npm - @nibssplc/cams-sdk-react - Versions diffs - 0.0.1-beta.76 → 0.0.1-beta.77 - Mend

@nibssplc/cams-sdk-react 0.0.1-beta.76 → 0.0.1-beta.77

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/components/UnifiedCAMSProvider.d.ts +1 -0
package/dist/index.cjs.js +464 -463
package/dist/index.cjs.js.map +1 -1
package/dist/index.esm.js +466 -466
package/dist/index.esm.js.map +1 -1
package/package.json +1 -1

package/dist/index.esm.js CHANGED Viewed

@@ -2,8 +2,8 @@ import * as React from 'react';
 import React__default, { useState, useRef, useEffect, useCallback, createContext, useContext, useMemo } from 'react';
 import { isPopupWindow, initializePopupAuth, CAMSSessionManager, CAMSMFAAuthenticator, Logger, CAMSError, CAMSErrorType } from '@nibssplc/cams-sdk';
 export * from '@nibssplc/cams-sdk';
-import { useMsal, useAccount, MsalProvider } from '@azure/msal-react';
-import { InteractionStatus, PublicClientApplication } from '@azure/msal-browser';
+import { MsalProvider, useMsal, useAccount } from '@azure/msal-react';
+import { PublicClientApplication, InteractionStatus } from '@azure/msal-browser';
 import z$1, { z } from 'zod';
 import { OTPInput, OTPInputContext, REGEXP_ONLY_DIGITS } from 'input-otp';
 import { RectangleEllipsis, XIcon, CheckCircle, Mail, Shield, ShieldCheck, ShieldClose } from 'lucide-react';
@@ -236,315 +236,9 @@ function useCAMSAuth(options) {
     };
 }
-var CAMSContext$1 = createContext(null);
-function useCAMSContext$1() {
-    var context = useContext(CAMSContext$1);
-    if (!context) {
-        throw new Error("useCAMSContext must be used within a UnifiedCAMSProvider");
-    }
-    return context;
-}
+var jsxRuntime = {exports: {}};
-function useCAMSMSALAuth(options) {
-    var _this = this;
-    var storageKey = options.storageKey || "CAMS-MSAL-AUTH-SDK";
-    var _a = useMsal(), instance = _a.instance, inProgress = _a.inProgress, accounts = _a.accounts;
-    var account = useAccount(accounts[0] || {});
-    var setUserProfile = useCAMSContext$1().setUserProfile;
-    var _b = useState(null), error = _b[0], setError = _b[1];
-    var _c = useState(""), idToken = _c[0], setIdToken = _c[1];
-    var _d = useState(""), accessToken = _d[0], setAccessToken = _d[1];
-    var _e = useState(null), mfaAuthenticator = _e[0], setMfaAuthenticator = _e[1];
-    var _f = useState(false), requiresMFA = _f[0], setRequiresMFA = _f[1];
-    var isLoading = inProgress !== InteractionStatus.None;
-    var isAuthenticated = !!account && !!accessToken && !requiresMFA;
-    var scopes = options.scopes || ["openid", "profile", "email"];
-    var isTokenValid = function (token) {
-        try {
-            var payload = JSON.parse(atob(token.split(".")[1]));
-            return payload.exp * 1000 > Date.now();
-        }
-        catch (_a) {
-            return false;
-        }
-    };
-    useEffect(function () {
-        if (typeof window !== "undefined" && !accessToken) {
-            var stored = localStorage.getItem(storageKey);
-            if (stored) {
-                try {
-                    var _a = JSON.parse(stored), accessToken_1 = _a.accessToken, idToken_1 = _a.idToken, storedRequiresMFA = _a.requiresMFA, storedIsAuthenticated = _a.isAuthenticated;
-                    if (accessToken_1 && isTokenValid(accessToken_1)) {
-                        setAccessToken(accessToken_1);
-                        setIdToken(idToken_1);
-                        // Restore MFA state
-                        if (storedRequiresMFA && !storedIsAuthenticated) {
-                            var mfaConfig = {
-                                accessToken: accessToken_1,
-                                idToken: idToken_1,
-                                appCode: options.appCode,
-                                provider: "MSAL",
-                                apiEndpoint: options.MFAEndpoint,
-                            };
-                            var authenticator = new CAMSMFAAuthenticator(mfaConfig);
-                            setMfaAuthenticator(authenticator);
-                            setRequiresMFA(true);
-                        }
-                        Logger.debug("App Code", { ">>>": options.appCode });
-                    }
-                    else {
-                        localStorage.removeItem(storageKey);
-                    }
-                }
-                catch (_b) { }
-            }
-            else if (account) {
-                // Storage cleared but MSAL account exists - clear MSAL state
-                instance.logoutRedirect().catch(function () { });
-            }
-        }
-    }, [accessToken, account, instance, options.storageKey]);
-    // useEffect(() => {
-    //   const handleRedirect = async () => {
-    //     try {
-    //       const response = await instance.handleRedirectPromise();
-    //       if (response) {
-    //         const account = response.account;
-    //         instance.setActiveA ccount(account);
-    //         const tokenResponse = await instance.acq uireTokenSilent({
-    //           scopes,
-    //           account,
-    //         });
-    //         setToken(tokenResponse.accessToken);
-    //         setAccessToken(tokenResponse.accessToken);
-    //         setIdToken(tokenResponse.idTo ken);
-    //         options.onAuthSuccess?.(tokenR esponse.accessToken);
-    //         if (
-    //           typeof window !== "undefined" &&
-    //           process.env.NODE_ENV !== "test"
-    //         ) {
-    //           window.location.href = options.mfaUrl!;
-    //         }
-    //       }
-    //     } catch (err) {
-    //       console.error("Redirect handling failed:", err);
-    //     }
-    //   };
-    //   handleRedirect();
-    // }, []);
