@okta/okta-auth-js 6.1.0 → 6.3.1

package/lib/idx/types/idx-js.d.ts

@@ -76,6 +76,7 @@ export interface IdxAuthenticator {
         challengeData?: ChallengeData;
     };
     credentialId?: string;
+    enrollmentId?: string;
 }
 export interface IdxForm {
     value: IdxRemediationValue[];
@@ -179,10 +180,12 @@ export interface RawIdxResponse {
         value: IdxRemediation[];
     };
     messages?: IdxMessages;
+    success?: boolean;
+    successWithInteractionCode?: IdxRemediation;
 }
 export declare function isRawIdxResponse(obj: any): obj is RawIdxResponse;
 export interface IdxActions {
-    [key: string]: Function;
+    [key: string]: () => Promise<IdxResponse>;
 }
 export interface IdxResponse {
     proceed: (remediationName: string, params: unknown) => Promise<IdxResponse>;
@@ -194,5 +197,6 @@ export interface IdxResponse {
         interactionHandle?: string;
     };
     context?: IdxContext;
+    requestDidSucceed?: boolean;
 }
 export declare function isIdxResponse(obj: any): obj is IdxResponse;

package/lib/idx/types/index.d.ts

@@ -15,13 +15,14 @@ import { APIError, Tokens } from '../../types';
 import { PKCETransactionMeta } from '../../types/Transaction';
 import { IdxActions, IdxAuthenticator, IdxContext, IdxForm, IdxMessage, IdxOption, IdxRemediation, IdxResponse, RawIdxResponse } from './idx-js';
 import { FlowIdentifier } from './FlowIdentifier';
-export { IdxMessage, ChallengeData, ActivationData } from './idx-js';
+export { IdxMessage, IdxMessages, ChallengeData, ActivationData, IdxResponse, IdxContext, RawIdxResponse } from './idx-js';
 export { AuthenticationOptions } from '../authenticate';
 export { RegistrationOptions } from '../register';
 export { PasswordRecoveryOptions } from '../recoverPassword';
 export { AccountUnlockOptions } from '../unlockAccount';
 export { ProceedOptions } from '../proceed';
 export { CancelOptions } from '../cancel';
+export { RemediateOptions } from '../remediate';
 export { FlowIdentifier };
 export { IdxAuthenticator };
 export { EmailVerifyCallbackResponse } from '../emailVerify';
@@ -84,7 +85,7 @@ export interface IdxTransaction {
     tokens?: Tokens;
     nextStep?: NextStep;
     messages?: IdxMessage[];
-    error?: APIError;
+    error?: APIError | IdxResponse;
     meta?: IdxTransactionMeta;
     enabledFeatures?: IdxFeature[];
     availableSteps?: NextStep[];
@@ -99,13 +100,16 @@ export declare type IdxOptions = InteractOptions & IntrospectOptions & {
     flow?: FlowIdentifier;
     exchangeCodeForTokens?: boolean;
     autoRemediate?: boolean;
+    step?: string;
 };
 export interface IdxPollOptions {
     required?: boolean;
     refresh?: number;
 }
 export declare type Authenticator = {
-    key: string;
+    id?: string;
+    key?: string;
     methodType?: string;
     phoneNumber?: string;
 };
+export declare function isAuthenticator(obj: any): obj is Authenticator;

package/lib/idx/util.d.ts

@@ -0,0 +1,11 @@
+import { RemediationValues } from './remediators';
+import { IdxFeature, NextStep } from './types';
+import { IdxMessage, IdxRemediationValue, IdxResponse } from './types/idx-js';
+export declare function isTerminalResponse(idxResponse: IdxResponse): boolean;
+export declare function canSkipFn(idxResponse: IdxResponse): boolean;
+export declare function canResendFn(idxResponse: IdxResponse): boolean;
+export declare function getMessagesFromIdxRemediationValue(value?: IdxRemediationValue[]): IdxMessage[] | undefined;
+export declare function getMessagesFromResponse(idxResponse: IdxResponse): IdxMessage[];
+export declare function getEnabledFeatures(idxResponse: IdxResponse): IdxFeature[];
+export declare function getAvailableSteps(idxResponse: IdxResponse): NextStep[];
+export declare function filterValuesForRemediation(idxResponse: IdxResponse, values: RemediationValues): RemediationValues;

