@frontegg/redux-store 6.155.0-alpha.4 → 6.155.0-alpha.6

package/auth/LoginState/sagas/afterAuthNavigation.saga.d.ts

@@ -3,13 +3,15 @@ import { User } from '../../interfaces';
 interface AfterAuthNavigationUtilOptions {
     customLoginAuthenticatedUrl?: string;
     forceStepUpUrl?: string;
+    shouldStepUpDuringLogin?: boolean;
 }
 /**
  * Utility to share after auth navigation flow between login and step up
  * @param resetStateAction reset state action
  * @param customLoginAuthenticatedUrl custom login authenticated url if exists
+ * @param shouldStepUpDuringLogin true when it's login after step up flow
  */
-export declare function afterAuthNavigationUtil(resetStateAction: () => Action, { customLoginAuthenticatedUrl, forceStepUpUrl }?: AfterAuthNavigationUtilOptions): Generator<import("redux-saga/effects").CallEffect<true> | import("redux-saga/effects").CallEffect<string>, void, string>;
+export declare function afterAuthNavigationUtil(resetStateAction: () => Action, { customLoginAuthenticatedUrl, forceStepUpUrl, shouldStepUpDuringLogin }?: AfterAuthNavigationUtilOptions): Generator<import("redux-saga/effects").CallEffect<true> | import("redux-saga/effects").CallEffect<string>, void, string | undefined>;
 /**
  * After auth navigation for login flow
  * Handling also step up scenario when user silently logout to continue to step up

package/auth/LoginState/sagas/afterAuthNavigation.saga.js

@@ -2,11 +2,23 @@ import { ContextHolder } from '@frontegg/rest-api';
 import { delay, put, select, call } from 'redux-saga/effects';
 import { loadCustomLoginRoutes } from '../../CustomLoginState/saga';
 import { actions } from '../../reducer';
-import { getPathAndSearchParamsFromUrl, getRedirectUrl } from '../utils';
+import { getPathAndSearchParamsFromUrl, getRedirectUrl, isAbsoluteUrl } from '../utils';
 import { FRONTEGG_AFTER_AUTH_REDIRECT_URL } from '../../../constants';
 import { isSteppedUp } from '../../StepUpState';
 import { SHOULD_STEP_UP_KEY } from '../../StepUpState/consts';
 
