                }, 1000);
-            }
-            else {
-                loggerInstance.debug("CivicAuth: Not in popup mode or no opener", {
-                    isPopup,
-                    hasOpener: !!window.opener,
-                });
-            }
-            // Clean up the code verifier using shared utilities
-            await storage.delete(CodeVerifier.COOKIE_NAME);
-        }
-        catch (error) {
-            loggerInstance.error("CivicAuth: Token exchange error:", error);
-            // Create error signal for iframe mode
-            const errorSignalElement = document.createElement("div");
-            errorSignalElement.id = "civic-auth-error-signal";
-            const errorMessage = error instanceof Error ? error.message : "Unknown error";
-            errorSignalElement.textContent = `${config.textSignals.error} (Error: ${errorMessage})`;
-            errorSignalElement.style.display = "none";
-            document.body.appendChild(errorSignalElement);
-            // Send postMessage for popup mode
-            if (isPopup && window.opener) {
-                loggerInstance.info("CivicAuth: Sending error message to parent window", {
-                    hasOpener: !!window.opener,
-                    openerOrigin: window.opener.origin || "unknown",
-                    currentUrl: window.location.href,
-                    messageData: {
-                        type: "auth_error",
-                        detail: `Token exchange error: ${errorMessage}`,
-                        error: errorMessage,
-                    },
-                });
-                try {
-                    window.opener.postMessage({
-                        type: "auth_error",
-                        detail: `Token exchange error: ${errorMessage}`,
-                        error: errorMessage,
-                    }, "*");
-                    loggerInstance.info("CivicAuth: Error postMessage sent successfully");
-                }
-                catch (postMessageError) {
-                    loggerInstance.error("CivicAuth: Failed to send error postMessage", {
-                        error: postMessageError,
-                    });
-                }
-                // Close popup after a short delay
-                setTimeout(() => {
-                    loggerInstance.info("CivicAuth: Closing popup window");
-                    try {
-                        window.close();
-                    }
-                    catch (closeError) {
-                        loggerInstance.warn("CivicAuth: Failed to close popup window", {
-                            error: closeError,
-                        });
-                    }
-                }, 1000);
-            }
-            else {
-                loggerInstance.debug("CivicAuth: Not in popup mode or no opener", {
-                    isPopup,
-                    hasOpener: !!window.opener,
-                });
-            }
-            return true;
-        }
-        return true;
-    }
-    return false;
-}
-//# sourceMappingURL=OAuthCallbackHandler.js.map

package/dist/vanillajs/auth/handlers/OAuthCallbackHandler.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"OAuthCallbackHandler.js","sourceRoot":"","sources":["../../../../src/vanillajs/auth/handlers/OAuthCallbackHandler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AAEH,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,yBAAyB,EACzB,WAAW,IAAI,iBAAiB,GACjC,MAAM,6BAA6B,CAAC;AACrC,OAAO,EAAE,OAAO,EAAE,MAAM,gCAAgC,CAAC;AACzD,OAAO,EAAE,kBAAkB,EAAE,MAAM,oCAAoC,CAAC;AACxE,OAAO,EAAE,YAAY,EAAE,MAAM,8BAA8B,CAAC;AAE5D,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AACrD,OAAO,EAAE,+BAA+B,EAAE,MAAM,2BAA2B,CAAC;AAG5E;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAA6B,EAC7B,cAA2B,EAC3B,cAAc,GAAG,YAAY,CAAC,gBAAgB,CAAC;IAE/C,IAAI,CAAC;QACH,8DAA8D;QAC9D,MAAM,iBAAiB,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;QAEhD,uCAAuC;QACvC,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,cAAc,CAAC,CAAC;QAC3C,IAAI,IAAI,EAAE,CAAC;YACT,4CAA4C;YAC5C,MAAM,WAAW,GAAG,IAAI,kBAAkB,CAAC,cAAc,CAAC,CAAC;YAC3D,MAAM,WAAW,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YAC5B,cAAc,CAAC,IAAI,CACjB,6EAA6E,CAC9E,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC;aAAM,CAAC;YACN,cAAc,CAAC,IAAI,CACjB,qDAAqD,CACtD,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,cAAc,CAAC,KAAK,CAAC,kCAAkC,EAAE,KAAK,CAAC,CAAC;QAChE,MAAM,KAAK,CAAC;IACd,CAAC;AACH,CAAC;AAcD;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,MAAiC;IAEjC,MAAM,cAAc,GAAG,MAAM,CAAC,MAAM,IAAI,YAAY,CAAC,gBAAgB,CAAC,CAAC;IACvE,MAAM,SAAS,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC9D,MAAM,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACnC,MAAM,KAAK,GAAG,SAAS,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IACrC,MAAM,KAAK,GAAG,SAAS,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAErC,mCAAmC;IACnC,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,MAAM,CAAC;IAC1D,cAAc,CAAC,IAAI,CAAC,kCAAkC,EAAE;QACtD,OAAO;QACP,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;QAC1B,OAAO,EAAE,CAAC,CAAC,IAAI;QACf,QAAQ,EAAE,CAAC,CAAC,KAAK;QACjB,UAAU,EAAE,MAAM,CAAC,QAAQ,CAAC,IAAI;KACjC,CAAC,CAAC;IAEH,IAAI,KAAK,EAAE,CAAC;QACV,cAAc,CAAC,KAAK,CAAC,oCAAoC,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;QAEtE,sCAAsC;QACtC,MAAM,kBAAkB,GAAG,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;QACzD,kBAAkB,CAAC,EAAE,GAAG,yBAAyB,CAAC;QAClD,kBAAkB,CAAC,WAAW,GAAG,GAAG,MAAM,CAAC,WAAW,CAAC,KAAK,YAAY,KAAK,GAAG,CAAC;QACjF,kBAAkB,CAAC,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC;QAC1C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC;QAE9C,kCAAkC;QAClC,IAAI,OAAO,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAC7B,cAAc,CAAC,IAAI,CAAC,mDAAmD,EAAE;gBACvE,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;gBAC1B,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,SAAS;gBAC/C,UAAU,EAAE,MAAM,CAAC,QAAQ,CAAC,IAAI;gBAChC,WAAW,EAAE;oBACX,IAAI,EAAE,YAAY;oBAClB,MAAM,EAAE,gBAAgB,KAAK,EAAE;oBAC/B,KAAK,EAAE,KAAK;iBACb;aACF,CAAC,CAAC;YAEH,IAAI,CAAC;gBACH,MAAM,CAAC,MAAM,CAAC,WAAW,CACvB;oBACE,IAAI,EAAE,YAAY;oBAClB,MAAM,EAAE,gBAAgB,KAAK,EAAE;oBAC/B,KAAK,EAAE,KAAK;iBACb,EACD,GAAG,CACJ,CAAC;gBACF,cAAc,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAC;YACxE,CAAC;YAAC,OAAO,gBAAgB,EAAE,CAAC;gBAC1B,cAAc,CAAC,KAAK,CAAC,6CAA6C,EAAE;oBAClE,KAAK,EAAE,gBAAgB;iBACxB,CAAC,CAAC;YACL,CAAC;YAED,kCAAkC;YAClC,UAAU,CAAC,GAAG,EAAE;gBACd,cAAc,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;gBACvD,IAAI,CAAC;oBACH,MAAM,CAAC,KAAK,EAAE,CAAC;gBACjB,CAAC;gBAAC,OAAO,UAAU,EAAE,CAAC;oBACpB,cAAc,CAAC,IAAI,CAAC,yCAAyC,EAAE;wBAC7D,KAAK,EAAE,UAAU;qBAClB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC,EAAE,IAAI,CAAC,CAAC;QACX,CAAC;aAAM,CAAC;YACN,cAAc,CAAC,KAAK,CAAC,2CAA2C,EAAE;gBAChE,OAAO;gBACP,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;aAC3B,CAAC,CAAC;QACL,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,IAAI,IAAI,KAAK,EAAE,CAAC;QAClB,cAAc,CAAC,IAAI,CAAC,+CAA+C,EAAE,IAAI,CAAC,CAAC;QAE3E,+CAA+C;QAC/C,MAAM,OAAO,GAAG,MAAM,CAAC,cAAc,CAAC;QACtC,MAAM,YAAY,GAAG,IAAI,+BAA+B,CAAC,OAAO,CAAC,CAAC;QAElE,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,yBAAyB,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;YACtE,MAAM,YAAY,GAAG,iBAAiB,CACpC,MAAM,CAAC,QAAQ,EACf,MAAM,CAAC,WAAW,EAClB,SAAS,CACV,CAAC;YAEF,MAAM,aAAa,GAAG,MAAM,cAAc,CACxC,IAAI,EACJ,KAAK,EACL,YAAY,EACZ,YAAY,EACZ,MAAM,CAAC,WAAW,EAClB,SAAS,CACV,CAAC;YAEF,uDAAuD;YACvD,MAAM,QAAQ,GAAG,MAAM,WAAW,CAChC,aAAa,EACb,OAAO,EACP,cAAc,CACf,CAAC;YACF,cAAc,CAAC,IAAI,CACjB,+DAA+D,CAChE,CAAC;YAEF,wCAAwC;YACxC,MAAM,aAAa,GAAG,