package/lib/options/browser.d.ts

@@ -0,0 +1,16 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+import { StorageManagerOptions, OktaAuthOptions, StorageUtil } from '../types';
+export declare function getStorage(): StorageUtil;
+export declare const STORAGE_MANAGER_OPTIONS: StorageManagerOptions;
+export declare const enableSharedStorage = true;
+export declare function getCookieSettings(args: OktaAuthOptions | undefined, isHTTPS: boolean): import("../types").CookieOptions;

package/lib/options/index.d.ts

@@ -0,0 +1,14 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+import { OktaAuthOptions } from '../types';
+export declare function getDefaultOptions(): OktaAuthOptions;
+export declare function buildOptions(args?: OktaAuthOptions): OktaAuthOptions;

package/lib/options/node.d.ts

@@ -0,0 +1,16 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+import { StorageManagerOptions, OktaAuthOptions, StorageUtil } from '../types';
+export declare function getStorage(): StorageUtil;
+export declare const STORAGE_MANAGER_OPTIONS: StorageManagerOptions;
+export declare const enableSharedStorage = false;
+export declare function getCookieSettings(args?: OktaAuthOptions, isHTTPS?: boolean): import("../types").CookieOptions | undefined;

package/lib/services/AutoRenewService.d.ts

@@ -0,0 +1,27 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+import { TokenManager } from '../TokenManager';
+import { ServiceInterface, ServiceManagerOptions } from '../types';
+export declare class AutoRenewService implements ServiceInterface {
+    private tokenManager;
+    private options;
+    private renewTimeQueue;
+    private started;
+    constructor(tokenManager: TokenManager, options?: ServiceManagerOptions);
+    private shouldThrottleRenew;
+    requiresLeadership(): boolean;
+    private onTokenExpiredHandler;
+    canStart(): boolean;
+    start(): void;
+    stop(): void;
+    isStarted(): boolean;
+}

package/lib/services/{TokenService.d.ts → SyncStorageService.d.ts}

@@ -10,14 +10,17 @@
  * See the License for the specific language governing permissions and limitations under the License.
  */
 import { TokenManager } from '../TokenManager';
-import { TokenManagerOptions } from '../types';
-export declare class TokenService {
+import { ServiceManagerOptions, ServiceInterface } from '../types';
+export declare class SyncStorageService implements ServiceInterface {
     private tokenManager;
     private options;
-    private storageListener?;
-    private onTokenExpiredHandler?;
     private syncTimeout;
-    constructor(tokenManager: TokenManager, options?: TokenManagerOptions);
+    private started;
+    constructor(tokenManager: TokenManager, options?: ServiceManagerOptions);
+    private storageListener;
+    requiresLeadership(): boolean;
+    isStarted(): boolean;
+    canStart(): boolean;
     start(): void;
     stop(): void;
 }

package/lib/services/index.d.ts

@@ -0,0 +1,13 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+export * from './AutoRenewService';
+export * from './SyncStorageService';

package/lib/types/OktaAuthOptions.d.ts

@@ -15,7 +15,11 @@ import { HttpRequestClient } from './http';
 import { AuthState } from './AuthState';
 import { TransactionManagerOptions } from './Transaction';
 import { FlowIdentifier } from '../idx/types';
+import { ServiceManagerOptions } from './Service';
 import OktaAuth from '../OktaAuth';
+export interface IsAuthenticatedOptions {
+    onExpiredToken?: 'renew' | 'remove' | 'none';
+}
 export interface TokenManagerOptions {
     autoRenew?: boolean;
     autoRemove?: boolean;
@@ -59,6 +63,7 @@ export interface OktaAuthOptions extends CustomUrls {
     restoreOriginalUri?: (oktaAuth: OktaAuth, originalUri?: string) => Promise<void>;
     devMode?: boolean;
     storageManager?: StorageManagerOptions;
+    services?: ServiceManagerOptions;
     transactionManager?: TransactionManagerOptions;
     flow?: FlowIdentifier;
     codeChallenge?: string;

