@micha.bigler/ui-core-micha 1.2.1 → 1.2.2

package/dist/auth/authApi.js

@@ -23,11 +23,14 @@ function getCsrfToken() {
     return match ? match[1] : null;
 }
 const hasJsonWebAuthn = typeof window !== 'undefined' &&
-    window.PublicKeyCredential &&
+    typeof window.PublicKeyCredential !== 'undefined' &&
     typeof window.PublicKeyCredential.parseCreationOptionsFromJSON === 'function' &&
     typeof window.PublicKeyCredential.parseRequestOptionsFromJSON === 'function';
 function ensureWebAuthnSupport() {
-    if (!window.PublicKeyCredential || !navigator.credentials) {
+    if (typeof window === 'undefined' ||
+        typeof navigator === 'undefined' ||
+        !window.PublicKeyCredential ||
+        !navigator.credentials) {
         throw new Error('Passkeys are not supported in this browser.');
     }
 }
@@ -141,6 +144,10 @@ export async function logoutSession() {
  * 2. Uses the correct path '/providers/{provider}/login'.
  */
 export function startSocialLogin(provider) {
+    // Basic safety check to avoid runtime errors in non-browser environments
+    if (typeof window === 'undefined') {
+        throw new Error('Social login is only available in a browser environment.');
+    }
     window.location.href = `/accounts/${provider}/login/?process=login`;
 }
 /**
@@ -201,14 +208,24 @@ async function registerPasskeyComplete(credentialJson, name = 'Passkey') {
 // High-level Helper, den das UI aufruft
 export async function registerPasskey(name = 'Passkey') {
     ensureWebAuthnSupport();
-    const optionsJson = await registerPasskeyStart({ passwordless: true });
     if (!hasJsonWebAuthn) {
-        throw new Error('Passkey JSON helpers not available in this browser.');
+        throw new Error('Passkey JSON helpers are not available in this browser.');
+    }
+    const optionsJson = await registerPasskeyStart({ passwordless: true });
+    let credential;
+    try {
+        const publicKeyOptions = window.PublicKeyCredential.parseCreationOptionsFromJSON(optionsJson);
+        credential = await navigator.credentials.create({
+            publicKey: publicKeyOptions,
+        });
+    }
+    catch (err) {
+        // Typischer Fall: User klickt "Abbrechen"
+        if (err && err.name === 'NotAllowedError') {
+            throw new Error('Passkey creation was cancelled by the user.');
+        }
+        throw err;
     }
-    const publicKeyOptions = window.PublicKeyCredential.parseCreationOptionsFromJSON(optionsJson);
-    const credential = await navigator.credentials.create({
-        publicKey: publicKeyOptions,
-    });
     if (!credential) {
         throw new Error('Passkey creation was cancelled.');
     }
@@ -227,23 +244,47 @@ async function loginWithPasskeyComplete(credentialJson) {
 // Public API, die du im UI verwendest
 export async function loginWithPasskey() {
     ensureWebAuthnSupport();
-    const optionsJson = await loginWithPasskeyStart();
     if (!hasJsonWebAuthn) {
-        throw new Error('Passkey JSON helpers not available in this browser.');
+        throw new Error('Passkey JSON helpers are not available in this browser.');
+    }
+    const optionsJson = await loginWithPasskeyStart();
+    let assertion;
+    try {
+        const publicKeyOptions = window.PublicKeyCredential.parseRequestOptionsFromJSON(optionsJson);
+        assertion = await navigator.credentials.get({
+            publicKey: publicKeyOptions,
+        });
+    }
+    catch (err) {
+        if (err && err.name === 'NotAllowedError') {
+            // User hat abgebrochen oder Timeout
+            throw new Error('Passkey authentication was cancelled by the user.');
+        }
+        throw err;
     }
-    const publicKeyOptions = window.PublicKeyCredential.parseRequestOptionsFromJSON(optionsJson);
-    const assertion = await navigator.credentials.get({
-        publicKey: publicKeyOptions,
-    });
     if (!assertion) {
         throw new Error('Passkey authentication was cancelled.');
     }
     const credentialJson = assertion.toJSON();
-    // Allauth kann hier 200 (eingeloggt) oder 401 (z.B. Email noch nicht verifiziert) liefern :contentReference[oaicite:5]{index=5}
-    await loginWithPasskeyComplete(credentialJson);
-    // Danach wie bei Passwort-Login aktuellen User laden
-    const user = await fetchCurrentUser();
-    return user;
+    let postError = null;
+    try {
+        await loginWithPasskeyComplete(credentialJson);
+    }
+    catch (err) {
+        // z.B. 401, obwohl das Credential eigentlich ok war
+        postError = err;
+    }
+    // Versuchen, die aktuelle Session zu laden
+    try {
+        const user = await fetchCurrentUser();
+        return { user }; // <--- wie loginWithPassword
+    }
+    catch (err) {
+        if (postError) {
+            throw new Error(extractErrorMessage(postError));
+        }
+        throw new Error(extractErrorMessage(err));
+    }
 }
 export const authApi = {
     fetchCurrentUser,

