@frontegg/redux-store 6.155.0-alpha.0 → 6.155.0-alpha.2

package/auth/ActivateState/saga.js

@@ -7,13 +7,14 @@ const _excluded = ["callback", "events"],
 import { call, delay, put, select, takeLeading } from 'redux-saga/effects';
 import { api, ContextHolder } from '@frontegg/rest-api';
 import { actions } from '../reducer';
-import { afterAuthNavigation, afterAuthenticationStateUpdate } from '../LoginState/saga';
-import { getMfaRequiredState } from '../LoginState/mfaRequiredState.saga';
+import { afterAuthNavigation } from '../LoginState/saga';
 import { UserVeirifedOriginTypes } from '../interfaces';
 import { ActivateAccountStep } from './interfaces';
 import { TeamStateKeys } from '../TeamState/interfaces';
 import { GTMEventAction, errorHandler, reportGTMEvent } from '../../utils';
 import { isMfaRequired } from '../LoginState/utils';
+import { afterAuthenticationStateUpdate } from '../LoginState/saga.utils';
+import { getMfaRequiredState } from '../LoginState/sagas/mfaRequiredState.saga';
 function* preActivateAccount({
   payload: {
     userId,

package/auth/ApiTokensState/index.d.ts

@@ -45,10 +45,6 @@ declare const reducers: {
             resetPhoneNumberState: import("..").ResetPhoneNumberState;
             ssoState: import("..").SSOState;
             profileState: import("..").ProfileState;
-            /**
-             *  if you see error in matcher that's mean the DispatchAction does not
-             *  contains the same functions in reducers and actions
-             */
             mfaState: import("..").MFAState;
             teamState: import("..").TeamState;
             groupsState: import("..").GroupsState;
@@ -97,10 +93,6 @@ declare const reducers: {
         resetPhoneNumberState: import("..").ResetPhoneNumberState;
         ssoState: import("..").SSOState;
         profileState: import("..").ProfileState;
-        /**
-         *  if you see error in matcher that's mean the DispatchAction does not
-         *  contains the same functions in reducers and actions
-         */
         mfaState: import("..").MFAState;
         teamState: import("..").TeamState;
         groupsState: import("..").GroupsState;

package/auth/LoginState/index.d.ts

@@ -234,4 +234,4 @@ declare type DispatchedActions = {
 };
 export declare type LoginActions = DispatchedActions;
 export { loginState, reducers as loginReducers, actions as loginActions };
-export { getRedirectUrl } from './utils';
+export { getRedirectUrl, getSearchParam } from './utils';

package/auth/LoginState/index.js

@@ -139,4 +139,4 @@ const actions = {
  */
 const Matcher = {};
 export { loginState, reducers as loginReducers, actions as loginActions };
-export { getRedirectUrl } from './utils';
+export { getRedirectUrl, getSearchParam } from './utils';

package/auth/LoginState/interfaces.d.ts

@@ -98,6 +98,11 @@ export declare type IVerifyMFAWebAuthnPayload = WithCallback<WithDeviceId<Omit<I
 export interface IRecoverMFATokenPayload extends WithCallback<IRecoverMFAToken> {
     recaptchaToken?: string;
 }
+/**
+ * Type for action to set the loading state
+ * @param options.loading - true if in loading state
+ * @param options.error - error if in error state
+ */
 export declare type SetLoadingAction = ({ loading, error }: {
     loading?: boolean;
     error?: unknown;

