@elliemae/ssf-guest 2.7.1 → 2.7.3

package/dist/cjs/guest.js

@@ -74,9 +74,9 @@ class SSFGuest {
   #hostOrigin = null;
   #hostWindow = null;
   /**
-   * flag to get & cache auth token
+   * get bearer token to access api during connect operation
    */
-  #cacheAuthToken = false;
+  #usesDevConnectAPI = false;
   /**
    * auth token to access api
    */
@@ -114,7 +114,7 @@ class SSFGuest {
       team,
       appName
     } = options?.logger || {};
-    this.#cacheAuthToken = options?.cacheAuthToken ?? false;
+    this.#usesDevConnectAPI = options?.usesDevConnectAPI ?? false;
     this.#keepAlive = options?.keepAlive ?? false;
     this.#keepAliveInterval = options?.keepAliveInterval ?? KEEP_ALIVE_INTERVAL;
     const transport = logToConsole ? (0, import_pui_diagnostics.Console)() : (0, import_pui_diagnostics.http)(url);
@@ -316,13 +316,43 @@ class SSFGuest {
    */
   #extendTokenLifetime = async () => {
     if (!this.#authToken || !this.#authClientId || !this.#hostDomain) return;
-    await fetch(`${this.#hostDomain}/oauth2/v1/token/introspection`, {
-      headers: {
-        "content-type": "application/x-www-form-urlencoded;charset=UTF-8"
-      },
-      body: `token=${this.#authToken}&client_id=${this.#authClientId}`,
-      method: "POST"
-    });
+    await fetch(
+      `${this.#hostDomain}/oauth2/v1/token/introspection?${new URLSearchParams({
+        token: this.#authToken,
+        client_id: this.#authClientId
+      }).toString()}`,
+      {
+        headers: {
+          "content-type": "application/x-www-form-urlencoded;charset=UTF-8"
+        },
+        method: "POST"
+      }
+    );
+  };
+  /**
+   * revoke token
+   */
+  #revokeToken = async () => {
+    if (this.#authToken && this.#authClientId && this.#hostDomain) {
+      try {
+        await fetch(
+          `${this.#hostDomain}/oauth2/v1/token/revocation?${new URLSearchParams(
+            {
+              token: this.#authToken,
+              client_id: this.#authClientId
+            }
+          ).toString()}`,
+          {
+            method: "POST"
+          }
+        );
+      } catch (e) {
+        this.#logger.error(`Error revoking token. ${e.message}`);
+      } finally {
+        this.#authToken = null;
+        this.#authClientId = null;
+      }
+    }
   };
   /**
    * Start session keep alive
@@ -382,7 +412,7 @@ class SSFGuest {
   /**
    * Close the connection to the host
    */
-  close = () => {
+  close = async () => {
     if (!this.#isConnected) return;
     this.#remoting.send({
       targetWin: this.#hostWindow,
@@ -400,6 +430,7 @@ class SSFGuest {
         document.removeEventListener(eventType, this.#throttledKeepAlive);
       });
     }
+    await this.#revokeToken();
     this.#isConnected = false;
     this.#logger.audit({
       message: "Guest disconnected from host",
@@ -456,17 +487,17 @@ class SSFGuest {
         message: "Guest connected to host",
         guestUrl: window.location.href
       });
-      await this.getAuthToken();
+      if (this.#usesDevConnectAPI) await this.getAuthToken();
       await this.#startKeepSessionAlive();
+      window.addEventListener("beforeunload", this.close);
     }
   };
   /**
-   * Get bearer token to access api
+   * Get bearer token to access dev connect api
    * @returns auth token
    */
   getAuthToken = async () => {
-    if (!this.#cacheAuthToken) return null;
-    if (!this.#authToken) {
+    if (!this.#authToken && this.#isConnected) {
       try {
         const authObj = await this.getObject("Auth");
         if (authObj) {

