@okta/okta-auth-js 5.5.0 → 5.9.0

package/lib/types/Transaction.d.ts

@@ -11,8 +11,10 @@
  */
 import StorageManager from '../StorageManager';
 import { CustomUrls } from './OktaAuthOptions';
+import { FlowIdentifier } from '../idx/types';
 export interface TransactionManagerOptions {
-    storageManager: StorageManager;
+    storageManager?: StorageManager;
+    enableSharedStorage?: boolean;
     legacyWidgetSupport?: boolean;
     saveNonceCookie?: boolean;
     saveStateCookie?: boolean;
@@ -21,6 +23,8 @@ export interface TransactionManagerOptions {
 export interface TransactionMetaOptions {
     pkce?: boolean;
     oauth?: boolean;
+    muteWarning?: boolean;
+    state?: string;
 }
 export interface OAuthTransactionMeta {
     issuer: string;
@@ -32,6 +36,7 @@ export interface OAuthTransactionMeta {
     clientId: string;
     urls: CustomUrls;
     ignoreSignature: boolean;
+    originalUri?: string;
 }
 export interface PKCETransactionMeta extends OAuthTransactionMeta {
     codeVerifier: string;
@@ -41,6 +46,7 @@ export interface PKCETransactionMeta extends OAuthTransactionMeta {
 export interface IdxTransactionMeta extends PKCETransactionMeta {
     interactionHandle?: string;
     remediations?: string[];
+    flow?: FlowIdentifier;
 }
 export declare type CustomAuthTransactionMeta = Record<string, string | undefined>;
 export declare type TransactionMeta = IdxTransactionMeta | PKCETransactionMeta | OAuthTransactionMeta | CustomAuthTransactionMeta;

package/lib/types/api.d.ts

@@ -18,7 +18,8 @@ import StorageManager from '../StorageManager';
 import TransactionManager from '../TransactionManager';
 import { TokenManagerInterface } from './TokenManager';
 import { OktaUserAgent } from '../OktaUserAgent';
-import { AuthenticationOptions, RegistrationOptions as IdxRegistrationOptions, PasswordRecoveryOptions, CancelOptions, IdxOptions, IdxTransaction } from '../idx/types';
+import { FlowIdentifier } from '../idx/types';
+import { AuthenticationOptions, RegistrationOptions as IdxRegistrationOptions, PasswordRecoveryOptions, ProceedOptions, CancelOptions, IdxOptions, IdxTransaction } from '../idx/types';
 import { InteractOptions, InteractResponse } from '../idx/interact';
 import { IntrospectOptions } from '../idx/introspect';
 import { IdxResponse } from '../idx/types/idx-js';
@@ -26,10 +27,12 @@ export interface OktaAuth {
     options: OktaAuthOptions;
     userAgent: string;
     getIssuerOrigin(): string;
+    getOriginalUri(): string;
     _oktaUserAgent: OktaUserAgent;
     storageManager: StorageManager;
     transactionManager: TransactionManager;
     tokenManager: TokenManagerInterface;
+    idx: IdxAPI;
     features?: FeaturesAPI;
     token?: TokenAPI;
 }
@@ -93,7 +96,14 @@ export interface TokenParams extends CustomUrls {
     prompt?: string;
     sessionToken?: string;
     timeout?: number;
+    extraParams?: {
+        [propName: string]: string;
+    };
+    popupTitle?: string;
+}
+export interface PopupParams {
     popupTitle?: string;
+    popupWindow?: Window;
 }
 export interface TokenResponse {
     tokens: Tokens;
@@ -161,7 +171,7 @@ export interface SigninOptions extends SupportsCodeFlow, AuthenticationOptions {
     context?: string;
     sendFingerprint?: boolean;
 }
-export interface SigninWithRedirectOptions extends SigninOptions {
+export interface SigninWithRedirectOptions extends SigninOptions, TokenParams {
     originalUri?: string;
 }
 export interface SigninWithCredentialsOptions extends SigninOptions {
@@ -202,10 +212,16 @@ export interface PkceAPI {
 export interface IdxAPI {
     interact: (options?: InteractOptions) => Promise<InteractResponse>;
     introspect: (options?: IntrospectOptions) => Promise<IdxResponse>;
-    authenticate: (options: AuthenticationOptions) => Promise<IdxTransaction>;
-    register: (options: IdxRegistrationOptions) => Promise<IdxTransaction>;
+    authenticate: (options?: AuthenticationOptions) => Promise<IdxTransaction>;
+    register: (options?: IdxRegistrationOptions) => Promise<IdxTransaction>;
+    proceed: (options?: ProceedOptions) => Promise<IdxTransaction>;
     cancel: (options?: CancelOptions) => Promise<IdxTransaction>;
     startTransaction: (options?: IdxOptions) => Promise<IdxTransaction>;
-    recoverPassword: (options: PasswordRecoveryOptions) => Promise<IdxTransaction>;
+    recoverPassword: (options?: PasswordRecoveryOptions) => Promise<IdxTransaction>;
     handleInteractionCodeRedirect: (url: string) => Promise<void>;
+    getFlow(): FlowIdentifier;
+    setFlow(flow: FlowIdentifier): void;
+    canProceed(options?: {
+        state?: string;
+    }): boolean;
 }

package/{esm/errors/AuthPollStopError.js → lib/util/emailVerify.d.ts}

@@ -9,12 +9,9 @@
  *
  * See the License for the specific language governing permissions and limitations under the License.
  */
-import CustomError from './CustomError';
-export default class AuthPollStopError extends CustomError {
-  constructor() {
-    var message = 'The poll was stopped by the sdk';
-    super(message);
-  }
-
+export interface EmailVerifyCallbackResponse {
+    state: string;
+    stateTokenExternalId: string;
 }
-//# sourceMappingURL=AuthPollStopError.js.map
+export declare function isEmailVerifyCallback(urlPath: string): boolean;
+export declare function parseEmailVerifyCallback(urlPath: string): EmailVerifyCallbackResponse;

package/lib/util/index.d.ts

@@ -10,6 +10,7 @@
  * See the License for the specific language governing permissions and limitations under the License.
  */
 export * from './console';
+export * from './emailVerify';
 export * from './misc';
 export * from './object';
 export * from './types';

package/lib/util/sharedStorage.d.ts

@@ -0,0 +1,6 @@
+import { TransactionMeta } from '../types';
+import StorageManager from '../StorageManager';
+export declare function pruneSharedStorage(storageManager: StorageManager): void;
+export declare function saveTransactionToSharedStorage(storageManager: StorageManager, state: string, meta: TransactionMeta): void;
+export declare function loadTransactionFromSharedStorage(storageManager: StorageManager, state: string): any;
+export declare function clearTransactionFromSharedStorage(storageManager: StorageManager, state: string): void;

