npm - @nibssplc/cams-sdk-react - Versions diffs - 0.0.1-beta.99 → 1.0.0-rc.11 - Mend

@nibssplc/cams-sdk-react 0.0.1-beta.99 → 1.0.0-rc.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/dist/components/ADLoginModal.d.ts +3 -1
package/dist/components/CAMSMSALProvider.d.ts +1 -0
package/dist/components/DefaultLoginPage.d.ts +4 -1
package/dist/components/MFAGate.d.ts +3 -1
package/dist/components/UnifiedCAMSProvider.d.ts +1 -0
package/dist/hooks/useCAMSMSALAuth.d.ts +1 -0
package/dist/hooks/useOTPHandler.d.ts +2 -7
package/dist/index.cjs.js +222 -121
package/dist/index.cjs.js.map +1 -1
package/dist/index.d.ts +1 -0
package/dist/index.esm.js +222 -121
package/dist/index.esm.js.map +1 -1
package/dist/lib/actions/Axiosinstance.d.ts +1 -0
package/dist/utils/DeviceID.d.ts +4 -1
package/package.json +1 -1

package/dist/index.esm.js CHANGED Viewed

@@ -18,6 +18,28 @@ import * as DialogPrimitive from '@radix-ui/react-dialog';
 import { toast } from 'sonner';
 import { motion } from 'framer-motion';
 import axios from 'axios';
+import https from 'https';
+var _a;
+// Crypto polyfill for environments where crypto is not available
+if (typeof window !== 'undefined' && !window.crypto) {
+    var crypto_1 = require('crypto');
+    // @ts-ignore
+    window.crypto = {
+        getRandomValues: function (arr) {
+            var bytes = crypto_1.randomBytes(arr.length);
+            for (var i = 0; i < arr.length; i++) {
+                arr[i] = bytes[i];
+            }
+            return arr;
+        },
+        subtle: ((_a = crypto_1.webcrypto) === null || _a === void 0 ? void 0 : _a.subtle) || {
+            digest: function () { return __awaiter(void 0, void 0, void 0, function () { return __generator(this, function (_a) {
+                throw new Error('crypto.subtle not available');
+            }); }); }
+        }
+    };
+}
 /******************************************************************************
 Copyright (c) Microsoft Corporation.
@@ -59,7 +81,7 @@ function __rest(s, e) {
     return t;
 }
-function __awaiter(thisArg, _arguments, P, generator) {
+function __awaiter$1(thisArg, _arguments, P, generator) {
     function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
     return new (P || (P = Promise))(function (resolve, reject) {
         function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
@@ -69,7 +91,7 @@ function __awaiter(thisArg, _arguments, P, generator) {
     });
 }
-function __generator(thisArg, body) {
+function __generator$1(thisArg, body) {
     var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === "function" ? Iterator : Object).prototype);
     return g.next = verb(0), g["throw"] = verb(1), g["return"] = verb(2), typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
     function verb(n) { return function (v) { return step([n, v]); }; }
@@ -166,10 +188,10 @@ function useCAMSAuth(options) {
             }
         }
     }, [options.storageKey]);
-    var login = useCallback(function (config) { return __awaiter(_this, void 0, void 0, function () {
+    var login = useCallback(function (config) { return __awaiter$1(_this, void 0, void 0, function () {
         var loginConfig, userProfile, err_1, e, isPopupClosedError, restoredToken, userProfile;
         var _a, _b, _c;
-        return __generator(this, function (_d) {
+        return __generator$1(this, function (_d) {
             switch (_d.label) {
                 case 0:
                     if (!sessionManagerRef.current)
@@ -217,8 +239,8 @@ function useCAMSAuth(options) {
             }
         });
     }); }, [options.idleTimeout]);
-    var logout = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var logout = useCallback(function () { return __awaiter$1(_this, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0:
                     if (!sessionManagerRef.current)
@@ -311,7 +333,6 @@ function useCAMSMSALAuth(options) {
                             setMfaAuthenticator(authenticator);
                             setRequiresMFA(true);
                         }
-                        Logger.debug("App Code", { ">>>": options.appCode });
                     }
                     else {
                         localStorage.removeItem(storageKey);
@@ -353,10 +374,10 @@ function useCAMSMSALAuth(options) {
     //   };
     //   handleRedirect();
     // }, []);
-    var login = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
+    var login = useCallback(function () { return __awaiter$1(_this, void 0, void 0, function () {
         var response, mfaConfig, authenticator, err_1, camsError_1, camsError;
         var _a, _b, _c, _d;
-        return __generator(this, function (_e) {
+        return __generator$1(this, function (_e) {
             switch (_e.label) {
                 case 0:
                     setError(null);
@@ -420,8 +441,8 @@ function useCAMSMSALAuth(options) {
             }
         });
     }); }, [instance, scopes, options]);
-    var completeMFA = useCallback(function (data) { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var completeMFA = useCallback(function (data) { return __awaiter$1(_this, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             if (!mfaAuthenticator) {
                 throw new CAMSError(CAMSErrorType.API_VALIDATION_ERROR, "MFA Authenticator not initialized");
             }
@@ -455,8 +476,8 @@ function useCAMSMSALAuth(options) {
             return [2 /*return*/];
         });
     }); }, [mfaAuthenticator, accessToken, idToken, storageKey]);
-    var sendEmailOTP = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var sendEmailOTP = useCallback(function () { return __awaiter$1(_this, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0:
                     if (!mfaAuthenticator) {
@@ -467,9 +488,9 @@ function useCAMSMSALAuth(options) {
             }
         });
     }); }, [mfaAuthenticator]);
-    var logout = useCallback(function () { return __awaiter(_this, void 0, void 0, function () {
+    var logout = useCallback(function () { return __awaiter$1(_this, void 0, void 0, function () {
         var err_2, camsError;
-        return __generator(this, function (_a) {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0:
                     _a.trys.push([0, 2, , 3]);
@@ -553,29 +574,21 @@ function arrayBufferToBase64url(buffer) {
  * @returns A promise that resolves to a JSON-serializable representation of the PublicKeyCredential.
