@okta/okta-auth-js 7.1.1 → 7.2.0

package/esm/node/oidc/util/defaultEnrollAuthenticatorParams.js

@@ -0,0 +1,31 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * 
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+
+import { generateState } from './oauth.js';
+import { isBrowser } from '../../features.js';
+import { removeNils } from '../../util/object.js';
+
+function getDefaultEnrollAuthenticatorParams(sdk) {
+    const { clientId, redirectUri, responseMode, state, } = sdk.options;
+    const defaultRedirectUri = isBrowser() ? window.location.href : undefined;
+    return removeNils({
+        clientId,
+        redirectUri: redirectUri || defaultRedirectUri,
+        responseMode,
+        state: state || generateState(),
+        responseType: 'none',
+        prompt: 'enroll_authenticator',
+    });
+}
+
+export { getDefaultEnrollAuthenticatorParams };
+//# sourceMappingURL=defaultEnrollAuthenticatorParams.js.map

package/esm/node/oidc/util/defaultEnrollAuthenticatorParams.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"defaultEnrollAuthenticatorParams.js","sources":["../../../../../lib/oidc/util/defaultEnrollAuthenticatorParams.ts"],"sourcesContent":["\n/* global window */\n/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n *\n * See the License for the specific language governing permissions and limitations under the License.\n *\n */\nimport { generateState } from './oauth';\nimport { OktaAuthOAuthInterface, TokenParams } from '../types';\nimport { isBrowser } from '../../features';\nimport { removeNils } from '../../util';\n\nexport function getDefaultEnrollAuthenticatorParams(sdk: OktaAuthOAuthInterface): TokenParams {\n  const {\n    clientId,\n    redirectUri,\n    responseMode,\n    state,\n  } = sdk.options;\n  const defaultRedirectUri = isBrowser() ? window.location.href : undefined;\n  return removeNils({\n    clientId,\n    redirectUri: redirectUri || defaultRedirectUri,\n    responseMode,\n    state: state || generateState(),\n    responseType: 'none',\n    prompt: 'enroll_authenticator',\n  });\n}"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAmBM,CAAU,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAmC,CAAC,CAAA,CAAA,CAA2B,CAAA,CAAA,CAAA;AAC7E,CAAA,CAAA,CAAA,CAAA,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CACJ,CAAQ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CACR,WAAW,CACX,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAY,CACZ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAK,CACN,CAAA,CAAA,CAAA,CAAA,CAAG,CAAG,CAAA,CAAA,CAAC,OAAO,CAAC;AAChB,CAAA,CAAA,CAAA,CAAA,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAkB,CAAG,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAS,CAAE,CAAA,CAAA,CAAA,CAAG,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAQ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAI,CAAA,CAAA,CAAA,CAAA,CAAA,CAAG,SAAS,CAAC;AAC1E,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAO,UAAU,CAAC,CAAA;QAChB,CAAQ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QACR,CAAW,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAW,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAI,CAAkB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QAC9C,CAAY,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;AACZ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAK,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAK,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAI,aAAa,CAAE,CAAA,CAAA;AAC/B,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAY,EAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;AACpB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,EAAE,CAAsB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;AAC/B,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAC;AACL,CAAA;;"}

package/esm/node/oidc/util/enrollAuthenticatorMeta.js

@@ -0,0 +1,33 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * 
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+
+import { getOAuthUrls } from './oauth.js';
+
+function createEnrollAuthenticatorMeta(sdk, params) {
+    const issuer = sdk.options.issuer;
+    const urls = getOAuthUrls(sdk, params);
+    const oauthMeta = {
+        issuer,
+        urls,
+        clientId: params.clientId,
+        redirectUri: params.redirectUri,
+        responseType: params.responseType,
+        responseMode: params.responseMode,
+        state: params.state,
+        acrValues: params.acrValues,
+        enrollAmrValues: params.enrollAmrValues,
+    };
+    return oauthMeta;
+}
+
+export { createEnrollAuthenticatorMeta };
+//# sourceMappingURL=enrollAuthenticatorMeta.js.map

