@nauth-toolkit/client-angular 0.1.58 → 0.1.60
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/esm2022/lib/auth.guard.mjs +58 -23
- package/esm2022/lib/social-redirect-callback.guard.mjs +28 -24
- package/esm2022/ngmodule/auth.service.mjs +40 -1
- package/esm2022/ngmodule/nauth.module.mjs +4 -1
- package/esm2022/standalone/nauth-toolkit-client-angular-standalone.mjs +1 -1
- package/esm2022/standalone/public-api.mjs +6 -10
- package/fesm2022/nauth-toolkit-client-angular-standalone.mjs +5 -1217
- package/fesm2022/nauth-toolkit-client-angular-standalone.mjs.map +1 -1
- package/fesm2022/nauth-toolkit-client-angular.mjs +181 -103
- package/fesm2022/nauth-toolkit-client-angular.mjs.map +1 -1
- package/lib/auth.guard.d.ts +39 -16
- package/lib/social-redirect-callback.guard.d.ts +2 -2
- package/ngmodule/auth.service.d.ts +36 -1
- package/package.json +2 -2
- package/standalone/public-api.d.ts +4 -7
- package/esm2022/standalone/auth.guard.mjs +0 -83
- package/esm2022/standalone/auth.interceptor.mjs +0 -158
- package/esm2022/standalone/auth.service.mjs +0 -777
- package/esm2022/standalone/http-adapter.mjs +0 -127
- package/esm2022/standalone/social-redirect-callback.guard.mjs +0 -81
- package/esm2022/standalone/tokens.mjs +0 -6
- package/standalone/auth.guard.d.ts +0 -64
- package/standalone/auth.interceptor.d.ts +0 -15
- package/standalone/auth.service.d.ts +0 -580
- package/standalone/http-adapter.d.ts +0 -53
- package/standalone/social-redirect-callback.guard.d.ts +0 -25
- package/standalone/tokens.d.ts +0 -6
|
@@ -1,127 +0,0 @@
|
|
|
1
|
-
import { Injectable } from '@angular/core';
|
|
2
|
-
import { HttpErrorResponse } from '@angular/common/http';
|
|
3
|
-
import { firstValueFrom } from 'rxjs';
|
|
4
|
-
import { NAuthClientError, NAuthErrorCode } from '@nauth-toolkit/client';
|
|
5
|
-
import * as i0 from "@angular/core";
|
|
6
|
-
import * as i1 from "@angular/common/http";
|
|
7
|
-
/**
|
|
8
|
-
* HTTP adapter for Angular using HttpClient.
|
|
9
|
-
*
|
|
10
|
-
* This adapter:
|
|
11
|
-
* - Uses Angular's HttpClient for all requests
|
|
12
|
-
* - Works with Angular's HTTP interceptors (including authInterceptor)
|
|
13
|
-
* - Auto-provided via Angular DI (providedIn: 'root')
|
|
14
|
-
* - Converts HttpClient responses to HttpResponse format
|
|
15
|
-
* - Converts HttpErrorResponse to NAuthClientError
|
|
16
|
-
*
|
|
17
|
-
* Users don't need to configure this manually - it's automatically
|
|
18
|
-
* injected when using AuthService in Angular apps.
|
|
19
|
-
*
|
|
20
|
-
* @example
|
|
21
|
-
* ```typescript
|
|
22
|
-
* // Automatic usage (no manual setup needed)
|
|
23
|
-
* // AuthService automatically injects AngularHttpAdapter
|
|
24
|
-
* constructor(private auth: AuthService) {}
|
|
25
|
-
* ```
|
|
26
|
-
*/
|
|
27
|
-
export class AngularHttpAdapter {
|
|
28
|
-
http;
|
|
29
|
-
constructor(http) {
|
|
30
|
-
this.http = http;
|
|
31
|
-
}
|
|
32
|
-
/**
|
|
33
|
-
* Safely parse a JSON response body.
|
|
34
|
-
*
|
|
35
|
-
* Angular's fetch backend (`withFetch()`) will throw a raw `SyntaxError` if
|
|
36
|
-
* `responseType: 'json'` is used and the backend returns HTML (common for
|
|
37
|
-
* proxies, 502 pages, SSR fallbacks, or misrouted requests).