package/lib/types/Service.d.ts

@@ -0,0 +1,23 @@
+export interface ServiceManagerInterface {
+    isLeader(): boolean;
+    start(): void;
+    stop(): void;
+    getService(name: string): ServiceInterface | undefined;
+}
+export interface ServiceInterface {
+    start(): void;
+    stop(): void;
+    isStarted(): boolean;
+    canStart(): boolean;
+    requiresLeadership(): boolean;
+}
+export interface AutoRenewServiceOptions {
+    autoRenew?: boolean;
+    autoRemove?: boolean;
+}
+export interface SyncStorageServiceOptions {
+    syncStorage?: boolean;
+}
+export declare type ServiceManagerOptions = AutoRenewServiceOptions & SyncStorageServiceOptions & {
+    broadcastChannelName?: string;
+};

package/lib/types/Storage.d.ts

@@ -40,9 +40,13 @@ export interface TransactionStorage extends StorageProvider {
     setStorage(obj: TransactionMeta): void;
     getStorage(): TransactionMeta;
 }
+export interface SavedIdxResponse {
+    rawIdxResponse: RawIdxResponse;
+    requestDidSucceed?: boolean;
+}
 export interface IdxResponseStorage extends StorageProvider {
-    setStorage(obj: RawIdxResponse): void;
-    getStorage(): RawIdxResponse;
+    setStorage(obj: SavedIdxResponse): void;
+    getStorage(): SavedIdxResponse;
 }
 export interface StorageOptions extends CookieOptions {
     storageType?: StorageType;
@@ -68,9 +72,7 @@ export interface BrowserStorageUtil extends StorageUtil {
     getCookieStorage(options?: StorageOptions): CookieStorage;
     testStorage(storage: any): boolean;
     storage: Cookies;
-    inMemoryStore: {
-        string?: string;
-    };
+    inMemoryStore: Record<string, unknown>;
     getHttpCache(options?: StorageOptions): StorageProvider;
     getPKCEStorage(options?: StorageOptions): PKCEStorage;
 }

package/lib/types/api.d.ts

@@ -17,6 +17,7 @@ import { CustomUrls, OktaAuthOptions } from './OktaAuthOptions';
 import { StorageManager } from '../StorageManager';
 import TransactionManager from '../TransactionManager';
 import { TokenManagerInterface } from './TokenManager';
+import { ServiceManagerInterface } from './Service';
 import { OktaUserAgent } from '../OktaUserAgent';
 import { AuthenticationOptions, RegistrationOptions as IdxRegistrationOptions, PasswordRecoveryOptions, AccountUnlockOptions, ProceedOptions, CancelOptions, IdxOptions, IdxTransaction, IdxTransactionMeta, EmailVerifyCallbackResponse, IdxAuthenticator, ChallengeData, ActivationData, WebauthnEnrollValues, WebauthnVerificationValues, FlowIdentifier, IdxPollOptions } from '../idx/types';
 import { InteractOptions, InteractResponse } from '../idx/interact';
@@ -31,6 +32,7 @@ export interface OktaAuthInterface {
     storageManager: StorageManager;
     transactionManager: TransactionManager;
     tokenManager: TokenManagerInterface;
+    serviceManager: ServiceManagerInterface;
     idx: IdxAPI;
     features: FeaturesAPI;
     token: TokenAPI;
@@ -180,13 +182,14 @@ export interface SigninOptions extends SupportsCodeFlow, AuthenticationOptions {
         deviceToken?: string;
     };
     sendFingerprint?: boolean;
+    stateToken?: string;
 }
 export interface SigninWithRedirectOptions extends SigninOptions, TokenParams {
     originalUri?: string;
 }
 export interface SigninWithCredentialsOptions extends SigninOptions {
-    username: string;
-    password: string;
+    username?: string;
+    password?: string;
 }
 export interface SigninAPI {
     signIn(opts: SigninOptions): Promise<AuthTransaction>;
@@ -229,9 +232,7 @@ export interface IdxAPI {
     unlockAccount: (options?: AccountUnlockOptions) => Promise<IdxTransaction>;
     poll: (options?: IdxPollOptions) => Promise<IdxTransaction>;
     start: (options?: IdxOptions) => Promise<IdxTransaction>;
-    canProceed(options?: {
-        state?: string;
-    }): boolean;
+    canProceed(options?: ProceedOptions): boolean;
     proceed: (options?: ProceedOptions) => Promise<IdxTransaction>;
     cancel: (options?: CancelOptions) => Promise<IdxTransaction>;
     getFlow(): FlowIdentifier | undefined;

