@okta/okta-auth-js 5.8.0 → 5.9.0

package/esm/TokenManager.js

@@ -1,455 +0,0 @@
-import _asyncToGenerator from "@babel/runtime/helpers/asyncToGenerator";
-
-/*!
- * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
- * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
- *
- * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
- * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- *
- * See the License for the specific language governing permissions and limitations under the License.
- *
- */
-import { removeNils, clone } from './util';
-import { AuthSdkError } from './errors';
-import { isRefreshTokenError, validateToken } from './oidc/util';
-import { isLocalhost, isIE11OrLess } from './features';
-import { TOKEN_STORAGE_NAME } from './constants';
-import SdkClock from './clock';
-import { isIDToken, isAccessToken, isRefreshToken } from './types';
-import { REFRESH_TOKEN_STORAGE_KEY } from './constants';
-import { TokenService } from './services/TokenService';
-var DEFAULT_OPTIONS = {
-  autoRenew: true,
-  autoRemove: true,
-  storage: undefined,
-  // will use value from storageManager config
-  expireEarlySeconds: 30,
-  storageKey: TOKEN_STORAGE_NAME,
-  syncStorage: true,
-  _storageEventDelay: 0
-};
-export var EVENT_EXPIRED = 'expired';
-export var EVENT_RENEWED = 'renewed';
-export var EVENT_ADDED = 'added';
-export var EVENT_REMOVED = 'removed';
-export var EVENT_ERROR = 'error';
-
-function defaultState() {
-  return {
-    expireTimeouts: {},
-    renewPromise: null
-  };
-}
-
-export class TokenManager {
-  constructor(sdk) {
-    var options = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : {};
-    this.sdk = sdk;
-    this.emitter = sdk.emitter;
-
-    if (!this.emitter) {
-      throw new AuthSdkError('Emitter should be initialized before TokenManager');
-    }
-
-    options = Object.assign({}, DEFAULT_OPTIONS, removeNils(options));
-
-    if (isIE11OrLess()) {
-      options._storageEventDelay = options._storageEventDelay || 1000;
-    }
-
-    if (!isLocalhost()) {
-      options.expireEarlySeconds = DEFAULT_OPTIONS.expireEarlySeconds;
-    }
-
-    this.options = options;
-    var storageOptions = removeNils({
-      storageKey: options.storageKey,
-      secure: options.secure
-    });
-
-    if (typeof options.storage === 'object') {
-      // A custom storage provider must implement getItem(key) and setItem(key, val)
-      storageOptions.storageProvider = options.storage;
-    } else if (options.storage) {
-      storageOptions.storageType = options.storage;
-    }
-
-    this.storage = sdk.storageManager.getTokenStorage(storageOptions);
-    this.clock = SdkClock.create();
-    this.state = defaultState();
-    this.on = this.emitter.on.bind(this.emitter);
-    this.off = this.emitter.off.bind(this.emitter);
-  }
-
-  start() {
-    if (this.service) {
-      this.stop();
-    }
-
-    this.service = new TokenService(this, this.getOptions());
-    this.service.start();
-  }
-
-  stop() {
-    if (this.service) {
-      this.service.stop();
-      this.service = null;
-    }
-  }
-
-  getOptions() {
-    return clone(this.options);
-  }
-
-  getExpireTime(token) {
-    var expireTime = token.expiresAt - this.options.expireEarlySeconds;
-    return expireTime;
-  }
-
-  hasExpired(token) {
-    var expireTime = this.getExpireTime(token);
-    return expireTime <= this.clock.now();
-  }
-
-  emitExpired(key, token) {
-    this.emitter.emit(EVENT_EXPIRED, key, token);
-  }
-
-  emitRenewed(key, freshToken, oldToken) {
-    this.emitter.emit(EVENT_RENEWED, key, freshToken, oldToken);
-  }
-
-  emitAdded(key, token) {
-    this.emitter.emit(EVENT_ADDED, key, token);
-  }
-
-  emitRemoved(key, token) {
-    this.emitter.emit(EVENT_REMOVED, key, token);
-  }
-
-  emitError(error) {
-    this.emitter.emit(EVENT_ERROR, error);
-  }
-
-  emitEventsForCrossTabsStorageUpdate(newValue, oldValue) {
-    var oldTokens = this.getTokensFromStorageValue(oldValue);
-    var newTokens = this.getTokensFromStorageValue(newValue);
-    Object.keys(newTokens).forEach(key => {
-      var oldToken = oldTokens[key];
-      var newToken = newTokens[key];
-
-      if (JSON.stringify(oldToken) !== JSON.stringify(newToken)) {
-        this.emitAdded(key, newToken);
-      }
-    });
-    Object.keys(oldTokens).forEach(key => {
-      var oldToken = oldTokens[key];
-      var newToken = newTokens[key];
-
-      if (!newToken) {
-        this.emitRemoved(key, oldToken);
-      }
-    });
-  }
-
-  clearExpireEventTimeout(key) {
-    clearTimeout(this.state.expireTimeouts[key]);
-    delete this.state.expireTimeouts[key]; // Remove the renew promise (if it exists)
-
-    this.state.renewPromise = null;
-  }
-
-  clearExpireEventTimeoutAll() {
-    var expireTimeouts = this.state.expireTimeouts;
-
-    for (var key in expireTimeouts) {
-      if (!Object.prototype.hasOwnProperty.call(expireTimeouts, key)) {
-        continue;
-      }
-
-      this.clearExpireEventTimeout(key);
-    }
-  }
-
-  setExpireEventTimeout(key, token) {
-    if (isRefreshToken(token)) {
-      return;
-    }
-