package/esm/node/oidc/util/enrollAuthenticatorMeta.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"enrollAuthenticatorMeta.js","sources":["../../../../../lib/oidc/util/enrollAuthenticatorMeta.ts"],"sourcesContent":["/* eslint-disable @typescript-eslint/no-non-null-assertion */\nimport { OAuthTransactionMeta, OktaAuthOAuthInterface, EnrollAuthenticatorOptions } from '../types';\nimport { getOAuthUrls } from './oauth';\n\nexport function createEnrollAuthenticatorMeta(\n  sdk: OktaAuthOAuthInterface, \n  params: EnrollAuthenticatorOptions\n): OAuthTransactionMeta {\n  const issuer = sdk.options.issuer!;\n  const urls = getOAuthUrls(sdk, params);\n  const oauthMeta: OAuthTransactionMeta = {\n    issuer,\n    urls,\n    clientId: params.clientId!,\n    redirectUri: params.redirectUri!,\n    responseType: params.responseType!,\n    responseMode: params.responseMode!,\n    state: params.state!,\n    acrValues: params.acrValues,\n    enrollAmrValues: params.enrollAmrValues,\n  };\n\n  return oauthMeta;\n}\n"],"names":[],"mappings":";;;;;;;;;;;;;;AAIgB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAA6B,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAC3C,CAA2B,CAAA,CAAA,CAAA,CAC3B,MAAkC,CAAA,CAAA,CAAA;AAElC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,MAAM,CAAG,CAAA,CAAA,CAAA,CAAA,CAAG,CAAC,CAAO,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,MAAO,CAAC;CACnC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,IAAI,CAAG,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAY,CAAC,CAAG,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAC;AACvC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,SAAS,CAAyB,CAAA,CAAA,CAAA;QACtC,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QACN,CAAI,CAAA,CAAA,CAAA,CAAA;QACJ,CAAQ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAS,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QAC1B,CAAW,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAY,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QAChC,CAAY,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAa,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QAClC,CAAY,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAa,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QAClC,CAAK,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA;QACpB,CAAS,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAS,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;QAC3B,CAAe,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,CAAe,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA;KACxC,CAAC;AAEF,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAO,SAAS,CAAC;AACnB,CAAA;;"}

package/esm/node/oidc/util/prepareEnrollAuthenticatorParams.js

@@ -0,0 +1,34 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * 
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+
+import AuthSdkError from '../../errors/AuthSdkError.js';
+import { getDefaultEnrollAuthenticatorParams } from './defaultEnrollAuthenticatorParams.js';
+
+function prepareParams(params) {
+    params = Object.assign(Object.assign({}, params), {
+        responseType: 'none', prompt: 'enroll_authenticator', maxAge: 0 });
+    if (!params.enrollAmrValues) {
+        throw new AuthSdkError('enroll_amr_values must be specified');
+    }
+    if (!params.acrValues) {
+        throw new AuthSdkError('acr_values must be specified');
+    }
+    delete params.scopes;
+    delete params.nonce;
+    return params;
+}
+function prepareEnrollAuthenticatorParams(sdk, options) {
+    return prepareParams(Object.assign(Object.assign({}, getDefaultEnrollAuthenticatorParams(sdk)), options));
+}
+
+export { prepareEnrollAuthenticatorParams };
+//# sourceMappingURL=prepareEnrollAuthenticatorParams.js.map

package/esm/node/oidc/util/prepareEnrollAuthenticatorParams.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prepareEnrollAuthenticatorParams.js","sources":["../../../../../lib/oidc/util/prepareEnrollAuthenticatorParams.ts"],"sourcesContent":["/* eslint-disable complexity */\n/*!\n * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.\n * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the \"License.\")\n *\n * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS, WITHOUT\n * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n *\n * See the License for the specific language governing permissions and limitations under the License.\n *\n */\nimport { AuthSdkError } from '../../errors';\nimport { OktaAuthOAuthInterface, EnrollAuthenticatorOptions } from '../types';\nimport { getDefaultEnrollAuthenticatorParams } from './defaultEnrollAuthenticatorParams';\n\nfunction prepareParams(\n  params: EnrollAuthenticatorOptions\n): EnrollAuthenticatorOptions {\n  params = {\n    ...params,\n    // forced params:\n    responseType: 'none',\n    prompt: 'enroll_authenticator',\n    maxAge: 0,\n  };\n\n  if (!params.enrollAmrValues) {\n    throw new AuthSdkError('enroll_amr_values must be specified');\n  }\n  if (!params.acrValues) {\n    // `acr_values` is required and should equal 'urn:okta:2fa:any:ifpossible'\n    // But this can be changed in future\n    throw new AuthSdkError('acr_values must be specified');\n  }\n\n  // `scope`, `nonce` must be omitted\n  delete params.scopes;\n  delete params.nonce;\n\n  return params;\n}\n\n// Prepares params for a call to /authorize\nexport function prepareEnrollAuthenticatorParams(\n  sdk: OktaAuthOAuthInterface,\n  options: EnrollAuthenticatorOptions\n): EnrollAuthenticatorOptions {\n  return prepareParams({\n    ...getDefaultEnrollAuthenticatorParams(sdk),\n    ...options\n  });\n}\n"],"names":[],"mappings":";;;;;;;;;;;;;;;AAiBA,CAAS,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAa,CACpB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAkC,CAAA,CAAA,CAAA;AAElC,CAAA,CAAA,CAAA,CAAA,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,gCACD,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,CAAA,CAAA,CAAA,CAAA;QAET,CAAY,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CACpB,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAsB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAC9B,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAE,CAAC,CAAA,CAAA,CACV,CAAC;AAEF,CAAA,CAAA,CAAA,CAAA,CAAI,CAAA,CAAA,CAAA,CAAC,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,eAAe,CAAE,CAAA,CAAA;AAC3B,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,MAAM,CAAI,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAY,CAAC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAqC,CAAC,CAAC;AAC/D,CAAA,CAAA,CAAA,CAAA,CAAA;AACD,CAAA,CAAA,CAAA,CAAA,CAAI,CAAA,CAAA,CAAA,CAAC,CAAM,CAAA,CAAA,CAAA,CAAA,CAAA,CAAC,SAAS,CAAE,CAAA,CAAA;AAGrB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,MAAM,CAAI,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAY,CAAC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAA8B,CAAC,CAAC;AACxD,CAAA,CAAA,CAAA,CAAA,CAAA;IAGD,CAAO,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,CAAC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,CAAC;IACrB,CAAO,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAM,CAAC,CAAA,CAAA,CAAA,CAAA,CAAK,CAAC;AAEpB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAO,MAAM,CAAC;AAChB,CAAC;AAGe,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAgC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAC9C,CAA2B,CAAA,CAAA,CAAA,CAC3B,OAAmC,CAAA,CAAA,CAAA;CAEnC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAO,aAAa,gCACf,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAmC,CAAC,CAAG,CAAA,CAAA,CAAC,CAAA,CACxC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAO,CAAA,CACV,CAAC;AACL,CAAA;;"}