-    var login = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
-        var response, mfaConfig, authenticator, err_1, camsError_1, camsError;
-        var _a, _b, _c, _d;
-        return __generator(this, function (_e) {
-            switch (_e.label) {
-                case 0:
-                    setError(null);
-                    _e.label = 1;
-                case 1:
-                    _e.trys.push([1, 3, , 4]);
-                    return [4 /*yield*/, instance.loginPopup({
-                            scopes: scopes,
-                            prompt: options.prompt || "login",
-                        })];
-                case 2:
-                    response = _e.sent();
-                    console.log("Login Token response:", {
-                        accessToken: response.accessToken,
-                        idToken: response.idToken,
-                    });
-                    setAccessToken(response.accessToken);
-                    setIdToken(response.idToken);
-                    mfaConfig = {
-                        accessToken: response.accessToken,
-                        idToken: response.idToken,
-                        appCode: options.appCode,
-                        provider: "MSAL",
-                        apiEndpoint: options.MFAEndpoint,
-                    };
-                    authenticator = new CAMSMFAAuthenticator(mfaConfig);
-                    setMfaAuthenticator(authenticator);
-                    setRequiresMFA(true);
-                    // Don't persist as authenticated until MFA is complete
-                    if (typeof window !== "undefined") {
-                        localStorage.setItem(storageKey, JSON.stringify({
-                            isAuthenticated: false,
-                            requiresMFA: true,
-                            accessToken: response.accessToken,
-                            idToken: response.idToken,
-                        }));
-                    }
-                    (_a = options.onAuthSuccess) === null || _a === void 0 ? void 0 : _a.call(options, response.accessToken);
-                    return [3 /*break*/, 4];
-                case 3:
-                    err_1 = _e.sent();
-                    // Handle user cancellation gracefully
-                    if (err_1.errorCode === "user_cancelled") {
-                        Logger.error("User cancelled login");
-                        setError(null); // Don't treat cancellation as an error
-                        return [2 /*return*/];
-                    }
-                    // If popup is blocked
-                    if (err_1.errorCode === "popup_window_error" ||
-                        ((_b = err_1.message) === null || _b === void 0 ? void 0 : _b.includes("popup"))) {
-                        camsError_1 = new CAMSError(CAMSErrorType.POPUP_BLOCKED, "Popup blocked by browser. Please allow popups and try again.");
-                        setError(camsError_1);
-                        (_c = options.onAuthError) === null || _c === void 0 ? void 0 : _c.call(options, camsError_1);
-                        return [2 /*return*/];
-                    }
-                    camsError = new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "Login failed: " + err_1.message || err_1);
-                    setError(camsError);
-                    (_d = options.onAuthError) === null || _d === void 0 ? void 0 : _d.call(options, camsError);
-                    return [3 /*break*/, 4];
-                case 4: return [2 /*return*/];
-            }
-        });
-    }); }, [instance, scopes, options]);
-    var completeMFA = useCallback(function (data) { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
-            if (!mfaAuthenticator) {
-                throw new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "MFA Authenticator not initialized");
-            }
-            Logger.info("Completed MFA.. Setting State");
-            try {
-                // Update storage with complete authentication BEFORE setting state
-                if (typeof window !== "undefined") {
-                    localStorage.setItem(storageKey, JSON.stringify({
-                        isAuthenticated: true,
-                        requiresMFA: false,
-                        accessToken: accessToken,
-                        idToken: idToken,
-                    }));
-                    setUserProfile({ type: "AUTH_SUCCESS", userProfile: __assign({}, data) });
-                    setRequiresMFA(false);
-                    // Set requiresMFA to false after storage update
-                    Logger.debug("MFA completed successfully, storage updated", {
-                        accessToken: accessToken,
-                        idToken: idToken,
-                        isAuthenticated: true,
-                        requiresMFA: false,
-                    });
-                }
-                Logger.debug("MFA completed successfully, requiresMFA set to false");
-                return [2 /*return*/, data];
-            }
-            catch (error) {
-                setError(error);
-                throw error;
-            }
-            return [2 /*return*/];
-        });
-    }); }, [mfaAuthenticator, accessToken, idToken, storageKey]);
-    var sendEmailOTP = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
-            switch (_a.label) {
-                case 0:
-                    if (!mfaAuthenticator) {
-                        return [2 /*return*/, false];
-                    }
-                    return [4 /*yield*/, mfaAuthenticator.sendEmailOTP()];
-                case 1: return [2 /*return*/, _a.sent()];
-            }
-        });
-    }); }, [mfaAuthenticator]);
-    var logout = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
