@enterprisestandard/react 0.0.5-beta.20260115.3 → 0.0.5-beta.20260115.4

package/dist/types/workload-schema.d.ts

@@ -1,106 +0,0 @@
-import type { StandardSchemaV1 } from './standard-schema';
-/**
- * JWT Assertion Claims for OAuth2 JWT Bearer Grant (RFC 7523) and OAuth2 Access Tokens
- * @see https://datatracker.ietf.org/doc/html/rfc7523
- * @see https://datatracker.ietf.org/doc/html/rfc9068
- */
-export interface JWTAssertionClaims {
-    /**
-     * REQUIRED. Issuer - the workload identity (e.g., SPIFFE ID) or authorization server
-     */
-    iss: string;
-    /**
-     * REQUIRED. Subject - the workload identity or service account
-     */
-    sub: string;
-    /**
-     * OPTIONAL. Audience - may be a string or array of strings
-     * Note: Required for JWT assertions, but may be absent in OAuth2 access tokens
-     */
-    aud?: string | string[];
-    /**
-     * REQUIRED. Expiration time (Unix timestamp)
-     */
-    exp: number;
-    /**
-     * REQUIRED. Issued at time (Unix timestamp)
-     */
-    iat: number;
-    /**
-     * OPTIONAL. JWT ID - unique identifier for this token
-     * Note: Required for JWT assertions, optional for access tokens
-     */
-    jti?: string;
-    /**
-     * OPTIONAL. Requested OAuth scopes (space-delimited)
-     */
-    scope?: string;
-    /**
-     * Allow additional claims for extensibility
-     */
-    [key: string]: unknown;
-}
-/**
- * Creates a StandardSchemaV1 for validating JWT Assertion Claims.
- * @param vendor - The name of the vendor creating this schema
- * @returns A StandardSchemaV1 instance for JWT Assertion Claims validation
- */
-export declare function jwtAssertionClaimsSchema(vendor: string): StandardSchemaV1<Record<string, unknown>, JWTAssertionClaims>;
-/**
- * Workload Token Response from OAuth2 token endpoint
- * @see https://datatracker.ietf.org/doc/html/rfc6749#section-5.1
- */
-export interface WorkloadTokenResponse {
-    /**
-     * REQUIRED. The access token issued by the authorization server.
-     */
-    access_token: string;
-    /**
-     * REQUIRED. The type of the token (typically "Bearer").
-     */
-    token_type: string;
-    /**
-     * RECOMMENDED. The lifetime in seconds of the access token.
-     */
-    expires_in?: number;
-    /**
-     * OPTIONAL. The scope of the access token.
-     */
-    scope?: string;
-    /**
-     * OPTIONAL. The refresh token (rarely used for workload identities).
-     */
-    refresh_token?: string;
-    /**
-     * OPTIONAL. The expiration time as an ISO 8601 string.
-     */
-    expires?: string;
-}
-/**
- * Creates a StandardSchemaV1 for validating Workload Token Responses.
- * @param vendor - The name of the vendor creating this schema
- * @returns A StandardSchemaV1 instance for Workload Token Response validation
- */
-export declare function workloadTokenResponseSchema(vendor: string): StandardSchemaV1<Record<string, unknown>, WorkloadTokenResponse>;
-/**
- * Token Validation Result
- */
-export interface TokenValidationResult {
-    /**
-     * Whether the token is valid
-     */
-    valid: boolean;
-    /**
-     * The decoded and validated claims (if valid)
-     */
-    claims?: JWTAssertionClaims;
-    /**
-     * Error message (if invalid)
-     */
-    error?: string;
-    /**
-     * Token expiration time (if valid)
-     */
-    expiresAt?: Date;
-}
-//# sourceMappingURL=workload-schema.d.ts.map