package/dist/components/SecurityComponent.js

@@ -4,15 +4,16 @@ import { Box, Typography, Divider, Button, Stack, Alert, } from '@mui/material';
 import PasswordChangeForm from './PasswordChangeForm';
 import SocialLoginButtons from './SocialLoginButtons';
 import { authApi } from '../auth/authApi';
+import { FEATURES } from '../auth/authConfig';
 const SecurityComponent = () => {
     const [message, setMessage] = useState('');
     const [error, setError] = useState('');
-    const handleSocialClick = async (provider) => {
+    const handleSocialClick = (provider) => {
         setMessage('');
         setError('');
         try {
-            // FIX: Await the async function to catch network errors
-            await authApi.startSocialLogin(provider);
+            authApi.startSocialLogin(provider);
+            // Ab hier verlässt der Browser normalerweise die Seite
         }
         catch (e) {
             setError(e.message || 'Social login could not be started.');

package/dist/pages/LoginPage.js

@@ -40,7 +40,6 @@ export function LoginPage() {
             authApi.startSocialLogin(providerKey);
         }
         catch (err) {
-            // eslint-disable-next-line no-console
             console.error('Social login init failed', err);
             setError('Could not start social login.');
         }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@micha.bigler/ui-core-micha",
-  "version": "1.2.1",
+  "version": "1.2.2",
   "main": "dist/index.js",
   "module": "dist/index.js",
   "private": false,

package/src/auth/authApi.jsx

@@ -25,12 +25,17 @@ function getCsrfToken() {
 
 const hasJsonWebAuthn =
   typeof window !== 'undefined' &&
-  window.PublicKeyCredential &&
+  typeof window.PublicKeyCredential !== 'undefined' &&
   typeof window.PublicKeyCredential.parseCreationOptionsFromJSON === 'function' &&
   typeof window.PublicKeyCredential.parseRequestOptionsFromJSON === 'function';
 
 function ensureWebAuthnSupport() {
-  if (!window.PublicKeyCredential || !navigator.credentials) {
+  if (
+    typeof window === 'undefined' ||
+    typeof navigator === 'undefined' ||
+    !window.PublicKeyCredential ||
+    !navigator.credentials
+  ) {
     throw new Error('Passkeys are not supported in this browser.');
   }
 }
@@ -167,6 +172,11 @@ export async function logoutSession() {
  * 2. Uses the correct path '/providers/{provider}/login'.
  */
 export function startSocialLogin(provider) {
+  // Basic safety check to avoid runtime errors in non-browser environments
+  if (typeof window === 'undefined') {
+    throw new Error('Social login is only available in a browser environment.');
+  }
+
   window.location.href = `/accounts/${provider}/login/?process=login`;
 }
 
@@ -263,18 +273,27 @@ async function registerPasskeyComplete(credentialJson, name = 'Passkey') {
 export async function registerPasskey(name = 'Passkey') {
   ensureWebAuthnSupport();
 
-  const optionsJson = await registerPasskeyStart({ passwordless: true });
-
   if (!hasJsonWebAuthn) {
-    throw new Error('Passkey JSON helpers not available in this browser.');
+    throw new Error('Passkey JSON helpers are not available in this browser.');
   }
 
-  const publicKeyOptions =
-    window.PublicKeyCredential.parseCreationOptionsFromJSON(optionsJson);
+  const optionsJson = await registerPasskeyStart({ passwordless: true });
 
