@equinor/fusion-framework-module-msal 4.0.8-next.0 → 4.0.9

package/CHANGELOG.md

@@ -1,13 +1,36 @@
 # Change Log
 
-## 4.0.8-next.0
+## 4.0.9
 
 ### Patch Changes
 
-- [#3075](https://github.com/equinor/fusion-framework/pull/3075) [`db34d90`](https://github.com/equinor/fusion-framework/commit/db34d9003d64e4c7cb46cf0c95f0c7a0e7587128) Thanks [@odinr](https://github.com/odinr)! - merge with main
+- [#3343](https://github.com/equinor/fusion-framework/pull/3343) [`68dc22f`](https://github.com/equinor/fusion-framework/commit/68dc22f582bb68fbc94f29ad053122f81c049405) Thanks [@odinr](https://github.com/odinr)! - Enhanced documentation with comprehensive guides and improved developer experience.
 
-- Updated dependencies [[`7c58c78`](https://github.com/equinor/fusion-framework/commit/7c58c7868c66b1fc0f720b4ed13d39e0fe505461), [`db34d90`](https://github.com/equinor/fusion-framework/commit/db34d9003d64e4c7cb46cf0c95f0c7a0e7587128)]:
-  - @equinor/fusion-framework-module@4.4.3-next.2
+  - **Complete documentation rewrite** with better structure and organization
+  - **Added comprehensive API reference** with detailed interface documentation
+  - **Enhanced configuration guide** with clear required/optional settings tables
+  - **Added migration guide** for v4 breaking changes and module hoisting
+  - **Improved troubleshooting section** with common issues and solutions
+  - **Added quick start examples** with practical usage patterns
+  - **Enhanced module hoisting documentation** explaining shared authentication state
+  - **Added package description** for better npm package visibility
+
+  **Key Improvements:**
+
+  - Clear separation between required and optional configuration
+  - Comprehensive API reference with TypeScript interfaces
+  - Migration guidance for v4 breaking changes
+  - Better developer onboarding with quick start examples
+  - Enhanced troubleshooting with platform-specific solutions
+
+## 4.0.8
+
+### Patch Changes
+
+- [#3075](https://github.com/equinor/fusion-framework/pull/3075) [`8fffbfb`](https://github.com/equinor/fusion-framework/commit/8fffbfb12daa9748bf5290e5084cd4d409aed253) Thanks [@odinr](https://github.com/odinr)! - Upgrade zod dependency to ^3.25.76 in all affected packages.
+
+- Updated dependencies [[`8fffbfb`](https://github.com/equinor/fusion-framework/commit/8fffbfb12daa9748bf5290e5084cd4d409aed253), [`8fffbfb`](https://github.com/equinor/fusion-framework/commit/8fffbfb12daa9748bf5290e5084cd4d409aed253)]:
+  - @equinor/fusion-framework-module@5.0.0
 
 ## 4.0.7
 

package/README.md

@@ -1,74 +1,161 @@
-## MSAL mod
 
-This modules provides configuration and utilities for working with the Microsoft Authentication Library (MSAL) in Fusion.
+`@equinor/fusion-framework-module-msal` provides secure Azure AD authentication for browser applications using Microsoft's MSAL (Microsoft Authentication Library). Perfect for web applications, SPAs, and React apps that need to authenticate with Microsoft services.
 
-## Configuration
+## Features
 
-> [!IMPORTANT]
-> The `@equinor/fusion-framework-app` enables this package by default, so applications using the app package do not need to enable this package.
+- **Single Sign-On (SSO)** support for Microsoft Azure AD and Azure AD B2C
+- **Token Management** with automatic refresh and secure caching
+- **Module Hoisting** for shared authentication state across application scopes
+- **Silent Authentication** for seamless user experience
+- **Popup & Redirect Flows** for different authentication scenarios
+- **Zero Configuration** with sensible defaults and optional customization
 
-```ts
-// enable the module
-import { enableMsal } from '@equinor/fusion-framework-module-msal';
+## Quick Start
 
