@forgerock/oidc-client 1.2.0 → 1.3.0

package/dist/src/lib/client.store.js

@@ -0,0 +1,433 @@
+/*
+ * Copyright (c) 2025 Ping Identity Corporation. All rights reserved.
+ *
+ * This software may be modified and distributed under the terms
+ * of the MIT license. See the LICENSE file for details.
+ */
+import { logger as loggerFn } from '@forgerock/sdk-logger';
+import { createAuthorizeUrl } from '@forgerock/sdk-oidc';
+import { createStorage } from '@forgerock/storage';
+import { Micro } from 'effect';
+import { exitIsFail, exitIsSuccess } from 'effect/Micro';
+import { authorizeµ } from './authorize.request.js';
+import { buildTokenExchangeµ } from './exchange.request.js';
+import { createClientStore, createTokenError } from './client.store.utils.js';
+import { oidcApi } from './oidc.api.js';
+import { wellknownApi, wellknownSelector } from './wellknown.api.js';
+import { isExpiryWithinThreshold } from './token.utils.js';
+import { logoutµ } from './logout.request.js';
+/**
+ * @function oidc
+ * @description Factory function to create an OIDC client with methods for authorization, token exchange,
+ *              user info retrieval, and logout. It initializes the client with the provided configuration,
+ *              request middleware, logger, and storage options.
+ * @param param - configuration object containing the OIDC client configuration, request middleware, logger,
+ * @param {OidcConfig} param.config - OIDC configuration including server details, client ID, redirect URI,
+ *              storage options, scope, and response type.
+ * @param {RequestMiddleware} param.requestMiddleware - optional array of request middleware functions to process requests.
+ * @param {{ level: LogLevel, custom: CustomLogger }} param.logger - optional logger configuration with log level and custom logger.
+ * @param {Partial<StorageConfig>} param.storage - optional storage configuration for persisting OIDC tokens.
+ * @returns {ReturnType<typeof oidc>} - Returns an object with methods for authorization, token exchange, user info retrieval, and logout.
+ */
+export async function oidc({ config, requestMiddleware, logger, storage, }) {
+    const log = loggerFn({ level: logger?.level || 'error', custom: logger?.custom });
+    const oauthThreshold = config.oauthThreshold || 30 * 1000; // Default to 30 seconds
+    const storageClient = createStorage({
+        type: storage?.type || 'localStorage',
+        name: storage?.name || config.clientId,
+        prefix: storage?.prefix || 'pic',
+        ...storage,
+    });
+    const store = createClientStore({ requestMiddleware, logger: log });
+    if (!config?.serverConfig?.wellknown) {
+        return {
+            error: 'Requires a wellknown url initializing this factory.',
+            type: 'argument_error',
+        };
+    }
+    if (!config?.clientId) {
+        return {
+            error: 'Requires a clientId.',
+            type: 'argument_error',
+        };
+    }
+    const wellknownUrl = config.serverConfig.wellknown;
+    const { data, error } = await store.dispatch(wellknownApi.endpoints.configuration.initiate(wellknownUrl));
+    if (error || !data) {
+        log.error(`Error fetching wellknown config. Please check the URL: ${wellknownUrl}`);
+    }
+    return {
+        /**
+         * An object containing methods for the creation, and background use, of the authorization URL
+         */
+        authorize: {
+            /**
+             * @method url
+             * @description Creates an authorization URL with the provided options or defaults from the configuration.
+             * @param {GetAuthorizationUrlOptions} options - Optional parameters to customize the authorization URL.
+             * @returns {Promise<string | GenericError>} - Returns a promise that resolves to the authorization URL or an error.
+             */
+            url: async (options) => {
+                const optionsWithDefaults = {
+                    clientId: config.clientId,
+                    redirectUri: config.redirectUri,
+                    scope: config.scope || 'openid',
+                    responseType: config.responseType || 'code',
+                    ...options,
+                };
+                const state = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, state);
+                if (!wellknown?.authorization_endpoint) {
+                    return {
+                        error: 'Authorization endpoint not found in wellknown configuration',
+                        type: 'wellknown_error',
+                    };
+                }
+                return createAuthorizeUrl(wellknown.authorization_endpoint, optionsWithDefaults);
+            },
+            /**
+             * @function background - Initiates the authorization process in the background, returning an authorization URL or an error.
+             * @param {GetAuthorizationUrlOptions} options - Optional parameters to customize the authorization URL.
+             * @returns {Promise<AuthorizeErrorResponse | AuthorizeSuccessResponse>} - Returns a promise that resolves to the authorization URL or an error response.
+             */
+            background: async (options) => {
+                const state = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, state);
+                if (!wellknown?.authorization_endpoint) {
+                    return {
+                        error: 'Wellknown missing authorization endpoint',
+                        error_description: 'Authorization endpoint not found in wellknown configuration',
+                        type: 'wellknown_error',
+                    };
+                }
+                const result = await Micro.runPromiseExit(await authorizeµ(wellknown, config, log, store, options));
+                if (exitIsSuccess(result)) {
+                    return result.value;
+                }
+                else if (exitIsFail(result)) {
+                    return result.cause.error;
+                }
+                else {
+                    return {
+                        error: 'Authorization failure',
+                        error_description: result.cause.message,
+                        type: 'auth_error',
+                    };
+                }
+            },
+        },
+        /**
+         * An object containing methods for token management
+         */
+        token: {
+            /**
+             * @method exchange
+             * @description Exchanges an authorization code for tokens using the token endpoint from the wellknown
+             *              configuration and stores them in the configured storage.
+             * @param {string} code - The authorization code received from the authorization server.
+             * @param {string} state - The state parameter from the authorization URL creation.