package/lib/types/index.d.ts

@@ -22,4 +22,5 @@ export * from './OktaAuthOptions';
 export * from './Storage';
 export * from './Token';
 export * from './TokenManager';
+export * from './Service';
 export * from './UserClaims';

package/package.json

@@ -2,13 +2,23 @@
   "private": false,
   "name": "@okta/okta-auth-js",
   "description": "The Okta Auth SDK",
-  "version": "6.1.0",
+  "version": "6.3.1",
   "homepage": "https://github.com/okta/okta-auth-js",
   "license": "Apache-2.0",
   "main": "cjs/index.js",
-  "module": "esm/index.js",
+  "module": "esm/esm.node.mjs",
   "browser": "dist/okta-auth-js.umd.js",
   "types": "lib/index.d.ts",
+  "exports": {
+    "node": {
+      "import": "./esm/esm.node.mjs",
+      "require": "./cjs/index.js"
+    },
+    "browser": {
+      "import": "./esm/esm.browser.js"
+    },
+    "default": "./dist/okta-auth-js.umd.js"
+  },
   "repository": {
     "type": "git",
     "url": "https://github.com/okta/okta-auth-js.git"
@@ -20,8 +30,9 @@
     "banners": "node ./scripts/maintain-banners.js",
     "clean": "yarn clean:build",
     "clean:build": "rimraf build && rimraf build2",
-    "dev": "webpack --config webpack.dev.config.js",
-    "lint": "eslint .",
+    "dev:esm": "NODE_ENV=development yarn build:esm --watch",
+    "dev:web": "cross-env NODE_ENV=development webpack --config webpack.config.js --watch",
+    "lint": "eslint --ext .js,.ts,.jsx .",
     "tsd": "tsd",
     "lint:report": "eslint -f checkstyle -o ./build2/reports/lint/eslint-checkstyle-result.xml .",
     "validate": "yarn tsc --noEmit && yarn lint && yarn workspace @okta/test.app validate && yarn tsd",
@@ -36,6 +47,9 @@
     "test:report": "yarn test --ci --silent || true",
     "test:samples": "yarn workspace @okta/test.e2e.samples start",
     "test:integration": "jest --config ./jest.integration.js",
+    "test:bundle:esm:browser": "cross-env BUNDLE_ENV=browser NODE_OPTIONS=--experimental-vm-modules jest --config ./jest.esm.mjs",
+    "test:bundle:esm:node": "cross-env BUNDLE_ENV=node NODE_OPTIONS=--experimental-vm-modules jest --config ./jest.esm.mjs",
+    "test:bundle:cjs": "cross-env BUNDLE_ENV=node jest --config ./jest.cjs.js",
     "build": "node scripts/build.js",
     "build:cdn": "cross-env NODE_ENV=production webpack --config webpack.cdn.config.js",
     "build:web": "cross-env NODE_ENV=production webpack --config webpack.config.js",
@@ -74,10 +88,11 @@
     "@peculiar/webcrypto": "1.1.6",
     "Base64": "1.1.0",
     "atob": "^2.1.2",
+    "broadcast-channel": "^4.10.0",
     "btoa": "^1.2.1",
     "core-js": "^3.6.5",
     "cross-fetch": "^3.1.5",
-    "js-cookie": "2.2.1",
+    "js-cookie": "^3.0.1",
     "jsonpath-plus": "^6.0.1",
     "node-cache": "^5.1.2",
     "p-cancelable": "^2.0.0",
@@ -99,7 +114,7 @@
     "@rollup/plugin-alias": "^3.1.8",
     "@rollup/plugin-babel": "^5.3.0",
     "@rollup/plugin-replace": "^3.0.0",
-    "@types/jest": "^25.2.3",
+    "@types/jest": "^27.4.0",
     "@types/node": "^14.0.3",
     "@typescript-eslint/eslint-plugin": "^2.34.0",
     "@typescript-eslint/parser": "^2.34.0",
@@ -119,7 +134,7 @@
     "globby": "^6.1.0",
     "istanbul-instrumenter-loader": "^3.0.1",
     "jasmine-ajax": "^4.0.0",
-    "jest": "^26.6.3",
+    "jest": "^27.5.1",
     "jest-junit": "^9.0.0",
     "json-loader": "0.5.4",
     "lodash": "4.17.20",
@@ -128,7 +143,7 @@
     "rollup-plugin-license": "^2.6.0",
     "rollup-plugin-typescript2": "^0.30.0",
     "shelljs": "0.8.4",
-    "ts-jest": "^26.4.3",
+    "ts-jest": "^27.1.3",
     "ts-loader": "^9.2.6",
     "tsd": "^0.17.0",
     "typescript": "^4.2.3",
@@ -172,8 +187,8 @@
     }
   },
   "okta": {
-    "commitSha": "1478c1930c4034d0033f5af740dc996cbe58ceb5",
-    "fullVersion": "6.1.0-g1478c19",
-    "testedSha": "fe1efe5ae03fe0fce892e1f2738f6fa3fa448c5a"
+    "commitSha": "9c47e4474ff9b450844f599b8801569269e5b417",
+    "fullVersion": "6.3.1-g9c47e44",
+    "testedSha": "4295de6928d73ba8dade782e3c2ad80f1d21798a"
   }
 }