-        var err_2, camsError;
-        return __generator(this, function (_a) {
-            switch (_a.label) {
-                case 0:
-                    _a.trys.push([0, 2, , 3]);
-                    Logger.info("Logging User Out");
-                    return [4 /*yield*/, instance.logoutRedirect()];
-                case 1:
-                    _a.sent();
-                    setAccessToken("");
-                    setIdToken("");
-                    setError(null);
-                    setMfaAuthenticator(null);
-                    setRequiresMFA(false);
-                    if (typeof window !== "undefined") {
-                        localStorage.removeItem(storageKey);
-                    }
-                    return [3 /*break*/, 3];
-                case 2:
-                    err_2 = _a.sent();
-                    camsError = new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "Logout failed: " + err_2);
-                    setError(camsError);
-                    return [3 /*break*/, 3];
-                case 3: return [2 /*return*/];
-            }
-        });
-    }); }, [instance, storageKey]);
-    return {
-        login: login,
-        logout: logout,
-        storageKey: storageKey,
-        isAuthenticated: isAuthenticated,
-        isLoading: isLoading,
-        error: error,
-        idToken: idToken,
-        accessToken: accessToken,
-        appCode: options.appCode,
-        mfaAuthenticator: mfaAuthenticator,
-        requiresMFA: requiresMFA,
-        completeMFA: completeMFA,
-        sendEmailOTP: sendEmailOTP,
-        setRequiresMFA: setRequiresMFA,
-    };
-}
-/**
- * Hook for handling authentication in popup windows
- * This should be used by the popup app to complete authentication
- */
-function useCAMSPopupAuth(options) {
-    if (options === void 0) { options = {}; }
-    var _a = options.storageKey, storageKey = _a === void 0 ? "CAMS-SDK" : _a, targetOrigin = options.targetOrigin, onAuthComplete = options.onAuthComplete, onAuthError = options.onAuthError;
-    useEffect(function () {
-        if (typeof window === "undefined" || !isPopupWindow())
-            return;
-        // Initialize popup auth handler
-        initializePopupAuth(targetOrigin);
-        // Set up global handlers for the popup app
-        var globalHandlers = window.__CAMS_POPUP_AUTH__;
-        if (globalHandlers) {
-            var originalCompleteAuth_1 = globalHandlers.completeAuth;
-            var originalErrorAuth_1 = globalHandlers.errorAuth;
-            globalHandlers.completeAuth = function (profile) {
-                onAuthComplete === null || onAuthComplete === void 0 ? void 0 : onAuthComplete(profile);
-                originalCompleteAuth_1(profile);
-            };
-            globalHandlers.errorAuth = function (error) {
-                onAuthError === null || onAuthError === void 0 ? void 0 : onAuthError(error);
-                originalErrorAuth_1(error);
-            };
-        }
-    }, [targetOrigin, onAuthComplete, onAuthError]);
-    var completeAuth = useCallback(function (profile) {
-        if (!isPopupWindow()) {
-            console.warn("completeAuth called outside of popup window");
-            return;
-        }
-        var sessionManager = new CAMSSessionManager(localStorage, storageKey);
-        sessionManager.completePopupAuth(profile, targetOrigin);
-    }, [storageKey, targetOrigin]);
-    var errorAuth = useCallback(function (error) {
-        if (!isPopupWindow()) {
-            console.warn("errorAuth called outside of popup window");
-            return;
-        }
-        var sessionManager = new CAMSSessionManager(localStorage, storageKey);
-        sessionManager.errorPopupAuth(error, targetOrigin);
-    }, [storageKey, targetOrigin]);
-    return {
-        completeAuth: completeAuth,
-        errorAuth: errorAuth,
-        isPopup: isPopupWindow(),
-    };
-}
-var jsxRuntime = {exports: {}};
-var reactJsxRuntime_production = {};
+var reactJsxRuntime_production = {};
 /**
  * @license React
@@ -953,14 +647,461 @@ function requireReactJsxRuntime_development () {
 	return reactJsxRuntime_development;
 }
-if (process.env.NODE_ENV === 'production') {
-  jsxRuntime.exports = requireReactJsxRuntime_production();
-} else {
-  jsxRuntime.exports = requireReactJsxRuntime_development();
+if (process.env.NODE_ENV === 'production') {
+  jsxRuntime.exports = requireReactJsxRuntime_production();
+} else {
+  jsxRuntime.exports = requireReactJsxRuntime_development();
+}
+var jsxRuntimeExports = jsxRuntime.exports;
+var CAMSContext$1 = createContext(null);
+function useCAMSContext$1() {
+    var context = useContext(CAMSContext$1);
+    if (!context) {
+        throw new Error("useCAMSContext must be used within a UnifiedCAMSProvider");
+    }
+    return context;
+}
+var ClientOnly = function (_a) {
+    var children = _a.children, _b = _a.fallback, fallback = _b === void 0 ? null : _b;
+    var _c = useState(false), hasMounted = _c[0], setHasMounted = _c[1];
+    useEffect(function () {
+        setHasMounted(true);
+    }, []);
+    if (!hasMounted) {
+        return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: fallback });
+    }
+    return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: children });
+};
+var GuidSchema = z.uuid("appCode must be a valid GUID");
+var setCookie$1 = function (name, value, days) {
+    if (days === void 0) { days = 1; }
+    var expires = new Date(Date.now() + days * 24 * 60 * 60 * 1000).toUTCString();
+    document.cookie = "".concat(name, "=").concat(encodeURIComponent(value), "; expires=").concat(expires, "; path=/; samesite=Lax");
+};
+var getCookie$1 = function (name) {
+    var _a;
+    return ((_a = document.cookie