package/auth/LoginState/saga.d.ts

@@ -1,16 +1,6 @@
 import { CallEffect } from 'redux-saga/effects';
-import { ISamlMetadata, IWebAuthnDevices, ILoginResponseV3 } from '@frontegg/rest-api';
+import { ISamlMetadata } from '@frontegg/rest-api';
 import { AuthState } from '../interfaces';
-export declare function afterAuthenticationStateUpdate({ user, tenants, activeTenant }: ILoginResponseV3, additionalUpdate?: Partial<AuthState>): Generator<import("redux-saga/effects").SelectEffect | import("redux-saga/effects").PutEffect<{
-    payload: Partial<AuthState>;
-    type: string;
-}>, void, AuthState>;
-export declare function afterAuthNavigation(): Generator<import("redux-saga/effects").SelectEffect | Promise<unknown> | CallEffect<void>, void, {
-    routes: any;
-    includeQueryParam: any;
-    enforceRedirectToSameSite?: false | undefined;
-    allowedRedirectOrigins?: never[] | undefined;
-} & string>;
 export declare function refreshMetadata(): Generator<import("redux-saga/effects").PutEffect<{
     payload: Partial<AuthState>;
     type: string;
@@ -25,11 +15,7 @@ export declare function loadSSOPublicConfigurationFunction(): Generator<import("
 }>;
 export declare function refreshToken(): Generator<import("redux-saga/effects").SelectEffect | CallEffect<any>, void, AuthState>;
 export declare function refreshTokenForSocialLogins(): Generator<import("redux-saga/effects").SelectEffect | CallEffect<any>, void, AuthState>;
-export declare function shouldShowPromptPasskeys(): Generator<import("redux-saga/effects").SelectEffect | CallEffect<boolean[]> | CallEffect<IWebAuthnDevices> | import("redux-saga/effects").PutEffect<{
-    payload: Partial<import("../..").PasskeysState>;
-    type: string;
-}>, boolean, {
-    publicAuthStrategyPolicy: any;
-} & boolean[] & IWebAuthnDevices>;
 export declare function loginSagas(): Generator<import("redux-saga/effects").ForkEffect<never>, void, unknown>;
+export { afterAuthNavigation } from './sagas/afterAuthNavigation.saga';
+export { mfaWithAuthenticator } from './sagas/mfaWithAuthenticator.saga';
 export declare function loginSagasMock(): Generator<import("redux-saga/effects").ForkEffect<never>, void, unknown>;

package/auth/LoginState/saga.js

@@ -14,35 +14,38 @@ const _excluded = ["callback"],
   _excluded12 = ["callback"],
   _excluded13 = ["callback"],
   _excluded14 = ["callback"],
-  _excluded15 = ["callback"],
-  _excluded16 = ["callback", "deviceId"],
-  _excluded17 = ["callback"],
-  _excluded18 = ["callback"],
-  _excluded19 = ["callback", "deviceId"],
-  _excluded20 = ["callback", "deviceId"],
-  _excluded21 = ["callback", "deviceId"];
+  _excluded15 = ["callback"];
 import { all, call, put, select, takeLeading } from 'redux-saga/effects';
 import { api, AuthStrategyEnum, ContextHolder, fetch, WebAuthnDeviceType } from '@frontegg/rest-api';
 import { actions } from '../reducer';
-import { FRONTEGG_AFTER_AUTH_REDIRECT_URL, HOSTED_LOGIN_VERIFIER_KEY } from '../../constants';
+import { HOSTED_LOGIN_VERIFIER_KEY } from '../../constants';
 import { UserVeirifedOriginTypes } from '../interfaces';
 import { LoginFlow, LoginStep } from './interfaces';
-import { getMfaRequiredState } from './mfaRequiredState.saga';
+import { getMfaRequiredState } from './sagas/mfaRequiredState.saga';
 import { loadAllowSignUps } from '../SignUp/saga';
 import { MFAStep } from '../MfaState/interfaces';
 import { dummyIps, userDemo } from '../dummy';
 import { SamlVendors } from '../SSOState/interfaces';
 import { loadVendorPublicInfo } from '../../vendor/saga';
 import { createRandomString, generateCodeChallenge, getFeatureFlags } from '../../helpers';
-import { base64urlDecode, delay, publicKeyCredentialToJSON } from '../utils';
+import { base64urlDecode, publicKeyCredentialToJSON } from '../utils';
 import { loadPublicAuthStrategiesPolicy } from '../Security/SecurityPolicyState/saga';
-import { getPasskeysVendorPolicy } from '../PasskeysState/helpers';
-import { getPathAndSearchParamsFromUrl, getRedirectUrl, getSearchParam, TENANT_ID_PARAM_KEY, isMfaRequired, isOauthCallbackRoute, isEmailPayload } from './utils';
+import { getSearchParam, TENANT_ID_PARAM_KEY, isMfaRequired, isOauthCallbackRoute, isEmailPayload } from './utils';
 import { errorHandler, GTMEventAction, reportGTMEvent } from '../../utils';
 import { authStrategyLoginStepMap } from './consts';
 import { isEntitlementsDeeplyEqual } from '../Entitlements';
 import { customLoginEnabled, loadCustomLoginRoutes } from '../CustomLoginState/saga';
 import { FronteggNativeModule } from '../../toolkit';
+import { afterAuthenticationStateUpdate, shouldShowPromptPasskeys } from './saga.utils';
+import { afterAuthNavigation, loginWithMfa, preVerifyMFASMSForLogin, verifyMFASMSForLogin, preVerifyMFAWebAuthnForLogin, verifyMFAWebAuthnForLogin, preVerifyMFAEmailCodeForLogin, verifyMFAEmailCodeForLogin } from './sagas';
+
+/******************************************************************
+ ***                                                             ****
+ *** PLEASE DO NOT ADD CODE TO THIS FILE                         ****
+ *** NEW SAGAS - ADD AS A NEW FILE IN THE SAGAS FOLDER           ****
+ *** EXISTING SAGAS - MOVE TO THE SAGAS FOLDER WHEN TOUCHING IT  ****
+ ***                                                             ****
+ *******************************************************************/
 