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YACpD,aAAa,CAAC,EAAE,GAAG,2BAA2B,CAAC;YAC/C,aAAa,CAAC,WAAW,GAAG,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC;YACvD,IAAI,QAAQ,EAAE,CAAC;gBACb,8BAA8B;gBAC9B,aAAa,CAAC,YAAY,CAAC,gBAAgB,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;YACzE,CAAC;YACD,aAAa,CAAC,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YACzC,cAAc,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAC;YAEnE,kCAAkC;YAClC,IAAI,OAAO,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;gBAC7B,cAAc,CAAC,IAAI,CACjB,qDAAqD,EACrD;oBACE,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;oBAC1B,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,SAAS;oBAC/C,UAAU,EAAE,MAAM,CAAC,QAAQ,CAAC,IAAI;oBAChC,WAAW,EAAE;wBACX,IAAI,EAAE,cAAc;wBACpB,MAAM,EAAE,2BAA2B;wBACnC,OAAO,EAAE,CAAC,CAAC,QAAQ;wBACnB,SAAS,EAAE,CAAC,CAAC,aAAa;qBAC3B;iBACF,CACF,CAAC;gBAEF,IAAI,CAAC;oBACH,MAAM,CAAC,MAAM,CAAC,WAAW,CACvB;wBACE,IAAI,EAAE,cAAc;wBACpB,MAAM,EAAE,2BAA2B;wBACnC,IAAI,EAAE;4BACJ,IAAI,EAAE,QAAQ;4BACd,MAAM,EAAE,aAAa;yBACtB;qBACF,EACD,GAAG,CACJ,CAAC;oBACF,cAAc,CAAC,IAAI,CACjB,kDAAkD,CACnD,CAAC;gBACJ,CAAC;gBAAC,OAAO,gBAAgB,EAAE,CAAC;oBAC1B,cAAc,CAAC,KAAK,CAClB,+CAA+C,EAC/C;wBACE,KAAK,EAAE,gBAAgB;qBACxB,CACF,CAAC;gBACJ,CAAC;gBAED,kCAAkC;gBAClC,UAAU,CAAC,GAAG,EAAE;oBACd,cAAc,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;oBACvD,IAAI,CAAC;wBACH,MAAM,CAAC,KAAK,EAAE,CAAC;oBACjB,CAAC;oBAAC,OAAO,UAAU,EAAE,CAAC;wBACpB,cAAc,CAAC,IAAI,CAAC,yCAAyC,EAAE;4BAC7D,KAAK,EAAE,UAAU;yBAClB,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC,EAAE,IAAI,CAAC,CAAC;YACX,CAAC;iBAAM,CAAC;gBACN,cAAc,CAAC,KAAK,CAAC,2CAA2C,EAAE;oBAChE,OAAO;oBACP,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;iBAC3B,CAAC,CAAC;YACL,CAAC;YAED,oDAAoD;YACpD,MAAM,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;QACjD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,cAAc,CAAC,KAAK,CAAC,kCAAkC,EAAE,KAAK,CAAC,CAAC;YAEhE,sCAAsC;YACtC,MAAM,kBAAkB,GAAG,QAAQ,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YACzD,kBAAkB,CAAC,EAAE,GAAG,yBAAyB,CAAC;YAClD,MAAM,YAAY,GAChB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YAC3D,kBAAkB,CAAC,WAAW,GAAG,GAAG,MAAM,CAAC,WAAW,CAAC,KAAK,YAAY,YAAY,GAAG,CAAC;YACxF,kBAAkB,CAAC,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC;YAC1C,QAAQ,CAAC,IAAI,CAAC,WAAW,CAAC,kBAAkB,CAAC,CAAC;YAE9C,kCAAkC;YAClC,IAAI,OAAO,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;gBAC7B,cAAc,CAAC,IAAI,CACjB,mDAAmD,EACnD;oBACE,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;oBAC1B,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,SAAS;oBAC/C,UAAU,EAAE,MAAM,CAAC,QAAQ,CAAC,IAAI;oBAChC,WAAW,EAAE;wBACX,IAAI,EAAE,YAAY;wBAClB,MAAM,EAAE,yBAAyB,YAAY,EAAE;wBAC/C,KAAK,EAAE,YAAY;qBACpB;iBACF,CACF,CAAC;gBAEF,IAAI,CAAC;oBACH,MAAM,CAAC,MAAM,CAAC,WAAW,CACvB;wBACE,IAAI,EAAE,YAAY;wBAClB,MAAM,EAAE,yBAAyB,YAAY,EAAE;wBAC/C,KAAK,EAAE,YAAY;qBACpB,EACD,GAAG,CACJ,CAAC;oBACF,cAAc,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAC;gBACxE,CAAC;gBAAC,OAAO,gBAAgB,EAAE,CAAC;oBAC1B,cAAc,CAAC,KAAK,CAAC,6CAA6C,EAAE;wBAClE,KAAK,EAAE,gBAAgB;qBACxB,CAAC,CAAC;gBACL,CAAC;gBAED,kCAAkC;gBAClC,UAAU,CAAC,GAAG,EAAE;oBACd,cAAc,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;oBACvD,IAAI,CAAC;wBACH,MAAM,CAAC,KAAK,EAAE,CAAC;oBACjB,CAAC;oBAAC,OAAO,UAAU,EAAE,CAAC;wBACpB,cAAc,CAAC,IAAI,CAAC,yCAAyC,EAAE;4BAC7D,KAAK,EAAE,UAAU;yBAClB,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC,EAAE,IAAI,CAAC,CAAC;YACX,CAAC;iBAAM,CAAC;gBACN,cAAc,CAAC,KAAK,CAAC,2CAA2C,EAAE;oBAChE,OAAO;oBACP,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM;iBAC3B,CAAC,CAAC;YACL,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC","sourcesContent":["/**\n * OAuth Callback Handler for Vanilla JavaScript Applications\n *\n * This module provides functionality for handling OAuth redirect/callback pages in vanilla JavaScript\n * applications using the Civic Auth system. It processes the OAuth authorization code flow completion\n * by exchanging authorization codes for access tokens and managing the authentication state.