@hmcts/opal-frontend-common-node 0.0.2 → 0.0.4

package/launch-darkly/index.d.ts

@@ -0,0 +1,5 @@
+import LaunchDarklyConfig from '../interfaces/launch-darkly-config';
+export declare class LaunchDarkly {
+    enableFor(enabled: boolean, stream: boolean, clientId: string | null): LaunchDarklyConfig;
+}
+//# sourceMappingURL=index.d.ts.map

package/launch-darkly/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/launch-darkly/index.ts"],"names":[],"mappings":"AAAA,OAAO,kBAAkB,MAAM,oCAAoC,CAAC;AAEpE,qBAAa,YAAY;IAChB,SAAS,CAAC,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,GAAG,IAAI,GAAG,kBAAkB;CAajG"}

package/launch-darkly/index.js

@@ -0,0 +1,14 @@
+export class LaunchDarkly {
+    enableFor(enabled, stream, clientId) {
+        const launchDarklyConfig = {
+            enabled: enabled,
+            clientId: null,
+            stream: stream,
+        };
+        if (launchDarklyConfig.enabled && clientId) {
+            launchDarklyConfig.clientId = clientId;
+        }
+        return launchDarklyConfig;
+    }
+}
+//# sourceMappingURL=index.js.map

package/launch-darkly/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/launch-darkly/index.ts"],"names":[],"mappings":"AAEA,MAAM,OAAO,YAAY;IAChB,SAAS,CAAC,OAAgB,EAAE,MAAe,EAAE,QAAuB;QACzE,MAAM,kBAAkB,GAAuB;YAC7C,OAAO,EAAE,OAAO;YAChB,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,MAAM;SACf,CAAC;QAEF,IAAI,kBAAkB,CAAC,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC3C,kBAAkB,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzC,CAAC;QAED,OAAO,kBAAkB,CAAC;IAC5B,CAAC;CACF"}

package/package.json

@@ -1,12 +1,12 @@
 {
   "name": "@hmcts/opal-frontend-common-node",
   "type": "module",
-  "version": "0.0.2",
+  "version": "0.0.4",
   "description": "Common nodejs library components for opal",
   "main": "dist/index",
   "types": "dist/index.d.ts",
   "scripts": {
-    "build": " yarn clean && tsc && cp package.json dist/ && cp src/*.d.ts dist/",
+    "build": " yarn clean && tsc && cp package.json dist/ && cp src/*.d.ts dist/ && cp README.md dist/",
     "clean": "rm -rf dist",
     "lint": "eslint ./src --ext .ts && yarn prettier",
     "prettier": "prettier --check \"./src/**/*.{ts,js,json}\"",

package/properties-volume/index.d.ts

@@ -0,0 +1,6 @@
+import { IConfig } from 'config';
+import { Application } from 'express';
+export declare class PropertiesVolume {
+    enableFor(server: Application, config: IConfig): IConfig;
+}
+//# sourceMappingURL=index.d.ts.map

package/properties-volume/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/properties-volume/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC;AACjC,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAEtC,qBAAa,gBAAgB;IAC3B,SAAS,CAAC,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,OAAO,GAAG,OAAO;CAMzD"}

package/properties-volume/index.js

@@ -0,0 +1,10 @@
+import * as propertiesVolume from '@hmcts/properties-volume';
+export class PropertiesVolume {
+    enableFor(server, config) {
+        if (server.locals['ENV'] !== 'development') {
+            propertiesVolume.addTo(config);
+        }
+        return config;
+    }
+}
+//# sourceMappingURL=index.js.map

package/properties-volume/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/properties-volume/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,gBAAgB,MAAM,0BAA0B,CAAC;AAI7D,MAAM,OAAO,gBAAgB;IAC3B,SAAS,CAAC,MAAmB,EAAE,MAAe;QAC5C,IAAI,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,aAAa,EAAE,CAAC;YAC3C,gBAAgB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;CACF"}

package/proxy/index.d.ts

@@ -0,0 +1,2 @@
+export * from './opal-api-proxy';
+//# sourceMappingURL=index.d.ts.map

package/proxy/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/proxy/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC"}

package/{src/proxy/index.ts → proxy/index.js}

@@ -1 +1,2 @@
 export * from './opal-api-proxy';
+//# sourceMappingURL=index.js.map

package/proxy/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/proxy/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC"}

package/proxy/opal-api-proxy/index.d.ts

@@ -0,0 +1,3 @@
+declare const opalApiProxy: (opalApiTarget: string) => import("http-proxy-middleware").RequestHandler<any, import("http").ServerResponse<import("http").IncomingMessage>, (err?: any) => void>;
+export default opalApiProxy;
+//# sourceMappingURL=index.d.ts.map

package/proxy/opal-api-proxy/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/proxy/opal-api-proxy/index.ts"],"names":[],"mappings":"AAEA,QAAA,MAAM,YAAY,GAAI,eAAe,MAAM,4IAc1C,CAAC;AAEF,eAAe,YAAY,CAAC"}

package/proxy/opal-api-proxy/index.js

@@ -0,0 +1,18 @@
+import { createProxyMiddleware } from 'http-proxy-middleware';
+const opalApiProxy = (opalApiTarget) => {
+    return createProxyMiddleware({
+        target: opalApiTarget,
+        changeOrigin: true,
+        logger: console,
+        on: {
+            // eslint-disable-next-line @typescript-eslint/no-explicit-any
+            proxyReq: (proxyReq, req) => {
+                if (req.session.securityToken?.access_token) {
+                    proxyReq.setHeader('Authorization', `Bearer ${req.session.securityToken.access_token}`);
+                }
+            },
+        },
+    });
+};
+export default opalApiProxy;
+//# sourceMappingURL=index.js.map