+             * @param {Partial<StorageConfig>} options - Optional storage configuration for persisting tokens.
+             * @returns {Promise<OauthTokens | GenericError | TokenExchangeErrorResponse>}
+             */
+            exchange: async (code, state, options) => {
+                const storeState = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, storeState);
+                if (!wellknown?.token_endpoint) {
+                    return {
+                        error: 'Wellknown missing token endpoint',
+                        type: 'wellknown_error',
+                    };
+                }
+                const getTokensµ = buildTokenExchangeµ({
+                    code,
+                    config,
+                    state,
+                    log,
+                    endpoint: wellknown.token_endpoint,
+                    store,
+                    options,
+                }).pipe(Micro.tap(async (tokens) => {
+                    await storageClient.set(tokens);
+                }));
+                const result = await Micro.runPromiseExit(getTokensµ);
+                if (exitIsSuccess(result)) {
+                    return result.value;
+                }
+                else if (exitIsFail(result)) {
+                    return result.cause.error;
+                }
+                else {
+                    return {
+                        error: 'Token Exchange failure',
+                        message: result.cause.message,
+                        type: 'exchange_error',
+                    };
+                }
+            },
+            /**
+             * @method get
+             * @description Retrieves the current OAuth tokens from storage, or auto-renew if backgroundRenew is true.
+             * @param {GetTokensOptions} param - An object containing options for the token retrieval.
+             * @returns {Promise<OauthTokens | TokenExchangeErrorResponse | AuthorizationError | GenericError>}
+             */
+            get: async (options) => {
+                const { authorizeOptions, forceRenew, backgroundRenew, storageOptions } = options || {};
+                const state = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, state);
+                if (!wellknown?.authorization_endpoint) {
+                    return {
+                        error: 'Wellknown missing authorization endpoint',
+                        type: 'wellknown_error',
+                    };
+                }
+                const tokens = await storageClient.get();
+                // If there's an error, return early as there is an unknown issue from getting tokens
+                if (tokens && 'error' in tokens) {
+                    return {
+                        error: 'Error occurred while retrieving tokens',
+                        message: 'Please log the user out completely and try again',
+                        type: 'state_error',
+                    };
+                }
+                // If forceRenew is false, we have tokens, and they are NOT expired, return them
+                if (!forceRenew &&
+                    tokens &&
+                    !isExpiryWithinThreshold(oauthThreshold, tokens.expiryTimestamp)) {
+                    return tokens;
+                }
+                // If backgroundRenew and forceRenew is false return token, regardless of expiration, or the "no tokens found" error
+                if (!backgroundRenew && !forceRenew) {
+                    return (tokens || {
+                        error: 'No tokens found',
+                        type: 'state_error',
+                    });
+                }
+                // If we're here, backgroundRenew is true and we have no tokens, expired tokens or forceRenew is true
+                const attemptAuthorizeGetTokensµ = authorizeµ(wellknown, config, log, store, authorizeOptions).pipe(Micro.flatMap((response) => {
+                    return buildTokenExchangeµ({
+                        code: response.code,
+                        config,
+                        log,
+                        state: response.state,
+                        endpoint: wellknown.token_endpoint,
+                        store,
+                        options: storageOptions,
+                    });
+                }), Micro.tap(async (tokens) => {
+                    await store.dispatch(oidcApi.endpoints.revoke.initiate({
+                        accessToken: tokens.accessToken,
+                        clientId: config.clientId,
+                        endpoint: wellknown.revocation_endpoint,
+                    }));
+                    await storageClient.remove();
+                    await storageClient.set(tokens);
+                }));
+                const result = await Micro.runPromiseExit(attemptAuthorizeGetTokensµ);
+                if (exitIsSuccess(result)) {
+                    return result.value;
+                }
+                else if (exitIsFail(result)) {
+                    return result.cause.error;
+                }
+                else {
+                    return {
+                        error: 'Background token renewal failed',
+                        error_description: result.cause.message,
+                        type: 'auth_error',
+                    };
+                }
+            },
+            /**
+             * @method revoke
+             * @description Revokes an access token using the revocation endpoint from the wellknown configuration.
+             *              It requires an access token stored in the configured storage.
+             * @returns {Promise<GenericError | RevokeSuccessResult | RevokeErrorResult>} - Returns a promise that resolves to the revoke response or an error response.
+             */
+            revoke: async () => {
+                const state = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, state);
+                if (!wellknown?.revocation_endpoint) {
+                    return {
+                        error: 'Wellknown missing revocation endpoint',
+                        type: 'wellknown_error',
+                    };
+                }
+                const tokens = await storageClient.get();
+                if (!tokens || !('accessToken' in tokens)) {
+                    return {
+                        error: 'No access token found',
+                        type: 'state_error',
+                    };
+                }
+                const revokeµ = Micro.promise(() => store.dispatch(oidcApi.endpoints.revoke.initiate({
+                    accessToken: tokens.accessToken,
+                    clientId: config.clientId,
+                    endpoint: wellknown.revocation_endpoint,
+                }))).pipe(Micro.map(({ error }) => {
+                    if (error) {
+                        let message = 'An error occurred while revoking the token';
+                        let status = 'unknown';
+                        if ('message' in error && error.message) {
+                            message = error.message;
+                        }
+                        if ('status' in error) {
+                            status = error.status;
+                        }
+                        return {
+                            error: 'Token revocation failure',
+                            message,
+                            type: 'auth_error',
+                            status,
+                        };
+                    }
+                    return null;
+                }), 
+                // Delete local token and return combined results
+                Micro.flatMap((revokeResponse) => Micro.promise(() => storageClient.remove()).pipe(Micro.flatMap((deleteResponse) => {
+                    const isInnerRequestError = (revokeResponse && 'error' in revokeResponse) ||
+                        (deleteResponse && 'error' in deleteResponse);
+                    if (isInnerRequestError) {
+                        const result = {
+                            error: 'Inner request error',
+                            revokeResponse,
+                            deleteResponse,
+                        };
+                        return Micro.fail(result);
+                    }
+                    else {
+                        const result = {
+                            revokeResponse: null,
+                            deleteResponse: null,
+                        };
+                        return Micro.succeed(result);
+                    }
+                }))));
+                const result = await Micro.runPromiseExit(revokeµ);
+                if (exitIsSuccess(result)) {
+                    return result.value;
+                }
+                else if (exitIsFail(result)) {
+                    return result.cause.error;
+                }
+                else {
+                    return {
+                        error: 'Token revocation failure',
+                        message: result.cause.message,
+                        type: 'auth_error',
+                    };
+                }
+            },
+        },
+        /**
+         * An object containing methods for user info retrieval and logout
+         */
+        user: {
+            /**
+             * @method info
+             * @description Retrieves user information using the userinfo endpoint from the wellknown configuration.