package/esm/node/package.json

@@ -1,5 +1,5 @@
 {
     "name": "@okta/okta-auth-js",
-    "version": "7.1.1",
+    "version": "7.2.0",
     "type": "module"
 }

package/esm/node/util/jsonpath.js

@@ -0,0 +1,21 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * 
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+
+import { JSONPath } from 'jsonpath-plus';
+
+function jsonpath(options) {
+    return JSONPath(Object.assign({
+        preventEval: true }, options));
+}
+
+export { jsonpath };
+//# sourceMappingURL=jsonpath.js.map

package/esm/node/util/jsonpath.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jsonpath.js","sources":["../../../../lib/util/jsonpath.ts"],"sourcesContent":["import { JSONPath, JSONPathOptions } from 'jsonpath-plus';\n\nexport function jsonpath(options: JSONPathOptions): any {\n  // eslint-disable-next-line new-cap\n  return JSONPath({\n    // Disable javascript evaluation by default\n\tpreventEval: true, ...options, });\n}\n"],"names":[],"mappings":";;;;;;;;;;;;;;AAEM,CAAU,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAQ,CAAC,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAwB,CAAA,CAAA,CAAA;AAE/C,CAAA,CAAA,CAAA,CAAA,OAAO,CAAQ,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,MAAA,CAAA,CAAA;AAEhB,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,CAAW,EAAE,CAAI,CAAA,CAAA,CAAA,CAAA,CAAK,EAAA,CAAO,CAAA,CAAA,CAAA,CAAA,CAAA,CAAA,EAAI,CAAC;AACnC,CAAA;;"}

package/package.json

@@ -2,7 +2,7 @@
   "private": false,
   "name": "@okta/okta-auth-js",
   "description": "The Okta Auth SDK",
-  "version": "7.1.1",
+  "version": "7.2.0",
   "homepage": "https://github.com/okta/okta-auth-js",
   "license": "Apache-2.0",
   "main": "cjs/exports/default.js",
@@ -215,8 +215,8 @@
     "shelljs": "0.8.5",
     "ts-jest": "^28.0.2",
     "tsd": "^0.17.0",
-    "typedoc": "^0.22.13",
-    "typedoc-plugin-markdown": "^3.11.14",
+    "typedoc": "^0.23.19",
+    "typedoc-plugin-markdown": "^3.13.6",
     "typescript": "^4.7.3",
     "webpack": "^5.60.0",
     "webpack-bundle-analyzer": "^4.5.0",
@@ -234,7 +234,7 @@
     "directory": "test/types"
   },
   "okta": {
-    "commitSha": "75c5d434ac7f59d64575a88b84e4682a9ca9eeb1",
-    "fullVersion": "7.1.1-g75c5d43"
+    "commitSha": "2c92f04e2703f5eae10ff84fc4f46bbbcd500777",
+    "fullVersion": "7.2.0-g2c92f04"
   }
 }