package/proxy/opal-api-proxy/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/proxy/opal-api-proxy/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC;AAE9D,MAAM,YAAY,GAAG,CAAC,aAAqB,EAAE,EAAE;IAC7C,OAAO,qBAAqB,CAAC;QAC3B,MAAM,EAAE,aAAa;QACrB,YAAY,EAAE,IAAI;QAClB,MAAM,EAAE,OAAO;QACf,EAAE,EAAE;YACF,8DAA8D;YAC9D,QAAQ,EAAE,CAAC,QAAQ,EAAE,GAAQ,EAAE,EAAE;gBAC/B,IAAI,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,YAAY,EAAE,CAAC;oBAC5C,QAAQ,CAAC,SAAS,CAAC,eAAe,EAAE,UAAU,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,YAAY,EAAE,CAAC,CAAC;gBAC1F,CAAC;YACH,CAAC;SACF;KACF,CAAC,CAAC;AACL,CAAC,CAAC;AAEF,eAAe,YAAY,CAAC"}

package/routes/index.d.ts

@@ -0,0 +1,10 @@
+import { Application } from 'express';
+import ExpiryConfiguration from '@hmcts/opal-frontend-common-node/interfaces/session-expiry-config';
+import RoutesConfiguration from '@hmcts/opal-frontend-common-node/interfaces/routes-config';
+import SsoConfiguration from '@hmcts/opal-frontend-common-node/interfaces/sso-config';
+import SessionConfiguration from '@hmcts/opal-frontend-common-node/interfaces/session-config';
+export declare class Routes {
+    enableFor(app: Application, ssoEnabled: boolean, expiryConfiguration: ExpiryConfiguration, routesConfiguration: RoutesConfiguration, sessionConfiguration: SessionConfiguration, ssoConfiguration: SsoConfiguration): void;
+    private setupSSORoutes;
+}
+//# sourceMappingURL=index.d.ts.map

package/routes/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/routes/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAatC,OAAO,mBAAmB,MAAM,mEAAmE,CAAC;AACpG,OAAO,mBAAmB,MAAM,2DAA2D,CAAC;AAC5F,OAAO,gBAAgB,MAAM,wDAAwD,CAAC;AACtF,OAAO,oBAAoB,MAAM,4DAA4D,CAAC;AAE9F,qBAAa,MAAM;IACV,SAAS,CACd,GAAG,EAAE,WAAW,EAChB,UAAU,EAAE,OAAO,EACnB,mBAAmB,EAAE,mBAAmB,EACxC,mBAAmB,EAAE,mBAAmB,EACxC,oBAAoB,EAAE,oBAAoB,EAC1C,gBAAgB,EAAE,gBAAgB,GACjC,IAAI;IA0BP,OAAO,CAAC,cAAc;CAsCvB"}

package/routes/index.js

@@ -0,0 +1,36 @@
+import bodyParser from 'body-parser';
+import { ssoAuthenticated, ssoLoginCallback, ssoLogin, ssoLogout, ssoLogoutCallback } from '../sso';
+import { ssoLoginStub, ssoLoginCallbackStub, ssoAuthenticatedStub, ssoLogoutStub, ssoLogoutCallbackStub, } from '../stubs/sso';
+import sessionExpiry from '@hmcts/opal-frontend-common-node/session/session-expiry';
+import sessionUserState from '@hmcts/opal-frontend-common-node/session/session-user-state';
+export class Routes {
+    enableFor(app, ssoEnabled, expiryConfiguration, routesConfiguration, sessionConfiguration, ssoConfiguration) {
+        // Declare use of body-parser AFTER the use of proxy https://github.com/villadora/express-http-proxy
+        app.use(bodyParser.json());
+        app.use(bodyParser.urlencoded({ extended: false }));
+        this.setupSSORoutes(app, ssoEnabled, routesConfiguration.opalApiTarget, routesConfiguration.frontendHostname, routesConfiguration.prefix, ssoConfiguration);
+        app.get(sessionConfiguration.userStateUrl, (req, res) => sessionUserState(req, res));
+        app.get(sessionConfiguration.sessionExpiryUrl, (req, res) => sessionExpiry(req, res, expiryConfiguration.testMode, expiryConfiguration.expiryTimeInMilliseconds, expiryConfiguration.warningThresholdInMilliseconds));
+    }
+    setupSSORoutes(app, ssoEnabled, opalApiUrl, frontendHostname, prefix, ssoConfiguration) {
+        const login = ssoEnabled ? ssoLogin : ssoLoginStub;
+        const loginCallback = ssoEnabled ? ssoLoginCallback : ssoLoginCallbackStub;
+        const logout = ssoEnabled ? ssoLogout : ssoLogoutStub;
+        const logoutCallback = ssoEnabled ? ssoLogoutCallback : ssoLogoutCallbackStub;
+        const authenticated = ssoEnabled ? ssoAuthenticated : ssoAuthenticatedStub;
+        const loginCallbackType = ssoEnabled ? 'post' : 'get';
+        app.get(ssoConfiguration.login, (req, res, next) => login(req, res, next, opalApiUrl, frontendHostname));
+        const routePath = ssoConfiguration.loginCallback;
+        const callbackHandler = (req, res, next) => loginCallback(req, res, next, opalApiUrl);
+        if (loginCallbackType === 'post') {
+            app.post(routePath, callbackHandler);
+        }
+        else {
+            app.get(routePath, callbackHandler);
+        }
+        app.get(ssoConfiguration.logout, (req, res, next) => logout(req, res, next, opalApiUrl, frontendHostname));
+        app.get(ssoConfiguration.logoutCallback, (req, res, next) => logoutCallback(req, res, next, prefix));
+        app.get(ssoConfiguration.authenticated, (req, res) => authenticated(req, res));
+    }
+}
+//# sourceMappingURL=index.js.map