|
|
38
|
-
*
|
|
39
|
-
* To avoid crashing consumer apps, we always request as text and then parse
|
|
40
|
-
* JSON only when the response actually looks like JSON.
|
|
41
|
-
*
|
|
42
|
-
* @param bodyText - Raw response body as text
|
|
43
|
-
* @param contentType - Content-Type header value (if available)
|
|
44
|
-
* @returns Parsed JSON value (unknown)
|
|
45
|
-
* @throws {SyntaxError} When body is non-empty but not valid JSON
|
|
46
|
-
*/
|
|
47
|
-
parseJsonBody(bodyText, contentType) {
|
|
48
|
-
const trimmed = bodyText.trim();
|
|
49
|
-
if (!trimmed)
|
|
50
|
-
return null;
|
|
51
|
-
// If it's clearly HTML, never attempt JSON.parse (some proxies mislabel Content-Type).
|
|
52
|
-
if (trimmed.startsWith('<')) {
|
|
53
|
-
return bodyText;
|
|
54
|
-
}
|
|
55
|
-
const looksLikeJson = trimmed.startsWith('{') || trimmed.startsWith('[');
|
|
56
|
-
const isJsonContentType = typeof contentType === 'string' && contentType.toLowerCase().includes('application/json');
|
|
57
|
-
if (!looksLikeJson && !isJsonContentType) {
|
|
58
|
-
// Return raw text when it doesn't look like JSON (e.g., HTML error pages).
|
|
59
|
-
return bodyText;
|
|
60
|
-
}
|
|
61
|
-
return JSON.parse(trimmed);
|
|
62
|
-
}
|
|
63
|
-
/**
|
|
64
|
-
* Execute HTTP request using Angular's HttpClient.
|
|
65
|
-
*
|
|
66
|
-
* @param config - Request configuration
|
|
67
|
-
* @returns Response with parsed data
|
|
68
|
-
* @throws NAuthClientError if request fails
|
|
69
|
-
*/
|
|
70
|
-
async request(config) {
|
|
71
|
-
try {
|
|
72
|
-
// Use Angular's HttpClient - goes through ALL interceptors.
|
|
73
|
-
// IMPORTANT: Use responseType 'text' to avoid raw JSON.parse crashes when
|
|
74
|
-
// the backend returns HTML (seen in some proxy/SSR/misroute setups).
|
|
75
|
-
const res = await firstValueFrom(this.http.request(config.method, config.url, {
|
|
76
|
-
body: config.body,
|
|
77
|
-
headers: config.headers,
|
|
78
|
-
withCredentials: config.credentials === 'include',
|
|
79
|
-
observe: 'response',
|
|
80
|
-
responseType: 'text',
|
|
81
|
-
}));
|
|
82
|
-
const contentType = res.headers?.get('content-type');
|
|
83
|
-
const parsed = this.parseJsonBody(res.body ?? '', contentType);
|
|
84
|
-
return {
|
|
85
|
-
data: parsed,
|
|
86
|
-
status: res.status,
|
|
87
|
-
headers: {}, // Reserved for future header passthrough if needed
|
|
88
|
-
};
|
|
89
|
-
}
|
|
90
|
-
catch (error) {
|
|
91
|
-
if (error instanceof HttpErrorResponse) {
|
|
92
|
-
// Convert Angular's HttpErrorResponse to NAuthClientError.
|
|
93
|
-
// When using responseType 'text', `error.error` is typically a string.
|
|
94
|
-
const contentType = error.headers?.get('content-type') ?? null;
|
|
95
|
-
const rawBody = typeof error.error === 'string' ? error.error : '';
|
|
96
|
-
const parsedError = this.parseJsonBody(rawBody, contentType);
|
|
97
|
-
const errorData = typeof parsedError === 'object' && parsedError !== null ? parsedError : {};
|
|
98
|
-
const code = typeof errorData['code'] === 'string' ? errorData['code'] : NAuthErrorCode.INTERNAL_ERROR;
|
|
99
|
-
const message = typeof errorData['message'] === 'string'
|
|
100
|
-
? errorData['message']
|
|
101
|
-
: typeof parsedError === 'string' && parsedError.trim()
|
|
102
|
-
? parsedError
|
|
103
|
-
: error.message || `Request failed with status ${error.status}`;
|
|
104
|
-
const timestamp = typeof errorData['timestamp'] === 'string' ? errorData['timestamp'] : undefined;
|
|
105
|
-
const details = typeof errorData['details'] === 'object' ? errorData['details'] : undefined;
|
|
106
|
-
throw new NAuthClientError(code, message, {
|
|
107
|
-
statusCode: error.status,
|
|
108
|
-
timestamp,
|
|
109
|
-
details,
|
|
110
|
-
isNetworkError: error.status === 0, // Network error (no response from server)
|
|
111
|
-
});
|
|
112
|
-
}
|
|
113
|
-
// Re-throw non-HTTP errors as an SDK error so consumers don't see raw parser crashes.