package/types/lib/core/types/api.d.ts

@@ -12,4 +12,5 @@ export interface OktaAuthCoreInterface<M extends PKCETransactionMeta = PKCETrans
     start(): Promise<void>;
     stop(): Promise<void>;
     handleLoginRedirect(tokens?: Tokens, originalUri?: string): Promise<void>;
+    handleRedirect(originalUri?: string): Promise<void>;
 }

package/types/lib/exports/default.d.ts

@@ -1,7 +1,7 @@
 import { OktaAuthIdxOptions } from '../idx';
 export interface OktaAuthOptions extends OktaAuthIdxOptions {
 }
-declare const WithAuthn: import("./common").OktaAuthConstructor<import("../idx").OktaAuthIdxInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthOptions, import("../idx").IdxTransactionManagerInterface> & import("./common").OktaAuthCoreInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthOptions, import("../idx").IdxTransactionManagerInterface>> & import("./common").OktaAuthConstructor<import("../myaccount").OktaAuthMyAccountInterface<import("./common").PKCETransactionMeta, import("./common").OAuthStorageManagerInterface<import("./common").PKCETransactionMeta>, import("./common").OktaAuthOAuthOptions>> & import("./common").OktaAuthConstructor<import("../authn").OktaAuthTxInterface<import("./common").StorageManagerInterface, import("./common").OktaAuthHttpOptions>>;
+declare const WithAuthn: import("../idx").OktaAuthIdxConstructor<import("../idx").OktaAuthIdxInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthOptions, import("../idx").IdxTransactionManagerInterface> & import("./common").OktaAuthCoreInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthOptions, import("../idx").IdxTransactionManagerInterface>> & import("./common").OktaAuthConstructor<import("../myaccount").OktaAuthMyAccountInterface<import("./common").PKCETransactionMeta, import("./common").OAuthStorageManagerInterface<import("./common").PKCETransactionMeta>, import("./common").OktaAuthOAuthOptions>> & import("./common").OktaAuthConstructor<import("../authn").OktaAuthTxInterface<import("./common").StorageManagerInterface, import("./common").OktaAuthHttpOptions>>;
 declare class OktaAuth extends WithAuthn {
     constructor(options: OktaAuthOptions);
 }

package/types/lib/exports/idx.d.ts

@@ -1,5 +1,5 @@
 import { OktaAuthIdxOptions } from '../idx';
-declare const OktaAuthIdx: import("./common").OktaAuthConstructor<import("../idx").OktaAuthIdxInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthIdxOptions, import("../idx").IdxTransactionManagerInterface> & import("./common").OktaAuthCoreInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthIdxOptions, import("../idx").IdxTransactionManagerInterface>>;
+declare const OktaAuthIdx: import("../idx").OktaAuthIdxConstructor<import("../idx").OktaAuthIdxInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthIdxOptions, import("../idx").IdxTransactionManagerInterface> & import("./common").OktaAuthCoreInterface<import("../idx").IdxTransactionMeta, import("../idx").IdxStorageManagerInterface<import("../idx").IdxTransactionMeta>, OktaAuthIdxOptions, import("../idx").IdxTransactionManagerInterface>>;
 export interface OktaAuthOptions extends OktaAuthIdxOptions {
 }
 declare class OktaAuth extends OktaAuthIdx {

package/types/lib/idx/factory/OktaAuthIdx.d.ts

@@ -1,9 +1,9 @@
-import { OktaAuthConstructor, OktaAuthOptionsConstructor } from '../../base/types';
+import { OktaAuthOptionsConstructor } from '../../base/types';
 import { StorageManagerConstructor } from '../../storage/types';
-import { IdxTransactionManagerInterface, OktaAuthIdxInterface } from '../types/api';
+import { IdxTransactionManagerInterface, OktaAuthIdxInterface, OktaAuthIdxConstructor } from '../types/api';
 import { IdxTransactionMeta } from '../types/meta';
 import { IdxStorageManagerInterface } from '../types/storage';
 import { OktaAuthIdxOptions } from '../types/options';
 import { TransactionManagerConstructor } from '../../oidc/types';
 import { OktaAuthCoreInterface } from '../../core/types';
-export declare function createOktaAuthIdx<M extends IdxTransactionMeta = IdxTransactionMeta, S extends IdxStorageManagerInterface<M> = IdxStorageManagerInterface<M>, O extends OktaAuthIdxOptions = OktaAuthIdxOptions, TM extends IdxTransactionManagerInterface = IdxTransactionManagerInterface>(StorageManagerConstructor: StorageManagerConstructor<S>, OptionsConstructor: OktaAuthOptionsConstructor<O>, TransactionManagerConstructor: TransactionManagerConstructor<TM>): OktaAuthConstructor<OktaAuthIdxInterface<M, S, O, TM> & OktaAuthCoreInterface<M, S, O, TM>>;
+export declare function createOktaAuthIdx<M extends IdxTransactionMeta = IdxTransactionMeta, S extends IdxStorageManagerInterface<M> = IdxStorageManagerInterface<M>, O extends OktaAuthIdxOptions = OktaAuthIdxOptions, TM extends IdxTransactionManagerInterface = IdxTransactionManagerInterface>(StorageManagerConstructor: StorageManagerConstructor<S>, OptionsConstructor: OktaAuthOptionsConstructor<O>, TransactionManagerConstructor: TransactionManagerConstructor<TM>): OktaAuthIdxConstructor<OktaAuthIdxInterface<M, S, O, TM> & OktaAuthCoreInterface<M, S, O, TM>>;