+        .split("; ")
+        .find(function (row) { return row.startsWith(name + "="); })) === null || _a === void 0 ? void 0 : _a.split("=")[1])
+        ? decodeURIComponent(document.cookie
+            .split("; ")
+            .find(function (row) { return row.startsWith(name + "="); })
+            .split("=")[1])
+        : null;
+};
+var deleteCookie$1 = function (name) {
+    document.cookie = name + "=; Max-Age=-99999999; path=/";
+};
+function CAMSProviderCore(props) {
+    var _this = this;
+    var children = props.children, mode = props.mode, appCode = props.appCode;
+    // Always call both hooks to satisfy Rules of Hooks
+    var regularAuth = useCAMSAuth(mode === "REGULAR"
+        ? __assign(__assign({}, props), { appCode: appCode })
+        : { appCode: "" });
+    var msalAuth = useCAMSMSALAuth(mode === "MSAL"
+        ? __assign(__assign({}, props), { appCode: appCode })
+        : { appCode: "" });
+    var auth = mode === "REGULAR" ? regularAuth : msalAuth;
+    var profileStorageKey = "".concat(auth.storageKey, "-PROFILE");
+    var getInitialProfile = function () {
+        if (typeof window === "undefined")
+            return null;
+        try {
+            var storedProfile = getCookie$1(profileStorageKey);
+            return storedProfile ? JSON.parse(storedProfile) : null;
+        }
+        catch (_a) {
+            return null;
+        }
+    };
+    var _a = useState(getInitialProfile), userProfile = _a[0], setUserProfile = _a[1];
+    useEffect(function () {
+        if (typeof window !== "undefined") {
+            var storedProfile = getCookie$1(profileStorageKey);
+            if (storedProfile) {
+                try {
+                    setUserProfile(JSON.parse(storedProfile));
+                }
+                catch (_a) { }
+            }
+        }
+    }, [profileStorageKey]);
+    useEffect(function () {
+        if (typeof window !== "undefined") {
+            if (userProfile) {
+                setCookie$1(profileStorageKey, JSON.stringify(userProfile), 1);
+            }
+            else {
+                deleteCookie$1(profileStorageKey);
+            }
+        }
+    }, [userProfile, profileStorageKey]);
+    var enhancedLogout = function () { return __awaiter(_this, void 0, void 0, function () {
+        return __generator(this, function (_a) {
+            switch (_a.label) {
+                case 0: return [4 /*yield*/, auth.logout()];
+                case 1:
+                    _a.sent();
+                    setUserProfile(null);
+                    if (typeof window !== "undefined") {
+                        deleteCookie$1(profileStorageKey);
+                    }
+                    return [2 /*return*/];
+            }
+        });
+    }); };
+    // Handle MFA completion for MSAL mode
+    useEffect(function () {
+        if (mode === "MSAL" &&
+            "requiresMFA" in auth &&
+            !auth.requiresMFA &&
+            auth.isAuthenticated) {
+            // MFA completed, extract profile from localStorage
+            var storedData = localStorage.getItem(auth.storageKey);
+            console.log("MFA Complete - Checking for profile:", storedData);
+            if (storedData) {
+                try {
+                    var parsed = JSON.parse(storedData);
+                    console.log("Parsed storage data:", parsed);
+                    if (parsed.userProfile) {
+                        console.log("Setting user profile:", parsed.userProfile);
+                        setUserProfile(parsed.userProfile);
+                    }
+                }
+                catch (e) {
+                    console.error("Error parsing stored data:", e);
+                }
+            }
+        }
+    }, [
+        mode,
+        "requiresMFA" in auth ? auth.requiresMFA : false,
+        auth.isAuthenticated,
+        auth.storageKey,
+        userProfile,
+    ]);
+    var value = useMemo(function () {
+        return (__assign(__assign({}, auth), { logout: enhancedLogout, userProfile: userProfile, setUserProfile: setUserProfile, authMode: mode }));
+    }, [auth, userProfile, mode]);
+    return jsxRuntimeExports.jsx(CAMSContext$1.Provider, { value: value, children: children });
+}
+function UnifiedCAMSProvider(props) {
+    // Validate appCode is a valid GUID
+    var appCodeValidation = GuidSchema.safeParse(props.appCode);
+    if (!appCodeValidation.success) {
+        throw new Error("Invalid appCode: ".concat(appCodeValidation.error.issues[0].message));
+    }
+    if (props.mode === "MSAL") {
+        var msalConfig = props.msalConfig, msalInstance = props.msalInstance;
+        var instance = msalInstance || new PublicClientApplication(msalConfig);
+        return (jsxRuntimeExports.jsx(MsalProvider, { instance: instance, children: jsxRuntimeExports.jsx(CAMSProviderCore, __assign({}, props)) }));
+    }
+    return (jsxRuntimeExports.jsx(ClientOnly, { fallback: jsxRuntimeExports.jsx("div", { children: "Loading..." }), children: jsxRuntimeExports.jsx(CAMSProviderCore, __assign({}, props)) }));
+}
+// Backward compatibility exports
+var CAMSProvider = function (props) { return (jsxRuntimeExports.jsx(UnifiedCAMSProvider, __assign({}, props, { mode: "REGULAR" }))); };
+function useCAMSMSALAuth(options) {
+    var _this = this;
+    var storageKey = options.storageKey || "CAMS-MSAL-AUTH-SDK";
+    var _a = useMsal(), instance = _a.instance, inProgress = _a.inProgress, accounts = _a.accounts;
+    var account = useAccount(accounts[0] || {});
+    var _b = useState(null), error = _b[0], setError = _b[1];
+    var _c = useState(""), idToken = _c[0], setIdToken = _c[1];
+    var _d = useState(""), accessToken = _d[0], setAccessToken = _d[1];
+    var _e = useState(null), mfaAuthenticator = _e[0], setMfaAuthenticator = _e[1];