-    var expireTime = this.getExpireTime(token);
-    var expireEventWait = Math.max(expireTime - this.clock.now(), 0) * 1000; // Clear any existing timeout
-
-    this.clearExpireEventTimeout(key);
-    var expireEventTimeout = setTimeout(() => {
-      this.emitExpired(key, token);
-    }, expireEventWait); // Add a new timeout
-
-    this.state.expireTimeouts[key] = expireEventTimeout;
-  }
-
-  setExpireEventTimeoutAll() {
-    var tokenStorage = this.storage.getStorage();
-
-    for (var key in tokenStorage) {
-      if (!Object.prototype.hasOwnProperty.call(tokenStorage, key)) {
-        continue;
-      }
-
-      var token = tokenStorage[key];
-      this.setExpireEventTimeout(key, token);
-    }
-  } // reset timeouts to setup autoRenew for tokens from other document context (tabs)
-
-
-  resetExpireEventTimeoutAll() {
-    this.clearExpireEventTimeoutAll();
-    this.setExpireEventTimeoutAll();
-  }
-
-  add(key, token) {
-    var tokenStorage = this.storage.getStorage();
-    validateToken(token);
-    tokenStorage[key] = token;
-    this.storage.setStorage(tokenStorage);
-    this.emitAdded(key, token);
-    this.setExpireEventTimeout(key, token);
-  }
-
-  getSync(key) {
-    var tokenStorage = this.storage.getStorage();
-    return tokenStorage[key];
-  }
-
-  get(key) {
-    var _this = this;
-
-    return _asyncToGenerator(function* () {
-      return _this.getSync(key);
-    })();
-  }
-
-  getTokensSync() {
-    var tokens = {};
-    var tokenStorage = this.storage.getStorage();
-    Object.keys(tokenStorage).forEach(key => {
-      var token = tokenStorage[key];
-
-      if (isAccessToken(token)) {
-        tokens.accessToken = token;
-      } else if (isIDToken(token)) {
-        tokens.idToken = token;
-      } else if (isRefreshToken(token)) {
-        tokens.refreshToken = token;
-      }
-    });
-    return tokens;
-  }
-
-  getTokens() {
-    var _this2 = this;
-
-    return _asyncToGenerator(function* () {
-      return _this2.getTokensSync();
-    })();
-  }
-
-  getStorageKeyByType(type) {
-    var tokenStorage = this.storage.getStorage();
-    var key = Object.keys(tokenStorage).filter(key => {
-      var token = tokenStorage[key];
-      return isAccessToken(token) && type === 'accessToken' || isIDToken(token) && type === 'idToken' || isRefreshToken(token) && type === 'refreshToken';
-    })[0];
-    return key;
-  }
-
-  getTokenType(token) {
-    if (isAccessToken(token)) {
-      return 'accessToken';
-    }
-
-    if (isIDToken(token)) {
-      return 'idToken';
-    }
-
-    if (isRefreshToken(token)) {
-      return 'refreshToken';
-    }
-
-    throw new AuthSdkError('Unknown token type');
-  }
-
-  setTokens(tokens, // TODO: callbacks can be removed in the next major version OKTA-407224
-  accessTokenCb, idTokenCb, refreshTokenCb) {
-    var handleTokenCallback = (key, token) => {
-      var type = this.getTokenType(token);
-
-      if (type === 'accessToken') {
-        accessTokenCb && accessTokenCb(key, token);
-      } else if (type === 'idToken') {
-        idTokenCb && idTokenCb(key, token);
-      } else if (type === 'refreshToken') {
-        refreshTokenCb && refreshTokenCb(key, token);
-      }
-    };
-
-    var handleAdded = (key, token) => {
-      this.emitAdded(key, token);
-      this.setExpireEventTimeout(key, token);
-      handleTokenCallback(key, token);
-    };
-
-    var handleRenewed = (key, token, oldToken) => {
-      this.emitRenewed(key, token, oldToken);
-      this.clearExpireEventTimeout(key);
-      this.setExpireEventTimeout(key, token);
-      handleTokenCallback(key, token);
-    };
-
-    var handleRemoved = (key, token) => {
-      this.clearExpireEventTimeout(key);
-      this.emitRemoved(key, token);
-      handleTokenCallback(key, token);
-    };
-
-    var types = ['idToken', 'accessToken', 'refreshToken'];
-    var existingTokens = this.getTokensSync(); // valid tokens
-
-    types.forEach(type => {
-      var token = tokens[type];
-
-      if (token) {
-        validateToken(token, type);
-      }
-    }); // add token to storage
-
-    var storage = types.reduce((storage, type) => {
-      var token = tokens[type];
-
-      if (token) {
-        var storageKey = this.getStorageKeyByType(type) || type;
-        storage[storageKey] = token;
-      }
-
-      return storage;
-    }, {});
-    this.storage.setStorage(storage); // emit event and start expiration timer
-
-    types.forEach(type => {
-      var newToken = tokens[type];
-      var existingToken = existingTokens[type];
-      var storageKey = this.getStorageKeyByType(type) || type;
-
-      if (newToken && existingToken) {
-        // renew
-        // call handleRemoved first, since it clears timers
-        handleRemoved(storageKey, existingToken);
-        handleAdded(storageKey, newToken);
-        handleRenewed(storageKey, newToken, existingToken);
-      } else if (newToken) {
-        // add
-        handleAdded(storageKey, newToken);
-      } else if (existingToken) {
-        //remove
-        handleRemoved(storageKey, existingToken);
-      }
-    });
-  }
-