package/types/lib/idx/mixin.d.ts

@@ -1,6 +1,6 @@
 import { OktaAuthConstructor } from '../base/types';
 import { OktaAuthOAuthInterface } from '../oidc/types';
-import { IdxTransactionManagerInterface, OktaAuthIdxInterface, OktaAuthIdxOptions } from './types';
+import { IdxTransactionManagerInterface, OktaAuthIdxInterface, OktaAuthIdxConstructor, OktaAuthIdxOptions } from './types';
 import { IdxTransactionMeta } from './types/meta';
 import { IdxStorageManagerInterface } from './types/storage';
-export declare function mixinIdx<M extends IdxTransactionMeta = IdxTransactionMeta, S extends IdxStorageManagerInterface<M> = IdxStorageManagerInterface<M>, O extends OktaAuthIdxOptions = OktaAuthIdxOptions, TM extends IdxTransactionManagerInterface = IdxTransactionManagerInterface, TBase extends OktaAuthConstructor<OktaAuthOAuthInterface<M, S, O, TM>> = OktaAuthConstructor<OktaAuthOAuthInterface<M, S, O, TM>>>(Base: TBase): TBase & OktaAuthConstructor<OktaAuthIdxInterface<M, S, O, TM>>;
+export declare function mixinIdx<M extends IdxTransactionMeta = IdxTransactionMeta, S extends IdxStorageManagerInterface<M> = IdxStorageManagerInterface<M>, O extends OktaAuthIdxOptions = OktaAuthIdxOptions, TM extends IdxTransactionManagerInterface = IdxTransactionManagerInterface, TBase extends OktaAuthConstructor<OktaAuthOAuthInterface<M, S, O, TM>> = OktaAuthConstructor<OktaAuthOAuthInterface<M, S, O, TM>>>(Base: TBase): TBase & OktaAuthIdxConstructor<OktaAuthIdxInterface<M, S, O, TM>>;

package/types/lib/idx/types/api.d.ts

@@ -12,10 +12,12 @@
 import { APIError } from '../../errors/types';
 import { OktaAuthOAuthInterface, Tokens, TransactionManagerConstructor, TransactionManagerInterface } from '../../oidc/types';
 import { FlowIdentifier } from './FlowIdentifier';
-import { IdxActions, IdxAuthenticator, IdxContext, IdxForm, IdxMessage, IdxOption, IdxRemediation, IdxResponse, RawIdxResponse, IdxActionParams, IdpConfig, IdxToPersist } from './idx-js';
+import { IdxActions, IdxAuthenticator, IdxContext, IdxForm, IdxMessage, IdxOption, IdxRemediation, IdxResponse, RawIdxResponse, IdxActionParams, IdpConfig, IdxToPersist, ChallengeData, ActivationData } from './idx-js';
 import { AccountUnlockOptions, AuthenticationOptions, CancelOptions, InteractOptions, IntrospectOptions, OktaAuthIdxOptions, PasswordRecoveryOptions, ProceedOptions, RegistrationOptions, StartOptions, IdxTransactionMetaOptions } from './options';
 import { IdxTransactionMeta } from './meta';
 import { IdxStorageManagerInterface, SavedIdxResponse } from './storage';
+import type { WebauthnEnrollValues, WebauthnVerificationValues } from '../authenticator';
+import { OktaAuthConstructor } from '../../base/types';
 export declare enum IdxStatus {
     SUCCESS = "SUCCESS",
     PENDING = "PENDING",
@@ -153,6 +155,16 @@ export interface IdxTransactionManagerInterface extends TransactionManagerInterf
     clearIdxResponse(): void;
 }
 export declare type IdxTransactionManagerConstructor = TransactionManagerConstructor<IdxTransactionManagerInterface>;
+export interface WebauthnAPI {
+    getAssertion(credential: PublicKeyCredential): WebauthnVerificationValues;
+    getAttestation(credential: PublicKeyCredential): WebauthnEnrollValues;
+    buildCredentialRequestOptions(challengeData: ChallengeData, authenticatorEnrollments: IdxAuthenticator[]): CredentialRequestOptions;
+    buildCredentialCreationOptions(activationData: ActivationData, authenticatorEnrollments: IdxAuthenticator[]): CredentialCreationOptions;
+}
 export interface OktaAuthIdxInterface<M extends IdxTransactionMeta = IdxTransactionMeta, S extends IdxStorageManagerInterface<M> = IdxStorageManagerInterface<M>, O extends OktaAuthIdxOptions = OktaAuthIdxOptions, TM extends IdxTransactionManagerInterface = IdxTransactionManagerInterface> extends OktaAuthOAuthInterface<M, S, O, TM> {
     idx: IdxAPI;
 }
+export interface OktaAuthIdxConstructor<I extends OktaAuthIdxInterface = OktaAuthIdxInterface> extends OktaAuthConstructor<I> {
+    new (...args: any[]): I;
+    webauthn: WebauthnAPI;
+}