+    var _f = useState(false), requiresMFA = _f[0], setRequiresMFA = _f[1];
+    var isLoading = inProgress !== InteractionStatus.None;
+    var isAuthenticated = !!account && !!accessToken && !requiresMFA;
+    var scopes = options.scopes || ["openid", "profile", "email"];
+    var isTokenValid = function (token) {
+        try {
+            var payload = JSON.parse(atob(token.split(".")[1]));
+            return payload.exp * 1000 > Date.now();
+        }
+        catch (_a) {
+            return false;
+        }
+    };
+    useEffect(function () {
+        if (typeof window !== "undefined" && !accessToken) {
+            var stored = localStorage.getItem(storageKey);
+            if (stored) {
+                try {
+                    var _a = JSON.parse(stored), accessToken_1 = _a.accessToken, idToken_1 = _a.idToken, storedRequiresMFA = _a.requiresMFA, storedIsAuthenticated = _a.isAuthenticated;
+                    if (accessToken_1 && isTokenValid(accessToken_1)) {
+                        setAccessToken(accessToken_1);
+                        setIdToken(idToken_1);
+                        // Restore MFA state
+                        if (storedRequiresMFA && !storedIsAuthenticated) {
+                            var mfaConfig = {
+                                accessToken: accessToken_1,
+                                idToken: idToken_1,
+                                appCode: options.appCode,
+                                provider: "MSAL",
+                                apiEndpoint: options.MFAEndpoint,
+                            };
+                            var authenticator = new CAMSMFAAuthenticator(mfaConfig);
+                            setMfaAuthenticator(authenticator);
+                            setRequiresMFA(true);
+                        }
+                        Logger.debug("App Code", { ">>>": options.appCode });
+                    }
+                    else {
+                        localStorage.removeItem(storageKey);
+                    }
+                }
+                catch (_b) { }
+            }
+            else if (account) {
+                // Storage cleared but MSAL account exists - clear MSAL state
+                instance.logoutRedirect().catch(function () { });
+            }
+        }
+    }, [accessToken, account, instance, options.storageKey]);
+    // useEffect(() => {
+    //   const handleRedirect = async () => {
+    //     try {
+    //       const response = await instance.handleRedirectPromise();
+    //       if (response) {
+    //         const account = response.account;
+    //         instance.setActiveA ccount(account);
+    //         const tokenResponse = await instance.acq uireTokenSilent({
+    //           scopes,
+    //           account,
+    //         });
+    //         setToken(tokenResponse.accessToken);
+    //         setAccessToken(tokenResponse.accessToken);
+    //         setIdToken(tokenResponse.idTo ken);
+    //         options.onAuthSuccess?.(tokenR esponse.accessToken);
+    //         if (
+    //           typeof window !== "undefined" &&
+    //           process.env.NODE_ENV !== "test"
+    //         ) {
+    //           window.location.href = options.mfaUrl!;
+    //         }
+    //       }
+    //     } catch (err) {
+    //       console.error("Redirect handling failed:", err);
+    //     }
+    //   };
+    //   handleRedirect();
+    // }, []);
+    var login = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
+        var response, mfaConfig, authenticator, err_1, camsError_1, camsError;
+        var _a, _b, _c, _d;
+        return __generator(this, function (_e) {
+            switch (_e.label) {
+                case 0:
+                    setError(null);
+                    _e.label = 1;
+                case 1:
+                    _e.trys.push([1, 3, , 4]);
+                    return [4 /*yield*/, instance.loginPopup({
+                            scopes: scopes,
+                            prompt: options.prompt || "login",
+                        })];
+                case 2:
+                    response = _e.sent();
+                    console.log("Login Token response:", {
+                        accessToken: response.accessToken,
+                        idToken: response.idToken,
+                    });
+                    setAccessToken(response.accessToken);
+                    setIdToken(response.idToken);
+                    mfaConfig = {
+                        accessToken: response.accessToken,
+                        idToken: response.idToken,
+                        appCode: options.appCode,
+                        provider: "MSAL",
+                        apiEndpoint: options.MFAEndpoint,
+                    };
+                    authenticator = new CAMSMFAAuthenticator(mfaConfig);
+                    setMfaAuthenticator(authenticator);
+                    setRequiresMFA(true);
+                    // Don't persist as authenticated until MFA is complete
+                    if (typeof window !== "undefined") {
+                        localStorage.setItem(storageKey, JSON.stringify({
+                            isAuthenticated: false,
+                            requiresMFA: true,
+                            accessToken: response.accessToken,
+                            idToken: response.idToken,
+                        }));
+                    }
+                    (_a = options.onAuthSuccess) === null || _a === void 0 ? void 0 : _a.call(options, response.accessToken);
+                    return [3 /*break*/, 4];
+                case 3:
+                    err_1 = _e.sent();
+                    // Handle user cancellation gracefully