+/**
+ * @param url
+ * @returns url without the origin if it's the same origin as the current window origin
+ */
+function cleanUrlIfSameOrigin(url) {
+  var _window, _window2;
+  if (!url.startsWith((_window = window) == null ? void 0 : _window.location.origin)) {
+    return url;
+  }
+  return url.replace((_window2 = window) == null ? void 0 : _window2.location.origin, '');
+}
+
 /**
  * @param customLoginAuthenticatedUrl custom login authenticated url if exists
  * @returns the authenticated url to redirect to after auth navigation
@@ -32,32 +44,47 @@ function* getUrlForAfterAuthNavigation(customLoginAuthenticatedUrl) {
   if (!finalUrl || [loginUrl, logoutUrl, socialLoginCallbackUrl, activateUrl].includes(finalUrl)) {
     finalUrl = authenticatedUrl;
   }
-  return getRedirectUrl({
+  const redirectUrl = getRedirectUrl({
     authenticatedUrl: finalUrl,
     includeQueryParam,
     enforceRedirectToSameSite,
     allowedRedirectOrigins
   });
+
+  // clean origin if it's the same origin as the current window origin to avoid refresh in afterAuthNavigationUtil
+  return cleanUrlIfSameOrigin(redirectUrl);
 }
 /**
  * Utility to share after auth navigation flow between login and step up
  * @param resetStateAction reset state action
  * @param customLoginAuthenticatedUrl custom login authenticated url if exists
+ * @param shouldStepUpDuringLogin true when it's login after step up flow
  */
 export function* afterAuthNavigationUtil(resetStateAction, {
   customLoginAuthenticatedUrl,
-  forceStepUpUrl
+  forceStepUpUrl,
+  shouldStepUpDuringLogin
 } = {}) {
   const onRedirectTo = ContextHolder.onRedirectTo;
-  let redirectUrl;
+  let redirectUrl = undefined;
   if (forceStepUpUrl) {
     // scenario to get to here: invalid max age, try to step up -> logout, login with magic code/link -> redirect to step up page for email code as the second factor
     // we don't want to remove the FRONTEGG_AFTER_AUTH_REDIRECT_URL when we are in the step up flow
     redirectUrl = forceStepUpUrl;
   } else {
-    var _window;
-    redirectUrl = yield call(getUrlForAfterAuthNavigation, customLoginAuthenticatedUrl);
-    (_window = window) == null ? void 0 : _window.localStorage.removeItem(FRONTEGG_AFTER_AUTH_REDIRECT_URL);
+    var _window3;
+    if (shouldStepUpDuringLogin) {
+      // getUrlForAfterAuthNavigation give priority to the redirectUrl
+      // avoiding use of getUrlForAfterAuthNavigation because we don't want to use the redirectUrl for magic link for example
+      const localStorageRedirectUrl = window.localStorage.getItem(FRONTEGG_AFTER_AUTH_REDIRECT_URL);
+      if (localStorageRedirectUrl && !isAbsoluteUrl(localStorageRedirectUrl)) {
+        redirectUrl = localStorageRedirectUrl;
+      }
+    }
+    if (!redirectUrl) {
+      redirectUrl = yield call(getUrlForAfterAuthNavigation, customLoginAuthenticatedUrl);
+    }
+    (_window3 = window) == null ? void 0 : _window3.localStorage.removeItem(FRONTEGG_AFTER_AUTH_REDIRECT_URL);
   }
   yield delay(200);
   put(resetStateAction());
@@ -71,7 +98,7 @@ export function* afterAuthNavigationUtil(resetStateAction, {
  * Handling also step up scenario when user silently logout to continue to step up
  */
 export function* afterAuthNavigation() {
-  var _window2;
+  var _window4;
   const {
     routes: {
       customLoginAuthenticatedUrl,
@@ -80,13 +107,13 @@ export function* afterAuthNavigation() {
   } = yield select(state => state.auth);
 
   // login with magic code, try to step up, no other mfa, invalid max age, force_enroll -> logout, login with first factor, not-stepped up jwt -> navigate to step up
-  const shouldStepUp = (_window2 = window) == null ? void 0 : _window2.localStorage.getItem(SHOULD_STEP_UP_KEY);
+  const shouldStepUp = (_window4 = window) == null ? void 0 : _window4.localStorage.getItem(SHOULD_STEP_UP_KEY);
   const user = yield select(({
     auth
   }) => auth.user);
   if (shouldStepUp) {
-    var _window3;
-    (_window3 = window) == null ? void 0 : _window3.localStorage.removeItem(SHOULD_STEP_UP_KEY);
+    var _window5;
+    (_window5 = window) == null ? void 0 : _window5.localStorage.removeItem(SHOULD_STEP_UP_KEY);
   }
   if (stepUpUrl && shouldStepUp && !isSteppedUp(user)) {
     yield call(afterAuthNavigationUtil, actions.resetLoginState, {
@@ -103,7 +130,8 @@ export function* afterAuthNavigation() {
     });
   }
   yield call(afterAuthNavigationUtil, actions.resetLoginState, {
-    customLoginAuthenticatedUrl: customLoginURL
+    customLoginAuthenticatedUrl: customLoginURL,
+    shouldStepUpDuringLogin: !!shouldStepUp
   });
 }
 

package/auth/LoginState/utils.d.ts

@@ -1,5 +1,6 @@
 import { IEmailPasswordlessPreLogin, ILoginResponse, IPasswordlessPreLogin, MFAStrategyEnum, UserMFADevicesResponse } from '@frontegg/rest-api';
 import { MFAStep } from '../MfaState/interfaces';
+export declare const isAbsoluteUrl: (path: string) => boolean;
 export declare const getRedirectUrl: ({ authenticatedUrl, enforceRedirectToSameSite, allowedRedirectOrigins, includeQueryParam, }: {
     authenticatedUrl: string;
     enforceRedirectToSameSite: boolean;

package/auth/LoginState/utils.js

@@ -1,6 +1,6 @@
 import { ContextHolder, MFAStrategyEnum } from '@frontegg/rest-api';
 import { MFAStep } from '../MfaState/interfaces';
-const isAbsoluteUrl = path => {
+export const isAbsoluteUrl = path => {
   try {
     new URL(path);
     return true;

package/index.js

@@ -1,4 +1,4 @@
-/** @license Frontegg v6.155.0-alpha.4
+/** @license Frontegg v6.155.0-alpha.6
  *
  * This source code is licensed under the MIT license found in the
  * LICENSE file in the root directory of this source tree.