package/dist/types/workload-schema.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"workload-schema.d.ts","sourceRoot":"","sources":["../../src/types/workload-schema.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAE1D;;;;GAIG;AACH,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,GAAG,EAAE,MAAM,CAAC;IAEZ;;OAEG;IACH,GAAG,EAAE,MAAM,CAAC;IAEZ;;;OAGG;IACH,GAAG,CAAC,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IAExB;;OAEG;IACH,GAAG,EAAE,MAAM,CAAC;IAEZ;;OAEG;IACH,GAAG,EAAE,MAAM,CAAC;IAEZ;;;OAGG;IACH,GAAG,CAAC,EAAE,MAAM,CAAC;IAEb;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED;;;;GAIG;AACH,wBAAgB,wBAAwB,CACtC,MAAM,EAAE,MAAM,GACb,gBAAgB,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,kBAAkB,CAAC,CA6F/D;AAED;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC;;OAEG;IACH,YAAY,EAAE,MAAM,CAAC;IAErB;;OAEG;IACH,UAAU,EAAE,MAAM,CAAC;IAEnB;;OAEG;IACH,UAAU,CAAC,EAAE,MAAM,CAAC;IAEpB;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,aAAa,CAAC,EAAE,MAAM,CAAC;IAEvB;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;;;GAIG;AACH,wBAAgB,2BAA2B,CACzC,MAAM,EAAE,MAAM,GACb,gBAAgB,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,qBAAqB,CAAC,CA4GlE;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC;;OAEG;IACH,KAAK,EAAE,OAAO,CAAC;IAEf;;OAEG;IACH,MAAM,CAAC,EAAE,kBAAkB,CAAC;IAE5B;;OAEG;IACH,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf;;OAEG;IACH,SAAS,CAAC,EAAE,IAAI,CAAC;CAClB"}

package/dist/types/workload-schema.js

@@ -1,208 +0,0 @@
-/**
- * Creates a StandardSchemaV1 for validating JWT Assertion Claims.
- * @param vendor - The name of the vendor creating this schema
- * @returns A StandardSchemaV1 instance for JWT Assertion Claims validation
- */
-export function jwtAssertionClaimsSchema(vendor) {
-    return {
-        '~standard': {
-            version: 1,
-            vendor,
-            validate: (value) => {
-                if (typeof value !== 'object' || value === null) {
-                    return {
-                        issues: [
-                            {
-                                message: 'Expected an object',
-                            },
-                        ],
-                    };
-                }
-                const claims = value;
-                const issues = [];
-                const result = { ...claims };
-                // Validate required string fields
-                const requiredStringFields = ['iss', 'sub'];
-                for (const field of requiredStringFields) {
-                    if (field in claims) {
-                        if (typeof claims[field] !== 'string') {
-                            issues.push({
-                                message: `${field} must be a string`,
-                                path: [field],
-                            });
-                        }
-                    }
-                    else {
-                        issues.push({
-                            message: `${field} is required`,
-                            path: [field],
-                        });
-                    }
-                }
-                // Validate optional aud field (can be string or array of strings)
-                if ('aud' in claims && claims.aud !== undefined) {
-                    const aud = claims.aud;
-                    if (typeof aud !== 'string' && !Array.isArray(aud)) {
-                        issues.push({
-                            message: 'aud must be a string or array of strings',
-                            path: ['aud'],
-                        });
-                    }
-                    else if (Array.isArray(aud) && !aud.every((a) => typeof a === 'string')) {
-                        issues.push({
-                            message: 'aud array must contain only strings',
-                            path: ['aud'],
-                        });
-                    }
-                }
-                // Validate optional string fields
-                const optionalStringFields = ['jti', 'scope'];
-                for (const field of optionalStringFields) {
-                    if (field in claims && claims[field] !== undefined) {
-                        if (typeof claims[field] !== 'string') {
-                            issues.push({
-                                message: `${field} must be a string`,
-                                path: [field],
-                            });
-                        }
-                    }
-                }
-                // Validate required number fields
-                const requiredNumberFields = ['exp', 'iat'];
-                for (const field of requiredNumberFields) {
-                    if (field in claims) {
-                        if (typeof claims[field] !== 'number') {
-                            issues.push({
-                                message: `${field} must be a number`,
-                                path: [field],
-                            });
-                        }
-                    }
-                    else {
-                        issues.push({
-                            message: `${field} is required`,
-                            path: [field],
-                        });
-                    }
-                }
-                if (issues.length > 0) {
-                    return { issues };
-                }
-                return { value: result };
-            },
-        },
-    };
-}
-/**
- * Creates a StandardSchemaV1 for validating Workload Token Responses.
- * @param vendor - The name of the vendor creating this schema
- * @returns A StandardSchemaV1 instance for Workload Token Response validation
- */
-export function workloadTokenResponseSchema(vendor) {
-    return {
-        '~standard': {
-            version: 1,
-            vendor,
-            validate: (value) => {
-                if (typeof value !== 'object' || value === null) {
-                    return {
-                        issues: [
-                            {
-                                message: 'Expected an object',
-                            },
-                        ],
-                    };
-                }
-                const response = value;
-                const issues = [];
-                const result = {};
-                // Check required 'access_token' parameter
-                if ('access_token' in response) {
-                    if (typeof response.access_token === 'string') {
-                        result.access_token = response.access_token;
-                    }
-                    else {
-                        issues.push({
-                            message: 'access_token must be a string',
-                            path: ['access_token'],
-                        });
-                    }
-                }
-                else {
-                    issues.push({
-                        message: 'access_token is required',
-                        path: ['access_token'],
-                    });
-                }
-                // Check required 'token_type' parameter
-                if ('token_type' in response) {
-                    if (typeof response.token_type === 'string') {
-                        result.token_type = response.token_type;
-                    }
-                    else {
-                        issues.push({
-                            message: 'token_type must be a string',
-                            path: ['token_type'],
-                        });
-                    }
-                }
-                else {
-                    issues.push({
-                        message: 'token_type is required',
-                        path: ['token_type'],
-                    });
-                }
-                // Optional string fields
-                if ('scope' in response) {
-                    if (typeof response.scope === 'string' || response.scope === undefined) {
-                        result.scope = response.scope;
-                    }
-                    else {
-                        issues.push({
-                            message: 'scope must be a string',
-                            path: ['scope'],
-                        });
-                    }
-                }
-                if ('refresh_token' in response) {
-                    if (typeof response.refresh_token === 'string' || response.refresh_token === undefined) {
-                        result.refresh_token = response.refresh_token;
-                    }
-                    else {
-                        issues.push({
-                            message: 'refresh_token must be a string',
-                            path: ['refresh_token'],
-                        });
-                    }
-                }
-                if ('expires' in response) {
-                    if (typeof response.expires === 'string' || response.expires === undefined) {
-                        result.expires = response.expires;
-                    }
-                    else {
-                        issues.push({
-                            message: 'expires must be a string',
-                            path: ['expires'],
-                        });
-                    }
-                }
-                // Optional number field
-                if ('expires_in' in response) {
-                    if (typeof response.expires_in === 'number' || response.expires_in === undefined) {
-                        result.expires_in = response.expires_in;
-                    }
-                    else {
-                        issues.push({
-                            message: 'expires_in must be a number',
-                            path: ['expires_in'],
-                        });
-                    }
-                }
-                if (issues.length > 0) {
-                    return { issues };
-                }
-                return { value: result };
-            },
-        },
-    };
-}