\n *\n * Key responsibilities:\n * - Process OAuth callback URL parameters (code, state)\n * - Exchange authorization codes for access tokens using PKCE\n * - Store tokens and user session data using shared utilities\n * - Create DOM signals for iframe-based authentication flows\n * - Handle error states and cleanup during the OAuth flow\n *\n * This module works in conjunction with:\n * - CivicAuth class for initiating OAuth flows\n * - SignalObserver for detecting authentication completion in iframes\n * - Shared token storage utilities for consistent state management\n *\n * @example\n * ```typescript\n * // In an OAuth callback page\n * import { handleOAuthRedirectPage, LocalStorageAdapter } from '@civic/auth/vanillajs';\n *\n * const handled = await handleOAuthRedirectPage({\n *   clientId: 'your-client-id',\n *   redirectUrl: 'https://your-app.com/callback',\n *   oauthServer: 'https://auth.civic.com/oauth/',\n *   textSignals: {\n *     success: 'Authentication successful!',\n *     error: 'Authentication failed!'\n *   },\n *   storageAdapter: new LocalStorageAdapter()\n * });\n * ```\n */\n\nimport {\n  exchangeTokens,\n  buildOauth2Client,\n  getEndpointsWithOverrides,\n  storeTokens as sharedStoreTokens,\n} from \"../../../shared/lib/util.js\";\nimport { getUser } from \"../../../shared/lib/session.js\";\nimport { GenericUserSession } from \"../../../shared/lib/UserSession.js\";\nimport { CodeVerifier } from \"../../../shared/lib/types.js\";\nimport type { getCurrentLogger } from \"../../utils/logger.js\";\nimport { createLogger } from \"../../utils/logger.js\";\nimport { GenericPublicClientPKCEProducer } from \"../../../services/PKCE.js\";\nimport type { AuthStorage, OIDCTokenResponseBody } from \"../../../types.js\";\n\n/**\n * Store tokens using the shared utilities from /shared/lib\n * This ensures consistency with the React implementation and also handles user session storage\n */\nexport async function storeTokens(\n  tokens: OIDCTokenResponseBody,\n  storageAdapter: AuthStorage,\n  loggerInstance = createLogger(\"oauth-callback\"),\n): Promise<object | null> {\n  try {\n    // Use shared storeTokens utility for consistent token storage\n    await sharedStoreTokens(storageAdapter, tokens);\n\n    // Get user info using shared utilities\n    const user = await getUser(storageAdapter);\n    if (user) {\n      // Store user session using shared utilities\n      const userSession = new GenericUserSession(storageAdapter);\n      await userSession.set(user);\n      loggerInstance.info(\n        \"CivicAuth: Tokens and user info stored successfully using shared utilities.\",\n      );\n      return user;\n    } else {\n      loggerInstance.warn(\n        \"CivicAuth: Failed to extract user info from tokens.\",\n      );\n      return null;\n    }\n  } catch (error) {\n    loggerInstance.error(\"CivicAuth: Error storing tokens:\", error);\n    throw error;\n  }\n}\n\nexport interface HandleOAuthRedirectConfig {\n  clientId: string;\n  redirectUrl: string;\n  oauthServer: string;\n  textSignals: {\n    success: string;\n    error: string;\n  };\n  storageAdapter: AuthStorage;\n  logger?: ReturnType<typeof getCurrentLogger>;\n}\n\n/**\n * Handle OAuth redirect page processing for vanilla JavaScript applications.\n * This function processes the OAuth callback URL parameters and exchanges the authorization code for tokens.