  */
 function register(options) {
-    return __awaiter(this, void 0, void 0, function () {
+    return __awaiter$1(this, void 0, void 0, function () {
         var createOptions, credential, publicKeyCredential, attestationResponse, transports, err_1;
         var _a, _b, _c, _d, _e, _f, _g, _h, _j;
-        return __generator(this, function (_k) {
+        return __generator$1(this, function (_k) {
             switch (_k.label) {
                 case 0:
                     _k.trys.push([0, 2, , 3]);
                     createOptions = __assign(__assign({}, options), { challenge: base64urlToArrayBuffer(options.challenge), user: __assign(__assign({}, options.user), { id: base64urlToArrayBuffer(options.user.id) }) });
-                    console.log("Creating credential with options:", createOptions, "...\n\n\n", options);
                     return [4 /*yield*/, navigator.credentials.create({
-                            publicKey: __assign(__assign({}, options), { pubKeyCredParams: (_a = options.pubKeyCredParams) === null || _a === void 0 ? void 0 : _a.map(function (param) { return ({
+                            publicKey: __assign(__assign({}, createOptions), { pubKeyCredParams: (_a = options.pubKeyCredParams) === null || _a === void 0 ? void 0 : _a.map(function (param) { return ({
                                     type: "public-key",
                                     alg: param.alg,
-                                }); }), attestation: (((_b = options.attestation) === null || _b === void 0 ? void 0 : _b.toLowerCase()) || "none"), authenticatorSelection: __assign(__assign({}, options.authenticatorSelection), {
-                                    // authenticatorAttachment:
-                                    //   (options.authenticatorSelection?.authenticatorAttachment?.toLowerCase() ||
-                                    //     "platform") as AuthenticatorAttachment,
-                                    // requireResidentKey:
-                                    //   (options.authenticatorSelection?.requireResidentKey?.toLowerCase() ||
-                                    //     "false") === "true",
-                                    residentKey: (((_d = (_c = options.authenticatorSelection) === null || _c === void 0 ? void 0 : _c.residentKey) === null || _d === void 0 ? void 0 : _d.toLowerCase()) ||
+                                }); }), attestation: (((_b = options.attestation) === null || _b === void 0 ? void 0 : _b.toLowerCase()) || "none"), authenticatorSelection: __assign(__assign({}, options.authenticatorSelection), { residentKey: (((_d = (_c = options.authenticatorSelection) === null || _c === void 0 ? void 0 : _c.residentKey) === null || _d === void 0 ? void 0 : _d.toLowerCase()) ||
                                         "discouraged"), userVerification: (((_f = (_e = options.authenticatorSelection) === null || _e === void 0 ? void 0 : _e.userVerification) === null || _f === void 0 ? void 0 : _f.toLowerCase()) ||
-                                        "preferred") }) }),
+                                        "discouraged") }) }),
                         })];
                 case 1:
                     credential = _k.sent();
@@ -596,12 +609,16 @@ function register(options) {
                         }];
                 case 2:
                     err_1 = _k.sent();
+                    console.error("Error during registration:", err_1);
                     if (err_1.name === "NotAllowedError") {
-                        throw new Error("Registration cancelled by user.");
+                        throw new Error("Face ID/Touch ID cancelled or failed. Please try again.");
                     }
                     if (err_1.name === "InvalidStateError") {
                         throw new Error("Passkey already registered for this user.");
                     }
+                    if (err_1.name === "NotSupportedError") {
+                        throw new Error("Passkeys not supported on this device.");
+                    }
                     throw err_1;
                 case 3: return [2 /*return*/];
             }
@@ -618,10 +635,10 @@ function register(options) {
  * @returns A promise that resolves to a JSON-serializable representation of the PublicKeyCredential.
  */
 function authenticate(options) {
-    return __awaiter(this, void 0, void 0, function () {
+    return __awaiter$1(this, void 0, void 0, function () {
         var getOptions, credential, publicKeyCredential, assertionResponse;
         var _a;
-        return __generator(this, function (_b) {
+        return __generator$1(this, function (_b) {
             switch (_b.label) {
                 case 0:
                     getOptions = __assign(__assign({}, options), { challenge: base64urlToArrayBuffer(options.challenge), allowCredentials: (_a = options.allowCredentials) === null || _a === void 0 ? void 0 : _a.map(function (cred) { return (__assign(__assign({}, cred), { id: base64urlToArrayBuffer(cred.id) })); }) });
@@ -1189,8 +1206,8 @@ function CAMSMSALProviderInner(_a) {
         }
     }, [userProfile, profileStorageKey]);
     // Enhanced logout that also clears profile
-    var enhancedLogout = function () { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var enhancedLogout = function () { return __awaiter$1(_this, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0: return [4 /*yield*/, auth.logout()];
                 case 1:
@@ -1286,8 +1303,8 @@ function CAMSProviderCore(props) {
             }
         }
     }, [userProfile, profileStorageKey]);
-    var enhancedLogout = function () { return __awaiter(_this, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var enhancedLogout = function () { return __awaiter$1(_this, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0: return [4 /*yield*/, auth.logout()];
                 case 1:
@@ -1706,7 +1723,7 @@ styleInject(css_248z);
 var LoadingSpinner = function (_a) {
     var loadingText = _a.loadingText;
-    return (jsxRuntimeExports.jsxs("div", { className: "flex flex-col justify-center items-center", children: [jsxRuntimeExports.jsx("script", { type: "module", defer: true, src: "https://cdn.jsdelivr.net/npm/ldrs/dist/auto/waveform.js" }), jsxRuntimeExports.jsx(r, { size: "35", stroke: "3.5", speed: "1", color: "green" }), loadingText && (jsxRuntimeExports.jsx("p", { className: "text-center font-semibold mt-3", children: "Loading..." }))] }));
+    return (jsxRuntimeExports.jsxs("div", { className: "flex flex-col justify-center items-center h-full w-full py-10", children: [jsxRuntimeExports.jsx("script", { type: "module", defer: true, src: "https://cdn.jsdelivr.net/npm/ldrs/dist/auto/waveform.js" }), jsxRuntimeExports.jsx(r, { size: "35", stroke: "3.5", speed: "1", color: "green" }), loadingText && (jsxRuntimeExports.jsx("p", { className: "text-center font-semibold mt-3", children: "Loading..." }))] }));
 };
 var AuthSuccessAnimation = function (_a) {
@@ -1723,7 +1740,7 @@ var GenerateDeviceId = function () {
     var userAgent = window.navigator.userAgent;
     var deviceId = "";
     // Parse browser, version, OS, and device type
-    var browserMatch = Array.from(userAgent.matchAll(/(Chrome|Firefox|Safari|Edge|Opera)\/([\d.]+)/ig));
+    var browserMatch = Array.from(userAgent.matchAll(/(Chrome|Firefox|Safari|Edge|Opera)\/([\d.]+)/gi));
     var osMatch = Array.from(userAgent.matchAll(/\(([^)]+)\)/g));
     var isMobile = /Mobile|Android|iPhone|iPad/i.test(userAgent);
     // Browser info
@@ -1753,6 +1770,31 @@ var GenerateDeviceId = function () {
     deviceId += "_".concat(hash);
     return (_a = deviceId.replace(/[^a-zA-Z0-9-_]/g, "_")) !== null && _a !== void 0 ? _a : "unknown-device";
 };
+var APIHeaders = {
+    "X-DEVICE-ID": GenerateDeviceId(),
+    "X-API-VERSION": "1.0",
+};
+// Creates an Axios instance with a base URL determined by the environment (production or development).