+             *              It requires an access token stored in the configured storage.
+             * @returns {Promise<GenericError | UserInfoResponse>} - Returns a promise that resolves to user information or an error response.
+             */
+            info: async () => {
+                const state = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, state);
+                if (!wellknown?.userinfo_endpoint) {
+                    return {
+                        error: 'Wellknown missing userinfo endpoint',
+                        type: 'wellknown_error',
+                    };
+                }
+                const tokens = await storageClient.get();
+                if (!tokens || !('accessToken' in tokens)) {
+                    return {
+                        error: 'No access token found',
+                        type: 'auth_error',
+                    };
+                }
+                const info = Micro.promise(() => store.dispatch(oidcApi.endpoints.userInfo.initiate({
+                    accessToken: tokens.accessToken,
+                    endpoint: wellknown.userinfo_endpoint,
+                }))).pipe(Micro.flatMap(({ data, error }) => {
+                    if (error) {
+                        let message = 'An error occurred while fetching user info';
+                        let status = 'unknown';
+                        if ('message' in error && error.message) {
+                            message = error.message;
+                        }
+                        if ('status' in error) {
+                            status = error.status;
+                        }
+                        return Micro.fail({
+                            error: 'User Info retrieval failure',
+                            message,
+                            type: 'auth_error',
+                            status,
+                        });
+                    }
+                    return Micro.succeed(data);
+                }));
+                const result = await Micro.runPromiseExit(info);
+                if (exitIsSuccess(result)) {
+                    return result.value;
+                }
+                else if (exitIsFail(result)) {
+                    return result.cause.error;
+                }
+                else {
+                    return {
+                        error: 'User Info retrieval failure',
+                        message: result.cause.message,
+                        type: 'auth_error',
+                    };
+                }
+            },
+            /**
+             * @method logout
+             * @description Logs out the user by revoking tokens and clearing the storage.
+             *              It uses the end session endpoint from the wellknown configuration.
+             * @returns {Promise<GenericError | LogoutSuccessResult | LogoutErrorResult>} - Returns a promise that resolves to the logout response or an error.
+             */
+            logout: async () => {
+                const state = store.getState();
+                const wellknown = wellknownSelector(wellknownUrl, state);
+                if (!wellknown?.end_session_endpoint) {
+                    return {
+                        error: 'Wellknown missing end session endpoint',
+                        type: 'wellknown_error',
+                    };
+                }
+                if (!wellknown?.revocation_endpoint) {
+                    return {
+                        error: 'Wellknown missing revocation endpoint',
+                        type: 'wellknown_error',
+                    };
+                }
+                const tokens = await storageClient.get();
+                if (!tokens) {
+                    return createTokenError('no_tokens');
+                }
+                if (!('accessToken' in tokens)) {
+                    return createTokenError('no_access_token');
+                }
+                if (!('idToken' in tokens)) {
+                    return createTokenError('no_id_token');
+                }
+                const result = await Micro.runPromiseExit(logoutµ({ tokens, config, wellknown, store, storageClient }));
+                if (exitIsSuccess(result)) {
+                    return result.value;
+                }
+                else if (exitIsFail(result)) {
+                    return result.cause.error;