\n *\n * @param config - Configuration object for handling the OAuth redirect\n * @param config.clientId - OAuth client ID\n * @param config.redirectUrl - URL to redirect to after authentication\n * @param config.oauthServer - OAuth server base URL\n * @param config.textSignals - Text signals for success and error states\n * @param config.storageAdapter - Storage adapter for persisting auth state (required)\n * @param config.logger - Optional logger instance\n * @returns Promise<boolean> - Returns true if callback was handled, false otherwise\n *\n * @example\n * ```typescript\n * import { handleOAuthRedirectPage, LocalStorageAdapter } from '@civic/auth/vanillajs';\n *\n * const handled = await handleOAuthRedirectPage({\n *   clientId: 'your-client-id',\n *   redirectUrl: 'https://your-app.com/callback',\n *   oauthServer: 'https://auth.civic.com/oauth/',\n *   textSignals: {\n *     success: 'Authentication successful!',\n *     error: 'Authentication failed!'\n *   },\n *   storageAdapter: new LocalStorageAdapter()\n * });\n * ```\n */\nexport async function handleOAuthRedirectPage(\n  config: HandleOAuthRedirectConfig,\n): Promise<boolean> {\n  const loggerInstance = config.logger || createLogger(\"oauth-callback\");\n  const urlParams = new URLSearchParams(window.location.search);\n  const code = urlParams.get(\"code\");\n  const state = urlParams.get(\"state\");\n  const error = urlParams.get(\"error\");\n\n  // Check if we're in a popup window\n  const isPopup = window.opener && window.opener !== window;\n  loggerInstance.info(\"CivicAuth: Callback page context\", {\n    isPopup,\n    hasOpener: !!window.opener,\n    hasCode: !!code,\n    hasError: !!error,\n    currentUrl: window.location.href,\n  });\n\n  if (error) {\n    loggerInstance.error(\"CivicAuth: OAuth error in callback\", { error });\n\n    // Create error signal for iframe mode\n    const errorSignalElement = document.createElement(\"div\");\n    errorSignalElement.id = \"civic-auth-error-signal\";\n    errorSignalElement.textContent = `${config.textSignals.error} (Error: ${error})`;\n    errorSignalElement.style.display = \"none\";\n    document.body.appendChild(errorSignalElement);\n\n    // Send postMessage for popup mode\n    if (isPopup && window.opener) {\n      loggerInstance.info(\"CivicAuth: Sending error message to parent window\", {\n        hasOpener: !!window.opener,\n        openerOrigin: window.opener.origin || \"unknown\",\n        currentUrl: window.location.href,\n        messageData: {\n          type: \"auth_error\",\n          detail: `OAuth error: ${error}`,\n          error: error,\n        },\n      });\n\n      try {\n        window.opener.postMessage(\n          {\n            type: \"auth_error\",\n            detail: `OAuth error: ${error}`,\n            error: error,\n          },\n          \"*\",\n        );\n        loggerInstance.info(\"CivicAuth: Error postMessage sent successfully\");\n      } catch (postMessageError) {\n        loggerInstance.error(\"CivicAuth: Failed to send error postMessage\", {\n          error: postMessageError,\n        });\n      }\n\n      // Close popup after a short delay\n      setTimeout(() => {\n        loggerInstance.info(\"CivicAuth: Closing popup window\");\n        try {\n          window.close();\n        } catch (closeError) {\n          loggerInstance.warn(\"CivicAuth: Failed to close popup window\", {\n            error: closeError,\n          });\n        }\n      }, 1000);\n    } else {\n      loggerInstance.debug(\"CivicAuth: Not in popup mode or no opener\", {\n        isPopup,\n        hasOpener: !!window.opener,\n      });\n    }\n\n    return true;\n  }\n\n  if (code && state) {\n    loggerInstance.info(\"CivicAuth: OAuth callback detected with code:\", code);\n\n    // Use the provided storage adapter from config\n    const storage = config.storageAdapter;\n    const pkceProducer = new GenericPublicClientPKCEProducer(storage);\n\n    try {\n      const endpoints = await