+var axiosInstance = axios.create({
+    httpsAgent: new https.Agent({ rejectUnauthorized: false }),
+    headers: __assign({ "Content-Type": "application/json" }, APIHeaders),
+});
+// Intercepts outgoing requests to add authorization token, version header, and timeout settings.
+axiosInstance.interceptors.request.use(function (config) {
+    var _a;
+    config.timeout = Number((_a = process.env.NEXT_PUBLIC_API_TIMEOUT) !== null && _a !== void 0 ? _a : 605000);
+    config.timeoutErrorMessage = "Operation Timed Out"; // Custom error message for timeouts.
+    return config; // Returns the modified request configuration.
+}, function (axiosError) {
+    var _a, _b;
+    // Handles request errors.
+    return {
+        status: (_a = axiosError.response) === null || _a === void 0 ? void 0 : _a.status, // Extracts HTTP status from the error response.
+        message: axiosError.message, // Extracts the error message.
+        data: (_b = axiosError.response) === null || _b === void 0 ? void 0 : _b.data, // Extracts response data from the error.
+    };
+});
 var MAX_ATTEMPTS = 3;
 var useOTPHandler = function (_a) {
@@ -1760,9 +1802,9 @@ var useOTPHandler = function (_a) {
     var _b = useState(false), loading = _b[0], setLoading = _b[1];
     var _c = useState(0), attemptCount = _c[0], setAttemptCount = _c[1];
     var _d = useState(false), isMaxAttemptsReached = _d[0], setIsMaxAttemptsReached = _d[1];
-    var handleSubmitOTP = useMemo(function () { return function (authenticationValue) { return __awaiter(void 0, void 0, void 0, function () {
+    var handleSubmitOTP = useMemo(function () { return function (authenticationValue) { return __awaiter$1(void 0, void 0, void 0, function () {
         var currentAttempt, response, error_1, currentAttempt;
-        return __generator(this, function (_a) {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0:
                     if (isMaxAttemptsReached) {
@@ -1779,18 +1821,13 @@ var useOTPHandler = function (_a) {
                     setAttemptCount(currentAttempt);
                     if (authenticationType === null)
                         return [2 /*return*/, false];
-                    return [4 /*yield*/, axios.post(MFAEndpoint || "/api/auth/verify-mfa", {
+                    return [4 /*yield*/, axiosInstance.post(MFAEndpoint || "/api/auth/verify-mfa", {
                             provider: provider,
                             accessToken: accessToken,
                             idToken: idToken,
                             authenticationType: authenticationType,
                             MFACode: authenticationValue,
                             appCode: appCode,
-                        }, {
-                            headers: {
-                                "X-Device-ID": GenerateDeviceId(),
-                            },
-                            timeout: 605000,
                         })];
                 case 2:
                     response = (_a.sent()).data;
@@ -1852,6 +1889,75 @@ var useOTPHandler = function (_a) {
         remainingAttempts: MAX_ATTEMPTS - attemptCount,
     };
 };
+var useCredentialsHandler = function (onAuthComplete) {
+    var _a = useState(false), loading = _a[0], setLoading = _a[1];
+    var _b = useState(0), attemptCount = _b[0], setAttemptCount = _b[1];
+    var _c = useState(false), isMaxAttemptsReached = _c[0], setIsMaxAttemptsReached = _c[1];
+    var handleSubmitCredentials = useMemo(function () {
+        return function (CredAuthEndpoint, credentials, appCode) { return __awaiter$1(void 0, void 0, void 0, function () {
+            var currentAttempt, response, error_2, currentAttempt;
+            return __generator$1(this, function (_a) {
+                switch (_a.label) {
+                    case 0:
+                        _a.trys.push([0, 2, 3, 4]);
+                        setLoading(true);
+                        currentAttempt = attemptCount + 1;
+                        setAttemptCount(currentAttempt);
+                        return [4 /*yield*/, axiosInstance.post(CredAuthEndpoint, {
+                                username: credentials.username,
+                                password: credentials.password,
+                                MFACode: credentials.MFACode,
+                                appCode: appCode,
+                            })];
+                    case 1:
+                        response = (_a.sent()).data;
+                        if (response) {
+                            onAuthComplete(true, response);
+                            return [2 /*return*/, true];
+                        }
+                        else {
+                            if (currentAttempt >= MAX_ATTEMPTS) {
+                                setIsMaxAttemptsReached(true);
+                                onAuthComplete(false, {
+                                    message: "Maximum attempts reached",
+                                });
+                            }
+                            else {
+                                onAuthComplete(false, response.response.data);
+                            }
+                            return [2 /*return*/, false];
+                        }
+                    case 2:
+                        error_2 = _a.sent();
+                        console.error(error_2);
+                        currentAttempt = attemptCount + 1;
+                        if (currentAttempt >= MAX_ATTEMPTS) {
+                            setIsMaxAttemptsReached(true);
+                            onAuthComplete(false, error_2.response.data);
+                        }
+                        else {
+                            onAuthComplete(false, error_2.response.data);
+                        }
+                        onAuthComplete(false, error_2.response.data);
+                        return [2 /*return*/, false];
+                    case 3:
+                        setLoading(false);
+                        return [7 /*endfinally*/];
+                    case 4: return [2 /*return*/];
+                }
+            });
+        }); };
+    }, []);
+    return {
+        handleSubmitCredentials: handleSubmitCredentials,
+        loading: loading,
+        setLoading: setLoading,
+        attemptCount: attemptCount,
+        isMaxAttemptsReached: isMaxAttemptsReached,
+        // resetAttempts,
+        remainingAttempts: MAX_ATTEMPTS - attemptCount,
+    };
+};