package/node/auth/LoginState/sagas/afterAuthNavigation.saga.js

@@ -14,6 +14,18 @@ var _utils = require("../utils");
 var _constants = require("../../../constants");
 var _StepUpState = require("../../StepUpState");
 var _consts = require("../../StepUpState/consts");
+/**
+ * @param url
+ * @returns url without the origin if it's the same origin as the current window origin
+ */
+function cleanUrlIfSameOrigin(url) {
+  var _window, _window2;
+  if (!url.startsWith((_window = window) == null ? void 0 : _window.location.origin)) {
+    return url;
+  }
+  return url.replace((_window2 = window) == null ? void 0 : _window2.location.origin, '');
+}
+
 /**
  * @param customLoginAuthenticatedUrl custom login authenticated url if exists
  * @returns the authenticated url to redirect to after auth navigation
@@ -39,32 +51,47 @@ function* getUrlForAfterAuthNavigation(customLoginAuthenticatedUrl) {
   if (!finalUrl || [loginUrl, logoutUrl, socialLoginCallbackUrl, activateUrl].includes(finalUrl)) {
     finalUrl = authenticatedUrl;
   }
-  return (0, _utils.getRedirectUrl)({
+  const redirectUrl = (0, _utils.getRedirectUrl)({
     authenticatedUrl: finalUrl,
     includeQueryParam,
     enforceRedirectToSameSite,
     allowedRedirectOrigins
   });
+
+  // clean origin if it's the same origin as the current window origin to avoid refresh in afterAuthNavigationUtil
+  return cleanUrlIfSameOrigin(redirectUrl);
 }
 /**
  * Utility to share after auth navigation flow between login and step up
  * @param resetStateAction reset state action
  * @param customLoginAuthenticatedUrl custom login authenticated url if exists
+ * @param shouldStepUpDuringLogin true when it's login after step up flow
  */
 function* afterAuthNavigationUtil(resetStateAction, {
   customLoginAuthenticatedUrl,
-  forceStepUpUrl
+  forceStepUpUrl,
+  shouldStepUpDuringLogin
 } = {}) {
   const onRedirectTo = _restApi.ContextHolder.onRedirectTo;
-  let redirectUrl;
+  let redirectUrl = undefined;
   if (forceStepUpUrl) {
     // scenario to get to here: invalid max age, try to step up -> logout, login with magic code/link -> redirect to step up page for email code as the second factor
     // we don't want to remove the FRONTEGG_AFTER_AUTH_REDIRECT_URL when we are in the step up flow
     redirectUrl = forceStepUpUrl;
   } else {
-    var _window;
-    redirectUrl = yield (0, _effects.call)(getUrlForAfterAuthNavigation, customLoginAuthenticatedUrl);
-    (_window = window) == null ? void 0 : _window.localStorage.removeItem(_constants.FRONTEGG_AFTER_AUTH_REDIRECT_URL);
+    var _window3;
+    if (shouldStepUpDuringLogin) {
+      // getUrlForAfterAuthNavigation give priority to the redirectUrl
+      // avoiding use of getUrlForAfterAuthNavigation because we don't want to use the redirectUrl for magic link for example
+      const localStorageRedirectUrl = window.localStorage.getItem(_constants.FRONTEGG_AFTER_AUTH_REDIRECT_URL);
+      if (localStorageRedirectUrl && !(0, _utils.isAbsoluteUrl)(localStorageRedirectUrl)) {
+        redirectUrl = localStorageRedirectUrl;
+      }
+    }
+    if (!redirectUrl) {
+      redirectUrl = yield (0, _effects.call)(getUrlForAfterAuthNavigation, customLoginAuthenticatedUrl);
+    }
+    (_window3 = window) == null ? void 0 : _window3.localStorage.removeItem(_constants.FRONTEGG_AFTER_AUTH_REDIRECT_URL);
   }
   yield (0, _effects.delay)(200);
   (0, _effects.put)(resetStateAction());
@@ -78,7 +105,7 @@ function* afterAuthNavigationUtil(resetStateAction, {
  * Handling also step up scenario when user silently logout to continue to step up
  */
 function* afterAuthNavigation() {
-  var _window2;
+  var _window4;
   const {
     routes: {
       customLoginAuthenticatedUrl,
@@ -87,13 +114,13 @@ function* afterAuthNavigation() {
   } = yield (0, _effects.select)(state => state.auth);
 