package/cjs/services/TokenService.js

@@ -1,111 +0,0 @@
-"use strict";
-
-exports.TokenService = void 0;
-
-var _TokenManager = require("../TokenManager");
-
-var _errors = require("../errors");
-
-var _features = require("../features");
-
-/*!
- * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
- * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
- *
- * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
- * Unless required by applicable law or agreed to in writing, software
- * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
- * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
- * 
- * See the License for the specific language governing permissions and limitations under the License.
- */
-
-/* global window */
-function shouldThrottleRenew(renewTimeQueue) {
-  let res = false;
-  renewTimeQueue.push(Date.now());
-
-  if (renewTimeQueue.length >= 10) {
-    // get and remove first item from queue
-    const firstTime = renewTimeQueue.shift();
-    const lastTime = renewTimeQueue[renewTimeQueue.length - 1];
-    res = lastTime - firstTime < 30 * 1000;
-  }
-
-  return res;
-}
-
-class TokenService {
-  constructor(tokenManager, options = {}) {
-    this.tokenManager = tokenManager;
-    this.options = options;
-    this.storageListener = undefined;
-    this.onTokenExpiredHandler = undefined;
-  }
-
-  start() {
-    const renewTimeQueue = [];
-
-    this.onTokenExpiredHandler = key => {
-      if (this.options.autoRenew) {
-        if (shouldThrottleRenew(renewTimeQueue)) {
-          const error = new _errors.AuthSdkError('Too many token renew requests');
-          this.tokenManager.emitError(error);
-        } else {
-          this.tokenManager.renew(key).catch(() => {}); // Renew errors will emit an "error" event 
-        }
-      } else if (this.options.autoRemove) {
-        this.tokenManager.remove(key);
-      }
-    };
-
-    this.tokenManager.on(_TokenManager.EVENT_EXPIRED, this.onTokenExpiredHandler);
-    this.tokenManager.setExpireEventTimeoutAll();
-
-    if (this.options.syncStorage && (0, _features.isBrowser)()) {
-      // Sync authState cross multiple tabs when localStorage is used as the storageProvider
-      // A StorageEvent is sent to a window when a storage area it has access to is changed 
-      // within the context of another document.
-      // https://developer.mozilla.org/en-US/docs/Web/API/StorageEvent
-      this.storageListener = ({
-        key,
-        newValue,
-        oldValue
-      }) => {
-        const handleCrossTabsStorageChange = () => {
-          this.tokenManager.resetExpireEventTimeoutAll();
-          this.tokenManager.emitEventsForCrossTabsStorageUpdate(newValue, oldValue);
-        }; // Skip if:
-        // not from localStorage.clear (event.key is null)
-        // event.key is not the storageKey
-        // oldValue === newValue
-
-
-        if (key && (key !== this.options.storageKey || newValue === oldValue)) {
-          return;
-        } // LocalStorage cross tabs update is not synced in IE, set a 1s timer by default to read latest value
-        // https://stackoverflow.com/questions/24077117/localstorage-in-win8-1-ie11-does-not-synchronize
-
-
-        this.syncTimeout = setTimeout(() => handleCrossTabsStorageChange(), this.options._storageEventDelay);
-      };
-
-      window.addEventListener('storage', this.storageListener);
-    }
-  }
-
-  stop() {
-    this.tokenManager.clearExpireEventTimeoutAll();
-    this.tokenManager.off(_TokenManager.EVENT_EXPIRED, this.onTokenExpiredHandler);
-
-    if (this.options.syncStorage && (0, _features.isBrowser)()) {
-      // eslint-disable-next-line @typescript-eslint/no-non-null-assertion
-      window.removeEventListener('storage', this.storageListener);
-      clearTimeout(this.syncTimeout);
-    }
-  }
-
-}
-
-exports.TokenService = TokenService;
-//# sourceMappingURL=TokenService.js.map