 var MFAOptions = function (_a) {
     var onComplete = _a.onComplete, onAuthFailed = _a.onAuthFailed, MFAEndpoints = _a.MFAEndpoints, usePassKey = _a.usePassKey;
@@ -1862,54 +1968,39 @@ var MFAOptions = function (_a) {
     var context = useCAMSContext();
     var _f = context.authMode === "MSAL" && "sendEmailOTP" in context
         ? context
-        : { sendEmailOTP: null, completeMFA: null, logout: function () { return __awaiter(void 0, void 0, void 0, function () { return __generator(this, function (_a) {
+        : { sendEmailOTP: null, completeMFA: null, logout: function () { return __awaiter$1(void 0, void 0, void 0, function () { return __generator$1(this, function (_a) {
                 return [2 /*return*/];
             }); }); } }, sendEmailOTP = _f.sendEmailOTP, completeMFA = _f.completeMFA, logout = _f.logout;
     var accessToken = context.authMode === "MSAL" ? context.accessToken : "";
     var idToken = context.authMode === "MSAL" ? context.idToken : "";
     var authenticate = useWebAuthn().authenticate;
-    var handleFIDOLogin = function () { return __awaiter(void 0, void 0, void 0, function () {
+    var handleFIDOLogin = function () { return __awaiter$1(void 0, void 0, void 0, function () {
         var options, assertionResponse, error_1;
-        var _a, _b, _c, _d, _e, _f;
-        return __generator(this, function (_g) {
-            switch (_g.label) {
+        return __generator$1(this, function (_a) {
+            switch (_a.label) {
                 case 0:
-                    _g.trys.push([0, 4, , 5]);
+                    _a.trys.push([0, 4, , 5]);
                     // 1. Fetch authentication challenge from your server
                     console.log("Requesting authentication challenge from server...");
-                    return [4 /*yield*/, axios.post(MFAEndpoints.RetrieveAuthChallenge, {}, {
-                            headers: {
-                                "X-DEVICE-ID": GenerateDeviceId(),
-                                "X-API-VERSION": "1.0",
-                            },
-                        })];
+                    return [4 /*yield*/, axiosInstance.post(MFAEndpoints.RetrieveAuthChallenge, {})];
                 case 1:
-                    options = (_g.sent()).data;
+                    options = (_a.sent()).data;
                     console.log("Received challenge:", options);
                     // 2. Call the SDK to trigger the browser's passkey authentication UI
                     console.log("Calling SDK authenticate function...");
-                    return [4 /*yield*/, authenticate(__assign(__assign({}, options), { pubKeyCredParams: (_a = options.pubKeyCredParams) === null || _a === void 0 ? void 0 : _a.map(function (param) { return ({
-                                type: "public-key",
-                                alg: param.alg
-                            }); }), attestation: ((_b = options.attestation) === null || _b === void 0 ? void 0 : _b.toLowerCase()) || "none", authenticatorSelection: __assign(__assign({}, options.authenticatorSelection), { residentKey: ((_d = (_c = options.authenticatorSelection) === null || _c === void 0 ? void 0 : _c.residentKey) === null || _d === void 0 ? void 0 : _d.toLowerCase()) || "discouraged", userVerification: ((_f = (_e = options.authenticatorSelection) === null || _e === void 0 ? void 0 : _e.userVerification) === null || _f === void 0 ? void 0 : _f.toLowerCase()) || "preferred" }) }))];
+                    return [4 /*yield*/, authenticate(__assign(__assign({}, options), { userVerification: "discouraged" }))];
                 case 2:
-                    assertionResponse = _g.sent();
+                    assertionResponse = _a.sent();
                     console.log("Authentication assertion received from client:", assertionResponse);
                     // 3. Send the assertion back to the server for verification
                     console.log("Sending assertion to server for verification...");
-                    return [4 /*yield*/, axios.post(MFAEndpoints.AuthChallengeVerify, assertionResponse, {
-                            headers: {
-                                "X-DEVICE-ID": GenerateDeviceId(),
-                                "X-API-VERSION": "1.0",
-                            },
-                            withCredentials: true, // credentials: 'include'
-                        })];
+                    return [4 /*yield*/, axiosInstance.post(MFAEndpoints.AuthChallengeVerify, assertionResponse)];
                 case 3:
-                    _g.sent();
+                    _a.sent();
                     toast.success("🔑 Sign-in successful!");
                     return [3 /*break*/, 5];
                 case 4:
-                    error_1 = _g.sent();
+                    error_1 = _a.sent();
                     console.error("Authentication failed:", error_1);
                     toast.error("❌ Could not sign in.");
                     return [3 /*break*/, 5];
@@ -1965,12 +2056,12 @@ var MFAOptions = function (_a) {
     }
     var content = jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, {});
     if (!authType) {
-        content = (jsxRuntimeExports.jsxs("div", { className: "space-y-4", children: [jsxRuntimeExports.jsx("p", { className: "text-sm text-gray-600 text-center mb-6", children: "Choose your preferred authentication method:" }), jsxRuntimeExports.jsxs("div", { className: "flex flex-col gap-3", children: [jsxRuntimeExports.jsxs(Button, { variant: "outline", className: "w-full flex items-center justify-start gap-3 p-4 h-auto border-2 hover:border-[#506f4a] hover:bg-[#506f4a]/5 transition-all", onClick: function () { return __awaiter(void 0, void 0, void 0, function () {
+        content = (jsxRuntimeExports.jsxs("div", { className: "space-y-4", children: [jsxRuntimeExports.jsx("p", { className: "text-sm text-gray-600 text-center mb-6", children: "Choose your preferred authentication method:" }), jsxRuntimeExports.jsxs("div", { className: "flex flex-col gap-3", children: [jsxRuntimeExports.jsxs(Button, { variant: "outline", className: "w-full flex items-center justify-start gap-3 p-4 h-auto border-2 hover:border-[#506f4a] hover:bg-[#506f4a]/5 transition-all", onClick: function () { return __awaiter$1(void 0, void 0, void 0, function () {
                                 var success;
-                                return __generator(this, function (_a) {