package/package.json

@@ -2,13 +2,15 @@
   "private": false,
   "name": "@okta/okta-auth-js",
   "description": "The Okta Auth SDK",
-  "version": "5.5.0",
+  "version": "5.9.0",
   "homepage": "https://github.com/okta/okta-auth-js",
   "license": "Apache-2.0",
   "type": "commonjs",
   "main": "cjs/index.js",
   "module": "esm/index.js",
-  "browser": "dist/okta-auth-js.umd.js",
+  "browser": {
+    "cjs/index.js": "./dist/okta-auth-js.umd.js"
+  },
   "types": "lib/index.d.ts",
   "repository": {
     "type": "git",
@@ -36,12 +38,14 @@
     "test:server": "jest --config ./jest.server.js",
     "test:report": "yarn test --ci --silent || true",
     "test:samples": "yarn workspace @okta/test.e2e.samples start",
+    "test:integration": "jest --config ./jest.integration.js",
     "build": "node scripts/build.js",
-    "build:cdn": "cross-env NODE_ENV=production webpack --config webpack.cdn.config.js -p",
-    "build:web": "cross-env NODE_ENV=production webpack --config webpack.config.js --output-library-target=umd -p",
+    "build:cdn": "cross-env NODE_ENV=production webpack --config webpack.cdn.config.js",
+    "build:web": "cross-env NODE_ENV=production webpack --config webpack.config.js",
     "build:cjs": "cross-env babel lib -d build/cjs --config-file ./babel.cjs.js --extensions \".ts\",\".js\" --source-maps",
-    "build:esm": "cross-env babel lib -d build/esm --config-file ./babel.esm.js --extensions \".ts\",\".js\" --source-maps",
-    "build:polyfill": "cross-env NODE_ENV=production webpack --config webpack.polyfill.config.js --output-library-target=umd -p",
+    "build:esm": "rollup -c",
+    "build:polyfill": "cross-env NODE_ENV=production webpack --config webpack.polyfill.config.js",
+    "build:types": "tsc --emitDeclarationOnly",
     "generate:samples": "yarn workspace @okta/samples build && yarn install --ignore-scripts",
     "dev:samples": "yarn workspace @okta/samples dev",
     "prepare": "",
@@ -69,7 +73,7 @@
   },
   "dependencies": {
     "@babel/runtime": "^7.12.5",
-    "@okta/okta-idx-js": "0.19.0",
+    "@okta/okta-idx-js": "0.22.0",
     "@peculiar/webcrypto": "1.1.6",
     "Base64": "1.1.0",
     "atob": "^2.1.2",
@@ -93,6 +97,10 @@
     "@babel/plugin-transform-typescript": "^7.10.5",
     "@babel/preset-env": "^7.8.2",
     "@babel/preset-typescript": "^7.10.4",
+    "@okta/okta-signin-widget": "5.13.0",
+    "@rollup/plugin-alias": "^3.1.8",
+    "@rollup/plugin-babel": "^5.3.0",
+    "@rollup/plugin-replace": "^3.0.0",
     "@types/jest": "^25.2.3",
     "@types/node": "^14.0.3",
     "@typescript-eslint/eslint-plugin": "^2.34.0",
@@ -115,12 +123,17 @@
     "jest-junit": "^9.0.0",
     "json-loader": "0.5.4",
     "lodash": "4.17.20",
+    "rollup": "^2.59.0",
+    "rollup-plugin-cleanup": "^3.2.1",
+    "rollup-plugin-license": "^2.6.0",
+    "rollup-plugin-typescript2": "^0.30.0",
     "shelljs": "0.8.4",
     "ts-jest": "^26.4.3",
-    "ts-loader": "^8.0.1",
+    "ts-loader": "^9.2.6",
     "tsd": "^0.17.0",
     "typescript": "^4.2.3",
-    "webpack": "^4.43.0"
+    "webpack": "^5.60.0",
+    "webpack-cli": "^4.9.1"
   },
   "jest-junit": {
     "outputDirectory": "./build2/reports/unit/",
@@ -128,7 +141,7 @@
   },
   "workspaces": {
     "packages": [
-      "./",
+      ".",
       "env",
       "test/apps/*",
       "test/e2e",
@@ -159,8 +172,8 @@
     }
   },
   "okta": {
-    "commitSha": "18515866e42f5da64440b6dadad525da76a1ce04",
-    "fullVersion": "5.5.0-g1851586",
-    "testedSha": "26282fa34c95668d36a13dd354646f4e9ac87514"
+    "commitSha": "0ec37e24fe7659493073b852c51aa4cb4397bc74",
+    "fullVersion": "5.9.0-g0ec37e2",
+    "testedSha": "60dd409a7a75b3b829d905ef1967719fe5728d43"
   }
 }

package/cjs/idx/flowMonitors/AuthenticationFlowMonitor.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../lib/idx/flowMonitors/AuthenticationFlowMonitor.ts"],"names":["AuthenticationFlowMonitor","FlowMonitor","isRemediatorCandidate","remediator","remediations","values","prevRemediatorName","previousRemediator","getName","remediatorName","includes","some","name"],"mappings":";;;;AAaA;;AAbA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKO,MAAMA,yBAAN,SAAwCC,wBAAxC,CAAoD;AACzDC,EAAAA,qBAAqB,CAACC,UAAD,EAAaC,YAAb,EAA4BC,MAA5B,EAAqC;AAAA;;AACxD,UAAMC,kBAAkB,4BAAG,KAAKC,kBAAR,0DAAG,sBAAyBC,OAAzB,EAA3B;AACA,UAAMC,cAAc,GAAGN,UAAU,CAACK,OAAX,EAAvB;;AAEA,QAAIC,cAAc,KAAK,mCAAnB,IACC,CAAC,mCAAD,EAAsCC,QAAtC,CAA+CJ,kBAA/C,CADL,EACyE;AACvE,aAAO,KAAP;AACD;;AAED,QAAIG,cAAc,KAAK,mCAAnB,IACCL,YAAY,CAACO,IAAb,CAAkB,CAAC;AAAEC,MAAAA;AAAF,KAAD,KAAcA,IAAI,KAAK,yBAAzC,CADL,EAC0E;AACxE,aAAO,KAAP;AACD;;AAED,QAAIH,cAAc,KAAK,6BAAnB,IACC,CACC,6BADD,EAEC,+BAFD,EAGCC,QAHD,CAGUJ,kBAHV,CADL,EAIoC;AAClC,aAAO,KAAP;AACD;;AAED,WAAO,MAAMJ,qBAAN,CAA4BC,UAA5B,EAAwCC,YAAxC,EAAsDC,MAAtD,CAAP;AACD;;AAxBwD","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\nimport { FlowMonitor } from './FlowMonitor';\n\nexport class AuthenticationFlowMonitor extends FlowMonitor {\n  isRemediatorCandidate(remediator, remediations?, values?) {\n    const prevRemediatorName = this.previousRemediator?.getName();\n    const remediatorName = remediator.getName();\n    \n    if (remediatorName === 'select-authenticator-authenticate' \n      && ['select-authenticator-authenticate'].includes(prevRemediatorName)) {\n      return false;\n    }\n\n    if (remediatorName === 'select-authenticator-authenticate' \n      && remediations.some(({ name }) => name === 'challenge-authenticator')) {\n      return false;\n    }\n\n    if (remediatorName === 'select-authenticator-enroll' \n      && [\n          'select-authenticator-enroll', \n          'authenticator-enrollment-data'\n        ].includes(prevRemediatorName)) {\n      return false;\n    }\n\n    return super.isRemediatorCandidate(remediator, remediations, values);\n  }\n}\n"],"file":"AuthenticationFlowMonitor.js"}