 /**
  * Prevent unnecessary entitlements reference update inside the user object by
@@ -64,65 +67,6 @@ function* handleUnnecessaryEntitlementsUpdate(updatedUser) {
   }
   return updatedUser;
 }
-export function* afterAuthenticationStateUpdate({
-  user,
-  tenants = [],
-  activeTenant
-}, additionalUpdate = {}) {
-  const {
-    tenantsState: currentTenantsState
-  } = yield select(state => state.auth);
-  yield put(actions.setState(_extends({
-    user,
-    tenantsState: _extends({}, currentTenantsState, {
-      tenants,
-      activeTenant,
-      loading: false
-    })
-  }, additionalUpdate)));
-}
-export function* afterAuthNavigation() {
-  const onRedirectTo = ContextHolder.onRedirectTo;
-  const {
-    routes,
-    includeQueryParam,
-    enforceRedirectToSameSite = false,
-    allowedRedirectOrigins = []
-  } = yield select(state => state.auth);
-  const {
-    loginUrl,
-    logoutUrl,
-    socialLoginCallbackUrl,
-    activateUrl
-  } = routes;
-  let {
-    authenticatedUrl,
-    customLoginAuthenticatedUrl
-  } = routes;
-  if (!customLoginAuthenticatedUrl) {
-    yield call(loadCustomLoginRoutes);
-    customLoginAuthenticatedUrl = yield select(state => {
-      var _state$auth$routes;
-      return (_state$auth$routes = state.auth.routes) == null ? void 0 : _state$auth$routes.customLoginAuthenticatedUrl;
-    });
-  }
-  const afterAuthRedirect = window.localStorage.getItem(FRONTEGG_AFTER_AUTH_REDIRECT_URL);
-  if (afterAuthRedirect && ![loginUrl, logoutUrl, socialLoginCallbackUrl, activateUrl].includes(afterAuthRedirect)) {
-    authenticatedUrl = afterAuthRedirect;
-  }
-  window.localStorage.removeItem(FRONTEGG_AFTER_AUTH_REDIRECT_URL);
-  yield delay(200);
-  put(actions.resetLoginState());
-  const redirectUrl = getRedirectUrl({
-    authenticatedUrl: customLoginAuthenticatedUrl ? getPathAndSearchParamsFromUrl(customLoginAuthenticatedUrl) : authenticatedUrl,
-    includeQueryParam,
-    enforceRedirectToSameSite,
-    allowedRedirectOrigins
-  });
-  onRedirectTo(redirectUrl, {
-    refresh: redirectUrl.startsWith('http')
-  });
-}
 export function* refreshMetadata() {
   let ssoACS;
   try {
@@ -783,30 +727,6 @@ function* passwordlessPreLogin(_ref7) {
     callback == null ? void 0 : callback();
   }
 }
-export function* shouldShowPromptPasskeys() {
-  const {
-    publicAuthStrategyPolicy
-  } = yield select(state => state.auth.securityPolicyState);
-  const {
-    policy
-  } = publicAuthStrategyPolicy;
-  const isPasskeysEnabledByVendor = getPasskeysVendorPolicy(policy);
-  const isLoggedInWithPasskeys = localStorage.getItem('preferred-login-method') === 'Passkeys';
-  const isMarkedDontShowAgainPrompt = localStorage.getItem('dont-show-again-prompt-passkeys') === 'true';
-  const [showPasskeys] = yield call(getFeatureFlags, ['show-passkeys-new']);
-  if (!showPasskeys || !isPasskeysEnabledByVendor || isLoggedInWithPasskeys || isMarkedDontShowAgainPrompt) {
-    return false;
-  } else {
-    const {
-      devices
-    } = yield call(api.auth.getWebAuthnDevices);
-    yield put(actions.setPasskeysState({
-      devices: devices != null ? devices : []
-    }));