-export const configure = (configurator: IModulesConfigurator) => {
-  enableMsal(configurator);
-};
+```bash
+pnpm add @equinor/fusion-framework-module-msal
 ```
 
-> [!WARNING] 
-> Only the first ancestor should configure the module. All sub scopes will inherit the configuration from the first ancestor.
-```ts
+```typescript
+import { enableMSAL } from '@equinor/fusion-framework-module-msal';
+import { ModulesConfigurator } from '@equinor/fusion-framework-module';
+
+const configurator = new ModulesConfigurator();
+
+enableMSAL(configurator, (builder) => {
+  builder.setClientConfig({
+    tenantId: 'your-tenant-id',
+    clientId: 'your-client-id',
+    redirectUri: 'https://your-app.com/callback'
+  });
+  builder.setRequiresAuth(true);
+});
+
+const framework = await initialize();
+const token = await framework.auth.acquireAccessToken({ 
+  scopes: ['https://graph.microsoft.com/.default'] 
+});
+```
+
+> [!IMPORTANT]
+> The `@equinor/fusion-framework-app` enables this package by default, so applications using the app package do not need to enable this module manually.
+
+
+## Configuration
+
+### Required Settings
+
+| Setting | Description | Required |
+|---------|-------------|----------|
+| `clientId` | Azure AD application client ID | ✅ |
+| `tenantId` | Azure AD tenant ID | ✅ |
+| `redirectUri` | Authentication callback URL | Optional |
 
-import { enableMsal } from '@equinor/fusion-framework-module-msal';
+### Optional Settings
 
-const myConfigurator = new ModulesConfigurator();
+| Setting | Description | Default |
+|---------|-------------|---------|
+| `requiresAuth` | Auto-authenticate on initialization | `false` |
+| `version` | Force specific MSAL version | `Latest` |
 
-const msalConfig: AuthConfig = {
-  tenantId: 'your-tenant',
-  clientId: 'your-client'
-  callbackUrl: 'your-callback-url'
-};
+### Environment Variables
 
-// Enable MSAL
-enableMsal(myConfigurator, (msalConfigurator) => msalConfigurator.setClientConfig(msalConfig));
+```bash
+# Required
+AZURE_CLIENT_ID=your-client-id
+AZURE_TENANT_ID=your-tenant-id
 
-// Alternatively
-import { configureMsal } from '@equinor/fusion-framework-module-msal';
-myConfigurator.addConfig(configureMsal(msalConfigurator => {
-  configurator.setClientConfig(msalConfig);
-}));
+# Optional
+AZURE_REDIRECT_URI=https://your-app.com/callback
+```
 
-// Native MSAL configuration
-import { module } from '@azure/msal-browser';
-myConfigurator.addConfig({
-  module: module,
-  config: (msalConfigurator) => msalConfigurator.setClientConfig(msalConfig)
+## API Reference
+
+### `enableMSAL(configurator, configure)`
+
+Enables the MSAL module in your Fusion Framework application.
+
+**Parameters:**
+- `configurator`: `ModulesConfigurator` - The modules configurator instance
+- `configure`: `(builder: IAuthConfigurator) => void` - Configuration function
+
+### `IAuthProvider`
+
+The authentication provider interface available at `framework.auth`:
+
+```typescript
+interface IAuthProvider {
+  // Current user account information
+  readonly defaultAccount: AccountInfo | undefined;
+  
+  // Acquire an access token for the specified scopes
+  acquireAccessToken(options: { scopes: string[] }): Promise<string | undefined>;
+  
+  // Acquire full authentication result
+  acquireToken(options: { scopes: string[] }): Promise<AuthenticationResult | void>;
+  
+  // Login user
+  login(): Promise<void>;
+  
+  // Logout user
+  logout(options?: { redirectUri?: string }): Promise<void>;
+  
+  // Handle authentication redirect
+  handleRedirect(): Promise<void | null>;
 }
 ```
 
-### Interoperability with MSAL versions
 
-The provider proxy generation is by default set to `MsalModuleVersion.Latest`, which will be resolved by the ancestor module. If you want to force a specific version, you can set the version in the configuration.
+## Module Hoisting
 
-> [!NOTE]
-> this should not be necessary in most cases and only done by understanding the inner workings of the module, but can be done in a transition phase._
+The module implements a hoisting pattern where the authentication provider is created once at the root level and shared across all sub-modules. This ensures consistent authentication state throughout your application while maintaining security and performance.
 