+                }
+                else {
+                    return {
+                        error: 'Logout_Failure',
+                        message: result.cause.message,
+                        type: 'auth_error',
+                    };
+                }
+            },
+        },
+    };
+}
+//# sourceMappingURL=client.store.js.map

package/dist/src/lib/client.store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.store.js","sourceRoot":"","sources":["../../../src/lib/client.store.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,OAAO,EAAE,MAAM,IAAI,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AACzD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAEzD,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,uBAAuB,CAAC;AAC5D,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAC9E,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AACxC,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAkBrE,OAAO,EAAE,uBAAuB,EAAE,MAAM,kBAAkB,CAAC;AAC3D,OAAO,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAC;AAE9C;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,KAAK,UAAU,IAAI,CAA+C,EACvE,MAAM,EACN,iBAAiB,EACjB,MAAM,EACN,OAAO,GASR;IACC,MAAM,GAAG,GAAG,QAAQ,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,IAAI,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IAClF,MAAM,cAAc,GAAG,MAAM,CAAC,cAAc,IAAI,EAAE,GAAG,IAAI,CAAC,CAAC,wBAAwB;IACnF,MAAM,aAAa,GAAG,aAAa,CAAc;QAC/C,IAAI,EAAE,OAAO,EAAE,IAAI,IAAI,cAAc;QACrC,IAAI,EAAE,OAAO,EAAE,IAAI,IAAI,MAAM,CAAC,QAAQ;QACtC,MAAM,EAAE,OAAO,EAAE,MAAM,IAAI,KAAK;QAChC,GAAG,OAAO;KACM,CAAC,CAAC;IACpB,MAAM,KAAK,GAAG,iBAAiB,CAAC,EAAE,iBAAiB,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;IAEpE,IAAI,CAAC,MAAM,EAAE,YAAY,EAAE,SAAS,EAAE,CAAC;QACrC,OAAO;YACL,KAAK,EAAE,qDAAqD;YAC5D,IAAI,EAAE,gBAAgB;SACvB,CAAC;IACJ,CAAC;IACD,IAAI,CAAC,MAAM,EAAE,QAAQ,EAAE,CAAC;QACtB,OAAO;YACL,KAAK,EAAE,sBAAsB;YAC7B,IAAI,EAAE,gBAAgB;SACvB,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,MAAM,CAAC,YAAY,CAAC,SAAS,CAAC;IACnD,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,QAAQ,CAC1C,YAAY,CAAC,SAAS,CAAC,aAAa,CAAC,QAAQ,CAAC,YAAY,CAAC,CAC5D,CAAC;IAEF,IAAI,KAAK,IAAI,CAAC,IAAI,EAAE,CAAC;QACnB,GAAG,CAAC,KAAK,CAAC,0DAA0D,YAAY,EAAE,CAAC,CAAC;IACtF,CAAC;IAED,OAAO;QACL;;WAEG;QACH,SAAS,EAAE;YACT;;;;;eAKG;YACH,GAAG,EAAE,KAAK,EAAE,OAAoC,EAAkC,EAAE;gBAClF,MAAM,mBAAmB,GAAG;oBAC1B,QAAQ,EAAE,MAAM,CAAC,QAAQ;oBACzB,WAAW,EAAE,MAAM,CAAC,WAAW;oBAC/B,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,QAAQ;oBAC/B,YAAY,EAAE,MAAM,CAAC,YAAY,IAAI,MAAM;oBAC3C,GAAG,OAAO;iBACX,CAAC;gBAEF,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBAC/B,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;gBAEzD,IAAI,CAAC,SAAS,EAAE,sBAAsB,EAAE,CAAC;oBACvC,OAAO;wBACL,KAAK,EAAE,6DAA6D;wBACpE,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,OAAO,kBAAkB,CAAC,SAAS,CAAC,sBAAsB,EAAE,mBAAmB,CAAC,CAAC;YACnF,CAAC;YAED;;;;eAIG;YACH,UAAU,EAAE,KAAK,EACf,OAAoC,EACgB,EAAE;gBACtD,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBAC/B,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;gBAEzD,IAAI,CAAC,SAAS,EAAE,sBAAsB,EAAE,CAAC;oBACvC,OAAO;wBACL,KAAK,EAAE,0CAA0C;wBACjD,iBAAiB,EAAE,6DAA6D;wBAChF,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CACvC,MAAM,UAAU,CAAC,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,OAAO,CAAC,CACzD,CAAC;gBAEF,IAAI,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,OAAO,MAAM,CAAC,KAAK,CAAC;gBACtB,CAAC;qBAAM,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,OAAO,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC5B,CAAC;qBAAM,CAAC;oBACN,OAAO;wBACL,KAAK,EAAE,uBAAuB;wBAC9B,iBAAiB,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;wBACvC,IAAI,EAAE,YAAY;qBACnB,CAAC;gBACJ,CAAC;YACH,CAAC;SACF;QACD;;WAEG;QACH,KAAK,EAAE;YACL;;;;;;;;eAQG;YACH,QAAQ,EAAE,KAAK,EACb,IAAY,EACZ,KAAa,EACb,OAAgC,EACkC,EAAE;gBACpE,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBACpC,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,UAAU,CAAC,CAAC;gBAE9D,IAAI,CAAC,SAAS,EAAE,cAAc,EAAE,CAAC;oBAC/B,OAAO;wBACL,KAAK,EAAE,kCAAkC;wBACzC,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,MAAM,UAAU,GAAG,mBAAmB,CAAC;oBACrC,IAAI;oBACJ,MAAM;oBACN,KAAK;oBACL,GAAG;oBACH,QAAQ,EAAE,SAAS,CAAC,cAAc;oBAClC,KAAK;oBACL,OAAO;iBACR,CAAC,CAAC,IAAI,CACL,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE;oBACzB,MAAM,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBAClC,CAAC,CAAC,CACH,CAAC;gBAEF,