package/routes/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/routes/index.ts"],"names":[],"mappings":"AACA,OAAO,UAAU,MAAM,aAAa,CAAC;AAErC,OAAO,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,QAAQ,EAAE,SAAS,EAAE,iBAAiB,EAAE,MAAM,QAAQ,CAAC;AACpG,OAAO,EACL,YAAY,EACZ,oBAAoB,EACpB,oBAAoB,EACpB,aAAa,EACb,qBAAqB,GACtB,MAAM,cAAc,CAAC;AACtB,OAAO,aAAa,MAAM,yDAAyD,CAAC;AACpF,OAAO,gBAAgB,MAAM,6DAA6D,CAAC;AAM3F,MAAM,OAAO,MAAM;IACV,SAAS,CACd,GAAgB,EAChB,UAAmB,EACnB,mBAAwC,EACxC,mBAAwC,EACxC,oBAA0C,EAC1C,gBAAkC;QAElC,oGAAoG;QACpG,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC;QAC3B,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC;QAEpD,IAAI,CAAC,cAAc,CACjB,GAAG,EACH,UAAU,EACV,mBAAmB,CAAC,aAAa,EACjC,mBAAmB,CAAC,gBAAgB,EACpC,mBAAmB,CAAC,MAAM,EAC1B,gBAAgB,CACjB,CAAC;QAEF,GAAG,CAAC,GAAG,CAAC,oBAAoB,CAAC,YAAY,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE,CAAC,gBAAgB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;QACxG,GAAG,CAAC,GAAG,CAAC,oBAAoB,CAAC,gBAAgB,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE,CAC7E,aAAa,CACX,GAAG,EACH,GAAG,EACH,mBAAmB,CAAC,QAAQ,EAC5B,mBAAmB,CAAC,wBAAwB,EAC5C,mBAAmB,CAAC,8BAA8B,CACnD,CACF,CAAC;IACJ,CAAC;IAEO,cAAc,CACpB,GAAgB,EAChB,UAAmB,EACnB,UAAkB,EAClB,gBAAwB,EACxB,MAAc,EACd,gBAAkC;QAElC,MAAM,KAAK,GAAG,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC;QACnD,MAAM,aAAa,GAAG,UAAU,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,oBAAoB,CAAC;QAC3E,MAAM,MAAM,GAAG,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,aAAa,CAAC;QACtD,MAAM,cAAc,GAAG,UAAU,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,qBAAqB,CAAC;QAC9E,MAAM,aAAa,GAAG,UAAU,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,oBAAoB,CAAC;QAE3E,MAAM,iBAAiB,GAAG,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC;QAEtD,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE,CAClF,KAAK,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,UAAU,EAAE,gBAAgB,CAAC,CACpD,CAAC;QAEF,MAAM,SAAS,GAAG,gBAAgB,CAAC,aAAa,CAAC;QACjD,MAAM,eAAe,GAAG,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE,CAC1E,aAAa,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;QAE5C,IAAI,iBAAiB,KAAK,MAAM,EAAE,CAAC;YACjC,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC;QACvC,CAAC;aAAM,CAAC;YACN,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC;QACtC,CAAC;QAED,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,MAAM,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE,CACnF,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,UAAU,EAAE,gBAAgB,CAAC,CACrD,CAAC;QACF,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,cAAc,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE,CAC3F,cAAc,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,CAAC,CACvC,CAAC;QACF,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,aAAa,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE,CAAC,aAAa,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;IACpG,CAAC;CACF"}

package/session/index.d.ts

@@ -0,0 +1,5 @@
+import SessionStorage from './session-storage';
+import sessionExpiry from './session-expiry';
+import sessionUserState from './session-user-state';
+export { SessionStorage, sessionUserState, sessionExpiry };
+//# sourceMappingURL=index.d.ts.map

package/session/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/session/index.ts"],"names":[],"mappings":"AAAA,OAAO,cAAc,MAAM,mBAAmB,CAAC;AAC/C,OAAO,aAAa,MAAM,kBAAkB,CAAC;AAC7C,OAAO,gBAAgB,MAAM,sBAAsB,CAAC;AAEpD,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,aAAa,EAAE,CAAC"}

package/{src/session/index.ts → session/index.js}

@@ -1,5 +1,5 @@
 import SessionStorage from './session-storage';
 import sessionExpiry from './session-expiry';
 import sessionUserState from './session-user-state';
-
 export { SessionStorage, sessionUserState, sessionExpiry };
+//# sourceMappingURL=index.js.map

package/session/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/session/index.ts"],"names":[],"mappings":"AAAA,OAAO,cAAc,MAAM,mBAAmB,CAAC;AAC/C,OAAO,aAAa,MAAM,kBAAkB,CAAC;AAC7C,OAAO,gBAAgB,MAAM,sBAAsB,CAAC;AAEpD,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,aAAa,EAAE,CAAC"}

package/session/session-expiry/index.d.ts

@@ -0,0 +1,4 @@
+import { Request, Response } from 'express';
+declare const sessionExpiry: (req: Request, res: Response, testMode: boolean, expiryTimeInMilliseconds: number, warningThresholdInMilliseconds: number) => void;
+export default sessionExpiry;
+//# sourceMappingURL=index.d.ts.map