|
|
114
|
-
const message = error instanceof Error ? error.message : 'Unknown error';
|
|
115
|
-
throw new NAuthClientError(NAuthErrorCode.INTERNAL_ERROR, message, {
|
|
116
|
-
statusCode: 0,
|
|
117
|
-
isNetworkError: true,
|
|
118
|
-
});
|
|
119
|
-
}
|
|
120
|
-
}
|
|
121
|
-
static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "17.3.12", ngImport: i0, type: AngularHttpAdapter, deps: [{ token: i1.HttpClient }], target: i0.ɵɵFactoryTarget.Injectable });
|
|
122
|
-
static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "17.3.12", ngImport: i0, type: AngularHttpAdapter });
|
|
123
|
-
}
|
|
124
|
-
i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "17.3.12", ngImport: i0, type: AngularHttpAdapter, decorators: [{
|
|
125
|
-
type: Injectable
|
|
126
|
-
}], ctorParameters: () => [{ type: i1.HttpClient }] });
|
|
127
|
-
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -1,81 +0,0 @@
|
|
|
1
|
-
import { inject, PLATFORM_ID } from '@angular/core';
|
|
2
|
-
import { isPlatformBrowser } from '@angular/common';
|
|
3
|
-
import { AuthService } from './auth.service';
|
|
4
|
-
import { NAUTH_CLIENT_CONFIG } from './tokens';
|
|
5
|
-
/**
|
|
6
|
-
* Social redirect callback route guard.
|
|
7
|
-
*
|
|
8
|
-
* This guard supports the redirect-first social flow where the backend redirects
|
|
9
|
-
* back to the frontend with:
|
|
10
|
-
* - `appState` (always optional)
|
|
11
|
-
* - `exchangeToken` (present for json/hybrid flows, and for cookie flows that return a challenge)
|
|
12
|
-
* - `error` / `error_description` (provider errors)
|
|
13
|
-
*
|
|
14
|
-
* Behavior:
|
|
15
|
-
* - If `exchangeToken` exists: exchanges it via backend and redirects to success or challenge routes.
|
|
16
|
-
* - If no `exchangeToken`: treat as cookie-success path and redirect to success route.
|
|
17
|
-
* - If `error` exists: redirects to oauthError route.
|
|
18
|
-
*
|
|
19
|
-
* @example
|
|
20
|
-
* ```typescript
|
|
21
|
-
* import { socialRedirectCallbackGuard } from '@nauth-toolkit/client/angular';
|
|
22
|
-
*
|
|
23
|
-
* export const routes: Routes = [
|
|
24
|
-
* { path: 'auth/callback', canActivate: [socialRedirectCallbackGuard], component: CallbackComponent },
|
|
25
|
-
* ];
|
|
26
|
-
* ```
|
|
27
|
-
*/
|
|
28
|
-
export const socialRedirectCallbackGuard = async () => {
|
|
29
|
-
const auth = inject(AuthService);
|
|
30
|
-
const config = inject(NAUTH_CLIENT_CONFIG);
|
|
31
|
-
const platformId = inject(PLATFORM_ID);
|
|
32
|
-
const isBrowser = isPlatformBrowser(platformId);
|
|
33
|
-
if (!isBrowser) {
|
|
34
|
-
return false;
|
|
35
|
-
}
|
|
36
|
-
const params = new URLSearchParams(window.location.search);
|
|
37
|
-
const error = params.get('error');
|
|
38
|
-
const exchangeToken = params.get('exchangeToken');
|
|
39
|
-
// Provider error: redirect to oauthError
|
|
40
|
-
if (error) {
|
|
41
|
-
const errorUrl = config.redirects?.oauthError || '/login';
|
|
42
|
-
window.location.replace(errorUrl);
|
|
43
|
-
return false;
|
|
44
|
-
}
|
|
45
|
-
// No exchangeToken: cookie success path; redirect to success.