-    const numOfDevices = !(devices != null && devices.length) ? 0 : devices.length;
-    return numOfDevices === 0;
-  }
-}
 function* passwordlessPostLogin(_ref8) {
   let {
       payload: {
@@ -1340,82 +1260,6 @@ function* login({
     }));
   }
 }
-function* loginWithMfa({
-  payload: {
-    mfaToken,
-    value,
-    rememberDevice,
-    callback
-  }
-}) {
-  yield put(actions.setLoginState({
-    loading: true
-  }));
-  try {
-    const {
-      user,
-      tenants = [],
-      activeTenant
-    } = yield call(api.auth.loginWithMfaV2, {
-      mfaToken,
-      value,
-      rememberDevice
-    });
-    const {
-      loginState
-    } = yield select(state => state.auth);
-    const step = loginState.flow === LoginFlow.Login ? LoginStep.success : loginState.step;
-    const isAuthenticated = !!user.accessToken;
-    yield call(afterAuthenticationStateUpdate, {
-      user,
-      tenants,
-      activeTenant
-    }, {
-      loginState: {
-        flow: loginState.flow,
-        quickLoginToRegister: loginState.quickLoginToRegister,
-        loading: false,
-        step,
-        error: undefined,
-        tenants
-      },
-      isAuthenticated
-    });
-    if (user.id) {
-      localStorage.setItem('userId', user.id);
-    }
-    yield put(actions.setLoginState({
-      error: undefined,
-      loading: false
-    }));
-    const [securityCenterLoginFlows] = yield call(getFeatureFlags, ['security-center-show-login-flows']);
-    if (loginState.flow === LoginFlow.Login) {
-      if (securityCenterLoginFlows && loginState.isBreachedPassword && !isAuthenticated) {
-        yield put(actions.setLoginState({
-          step: LoginStep.breachedPassword,
-          loading: false
-        }));
-      } else {
-        const shouldShowPrompt = yield call(shouldShowPromptPasskeys);
-        if (shouldShowPrompt) {
-          yield put(actions.setLoginState({
-            step: LoginStep.promptPasskeys,
-            loading: false
-          }));
-        } else {
-          yield afterAuthNavigation();
-        }
-      }
-    }
-    callback == null ? void 0 : callback(true);
-  } catch (e) {
-    yield put(actions.setLoginState({
-      error: errorHandler(e),
-      loading: false
-    }));
-    callback == null ? void 0 : callback(false, e);
-  }
-}
 function* recoverMfa({
   payload
 }) {
@@ -1501,50 +1345,6 @@ function* handleEnrollMFAResponse({
     localStorage.setItem('userId', user.id);
   }
 }
-function* handleVerifyMFAResponse({
-  user,
-  tenants,
-  activeTenant
-}) {
-  const {
-    loginState
-  } = yield select(state => state.auth);
-  yield put(actions.setUser(user));
-  yield put(actions.setTenantsState({
-    tenants,
-    activeTenant,
-    loading: false
-  }));
-  if (user.id) {
-    localStorage.setItem('userId', user.id);
-  }
-  const {
-    step: mfaStep
-  } = yield select(state => state.auth.mfaState);
-  const [securityCenterLoginFlows] = yield call(getFeatureFlags, ['security-center-show-login-flows']);
-  const isAuthenticated = !!user.accessToken;
-  if (loginState.flow === LoginFlow.Login) {
-    if (securityCenterLoginFlows && loginState.isBreachedPassword && !isAuthenticated) {