package/session/session-expiry/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/session/session-expiry/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAI5C,QAAA,MAAM,aAAa,GACjB,KAAK,OAAO,EACZ,KAAK,QAAQ,EACb,UAAU,OAAO,EACjB,0BAA0B,MAAM,EAChC,gCAAgC,MAAM,SAmBvC,CAAC;AAEF,eAAe,aAAa,CAAC"}

package/session/session-expiry/index.js

@@ -0,0 +1,23 @@
+import { DateTime } from 'luxon';
+import { Jwt } from '../../utils';
+const sessionExpiry = (req, res, testMode, expiryTimeInMilliseconds, warningThresholdInMilliseconds) => {
+    const accessToken = req.session.securityToken?.access_token;
+    if (accessToken) {
+        const payload = Jwt.parseJwt(accessToken);
+        const jwtExpiry = testMode
+            ? DateTime.now().plus({ milliseconds: expiryTimeInMilliseconds }).toISO()
+            : DateTime.fromMillis(payload.exp * 1000).toISO();
+        res.status(200).send({
+            expiry: jwtExpiry,
+            warningThresholdInMilliseconds: warningThresholdInMilliseconds,
+        });
+    }
+    else {
+        res.status(200).send({
+            expiry: null,
+            warningThresholdInMilliseconds: null,
+        });
+    }
+};
+export default sessionExpiry;
+//# sourceMappingURL=index.js.map

package/session/session-expiry/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/session/session-expiry/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,QAAQ,EAAE,MAAM,OAAO,CAAC;AACjC,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,MAAM,aAAa,GAAG,CACpB,GAAY,EACZ,GAAa,EACb,QAAiB,EACjB,wBAAgC,EAChC,8BAAsC,EACtC,EAAE;IACF,MAAM,WAAW,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,YAAY,CAAC;IAC5D,IAAI,WAAW,EAAE,CAAC;QAChB,MAAM,OAAO,GAAG,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC1C,MAAM,SAAS,GAAG,QAAQ;YACxB,CAAC,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,EAAE,YAAY,EAAE,wBAAwB,EAAE,CAAC,CAAC,KAAK,EAAE;YACzE,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,GAAG,GAAG,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;QAEpD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,MAAM,EAAE,SAAS;YACjB,8BAA8B,EAAE,8BAA8B;SAC/D,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,MAAM,EAAE,IAAI;YACZ,8BAA8B,EAAE,IAAI;SACrC,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC;AAEF,eAAe,aAAa,CAAC"}

package/session/session-storage/index.d.ts

@@ -0,0 +1,7 @@
+import SessionStorageConfiguration from '@hmcts/opal-frontend-common-node/interfaces/session-storage-config';
+import { Application } from 'express';
+export default class SessionStorage {
+    enableFor(app: Application, sessionStorage: SessionStorageConfiguration): void;
+    private getStore;
+}
+//# sourceMappingURL=index.d.ts.map

package/session/session-storage/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/session/session-storage/index.ts"],"names":[],"mappings":"AACA,OAAO,2BAA2B,MAAM,oEAAoE,CAAC;AAG7G,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAQtC,MAAM,CAAC,OAAO,OAAO,cAAc;IAC1B,SAAS,CAAC,GAAG,EAAE,WAAW,EAAE,cAAc,EAAE,2BAA2B,GAAG,IAAI;IAuBrF,OAAO,CAAC,QAAQ;CA+BjB"}

package/session/session-storage/index.js

@@ -0,0 +1,58 @@
+import { Logger } from '@hmcts/nodejs-logging';
+import { RedisStore } from 'connect-redis';
+import cookieParser from 'cookie-parser';
+import session from 'express-session';
+import { createClient } from 'redis';
+import FileStoreFactory from 'session-file-store';
+const FileStore = FileStoreFactory(session);
+const logger = Logger.getLogger('session-storage');
+export default class SessionStorage {
+    enableFor(app, sessionStorage) {
+        app.use(cookieParser(sessionStorage.secret));
+        app.set('trust proxy', 1);
+        app.use(session({
+            name: sessionStorage.prefix,
+            resave: false,
+            saveUninitialized: false,
+            secret: sessionStorage.secret,
+            cookie: {
+                httpOnly: true,
+                maxAge: sessionStorage.maxAge,
+                sameSite: sessionStorage.sameSite,
+                secure: sessionStorage.secure,
+                domain: sessionStorage.domain,
+            },
+            rolling: true,
+            store: this.getStore(app, sessionStorage.redisEnabled, sessionStorage.redisConnectionString),
+        }));
+    }
+    getStore(app, enabled, connectionString) {
+        if (enabled && connectionString) {
+            logger.info('Using Redis session store', connectionString);
+            const client = createClient({
+                url: connectionString,
+                socket: {
+                    reconnectStrategy: function (retries) {
+                        if (retries > 20) {
+                            logger.log('Too many attempts to reconnect. Redis connection was terminated');
+                            return new Error('Too many retries.');
+                        }
+                        else {
+                            return retries * 500;
+                        }
+                    },
+                },
+            });
+            client.on('error', (err) => {
+                logger.error('Redis Client Error', err);
+            });
+            client.connect().catch(() => {
+                process.exit();
+            });
+            app.locals['redisClient'] = client;
+            return new RedisStore({ client });
+        }
+        return new FileStore({ path: '/tmp' });
+    }
+}
+//# sourceMappingURL=index.js.map