getEndpointsWithOverrides(config.oauthServer);\n      const oauth2Client = buildOauth2Client(\n        config.clientId,\n        config.redirectUrl,\n        endpoints,\n      );\n\n      const tokenResponse = await exchangeTokens(\n        code,\n        state,\n        pkceProducer,\n        oauth2Client,\n        config.oauthServer,\n        endpoints,\n      );\n\n      // Get userInfo from storeTokens using shared utilities\n      const userInfo = await storeTokens(\n        tokenResponse,\n        storage,\n        loggerInstance,\n      );\n      loggerInstance.info(\n        \"CivicAuth: Tokens stored successfully using shared utilities.\",\n      );\n\n      // Create success signal for iframe mode\n      const signalElement = document.createElement(\"div\");\n      signalElement.id = \"civic-auth-success-signal\";\n      signalElement.textContent = config.textSignals.success;\n      if (userInfo) {\n        // Embed userInfo if available\n        signalElement.setAttribute(\"data-user-info\", JSON.stringify(userInfo));\n      }\n      signalElement.style.display = \"none\";\n      document.body.appendChild(signalElement);\n      loggerInstance.info(\"CivicAuth: Appended success signal to body.\");\n\n      // Send postMessage for popup mode\n      if (isPopup && window.opener) {\n        loggerInstance.info(\n          \"CivicAuth: Sending success message to parent window\",\n          {\n            hasOpener: !!window.opener,\n            openerOrigin: window.opener.origin || \"unknown\",\n            currentUrl: window.location.href,\n            messageData: {\n              type: \"auth_success\",\n              detail: \"Authentication successful\",\n              hasUser: !!userInfo,\n              hasTokens: !!tokenResponse,\n            },\n          },\n        );\n\n        try {\n          window.opener.postMessage(\n            {\n              type: \"auth_success\",\n              detail: \"Authentication successful\",\n              data: {\n                user: userInfo,\n                tokens: tokenResponse,\n              },\n            },\n            \"*\",\n          );\n          loggerInstance.info(\n            \"CivicAuth: Success postMessage sent successfully\",\n          );\n        } catch (postMessageError) {\n          loggerInstance.error(\n            \"CivicAuth: Failed to send success postMessage\",\n            {\n              error: postMessageError,\n            },\n          );\n        }\n\n        // Close popup after a short delay\n        setTimeout(() => {\n          loggerInstance.info(\"CivicAuth: Closing popup window\");\n          try {\n            window.close();\n          } catch (closeError) {\n            loggerInstance.warn(\"CivicAuth: Failed to close popup window\", {\n              error: closeError,\n            });\n          }\n        }, 1000);\n      } else {\n        loggerInstance.debug(\"CivicAuth: Not in popup mode or no opener\", {\n          isPopup,\n          hasOpener: !!window.opener,\n        });\n      }\n\n      // Clean up the code verifier using shared utilities\n      await storage.delete(CodeVerifier.COOKIE_NAME);\n    } catch (error) {\n      loggerInstance.error(\"CivicAuth: Token exchange error:\", error);\n\n      // Create error signal for iframe mode\n      const errorSignalElement = document.createElement(\"div\");\n      errorSignalElement.id = \"civic-auth-error-signal\";\n      const errorMessage =\n        error instanceof Error ? error.message : \"Unknown error\";\n      errorSignalElement.textContent = `${config.textSignals.error} (Error: ${errorMessage})`;\n      errorSignalElement.style.display = \"none\";\n      document.body.appendChild(errorSignalElement);\n\n      // Send postMessage for popup mode\n      if (isPopup && window.opener) {\n        