-      yield put(actions.setLoginState({
-        step: LoginStep.breachedPassword,
-        loading: false
-      }));
-    } else {
-      const shouldShowPrompt = yield call(shouldShowPromptPasskeys);
-      if (mfaStep === MFAStep.smsVerifyCode && shouldShowPrompt) {
-        yield put(actions.setLoginState({
-          step: LoginStep.promptPasskeys,
-          loading: false
-        }));
-      } else {
-        yield afterAuthNavigation();
-      }
-    }
-  }
-  yield put(actions.setState({
-    isAuthenticated
-  }));
-}
 function* preEnrollMFASMSForLogin(_ref13) {
   let {
       payload: {
@@ -1689,172 +1489,6 @@ function* enrollMFAAuthenticatorAppForLogin(_ref17) {
     callback == null ? void 0 : callback(null);
   }
 }
-function* preVerifyMFASMSForLogin(_ref18) {
-  let {
-      payload: {
-        callback,
-        deviceId
-      }
-    } = _ref18,
-    payload = _objectWithoutPropertiesLoose(_ref18.payload, _excluded16);
-  yield put(actions.setLoginState({
-    loading: true
-  }));
-  try {
-    const data = yield call(api.auth.preVerifyMFASMSForLogin, deviceId, payload);
-    yield put(actions.setMfaState({
-      otcToken: data.otcToken,
-      step: MFAStep.smsVerifyCode,
-      phoneNumber: data.phoneNumber
-    }));
-    yield put(actions.setLoginState({
-      loading: false
-    }));
-    callback == null ? void 0 : callback(true);
-  } catch (e) {
-    yield put(actions.setLoginState({
-      loading: false,
-      error: errorHandler(e)
-    }));
-    callback == null ? void 0 : callback(null);
-  }
-}
-function* preVerifyMFAEmailCode(_ref19) {
-  let {
-      payload: {
-        callback
-      }
-    } = _ref19,
-    payload = _objectWithoutPropertiesLoose(_ref19.payload, _excluded17);
-  try {
-    const data = yield call(api.auth.preVerifyMFAEmailCode, payload);
-    yield put(actions.setMfaState({
-      otcToken: data.otcToken,
-      step: MFAStep.emailVerifyCode
-    }));
-    callback == null ? void 0 : callback(true);
-  } catch (e) {
-    yield put(actions.setLoginState({
-      error: errorHandler(e)
-    }));
-    callback == null ? void 0 : callback(null);
-  }
-}
-function* verifyMFAEmailCode(_ref20) {
-  let {
-      payload: {
-        callback
-      }
-    } = _ref20,
-    payload = _objectWithoutPropertiesLoose(_ref20.payload, _excluded18);
-  yield put(actions.setLoginState({
-    loading: true
-  }));
-  try {
-    const data = yield call(api.auth.verifyMFAEmailCodeV2, payload);
-    yield handleVerifyMFAResponse(data);
-    yield put(actions.setLoginState({
-      loading: false
-    }));
-    callback == null ? void 0 : callback(true);
-  } catch (e) {
-    yield put(actions.setLoginState({
-      loading: false,
-      error: errorHandler(e)
-    }));
-    callback == null ? void 0 : callback(null);
-  }
-}
-function* verifyMFASMSForLogin(_ref21) {
-  let {
-      payload: {
-        callback,
-        deviceId
-      }
-    } = _ref21,
-    payload = _objectWithoutPropertiesLoose(_ref21.payload, _excluded19);
-  yield put(actions.setLoginState({
-    loading: true
-  }));
-  try {
-    const data = yield call(api.auth.verifyMFASMSForLoginV2, deviceId, payload);