package/session/session-storage/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/session/session-storage/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,YAAY,MAAM,eAAe,CAAC;AAEzC,OAAO,OAAO,MAAM,iBAAiB,CAAC;AACtC,OAAO,EAAE,YAAY,EAAE,MAAM,OAAO,CAAC;AACrC,OAAO,gBAAgB,MAAM,oBAAoB,CAAC;AAElD,MAAM,SAAS,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAC;AAC5C,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,iBAAiB,CAAC,CAAC;AAEnD,MAAM,CAAC,OAAO,OAAO,cAAc;IAC1B,SAAS,CAAC,GAAgB,EAAE,cAA2C;QAC5E,GAAG,CAAC,GAAG,CAAC,YAAY,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC;QAC7C,GAAG,CAAC,GAAG,CAAC,aAAa,EAAE,CAAC,CAAC,CAAC;QAE1B,GAAG,CAAC,GAAG,CACL,OAAO,CAAC;YACN,IAAI,EAAE,cAAc,CAAC,MAAM;YAC3B,MAAM,EAAE,KAAK;YACb,iBAAiB,EAAE,KAAK;YACxB,MAAM,EAAE,cAAc,CAAC,MAAM;YAC7B,MAAM,EAAE;gBACN,QAAQ,EAAE,IAAI;gBACd,MAAM,EAAE,cAAc,CAAC,MAAM;gBAC7B,QAAQ,EAAE,cAAc,CAAC,QAAQ;gBACjC,MAAM,EAAE,cAAc,CAAC,MAAM;gBAC7B,MAAM,EAAE,cAAc,CAAC,MAAM;aAC9B;YACD,OAAO,EAAE,IAAI;YACb,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,cAAc,CAAC,YAAY,EAAE,cAAc,CAAC,qBAAqB,CAAC;SAC7F,CAAC,CACH,CAAC;IACJ,CAAC;IAEO,QAAQ,CAAC,GAAgB,EAAE,OAAgB,EAAE,gBAA+B;QAClF,IAAI,OAAO,IAAI,gBAAgB,EAAE,CAAC;YAChC,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE,gBAAgB,CAAC,CAAC;YAC3D,MAAM,MAAM,GAAG,YAAY,CAAC;gBAC1B,GAAG,EAAE,gBAAgB;gBACrB,MAAM,EAAE;oBACN,iBAAiB,EAAE,UAAU,OAAO;wBAClC,IAAI,OAAO,GAAG,EAAE,EAAE,CAAC;4BACjB,MAAM,CAAC,GAAG,CAAC,iEAAiE,CAAC,CAAC;4BAC9E,OAAO,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;wBACxC,CAAC;6BAAM,CAAC;4BACN,OAAO,OAAO,GAAG,GAAG,CAAC;wBACvB,CAAC;oBACH,CAAC;iBACF;aACF,CAAC,CAAC;YAEH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;gBACzB,MAAM,CAAC,KAAK,CAAC,oBAAoB,EAAE,GAAG,CAAC,CAAC;YAC1C,CAAC,CAAC,CAAC;YAEH,MAAM,CAAC,OAAO,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE;gBAC1B,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,CAAC,CAAC,CAAC;YAEH,GAAG,CAAC,MAAM,CAAC,aAAa,CAAC,GAAG,MAAM,CAAC;YACnC,OAAO,IAAI,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QACpC,CAAC;QAED,OAAO,IAAI,SAAS,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;IACzC,CAAC;CACF"}

package/session/session-user-state/index.d.ts

@@ -0,0 +1,4 @@
+import { Request, Response } from 'express';
+declare const sessionUserState: (req: Request, res: Response) => void;
+export default sessionUserState;
+//# sourceMappingURL=index.d.ts.map

package/session/session-user-state/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/session/session-user-state/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAI5C,QAAA,MAAM,gBAAgB,GAAI,KAAK,OAAO,EAAE,KAAK,QAAQ,SAiBpD,CAAC;AAEF,eAAe,gBAAgB,CAAC"}

package/session/session-user-state/index.js

@@ -0,0 +1,20 @@
+import { Jwt } from '../../utils';
+const sessionUserState = (req, res) => {
+    const userState = req.session.securityToken?.user_state;
+    const accessToken = req.session.securityToken?.access_token;
+    const name = accessToken && userState ? Jwt.parseJwt(accessToken).name : '';
+    // Don't allow caching of this endpoint
+    res.set({
+        'Cache-Control': 'no-store, no-cache, must-revalidate, max-age=0',
+        Pragma: 'no-cache',
+        Expires: '0',
+    });
+    if (!userState) {
+        res.send({});
+    }
+    else {
+        res.send({ ...userState, name });
+    }
+};
+export default sessionUserState;
+//# sourceMappingURL=index.js.map

package/session/session-user-state/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/session/session-user-state/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,MAAM,gBAAgB,GAAG,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;IACvD,MAAM,SAAS,GAA0B,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,UAAU,CAAC;IAC/E,MAAM,WAAW,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,YAAY,CAAC;IAC5D,MAAM,IAAI,GAAG,WAAW,IAAI,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IAE5E,uCAAuC;IACvC,GAAG,CAAC,GAAG,CAAC;QACN,eAAe,EAAE,gDAAgD;QACjE,MAAM,EAAE,UAAU;QAClB,OAAO,EAAE,GAAG;KACb,CAAC,CAAC;IAEH,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,CAAC;SAAM,CAAC;QACN,GAAG,CAAC,IAAI,CAAC,EAAE,GAAG,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACnC,CAAC;AACH,CAAC,CAAC;AAEF,eAAe,gBAAgB,CAAC"}

package/sso/index.d.ts

@@ -0,0 +1,7 @@
+import ssoLogin from './sso-login';
+import ssoLogout from './sso-logout';
+import ssoLoginCallback from './sso-login-callback';
+import ssoLogoutCallback from './sso-logout-callback';
+import ssoAuthenticated from './sso-authenticated';
+export { ssoLogin, ssoLoginCallback, ssoLogout, ssoAuthenticated, ssoLogoutCallback };
+//# sourceMappingURL=index.d.ts.map