package/cjs/idx/flowMonitors/FlowMonitor.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../lib/idx/flowMonitors/FlowMonitor.ts"],"names":["FlowMonitor","constructor","authClient","loopDetected","remediator","previousRemediator","getName","isRemediatorCandidate","remediations","values","remediatorName","skip","trackRemediations","name","meta","isFinished","Promise","resolve"],"mappings":";;;;AAeA;;AAfA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAQO,MAAMA,WAAN,CAAkB;AAIvBC,EAAAA,WAAW,CAACC,UAAD,EAAa;AACtB,SAAKA,UAAL,GAAkBA,UAAlB;AACD,GANsB,CAQvB;;;AACAC,EAAAA,YAAY,CAACC,UAAD,EAAkC;AAC5C,QAAI,CAAC,KAAKC,kBAAV,EAA8B;AAC5B,WAAKA,kBAAL,GAA0BD,UAA1B;AACA,aAAO,KAAP;AACD;;AAED,QAAI,KAAKC,kBAAL,CAAwBC,OAAxB,OAAsCF,UAAU,CAACE,OAAX,EAA1C,EAAgE;AAC9D,aAAO,IAAP;AACD;;AAED,SAAKD,kBAAL,GAA0BD,UAA1B;AACA,WAAO,KAAP;AACD;;AAEDG,EAAAA,qBAAqB,EACnB;AACAH,EAAAA,UAFmB,EAEKI,YAFL,EAEsCC,MAFtC,EAGV;AACT,UAAMC,cAAc,GAAGN,UAAU,CAACE,OAAX,EAAvB;;AACA,QAAI,CAACG,MAAM,CAACE,IAAR,IAAgBD,cAAc,KAAK,MAAvC,EAA+C;AAC7C,aAAO,KAAP;AACD;;AACD,QAAID,MAAM,CAACE,IAAP,IAAeD,cAAc,KAAK,MAAtC,EAA8C;AAC5C,aAAO,KAAP;AACD;;AACD,WAAO,IAAP;AACD;;AAEsB,QAAjBE,iBAAiB,CAACC,IAAD,EAAe;AACpC,QAAIC,IAAI,GAAG,MAAM,yCAAmB,KAAKZ,UAAxB,CAAjB;AACA,UAAMM,YAAY,GAAGM,IAAI,CAACN,YAAL,IAAqB,EAA1C;AACAM,IAAAA,IAAI,GAAG,EACL,GAAGA,IADE;AAELN,MAAAA,YAAY,EAAE,CAAC,GAAGA,YAAJ,EAAkBK,IAAlB;AAFT,KAAP;AAIA,8CAAoB,KAAKX,UAAzB,EAAqCY,IAArC;AACD;;AAEDC,EAAAA,UAAU,GAAqB;AAC7B,WAAOC,OAAO,CAACC,OAAR,CAAgB,IAAhB,CAAP;AACD;;AAjDsB","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\nimport { OktaAuth } from '../../types';\nimport { Remediator, RemediationValues, SkipValues } from '../remediators';\nimport { getTransactionMeta, saveTransactionMeta } from '../transactionMeta';\nimport { IdxRemediation } from '../types/idx-js';\n\nexport class FlowMonitor {\n  previousRemediator: Remediator;\n  authClient: OktaAuth;\n\n  constructor(authClient) {\n    this.authClient = authClient;\n  }\n\n  // detect in-memory loop\n  loopDetected(remediator: Remediator): boolean {\n    if (!this.previousRemediator) {\n      this.previousRemediator = remediator;\n      return false;\n    }\n\n    if (this.previousRemediator.getName() === remediator.getName()) {\n      return true;\n    }\n\n    this.previousRemediator = remediator;\n    return false;\n  }\n\n  isRemediatorCandidate(\n    // eslint-disable-next-line no-unused-vars, @typescript-eslint/no-unused-vars\n    remediator: Remediator, remediations?: IdxRemediation[], values?: RemediationValues & SkipValues\n  ): boolean {\n    const remediatorName = remediator.getName();\n    if (!values.skip && remediatorName === 'skip') {\n      return false;\n    }\n    if (values.skip && remediatorName !== 'skip') {\n      return false;\n    }\n    return true;\n  }\n\n  async trackRemediations(name: string) {\n    let meta = await getTransactionMeta(this.authClient);\n    const remediations = meta.remediations || [];\n    meta = { \n      ...meta, \n      remediations: [...remediations, name]\n    };\n    saveTransactionMeta(this.authClient, meta);\n  }\n\n  isFinished(): Promise<boolean> {\n    return Promise.resolve(true);\n  }\n}\n"],"file":"FlowMonitor.js"}