package/cjs/services/TokenService.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../../lib/services/TokenService.ts"],"names":["shouldThrottleRenew","renewTimeQueue","res","push","Date","now","length","firstTime","shift","lastTime","TokenService","constructor","tokenManager","options","storageListener","undefined","onTokenExpiredHandler","start","key","autoRenew","error","AuthSdkError","emitError","renew","catch","autoRemove","remove","on","EVENT_EXPIRED","setExpireEventTimeoutAll","syncStorage","newValue","oldValue","handleCrossTabsStorageChange","resetExpireEventTimeoutAll","emitEventsForCrossTabsStorageUpdate","storageKey","syncTimeout","setTimeout","_storageEventDelay","window","addEventListener","stop","clearExpireEventTimeoutAll","off","removeEventListener","clearTimeout"],"mappings":";;;;AAcA;;AACA;;AACA;;AAhBA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;AACA;;AAGA;AAMA,SAASA,mBAAT,CAA6BC,cAA7B,EAA6C;AAC3C,MAAIC,GAAG,GAAG,KAAV;AACAD,EAAAA,cAAc,CAACE,IAAf,CAAoBC,IAAI,CAACC,GAAL,EAApB;;AACA,MAAIJ,cAAc,CAACK,MAAf,IAAyB,EAA7B,EAAiC;AAC/B;AACA,UAAMC,SAAS,GAAGN,cAAc,CAACO,KAAf,EAAlB;AACA,UAAMC,QAAQ,GAAGR,cAAc,CAACA,cAAc,CAACK,MAAf,GAAwB,CAAzB,CAA/B;AACAJ,IAAAA,GAAG,GAAGO,QAAQ,GAAGF,SAAX,GAAuB,KAAK,IAAlC;AACD;;AACD,SAAOL,GAAP;AACD;;AAEM,MAAMQ,YAAN,CAAmB;AAOxBC,EAAAA,WAAW,CAACC,YAAD,EAA6BC,OAA4B,GAAG,EAA5D,EAAgE;AACzE,SAAKD,YAAL,GAAoBA,YAApB;AACA,SAAKC,OAAL,GAAeA,OAAf;AACA,SAAKC,eAAL,GAAuBC,SAAvB;AACA,SAAKC,qBAAL,GAA6BD,SAA7B;AACD;;AAEDE,EAAAA,KAAK,GAAG;AACN,UAAMhB,cAAc,GAAG,EAAvB;;AACA,SAAKe,qBAAL,GAA8BE,GAAD,IAAS;AACpC,UAAI,KAAKL,OAAL,CAAaM,SAAjB,EAA4B;AAC1B,YAAInB,mBAAmB,CAACC,cAAD,CAAvB,EAAyC;AACvC,gBAAMmB,KAAK,GAAG,IAAIC,oBAAJ,CAAiB,+BAAjB,CAAd;AACA,eAAKT,YAAL,CAAkBU,SAAlB,CAA4BF,KAA5B;AACD,SAHD,MAGO;AACL,eAAKR,YAAL,CAAkBW,KAAlB,CAAwBL,GAAxB,EAA6BM,KAA7B,CAAmC,MAAM,CAAE,CAA3C,EADK,CACyC;AAC/C;AACF,OAPD,MAOO,IAAI,KAAKX,OAAL,CAAaY,UAAjB,EAA6B;AAClC,aAAKb,YAAL,CAAkBc,MAAlB,CAAyBR,GAAzB;AACD;AACF,KAXD;;AAYA,SAAKN,YAAL,CAAkBe,EAAlB,CAAqBC,2BAArB,EAAoC,KAAKZ,qBAAzC;AAEA,SAAKJ,YAAL,CAAkBiB,wBAAlB;;AAEA,QAAI,KAAKhB,OAAL,CAAaiB,WAAb,IAA4B,0BAAhC,EAA6C;AAC3C;AACA;AACA;AACA;AAEA,WAAKhB,eAAL,GAAuB,CAAC;AAAEI,QAAAA,GAAF;AAAOa,QAAAA,QAAP;AAAiBC,QAAAA;AAAjB,OAAD,KAA+C;AACpE,cAAMC,4