+                                return __generator$1(this, function (_a) {
                                     switch (_a.label) {
                                         case 0:
-                                            resetAttempts();
+                                            // resetAttempts();
                                             setAuthType("EmailOTP");
                                             setOtpVisible(true);
                                             if (!sendEmailOTP) return [3 /*break*/, 2];
@@ -1987,7 +2078,6 @@ var MFAOptions = function (_a) {
                                     }
                                 });
                             }); }, children: [jsxRuntimeExports.jsx(Mail, { className: "w-5 h-5" }), jsxRuntimeExports.jsxs("div", { className: "text-left", children: [jsxRuntimeExports.jsx("div", { className: "font-medium", children: "Email OTP" }), jsxRuntimeExports.jsx("div", { className: "text-sm text-gray-500", children: "Send code to your email" })] })] }), jsxRuntimeExports.jsxs(Button, { variant: "outline", className: "w-full flex items-center justify-start gap-3 p-4 h-auto border-2 hover:border-[#506f4a] hover:bg-[#506f4a]/5 transition-all", onClick: function () {
-                                resetAttempts();
                                 setAuthType("AuthenticatorCode");
                                 setOtpVisible(true);
                             }, children: [jsxRuntimeExports.jsx("img", { src: MicrosoftAuthenticatorImg, alt: "Authenticator", className: "rounded-full", width: 24, height: 24, onError: function () { return jsxRuntimeExports.jsx(Shield, {}); } }), jsxRuntimeExports.jsxs("div", { className: "text-left", children: [jsxRuntimeExports.jsx("div", { className: "font-medium", children: "Authenticator App" }), jsxRuntimeExports.jsx("div", { className: "text-sm text-gray-500", children: "Use Authenticator App" })] })] }), usePassKey && (jsxRuntimeExports.jsxs(Button, { variant: "outline", className: "w-full flex items-center justify-start gap-3 p-4 h-auto border-2 hover:border-[#506f4a] hover:bg-[#506f4a]/5 transition-all",
@@ -1996,7 +2086,7 @@ var MFAOptions = function (_a) {
                             //   setAuthType("AuthenticatorCode");
                             //   setOtpVisible(true);
                             // }}
-                            onClick: handleFIDOLogin, disabled: context.isLoading, children: [jsxRuntimeExports.jsx(Button, { className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", children: jsxRuntimeExports.jsx("span", { children: "Sign In " }) }), jsxRuntimeExports.jsx(KeyIcon, { className: "w-16 h-16 text-[#506f4a]" }), jsxRuntimeExports.jsxs("div", { className: "text-left", children: [jsxRuntimeExports.jsx("div", { className: "font-medium", children: "Continue with Passkey" }), jsxRuntimeExports.jsx("div", { className: "text-sm text-gray-500", children: "Passkey" })] })] }))] })] }));
+                            onClick: handleFIDOLogin, disabled: context.isLoading, children: [jsxRuntimeExports.jsx(KeyIcon, { className: "text-[#506f4a]", size: 48 }), jsxRuntimeExports.jsxs("div", { className: "text-left", children: [jsxRuntimeExports.jsx("div", { className: "font-medium", children: "Continue with Passkey" }), jsxRuntimeExports.jsx("div", { className: "text-sm text-gray-500", children: "Passkey" })] })] }))] })] }));
     }
     else if (authType === "EmailOTP") {
         content = (jsxRuntimeExports.jsx(Dialog, { open: otpVisible, onOpenChange: function () {
@@ -2028,28 +2118,27 @@ var credentialsSchema = z.object({
     password: z.string().min(1, "Password is required"),
 });
 var ADLoginModal = function (_a) {
-    var open = _a.open, onOpenChange = _a.onOpenChange, onLogin = _a.onLogin;
+    var open = _a.open, isLoading = _a.isLoading, setIsLoading = _a.setIsLoading, onOpenChange = _a.onOpenChange, onLogin = _a.onLogin;
     var _b = useState("credentials"), step = _b[0], setStep = _b[1];
     var _c = useState({
         username: "",
         password: "",
     }), credentials = _c[0], setCredentials = _c[1];
     var _d = useState(""), mfaCode = _d[0], setMfaCode = _d[1];
-    var _e = useState(false), isLoading = _e[0], setIsLoading = _e[1];
     var form = useForm({
         resolver: a$1(credentialsSchema),
         defaultValues: { username: "", password: "" },
     });
-    var handleCredentialsSubmit = function (values) { return __awaiter(void 0, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var handleCredentialsSubmit = function (values) { return __awaiter$1(void 0, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             setCredentials(values);
             setStep("mfa");
             return [2 /*return*/];
         });
     }); };
-    var handleMFASubmit = function (code) { return __awaiter(void 0, void 0, void 0, function () {
+    var handleMFASubmit = function (code) { return __awaiter$1(void 0, void 0, void 0, function () {
         var error_1;
-        return __generator(this, function (_a) {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0:
                     setIsLoading(true);
@@ -2085,22 +2174,50 @@ var ADLoginModal = function (_a) {
         form.reset();
         setMfaCode("");
     };
-    return (jsxRuntimeExports.jsx(Dialog, { open: open, onOpenChange: handleClose, children: jsxRuntimeExports.jsxs(DialogContent, { className: "sm:max-w-[85%]", children: [jsxRuntimeExports.jsx(DialogHeader, { children: jsxRuntimeExports.jsxs("div", { className: "flex items-center gap-2", children: [jsxRuntimeExports.jsx(KeyIcon, { className: "w-8 h-8 text-[#506f4a]" }), jsxRuntimeExports.jsx(DialogTitle, { className: "text-2xl", children: "Sign in with AD" })] }) }), step === "credentials" ? (jsxRuntimeExports.jsx(Form, __assign({}, form, { children: jsxRuntimeExports.jsxs("form", { onSubmit: form.handleSubmit(handleCredentialsSubmit), className: "space-y-4", children: [jsxRuntimeExports.jsx(FormField, { control: form.control, name: "username", render: function (_a) {
+    return (jsxRuntimeExports.jsx(Dialog, { open: open, onOpenChange: handleClose, children: jsxRuntimeExports.jsxs(DialogContent, { className: "min-w-[50vw] max-w-[70vw]", children: [jsxRuntimeExports.jsx(DialogHeader, { children: jsxRuntimeExports.jsxs("div", { className: "flex items-center gap-2", children: [jsxRuntimeExports.jsx(KeyIcon, { className: "w-8 h-8 text-[#506f4a]" }), jsxRuntimeExports.jsx(DialogTitle, { className: "text-2xl", children: "Sign in with AD" })] }) }), step === "credentials" ? (jsxRuntimeExports.jsx(Form, __assign({}, form, { children: jsxRuntimeExports.jsxs("form", { onSubmit: form.handleSubmit(handleCredentialsSubmit), className: "space-y-4", children: [jsxRuntimeExports.jsx(FormField, { control: form.control, name: "username", render: function (_a) {