+                    if (err_1.errorCode === "user_cancelled") {
+                        Logger.error("User cancelled login");
+                        setError(null); // Don't treat cancellation as an error
+                        return [2 /*return*/];
+                    }
+                    // If popup is blocked
+                    if (err_1.errorCode === "popup_window_error" ||
+                        ((_b = err_1.message) === null || _b === void 0 ? void 0 : _b.includes("popup"))) {
+                        camsError_1 = new CAMSError(CAMSErrorType.POPUP_BLOCKED, "Popup blocked by browser. Please allow popups and try again.");
+                        setError(camsError_1);
+                        (_c = options.onAuthError) === null || _c === void 0 ? void 0 : _c.call(options, camsError_1);
+                        return [2 /*return*/];
+                    }
+                    camsError = new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "Login failed: " + err_1.message || err_1);
+                    setError(camsError);
+                    (_d = options.onAuthError) === null || _d === void 0 ? void 0 : _d.call(options, camsError);
+                    return [3 /*break*/, 4];
+                case 4: return [2 /*return*/];
+            }
+        });
+    }); }, [instance, scopes, options]);
+    var completeMFA = useCallback(function (data) { return __awaiter(_this, void 0, void 0, function () {
+        return __generator(this, function (_a) {
+            if (!mfaAuthenticator) {
+                throw new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "MFA Authenticator not initialized");
+            }
+            Logger.info("Completed MFA.. Setting State");
+            try {
+                // Update storage with complete authentication BEFORE setting state
+                if (typeof window !== "undefined") {
+                    localStorage.setItem(storageKey, JSON.stringify({
+                        isAuthenticated: true,
+                        requiresMFA: false,
+                        accessToken: accessToken,
+                        idToken: idToken,
+                    }));
+                    setCookie$1("CAMS-MSAL-AUTH-SDK-PROFILE", JSON.stringify({ type: "AUTH_SUCCESS", userProfile: __assign({}, data) }), 1);
+                    setRequiresMFA(false);
+                    // Set requiresMFA to false after storage update
+                    Logger.debug("MFA completed successfully, storage updated", {
+                        accessToken: accessToken,
+                        idToken: idToken,
+                        isAuthenticated: true,
+                        requiresMFA: false,
+                    });
+                }
+                Logger.debug("MFA completed successfully, requiresMFA set to false");
+                return [2 /*return*/, data];
+            }
+            catch (error) {
+                setError(error);
+                throw error;
+            }
+            return [2 /*return*/];
+        });
+    }); }, [mfaAuthenticator, accessToken, idToken, storageKey]);
+    var sendEmailOTP = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
+        return __generator(this, function (_a) {
+            switch (_a.label) {
+                case 0:
+                    if (!mfaAuthenticator) {
+                        return [2 /*return*/, false];
+                    }
+                    return [4 /*yield*/, mfaAuthenticator.sendEmailOTP()];
+                case 1: return [2 /*return*/, _a.sent()];
+            }
+        });
+    }); }, [mfaAuthenticator]);
+    var logout = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
+        var err_2, camsError;
+        return __generator(this, function (_a) {
+            switch (_a.label) {
+                case 0:
+                    _a.trys.push([0, 2, , 3]);
+                    Logger.info("Logging User Out");
+                    return [4 /*yield*/, instance.logoutRedirect()];
+                case 1:
+                    _a.sent();
+                    setAccessToken("");
+                    setIdToken("");
+                    setError(null);
+                    setMfaAuthenticator(null);
+                    setRequiresMFA(false);
+                    if (typeof window !== "undefined") {
+                        localStorage.removeItem(storageKey);
+                    }
+                    return [3 /*break*/, 3];
+                case 2:
+                    err_2 = _a.sent();
+                    camsError = new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "Logout failed: " + err_2);
+                    setError(camsError);
+                    return [3 /*break*/, 3];
+                case 3: return [2 /*return*/];
+            }
+        });
+    }); }, [instance, storageKey]);
+    return {
+        login: login,
+        logout: logout,
+        storageKey: storageKey,
+        isAuthenticated: isAuthenticated,
+        isLoading: isLoading,
+        error: error,
+        idToken: idToken,
+        accessToken: accessToken,
+        appCode: options.appCode,
+        mfaAuthenticator: mfaAuthenticator,
+        requiresMFA: requiresMFA,
+        completeMFA: completeMFA,
+        sendEmailOTP: sendEmailOTP,
+        setRequiresMFA: setRequiresMFA,
+    };
+}
+/**
+ * Hook for handling authentication in popup windows
+ * This should be used by the popup app to complete authentication
+ */
+function useCAMSPopupAuth(options) {
+    if (options === void 0) { options = {}; }
+    var _a = options.storageKey, storageKey = _a === void 0 ? "CAMS-SDK" : _a, targetOrigin = options.targetOrigin, onAuthComplete = options.onAuthComplete, onAuthError = options.onAuthError;
+    useEffect(function () {