|
|
46
|
-
//
|
|
47
|
-
// Note: we do not "activate" the callback route to avoid consumers needing to render a page.
|
|
48
|
-
if (!exchangeToken) {
|
|
49
|
-
// ============================================================================
|
|
50
|
-
// Cookies mode: hydrate user state before redirecting
|
|
51
|
-
// ============================================================================
|
|
52
|
-
// WHY: In cookie delivery, the OAuth callback completes via browser redirects, so the frontend
|
|
53
|
-
// does not receive a JSON AuthResponse to populate the SDK's cached `currentUser`.
|
|
54
|
-
//
|
|
55
|
-
// Without this, sync guards (`authGuard`) can immediately redirect to /login because
|
|
56
|
-
// `currentUser` is still null even though cookies were set successfully.
|
|
57
|
-
try {
|
|
58
|
-
await auth.getProfile();
|
|
59
|
-
}
|
|
60
|
-
catch {
|
|
61
|
-
const errorUrl = config.redirects?.oauthError || '/login';
|
|
62
|
-
window.location.replace(errorUrl);
|
|
63
|
-
return false;
|
|
64
|
-
}
|
|
65
|
-
const successUrl = config.redirects?.success || '/';
|
|
66
|
-
window.location.replace(successUrl);
|
|
67
|
-
return false;
|
|
68
|
-
}
|
|
69
|
-
// Exchange token and route accordingly
|
|
70
|
-
const response = await auth.exchangeSocialRedirect(exchangeToken);
|
|
71
|
-
if (response.challengeName) {
|
|
72
|
-
const challengeBase = config.redirects?.challengeBase || '/auth/challenge';
|
|
73
|
-
const challengeRoute = response.challengeName.toLowerCase().replace(/_/g, '-');
|
|
74
|
-
window.location.replace(`${challengeBase}/${challengeRoute}`);
|
|
75
|
-
return false;
|
|
76
|
-
}
|
|
77
|
-
const successUrl = config.redirects?.success || '/';
|
|
78
|
-
window.location.replace(successUrl);
|
|
79
|
-
return false;
|
|
80
|
-
};
|
|
81
|
-
//# sourceMappingURL=data:application/json;base64,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
|
|
@@ -1,6 +0,0 @@
|
|
|
1
|
-
import { InjectionToken } from '@angular/core';
|
|
2
|
-
/**
|
|
3
|
-
* Injection token for providing NAuthClientConfig in Angular apps.
|
|
4
|
-
*/
|
|
5
|
-
export const NAUTH_CLIENT_CONFIG = new InjectionToken('NAUTH_CLIENT_CONFIG');
|
|
6
|
-
//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoidG9rZW5zLmpzIiwic291cmNlUm9vdCI6IiIsInNvdXJjZXMiOlsiLi4vLi4vLi4vc3RhbmRhbG9uZS90b2tlbnMudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsT0FBTyxFQUFFLGNBQWMsRUFBRSxNQUFNLGVBQWUsQ0FBQztBQUcvQzs7R0FFRztBQUNILE1BQU0sQ0FBQyxNQUFNLG1CQUFtQixHQUFHLElBQUksY0FBYyxDQUFvQixxQkFBcUIsQ0FBQyxDQUFDIiwic291cmNlc0NvbnRlbnQiOlsiaW1wb3J0IHsgSW5qZWN0aW9uVG9rZW4gfSBmcm9tICdAYW5ndWxhci9jb3JlJztcbmltcG9ydCB7IE5BdXRoQ2xpZW50Q29uZmlnIH0gZnJvbSAnQG5hdXRoLXRvb2xraXQvY2xpZW50JztcblxuLyoqXG4gKiBJbmplY3Rpb24gdG9rZW4gZm9yIHByb3ZpZGluZyBOQXV0aENsaWVudENvbmZpZyBpbiBBbmd1bGFyIGFwcHMuXG4gKi9cbmV4cG9ydCBjb25zdCBOQVVUSF9DTElFTlRfQ09ORklHID0gbmV3IEluamVjdGlvblRva2VuPE5BdXRoQ2xpZW50Q29uZmlnPignTkFVVEhfQ0xJRU5UX0NPTkZJRycpO1xuIl19
|
|
@@ -1,64 +0,0 @@
|
|
|
1
|
-
import { CanActivateFn, Router, UrlTree } from '@angular/router';
|
|
2
|
-
import { AuthService } from './auth.service';
|
|
3
|
-
/**
|
|
4
|
-
* Functional route guard for authentication (Angular 17+).