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;gBAEtD,IAAI,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,OAAO,MAAM,CAAC,KAAK,CAAC;gBACtB,CAAC;qBAAM,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,OAAO,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC5B,CAAC;qBAAM,CAAC;oBACN,OAAO;wBACL,KAAK,EAAE,wBAAwB;wBAC/B,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;wBAC7B,IAAI,EAAE,gBAAgB;qBACvB,CAAC;gBACJ,CAAC;YACH,CAAC;YAED;;;;;eAKG;YACH,GAAG,EAAE,KAAK,EACR,OAA0B,EAC6D,EAAE;gBACzF,MAAM,EAAE,gBAAgB,EAAE,UAAU,EAAE,eAAe,EAAE,cAAc,EAAE,GAAG,OAAO,IAAI,EAAE,CAAC;gBACxF,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBAC/B,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;gBAEzD,IAAI,CAAC,SAAS,EAAE,sBAAsB,EAAE,CAAC;oBACvC,OAAO;wBACL,KAAK,EAAE,0CAA0C;wBACjD,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,CAAC;gBAEzC,qFAAqF;gBACrF,IAAI,MAAM,IAAI,OAAO,IAAI,MAAM,EAAE,CAAC;oBAChC,OAAO;wBACL,KAAK,EAAE,wCAAwC;wBAC/C,OAAO,EAAE,kDAAkD;wBAC3D,IAAI,EAAE,aAAa;qBACpB,CAAC;gBACJ,CAAC;gBAED,gFAAgF;gBAChF,IACE,CAAC,UAAU;oBACX,MAAM;oBACN,CAAC,uBAAuB,CAAC,cAAc,EAAE,MAAM,CAAC,eAAe,CAAC,EAChE,CAAC;oBACD,OAAO,MAAM,CAAC;gBAChB,CAAC;gBAED,oHAAoH;gBACpH,IAAI,CAAC,eAAe,IAAI,CAAC,UAAU,EAAE,CAAC;oBACpC,OAAO,CACL,MAAM,IAAI;wBACR,KAAK,EAAE,iBAAiB;wBACxB,IAAI,EAAE,aAAa;qBACpB,CACF,CAAC;gBACJ,CAAC;gBAED,qGAAqG;gBACrG,MAAM,0BAA0B,GAAG,UAAU,CAC3C,SAAS,EACT,MAAM,EACN,GAAG,EACH,KAAK,EACL,gBAAgB,CACjB,CAAC,IAAI,CACJ,KAAK,CAAC,OAAO,CAAC,CAAC,QAAQ,EAA+D,EAAE;oBACtF,OAAO,mBAAmB,CAAC;wBACzB,IAAI,EAAE,QAAQ,CAAC,IAAI;wBACnB,MAAM;wBACN,GAAG;wBACH,KAAK,EAAE,QAAQ,CAAC,KAAK;wBACrB,QAAQ,EAAE,SAAS,CAAC,cAAc;wBAClC,KAAK;wBACL,OAAO,EAAE,cAAc;qBACxB,CAAC,CAAC;gBACL,CAAC,CAAC,EACF,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE;oBACzB,MAAM,KAAK,CAAC,QAAQ,CAClB,OAAO,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC;wBAChC,WAAW,EAAE,MAAM,CAAC,WAAW;wBAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ;wBACzB,QAAQ,EAAE,SAAS,CAAC,mBAAmB;qBACxC,CAAC,CACH,CAAC;oBACF,MAAM,aAAa,CAAC,MAAM,EAAE,CAAC;oBAC7B,MAAM,aAAa,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBAClC,CAAC,CAAC,CACH,CAAC;gBAEF,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CAAC,0BAA0B,CAAC,CAAC;gBAEtE,IAAI,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,OAAO,MAAM,CAAC,KAAK,CAAC;gBACtB,CAAC;qBAAM,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,OAAO,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC5B,CAAC;qBAAM,CAAC;oBACN,OAAO;wBACL,KAAK,EAAE,iCAAiC;wBACxC,iBAAiB,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;wBACvC,IAAI,EAAE,YAAY;qBACnB,CAAC;gBACJ,CAAC;YACH,CAAC;YACD;;;;;eAKG;YACH,MAAM,EAAE,KAAK,IAAqE,EAAE;gBAClF,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBAC/B,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;gBAEzD,IAAI,CAAC,SAAS,EAAE,mBAAmB,EAAE,CAAC;oBACpC,OAAO;wBACL,KAAK,EAAE,uCAAuC;wBAC9C,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,CAAC;gBAEzC,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,aAAa,IAAI,MAAM,CAAC,EAAE,CAAC;oBAC1C,OAAO;wBACL,KAAK,EAAE,uBAAuB;wBAC9B,IAAI,EAAE,aAAa;qBACpB,CAAC;gBACJ,CAAC;gBAED,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,CACjC,KAAK,CAAC,QAAQ,CACZ,OAAO,CAAC,SAAS,CAAC,MAAM,CAAC,QAAQ,CAAC;oBAChC,WAAW,EAAE,MAAM,CAAC,WAAW;oBAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ;oBACzB,QAAQ,EAAE,SAAS,CAAC,mBAAmB;iBACxC,CAAC,CACH,CACF,CAAC,IAAI,CACJ,KAAK,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE;oBACtB,IAAI,KAAK,EAAE,CAAC;wBACV,IAAI,OAAO,GAAG,4CAA4C,CAAC;wBAC3D,IAAI,MAAM,GAAoB,SAAS,CAAC;wBACxC,IAAI,SAAS,IAAI,KAAK,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;4BACxC,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC;wBAC1B,CAAC;wBACD,IAAI,QAAQ,IAAI,KAAK,EAAE,CAAC;4BACtB,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC;wBACxB,CAAC;wBACD,OAAO;4BACL,KAAK,EAAE,0BAA0B;4BACjC,OAAO;4BACP,IAAI,EAAE,YAAY;4BAClB,MAAM;yBACS,CAAC;oBACpB,CAAC;oBAED,OAAO,IAAI,CAAC;gBACd,CAAC,CAAC;gBACF,iDAAiD;gBACjD,KAAK,CAAC,OAAO,CAAC,CAAC,cAAc,EAAE,EAAE,CAC/B,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,aAAa,CAAC,MAAM,EAAE,CAAC,CAAC,IAAI,CAC9C,KAAK,CAAC,OAAO,CAAC,CAAC,cAAc,EAAE,EAAE;oBAC/B,MAAM,mBAAmB,GACvB,CAAC,cAAc,IAAI,OAAO,IAAI,cAAc,CAAC;wBAC7C,CAAC,cAAc,IAAI,OAAO,IAAI,cAAc,CAAC,CAAC;oBAEhD,IAAI,mBAAmB,EAAE,CAAC;wBACxB,MAAM,MAAM,GAAsB;4BAChC,KAAK,EAAE,qBAAqB;4BAC5B,cAAc;4BACd,cAAc;yBACf,CAAC;wBACF,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBAC5B,CAAC;yBAAM,CAAC;wBACN,MAAM,MAAM,GAAwB;4BAClC,cAAc,EAAE,IAAI;4BACpB,cAAc,EAAE,IAAI;yBACrB,CAAC;wBACF,OAAO,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;oBAC/B,CAAC;gBACH,CAAC,CAAC,CACH,CACF,CACF,CAAC;gBAEF,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;gBAEnD,IAAI,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,OAAO,MAAM,CAAC,KAAK,CAAC;gBACtB,CAAC;qBAAM,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,OAAO,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC5B,CAAC;qBAAM,CAAC;oBACN,OAAO;wBACL,KAAK,EAAE,0BAA0B;wBACjC,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;wBAC7B,IAAI,EAAE,YAAY;qBACnB,CAAC;gBACJ,CAAC;YACH,CAAC;SACF;QAED;;WAEG;QACH,IAAI,EAAE;YACJ;;;;;eAKG;YACH,IAAI,EAAE,KAAK,IAA8C,EAAE;gBACzD,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBAC/B,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;gBAEzD,IAAI,CAAC,SAAS,EAAE,iBAAiB,EAAE,CAAC;oBAClC,OAAO;wBACL,KAAK,EAAE,qCAAqC;wBAC5C,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,CAAC;gBAEzC,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,aAAa,IAAI,MAAM,CAAC,EAAE,CAAC;oBAC1C,OAAO;wBACL,KAAK,EAAE,uBAAuB;wBAC9B,IAAI,EAAE,YAAY;qBACnB,CAAC;gBACJ,CAAC;gBAED,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,CAC9B,KAAK,CAAC,QAAQ,CACZ,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC;oBAClC,WAAW,EAAE,MAAM,CAAC,WAAW;oBAC/B,QAAQ,EAAE,SAAS,CAAC,iBAAiB;iBACtC,CAAC,CACH,CACF,CAAC,IAAI,CACJ,KAAK,CAAC,OAAO,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,EAAE;oBAChC,IAAI,KAAK,EAAE,CAAC;wBACV,IAAI,OAAO,GAAG,4CAA4C,CAAC;wBAC3D,IAAI,MAAM,GAAoB,SAAS,CAAC;wBACxC,IAAI,SAAS,IAAI,KAAK,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;4BACxC,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC;wBAC1B,CAAC;wBACD,IAAI,QAAQ,IAAI,KAAK,EAAE,CAAC;4BACtB,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC;wBACxB,CAAC;wBACD,OAAO,KAAK,CAAC,IAAI,CAAC;4BAChB,KAAK,EAAE,6BAA6B;4BACpC,OAAO;4BACP,IAAI,EAAE,YAAY;4BAClB,MAAM;yBACE,CAAC,CAAC;oBACd,CAAC;oBACD,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;gBAC7B,CAAC,CAAC,CACH,CAAC;gBAEF,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC;gBAEhD,IAAI,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,OAAO,MAAM,CAAC,KAAK,CAAC;gBACtB,CAAC;qBAAM,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,OAAO,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC5B,CAAC;qBAAM,CAAC;oBACN,OAAO;wBACL,KAAK,EAAE,6BAA6B;wBACpC,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;wBAC7B,IAAI,EAAE,YAAY;qBACnB,CAAC;gBACJ,CAAC;YACH,CAAC;YAED;;;;;eAKG;YACH,MAAM,EAAE,KAAK,IAAqE,EAAE;gBAClF,MAAM,KAAK,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;gBAC/B,MAAM,SAAS,GAAG,iBAAiB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;gBAEzD,IAAI,CAAC,SAAS,EAAE,oBAAoB,EAAE,CAAC;oBACrC,OAAO;wBACL,KAAK,EAAE,wCAAwC;wBAC/C,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,IAAI,CAAC,SAAS,EAAE,mBAAmB,EAAE,CAAC;oBACpC,OAAO;wBACL,KAAK,EAAE,uCAAuC;wBAC9C,IAAI,EAAE,iBAAiB;qBACxB,CAAC;gBACJ,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,GAAG,EAAE,CAAC;gBAEzC,IAAI,CAAC,MAAM,EAAE,CAAC;oBACZ,OAAO,gBAAgB,CAAC,WAAW,CAAC,CAAC;gBACvC,CAAC;gBAED,IAAI,CAAC,CAAC,aAAa,IAAI,MAAM,CAAC,EAAE,CAAC;oBAC/B,OAAO,gBAAgB,CAAC,iBAAiB,CAAC,CAAC;gBAC7C,CAAC;gBAED,IAAI,CAAC,CAAC,SAAS,IAAI,MAAM,CAAC,EAAE,CAAC;oBAC3B,OAAO,gBAAgB,CAAC,aAAa,CAAC,CAAC;gBACzC,CAAC;gBAED,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CACvC,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,KAAK,EAAE,aAAa,EAAE,CAAC,CAC7D,CAAC;gBAEF,IAAI,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,OAAO,MAAM,CAAC,KAAK,CAAC;gBACtB,CAAC;qBAAM,IAAI,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,OAAO,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC;gBAC5B,CAAC;qBAAM,CAAC;oBACN,OAAO;wBACL,KAAK,EAAE,gBAAgB;wBACvB,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO;wBAC7B,IAAI,EAAE,YAAY;qBACnB,CAAC;gBACJ,CAAC;YACH,CAAC;SACF;KACF,CAAC;AACJ,CAAC"}

package/dist/src/lib/client.store.utils.d.ts

@@ -0,0 +1,104 @@
+import type { ActionTypes, RequestMiddleware } from '@forgerock/sdk-request-middleware';
+import { logger as loggerFn } from '@forgerock/sdk-logger';
+import { type SerializedError } from '@reduxjs/toolkit';
+import type { GenericError } from '@forgerock/sdk-types';
+import type { FetchBaseQueryError } from '@reduxjs/toolkit/query';
+/**
+ * @function createClientStore
+ * @description Creates a Redux store configured with OIDC and well-known APIs.