loggerInstance.info(\n          \"CivicAuth: Sending error message to parent window\",\n          {\n            hasOpener: !!window.opener,\n            openerOrigin: window.opener.origin || \"unknown\",\n            currentUrl: window.location.href,\n            messageData: {\n              type: \"auth_error\",\n              detail: `Token exchange error: ${errorMessage}`,\n              error: errorMessage,\n            },\n          },\n        );\n\n        try {\n          window.opener.postMessage(\n            {\n              type: \"auth_error\",\n              detail: `Token exchange error: ${errorMessage}`,\n              error: errorMessage,\n            },\n            \"*\",\n          );\n          loggerInstance.info(\"CivicAuth: Error postMessage sent successfully\");\n        } catch (postMessageError) {\n          loggerInstance.error(\"CivicAuth: Failed to send error postMessage\", {\n            error: postMessageError,\n          });\n        }\n\n        // Close popup after a short delay\n        setTimeout(() => {\n          loggerInstance.info(\"CivicAuth: Closing popup window\");\n          try {\n            window.close();\n          } catch (closeError) {\n            loggerInstance.warn(\"CivicAuth: Failed to close popup window\", {\n              error: closeError,\n            });\n          }\n        }, 1000);\n      } else {\n        loggerInstance.debug(\"CivicAuth: Not in popup mode or no opener\", {\n          isPopup,\n          hasOpener: !!window.opener,\n        });\n      }\n\n      return true;\n    }\n    return true;\n  }\n  return false;\n}\n"]}

package/dist/vanillajs/auth/handlers/PopupHandler.d.ts

@@ -1,108 +0,0 @@
-import type { AuthResult } from "../../types/index.js";
-import type { ProcessedCivicAuthConfig } from "../types/AuthTypes.js";
-import type { createLogger } from "../../utils/logger.js";
-export interface PopupHandlerConfig {
-    config: ProcessedCivicAuthConfig;
-    logger: ReturnType<typeof createLogger>;
-    onAuthSuccess: (result: AuthResult) => void;
-    onAuthError: (error: Error) => void;
-    cleanup: () => void;
-}
-export declare class PopupHandler {
-    private config;
-    private logger;
-    private popup?;
-    private popupCheckInterval?;
-    private onAuthSuccess;
-    private onAuthError;
-    private cleanup;
-    constructor(handlerConfig: PopupHandlerConfig);
-    /**
-     * Initiates authentication flow using a popup window.
-     *
-     * Opens a new browser window/tab for authentication, handles browser compatibility
-     * (especially Safari), and sets up monitoring for the authentication process.
-     *
-     * @param fullAuthUrl - The complete authentication URL to open in the popup
-     * @throws {PopupError} When popup window cannot be opened (blocked by browser)
-     * @returns Promise that resolves when popup setup is complete
-     */
-    handleNewTabAuth(fullAuthUrl: string): Promise<void>;
-    /**
-     * Safely retrieves the current location of a popup window.
-     *
-     * Attempts to access the popup's location.href property, handling cross-origin
-     * access restrictions gracefully by returning a descriptive message instead of throwing.
-     *
-     * @param popup - The popup window to get location from
-     * @returns The popup's URL or a descriptive message if access is restricted
-     */
-    private getPopupLocationSafely;
-    /**
-     * Monitors a popup window for authentication results and handles communication.
-     *
-     * This method sets up a postMessage listener to receive authentication results from the popup
-     * and periodically checks if the popup has been closed. It handles success/error messages
-     * and automatically cleans up resources when the popup closes or times out.