+        if (typeof window === "undefined" || !isPopupWindow())
+            return;
+        // Initialize popup auth handler
+        initializePopupAuth(targetOrigin);
+        // Set up global handlers for the popup app
+        var globalHandlers = window.__CAMS_POPUP_AUTH__;
+        if (globalHandlers) {
+            var originalCompleteAuth_1 = globalHandlers.completeAuth;
+            var originalErrorAuth_1 = globalHandlers.errorAuth;
+            globalHandlers.completeAuth = function (profile) {
+                onAuthComplete === null || onAuthComplete === void 0 ? void 0 : onAuthComplete(profile);
+                originalCompleteAuth_1(profile);
+            };
+            globalHandlers.errorAuth = function (error) {
+                onAuthError === null || onAuthError === void 0 ? void 0 : onAuthError(error);
+                originalErrorAuth_1(error);
+            };
+        }
+    }, [targetOrigin, onAuthComplete, onAuthError]);
+    var completeAuth = useCallback(function (profile) {
+        if (!isPopupWindow()) {
+            console.warn("completeAuth called outside of popup window");
+            return;
+        }
+        var sessionManager = new CAMSSessionManager(localStorage, storageKey);
+        sessionManager.completePopupAuth(profile, targetOrigin);
+    }, [storageKey, targetOrigin]);
+    var errorAuth = useCallback(function (error) {
+        if (!isPopupWindow()) {
+            console.warn("errorAuth called outside of popup window");
+            return;
+        }
+        var sessionManager = new CAMSSessionManager(localStorage, storageKey);
+        sessionManager.errorPopupAuth(error, targetOrigin);
+    }, [storageKey, targetOrigin]);
+    return {
+        completeAuth: completeAuth,
+        errorAuth: errorAuth,
+        isPopup: isPopupWindow(),
+    };
 }
-var jsxRuntimeExports = jsxRuntime.exports;
 var CAMSContext = createContext(null);
 function useCAMSContext() {
     var context = useContext(CAMSContext);
@@ -987,11 +1128,11 @@ function ProtectedRoute(_a) {
 }
 var CAMSMSALContext = createContext(null);
-var setCookie$1 = function (name, value, days) {
+var setCookie = function (name, value, days) {
     var expires = new Date(Date.now() + days * 864e5).toUTCString();
     document.cookie = "".concat(name, "=").concat(encodeURIComponent(value), "; expires=").concat(expires, "; path=/; samesite=Lax");
 };
-var getCookie$1 = function (name) {
+var getCookie = function (name) {
     var _a;
     return ((_a = document.cookie
         .split("; ")
@@ -1002,7 +1143,7 @@ var getCookie$1 = function (name) {
             .split("=")[1])
         : null;
 };
-var deleteCookie$1 = function (name) {
+var deleteCookie = function (name) {
     document.cookie = name + "=; Max-Age=-99999999; path=/";
 };
 var isTokenValid = function (token) {
@@ -1024,7 +1165,7 @@ function CAMSMSALProviderInner(_a) {
             return null;
         }
         try {
-            var storedProfile = getCookie$1(profileStorageKey);
+            var storedProfile = getCookie(profileStorageKey);
             return storedProfile ? JSON.parse(storedProfile) : null;
         }
         catch (_a) {
@@ -1036,7 +1177,7 @@ function CAMSMSALProviderInner(_a) {
     useEffect(function () {
         if (typeof window !== "undefined") {
             // const storedProfile = localStorage.get Item(profileStorageKey);
-            var storedProfile = getCookie$1(profileStorageKey);
+            var storedProfile = getCookie(profileStorageKey);
             if (storedProfile) {
                 try {
                     setUserProfile(JSON.parse(storedProfile));
@@ -1061,10 +1202,10 @@ function CAMSMSALProviderInner(_a) {
     useEffect(function () {
         if (typeof window !== "undefined") {
             if (userProfile) {
-                setCookie$1(profileStorageKey, JSON.stringify(userProfile), 1); // Store for 1 day
+                setCookie(profileStorageKey, JSON.stringify(userProfile), 1); // Store for 1 day
             }
             else {
-                deleteCookie$1(profileStorageKey);
+                deleteCookie(profileStorageKey);
             }
         }
     }, [userProfile, profileStorageKey]);
@@ -1077,7 +1218,7 @@ function CAMSMSALProviderInner(_a) {
                     _a.sent();
                     setUserProfile(null);
                     if (typeof window !== "undefined") {
-                        deleteCookie$1(profileStorageKey);
+                        deleteCookie(profileStorageKey);
                     }
                     return [2 /*return*/];
             }
@@ -1099,147 +1240,6 @@ function useCAMSMSALContext() {
     return context;
 }
-var ClientOnly = function (_a) {
-    var children = _a.children, _b = _a.fallback, fallback = _b === void 0 ? null : _b;
-    var _c = useState(false), hasMounted = _c[0], setHasMounted = _c[1];
-    useEffect(function () {
-        setHasMounted(true);
-    }, []);
-    if (!hasMounted) {
-        return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: fallback });
-    }
-    return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: children });
-};
-var GuidSchema = z.uuid("appCode must be a valid GUID");
-var setCookie = function (name, value, days) {
-    var expires = new Date(Date.now() + days * 24 * 60 * 60 * 1000).toUTCString();
-    document.cookie = "".concat(name, "=").concat(encodeURIComponent(value), "; expires=").concat(expires, "; path=/; samesite=Lax");
-};
-var getCookie = function (name) {
-    var _a;
-    return ((_a = document.cookie
-        .split("; ")
-        .find(function (row) { return row.startsWith(name + "="); })) === null || _a === void 0 ? void 0 : _a.split("=")[1])
-        ? decodeURIComponent(document.cookie
-            .split("; ")