package/cjs/idx/flowMonitors/PasswordRecoveryFlowMonitor.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../lib/idx/flowMonitors/PasswordRecoveryFlowMonitor.ts"],"names":["PasswordRecoveryFlowMonitor","FlowMonitor","isRemediatorCandidate","remediator","remediations","values","prevRemediatorName","previousRemediator","getName","remediatorName","includes","some","name","isFinished","authClient"],"mappings":";;;;AAaA;;AACA;;AAdA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAMO,MAAMA,2BAAN,SAA0CC,wBAA1C,CAAsD;AAC3DC,EAAAA,qBAAqB,CAACC,UAAD,EAAaC,YAAb,EAA4BC,MAA5B,EAAqC;AAAA;;AACxD,UAAMC,kBAAkB,4BAAG,KAAKC,kBAAR,0DAAG,sBAAyBC,OAAzB,EAA3B;AACA,UAAMC,cAAc,GAAGN,UAAU,CAACK,OAAX,EAAvB;;AAEA,QAAIC,cAAc,KAAK,mCAAnB,IACC,CACD,mCADC,EAED,wBAFC,EAGDC,QAHC,CAGQJ,kBAHR,CADL,EAIkC;AAChC,aAAO,KAAP;AACD;;AAED,QAAIG,cAAc,KAAK,mCAAnB,IACCL,YAAY,CAACO,IAAb,CAAkB,CAAC;AAAEC,MAAAA;AAAF,KAAD,KAAcA,IAAI,KAAK,yBAAzC,CADL,EAC0E;AACxE,aAAO,KAAP;AACD;;AAED,WAAO,MAAMV,qBAAN,CAA4BC,UAA5B,EAAwCC,YAAxC,EAAsDC,MAAtD,CAAP;AACD;;AAEe,QAAVQ,UAAU,GAAG;AACjB,UAAM;AAAET,MAAAA;AAAF,QAAoB,MAAM,yCAAmB,KAAKU,UAAxB,CAAhC;;AACA,QAAI,CAACV,YAAY,CAACM,QAAb,CAAsB,qBAAtB,CAAL,EAAmD;AACjD,aAAO,KAAP;AACD;;AAED,WAAO,MAAM,MAAMG,UAAN,EAAb;AACD;;AA5B0D","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\nimport { FlowMonitor } from './FlowMonitor';\nimport { getTransactionMeta } from '../transactionMeta';\n\nexport class PasswordRecoveryFlowMonitor extends FlowMonitor {\n  isRemediatorCandidate(remediator, remediations?, values?) {\n    const prevRemediatorName = this.previousRemediator?.getName();\n    const remediatorName = remediator.getName();\n    \n    if (remediatorName === 'select-authenticator-authenticate' \n      && [\n        'select-authenticator-authenticate',\n        'reenroll-authenticator'\n      ].includes(prevRemediatorName)) {\n      return false;\n    }\n\n    if (remediatorName === 'select-authenticator-authenticate' \n      && remediations.some(({ name }) => name === 'challenge-authenticator')) {\n      return false;\n    }\n\n    return super.isRemediatorCandidate(remediator, remediations, values);\n  }\n\n  async isFinished() {\n    const { remediations }  = await getTransactionMeta(this.authClient);\n    if (!remediations.includes('reset-authenticator')) {\n      return false;\n    }\n\n    return await super.isFinished();\n  }\n}\n"],"file":"PasswordRecoveryFlowMonitor.js"}

package/cjs/idx/flowMonitors/RegistrationFlowMonitor.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../lib/idx/flowMonitors/RegistrationFlowMonitor.ts"],"names":["RegistrationFlowMonitor","FlowMonitor","isRemediatorCandidate","remediator","remediations","values","prevRemediatorName","previousRemediator","getName","remediatorName","includes"],"mappings":";;;;AAaA;;AAbA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAKO,MAAMA,uBAAN,SAAsCC,wBAAtC,CAAkD;AACvDC,EAAAA,qBAAqB,CAACC,UAAD,EAAaC,YAAb,EAA4BC,MAA5B,EAAqC;AAAA;;AACxD,UAAMC,kBAAkB,4BAAG,KAAKC,kBAAR,0DAAG,sBAAyBC,OAAzB,EAA3B;AACA,UAAMC,cAAc,GAAGN,UAAU,CAACK,OAAX,EAAvB;;AACA,QAAIC,cAAc,KAAK,6BAAnB,IACC,CACC,6BADD,EAEC,+BAFD,EAGCC,QAHD,CAGUJ,kBAHV,CADL,EAIoC;AAClC,aAAO,KAAP;AACD;;AAED,WAAO,MAAMJ,qBAAN,CAA4BC,UAA5B,EAAwCC,YAAxC,EAAsDC,MAAtD,CAAP;AACD;;AAbsD","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\nimport { FlowMonitor } from './FlowMonitor';\n\nexport class RegistrationFlowMonitor extends FlowMonitor {\n  isRemediatorCandidate(remediator, remediations?, values?) {\n    const prevRemediatorName = this.previousRemediator?.getName();\n    const remediatorName = remediator.getName();\n    if (remediatorName === 'select-authenticator-enroll' \n      && [\n          'select-authenticator-enroll', \n          'authenticator-enrollment-data'\n        ].includes(prevRemediatorName)) {\n      return false;\n    }\n\n    return super.isRemediatorCandidate(remediator, remediations, values);\n  }\n}\n"],"file":"RegistrationFlowMonitor.js"}

package/cjs/idx/flowMonitors/index.js

@@ -1,54 +0,0 @@
-"use strict";
-
-var _FlowMonitor = require("./FlowMonitor");
-
-Object.keys(_FlowMonitor).forEach(function (key) {
-  if (key === "default" || key === "__esModule") return;
-  if (key in exports && exports[key] === _FlowMonitor[key]) return;
-  Object.defineProperty(exports, key, {
-    enumerable: true,
-    get: function () {
-      return _FlowMonitor[key];
-    }
-  });
-});
-
-var _RegistrationFlowMonitor = require("./RegistrationFlowMonitor");
-
-Object.keys(_RegistrationFlowMonitor).forEach(function (key) {
-  if (key === "default" || key === "__esModule") return;
-  if (key in exports && exports[key] === _RegistrationFlowMonitor[key]) return;
-  Object.defineProperty(exports, key, {
-    enumerable: true,
-    get: function () {
-      return _RegistrationFlowMonitor[key];
-    }
-  });
-});
-
-var _AuthenticationFlowMonitor = require("./AuthenticationFlowMonitor");
-
-Object.keys(_AuthenticationFlowMonitor).forEach(function (key) {
-  if (key === "default" || key === "__esModule") return;
-  if (key in exports && exports[key] === _AuthenticationFlowMonitor[key]) return;
-  Object.defineProperty(exports, key, {
-    enumerable: true,
-    get: function () {
-      return _AuthenticationFlowMonitor[key];
-    }
-  });
-});
-
-var _PasswordRecoveryFlowMonitor = require("./PasswordRecoveryFlowMonitor");
-
-Object.keys(_PasswordRecoveryFlowMonitor).forEach(function (key) {
-  if (key === "default" || key === "__esModule") return;
-  if (key in exports && exports[key] === _PasswordRecoveryFlowMonitor[key]) return;
-  Object.defineProperty(exports, key, {
-    enumerable: true,
-    get: function () {
-      return _PasswordRecoveryFlowMonitor[key];
-    }
-  });
-});
-//# sourceMappingURL=index.js.map