-     *
-     * @param popup - The popup window to monitor for authentication completion
-     *
-     * @remarks
-     * - Monitors popup for up to 5 minutes (300 checks at 1-second intervals)
-     * - Listens for 'auth_success' and 'auth_error' message types from the popup
-     * - Automatically removes event listeners and resolves/rejects promises when done
-     * - Logs detailed debugging information throughout the monitoring process
-     *
-     * @private
-     */
-    private monitorPopup;
-    /**
-     * Handles successful authentication completion from the popup.
-     *
-     * Processes the authentication success message received from the popup window,
-     * emits success events, triggers the success callback, and performs cleanup.
-     *
-     * @param message - The authentication message containing success data
-     * @param popupMessageHandler - The message event handler to clean up, or null if none exists
-     */
-    private handlePopupSuccess;
-    /**
-     * Handles authentication errors received from the popup.
-     *
-     * Processes error messages from the popup window, emits error events,
-     * creates appropriate CivicAuthError instances, and performs cleanup.
-     *
-     * @param message - The authentication message containing error details
-     * @param popupMessageHandler - The message event handler to clean up, or null if none exists
-     */
-    private handlePopupError;
-    /**
-     * Handles the scenario when the authentication popup is closed by the user.
-     * This method is called when the popup window is detected as closed during monitoring.
-     * It emits an error event, creates an appropriate error, and performs cleanup.
-     *
-     * @param popupMessageHandler - The message event handler to clean up, or null if none exists
-     */
-    private handlePopupClosed;
-    /**
-     * Handles authentication timeout scenarios.
-     *
-     * Called when the popup monitoring reaches its maximum time limit without
-     * receiving authentication results. Emits timeout events, creates timeout errors,
-     * and performs cleanup operations.
-     *
-     * @param popupMessageHandler - The message event handler to clean up, or null if none exists
-     */
-    private handlePopupTimeout;
-    /**
-     * Monitors the popup's location for redirect changes.
-     *
-     * Attempts to check if the popup has redirected to the callback URL, which
-     * indicates the authentication flow has progressed. Handles cross-origin
-     * access restrictions gracefully by catching and logging access errors.
-     *
-     * @param popup - The popup window to monitor for location changes
-     */
-    private checkPopupLocation;
-}
-//# sourceMappingURL=PopupHandler.d.ts.map

package/dist/vanillajs/auth/handlers/PopupHandler.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"PopupHandler.d.ts","sourceRoot":"","sources":["../../../../src/vanillajs/auth/handlers/PopupHandler.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,KAAK,EACV,wBAAwB,EAEzB,MAAM,uBAAuB,CAAC;AAG/B,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAG1D,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,wBAAwB,CAAC;IACjC,MAAM,EAAE,UAAU,CAAC,OAAO,YAAY,CAAC,CAAC;IACxC,aAAa,EAAE,CAAC,MAAM,EAAE,UAAU,KAAK,IAAI,CAAC;IAC5C,WAAW,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;IACpC,OAAO,EAAE,MAAM,IAAI,CAAC;CACrB;AAED,qBAAa,YAAY;IACvB,OAAO,CAAC,MAAM,CAA2B;IACzC,OAAO,CAAC,MAAM,CAA2B;IACzC,OAAO,CAAC,KAAK,CAAC,CAAgB;IAC9B,OAAO,CAAC,kBAAkB,CAAC,CAAS;IACpC,OAAO,CAAC,aAAa,CAA+B;IACpD,OAAO,CAAC,WAAW,CAAyB;IAC5C,OAAO,CAAC,OAAO,CAAa;gBAEhB,aAAa,EAAE,kBAAkB;IAQ7C;;;;;;;;;OASG;IACU,gBAAgB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAoFjE;;;;;;;;OAQG;IACH,OAAO,CAAC,sBAAsB;IAQ9B;;;;;;;;;;;;;;;;OAgBG;IACH,OAAO,CAAC,YAAY;IA2FpB;;;;;;;;OAQG;IACH,OAAO,CAAC,kBAAkB;IAkB1B;;;;;;;;OAQG;IACH,OAAO,CAAC,gBAAgB;IA0BxB;;;;;;OAMG;IACH,OAAO,CAAC,iBAAiB;IAsBzB;;;;;;;;OAQG;IACH,OAAO,CAAC,kBAAkB;IAsB1B;;;;;;;;OAQG;IACH,OAAO,CAAC,kBAAkB;CAuB3B"}