package/dist/cjs/tests/utils.js

@@ -32,7 +32,7 @@ var import_constant = require("./constant.js");
 var import_utils = require("../utils.js");
 const createGuest = ({
   keepAlive,
-  cacheAuthToken,
+  usesDevConnectAPI,
   keepAliveInterval
 }) => new import__.SSFGuest({
   logger: {
@@ -42,7 +42,7 @@ const createGuest = ({
     appName: "SSF Guest"
   },
   keepAlive,
-  cacheAuthToken,
+  usesDevConnectAPI,
   keepAliveInterval
 });
 const postMessage = ({

package/dist/esm/guest.js

@@ -68,9 +68,9 @@ class SSFGuest {
   #hostOrigin = null;
   #hostWindow = null;
   /**
-   * flag to get & cache auth token
+   * get bearer token to access api during connect operation
    */
-  #cacheAuthToken = false;
+  #usesDevConnectAPI = false;
   /**
    * auth token to access api
    */
@@ -108,7 +108,7 @@ class SSFGuest {
       team,
       appName
     } = options?.logger || {};
-    this.#cacheAuthToken = options?.cacheAuthToken ?? false;
+    this.#usesDevConnectAPI = options?.usesDevConnectAPI ?? false;
     this.#keepAlive = options?.keepAlive ?? false;
     this.#keepAliveInterval = options?.keepAliveInterval ?? KEEP_ALIVE_INTERVAL;
     const transport = logToConsole ? Console() : http(url);
@@ -310,13 +310,43 @@ class SSFGuest {
    */
   #extendTokenLifetime = async () => {
     if (!this.#authToken || !this.#authClientId || !this.#hostDomain) return;
-    await fetch(`${this.#hostDomain}/oauth2/v1/token/introspection`, {
-      headers: {
-        "content-type": "application/x-www-form-urlencoded;charset=UTF-8"
-      },
-      body: `token=${this.#authToken}&client_id=${this.#authClientId}`,
-      method: "POST"
-    });
+    await fetch(
+      `${this.#hostDomain}/oauth2/v1/token/introspection?${new URLSearchParams({
+        token: this.#authToken,
+        client_id: this.#authClientId
+      }).toString()}`,
+      {
+        headers: {
+          "content-type": "application/x-www-form-urlencoded;charset=UTF-8"
+        },
+        method: "POST"
+      }
+    );
+  };
+  /**
+   * revoke token
+   */
+  #revokeToken = async () => {
+    if (this.#authToken && this.#authClientId && this.#hostDomain) {
+      try {
+        await fetch(
+          `${this.#hostDomain}/oauth2/v1/token/revocation?${new URLSearchParams(
+            {
+              token: this.#authToken,
+              client_id: this.#authClientId
+            }
+          ).toString()}`,
+          {
+            method: "POST"
+          }
+        );
+      } catch (e) {
+        this.#logger.error(`Error revoking token. ${e.message}`);
+      } finally {
+        this.#authToken = null;
+        this.#authClientId = null;
+      }
+    }
   };
   /**
    * Start session keep alive
@@ -376,7 +406,7 @@ class SSFGuest {
   /**
    * Close the connection to the host
    */
-  close = () => {
+  close = async () => {
     if (!this.#isConnected) return;
     this.#remoting.send({
       targetWin: this.#hostWindow,
@@ -394,6 +424,7 @@ class SSFGuest {
         document.removeEventListener(eventType, this.#throttledKeepAlive);
       });
     }
+    await this.#revokeToken();
     this.#isConnected = false;
     this.#logger.audit({
       message: "Guest disconnected from host",
@@ -450,17 +481,17 @@ class SSFGuest {
         message: "Guest connected to host",
         guestUrl: window.location.href
       });
-      await this.getAuthToken();
+      if (this.#usesDevConnectAPI) await this.getAuthToken();
       await this.#startKeepSessionAlive();
+      window.addEventListener("beforeunload", this.close);
     }
   };
   /**
-   * Get bearer token to access api
+   * Get bearer token to access dev connect api
    * @returns auth token
    */
   getAuthToken = async () => {
-    if (!this.#cacheAuthToken) return null;
-    if (!this.#authToken) {
+    if (!this.#authToken && this.#isConnected) {
       try {
         const authObj = await this.getObject("Auth");
         if (authObj) {