                                     var field = _a.field;
-                                    return (jsxRuntimeExports.jsxs(FormItem, { children: [jsxRuntimeExports.jsx(FormLabel, { children: "Username" }), jsxRuntimeExports.jsx(FormControl, { children: jsxRuntimeExports.jsx(Input, __assign({ placeholder: "Enter your username" }, field)) }), jsxRuntimeExports.jsx(FormMessage, {})] }));
+                                    return (jsxRuntimeExports.jsxs(FormItem, { children: [jsxRuntimeExports.jsx(FormLabel, { children: "Username" }), jsxRuntimeExports.jsx(FormControl, { children: jsxRuntimeExports.jsx(Input, __assign({ className: "h-12", placeholder: "Enter your username" }, field)) }), jsxRuntimeExports.jsx(FormMessage, {})] }));
                                 } }), jsxRuntimeExports.jsx(FormField, { control: form.control, name: "password", render: function (_a) {
                                     var field = _a.field;
-                                    return (jsxRuntimeExports.jsxs(FormItem, { children: [jsxRuntimeExports.jsx(FormLabel, { children: "Password" }), jsxRuntimeExports.jsx(FormControl, { children: jsxRuntimeExports.jsx(Input, __assign({ type: "password", placeholder: "Enter your password" }, field)) }), jsxRuntimeExports.jsx(FormMessage, {})] }));
+                                    return (jsxRuntimeExports.jsxs(FormItem, { children: [jsxRuntimeExports.jsx(FormLabel, { children: "Password" }), jsxRuntimeExports.jsx(FormControl, { children: jsxRuntimeExports.jsx(Input, __assign({ className: "h-12", type: "password", placeholder: "Enter your password" }, field)) }), jsxRuntimeExports.jsx(FormMessage, {})] }));
                                 } }), jsxRuntimeExports.jsx(Button, { type: "submit", className: "w-full bg-[#506f4a] hover:bg-[#506f4a]/90", children: "Continue" })] }) }))) : (jsxRuntimeExports.jsxs("div", { className: "space-y-4", children: [jsxRuntimeExports.jsx(GenericOTPVerifier, { value: mfaCode, setValue: setMfaCode, setLoading: setIsLoading, isDisabled: isLoading, onChangeOTP: handleMFASubmit, fieldName: "AuthenticatorCode" }), isLoading && (jsxRuntimeExports.jsxs("div", { className: "flex items-center justify-center gap-2 text-sm text-muted-foreground", children: [jsxRuntimeExports.jsx(Loader2, { className: "w-4 h-4 animate-spin" }), jsxRuntimeExports.jsx("span", { children: "Verifying..." })] }))] }))] }) }));
 };
 var DefaultLoginPage = function (_a) {
-    var usePassKey = _a.usePassKey, MFAEndpoints = _a.MFAEndpoints, PassKeysRegisterProps = _a.PassKeysRegisterProps;
+    var usePassKey = _a.usePassKey, useADLogin = _a.useADLogin, MFAEndpoints = _a.MFAEndpoints, CredentialsAuthEndpoint = _a.CredentialsAuthEndpoint, PassKeysRegisterProps = _a.PassKeysRegisterProps;
+    var cardVariants = {
+        hidden: { opacity: 0, scale: 0.8, y: 50 },
+        visible: {
+            opacity: 1,
+            scale: 1,
+            y: 0,
+            transition: { type: "spring", duration: 0.6 },
+        },
+        exit: { opacity: 0, scale: 0.8, y: -50, transition: { duration: 0.3 } },
+    };
     var context = useCAMSContext();
     var login = context.login, isLoading = context.isLoading, authMode = context.authMode;
     var _b = useState(false), showADModal = _b[0], setShowADModal = _b[1];
     var register = useWebAuthn().register;
+    var _c = useCredentialsHandler(function (state, data) { return __awaiter$1(void 0, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
+            console.log(data);
+            if (state && data) {
+                context.isAuthenticated = true;
+                context.requiresMFA = false;
+                context.setUserProfile({
+                    type: "AUTH_SUCCESS",
+                    userProfile: __assign({}, data),
+                });
+            }
+            return [2 /*return*/];
+        });
+    }); }), handleSubmitCredentials = _c.handleSubmitCredentials, isCredAuthLoading = _c.loading, setIsCredAuthLoading = _c.setLoading;
     var handleMSALLogin = function () {
+        if (typeof window !== "undefined" && !window.crypto) {
+            toast.error("Crypto API not available. Please use a modern browser.");
+            return;
+        }
         if (authMode === "MSAL") {
             login();
         }
@@ -2109,30 +2226,15 @@ var DefaultLoginPage = function (_a) {
             console.warn("Regular CAMS login requires configuration");
         }
     };
-    var cardVariants = {
-        hidden: { opacity: 0, scale: 0.8, y: 50 },
-        visible: {
-            opacity: 1,
-            scale: 1,
-            y: 0,
-            transition: { type: "spring", duration: 0.6 },
-        },
-        exit: { opacity: 0, scale: 0.8, y: -50, transition: { duration: 0.3 } },
-    };
-    var handleRegister = function (data) { return __awaiter(void 0, void 0, void 0, function () {
+    var handleRegister = function (data) { return __awaiter$1(void 0, void 0, void 0, function () {
         var options, attestationResponse, error_1;
-        return __generator(this, function (_a) {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0:
                     _a.trys.push([0, 4, , 5]);
                     // 1. Fetch challenge from your server
                     console.log("Requesting registration challenge from server...");
-                    return [4 /*yield*/, axios.post(MFAEndpoints.RegisterNewChallenge, __assign({}, data), {
-                            headers: {
-                                "X-DEVICE-ID": GenerateDeviceId(),
-                                "X-API-VERSION": "1.0",
-                            },
-                        })];
+                    return [4 /*yield*/, axiosInstance.post(MFAEndpoints.RegisterNewChallenge, __assign({}, data))];
                 case 1:
                     options = (_a.sent()).data;
                     console.log("Received challenge:", options);
@@ -2144,13 +2246,7 @@ var DefaultLoginPage = function (_a) {
                     console.log("Passkey created on client:", attestationResponse);
                     // 3. Send the response back to the server for verification