-  const credential = await navigator.credentials.create({
-    publicKey: publicKeyOptions,
-  });
+  let credential;
+  try {
+    const publicKeyOptions =
+      window.PublicKeyCredential.parseCreationOptionsFromJSON(optionsJson);
+
+    credential = await navigator.credentials.create({
+      publicKey: publicKeyOptions,
+    });
+  } catch (err) {
+    // Typischer Fall: User klickt "Abbrechen"
+    if (err && err.name === 'NotAllowedError') {
+      throw new Error('Passkey creation was cancelled by the user.');
+    }
+    throw err;
+  }
 
   if (!credential) {
     throw new Error('Passkey creation was cancelled.');
@@ -307,18 +326,27 @@ async function loginWithPasskeyComplete(credentialJson) {
 export async function loginWithPasskey() {
   ensureWebAuthnSupport();
 
-  const optionsJson = await loginWithPasskeyStart();
-
   if (!hasJsonWebAuthn) {
-    throw new Error('Passkey JSON helpers not available in this browser.');
+    throw new Error('Passkey JSON helpers are not available in this browser.');
   }
 
-  const publicKeyOptions =
-    window.PublicKeyCredential.parseRequestOptionsFromJSON(optionsJson);
+  const optionsJson = await loginWithPasskeyStart();
 
-  const assertion = await navigator.credentials.get({
-    publicKey: publicKeyOptions,
-  });
+  let assertion;
+  try {
+    const publicKeyOptions =
+      window.PublicKeyCredential.parseRequestOptionsFromJSON(optionsJson);
+
+    assertion = await navigator.credentials.get({
+      publicKey: publicKeyOptions,
+    });
+  } catch (err) {
+    if (err && err.name === 'NotAllowedError') {
+      // User hat abgebrochen oder Timeout
+      throw new Error('Passkey authentication was cancelled by the user.');
+    }
+    throw err;
+  }
 
   if (!assertion) {
     throw new Error('Passkey authentication was cancelled.');
@@ -326,12 +354,24 @@ export async function loginWithPasskey() {
 
   const credentialJson = assertion.toJSON();
 
-  // Allauth kann hier 200 (eingeloggt) oder 401 (z.B. Email noch nicht verifiziert) liefern :contentReference[oaicite:5]{index=5}
-  await loginWithPasskeyComplete(credentialJson);
+  let postError = null;
+  try {
+    await loginWithPasskeyComplete(credentialJson);
+  } catch (err) {
+    // z.B. 401, obwohl das Credential eigentlich ok war
+    postError = err;
+  }
 
-  // Danach wie bei Passwort-Login aktuellen User laden
-  const user = await fetchCurrentUser();
-  return user;
+  // Versuchen, die aktuelle Session zu laden
+  try {
+    const user = await fetchCurrentUser();
+    return { user };           // <--- wie loginWithPassword
+  } catch (err) {
+    if (postError) {
+      throw new Error(extractErrorMessage(postError));
+    }
+    throw new Error(extractErrorMessage(err));
+  }
 }
 
 

package/src/components/SecurityComponent.jsx

@@ -10,17 +10,18 @@ import {
 import PasswordChangeForm from './PasswordChangeForm';
 import SocialLoginButtons from './SocialLoginButtons';
 import { authApi } from '../auth/authApi'; 
+import { FEATURES } from '../auth/authConfig';
 
 const SecurityComponent = () => {
   const [message, setMessage] = useState('');
   const [error, setError] = useState('');
 
-  const handleSocialClick = async (provider) => {
+  const handleSocialClick = (provider) => {
     setMessage('');
     setError('');
     try {
-      // FIX: Await the async function to catch network errors
-      await authApi.startSocialLogin(provider);
+      authApi.startSocialLogin(provider);
+      // Ab hier verlässt der Browser normalerweise die Seite
     } catch (e) {
       setError(e.message || 'Social login could not be started.');
     }

package/src/pages/LoginPage.jsx

@@ -41,7 +41,6 @@ export function LoginPage() {
     try {
       authApi.startSocialLogin(providerKey);
     } catch (err) {
-      // eslint-disable-next-line no-console
       console.error('Social login init failed', err);
       setError('Could not start social login.');
     }