package/cjs/idx/flowMonitors/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../../lib/idx/flowMonitors/index.ts"],"names":[],"mappings":";;AAaA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AACA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AACA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;AACA;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\nexport * from './FlowMonitor';\nexport * from './RegistrationFlowMonitor';\nexport * from './AuthenticationFlowMonitor';\nexport * from './PasswordRecoveryFlowMonitor';\n"],"file":"index.js"}

package/esm/AuthStateManager.js

@@ -1,209 +0,0 @@
-import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
-import _defineProperty from "@babel/runtime/helpers/defineProperty";
-
-function ownKeys(object, enumerableOnly) { var keys = Object.keys(object); if (Object.getOwnPropertySymbols) { var symbols = Object.getOwnPropertySymbols(object); if (enumerableOnly) { symbols = symbols.filter(function (sym) { return Object.getOwnPropertyDescriptor(object, sym).enumerable; }); } keys.push.apply(keys, symbols); } return keys; }
-
-function _objectSpread(target) { for (var i = 1; i < arguments.length; i++) { var source = arguments[i] != null ? arguments[i] : {}; if (i % 2) { ownKeys(Object(source), true).forEach(function (key) { _defineProperty(target, key, source[key]); }); } else if (Object.getOwnPropertyDescriptors) { Object.defineProperties(target, Object.getOwnPropertyDescriptors(source)); } else { ownKeys(Object(source)).forEach(function (key) { Object.defineProperty(target, key, Object.getOwnPropertyDescriptor(source, key)); }); } } return target; }
-
-/*!
- * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
- * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
- *
- * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
- * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * 
- * See the License for the specific language governing permissions and limitations under the License.
- */
-import { AuthSdkError } from './errors';
-import { getConsole } from './util';
-import { EVENT_ADDED, EVENT_REMOVED } from './TokenManager';
-
-var PCancelable = require('p-cancelable');
-
-export var INITIAL_AUTH_STATE = null;
-var DEFAULT_PENDING = {
-  updateAuthStatePromise: null,
-  canceledTimes: 0
-};
-var EVENT_AUTH_STATE_CHANGE = 'authStateChange';
-var MAX_PROMISE_CANCEL_TIMES = 10; // only compare first level of authState
-
-var isSameAuthState = (prevState, state) => {
-  // initial state is null
-  if (!prevState) {
-    return false;
-  }
-
-  return prevState.isAuthenticated === state.isAuthenticated && JSON.stringify(prevState.idToken) === JSON.stringify(state.idToken) && JSON.stringify(prevState.accessToken) === JSON.stringify(state.accessToken) && prevState.error === state.error;
-};
-
-export class AuthStateManager {
-  constructor(sdk) {
-    if (!sdk.emitter) {
-      throw new AuthSdkError('Emitter should be initialized before AuthStateManager');
-    }
-
-    this._sdk = sdk;
-    this._pending = _objectSpread({}, DEFAULT_PENDING);
-    this._authState = INITIAL_AUTH_STATE;
-    this._logOptions = {}; // Listen on tokenManager events to start updateState process
-    // "added" event is emitted in both add and renew process
-    // Only listen on "added" event to update auth state
-
-    sdk.tokenManager.on(EVENT_ADDED, (key, token) => {
-      this._setLogOptions({
-        event: EVENT_ADDED,
-        key,
-        token
-      });
-
-      this.updateAuthState();
-    });
-    sdk.tokenManager.on(EVENT_REMOVED, (key, token) => {
-      this._setLogOptions({
-        event: EVENT_REMOVED,
-        key,
-        token
-      });
-
-      this.updateAuthState();
-    });
-  }
-
-  _setLogOptions(options) {
-    this._logOptions = options;
-  }
-
-  getAuthState() {
-    return this._authState;
-  }
-
-  updateAuthState() {
-    var _this = this;
-
-    return _asyncToGenerator(function* () {
-      var {
-        transformAuthState,
-        devMode
-      } = _this._sdk.options;
-
-      var log = status => {
-        var {
-          event,
-          key,
-          token
-        } = _this._logOptions;
-        getConsole().group("OKTA-AUTH-JS:updateAuthState: Event:".concat(event, " Status:").concat(status));
-        getConsole().log(key, token);
-        getConsole().log('Current authState', _this._authState);
-        getConsole().groupEnd(); // clear log options after logging
-
-        _this._logOptions = {};
-      };
-
-      var emitAuthStateChange = authState => {
-        if (isSameAuthState(_this._authState, authState)) {
-          devMode && log('unchanged');
-          return;
-        }
-
-        _this._authState = authState; // emit new authState object
-
-        _this._sdk.emitter.emit(EVENT_AUTH_STATE_CHANGE, _objectSpread({}, authState));
-
-        devMode && log('emitted');
-      };
-
-      var finalPromise = origPromise => {
-        return _this._pending.updateAuthStatePromise.then(() => {
-          var curPromise = _this._pending.updateAuthStatePromise;
-
-          if (curPromise && curPromise !== origPromise) {
-            return finalPromise(curPromise);
-          }
-
-          return _this.getAuthState();
-        });
-      };
-
-      if (_this._pending.updateAuthStatePromise) {
-        if (_this._pending.canceledTimes >= MAX_PROMISE_CANCEL_TIMES) {
-          // stop canceling then starting a new promise
-          // let existing promise finish to prevent running into loops
-          devMode && log('terminated');
-          return finalPromise(_this._pending.updateAuthStatePromise);
-        } else {
-          _this._pending.updateAuthStatePromise.cancel();
-        }
-      }
-      /* eslint-disable complexity */
-
-
-      var cancelablePromise = new PCancelable((resolve, _, onCancel) => {
-        onCancel.shouldReject = false;
-        onCancel(() => {
-          _this._pending.updateAuthStatePromise = null;
-          _this._pending.canceledTimes = _this._pending.canceledTimes + 1;
-          devMode && log('canceled');
-        });
-
-        var emitAndResolve = authState => {
-          if (cancelablePromise.isCanceled) {
-            resolve();
-            return;
-          } // emit event and resolve promise 
-
-
-          emitAuthStateChange(authState);
-          resolve(); // clear pending states after resolve
-
-          _this._pending = _objectSpread({}, DEFAULT_PENDING);
-        };
-
-        _this._sdk.isAuthenticated().then(() => {
-          if (cancelablePromise.isCanceled) {
-            resolve();
-            return;
-          }
-
-          var {
-            accessToken,
-            idToken,
-            refreshToken
-          } = _this._sdk.tokenManager.getTokensSync();
-
-          var authState = {
-            accessToken,
-            idToken,
-            refreshToken,
-            isAuthenticated: !!(accessToken && idToken)
-          };
-          var promise = transformAuthState ? transformAuthState(_this._sdk, authState) : Promise.resolve(authState);
-          promise.then(authState => emitAndResolve(authState)).catch(error => emitAndResolve({
-            accessToken,
-            idToken,
-            refreshToken,
-            isAuthenticated: false,
-            error
-          }));
-        });
-      });
-      /* eslint-enable complexity */
-
-      _this._pending.updateAuthStatePromise = cancelablePromise;
-      return finalPromise(cancelablePromise);
-    })();
-  }
-
-  subscribe(handler) {
-    this._sdk.emitter.on(EVENT_AUTH_STATE_CHANGE, handler);
-  }
-
-  unsubscribe(handler) {
-    this._sdk.emitter.off(EVENT_AUTH_STATE_CHANGE, handler);
-  }
-
-}
-//# sourceMappingURL=AuthStateManager.js.map