-    yield handleVerifyMFAResponse(data);
-    yield put(actions.setLoginState({
-      loading: false
-    }));
-    callback == null ? void 0 : callback(true);
-  } catch (e) {
-    yield put(actions.setLoginState({
-      loading: false,
-      error: errorHandler(e)
-    }));
-    callback == null ? void 0 : callback(null);
-  }
-}
-function* preVerifyMFAWebAuthnForLogin(_ref22) {
-  let {
-      payload: {
-        callback,
-        deviceId
-      }
-    } = _ref22,
-    payload = _objectWithoutPropertiesLoose(_ref22.payload, _excluded20);
-  yield put(actions.setLoginState({
-    loading: true
-  }));
-  try {
-    var _data$options$allowCr;
-    const data = yield call(api.auth.preVerifyMFAWebAuthnForLogin, deviceId, payload);
-    const options = _extends({}, data.options, {
-      challenge: base64urlDecode(data.options.challenge),
-      allowCredentials: (_data$options$allowCr = data.options.allowCredentials) == null ? void 0 : _data$options$allowCr.map(credentials => _extends({}, credentials, {
-        id: base64urlDecode(credentials.id)
-      }))
-    });
-    yield put(actions.setLoginState({
-      loading: false
-    }));
-    callback == null ? void 0 : callback({
-      options,
-      webauthnToken: data.webauthnToken
-    });
-  } catch (e) {
-    yield put(actions.setLoginState({
-      loading: false,
-      error: errorHandler(e)
-    }));
-    callback == null ? void 0 : callback(null);
-  }
-}
-function* verifyMFAWebAuthnForLogin(_ref23) {
-  let {
-      payload: {
-        callback,
-        deviceId
-      }
-    } = _ref23,
-    payload = _objectWithoutPropertiesLoose(_ref23.payload, _excluded21);
-  yield put(actions.setLoginState({
-    loading: true
-  }));
-  try {
-    const publicKey = publicKeyCredentialToJSON(payload.publicKey);
-    const data = yield call(api.auth.verifyMFAWebAuthnForLoginV2, deviceId, _extends({}, payload, {
-      options: publicKey
-    }));
-    yield handleVerifyMFAResponse(data);
-    yield put(actions.setLoginState({
-      loading: false
-    }));
-    callback == null ? void 0 : callback(true);
-  } catch (e) {
-    yield put(actions.setLoginState({
-      loading: false,
-      error: errorHandler(e)
-    }));
-    callback == null ? void 0 : callback(null);
-  }
-}
 function* resetBreachedPassword({
   payload
 }) {
@@ -1912,10 +1546,12 @@ export function* loginSagas() {
   yield takeLeading(actions.verifyMFASMSForLogin, verifyMFASMSForLogin);
   yield takeLeading(actions.preVerifyMFAWebAuthnForLogin, preVerifyMFAWebAuthnForLogin);
   yield takeLeading(actions.verifyMFAWebAuthnForLogin, verifyMFAWebAuthnForLogin);
-  yield takeLeading(actions.preVerifyMFAEmailCode, preVerifyMFAEmailCode);
-  yield takeLeading(actions.verifyMFAEmailCode, verifyMFAEmailCode);
+  yield takeLeading(actions.preVerifyMFAEmailCode, preVerifyMFAEmailCodeForLogin);
+  yield takeLeading(actions.verifyMFAEmailCode, verifyMFAEmailCodeForLogin);
   yield takeLeading(actions.resetBreachedPassword, resetBreachedPassword);
 }
+export { afterAuthNavigation } from './sagas/afterAuthNavigation.saga';
+export { mfaWithAuthenticator } from './sagas/mfaWithAuthenticator.saga';
 