package/dist/ui/sign-in-loading.d.ts

@@ -1,5 +0,0 @@
-import type { PropsWithChildren } from 'react';
-export declare function SignInLoading({ complete, children }: {
-    complete?: boolean;
-} & PropsWithChildren): import("react/jsx-runtime").JSX.Element | null;
-//# sourceMappingURL=sign-in-loading.d.ts.map

package/dist/ui/sign-in-loading.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"sign-in-loading.d.ts","sourceRoot":"","sources":["../../src/ui/sign-in-loading.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,OAAO,CAAC;AAG/C,wBAAgB,aAAa,CAAC,EAAE,QAAgB,EAAE,QAAQ,EAAE,EAAE;IAAE,QAAQ,CAAC,EAAE,OAAO,CAAA;CAAE,GAAG,iBAAiB,kDAKvG"}

package/dist/ui/sign-in-loading.js

@@ -1,8 +0,0 @@
-import { Fragment as _Fragment, jsx as _jsx } from "react/jsx-runtime";
-import { useUser } from '..';
-export function SignInLoading({ complete = false, children }) {
-    const { isLoading } = useUser();
-    if (isLoading && !complete)
-        return _jsx(_Fragment, { children: children });
-    return null;
-}

package/dist/ui/signed-in.d.ts

@@ -1,3 +0,0 @@
-import type { PropsWithChildren } from 'react';
-export declare function SignedIn({ children }: PropsWithChildren): import("react/jsx-runtime").JSX.Element | null;
-//# sourceMappingURL=signed-in.d.ts.map

package/dist/ui/signed-in.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"signed-in.d.ts","sourceRoot":"","sources":["../../src/ui/signed-in.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,OAAO,CAAC;AAG/C,wBAAgB,QAAQ,CAAC,EAAE,QAAQ,EAAE,EAAE,iBAAiB,kDAKvD"}