BAA4B,GAAG,MAAM;AACzC,eAAKrB,YAAL,CAAkBsB,0BAAlB;AACA,eAAKtB,YAAL,CAAkBuB,mCAAlB,CAAsDJ,QAAtD,EAAgEC,QAAhE;AACD,SAHD,CADoE,CAMpE;AACA;AACA;AACA;;;AACA,YAAId,GAAG,KAAKA,GAAG,KAAK,KAAKL,OAAL,CAAauB,UAArB,IAAmCL,QAAQ,KAAKC,QAArD,CAAP,EAAuE;AACrE;AACD,SAZmE,CAcpE;AACA;;;AACA,aAAKK,WAAL,GAAmBC,UAAU,CAAC,MAAML,4BAA4B,EAAnC,EAAuC,KAAKpB,OAAL,CAAa0B,kBAApD,CAA7B;AACD,OAjBD;;AAmBAC,MAAAA,MAAM,CAACC,gBAAP,CAAwB,SAAxB,EAAmC,KAAK3B,eAAxC;AACD;AACF;;AAED4B,EAAAA,IAAI,GAAG;AACL,SAAK9B,YAAL,CAAkB+B,0BAAlB;AACA,SAAK/B,YAAL,CAAkBgC,GAAlB,CAAsBhB,2BAAtB,EAAqC,KAAKZ,qBAA1C;;AACA,QAAI,KAAKH,OAAL,CAAaiB,WAAb,IAA4B,0BAAhC,EAA6C;AAC3C;AACAU,MAAAA,MAAM,CAACK,mBAAP,CAA2B,SAA3B,EAAsC,KAAK/B,eAA3C;AACAgC,MAAAA,YAAY,CAAC,KAAKT,WAAN,CAAZ;AACD;AACF;;AArEuB","sourcesContent":["/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * \n * See the License for the specific language governing permissions and limitations under the License.\n */\n\n\n/* global window */\nimport { TokenManager, EVENT_EXPIRED } from '../TokenManager';\nimport { AuthSdkError } from '../errors';\nimport { isBrowser } from '../features';\nimport { TokenManagerOptions } from '../types';\n\nfunction shouldThrottleRenew(renewTimeQueue) {\n  let res = false;\n  renewTimeQueue.push(Date.now());\n  if (renewTimeQueue.length >= 10) {\n    // get and remove first item from queue\n    const firstTime = renewTimeQueue.shift();\n    const lastTime = renewTimeQueue[renewTimeQueue.length - 1];\n    res = lastTime - firstTime < 30 * 1000;\n  }\n  return res;\n}\n\nexport class TokenService {\n  private tokenManager: TokenManager;\n  private options: TokenManagerOptions;\n  private storageListener?: (event: StorageEvent) => void;\n  private onTokenExpiredHandler?: (key: string) => void;\n  private syncTimeout: unknown;\n\n  constructor(tokenManager: TokenManager, options: TokenManagerOptions = {}) {\n    this.tokenManager = tokenManager;\n    this.options = options;\n    this.storageListener = undefined;\n    this.onTokenExpiredHandler = undefined;\n  }\n\n  start() {\n    const renewTimeQueue = [];\n    this.onTokenExpiredHandler = (key) => {\n      if (this.options.autoRenew) {\n        if (shouldThrottleRenew(renewTimeQueue)) {\n          const error = new