 /*********************************
  *  Preview Sagas

package/auth/LoginState/saga.utils.d.ts

@@ -0,0 +1,12 @@
+import { ILoginResponseV3, IWebAuthnDevices } from '@frontegg/rest-api';
+import { AuthState } from '../interfaces';
+export declare function shouldShowPromptPasskeys(): Generator<import("redux-saga/effects").SelectEffect | import("redux-saga/effects").CallEffect<boolean[]> | import("redux-saga/effects").CallEffect<IWebAuthnDevices> | import("redux-saga/effects").PutEffect<{
+    payload: Partial<import("..").PasskeysState>;
+    type: string;
+}>, boolean, {
+    publicAuthStrategyPolicy: any;
+} & boolean[] & IWebAuthnDevices>;
+export declare function afterAuthenticationStateUpdate({ user, tenants, activeTenant }: ILoginResponseV3, additionalUpdate?: Partial<AuthState>): Generator<import("redux-saga/effects").SelectEffect | import("redux-saga/effects").PutEffect<{
+    payload: Partial<AuthState>;
+    type: string;
+}>, void, AuthState>;

package/auth/LoginState/saga.utils.js

@@ -0,0 +1,47 @@
+import _extends from "@babel/runtime/helpers/esm/extends";
+import { call, put, select } from 'redux-saga/effects';
+import { api } from '@frontegg/rest-api';
+import { actions } from '../reducer';
+import { getPasskeysVendorPolicy } from '../PasskeysState/helpers';
+import { getFeatureFlags } from '../../helpers';
+export function* shouldShowPromptPasskeys() {
+  const {
+    publicAuthStrategyPolicy
+  } = yield select(state => state.auth.securityPolicyState);
+  const {
+    policy
+  } = publicAuthStrategyPolicy;
+  const isPasskeysEnabledByVendor = getPasskeysVendorPolicy(policy);
+  const isLoggedInWithPasskeys = localStorage.getItem('preferred-login-method') === 'Passkeys';
+  const isMarkedDontShowAgainPrompt = localStorage.getItem('dont-show-again-prompt-passkeys') === 'true';
+  const [showPasskeys] = yield call(getFeatureFlags, ['show-passkeys-new']);
+  if (!showPasskeys || !isPasskeysEnabledByVendor || isLoggedInWithPasskeys || isMarkedDontShowAgainPrompt) {
+    return false;
+  } else {
+    const {
+      devices
+    } = yield call(api.auth.getWebAuthnDevices);
+    yield put(actions.setPasskeysState({
+      devices: devices != null ? devices : []
+    }));
+    const numOfDevices = !(devices != null && devices.length) ? 0 : devices.length;
+    return numOfDevices === 0;
+  }
+}
+export function* afterAuthenticationStateUpdate({
+  user,
+  tenants = [],
+  activeTenant
+}, additionalUpdate = {}) {
+  const {
+    tenantsState: currentTenantsState
+  } = yield select(state => state.auth);
+  yield put(actions.setState(_extends({
+    user,
+    tenantsState: _extends({}, currentTenantsState, {
+      tenants,
+      activeTenant,
+      loading: false
+    })
+  }, additionalUpdate)));
+}

package/auth/LoginState/sagas/afterAuthNavigation.saga.d.ts

@@ -0,0 +1,19 @@
+import { Action } from '@reduxjs/toolkit';
+/**
+ * Utility to share after auth navigation flow between login and step up
+ * @param resetStateAction reset state action
+ * @param customLoginAuthenticatedUrl custom login authenticated url if exists
+ */
+export declare function afterAuthNavigationUtil(resetStateAction: () => Action, customLoginAuthenticatedUrl?: string): Generator<import("redux-saga/effects").CallEffect<true> | import("redux-saga/effects").CallEffect<string>, void, string>;
+/**
+ * After auth navigation for login flow
+ */
+export declare function afterAuthNavigation(): Generator<import("redux-saga/effects").SelectEffect | import("redux-saga/effects").CallEffect<void>, void, {
+    routes: {
+        customLoginAuthenticatedUrl: any;
+    };
+} & string>;
+/**
+ * After auth navigation for step up flow
+ */
+export declare function afterStepUpAuthNavigation(): Generator<import("redux-saga/effects").CallEffect<void>, void, unknown>;