package/dist/esm/tests/utils.js

@@ -9,7 +9,7 @@ import {
 import { getOrigin } from "../utils.js";
 const createGuest = ({
   keepAlive,
-  cacheAuthToken,
+  usesDevConnectAPI,
   keepAliveInterval
 }) => new SSFGuest({
   logger: {
@@ -19,7 +19,7 @@ const createGuest = ({
     appName: "SSF Guest"
   },
   keepAlive,
-  cacheAuthToken,
+  usesDevConnectAPI,
   keepAliveInterval
 });
 const postMessage = ({

package/dist/public/creditService.html

@@ -1 +1 @@
-<!doctype html><html lang="en"><head><meta charset="UTF-8"/><meta http-equiv="X-UA-Compatible" content="IE=edge"/><meta name="viewport" content="width=device-width,initial-scale=1"/><title>Credit Service</title><style>body{margin:0}</style><script src="https://qa.assets.rd.elliemae.io/pui-diagnostics@3"></script><script>window.addEventListener("DOMContentLoaded",(async()=>{window.__ICE__={diagnosticsUrl:"https://int.api.ellielabs.com/diagnostics/v2/logging"};const e=new URL(window.location),i=e?.searchParams?.get?.("src");window.__ICE__.ssfGuest=new ice.guest.SSFGuest({logger:{index:"creditServiceGuest",team:"ui platform",appName:"credit-service"}}),await window.__ICE__.ssfGuest.addScript(i,document.body)}))</script><script defer="defer" src="js/emuiSsfGuest.4319b0d4376113a76a39.js"></script></head><body></body></html>
+<!doctype html><html lang="en"><head><meta charset="UTF-8"/><meta http-equiv="X-UA-Compatible" content="IE=edge"/><meta name="viewport" content="width=device-width,initial-scale=1"/><title>Credit Service</title><style>body{margin:0}</style><script src="https://qa.assets.rd.elliemae.io/pui-diagnostics@3"></script><script>window.addEventListener("DOMContentLoaded",(async()=>{window.__ICE__={diagnosticsUrl:"https://int.api.ellielabs.com/diagnostics/v2/logging"};const e=new URL(window.location),i=e?.searchParams?.get?.("src");window.__ICE__.ssfGuest=new ice.guest.SSFGuest({logger:{index:"creditServiceGuest",team:"ui platform",appName:"credit-service"}}),await window.__ICE__.ssfGuest.addScript(i,document.body)}))</script><script defer="defer" src="js/emuiSsfGuest.7973d32bede59971d5d6.js"></script></head><body></body></html>

package/dist/public/index.html

@@ -1 +1 @@
-<!doctype html><html lang="en" style="height:100%"><head><meta charset="UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1"><title>Plugin</title><script src="https://cdn.tailwindcss.com?plugins=forms"></script><script defer="defer" src="js/emuiSsfGuest.4319b0d4376113a76a39.js"></script></head><body class="px-2 h-full"><main class="h-full"><h1 class="text-md font-bold">Credit Score Service</h1><div class="h-full mt-2"><output id="msg" class="mt-2 p-2"></output></div></main></body></html>
+<!doctype html><html lang="en" style="height:100%"><head><meta charset="UTF-8"><meta http-equiv="X-UA-Compatible" content="IE=edge"><meta name="viewport" content="width=device-width,initial-scale=1"><title>Plugin</title><script src="https://cdn.tailwindcss.com?plugins=forms"></script><script defer="defer" src="js/emuiSsfGuest.7973d32bede59971d5d6.js"></script></head><body class="px-2 h-full"><main class="h-full"><h1 class="text-md font-bold">Credit Score Service</h1><div class="h-full mt-2"><output id="msg" class="mt-2 p-2"></output></div></main></body></html>