package/sso/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/sso/index.ts"],"names":[],"mappings":"AAAA,OAAO,QAAQ,MAAM,aAAa,CAAC;AACnC,OAAO,SAAS,MAAM,cAAc,CAAC;AACrC,OAAO,gBAAgB,MAAM,sBAAsB,CAAC;AACpD,OAAO,iBAAiB,MAAM,uBAAuB,CAAC;AACtD,OAAO,gBAAgB,MAAM,qBAAqB,CAAC;AAEnD,OAAO,EAAE,QAAQ,EAAE,gBAAgB,EAAE,SAAS,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,CAAC"}

package/{src/sso/index.ts → sso/index.js}

@@ -3,5 +3,5 @@ import ssoLogout from './sso-logout';
 import ssoLoginCallback from './sso-login-callback';
 import ssoLogoutCallback from './sso-logout-callback';
 import ssoAuthenticated from './sso-authenticated';
-
 export { ssoLogin, ssoLoginCallback, ssoLogout, ssoAuthenticated, ssoLogoutCallback };
+//# sourceMappingURL=index.js.map

package/sso/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/sso/index.ts"],"names":[],"mappings":"AAAA,OAAO,QAAQ,MAAM,aAAa,CAAC;AACnC,OAAO,SAAS,MAAM,cAAc,CAAC;AACrC,OAAO,gBAAgB,MAAM,sBAAsB,CAAC;AACpD,OAAO,iBAAiB,MAAM,uBAAuB,CAAC;AACtD,OAAO,gBAAgB,MAAM,qBAAqB,CAAC;AAEnD,OAAO,EAAE,QAAQ,EAAE,gBAAgB,EAAE,SAAS,EAAE,gBAAgB,EAAE,iBAAiB,EAAE,CAAC"}

package/sso/sso-authenticated.d.ts

@@ -0,0 +1,4 @@
+import { Request, Response } from 'express';
+declare const _default: (req: Request, res: Response) => void;
+export default _default;
+//# sourceMappingURL=sso-authenticated.d.ts.map

package/sso/sso-authenticated.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-authenticated.d.ts","sourceRoot":"","sources":["../../src/sso/sso-authenticated.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;yBAG5B,KAAK,OAAO,EAAE,KAAK,QAAQ;AAA3C,wBAWE"}

package/sso/sso-authenticated.js

@@ -0,0 +1,14 @@
+import { Jwt } from '../utils';
+export default (req, res) => {
+    const isJwtExpired = Jwt.isJwtExpired(req.session.securityToken?.access_token);
+    const userId = req.session.securityToken?.user_state?.user_id;
+    // Don't allow caching of this endpoint
+    res.header('Cache-Control', 'no-store, must-revalidate');
+    if (isJwtExpired || !userId) {
+        res.status(401).send(false);
+    }
+    else {
+        res.status(200).send(true);
+    }
+};
+//# sourceMappingURL=sso-authenticated.js.map

package/sso/sso-authenticated.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-authenticated.js","sourceRoot":"","sources":["../../src/sso/sso-authenticated.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,GAAG,EAAE,MAAM,UAAU,CAAC;AAE/B,eAAe,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;IAC7C,MAAM,YAAY,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,YAAY,CAAC,CAAC;IAC/E,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,UAAU,EAAE,OAAO,CAAC;IAC9D,uCAAuC;IACvC,GAAG,CAAC,MAAM,CAAC,eAAe,EAAE,2BAA2B,CAAC,CAAC;IAEzD,IAAI,YAAY,IAAI,CAAC,MAAM,EAAE,CAAC;QAC5B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC9B,CAAC;SAAM,CAAC;QACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC7B,CAAC;AACH,CAAC,CAAC"}

package/sso/sso-login-callback.d.ts

@@ -0,0 +1,4 @@
+import { NextFunction, Request, Response } from 'express';
+declare const _default: (req: Request, res: Response, next: NextFunction, opalApiUrl: string) => Promise<void>;
+export default _default;
+//# sourceMappingURL=sso-login-callback.d.ts.map

package/sso/sso-login-callback.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-login-callback.d.ts","sourceRoot":"","sources":["../../src/sso/sso-login-callback.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;yBAIpC,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,EAAE,YAAY,MAAM;AAAzF,wBAyBE"}

package/sso/sso-login-callback.js

@@ -0,0 +1,26 @@
+import { Logger } from '@hmcts/nodejs-logging';
+import axios from 'axios';
+export default async (req, res, next, opalApiUrl) => {
+    const INTERNAL_USER_CALLBACK = `${opalApiUrl}/internal-user/handle-oauth-code`;
+    const logger = Logger.getLogger('login-callback');
+    try {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        const result = await axios.post(INTERNAL_USER_CALLBACK, req.body, {
+            headers: { 'content-type': 'application/x-www-form-urlencoded' },
+        });
+        const securityToken = result.data;
+        req.session.securityToken = securityToken;
+        req.session.save((err) => {
+            if (err) {
+                logger.error('Error saving session', err);
+                return next(err);
+            }
+            res.redirect('/');
+        });
+    }
+    catch (error) {
+        logger.error('Error on login-callback', error);
+        return next(error);
+    }
+};
+//# sourceMappingURL=sso-login-callback.js.map