|
|
5
|
-
*
|
|
6
|
-
* Protects routes by checking if user is authenticated.
|
|
7
|
-
* Redirects to login page if not authenticated.
|
|
8
|
-
*
|
|
9
|
-
* @param redirectTo - Path to redirect to if not authenticated (default: '/login')
|
|
10
|
-
* @returns CanActivateFn guard function
|
|
11
|
-
*
|
|
12
|
-
* @example
|
|
13
|
-
* ```typescript
|
|
14
|
-
* // In route configuration
|
|
15
|
-
* const routes: Routes = [
|
|
16
|
-
* {
|
|
17
|
-
* path: 'home',
|
|
18
|
-
* component: HomeComponent,
|
|
19
|
-
* canActivate: [authGuard()]
|
|
20
|
-
* },
|
|
21
|
-
* {
|
|
22
|
-
* path: 'admin',
|
|
23
|
-
* component: AdminComponent,
|
|
24
|
-
* canActivate: [authGuard('/admin/login')]
|
|
25
|
-
* }
|
|
26
|
-
* ];
|
|
27
|
-
* ```
|
|
28
|
-
*/
|
|
29
|
-
export declare function authGuard(redirectTo?: string): CanActivateFn;
|
|
30
|
-
/**
|
|
31
|
-
* Class-based authentication guard for NgModule compatibility.
|
|
32
|
-
*
|
|
33
|
-
* @example
|
|
34
|
-
* ```typescript
|
|
35
|
-
* // In route configuration (NgModule)
|
|
36
|
-
* const routes: Routes = [
|
|
37
|
-
* {
|
|
38
|
-
* path: 'home',
|
|
39
|
-
* component: HomeComponent,
|
|
40
|
-
* canActivate: [AuthGuard]
|
|
41
|
-
* }
|
|
42
|
-
* ];
|
|
43
|
-
*
|
|
44
|
-
* // In module providers
|
|
45
|
-
* @NgModule({
|
|
46
|
-
* providers: [AuthGuard]
|
|
47
|
-
* })
|
|
48
|
-
* ```
|
|
49
|
-
*/
|
|
50
|
-
export declare class AuthGuard {
|
|
51
|
-
private auth;
|
|
52
|
-
private router;
|
|
53
|
-
/**
|
|
54
|
-
* @param auth - Authentication service
|
|
55
|
-
* @param router - Angular router
|
|
56
|
-
*/
|
|
57
|
-
constructor(auth: AuthService, router: Router);
|
|
58
|
-
/**
|
|
59
|
-
* Check if route can be activated.
|
|
60
|
-
*
|
|
61
|
-
* @returns True if authenticated, otherwise redirects to login
|
|
62
|
-
*/
|
|
63
|
-
canActivate(): boolean | UrlTree;
|
|
64
|
-
}
|
|
@@ -1,15 +0,0 @@
|
|
|
1
|
-
import { HttpHandlerFn, HttpInterceptorFn, HttpRequest } from '@angular/common/http';
|
|
2
|
-
/**
|
|
3
|
-
* Angular HTTP interceptor for nauth-toolkit.
|
|
4
|
-
*
|
|
5
|
-
* Handles:
|
|
6
|
-
* - Cookies mode: withCredentials + CSRF tokens + refresh via POST
|
|
7
|
-
* - JSON mode: refresh via SDK, retry with new token
|
|
8
|
-
*/
|
|
9
|
-
export declare const authInterceptor: HttpInterceptorFn;
|
|
10
|
-
/**
|
|
11
|
-
* Class-based interceptor for NgModule compatibility.
|
|
12
|
-
*/
|
|
13
|
-
export declare class AuthInterceptor {
|
|
14
|
-
intercept(req: HttpRequest<unknown>, next: HttpHandlerFn): import("rxjs").Observable<import("@angular/common/http").HttpEvent<unknown>>;
|
|
15
|
-
}
|