-  remove(key) {
-    // Clear any listener for this token
-    this.clearExpireEventTimeout(key);
-    var tokenStorage = this.storage.getStorage();
-    var removedToken = tokenStorage[key];
-    delete tokenStorage[key];
-    this.storage.setStorage(tokenStorage);
-    this.emitRemoved(key, removedToken);
-  } // TODO: this methods is redundant and can be removed in the next major version OKTA-407224
-
-
-  renewToken(token) {
-    var _this3 = this;
-
-    return _asyncToGenerator(function* () {
-      return _this3.sdk.token.renew(token);
-    })();
-  } // TODO: this methods is redundant and can be removed in the next major version OKTA-407224
-
-
-  validateToken(token) {
-    return validateToken(token);
-  } // TODO: renew method should take no param, change in the next major version OKTA-407224
-
-
-  renew(key) {
-    // Multiple callers may receive the same promise. They will all resolve or reject from the same request.
-    if (this.state.renewPromise) {
-      return this.state.renewPromise;
-    }
-
-    try {
-      var token = this.getSync(key);
-
-      if (!token) {
-        throw new AuthSdkError('The tokenManager has no token for the key: ' + key);
-      }
-    } catch (e) {
-      return Promise.reject(e);
-    } // Remove existing autoRenew timeout
-
-
-    this.clearExpireEventTimeout(key); // A refresh token means a replace instead of renewal
-    // Store the renew promise state, to avoid renewing again
-
-    this.state.renewPromise = this.sdk.token.renewTokens().then(tokens => {
-      this.setTokens(tokens); // resolve token based on the key
-
-      var tokenType = this.getTokenType(token);
-      return tokens[tokenType];
-    }).catch(err => {
-      // If renew fails, remove token and emit error
-      if (isRefreshTokenError(err) || err.name === 'OAuthError' || err.name === 'AuthSdkError') {
-        // remove token from storage
-        this.remove(key);
-        err.tokenKey = key;
-        this.emitError(err);
-      }
-
-      throw err;
-    }).finally(() => {
-      // Remove existing promise key
-      this.state.renewPromise = null;
-    });
-    return this.state.renewPromise;
-  }
-
-  clear() {
-    this.clearExpireEventTimeoutAll();
-    this.storage.clearStorage();
-  }
-
-  getTokensFromStorageValue(value) {
-    var tokens;
-
-    try {
-      tokens = JSON.parse(value) || {};
-    } catch (e) {
-      tokens = {};
-    }
-
-    return tokens;
-  }
-
-  updateRefreshToken(token) {
-    var key = this.getStorageKeyByType('refreshToken') || REFRESH_TOKEN_STORAGE_KEY; // do not emit any event
-
-    var tokenStorage = this.storage.getStorage();
-    validateToken(token);
-    tokenStorage[key] = token;
-    this.storage.setStorage(tokenStorage);
-  }
-
-}
-//# sourceMappingURL=TokenManager.js.map

package/esm/TokenManager.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../lib/TokenManager.ts"],"names":["removeNils","clone","AuthSdkError","isRefreshTokenError","validateToken","isLocalhost","isIE11OrLess","TOKEN_STORAGE_NAME","SdkClock","isIDToken","isAccessToken","isRefreshToken","REFRESH_TOKEN_STORAGE_KEY","TokenService","DEFAULT_OPTIONS","autoRenew","autoRemove","storage","undefined","expireEarlySeconds","storageKey","syncStorage","_storageEventDelay","EVENT_EXPIRED","EVENT_RENEWED","EVENT_ADDED","EVENT_REMOVED","EVENT_ERROR","defaultState","expireTimeouts","renewPromise","TokenManager","constructor","sdk","options","emitter","Object","assign","storageOptions","secure","storageProvider","storageType","storageManager","getTokenStorage","clock","create","state","on","bind","off","start","service","stop","getOptions","getExpireTime","token","expireTime","expiresAt","hasExpired","now","emitExpired","key","emit","emitRenewed","freshToken","oldToken","emitAdded","emitRemoved","emitError","error","emitEventsForCrossTabsStorageUpdate","newValue","oldValue","oldTokens","getTokensFromStorageValue","newTokens","keys","forEach","newToken","JSON","stringify","clearExpireEventTimeout","clearTimeout","clearExpireEventTimeoutAll","prototype","hasOwnProperty","call","setExpireEventTimeout","expireEventWait","Math","max","expireEventTimeout","setTimeout","setExpireEventTimeoutAll","tokenStorage","getStorage","resetExpireEventTimeoutAll","add","setStorage","getSync","get","getTokensSync","tokens","accessToken","idToken","refreshToken","getTokens","getStorageKeyByType","type","filter","getTokenType","setTokens","accessTokenCb","idTokenCb","refreshTokenCb","handleTokenCallback","handleAdded","handleRenewed","handleRemoved","types","existingTokens","reduce","existingToken","remove","removedToken","renewToken","renew","e","Promise","reject","renewTokens","then","tokenType","catch","err","name","tokenKey","finally","clear","clearStorage","value","parse","updateRefreshToken"],"mappings":";;AAAA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA,SAASA,UAAT,EAAqBC,KAArB,QAAkC,QAAlC;AACA,SAASC,YAAT,QAA6B,UAA7B;AACA,SAASC,mBAAT,EAA8BC,aAA9B,QAAoD,aAApD;AACA,SAASC,WAAT,EAAsBC,YAAtB,QAA0C,YAA1C;AACA,SAASC,kBAAT,QAAmC,aAAnC;AACA,OAAOC,QAAP,MAAqB,SAArB;AACA,SAMEC,SANF,EAOEC,aAPF,EAQEC,cARF,QAiBO,SAjBP;AAkBA,SAASC,yBAAT,QAA0C,aAA1C;AACA,SAASC,YAAT,QAA6B,yBAA7B;AAEA,IAAMC,eAAe,GAAG;AACtBC,EAAAA,SAAS,EAAE,IADW;AAEtBC,EAAAA,UAAU,EAAE,IAFU;AAGtBC,EAAAA,OAAO,EAAEC,SAHa;AAGF;AACpBC,EAAAA,kBAAkB,EAAE,EAJE;AAKtBC,EAAAA,UAAU,EAAEb,kBALU;AAMtBc,EAAAA,WAAW,EAAE,IANS;AAOtBC,EAAAA,kBAAkB,EAAE;AAPE,CAAxB;AASA,OAAO,IAAMC,aAAa,GAAG,SAAtB;AACP,OAAO,IAAMC,aAAa,GAAG,SAAtB;AACP,OAAO,IAAMC,WAAW,GAAG,OAApB;AACP,OAAO,IAAMC,aAAa,GAAG,SAAtB;AACP,OAAO,IAAMC,WAAW,GAAG,OAApB;;AAMP,SAASC,YAAT,GAA2C;AACzC,SAAO;AACLC,IAAAA,cAAc,EAAE,EADX;AAELC,IAAAA,YAAY,EAAE;AAFT,GAAP;AAID;;AACD,OAAO,MAAMC,YAAN,CAAoD;AAYzDC,EAAAA,WAAW,CAACC,GAAD,EAAmD;AAAA,QAAnCC,OAAmC,uEAAJ,EAAI;AAC5D,SAAKD,GAAL,GAAWA,GAAX;AACA,SAAKE,OAAL,GAAgBF,GAAD,CAAaE,OAA5B;;AACA,QAAI,CAAC,KAAKA,OAAV,EAAmB;AACjB,YAAM,IAAIjC,YAAJ,CAAiB,mDAAjB,CAAN;AACD;;AAEDgC,IAAAA,OAAO,GAAGE,MAAM,CAACC,MAAP,CAAc,EAAd,EAAkBvB,eAAlB,EAAmCd,UAAU,CAACkC,OAAD,CAA7C,CAAV;;AACA,QAAI5B,YAAY,EAAhB,EAAoB;AAClB4B,MAAAA,OAAO,CAACZ,kBAAR,GAA6BY,OAAO,CAACZ,kBAAR,IAA8B,IAA3D;AACD;;AACD,QAAI,CAACjB,WAAW,EAAhB,EAAoB;AAClB6B,MAAAA,OAAO,CAACf,kBAAR,GAA6BL,eAAe,CAACK,kBAA7C;AACD;;AACD,SAAKe,OAAL,GAAeA,OAAf;AAEA,QAAMI,cAA8B,GAAGtC,UAAU,CAAC;AAChDoB,MAAAA,UAAU,EAAEc,OAAO,CAACd,UAD4B;AAEhDmB,MAAAA,MAAM,EAAEL,OAAO,CAACK;AAFgC,KAAD,CAAjD;;AAIA,QAAI,OAAOL,OAAO,CAACjB,OAAf,KAA2B,QAA/B,EAAyC;AACvC;AACAqB,MAAAA,cAAc,CAACE,eAAf,GAAiCN,OAAO,CAACjB,OAAzC;AACD,KAHD,MAGO,IAAIiB,OAAO,CAACjB,OAAZ,EAAqB;AAC1BqB,MAAAA,cAAc,CAACG,WAAf,GAA6BP,OAAO,CAACjB,OAArC;AACD;;AAED,SAAKA,OAAL,GAAegB,GAAG,CAACS,cAAJ,CAAmBC,eAAnB,CAAmCL,cAAnC,CAAf;AACA,SAAKM,KAAL,GAAapC,QAAQ,CAACqC,MAAT,EAAb;AACA,SAAKC,KAAL,GAAalB,YAAY,EAAzB;AAEA,SAAKmB,EAAL,GAAU,KAAKZ,OAAL,CAAaY,EAAb,CAAgBC,IAAhB,CAAqB,KAAKb,OAA1B,CAAV;AACA,SAAKc,GAAL,GAAW,KAAKd,OAAL,CAAac,GAAb,CAAiBD,IAAjB,CAAsB,KAAKb,OAA3B,CAAX;AACD;;AAEDe,EAAAA,KAAK,GAAG;AACN,QAAI,KAAKC,OAAT,EAAkB;AAChB,WAAKC,IAAL;AACD;;AACD,SAAKD,OAAL,GAAe,IAAItC,YAAJ,CAAiB,IAAjB,EAAuB,KAAKwC,UAAL,EAAvB,CAAf;AACA,SAAKF,OAAL,CAAaD,KAAb;AACD;;AAEDE,EAAAA,IAAI,GAAG;AACL,QAAI,KAAKD,OAAT,EAAkB;AAChB,WAAKA,OAAL,CAAaC,IAAb;AACA,WAAKD,OAAL,GAAe,IAAf;AACD;AACF;;AAEDE,EAAAA,UAAU,GAAwB;AAChC,WAAOpD,KAAK,CAAC,KAAKiC,OAAN,CAAZ;AACD;;AAEDoB,EAAAA,aAAa,CAACC,KAAD,EAAQ;AACnB,QAAIC,UAAU,GAAGD,KAAK,CAACE,SAAN,GAAkB,KAAKvB,OAAL,CAAaf,kBAAhD;AACA,WAAOqC,UAAP;AACD;;AAEDE,EAAAA,UAAU,CAACH,KAAD,EAAQ;AAChB,QAAIC,UAAU,GAAG,KAAKF,aAAL,CAAmBC,KAAnB,CAAjB;AACA,WAAOC,UAAU,IAAI,KAAKZ,KAAL,CAAWe,GAAX,EAArB;AACD;;AAEDC,EAAAA,WAAW,CAACC,GAAD,EAAMN,KAAN,EAAa;AACtB,SAAKpB,OAAL,CAAa2B,IAAb,CAAkBvC,aAAlB,EAAiCsC,GAAjC,EAAsCN,KAAtC;AACD;;AAEDQ,EAAAA,WAAW,CAACF,GAAD,EAAMG,UAAN,EAAkBC,QAAlB,EAA4B;AACrC,SAAK9B,OAAL,CAAa2B,IAAb,CAAkBtC,aAAlB,EAAiCqC,GAAjC,EAAsCG,UAAtC,EAAkDC,QAAlD;AACD;;AAEDC,EAAAA,SAAS,CAACL,GAAD,EAAMN,KAAN,EAAa;AACpB,SAAKpB,OAAL,CAAa2B,IAAb,CAAkBrC,WAAlB,EAA+BoC,GAA/B,EAAoCN,KAApC;AACD;;AAEDY,EAAAA,WAAW,CAACN,GAAD,EAAMN,KAAN,EAAc;AACvB,SAAKpB,OAAL,CAAa2B,IAAb,CAAkBpC,aAAlB,EAAiCmC,GAAjC,EAAsCN,KAAtC;AACD;;AAEDa,EAAAA,SAAS,CAACC,KAAD,EAAQ;AACf,SAAKlC,OAAL,CAAa2B,IAAb,CAAkBnC,WAAlB,EAA+B0C,KAA/B;AACD;;AAEDC,EAAAA,mCAAmC,CAACC,QAAD,EAAWC,QAAX,EAAqB;AACtD,QAAMC,SAAS,GAAG,KAAKC,yBAAL,CAA+BF,QAA/B,CAAlB;AACA,QAAMG,SAAS,GAAG,KAAKD,yBAAL,CAA+BH,QAA/B,CAAlB;AACAnC,IAAAA,MAAM,CAACwC,IAAP,CAAYD,SAAZ,EAAuBE,OAAvB,CAA+BhB,GAAG,IAAI;AACpC,UAAMI,QAAQ,GAAGQ,SAAS,CAACZ,GAAD,CAA1B;AACA,UAAMiB,QAAQ,GAAGH,SAAS,CAACd,GAAD,CAA1B;;AACA,UAAIkB,IAAI,CAACC,SAAL,CAAef,QAAf,MAA6Bc,IAAI,CAACC,SAAL,CAAeF,QAAf,CAAjC,EAA2D;AACzD,aAAKZ,SAAL,CAAeL,GAAf,EAAoBiB,QAApB;AACD;AACF,KAND;AAOA1C,IAAAA,MAAM,CAACwC,IAAP,CAAYH,SAAZ,EAAuBI,OAAvB,CAA+BhB,GAAG,IAAI;AACpC,UAAMI,QAAQ,GAAGQ,SAAS,CAACZ,GAAD,CAA1B;AACA,UAAMiB,QAAQ,GAAGH,SAAS,CAACd,GAAD,CAA1B;;AACA,UAAI,CAACiB,QAAL,EAAe;AACb,aAAKX,WAAL,CAAiBN,GAAjB,EAAsBI,QAAtB;AACD;AACF,KAND;AAOD;;AAEDgB,EAAAA,uBAAuB,CAACpB,GAAD,EAAM;AAC3BqB,IAAAA,YAAY,CAAC,KAAKpC,KAAL,CAAWjB,cAAX,CAA0BgC,GAA1B,CAAD,CAAZ;AACA,WAAO,KAAKf,KAAL,CAAWjB,cAAX,CAA0BgC,GAA1B,CAAP,CAF2B,CAI3B;;AACA,SAAKf,KAAL,CAAWhB,YAAX,GAA0B,IAA1B;AACD;;AAEDqD,EAAAA,0BAA0B,GAAG;AAC3B,QAAItD,cAAc,GAAG,KAAKiB,KAAL,CAAWjB,cAAhC;;AACA,SAAK,IAAIgC,GAAT,IAAgBhC,cAAhB,EAAgC;AAC9B,UAAI,CAACO,MAAM,CAACgD,SAAP,CAAiBC,cAAjB,CAAgCC,IAAhC,CAAqCzD,cAArC,EAAqDgC,GAArD,CAAL,EAAgE;AAC9D;AACD;;AACD,WAAKoB,uBAAL,CAA6BpB,GAA7B;AACD;AACF;;AAED0B,EAAAA,qBAAqB,CAAC1B,GAAD,EAAMN,KAAN,EAAa;AAChC,QAAI5C,cAAc,CAAC4C,KAAD,CAAlB,EAA2B;AACzB;AACD;;AAED,QAAIC,UAAU,GAAG,KAAKF,aAAL,CAAmBC,KAAnB,CAAjB;AACA,QAAIiC,eAAe,GAAGC,IAAI,CAACC,GAAL,CAASlC,UAAU,GAAG,KAAKZ,KAAL,CAAWe,GAAX,EAAtB,EAAwC,CAAxC,IAA6C,IAAnE,CANgC,CAQhC;;AACA,SAAKsB,uBAAL,CAA6BpB,GAA7B;AAEA,QAAI8B,kBAAkB,GAAGC,UAAU,CAAC,MAAM;AACxC,WAAKhC,WAAL,CAAiBC,GAAjB,EAAsBN,KAAtB;AACD,KAFkC,EAEhCiC,eAFgC,CAAnC,CAXgC,CAehC;;AACA,SAAK1C,KAAL,CAAWjB,cAAX,CAA0BgC,GAA1B,IAAiC8B,kBAAjC;AACD;;AAEDE,EAAAA,wBAAwB,GAAG;AACzB,QAAIC,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAAnB;;AACA,SAAI,IAAIlC,GAAR,IAAeiC,YAAf,EAA6B;AAC3B,UAAI,CAAC1D,MAAM,CAACgD,SAAP,CAAiBC,cAAjB,CAAgCC,IAAhC,CAAqCQ,YAArC,EAAmDjC,GAAnD,CAAL,EAA8D;AAC5D;AACD;;AACD,UAAIN,KAAK,GAAGuC,YAAY,CAACjC,GAAD,CAAxB;AACA,WAAK0B,qBAAL,CAA2B1B,GAA3B,EAAgCN,KAAhC;AACD;AACF,GAjKwD,CAmKzD;;;AACAyC,EAAAA,0BAA0B,GAAG;AAC3B,SAAKb,0BAAL;AACA,SAAKU,wBAAL;AACD;;AAEDI,EAAAA,GAAG,CAACpC,GAAD,EAAMN,KAAN,EAAoB;AACrB,QAAIuC,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAAnB;AACA3F,IAAAA,aAAa,CAACmD,KAAD,CAAb;AACAuC,IAAAA,YAAY,CAACjC,GAAD,CAAZ,GAAoBN,KAApB;AACA,SAAKtC,OAAL,CAAaiF,UAAb,CAAwBJ,YAAxB;AACA,SAAK5B,SAAL,CAAeL,GAAf,EAAoBN,KAApB;AACA,SAAKgC,qBAAL,CAA2B1B,GAA3B,EAAgCN,KAAhC;AACD;;AAED4C,EAAAA,OAAO,CAACtC,GAAD,EAAM;AACX,QAAIiC,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAAnB;AACA,WAAOD,YAAY,CAACjC,GAAD,CAAnB;AACD;;AAEKuC,EAAAA,GAAG,CAACvC,GAAD,EAAM;AAAA;;AAAA;AACb,aAAO,KAAI,CAACsC,OAAL,CAAatC,GAAb,CAAP;AADa;AAEd;;AAEDwC,EAAAA,aAAa,GAAW;AACtB,QAAMC,MAAM,GAAG,EAAf;AACA,QAAMR,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAArB;AACA3D,IAAAA,MAAM,CAACwC,IAAP,CAAYkB,YAAZ,EAA0BjB,OAA1B,CAAkChB,GAAG,IAAI;AACvC,UAAMN,KAAK,GAAGuC,YAAY,CAACjC,GAAD,CAA1B;;AACA,UAAInD,aAAa,CAAC6C,KAAD,CAAjB,EAA0B;AACxB+C,QAAAA,MAAM,CAACC,WAAP,GAAqBhD,KAArB;AACD,OAFD,MAEO,IAAI9C,SAAS,CAAC8C,KAAD,CAAb,EAAsB;AAC3B+C,QAAAA,MAAM,CAACE,OAAP,GAAiBjD,KAAjB;AACD,OAFM,MAEA,IAAI5C,cAAc,CAAC4C,KAAD,CAAlB,EAA2B;AAChC+C,QAAAA,MAAM,CAACG,YAAP,GAAsBlD,KAAtB;AACD;AACF,KATD;AAUA,WAAO+C,MAAP;AACD;;AAEKI,EAAAA,SAAS,GAAoB;AAAA;;AAAA;AACjC,aAAO,MAAI,CAACL,aAAL,EAAP;AADiC;AAElC;;AAEDM,EAAAA,mBAAmB,CAACC,IAAD,EAA0B;AAC3C,QAAMd,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAArB;AACA,QAAMlC,GAAG,GAAGzB,MAAM,CAACwC,IAAP,CAAYkB,YAAZ,EAA0Be,MAA1B,CAAiChD,GAAG,IAAI;AAClD,UAAMN,KAAK,GAAGuC,YAAY,CAACjC,GAAD,CAA1B;AACA,aAAQnD,aAAa,CAAC6C,KAAD,CAAb,IAAwBqD,IAAI,KAAK,aAAlC,IACDnG,SAAS,CAAC8C,KAAD,CAAT,IAAoBqD,IAAI,KAAK,SAD5B,IAEDjG,cAAc,CAAC4C,KAAD,CAAd,IAAyBqD,IAAI,KAAK,cAFxC;AAGD,KALW,EAKT,CALS,CAAZ;AAMA,WAAO/C,GAAP;AACD;;AAEOiD,EAAAA,YAAY,CAACvD,KAAD,EAA0B;AAC5C,QAAI7C,aAAa,CAAC6C,KAAD,CAAjB,EAA0B;AACxB,aAAO,aAAP;AACD;;AACD,QAAI9C,SAAS,CAAC8C,KAAD,CAAb,EAAsB;AACpB,aAAO,SAAP;AACD;;AACD,QAAG5C,cAAc,CAAC4C,KAAD,CAAjB,EAA0B;AACxB,aAAO,cAAP;AACD;;AACD,UAAM,IAAIrD,YAAJ,CAAiB,oBAAjB,CAAN;AACD;;AAED6G,EAAAA,SAAS,CACPT,MADO,EAEP;AACAU,EAAAA,aAHO,EAIPC,SAJO,EAKPC,cALO,EAMD;AACN,QAAMC,mBAAmB,GAAG,CAACtD,GAAD,EAAMN,KAAN,KAAgB;AAC1C,UAAMqD,IAAI,GAAG,KAAKE,YAAL,CAAkBvD,KAAlB,CAAb;;AACA,UAAIqD,IAAI,KAAK,aAAb,EAA4B;AAC1BI,QAAAA,aAAa,IAAIA,aAAa,CAACnD,GAAD,EAAMN,KAAN,CAA9B;AACD,OAFD,MAEO,IAAIqD,IAAI,KAAK,SAAb,EAAwB;AAC7BK,QAAAA,SAAS,IAAIA,SAAS,CAACpD,GAAD,EAAMN,KAAN,CAAtB;AACD,OAFM,MAEA,IAAIqD,IAAI,KAAK,cAAb,EAA6B;AAClCM,QAAAA,cAAc,IAAIA,cAAc,CAACrD,GAAD,EAAMN,KAAN,CAAhC;AACD;AACF,KATD;;AAUA,QAAM6D,WAAW,GAAG,CAACvD,GAAD,EAAMN,KAAN,KAAgB;AAClC,WAAKW,SAAL,CAAeL,GAAf,EAAoBN,KAApB;AACA,WAAKgC,qBAAL,CAA2B1B,GAA3B,EAAgCN,KAAhC;AACA4D,MAAAA,mBAAmB,CAACtD,GAAD,EAAMN,KAAN,CAAnB;AACD,KAJD;;AAKA,QAAM8D,aAAa,GAAG,CAACxD,GAAD,EAAMN,KAAN,EAAaU,QAAb,KAA0B;AAC9C,WAAKF,WAAL,CAAiBF,GAAjB,EAAsBN,KAAtB,EAA6BU,QAA7B;AACA,WAAKgB,uBAAL,CAA6BpB,GAA7B;AACA,WAAK0B,qBAAL,CAA2B1B,GAA3B,EAAgCN,KAAhC;AACA4D,MAAAA,mBAAmB,CAACtD,GAAD,EAAMN,KAAN,CAAnB;AACD,KALD;;AAMA,QAAM+D,aAAa,GAAG,CAACzD,GAAD,EAAMN,KAAN,KAAgB;AACpC,WAAK0B,uBAAL,CAA6BpB,GAA7B;AACA,WAAKM,WAAL,CAAiBN,GAAjB,EAAsBN,KAAtB;AACA4D,MAAAA,mBAAmB,CAACtD,GAAD,EAAMN,KAAN,CAAnB;AACD,KAJD;;AAMA,QAAMgE,KAAkB,GAAG,CAAC,SAAD,EAAY,aAAZ,EAA2B,cAA3B,CAA3B;AACA,QAAMC,cAAc,GAAG,KAAKnB,aAAL,EAAvB,CA7BM,CA+BN;;AACAkB,IAAAA,KAAK,CAAC1C,OAAN,CAAe+B,IAAD,IAAU;AACtB,UAAMrD,KAAK,GAAG+C,MAAM,CAACM,IAAD,CAApB;;AACA,UAAIrD,KAAJ,EAAW;AACTnD,QAAAA,aAAa,CAACmD,KAAD,EAAQqD,IAAR,CAAb;AACD;AACF,KALD,EAhCM,CAuCN;;AACA,QAAM3F,OAAO,GAAGsG,KAAK,CAACE,MAAN,CAAa,CAACxG,OAAD,EAAU2F,IAAV,KAAmB;AAC9C,UAAMrD,KAAK,GAAG+C,MAAM,CAACM,IAAD,CAApB;;AACA,UAAIrD,KAAJ,EAAW;AACT,YAAMnC,UAAU,GAAG,KAAKuF,mBAAL,CAAyBC,IAAzB,KAAkCA,IAArD;AACA3F,QAAAA,OAAO,CAACG,UAAD,CAAP,GAAsBmC,KAAtB;AACD;;AACD,aAAOtC,OAAP;AACD,KAPe,EAOb,EAPa,CAAhB;AAQA,SAAKA,OAAL,CAAaiF,UAAb,CAAwBjF,OAAxB,EAhDM,CAkDN;;AACAsG,IAAAA,KAAK,CAAC1C,OAAN,CAAc+B,IAAI,IAAI;AACpB,UAAM9B,QAAQ,GAAGwB,MAAM,CAACM,IAAD,CAAvB;AACA,UAAMc,aAAa,GAAGF,cAAc,CAACZ,IAAD,CAApC;AACA,UAAMxF,UAAU,GAAG,KAAKuF,mBAAL,CAAyBC,IAAzB,KAAkCA,IAArD;;AACA,UAAI9B,QAAQ,IAAI4C,aAAhB,EAA+B;AAAE;AAC/B;AACAJ,QAAAA,aAAa,CAAClG,UAAD,EAAasG,aAAb,CAAb;AACAN,QAAAA,WAAW,CAAChG,UAAD,EAAa0D,QAAb,CAAX;AACAuC,QAAAA,aAAa,CAACjG,UAAD,EAAa0D,QAAb,EAAuB4C,aAAvB,CAAb;AACD,OALD,MAKO,IAAI5C,QAAJ,EAAc;AAAE;AACrBsC,QAAAA,WAAW,CAAChG,UAAD,EAAa0D,QAAb,CAAX;AACD,OAFM,MAEA,IAAI4C,aAAJ,EAAmB;AAAE;AAC1BJ,QAAAA,aAAa,CAAClG,UAAD,EAAasG,aAAb,CAAb;AACD;AACF,KAdD;AAeD;;AAEDC,EAAAA,MAAM,CAAC9D,GAAD,EAAM;AACV;AACA,SAAKoB,uBAAL,CAA6BpB,GAA7B;AAEA,QAAIiC,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAAnB;AACA,QAAI6B,YAAY,GAAG9B,YAAY,CAACjC,GAAD,CAA/B;AACA,WAAOiC,YAAY,CAACjC,GAAD,CAAnB;AACA,SAAK5C,OAAL,CAAaiF,UAAb,CAAwBJ,YAAxB;AAEA,SAAK3B,WAAL,CAAiBN,GAAjB,EAAsB+D,YAAtB;AACD,GA3TwD,CA6TzD;;;AACMC,EAAAA,UAAU,CAACtE,KAAD,EAAQ;AAAA;;AAAA;AACtB,aAAO,MAAI,CAACtB,GAAL,CAASsB,KAAT,CAAeuE,KAAf,CAAqBvE,KAArB,CAAP;AADsB;AAEvB,GAhUwD,CAiUzD;;;AACAnD,EAAAA,aAAa,CAACmD,KAAD,EAAe;AAC1B,WAAOnD,aAAa,CAACmD,KAAD,CAApB;AACD,GApUwD,CAsUzD;;;AACAuE,EAAAA,KAAK,CAACjE,GAAD,EAAsB;AACzB;AACA,QAAI,KAAKf,KAAL,CAAWhB,YAAf,EAA6B;AAC3B,aAAO,KAAKgB,KAAL,CAAWhB,YAAlB;AACD;;AAED,QAAI;AACF,UAAIyB,KAAK,GAAG,KAAK4C,OAAL,CAAatC,GAAb,CAAZ;;AACA,UAAI,CAACN,KAAL,EAAY;AACV,cAAM,IAAIrD,YAAJ,CAAiB,gDAAgD2D,GAAjE,CAAN;AACD;AACF,KALD,CAKE,OAAOkE,CAAP,EAAU;AACV,aAAOC,OAAO,CAACC,MAAR,CAAeF,CAAf,CAAP;AACD,KAbwB,CAezB;;;AACA,SAAK9C,uBAAL,CAA6BpB,GAA7B,EAhByB,CAkBzB;AACA;;AACA,SAAKf,KAAL,CAAWhB,YAAX,GAA0B,KAAKG,GAAL,CAASsB,KAAT,CAAe2E,WAAf,GACvBC,IADuB,CAClB7B,MAAM,IAAI;AACd,WAAKS,SAAL,CAAeT,MAAf,EADc,CAGd;;AACA,UAAM8B,SAAS,GAAG,KAAKtB,YAAL,CAAkBvD,KAAlB,CAAlB;AACA,aAAO+C,MAAM,CAAC8B,SAAD,CAAb;AACD,KAPuB,EAQvBC,KARuB,CAQjBC,GAAG,IAAI;AACZ;AACA,UAAInI,mBAAmB,CAACmI,GAAD,CAAnB,IAA4BA,GAAG,CAACC,IAAJ,KAAa,YAAzC,IAAyDD,GAAG,CAACC,IAAJ,KAAa,cAA1E,EAA0F;AACxF;AACA,aAAKZ,MAAL,CAAY9D,GAAZ;AAEAyE,QAAAA,GAAG,CAACE,QAAJ,GAAe3E,GAAf;AACA,aAAKO,SAAL,CAAekE,GAAf;AACD;;AACD,YAAMA,GAAN;AACD,KAlBuB,EAmBvBG,OAnBuB,CAmBf,MAAM;AACb;AACA,WAAK3F,KAAL,CAAWhB,YAAX,GAA0B,IAA1B;AACD,KAtBuB,CAA1B;AAwBA,WAAO,KAAKgB,KAAL,CAAWhB,YAAlB;AACD;;AAED4G,EAAAA,KAAK,GAAG;AACN,SAAKvD,0BAAL;AACA,SAAKlE,OAAL,CAAa0H,YAAb;AACD;;AAEDjE,EAAAA,yBAAyB,CAACkE,KAAD,EAAQ;AAC/B,QAAItC,MAAJ;;AACA,QAAI;AACFA,MAAAA,MAAM,GAAGvB,IAAI,CAAC8D,KAAL,CAAWD,KAAX,KAAqB,EAA9B;AACD,KAFD,CAEE,OAAOb,CAAP,EAAU;AACVzB,MAAAA,MAAM,GAAG,EAAT;AACD;;AACD,WAAOA,MAAP;AACD;;AAEDwC,EAAAA,kBAAkB,CAACvF,KAAD,EAAsB;AACtC,QAAMM,GAAG,GAAG,KAAK8C,mBAAL,CAAyB,cAAzB,KAA4C/F,yBAAxD,CADsC,CAGtC;;AACA,QAAIkF,YAAY,GAAG,KAAK7E,OAAL,CAAa8E,UAAb,EAAnB;AACA3F,IAAAA,aAAa,CAACmD,KAAD,CAAb;AACAuC,IAAAA,YAAY,CAACjC,GAAD,CAAZ,GAAoBN,KAApB;AACA,SAAKtC,OAAL,CAAaiF,UAAb,CAAwBJ,YAAxB;AACD;;AA7YwD","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n *\n * See the License for the specific language governing permissions and limitations under the License.\n *\n */\nimport { removeNils, clone } from './util';\nimport { AuthSdkError } from './errors';\nimport { isRefreshTokenError, validateToken  } from './oidc/util';\nimport { isLocalhost, isIE11OrLess } from './features';\nimport { TOKEN_STORAGE_NAME } from './constants';\nimport SdkClock from './clock';\nimport {\n  EventEmitter,\n  Token, \n  Tokens, \n  TokenType, \n  TokenManagerOptions, \n  isIDToken, \n  isAccessToken,\n  isRefreshToken,\n  StorageOptions,\n  StorageType,\n  OktaAuth,\n  StorageProvider,\n  TokenManagerErrorEventHandler,\n  TokenManagerEventHandler,\n  TokenManagerInterface,\n  RefreshToken\n} from './types';\nimport { REFRESH_TOKEN_STORAGE_KEY } from './constants';\nimport { TokenService } from './services/TokenService';\n\nconst DEFAULT_OPTIONS = {\n  autoRenew: true,\n  autoRemove: true,\n  storage: undefined, // will use value from storageManager config\n  expireEarlySeconds: 30,\n  storageKey: TOKEN_STORAGE_NAME,\n  syncStorage: true,\n  _storageEventDelay: 0\n};\nexport const EVENT_EXPIRED = 'expired';\nexport const EVENT_RENEWED = 'renewed';\nexport const EVENT_ADDED = 'added';\nexport const EVENT_REMOVED = 'removed';\nexport const EVENT_ERROR = 'error';\n\ninterface TokenManagerState {\n  expireTimeouts: Record<string, unknown>;\n  renewPromise: Promise<Token>;\n}\nfunction defaultState(): TokenManagerState {\n  return {\n    expireTimeouts: {},\n    renewPromise: null\n  };\n}\nexport class TokenManager implements TokenManagerInterface {\n  private sdk: OktaAuth;\n  private clock: SdkClock;\n  private emitter: EventEmitter;\n  private storage: StorageProvider;\n  private state: TokenManagerState;\n  private options: TokenManagerOptions;\n  private service: TokenService;\n\n  on: (event: string, handler: TokenManagerErrorEventHandler | TokenManagerEventHandler, context?: object) => void;\n  off: (event: string, handler?: TokenManagerErrorEventHandler | TokenManagerEventHandler) => void;\n\n  constructor(sdk: OktaAuth, options: TokenManagerOptions = {}) {\n    this.sdk = sdk;\n    this.emitter = (sdk as any).emitter;\n    if (!this.emitter) {\n      throw new AuthSdkError('Emitter should be initialized before TokenManager');\n    }\n\n    options = Object.assign({}, DEFAULT_OPTIONS, removeNils(options));\n    if (isIE11OrLess()) {\n      options._storageEventDelay = options._storageEventDelay || 1000;\n    }\n    if (!isLocalhost()) {\n      options.expireEarlySeconds = DEFAULT_OPTIONS.expireEarlySeconds;\n    }\n    this.options = options;\n\n    const storageOptions: StorageOptions = removeNils({\n      storageKey: options.storageKey,\n      secure: options.secure,\n    });\n    if (typeof options.storage === 'object') {\n      // A custom storage provider must implement getItem(key) and setItem(key, val)\n      storageOptions.storageProvider = options.storage;\n    } else if (options.storage) {\n      storageOptions.storageType = options.storage as StorageType;\n    }\n\n    this.storage = sdk.storageManager.getTokenStorage(storageOptions);\n    this.clock = SdkClock.create(/* sdk, options */);\n    this.state = defaultState();\n\n    this.on = this.emitter.on.bind(this.emitter);\n    this.off = this.emitter.off.bind(this.emitter);\n  }\n\n  start() {\n    if (this.service) {\n      this.stop();\n    }\n    this.service = new TokenService(this, this.getOptions());\n    this.service.start();\n  }\n  \n  stop() {\n    if (this.service) {\n      this.service.stop();\n      this.service = null;\n    }\n  }\n\n  getOptions(): TokenManagerOptions {\n    return clone(this.options);\n  }\n  \n  getExpireTime(token) {\n    var expireTime = token.expiresAt - this.options.expireEarlySeconds;\n    return expireTime;\n  }\n  \n  hasExpired(token) {\n    var expireTime = this.getExpireTime(token);\n    return expireTime <= this.clock.now();\n  }\n  \n  emitExpired(key, token) {\n    this.emitter.emit(EVENT_EXPIRED, key, token);\n  }\n  \n  emitRenewed(key, freshToken, oldToken) {\n    this.emitter.emit(EVENT_RENEWED, key, freshToken, oldToken);\n  }\n  \n  emitAdded(key, token) {\n    this.emitter.emit(EVENT_ADDED, key, token);\n  }\n  \n  emitRemoved(key, token?) {\n    this.emitter.emit(EVENT_REMOVED, key, token);\n  }\n  \n  emitError(error) {\n    this.emitter.emit(EVENT_ERROR, error);\n  }\n  \n  emitEventsForCrossTabsStorageUpdate(newValue, oldValue) {\n    const oldTokens = this.getTokensFromStorageValue(oldValue);\n    const newTokens = this.getTokensFromStorageValue(newValue);\n    Object.keys(newTokens).forEach(key => {\n      const oldToken = oldTokens[key];\n      const newToken = newTokens[key];\n      if (JSON.stringify(oldToken) !== JSON.stringify(newToken)) {\n        this.emitAdded(key, newToken);\n      }\n    });\n    Object.keys(oldTokens).forEach(key => {\n      const oldToken = oldTokens[key];\n      const newToken = newTokens[key];\n      if (!newToken) {\n        this.emitRemoved(key, oldToken);\n      }\n    });\n  }\n  \n  clearExpireEventTimeout(key) {\n    clearTimeout(this.state.expireTimeouts[key] as any);\n    delete this.state.expireTimeouts[key];\n  \n    // Remove the renew promise (if it exists)\n    this.state.renewPromise = null;\n  }\n  \n  clearExpireEventTimeoutAll() {\n    var expireTimeouts = this.state.expireTimeouts;\n    for (var key in expireTimeouts) {\n      if (!Object.prototype.hasOwnProperty.call(expireTimeouts, key)) {\n        continue;\n      }\n      this.clearExpireEventTimeout(key);\n    }\n  }\n  \n  setExpireEventTimeout(key, token) {\n    if (isRefreshToken(token)) {\n      return;\n    }\n\n    var expireTime = this.getExpireTime(token);\n    var expireEventWait = Math.max(expireTime - this.clock.now(), 0) * 1000;\n  \n    // Clear any existing timeout\n    this.clearExpireEventTimeout(key);\n  \n    var expireEventTimeout = setTimeout(() => {\n      this.emitExpired(key, token);\n    }, expireEventWait);\n  \n    // Add a new timeout\n    this.state.expireTimeouts[key] = expireEventTimeout;\n  }\n  \n  setExpireEventTimeoutAll() {\n    var tokenStorage = this.storage.getStorage();\n    for(var key in tokenStorage) {\n      if (!Object.prototype.hasOwnProperty.call(tokenStorage, key)) {\n        continue;\n      }\n      var token = tokenStorage[key];\n      this.setExpireEventTimeout(key, token);\n    }\n  }\n  \n  // reset timeouts to setup autoRenew for tokens from other document context (tabs)\n  resetExpireEventTimeoutAll() {\n    this.clearExpireEventTimeoutAll();\n    this.setExpireEventTimeoutAll();\n  }\n  \n  add(key, token: Token) {\n    var tokenStorage = this.storage.getStorage();\n    validateToken(token);\n    tokenStorage[key] = token;\n    this.storage.setStorage(tokenStorage);\n    this.emitAdded(key, token);\n    this.setExpireEventTimeout(key, token);\n  }\n  \n  getSync(key) {\n    var tokenStorage = this.storage.getStorage();\n    return tokenStorage[key];\n  }\n  \n  async get(key) {\n    return this.getSync(key);\n  }\n  \n  getTokensSync(): Tokens {\n    const tokens = {} as Tokens;\n    const tokenStorage = this.storage.getStorage();\n    Object.keys(tokenStorage).forEach(key => {\n      const token = tokenStorage[key];\n      if (isAccessToken(token)) {\n        tokens.accessToken = token;\n      } else if (isIDToken(token)) {\n        tokens.idToken = token;\n      } else if (isRefreshToken(token)) { \n        tokens.refreshToken = token;\n      }\n    });\n    return tokens;\n  }\n  \n  async getTokens(): Promise<Tokens> {\n    return this.getTokensSync();\n  }\n\n  getStorageKeyByType(type: TokenType): string {\n    const tokenStorage = this.storage.getStorage();\n    const key = Object.keys(tokenStorage).filter(key => {\n      const token = tokenStorage[key];\n      return (isAccessToken(token) && type === 'accessToken') \n        || (isIDToken(token) && type === 'idToken')\n        || (isRefreshToken(token) && type === 'refreshToken');\n    })[0];\n    return key;\n  }\n\n  private getTokenType(token: Token): TokenType {\n    if (isAccessToken(token)) {\n      return 'accessToken';\n    }\n    if (isIDToken(token)) {\n      return 'idToken';\n    }\n    if(isRefreshToken(token)) {\n      return 'refreshToken';\n    }\n    throw new AuthSdkError('Unknown token type');\n  }\n\n  setTokens(\n    tokens: Tokens,\n    // TODO: callbacks can be removed in the next major version OKTA-407224\n    accessTokenCb?: Function, \n    idTokenCb?: Function,\n    refreshTokenCb?: Function\n  ): void {\n    const handleTokenCallback = (key, token) => {\n      