                     console.log("Sending attestation to server for verification...");
-                    return [4 /*yield*/, axios.post(MFAEndpoints.RegisterVerify, attestationResponse, {
-                            headers: {
-                                "X-DEVICE-ID": GenerateDeviceId(),
-                                "X-API-VERSION": "1.0",
-                            },
-                            withCredentials: true, // credentials: 'include'
-                        })];
+                    return [4 /*yield*/, axiosInstance.post(MFAEndpoints.RegisterVerify + "?username=".concat(data.username), attestationResponse)];
                 case 3:
                     _a.sent();
                     toast.success("✅ Registration successful! Passkey created.");
@@ -2164,15 +2260,19 @@ var DefaultLoginPage = function (_a) {
             }
         });
     }); };
-    return (jsxRuntimeExports.jsxs("main", { className: "min-h-screen bg-gray-50", children: [jsxRuntimeExports.jsx(motion.div, { initial: { opacity: 0 }, animate: { opacity: 1 }, exit: { opacity: 0 }, transition: { duration: 0.5 }, children: jsxRuntimeExports.jsx("div", { className: "flex h-screen items-center justify-center", children: jsxRuntimeExports.jsxs(motion.div, { variants: cardVariants, initial: "hidden", animate: "visible", exit: "exit", className: "w-full max-w-md p-6 space-y-4 bg-gray-50 rounded-2xl shadow-2xl --dark:bg-gray-800", children: [jsxRuntimeExports.jsxs(CardHeader, { className: "text-center space-y-3", children: [jsxRuntimeExports.jsx("div", { className: "w-full flex items-center justify-center", children: jsxRuntimeExports.jsx("img", { src: NIBSSLogo, alt: "NIBSS Logo", width: 265, height: 265 }) }), jsxRuntimeExports.jsx(CardTitle, { className: "text-3xl font-bold --text-gray-900 --dark:text-white", children: "NIBSS CAMS" }), jsxRuntimeExports.jsx(CardTitle, { className: "text-gray-500 dark:text-gray-400 font-bold text-lg", children: "Centralized Authentication" })] }), jsxRuntimeExports.jsxs(CardAction, { className: "w-full flex flex-col items-center justify-center text-center text-gray-500 dark:text-gray-400 mb-6", children: [jsxRuntimeExports.jsx("img", { src: AuthLogo, alt: "Auth Logo", width: 365, height: 365 }), "Kindly use the below identity providers to authenticate"] }), jsxRuntimeExports.jsxs("div", { className: "space-y-4", children: [jsxRuntimeExports.jsxs(Button
+    return (jsxRuntimeExports.jsxs("main", { className: "min-h-screen bg-gray-50", children: [jsxRuntimeExports.jsx(motion.div, { initial: { opacity: 0 }, animate: { opacity: 1 }, exit: { opacity: 0 }, transition: { duration: 0.5 }, children: jsxRuntimeExports.jsx("div", { className: "flex h-screen items-center justify-center", children: jsxRuntimeExports.jsxs(motion.div, { variants: cardVariants, initial: "hidden", animate: "visible", exit: "exit", className: "w-full max-w-md p-6 space-y-4 bg-gray-50 rounded-2xl shadow-2xl --dark:bg-gray-800", children: [jsxRuntimeExports.jsxs(CardHeader, { className: "text-center space-y-3", children: [jsxRuntimeExports.jsx("div", { className: "w-full flex items-center justify-center", children: jsxRuntimeExports.jsx("img", { src: NIBSSLogo, alt: "NIBSS Logo", width: 265, height: 265 }) }), jsxRuntimeExports.jsx(CardTitle, { className: "text-3xl font-bold --text-gray-900 --dark:text-white", children: "NIBSS CAMS" }), jsxRuntimeExports.jsx(CardTitle, { className: "text-gray-500 dark:text-gray-400 font-bold text-lg", children: "Centralized Authentication" })] }), jsxRuntimeExports.jsxs(CardAction, { className: "w-full flex flex-col items-center justify-center text-center text-gray-500 dark:text-gray-400 mb-8", children: [jsxRuntimeExports.jsx("img", { src: AuthLogo, alt: "Auth Logo", width: 365, height: 365 }), "Use Below Identity Providers To Authenticate"] }), jsxRuntimeExports.jsxs("div", { className: "space-y-4", children: [jsxRuntimeExports.jsxs(Button
                                     // variant="outline"
                                     , {
                                         // variant="outline"
-                                        className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", onClick: handleMSALLogin, disabled: isLoading, children: [jsxRuntimeExports.jsx("img", { src: MicrosoftLogo, alt: "Microsoft Logo", width: 35, height: 35 }), jsxRuntimeExports.jsx("span", { className: "ml-2", children: isLoading ? "Logging in..." : "Sign in with Microsoft" })] }), jsxRuntimeExports.jsxs(Button, { className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", onClick: function () { return setShowADModal(true); }, disabled: isLoading, children: [jsxRuntimeExports.jsx(KeyIcon, { className: "w-8 h-8 text-[#506f4a]" }), jsxRuntimeExports.jsx("span", { children: isLoading ? "Logging in..." : "Sign in with ActiveDirectory" })] }), usePassKey && (jsxRuntimeExports.jsxs(Button, { className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", onClick: function () { return handleRegister(PassKeysRegisterProps); }, disabled: isLoading, children: [jsxRuntimeExports.jsx(KeyIcon, { className: "w-12 h-12 text-[#506f4a]" }), jsxRuntimeExports.jsx("span", { children: "Create a Passkey" })] }))] }), jsxRuntimeExports.jsxs(CardFooter, { className: "flex items-center justify-center mt-6 space-x-2 text-gray-400 text-sm", children: [jsxRuntimeExports.jsx(ShieldCheck, { className: "w-4 h-4 text-[#506f4a] pulse-glow" }), jsxRuntimeExports.jsx("span", { children: "Powered By NIBSS" })] })] }) }) }, "landing"), jsxRuntimeExports.jsx(ADLoginModal, { open: showADModal, onOpenChange: setShowADModal, onLogin: function (_a) { return __awaiter(void 0, [_a], void 0, function (_b) {
+                                        className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", onClick: handleMSALLogin, disabled: isLoading, children: [jsxRuntimeExports.jsx("img", { src: MicrosoftLogo, alt: "Microsoft Logo", width: 35, height: 35 }), jsxRuntimeExports.jsx("span", { className: "ml-2", children: isLoading ? "Logging in..." : "Sign in with Microsoft" })] }), useADLogin && (jsxRuntimeExports.jsxs(Button, { className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", onClick: function () { return setShowADModal(true); }, disabled: isLoading, children: [jsxRuntimeExports.jsx(KeyIcon, { className: "text-[#506f4a]", size: 64 }), jsxRuntimeExports.jsx("span", { children: isLoading
+                                                    ? "Logging in..."