package/esm/AuthStateManager.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../lib/AuthStateManager.ts"],"names":["AuthSdkError","getConsole","EVENT_ADDED","EVENT_REMOVED","PCancelable","require","INITIAL_AUTH_STATE","DEFAULT_PENDING","updateAuthStatePromise","canceledTimes","EVENT_AUTH_STATE_CHANGE","MAX_PROMISE_CANCEL_TIMES","isSameAuthState","prevState","state","isAuthenticated","JSON","stringify","idToken","accessToken","error","AuthStateManager","constructor","sdk","emitter","_sdk","_pending","_authState","_logOptions","tokenManager","on","key","token","_setLogOptions","event","updateAuthState","options","getAuthState","transformAuthState","devMode","log","status","group","groupEnd","emitAuthStateChange","authState","emit","finalPromise","origPromise","then","curPromise","cancel","cancelablePromise","resolve","_","onCancel","shouldReject","emitAndResolve","isCanceled","refreshToken","getTokensSync","promise","Promise","catch","subscribe","handler","unsubscribe","off"],"mappings":";;;;;;;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AAGA,SAASA,YAAT,QAA6B,UAA7B;AAGA,SAASC,UAAT,QAA2B,QAA3B;AACA,SAASC,WAAT,EAAsBC,aAAtB,QAA2C,gBAA3C;;AACA,IAAMC,WAAW,GAAGC,OAAO,CAAC,cAAD,CAA3B;;AAEA,OAAO,IAAMC,kBAAkB,GAAG,IAA3B;AACP,IAAMC,eAAe,GAAG;AACtBC,EAAAA,sBAAsB,EAAE,IADF;AAEtBC,EAAAA,aAAa,EAAE;AAFO,CAAxB;AAIA,IAAMC,uBAAuB,GAAG,iBAAhC;AACA,IAAMC,wBAAwB,GAAG,EAAjC,C,CAEA;;AACA,IAAMC,eAAe,GAAG,CAACC,SAAD,EAAuBC,KAAvB,KAA4C;AAClE;AACA,MAAI,CAACD,SAAL,EAAgB;AACd,WAAO,KAAP;AACD;;AAED,SAAOA,SAAS,CAACE,eAAV,KAA8BD,KAAK,CAACC,eAApC,IACFC,IAAI,CAACC,SAAL,CAAeJ,SAAS,CAACK,OAAzB,MAAsCF,IAAI,CAACC,SAAL,CAAeH,KAAK,CAACI,OAArB,CADpC,IAEFF,IAAI,CAACC,SAAL,CAAeJ,SAAS,CAACM,WAAzB,MAA0CH,IAAI,CAACC,SAAL,CAAeH,KAAK,CAACK,WAArB,CAFxC,IAGFN,SAAS,CAACO,KAAV,KAAoBN,KAAK,CAACM,KAH/B;AAID,CAVD;;AAYA,OAAO,MAAMC,gBAAN,CAAuB;AAU5BC,EAAAA,WAAW,CAACC,GAAD,EAAgB;AACzB,QAAI,CAACA,GAAG,CAACC,OAAT,EAAkB;AAChB,YAAM,IAAIxB,YAAJ,CAAiB,uDAAjB,CAAN;AACD;;AAED,SAAKyB,IAAL,GAAYF,GAAZ;AACA,SAAKG,QAAL,qBAAqBnB,eAArB;AACA,SAAKoB,UAAL,GAAkBrB,kBAAlB;AACA,SAAKsB,WAAL,GAAmB,EAAnB,CARyB,CAUzB;AACA;AACA;;AACAL,IAAAA,GAAG,CAACM,YAAJ,CAAiBC,EAAjB,CAAoB5B,WAApB,EAAiC,CAAC6B,GAAD,EAAMC,KAAN,KAAgB;AAC/C,WAAKC,cAAL,CAAoB;AAAEC,QAAAA,KAAK,EAAEhC,WAAT;AAAsB6B,QAAAA,GAAtB;AAA2BC,QAAAA;AAA3B,OAApB;;AACA,WAAKG,eAAL;AACD,KAHD;AAIAZ,IAAAA,GAAG,CAACM,YAAJ,CAAiBC,EAAjB,CAAoB3B,aAApB,EAAmC,CAAC4B,GAAD,EAAMC,KAAN,KAAgB;AACjD,WAAKC,cAAL,CAAoB;AAAEC,QAAAA,KAAK,EAAE/B,aAAT;AAAwB4B,QAAAA,GAAxB;AAA6BC,QAAAA;AAA7B,OAApB;;AACA,WAAKG,eAAL;AACD,KAHD;AAID;;AAEDF,EAAAA,cAAc,CAACG,OAAD,EAAU;AACtB,SAAKR,WAAL,GAAmBQ,OAAnB;AACD;;AAEDC,EAAAA,YAAY,GAAc;AACxB,WAAO,KAAKV,UAAZ;AACD;;AAEKQ,EAAAA,eAAe,GAAuB;AAAA;;AAAA;AAC1C,UAAM;AAAEG,QAAAA,kBAAF;AAAsBC,QAAAA;AAAtB,UAAkC,KAAI,CAACd,IAAL,CAAUW,OAAlD;;AAEA,UAAMI,GAAG,GAAIC,MAAD,IAAY;AACtB,YAAM;AAAEP,UAAAA,KAAF;AAASH,UAAAA,GAAT;AAAcC,UAAAA;AAAd,YAAwB,KAAI,CAACJ,WAAnC;AACA3B,QAAAA,UAAU,GAAGyC,KAAb,+CAA0DR,KAA1D,qBAA0EO,MAA1E;AACAxC,QAAAA,UAAU,GAAGuC,GAAb,CAAiBT,GAAjB,EAAsBC,KAAtB;AACA/B,QAAAA,UAAU,GAAGuC,GAAb,CAAiB,mBAAjB,EAAsC,KAAI,CAACb,UAA3C;AACA1B,QAAAA,UAAU,GAAG0C,QAAb,GALsB,CAOtB;;AACA,QAAA,KAAI,CAACf,WAAL,GAAmB,EAAnB;AACD,OATD;;AAWA,UAAMgB,mBAAmB,GAAIC,SAAD,IAAe;AACzC,YAAIjC,eAAe,CAAC,KAAI,CAACe,UAAN,EAAkBkB,SAAlB,CAAnB,EAAiD;AAC/CN,UAAAA,OAAO,IAAIC,GAAG,CAAC,WAAD,CAAd;AACA;AACD;;AACD,QAAA,KAAI,CAACb,UAAL,GAAkBkB,SAAlB,CALyC,CAMzC;;AACA,QAAA,KAAI,CAACpB,IAAL,CAAUD,OAAV,CAAkBsB,IAAlB,CAAuBpC,uBAAvB,oBAAqDmC,SAArD;;AACAN,QAAAA,OAAO,IAAIC,GAAG,CAAC,SAAD,CAAd;AACD,OATD;;AAWA,UAAMO,YAAY,GAAIC,WAAD,IAAiB;AACpC,eAAO,KAAI,CAACtB,QAAL,CAAclB,sBAAd,CAAqCyC,IAArC,CAA0C,MAAM;AACrD,cAAMC,UAAU,GAAG,KAAI,CAACxB,QAAL,CAAclB,sBAAjC;;AACA,cAAI0C,UAAU,IAAIA,UAAU,KAAKF,WAAjC,EAA8C;AAC5C,mBAAOD,YAAY,CAACG,UAAD,CAAnB;AACD;;AACD,iBAAO,KAAI,CAACb,YAAL,EAAP;AACD,SANM,CAAP;AAOD,OARD;;AAUA,UAAI,KAAI,CAACX,QAAL,CAAclB,sBAAlB,EAA0C;AACxC,YAAI,KAAI,CAACkB,QAAL,CAAcjB,aAAd,IAA+BE,wBAAnC