+ * @param param - Configuration options for the client store.
+ * @param {RequestMiddleware} param.requestMiddleware - An array of request middleware functions to be applied to the store.
+ * @param {ReturnType<typeof loggerFn>} param.logger - An optional logger function for logging messages.
+ * @returns { ReturnType<typeof configureStore> } - Returns a configured Redux store with OIDC and well-known APIs.
+ */
+export declare function createClientStore<ActionType extends ActionTypes>({ requestMiddleware, logger, }: {
+    requestMiddleware?: RequestMiddleware<ActionType, unknown>[];
+    logger?: ReturnType<typeof loggerFn>;
+}): import("@reduxjs/toolkit").EnhancedStore<{
+    oidc: import("@reduxjs/toolkit/query").CombinedState<{
+        authorizeFetch: import("@reduxjs/toolkit/query").MutationDefinition<{
+            url: string;
+        }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./authorize.request.types.js").AuthorizeSuccessResponse, "oidc", unknown>;
+        authorizeIframe: import("@reduxjs/toolkit/query").MutationDefinition<{
+            url: string;
+        }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./authorize.request.types.js").AuthorizationSuccess, "oidc", unknown>;
+        endSession: import("@reduxjs/toolkit/query").MutationDefinition<{
+            idToken: string;
+            endpoint: string;
+        }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, null, "oidc", unknown>;
+        exchange: import("@reduxjs/toolkit/query").MutationDefinition<{
+            code: string;
+            config: import("./config.types.js").OidcConfig;
+            endpoint: string;
+            verifier?: string;
+        }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./exchange.types.js").TokenExchangeResponse, "oidc", unknown>;
+        revoke: import("@reduxjs/toolkit/query").MutationDefinition<{
+            accessToken: string;
+            clientId?: string;
+            endpoint: string;
+        }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, object, "oidc", unknown>;
+        userInfo: import("@reduxjs/toolkit/query").MutationDefinition<{
+            accessToken: string;
+            endpoint: string;
+        }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./client.types.js").UserInfoResponse, "oidc", unknown>;
+    }, never, "oidc">;
+    wellknown: import("@reduxjs/toolkit/query").CombinedState<{
+        configuration: import("@reduxjs/toolkit/query").QueryDefinition<string, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("@forgerock/sdk-types").WellKnownResponse, "wellknown", unknown>;
+    }, never, "wellknown">;
+}, import("@reduxjs/toolkit").UnknownAction, import("@reduxjs/toolkit").Tuple<[import("@reduxjs/toolkit").StoreEnhancer<{
+    dispatch: import("@reduxjs/toolkit").ThunkDispatch<{
+        oidc: import("@reduxjs/toolkit/query").CombinedState<{
+            authorizeFetch: import("@reduxjs/toolkit/query").MutationDefinition<{
+                url: string;
+            }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./authorize.request.types.js").AuthorizeSuccessResponse, "oidc", unknown>;
+            authorizeIframe: import("@reduxjs/toolkit/query").MutationDefinition<{
+                url: string;
+            }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./authorize.request.types.js").AuthorizationSuccess, "oidc", unknown>;
+            endSession: import("@reduxjs/toolkit/query").MutationDefinition<{
+                idToken: string;
+                endpoint: string;
+            }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, null, "oidc", unknown>;
+            exchange: import("@reduxjs/toolkit/query").MutationDefinition<{
+                code: string;
+                config: import("./config.types.js").OidcConfig;
+                endpoint: string;
+                verifier?: string;
+            }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./exchange.types.js").TokenExchangeResponse, "oidc", unknown>;
+            revoke: import("@reduxjs/toolkit/query").MutationDefinition<{
+                accessToken: string;
+                clientId?: string;
+                endpoint: string;
+            }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, object, "oidc", unknown>;
+            userInfo: import("@reduxjs/toolkit/query").MutationDefinition<{
+                accessToken: string;
+                endpoint: string;
+            }, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("./client.types.js").UserInfoResponse, "oidc", unknown>;
+        }, never, "oidc">;
+        wellknown: import("@reduxjs/toolkit/query").CombinedState<{
+            configuration: import("@reduxjs/toolkit/query").QueryDefinition<string, import("@reduxjs/toolkit/query").BaseQueryFn<string | import("@reduxjs/toolkit/query").FetchArgs, unknown, FetchBaseQueryError, {}, import("@reduxjs/toolkit/query").FetchBaseQueryMeta>, never, import("@forgerock/sdk-types").WellKnownResponse, "wellknown", unknown>;
+        }, never, "wellknown">;
+    }, {
+        /**
+         * This becomes the `api.extra` argument, and will be passed into the
+         * customer query wrapper for `baseQuery`
+         */
+        requestMiddleware: RequestMiddleware<ActionType, unknown>[] | undefined;
+        logger: {
+            changeLevel: (level: import("@forgerock/sdk-logger").LogLevel) => void;
+            error: (...args: import("@forgerock/sdk-logger").LogMessage[]) => void;
+            warn: (...args: import("@forgerock/sdk-logger").LogMessage[]) => void;
+            info: (...args: import("@forgerock/sdk-logger").LogMessage[]) => void;
+            debug: (...args: import("@forgerock/sdk-logger").LogMessage[]) => void;
+        } | undefined;
+    }, import("@reduxjs/toolkit").UnknownAction>;
+}>, import("@reduxjs/toolkit").StoreEnhancer]>>;
+/**
+ * @function createLogoutError
+ * @description Creates a logout error object based on the provided data and error.