package/sso/sso-login-callback.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-login-callback.js","sourceRoot":"","sources":["../../src/sso/sso-login-callback.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,eAAe,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,UAAkB,EAAE,EAAE;IAC3F,MAAM,sBAAsB,GAAG,GAAG,UAAU,kCAAkC,CAAC;IAC/E,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,gBAAgB,CAAC,CAAC;IAElD,IAAI,CAAC;QACH,8DAA8D;QAC9D,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAM,sBAAsB,EAAE,GAAG,CAAC,IAAI,EAAE;YACrE,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;SACjE,CAAC,CAAC;QAEH,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC;QAClC,GAAG,CAAC,OAAO,CAAC,aAAa,GAAG,aAAa,CAAC;QAE1C,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE;YACvB,IAAI,GAAG,EAAE,CAAC;gBACR,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,GAAG,CAAC,CAAC;gBAC1C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC;YACnB,CAAC;YAED,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;QACpB,CAAC,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAC;QAC/C,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC;IACrB,CAAC;AACH,CAAC,CAAC"}

package/sso/sso-login.d.ts

@@ -0,0 +1,4 @@
+import { NextFunction, Request, Response } from 'express';
+declare const _default: (req: Request, res: Response, next: NextFunction, opalApiUrl: string, frontendHostname: string) => Promise<void>;
+export default _default;
+//# sourceMappingURL=sso-login.d.ts.map

package/sso/sso-login.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-login.d.ts","sourceRoot":"","sources":["../../src/sso/sso-login.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;yBAKxD,KAAK,OAAO,EACZ,KAAK,QAAQ,EACb,MAAM,YAAY,EAClB,YAAY,MAAM,EAClB,kBAAkB,MAAM;AAL1B,wBA0BE"}

package/sso/sso-login.js

@@ -0,0 +1,24 @@
+import { Logger } from '@hmcts/nodejs-logging';
+import axios from 'axios';
+export default async (req, res, next, opalApiUrl, frontendHostname) => {
+    const INTERNAL_USER_LOGIN = `${opalApiUrl}/internal-user/login-or-refresh`;
+    const logger = Logger.getLogger('login');
+    const url = `${INTERNAL_USER_LOGIN}?redirect_uri=${frontendHostname}/sso/login-callback`;
+    try {
+        const response = await axios.get(url);
+        const redirectUrl = response.request.res.responseUrl;
+        if (redirectUrl) {
+            res.redirect(redirectUrl);
+        }
+        else {
+            const error = new Error('Error trying to fetch login page');
+            logger.error('Error on login', error);
+            return next(error);
+        }
+    }
+    catch (error) {
+        logger.error('Error on login', error);
+        return next(error);
+    }
+};
+//# sourceMappingURL=sso-login.js.map

package/sso/sso-login.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-login.js","sourceRoot":"","sources":["../../src/sso/sso-login.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,eAAe,KAAK,EAClB,GAAY,EACZ,GAAa,EACb,IAAkB,EAClB,UAAkB,EAClB,gBAAwB,EACxB,EAAE;IACF,MAAM,mBAAmB,GAAG,GAAG,UAAU,iCAAiC,CAAC;IAC3E,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;IACzC,MAAM,GAAG,GAAG,GAAG,mBAAmB,iBAAiB,gBAAgB,qBAAqB,CAAC;IAEzF,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACtC,MAAM,WAAW,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;QAErD,IAAI,WAAW,EAAE,CAAC;YAChB,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC5B,CAAC;aAAM,CAAC;YACN,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;YAC5D,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAC;YACtC,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC;QACrB,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAC;QACtC,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC;IACrB,CAAC;AACH,CAAC,CAAC"}

package/sso/sso-logout-callback.d.ts

@@ -0,0 +1,4 @@
+import { NextFunction, Request, Response } from 'express';
+declare const _default: (req: Request, res: Response, next: NextFunction, prefix: string) => void;
+export default _default;
+//# sourceMappingURL=sso-logout-callback.d.ts.map

package/sso/sso-logout-callback.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-logout-callback.d.ts","sourceRoot":"","sources":["../../src/sso/sso-logout-callback.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;yBAK1C,KAAK,OAAO,EAAE,KAAK,QAAQ,EAAE,MAAM,YAAY,EAAE,QAAQ,MAAM;AAA/E,wBAWE"}

package/sso/sso-logout-callback.js

@@ -0,0 +1,13 @@
+import { Logger } from '@hmcts/nodejs-logging';
+const logger = Logger.getLogger('logout');
+export default (req, res, next, prefix) => {
+    req.session.destroy((err) => {
+        if (err) {
+            logger.error('Error destroying session', err);
+            return next(err);
+        }
+        res.clearCookie(prefix);
+        res.redirect('/');
+    });
+};
+//# sourceMappingURL=sso-logout-callback.js.map

package/sso/sso-logout-callback.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-logout-callback.js","sourceRoot":"","sources":["../../src/sso/sso-logout-callback.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;AAE1C,eAAe,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,MAAc,EAAE,EAAE;IACjF,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;QAC1B,IAAI,GAAG,EAAE,CAAC;YACR,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,GAAG,CAAC,CAAC;YAC9C,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC;QACnB,CAAC;QAED,GAAG,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAExB,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IACpB,CAAC,CAAC,CAAC;AACL,CAAC,CAAC"}

package/sso/sso-logout.d.ts

@@ -0,0 +1,4 @@
+import { NextFunction, Request, Response } from 'express';
+declare const _default: (req: Request, res: Response, next: NextFunction, opalApiUrl: string, frontendHostname: string) => Promise<void>;
+export default _default;
+//# sourceMappingURL=sso-logout.d.ts.map