package/types/lib/idx/webauthn.d.ts

@@ -9,13 +9,7 @@
  *
  * See the License for the specific language governing permissions and limitations under the License.
  */
-import { ActivationData, ChallengeData, IdxAuthenticator, WebauthnEnrollValues, WebauthnVerificationValues } from './types';
-export interface WebauthnAPI {
-    getAssertion(credential: PublicKeyCredential): WebauthnVerificationValues;
-    getAttestation(credential: PublicKeyCredential): WebauthnEnrollValues;
-    buildCredentialRequestOptions(challengeData: ChallengeData, authenticatorEnrollments: IdxAuthenticator[]): CredentialRequestOptions;
-    buildCredentialCreationOptions(activationData: ActivationData, authenticatorEnrollments: IdxAuthenticator[]): CredentialCreationOptions;
-}
+import { ActivationData, ChallengeData, IdxAuthenticator } from './types';
 export declare const buildCredentialCreationOptions: (activationData: ActivationData, authenticatorEnrollments: IdxAuthenticator[]) => CredentialCreationOptions;
 export declare const buildCredentialRequestOptions: (challengeData: ChallengeData, authenticatorEnrollments: IdxAuthenticator[]) => CredentialRequestOptions;
 export declare const getAttestation: (credential: PublicKeyCredential) => {

package/types/lib/myaccount/api.d.ts

@@ -12,3 +12,4 @@
 export * from './profileApi';
 export * from './emailApi';
 export * from './phoneApi';
+export * from './passwordApi';

package/types/lib/myaccount/emailApi.d.ts

@@ -1,29 +1,29 @@
 import { IAPIFunction, BaseTransaction, EmailTransaction, EmailChallengeTransaction } from './types';
 /**
- * @scope: okta.myaccount.email.read
+ * @scope: okta.myAccount.email.read
  */
 export declare const getEmails: IAPIFunction<EmailTransaction[]>;
 /**
- * @scope: okta.myaccount.email.read
+ * @scope: okta.myAccount.email.read
  */
 export declare const getEmail: IAPIFunction<EmailTransaction>;
 /**
- * @scope: okta.myaccount.email.manage
+ * @scope: okta.myAccount.email.manage
  */
 export declare const addEmail: IAPIFunction<EmailTransaction>;
 /**
- * @scope: okta.myaccount.email.manage
+ * @scope: okta.myAccount.email.manage
  */
 export declare const deleteEmail: IAPIFunction<BaseTransaction>;
 /**
- * @scope: okta.myaccount.email.read
+ * @scope: okta.myAccount.email.read
  */
 export declare const sendEmailChallenge: IAPIFunction<EmailChallengeTransaction>;
 /**
- * @scope: okta.myaccount.email.read
+ * @scope: okta.myAccount.email.read
  */
 export declare const getEmailChallenge: IAPIFunction<EmailChallengeTransaction>;
 /**
- * @scope: okta.myaccount.email.manage
+ * @scope: okta.myAccount.email.manage
  */
 export declare const verifyEmailChallenge: IAPIFunction<BaseTransaction>;

package/types/lib/myaccount/passwordApi.d.ts

@@ -0,0 +1,17 @@
+import { IAPIFunction, BaseTransaction, PasswordTransaction } from './types';
+/**
+ * @scope: okta.myAccount.password.read
+ */
+export declare const getPassword: IAPIFunction<PasswordTransaction>;
+/**
+ * @scope: okta.myAccount.password.manage
+ */
+export declare const enrollPassword: IAPIFunction<PasswordTransaction>;
+/**
+ * @scope: okta.myAccount.password.manage
+ */
+export declare const updatePassword: IAPIFunction<PasswordTransaction>;
+/**
+ * @scope: okta.myAccount.password.manage
+ */
+export declare const deletePassword: IAPIFunction<BaseTransaction>;