,EAA6D;AAC3D;AACA;AACA4B,UAAAA,OAAO,IAAIC,GAAG,CAAC,YAAD,CAAd;AACA,iBAAOO,YAAY,CAAC,KAAI,CAACrB,QAAL,CAAclB,sBAAf,CAAnB;AACD,SALD,MAKO;AACL,UAAA,KAAI,CAACkB,QAAL,CAAclB,sBAAd,CAAqC2C,MAArC;AACD;AACF;AAED;;;AACA,UAAMC,iBAAiB,GAAG,IAAIhD,WAAJ,CAAgB,CAACiD,OAAD,EAAUC,CAAV,EAAaC,QAAb,KAA0B;AAClEA,QAAAA,QAAQ,CAACC,YAAT,GAAwB,KAAxB;AACAD,QAAAA,QAAQ,CAAC,MAAM;AACb,UAAA,KAAI,CAAC7B,QAAL,CAAclB,sBAAd,GAAuC,IAAvC;AACA,UAAA,KAAI,CAACkB,QAAL,CAAcjB,aAAd,GAA8B,KAAI,CAACiB,QAAL,CAAcjB,aAAd,GAA8B,CAA5D;AACA8B,UAAAA,OAAO,IAAIC,GAAG,CAAC,UAAD,CAAd;AACD,SAJO,CAAR;;AAMA,YAAMiB,cAAc,GAAIZ,SAAD,IAAe;AACpC,cAAIO,iBAAiB,CAACM,UAAtB,EAAkC;AAChCL,YAAAA,OAAO;AACP;AACD,WAJmC,CAKpC;;;AACAT,UAAAA,mBAAmB,CAACC,SAAD,CAAnB;AACAQ,UAAAA,OAAO,GAP6B,CASpC;;AACA,UAAA,KAAI,CAAC3B,QAAL,qBAAqBnB,eAArB;AACD,SAXD;;AAaA,QAAA,KAAI,CAACkB,IAAL,CAAUV,eAAV,GACGkC,IADH,CACQ,MAAM;AACV,cAAIG,iBAAiB,CAACM,UAAtB,EAAkC;AAChCL,YAAAA,OAAO;AACP;AACD;;AAED,cAAM;AAAElC,YAAAA,WAAF;AAAeD,YAAAA,OAAf;AAAwByC,YAAAA;AAAxB,cAAyC,KAAI,CAAClC,IAAL,CAAUI,YAAV,CAAuB+B,aAAvB,EAA/C;;AACA,cAAMf,SAAS,GAAG;AAChB1B,YAAAA,WADgB;AAEhBD,YAAAA,OAFgB;AAGhByC,YAAAA,YAHgB;AAIhB5C,YAAAA,eAAe,EAAE,CAAC,EAAEI,WAAW,IAAID,OAAjB;AAJF,WAAlB;AAMA,cAAM2C,OAA2B,GAAGvB,kBAAkB,GAClDA,kBAAkB,CAAC,KAAI,CAACb,IAAN,EAAYoB,SAAZ,CADgC,GAElDiB,OAAO,CAACT,OAAR,CAAgBR,SAAhB,CAFJ;AAIAgB,UAAAA,OAAO,CACJZ,IADH,CACQJ,SAAS,IAAIY,cAAc,CAACZ,SAAD,CADnC,EAEGkB,KAFH,CAES3C,KAAK,IAAIqC,cAAc,CAAC;AAC7BtC,YAAAA,WAD6B;AAE7BD,YAAAA,OAF6B;AAG7ByC,YAAAA,YAH6B;AAI7B5C,YAAAA,eAAe,EAAE,KAJY;AAK7BK,YAAAA;AAL6B,WAAD,CAFhC;AASD,SA3BH;AA4BD,OAjDyB,CAA1B;AAkDA;;AACA,MAAA,KAAI,CAACM,QAAL,CAAclB,sBAAd,GAAuC4C,iBAAvC;AAEA,aAAOL,YAAY,CAACK,iBAAD,CAAnB;AApG0C;AAqG3C;;AAEDY,EAAAA,SAAS,CAACC,OAAD,EAAgB;AACvB,SAAKxC,IAAL,CAAUD,OAAV,CAAkBM,EAAlB,CAAqBpB,uBAArB,EAA8CuD,OAA9C;AACD;;AAEDC,EAAAA,WAAW,CAACD,OAAD,EAAiB;AAC1B,SAAKxC,IAAL,CAAUD,OAAV,CAAkB2C,GAAlB,CAAsBzD,uBAAtB,EAA+CuD,OAA/C;AACD;;AAtJ2B","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\nimport { AuthSdkError } from './errors';\nimport { AuthState, AuthStateLogOptions } from './types';\nimport { OktaAuth } from '.';\nimport { getConsole } from './util';\nimport { EVENT_ADDED, EVENT_REMOVED } from './TokenManager';\nconst PCancelable = require('p-cancelable');\n\nexport const INITIAL_AUTH_STATE = null;\nconst DEFAULT_PENDING = {\n  updateAuthStatePromise: null,\n  canceledTimes: 0\n};\nconst EVENT_AUTH_STATE_CHANGE = 'authStateChange';\nconst MAX_PROMISE_CANCEL_TIMES = 10;\n\n// only compare first level of authState\nconst isSameAuthState = (prevState: AuthState, state: AuthState) => {\n  // initial state is null\n  if (!prevState) {\n    return false;\n  }\n\n  return prevState.isAuthenticated === state.isAuthenticated \n    && JSON.stringify(prevState.idToken) === JSON.stringify(state.idToken)\n    && JSON.stringify(prevState.accessToken) === JSON.stringify(state.accessToken)\n    && prevState.error === state.error;\n};\n\nexport class AuthStateManager {\n  _sdk: OktaAuth;\n  _pending: { \n    updateAuthStatePromise: typeof PCancelable;\n    canceledTimes: number; \n  };\n  _authState: AuthState;\n  _logOptions: AuthStateLogOptions;\n  _lastEventTimestamp: number;\n\n  constructor(sdk: OktaAuth) {\n    if (!sdk.emitter) {\n      throw new AuthSdkError('Emitter should be initialized before AuthStateManager');\n    }\n\n    this._sdk = sdk;\n    this._pending = { ...DEFAULT_PENDING };\n    this._authState = INITIAL_AUTH_STATE;\n    this._logOptions = {};\n\n    // Listen on tokenManager events to start updateState process\n    // \"added\" event is emitted in both add and renew process\n    // Only listen on \"added\" event to update auth state\n    sdk.tokenManager.on(EVENT_ADDED, (key, token) => {\n      this._setLogOptions({ event: EVENT_ADDED, key, token });\n      this.updateAuthState();\n    });\n    sdk.tokenManager.on(EVENT_REMOVED, (key, token) => {\n      this._setLogOptions({ event: EVENT_REMOVED, key, token });\n      this.updateAuthState();\n    });\n  }\n\n  _setLogOptions(options) {\n    this._logOptions = options;\n  }\n\n  getAuthState(): AuthState {\n    return this._authState;\n  }\n\n  async updateAuthState(): Promise<AuthState> {\n    const { transformAuthState, devMode } = this._sdk.options;\n\n    const log = (status) => {\n      const { event, key, token } = this._logOptions;\n      getConsole().group(`OKTA-AUTH-JS:updateAuthState: Event:${event} Status:${status}`);\n      getConsole().log(key, token);\n      getConsole().log('Current authState', this._authState);\n      getConsole().groupEnd();\n      \n      // clear log options after logging\n      this._logOptions = {};\n    };\n\n    const emitAuthStateChange = (authState) => {\n      if (isSameAuthState(this._authState, authState)) {\n        devMode && log('unchanged'); \n        return;\n      }\n      this._authState = authState;\n      // emit new authState object\n      this._sdk.emitter.emit(EVENT_AUTH_STATE_CHANGE, { ...authState });\n      devMode && log('emitted');\n    };\n\n    const finalPromise = (origPromise) => {       \n      return this._pending.updateAuthStatePromise.then(() => {\n        const curPromise = this._pending.updateAuthStatePromise;\n        if (curPromise && curPromise !== origPromise) {\n          return finalPromise(curPromise);\n        }\n        return this.getAuthState();\n      });\n    };\n\n    if (this._pending.updateAuthStatePromise) {\n      if (this._pending.canceledTimes >= MAX_PROMISE_CANCEL_TIMES) {\n        // stop canceling then starting a new promise\n        // let existing promise finish to prevent running into loops\n        devMode && log('terminated');\n        return finalPromise(this._pending.updateAuthStatePromise);\n      } else {\n        this._pending.updateAuthStatePromise.cancel();\n      }\n    }\n\n    /* eslint-disable complexity */\n    const cancelablePromise = new PCancelable((resolve, _, onCancel) => {\n      onCancel.shouldReject = false;\n      onCancel(() => {\n        this._pending.updateAuthStatePromise = null;\n        this._pending.canceledTimes = this._pending.canceledTimes + 1;\n        devMode && log('canceled');\n      });\n\n      const emitAndResolve = (authState) => {\n        if (cancelablePromise.isCanceled) {\n          resolve();\n          return;\n        }\n        // emit event and resolve promise \n        emitAuthStateChange(authState);\n        resolve();\n\n        // clear pending states after resolve\n        this._pending = { ...DEFAULT_PENDING };\n      };\n\n      this._sdk.isAuthenticated()\n        .then(() => {\n          if (cancelablePromise.isCanceled) {\n            resolve();\n            return;\n          }\n\n          const { accessToken, idToken, refreshToken } = this._sdk.tokenManager.getTokensSync();\n          const authState = {\n            accessToken,\n            idToken,\n            refreshToken,\n            isAuthenticated: !!(accessToken && idToken)\n          };\n          const promise: Promise<AuthState> = transformAuthState\n            ? transformAuthState(this._sdk, authState)\n            : Promise.resolve(authState);\n\n          promise\n            .then(authState => emitAndResolve(authState))\n            .catch(error => emitAndResolve({\n              accessToken, \n              idToken, \n              refreshToken,\n              isAuthenticated: false, \n              error\n            }));\n        });\n    });\n    /* eslint-enable complexity */\n    this._pending.updateAuthStatePromise = cancelablePromise;\n\n    return finalPromise(cancelablePromise);\n  }\n\n  subscribe(handler): void {\n    this._sdk.emitter.on(EVENT_AUTH_STATE_CHANGE, handler);\n  }\n\n  unsubscribe(handler?): void {\n    this._sdk.emitter.off(EVENT_AUTH_STATE_CHANGE, handler);\n  }\n}\n"],"file":"AuthStateManager.js"}