AuthSdkError('Too many token renew requests');\n          this.tokenManager.emitError(error);\n        } else {\n          this.tokenManager.renew(key).catch(() => {}); // Renew errors will emit an \"error\" event \n        }\n      } else if (this.options.autoRemove) {\n        this.tokenManager.remove(key);\n      }\n    };\n    this.tokenManager.on(EVENT_EXPIRED, this.onTokenExpiredHandler);\n\n    this.tokenManager.setExpireEventTimeoutAll();\n\n    if (this.options.syncStorage && isBrowser()) {\n      // Sync authState cross multiple tabs when localStorage is used as the storageProvider\n      // A StorageEvent is sent to a window when a storage area it has access to is changed \n      // within the context of another document.\n      // https://developer.mozilla.org/en-US/docs/Web/API/StorageEvent\n\n      this.storageListener = ({ key, newValue, oldValue }: StorageEvent) => {\n        const handleCrossTabsStorageChange = () => {\n          this.tokenManager.resetExpireEventTimeoutAll();\n          this.tokenManager.emitEventsForCrossTabsStorageUpdate(newValue, oldValue);\n        };\n\n        // Skip if:\n        // not from localStorage.clear (event.key is null)\n        // event.key is not the storageKey\n        // oldValue === newValue\n        if (key && (key !== this.options.storageKey || newValue === oldValue)) {\n          return;\n        }\n\n        // LocalStorage cross tabs update is not synced in IE, set a 1s timer by default to read latest value\n        // https://stackoverflow.com/questions/24077117/localstorage-in-win8-1-ie11-does-not-synchronize\n        this.syncTimeout = setTimeout(() => handleCrossTabsStorageChange(), this.options._storageEventDelay);\n      };\n\n      window.addEventListener('storage', this.storageListener);\n    }\n  }\n\n  stop() {\n    this.tokenManager.clearExpireEventTimeoutAll();\n    this.tokenManager.off(EVENT_EXPIRED, this.onTokenExpiredHandler);\n    if (this.options.syncStorage && isBrowser()) {\n      // eslint-disable-next-line @typescript-eslint/no-non-null-assertion\n      window.removeEventListener('storage', this.storageListener!);\n      clearTimeout(this.syncTimeout as any);\n    }\n  }\n}"],"file":"TokenService.js"}