package/types/lib/myaccount/phoneApi.d.ts

@@ -1,25 +1,25 @@
 import { IAPIFunction, BaseTransaction, PhoneTransaction } from './types';
 /**
- * @scope: okta.myaccount.phone.read
+ * @scope: okta.myAccount.phone.read
  */
 export declare const getPhones: IAPIFunction<PhoneTransaction[]>;
 /**
- * @scope: okta.myaccount.phone.read
+ * @scope: okta.myAccount.phone.read
  */
 export declare const getPhone: IAPIFunction<PhoneTransaction>;
 /**
- * @scope: okta.myaccount.phone.manage
+ * @scope: okta.myAccount.phone.manage
  */
 export declare const addPhone: IAPIFunction<PhoneTransaction>;
 /**
- * @scope: okta.myaccount.phone.manage
+ * @scope: okta.myAccount.phone.manage
  */
 export declare const deletePhone: IAPIFunction<BaseTransaction>;
 /**
- * @scope: okta.myaccount.phone.manage
+ * @scope: okta.myAccount.phone.manage
  */
 export declare const sendPhoneChallenge: IAPIFunction<BaseTransaction>;
 /**
- * @scope: okta.myaccount.phone.manage
+ * @scope: okta.myAccount.phone.manage
  */
 export declare const verifyPhoneChallenge: IAPIFunction<BaseTransaction>;

package/types/lib/myaccount/profileApi.d.ts

@@ -1,13 +1,13 @@
 import { IAPIFunction, ProfileTransaction, ProfileSchemaTransaction } from './types';
 /**
- * @scope: okta.myaccount.profile.read
+ * @scope: okta.myAccount.profile.read
  */
 export declare const getProfile: IAPIFunction<ProfileTransaction>;
 /**
- * @scope: okta.myaccount.profile.manage
+ * @scope: okta.myAccount.profile.manage
  */
 export declare const updateProfile: IAPIFunction<ProfileTransaction>;
 /**
- * @scope: okta.myaccount.profile.read
+ * @scope: okta.myAccount.profile.read
  */
 export declare const getProfileSchema: IAPIFunction<ProfileSchemaTransaction>;

package/types/lib/myaccount/transactions/PasswordTransaction.d.ts

@@ -0,0 +1,13 @@
+import { EnrollPasswordPayload, UpdatePasswordPayload, PasswordStatus } from '../types';
+import BaseTransaction from './Base';
+export default class PasswordTransaction extends BaseTransaction {
+    id: string;
+    created: string;
+    lastUpdated: string;
+    status: PasswordStatus;
+    get?: () => Promise<PasswordTransaction>;
+    enroll?: (payload: EnrollPasswordPayload) => Promise<PasswordTransaction>;
+    update?: (payload: UpdatePasswordPayload) => Promise<PasswordTransaction>;
+    delete?: () => Promise<BaseTransaction>;
+    constructor(oktaAuth: any, options: any);
+}

package/types/lib/myaccount/transactions/index.d.ts

@@ -4,4 +4,5 @@ export { default as EmailTransaction } from './EmailTransaction';
 export { default as EmailStatusTransaction } from './EmailStatusTransaction';
 export { default as EmailChallengeTransaction } from './EmailChallengeTransaction';
 export { default as PhoneTransaction } from './PhoneTransaction';
+export { default as PasswordTransaction } from './PasswordTransaction';
 export { default as BaseTransaction } from './Base';