package/dist/ui/signed-in.js

@@ -1,8 +0,0 @@
-import { Fragment as _Fragment, jsx as _jsx } from "react/jsx-runtime";
-import { useUser } from '..';
-export function SignedIn({ children }) {
-    const { user } = useUser();
-    if (user)
-        return _jsx(_Fragment, { children: children });
-    return null;
-}

package/dist/ui/signed-out.d.ts

@@ -1,3 +0,0 @@
-import type { PropsWithChildren } from 'react';
-export declare function SignedOut({ children }: PropsWithChildren): import("react/jsx-runtime").JSX.Element | null;
-//# sourceMappingURL=signed-out.d.ts.map

package/dist/ui/signed-out.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"signed-out.d.ts","sourceRoot":"","sources":["../../src/ui/signed-out.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,OAAO,CAAC;AAG/C,wBAAgB,SAAS,CAAC,EAAE,QAAQ,EAAE,EAAE,iBAAiB,kDAKxD"}

package/dist/ui/signed-out.js

@@ -1,8 +0,0 @@
-import { Fragment as _Fragment, jsx as _jsx } from "react/jsx-runtime";
-import { useUser } from '..';
-export function SignedOut({ children }) {
-    const { user, isLoading } = useUser();
-    if (user || isLoading)
-        return null;
-    return _jsx(_Fragment, { children: children });
-}

package/dist/ui/sso-provider.d.ts

@@ -1,35 +0,0 @@
-import { type ReactNode } from 'react';
-import type { User } from '../types/user';
-type StorageType = 'local' | 'session' | 'memory';
-interface SSOProviderProps {
-    tenantId?: string;
-    storage?: StorageType;
-    storageKey?: string;
-    userUrl?: string;
-    tokenUrl?: string;
-    refreshUrl?: string;
-    disableListener?: boolean;
-    children: ReactNode;
-}
-interface SSOContext {
-    user: User | null;
-    setUser: (user: User | null) => void;
-    isLoading: boolean;
-    tokenUrl?: string;
-    refreshUrl?: string;
-}
-export declare function SSOProvider({ tenantId, storage, storageKey, userUrl, tokenUrl, refreshUrl, disableListener, children, }: SSOProviderProps): import("react/jsx-runtime").JSX.Element;
-export declare function useUser(): SSOContext;
-interface UseTokenReturn {
-    token: string | null;
-    isLoading: boolean;
-    error: Error | null;
-    refresh: () => Promise<void>;
-}
-export declare function useToken(): UseTokenReturn;
-export declare function logout(logoutUrl: string): Promise<{
-    success: boolean;
-    error?: string;
-}>;
-export {};
-//# sourceMappingURL=sso-provider.d.ts.map

package/dist/ui/sso-provider.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"sso-provider.d.ts","sourceRoot":"","sources":["../../src/ui/sso-provider.tsx"],"names":[],"mappings":"AAAA,OAAO,EAAiB,KAAK,SAAS,EAAgD,MAAM,OAAO,CAAC;AACpG,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAE1C,KAAK,WAAW,GAAG,OAAO,GAAG,SAAS,GAAG,QAAQ,CAAC;AAElD,UAAU,gBAAgB;IACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,WAAW,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,QAAQ,EAAE,SAAS,CAAC;CACrB;AAED,UAAU,UAAU;IAClB,IAAI,EAAE,IAAI,GAAG,IAAI,CAAC;IAClB,OAAO,EAAE,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC;IACrC,SAAS,EAAE,OAAO,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAWD,wBAAgB,WAAW,CAAC,EAC1B,QAAQ,EACR,OAAkB,EAClB,UAAU,EACV,OAAO,EACP,QAAQ,EACR,UAAU,EACV,eAAuB,EACvB,QAAQ,GACT,EAAE,gBAAgB,2CA8JlB;AAED,wBAAgB,OAAO,IAAI,UAAU,CAMpC;AAOD,UAAU,cAAc;IACtB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,SAAS,EAAE,OAAO,CAAC;IACnB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB,OAAO,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9B;AAED,wBAAgB,QAAQ,IAAI,cAAc,CAiGzC;AAED,wBAAsB,MAAM,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CA6C7F"}