+ * @param  {object | null | undefined} data - The data returned from the logout API call.
+ * @param {FetchBaseQueryError | SerializedError} error - An optional error object that may contain details about the error that occurred during the logout process.
+ * @returns {null | GenericError} - Returns a `GenericError` object if an error occurred, or `null` if no error is present.
+ */
+export declare function createLogoutError(data: object | null | undefined, error?: FetchBaseQueryError | SerializedError): null | GenericError;
+export declare function createTokenError(type: 'no_tokens' | 'no_access_token' | 'no_id_token'): GenericError;
+//# sourceMappingURL=client.store.utils.d.ts.map

package/dist/src/lib/client.store.utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.store.utils.d.ts","sourceRoot":"","sources":["../../../src/lib/client.store.utils.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAAE,WAAW,EAAE,iBAAiB,EAAE,MAAM,mCAAmC,CAAC;AACxF,OAAO,EAAE,MAAM,IAAI,QAAQ,EAAE,MAAM,uBAAuB,CAAC;AAE3D,OAAO,EAAkB,KAAK,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAIxE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACzD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAElE;;;;;;;GAOG;AACH,wBAAgB,iBAAiB,CAAC,UAAU,SAAS,WAAW,EAAE,EAChE,iBAAiB,EACjB,MAAM,GACP,EAAE;IACD,iBAAiB,CAAC,EAAE,iBAAiB,CAAC,UAAU,EAAE,OAAO,CAAC,EAAE,CAAC;IAC7D,MAAM,CAAC,EAAE,UAAU,CAAC,OAAO,QAAQ,CAAC,CAAC;CACtC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;QAUW;;;WAGG;;;;oBArCM,GAAG;mBAAwC,GAAG;mBAChD,GAAE;oBAEpB,GAAG;;;gDA2CH;AAED;;;;;;GAMG;AACH,wBAAgB,iBAAiB,CAC/B,IAAI,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EAC/B,KAAK,CAAC,EAAE,mBAAmB,GAAG,eAAe,GAC5C,IAAI,GAAG,YAAY,CAkBrB;AAED,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,WAAW,GAAG,iBAAiB,GAAG,aAAa,gBA8BrF"}

package/dist/src/lib/client.store.utils.js

@@ -0,0 +1,92 @@
+import { configureStore } from '@reduxjs/toolkit';
+import { oidcApi } from './oidc.api.js';
+import { wellknownApi } from './wellknown.api.js';
+/**
+ * @function createClientStore
+ * @description Creates a Redux store configured with OIDC and well-known APIs.
+ * @param param - Configuration options for the client store.
+ * @param {RequestMiddleware} param.requestMiddleware - An array of request middleware functions to be applied to the store.
+ * @param {ReturnType<typeof loggerFn>} param.logger - An optional logger function for logging messages.
+ * @returns { ReturnType<typeof configureStore> } - Returns a configured Redux store with OIDC and well-known APIs.
+ */
+export function createClientStore({ requestMiddleware, logger, }) {
+    return configureStore({
+        reducer: {
+            [oidcApi.reducerPath]: oidcApi.reducer,
+            [wellknownApi.reducerPath]: wellknownApi.reducer,
+        },
+        middleware: (getDefaultMiddleware) => getDefaultMiddleware({
+            thunk: {
+                extraArgument: {
+                    /**
+                     * This becomes the `api.extra` argument, and will be passed into the
+                     * customer query wrapper for `baseQuery`
+                     */
+                    requestMiddleware,
+                    logger,
+                },
+            },
+        })
+            .concat(wellknownApi.middleware)
+            .concat(oidcApi.middleware),
+    });
+}
+/**
+ * @function createLogoutError
+ * @description Creates a logout error object based on the provided data and error.
+ * @param  {object | null | undefined} data - The data returned from the logout API call.
+ * @param {FetchBaseQueryError | SerializedError} error - An optional error object that may contain details about the error that occurred during the logout process.
+ * @returns {null | GenericError} - Returns a `GenericError` object if an error occurred, or `null` if no error is present.
+ */
+export function createLogoutError(data, error) {
+    if (error) {
+        let message = 'An error occurred while ending the session';
+        let status = 'unknown';
+        if ('message' in error && error.message) {
+            message = error.message;
+        }
+        if ('status' in error) {
+            status = error.status;
+        }
+        return {
+            error: 'End Session failure',
+            message,
+            type: 'auth_error',
+            status,
+        };
+    }
+    return null;
+}
+export function createTokenError(type) {
+    let error;
+    if (type === 'no_tokens') {
+        error = {
+            error: 'Token_Error',
+            message: 'Required for ending session and revoking access token',
+            type: 'state_error',
+        };
+    }
+    else if (type === 'no_access_token') {
+        error = {
+            error: 'Token_Error',
+            message: 'No access token found in storage; required for revoking access token',
+            type: 'state_error',
+        };
+    }
+    else if (type === 'no_id_token') {
+        error = {
+            error: 'Token_Error',
+            message: 'No ID token found in storage; required for ending session',
+            type: 'state_error',
+        };
+    }
+    else {
+        error = {
+            error: 'Token_Error',
+            message: 'An unknown error occurred while creating the error object',
+            type: 'unknown_error',
+        };
+    }
+    return error;
+}
+//# sourceMappingURL=client.store.utils.js.map