+                                                    : "Sign in with ActiveDirectory" })] })), usePassKey && (jsxRuntimeExports.jsxs(Button, { className: "w-full flex items-center justify-center cursor-pointer bg-[#506f4a] hover:bg-[#506f4a] rounded-lg border border-transparent px-5 py-8 text-base font-medium transition-colors duration-250", onClick: function () { return handleRegister(PassKeysRegisterProps); }, disabled: isLoading, children: [jsxRuntimeExports.jsx(KeyIcon, { className: "text-[#506f4a]", size: 64 }), jsxRuntimeExports.jsx("span", { children: "Create a Passkey" })] }))] }), jsxRuntimeExports.jsxs(CardFooter, { className: "flex items-center justify-center mt-6 space-x-2 text-gray-400 text-sm", children: [jsxRuntimeExports.jsx(ShieldCheck, { className: "w-4 h-4 text-[#506f4a] pulse-glow" }), jsxRuntimeExports.jsx("span", { children: "Powered By NIBSS" })] })] }) }) }, "landing"), jsxRuntimeExports.jsx(ADLoginModal, { open: showADModal, onOpenChange: setShowADModal, isLoading: isCredAuthLoading, setIsLoading: setIsCredAuthLoading, onLogin: function (_a) { return __awaiter$1(void 0, [_a], void 0, function (_b) {
                     var username = _b.username, password = _b.password, MFACode = _b.MFACode;
-                    return __generator(this, function (_c) {
+                    return __generator$1(this, function (_c) {
                         // Implement your AD login logic here
                         console.log("AD Login:", { username: username, password: password, MFACode: MFACode });
+                        // Example: await adLoginService(username, password, mfaCode);
+                        handleSubmitCredentials(CredentialsAuthEndpoint !== null && CredentialsAuthEndpoint !== void 0 ? CredentialsAuthEndpoint : "/api/auth/validate", { username: username, password: password, MFACode: MFACode }, context.appCode);
                         return [2 /*return*/];
                     });
                 }); } })] }));
@@ -2195,7 +2295,7 @@ var MFAGate = function (_a) {
     // loginComponent: LoginComponent = DefaultLoginPage,
     _c = _a.usePassKey,
     // loginComponent: LoginComponent = DefaultLoginPage,
-    usePassKey = _c === void 0 ? false : _c, PassKeysRegisterProps = _a.PassKeysRegisterProps, MFAEndpoints = _a.MFAEndpoints;
+    usePassKey = _c === void 0 ? false : _c, _d = _a.useADLogin, useADLogin = _d === void 0 ? false : _d, CredentialsAuthEndpoint = _a.CredentialsAuthEndpoint, PassKeysRegisterProps = _a.PassKeysRegisterProps, MFAEndpoints = _a.MFAEndpoints;
     var context = useCAMSContext();
     var validatedMFAEndpoints = useMemo(function () {
         var parsed = MFAEndpointsSchema.safeParse(MFAEndpoints);
@@ -2209,8 +2309,8 @@ var MFAGate = function (_a) {
         if (!success)
             Logger.error("MFA authentication failed");
     }, []);
-    var handleAuthFailed = useCallback(function () { return __awaiter(void 0, void 0, void 0, function () {
-        return __generator(this, function (_a) {
+    var handleAuthFailed = useCallback(function () { return __awaiter$1(void 0, void 0, void 0, function () {
+        return __generator$1(this, function (_a) {
             switch (_a.label) {
                 case 0: return [4 /*yield*/, context.logout()];
                 case 1:
@@ -2219,9 +2319,10 @@ var MFAGate = function (_a) {
             }
         });
     }); }, [context.logout]);
-    Logger.debug("MFA Endpoint >>>", { MFAEndpoints: MFAEndpoints });
+    if (useADLogin && !CredentialsAuthEndpoint)
+        return jsxRuntimeExports.jsx(ErrorFallback, { message: "Invalid AD Login Configuration." });
     if (!validatedMFAEndpoints)
-        return jsxRuntimeExports.jsx(ErrorFallback, { message: "Invalid MFA configuration." });
+        return jsxRuntimeExports.jsx(ErrorFallback, { message: "Invalid MFA Configuration." });
     if (context.authMode !== "MSAL")
         return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: children });
     if (context.isLoading)
@@ -2230,7 +2331,7 @@ var MFAGate = function (_a) {
         return (jsxRuntimeExports.jsx(MFAOptions, { MFAEndpoints: validatedMFAEndpoints, usePassKey: usePassKey, onComplete: handleComplete, onAuthFailed: handleAuthFailed }));
     }
     if (!context.isAuthenticated) {
-        return (jsxRuntimeExports.jsx(DefaultLoginPage, { usePassKey: usePassKey, MFAEndpoints: MFAEndpoints, PassKeysRegisterProps: PassKeysRegisterProps }));
+        return (jsxRuntimeExports.jsx(DefaultLoginPage, { usePassKey: usePassKey, useADLogin: useADLogin, MFAEndpoints: MFAEndpoints, PassKeysRegisterProps: PassKeysRegisterProps, CredentialsAuthEndpoint: CredentialsAuthEndpoint }));
     }
     return jsxRuntimeExports.jsx(jsxRuntimeExports.Fragment, { children: children });
 };