-            .find(function (row) { return row.startsWith(name + "="); })
-            .split("=")[1])
-        : null;
-};
-var deleteCookie = function (name) {
-    document.cookie = name + "=; Max-Age=-99999999; path=/";
-};
-function CAMSProviderCore(props) {
-    var _this = this;
-    var children = props.children, mode = props.mode, appCode = props.appCode;
-    // Always call both hooks to satisfy Rules of Hooks
-    var regularAuth = useCAMSAuth(mode === "REGULAR"
-        ? __assign(__assign({}, props), { appCode: appCode })
-        : { appCode: "" });
-    var msalAuth = useCAMSMSALAuth(mode === "MSAL"
-        ? __assign(__assign({}, props), { appCode: appCode })
-        : { appCode: "" });
-    var auth = mode === "REGULAR" ? regularAuth : msalAuth;
-    var profileStorageKey = "".concat(auth.storageKey, "-PROFILE");
-    var getInitialProfile = function () {
-        if (typeof window === "undefined")
-            return null;
-        try {
-            var storedProfile = getCookie(profileStorageKey);
-            return storedProfile ? JSON.parse(storedProfile) : null;
-        }
-        catch (_a) {
-            return null;
-        }
-    };
-    var _a = useState(getInitialProfile), userProfile = _a[0], setUserProfile = _a[1];
-    useEffect(function () {
-        if (typeof window !== "undefined") {
-            var storedProfile = getCookie(profileStorageKey);
-            if (storedProfile) {
-                try {
-                    setUserProfile(JSON.parse(storedProfile));
-                }
-                catch (_a) { }
-            }
-        }
-    }, [profileStorageKey]);
-    useEffect(function () {
-        if (typeof window !== "undefined") {
-            if (userProfile) {
-                setCookie(profileStorageKey, JSON.stringify(userProfile), 1);
-            }
-            else {
-                deleteCookie(profileStorageKey);
-            }
-        }
-    }, [userProfile, profileStorageKey]);
-    var enhancedLogout = function () { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
-            switch (_a.label) {
-                case 0: return [4 /*yield*/, auth.logout()];
-                case 1:
-                    _a.sent();
-                    setUserProfile(null);
-                    if (typeof window !== "undefined") {
-                        deleteCookie(profileStorageKey);
-                    }
-                    return [2 /*return*/];
-            }
-        });
-    }); };
-    // Handle MFA completion for MSAL mode
-    useEffect(function () {
-        if (mode === "MSAL" &&
-            "requiresMFA" in auth &&
-            !auth.requiresMFA &&
-            auth.isAuthenticated) {
-            // MFA completed, extract profile from localStorage
-            var storedData = localStorage.getItem(auth.storageKey);
-            console.log("MFA Complete - Checking for profile:", storedData);
-            if (storedData) {
-                try {
-                    var parsed = JSON.parse(storedData);
-                    console.log("Parsed storage data:", parsed);
-                    if (parsed.userProfile) {
-                        console.log("Setting user profile:", parsed.userProfile);
-                        setUserProfile(parsed.userProfile);
-                    }
-                }
-                catch (e) {
-                    console.error("Error parsing stored data:", e);
-                }
-            }
-        }
-    }, [
-        mode,
-        "requiresMFA" in auth ? auth.requiresMFA : false,
-        auth.isAuthenticated,
-        auth.storageKey,
-        userProfile,
-    ]);
-    var value = useMemo(function () {
-        return (__assign(__assign({}, auth), { logout: enhancedLogout, userProfile: userProfile, setUserProfile: setUserProfile, authMode: mode }));
-    }, [auth, userProfile, mode]);
-    return jsxRuntimeExports.jsx(CAMSContext$1.Provider, { value: value, children: children });
-}
-function UnifiedCAMSProvider(props) {
-    // Validate appCode is a valid GUID
-    var appCodeValidation = GuidSchema.safeParse(props.appCode);
-    if (!appCodeValidation.success) {
-        throw new Error("Invalid appCode: ".concat(appCodeValidation.error.issues[0].message));
-    }
-    if (props.mode === "MSAL") {
-        var msalConfig = props.msalConfig, msalInstance = props.msalInstance;
-        var instance = msalInstance || new PublicClientApplication(msalConfig);
-        return (jsxRuntimeExports.jsx(MsalProvider, { instance: instance, children: jsxRuntimeExports.jsx(CAMSProviderCore, __assign({}, props)) }));
-    }
-    return (jsxRuntimeExports.jsx(ClientOnly, { fallback: jsxRuntimeExports.jsx("div", { children: "Loading..." }), children: jsxRuntimeExports.jsx(CAMSProviderCore, __assign({}, props)) }));
-}
-// Backward compatibility exports
-var CAMSProvider = function (props) { return (jsxRuntimeExports.jsx(UnifiedCAMSProvider, __assign({}, props, { mode: "REGULAR" }))); };
 /** A special constant with type `never` */
 function $constructor(name, initializer, params) {
     function init(inst, def) {
@@ -1924,5 +1924,5 @@ var MFAGate = function (_a) {
     return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: children });
 };
-export { CAMSMSALProvider, CAMSProvider, ClientOnly, DefaultLoginPage as LoginButton, MFAGate, MFAOptions, ProtectedRoute, UnifiedCAMSProvider, useCAMSAuth, useCAMSContext$1 as useCAMSContext, useCAMSMSALAuth, useCAMSMSALContext, useCAMSPopupAuth };
+export { CAMSMSALProvider, CAMSProvider, ClientOnly, DefaultLoginPage as LoginButton, MFAGate, MFAOptions, ProtectedRoute, UnifiedCAMSProvider, setCookie$1 as setCookie, useCAMSAuth, useCAMSContext$1 as useCAMSContext, useCAMSMSALAuth, useCAMSMSALContext, useCAMSPopupAuth };
 //# sourceMappingURL=index.esm.js.map