-```ts
-import { MsalModuleVersion } from '@equinor/fusion-framework-module-msal';
-enableMsal(myConfigurator, (msalConfigurator) => {
-  msalConfigurator.setClientConfig(msalConfig);
-  msalConfigurator.setVersion(MsalModuleVersion.V2);
-});
-```
+> [!IMPORTANT]
+> **Configure the auth module only in the root Fusion Framework instance** - Sub-instances will automatically inherit the authentication configuration from the parent.
+
+## Migration Guide
+
+### Version 4 Breaking Changes
+
+**Module Hoisting**: The module now uses module hoisting, meaning sub-module instances proxy the parent module instance. This creates a shared authentication state across all module instances.
+
+**Removed Multi-Client Support**: This version no longer supports multiple MSAL clients (multi-tenant, multi-authority) in the same scoped instance due to how `@azure/msal-browser` uses a shared cache.
+
+**Benefits of V4**:
+- Shared authentication state across application scopes
+- Improved performance and memory usage
+- Simplified configuration management
+- Better integration with Fusion Framework architecture
+
+#### Migration Steps
+
+1. **Update Configuration**: Ensure only the root module configures MSAL
+2. **Remove Duplicate Configurations**: Remove MSAL configuration from child modules
+3. **Update Authentication Logic**: Rely on shared authentication state
+4. **Test Multi-Scope Applications**: Verify authentication works across different application scopes
+
+## Troubleshooting
+
+### Common Issues
+
+| Issue | Solution |
+|-------|----------|
+| **Authentication Loop** | Ensure redirect URIs match your application's routing |
+| **Token Acquisition Fails** | Check that required scopes are properly configured |
+| **Module Not Found** | Ensure the module is properly configured and framework is initialized |
+| **Multiple MSAL Instances** | Remove duplicate configurations from child modules |
+
+### Getting Help
 
-## Major versions
+- 📖 [MSAL Cookbook](https://github.com/equinor/fusion-framework/tree/main/cookbooks/app-react-msal) - Complete working examples
+- 🐛 [Report Issues](https://github.com/equinor/fusion/issues) - Bug reports and feature requests
 
-**V4**
+## Additional Resources
 
-The module change to use module hoisting, which means that sub modules instances will proxy the parent module instance. This means that the module instance will be shared between all instances of the module. 
+- [Microsoft Graph API Documentation](https://docs.microsoft.com/en-us/graph/)
+- [Azure AD App Registration Guide](https://docs.microsoft.com/en-us/azure/active-directory/develop/quickstart-register-app)
+- [MSAL Browser Documentation](https://github.com/AzureAD/microsoft-authentication-library-for-js/tree/dev/lib/msal-browser)
+- [Fusion Framework Documentation](https://github.com/equinor/fusion-framework)
 
-This is a __breaking change__ since this module used to support multiple MSAL clients _(multi tenant, multi authority)_ in the same scoped instance. This is no longer supported, due to the way `@azure/msal-browser` uses a shared cache.
 
-This version still uses `@azure/msal-browser@^2`, but enables 
 

package/dist/esm/static.js

@@ -3,6 +3,6 @@ export const ModuleName = 'msal';
 export var MsalModuleVersion;
 (function (MsalModuleVersion) {
     MsalModuleVersion["V2"] = "v2";
-    MsalModuleVersion["Latest"] = "4.0.8-next.0";
+    MsalModuleVersion["Latest"] = "4.0.9";
 })(MsalModuleVersion || (MsalModuleVersion = {}));
 //# sourceMappingURL=static.js.map

package/dist/esm/static.js.map

@@ -1 +1 @@
-{"version":3,"file":"static.js","sourceRoot":"","sources":["../../src/static.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC,MAAM,CAAC,MAAM,UAAU,GAAG,MAAe,CAAC;AAE1C,MAAM,CAAN,IAAY,iBAGX;AAHD,WAAY,iBAAiB;IAC3B,8BAAS,CAAA;IACT,4CAAgB,CAAA;AAClB,CAAC,EAHW,iBAAiB,KAAjB,iBAAiB,QAG5B"}
+{"version":3,"file":"static.js","sourceRoot":"","sources":["../../src/static.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC,MAAM,CAAC,MAAM,UAAU,GAAG,MAAe,CAAC;AAE1C,MAAM,CAAN,IAAY,iBAGX;AAHD,WAAY,iBAAiB;IAC3B,8BAAS,CAAA;IACT,qCAAgB,CAAA;AAClB,CAAC,EAHW,iBAAiB,KAAjB,iBAAiB,QAG5B"}

package/dist/esm/version.js

@@ -1,3 +1,3 @@
 // Generated by genversion.
-export const version = '4.0.8-next.0';
+export const version = '4.0.9';
 //# sourceMappingURL=version.js.map

package/dist/esm/version.js.map

@@ -1 +1 @@
-{"version":3,"file":"version.js","sourceRoot":"","sources":["../../src/version.ts"],"names":[],"mappings":"AAAA,2BAA2B;AAC3B,MAAM,CAAC,MAAM,OAAO,GAAG,cAAc,CAAC"}
+{"version":3,"file":"version.js","sourceRoot":"","sources":["../../src/version.ts"],"names":[],"mappings":"AAAA,2BAA2B;AAC3B,MAAM,CAAC,MAAM,OAAO,GAAG,OAAO,CAAC"}