   // login with magic code, try to step up, no other mfa, invalid max age, force_enroll -> logout, login with first factor, not-stepped up jwt -> navigate to step up
-  const shouldStepUp = (_window2 = window) == null ? void 0 : _window2.localStorage.getItem(_consts.SHOULD_STEP_UP_KEY);
+  const shouldStepUp = (_window4 = window) == null ? void 0 : _window4.localStorage.getItem(_consts.SHOULD_STEP_UP_KEY);
   const user = yield (0, _effects.select)(({
     auth
   }) => auth.user);
   if (shouldStepUp) {
-    var _window3;
-    (_window3 = window) == null ? void 0 : _window3.localStorage.removeItem(_consts.SHOULD_STEP_UP_KEY);
+    var _window5;
+    (_window5 = window) == null ? void 0 : _window5.localStorage.removeItem(_consts.SHOULD_STEP_UP_KEY);
   }
   if (stepUpUrl && shouldStepUp && !(0, _StepUpState.isSteppedUp)(user)) {
     yield (0, _effects.call)(afterAuthNavigationUtil, _reducer.actions.resetLoginState, {
@@ -110,7 +137,8 @@ function* afterAuthNavigation() {
     });
   }
   yield (0, _effects.call)(afterAuthNavigationUtil, _reducer.actions.resetLoginState, {
-    customLoginAuthenticatedUrl: customLoginURL
+    customLoginAuthenticatedUrl: customLoginURL,
+    shouldStepUpDuringLogin: !!shouldStepUp
   });
 }
 

package/node/auth/LoginState/utils.js

@@ -3,7 +3,7 @@
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
-exports.getSearchParamsFromUrl = exports.getSearchParam = exports.getRedirectUrl = exports.getPathAndSearchParamsFromUrl = exports.getNumberOfMfaDevices = exports.getMfaStepForNotEnrolledUsers = exports.getMfaStepForEnrolledUsers = exports.TENANT_ID_PARAM_KEY = void 0;
+exports.isAbsoluteUrl = exports.getSearchParamsFromUrl = exports.getSearchParam = exports.getRedirectUrl = exports.getPathAndSearchParamsFromUrl = exports.getNumberOfMfaDevices = exports.getMfaStepForNotEnrolledUsers = exports.getMfaStepForEnrolledUsers = exports.TENANT_ID_PARAM_KEY = void 0;
 exports.isEmailPayload = isEmailPayload;
 exports.isOauthCallbackRoute = exports.isMfaRequired = void 0;
 var _restApi = require("@frontegg/rest-api");
@@ -16,6 +16,7 @@ const isAbsoluteUrl = path => {
     return false;
   }
 };
+exports.isAbsoluteUrl = isAbsoluteUrl;
 const isValidRedirectUrl = (redirectUrl, allowedRedirectOrigins) => {
   const currentUrl = new URL(window.location.href);
   const redirectURL = new URL(redirectUrl);

package/node/index.js

@@ -1,4 +1,4 @@
-/** @license Frontegg v6.155.0-alpha.4
+/** @license Frontegg v6.155.0-alpha.6
  *
  * This source code is licensed under the MIT license found in the
  * LICENSE file in the root directory of this source tree.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@frontegg/redux-store",
-  "version": "6.155.0-alpha.4",
+  "version": "6.155.0-alpha.6",
   "main": "./node/index.js",
   "license": "MIT",
   "author": "Frontegg LTD",