package/sso/sso-logout.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-logout.d.ts","sourceRoot":"","sources":["../../src/sso/sso-logout.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;yBAIxD,KAAK,OAAO,EACZ,KAAK,QAAQ,EACb,MAAM,YAAY,EAClB,YAAY,MAAM,EAClB,kBAAkB,MAAM;AAL1B,wBAoCE"}

package/sso/sso-logout.js

@@ -0,0 +1,31 @@
+import axios from 'axios';
+import { Logger } from '@hmcts/nodejs-logging';
+export default async (req, res, next, opalApiUrl, frontendHostname) => {
+    const INTERNAL_USER_LOGOUT = `${opalApiUrl}/internal-user/logout`;
+    const logger = Logger.getLogger('login');
+    const url = `${INTERNAL_USER_LOGOUT}?redirect_uri=${frontendHostname}/sso/logout-callback`;
+    try {
+        let accessToken;
+        if (req.session.securityToken) {
+            accessToken = req.session.securityToken.access_token;
+        }
+        if (!accessToken) {
+            return next(new Error('No access token found in session'));
+        }
+        const response = await axios.get(url, {
+            headers: { Authorization: `Bearer ${accessToken}` },
+        });
+        const logoutRedirect = response.request.res.responseUrl;
+        if (logoutRedirect) {
+            res.redirect(logoutRedirect);
+        }
+        else {
+            next(new Error('Error trying to fetch logout page'));
+        }
+    }
+    catch (error) {
+        logger.error('Error logging out', error);
+        return next(error);
+    }
+};
+//# sourceMappingURL=sso-logout.js.map

package/sso/sso-logout.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sso-logout.js","sourceRoot":"","sources":["../../src/sso/sso-logout.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAE/C,eAAe,KAAK,EAClB,GAAY,EACZ,GAAa,EACb,IAAkB,EAClB,UAAkB,EAClB,gBAAwB,EACxB,EAAE;IACF,MAAM,oBAAoB,GAAG,GAAG,UAAU,uBAAuB,CAAC;IAClE,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;IACzC,MAAM,GAAG,GAAG,GAAG,oBAAoB,iBAAiB,gBAAgB,sBAAsB,CAAC;IAE3F,IAAI,CAAC;QACH,IAAI,WAAW,CAAC;QAEhB,IAAI,GAAG,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC;YAC9B,WAAW,GAAG,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,YAAY,CAAC;QACvD,CAAC;QAED,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO,IAAI,CAAC,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC,CAAC;QAC7D,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE;YACpC,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,WAAW,EAAE,EAAE;SACpD,CAAC,CAAC;QAEH,MAAM,cAAc,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC;QACxD,IAAI,cAAc,EAAE,CAAC;YACnB,GAAG,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAC/B,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,mBAAmB,EAAE,KAAK,CAAC,CAAC;QACzC,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC;IACrB,CAAC;AACH,CAAC,CAAC"}

package/stubs/sso/index.d.ts

@@ -0,0 +1,7 @@
+import ssoLoginStub from './sso-login.stub';
+import ssoLoginCallbackStub from './sso-login-callback.stub';
+import ssoAuthenticatedStub from './sso-authenticated.stub';
+import ssoLogoutStub from './sso-logout.stub';
+import ssoLogoutCallbackStub from './sso-logout-callback.stub';
+export { ssoLoginStub, ssoLoginCallbackStub, ssoAuthenticatedStub, ssoLogoutStub, ssoLogoutCallbackStub };
+//# sourceMappingURL=index.d.ts.map

package/stubs/sso/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/stubs/sso/index.ts"],"names":[],"mappings":"AAAA,OAAO,YAAY,MAAM,kBAAkB,CAAC;AAC5C,OAAO,oBAAoB,MAAM,2BAA2B,CAAC;AAC7D,OAAO,oBAAoB,MAAM,0BAA0B,CAAC;AAC5D,OAAO,aAAa,MAAM,mBAAmB,CAAC;AAC9C,OAAO,qBAAqB,MAAM,4BAA4B,CAAC;AAE/D,OAAO,EAAE,YAAY,EAAE,oBAAoB,EAAE,oBAAoB,EAAE,aAAa,EAAE,qBAAqB,EAAE,CAAC"}

package/{src/stubs/sso/index.ts → stubs/sso/index.js}

@@ -3,5 +3,5 @@ import ssoLoginCallbackStub from './sso-login-callback.stub';
 import ssoAuthenticatedStub from './sso-authenticated.stub';
 import ssoLogoutStub from './sso-logout.stub';
 import ssoLogoutCallbackStub from './sso-logout-callback.stub';
-
 export { ssoLoginStub, ssoLoginCallbackStub, ssoAuthenticatedStub, ssoLogoutStub, ssoLogoutCallbackStub };
+//# sourceMappingURL=index.js.map

package/stubs/sso/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/stubs/sso/index.ts"],"names":[],"mappings":"AAAA,OAAO,YAAY,MAAM,kBAAkB,CAAC;AAC5C,OAAO,oBAAoB,MAAM,2BAA2B,CAAC;AAC7D,OAAO,oBAAoB,MAAM,0BAA0B,CAAC;AAC5D,OAAO,aAAa,MAAM,mBAAmB,CAAC;AAC9C,OAAO,qBAAqB,MAAM,4BAA4B,CAAC;AAE/D,OAAO,EAAE,YAAY,EAAE,oBAAoB,EAAE,oBAAoB,EAAE,aAAa,EAAE,qBAAqB,EAAE,CAAC"}

package/stubs/sso/sso-authenticated.stub.d.ts

@@ -0,0 +1,4 @@
+import { Request, Response } from 'express';
+declare const _default: (req: Request, res: Response) => void;
+export default _default;
+//# sourceMappingURL=sso-authenticated.stub.d.ts.map