const type = this.getTokenType(token);\n      if (type === 'accessToken') {\n        accessTokenCb && accessTokenCb(key, token);\n      } else if (type === 'idToken') {\n        idTokenCb && idTokenCb(key, token);\n      } else if (type === 'refreshToken') {\n        refreshTokenCb && refreshTokenCb(key, token);\n      }\n    };\n    const handleAdded = (key, token) => {\n      this.emitAdded(key, token);\n      this.setExpireEventTimeout(key, token);\n      handleTokenCallback(key, token);\n    };\n    const handleRenewed = (key, token, oldToken) => {\n      this.emitRenewed(key, token, oldToken);\n      this.clearExpireEventTimeout(key);\n      this.setExpireEventTimeout(key, token);\n      handleTokenCallback(key, token);\n    };\n    const handleRemoved = (key, token) => {\n      this.clearExpireEventTimeout(key);\n      this.emitRemoved(key, token);\n      handleTokenCallback(key, token);\n    };\n    \n    const types: TokenType[] = ['idToken', 'accessToken', 'refreshToken'];\n    const existingTokens = this.getTokensSync();\n\n    // valid tokens\n    types.forEach((type) => {\n      const token = tokens[type];\n      if (token) {\n        validateToken(token, type);\n      }\n    });\n  \n    // add token to storage\n    const storage = types.reduce((storage, type) => {\n      const token = tokens[type];\n      if (token) {\n        const storageKey = this.getStorageKeyByType(type) || type;\n        storage[storageKey] = token;\n      }\n      return storage;\n    }, {});\n    this.storage.setStorage(storage);\n  \n    // emit event and start expiration timer\n    types.forEach(type => {\n      const newToken = tokens[type];\n      const existingToken = existingTokens[type];\n      const storageKey = this.getStorageKeyByType(type) || type;\n      if (newToken && existingToken) { // renew\n        // call handleRemoved first, since it clears timers\n        handleRemoved(storageKey, existingToken);\n        handleAdded(storageKey, newToken);\n        handleRenewed(storageKey, newToken, existingToken);\n      } else if (newToken) { // add\n        handleAdded(storageKey, newToken);\n      } else if (existingToken) { //remove\n        handleRemoved(storageKey, existingToken);\n      }\n    });\n  }\n  \n  remove(key) {\n    // Clear any listener for this token\n    this.clearExpireEventTimeout(key);\n  \n    var tokenStorage = this.storage.getStorage();\n    var removedToken = tokenStorage[key];\n    delete tokenStorage[key];\n    this.storage.setStorage(tokenStorage);\n  \n    this.emitRemoved(key, removedToken);\n  }\n  \n  // TODO: this methods is redundant and can be removed in the next major version OKTA-407224\n  async renewToken(token) {\n    return this.sdk.token.renew(token);\n  }\n  // TODO: this methods is redundant and can be removed in the next major version OKTA-407224\n  validateToken(token: Token) {\n    return validateToken(token);\n  }\n\n  // TODO: renew method should take no param, change in the next major version OKTA-407224\n  renew(key): Promise<Token> {\n    // Multiple callers may receive the same promise. They will all resolve or reject from the same request.\n    if (this.state.renewPromise) {\n      return this.state.renewPromise;\n    }\n  \n    try {\n      var token = this.getSync(key);\n      if (!token) {\n        throw new AuthSdkError('The tokenManager has no token for the key: ' + key);\n      }\n    } catch (e) {\n      return Promise.reject(e);\n    }\n  \n    // Remove existing autoRenew timeout\n    this.clearExpireEventTimeout(key);\n  \n    // A refresh token means a replace instead of renewal\n    // Store the renew promise state, to avoid renewing again\n    this.state.renewPromise = this.sdk.token.renewTokens()\n      .then(tokens => {\n        this.setTokens(tokens);\n\n        // resolve token based on the key\n        const tokenType = this.getTokenType(token);\n        return tokens[tokenType];\n      })\n      .catch(err => {\n        // If renew fails, remove token and emit error\n        if (isRefreshTokenError(err) || err.name === 'OAuthError' || err.name === 'AuthSdkError') {\n          // remove token from storage\n          this.remove(key);\n          \n          err.tokenKey = key;\n          this.emitError(err);\n        }\n        throw err;\n      })\n      .finally(() => {\n        // Remove existing promise key\n        this.state.renewPromise = null;\n      });\n  \n    return this.state.renewPromise;\n  }\n  \n  clear() {\n    this.clearExpireEventTimeoutAll();\n    this.storage.clearStorage();\n  }\n  \n  getTokensFromStorageValue(value) {\n    let tokens;\n    try {\n      tokens = JSON.parse(value) || {};\n    } catch (e) {\n      tokens = {};\n    }\n    return tokens;\n  }\n\n  updateRefreshToken(token: RefreshToken) {\n    const key = this.getStorageKeyByType('refreshToken') || REFRESH_TOKEN_STORAGE_KEY;\n\n    // do not emit any event\n    var tokenStorage = this.storage.getStorage();\n    validateToken(token);\n    tokenStorage[key] = token;\n    this.storage.setStorage(tokenStorage);\n  }\n  \n}\n"],"file":"TokenManager.js"}