package/types/lib/myaccount/types.d.ts

@@ -1,5 +1,5 @@
 import { OAuthStorageManagerInterface, OAuthTransactionMeta, OktaAuthOAuthInterface, OktaAuthOAuthOptions, PKCETransactionMeta } from '../oidc/types';
-export { EmailTransaction, EmailStatusTransaction, EmailChallengeTransaction, PhoneTransaction, ProfileTransaction, ProfileSchemaTransaction, BaseTransaction } from './transactions';
+export { EmailTransaction, EmailStatusTransaction, EmailChallengeTransaction, PhoneTransaction, ProfileTransaction, ProfileSchemaTransaction, PasswordTransaction, BaseTransaction } from './transactions';
 export declare enum EmailRole {
     PRIMARY = "PRIMARY",
     SECONDARY = "SECONDARY"
@@ -8,6 +8,10 @@ export declare enum Status {
     VERIFIED = "VERIFIED",
     UNVERIFIED = "UNVERIFIED"
 }
+export declare enum PasswordStatus {
+    NOT_ENROLLED = "NOT_ENROLLED",
+    ACTIVE = "ACTIVE"
+}
 export declare type EmailProfile = {
     email: string;
 };
@@ -36,6 +40,17 @@ export declare type ChallengePhonePayload = {
 export declare type VerificationPayload = {
     verificationCode: string;
 };
+export declare type EnrollPasswordPayload = {
+    profile: {
+        password: string;
+    };
+};
+export declare type UpdatePasswordPayload = {
+    profile: {
+        password: string;
+        currentPassword?: string;
+    };
+};
 export declare type UpdateProfilePayload = {
     profile: {
         firstName?: string;
@@ -49,7 +64,7 @@ export declare type MyAccountRequestOptions = {
     id?: string;
     emailId?: string;
     challengeId?: string;
-    payload?: AddEmailPayload | AddPhonePayload | ChallengePhonePayload | VerificationPayload | UpdateProfilePayload;
+    payload?: AddEmailPayload | AddPhonePayload | ChallengePhonePayload | VerificationPayload | UpdateProfilePayload | EnrollPasswordPayload | UpdatePasswordPayload;
     accessToken?: string;
 };
 export declare type IAPIFunction<T> = (oktaAuth: OktaAuthOAuthInterface, options?: MyAccountRequestOptions) => Promise<T>;

package/types/lib/oidc/TokenManager.d.ts

@@ -18,6 +18,7 @@ export declare class TokenManager implements TokenManagerInterface {
     constructor(sdk: OktaAuthOAuthInterface, options?: TokenManagerOptions);
     start(): void;
     stop(): void;
+    isStarted(): boolean;
     getOptions(): TokenManagerOptions;
     getExpireTime(token: any): number;
     hasExpired(token: any): boolean;

package/types/lib/oidc/enrollAuthenticator.d.ts

@@ -0,0 +1,14 @@
+/*!
+ * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ *
+ */
+import { OktaAuthOAuthInterface, EnrollAuthenticatorOptions } from './types';
+export declare function enrollAuthenticator(sdk: OktaAuthOAuthInterface, options: EnrollAuthenticatorOptions): void;

package/types/lib/oidc/factory/api.d.ts

@@ -11,5 +11,6 @@
  *
  */
 import { PromiseQueue } from '../../util';
-import { OktaAuthOAuthInterface, TokenAPI } from '../types';
+import { OktaAuthOAuthInterface, TokenAPI, Endpoints } from '../types';
 export declare function createTokenAPI(sdk: OktaAuthOAuthInterface, queue: PromiseQueue): TokenAPI;
+export declare function createEndpoints(sdk: OktaAuthOAuthInterface): Endpoints;

package/types/lib/oidc/types/TokenManager.d.ts

@@ -58,4 +58,5 @@ export interface TokenManagerInterface {
     getStorage(): StorageProvider;
     start(): any;
     stop(): any;
+    isStarted(): boolean;
 }

package/types/lib/oidc/types/api.d.ts

@@ -12,12 +12,14 @@
 import { JWTObject } from './JWT';
 import { OAuthTransactionMeta, PKCETransactionMeta } from './meta';
 import { CustomUrls, OktaAuthOAuthOptions, SigninWithRedirectOptions, TokenParams } from './options';
+import { OAuthResponseType } from './proto';
 import { OAuthStorageManagerInterface } from './storage';
 import { AccessToken, IDToken, RefreshToken, RevocableToken, Token, Tokens } from './Token';
 import { TokenManagerInterface } from './TokenManager';
 import { CustomUserClaims, UserClaims } from './UserClaims';
 import { TransactionManagerInterface } from './TransactionManager';
 import { OktaAuthSessionInterface } from '../../session/types';
+import { Endpoints } from './endpoints';
 export interface PopupParams {
     popupTitle?: string;
     popupWindow?: Window;
@@ -26,6 +28,7 @@ export interface TokenResponse {
     tokens: Tokens;
     state: string;
     code?: string;
+    responseType?: OAuthResponseType | OAuthResponseType[] | 'none';
 }
 export interface ParseFromUrlOptions {
     url?: string;
@@ -39,9 +42,6 @@ export interface ParseFromUrlInterface extends ParseFromUrlFunction {
 }
 export declare type GetWithRedirectFunction = (params?: TokenParams) => Promise<void>;
 export declare type SetLocationFunction = (loc: string) => void;
-export interface GetWithRedirectAPI extends GetWithRedirectFunction {
-    _setLocation: SetLocationFunction;
-}
 export interface BaseTokenAPI {
     decode(token: string): JWTObject;
     prepareTokenParams(params?: TokenParams): Promise<TokenParams>;
@@ -49,7 +49,7 @@ export interface BaseTokenAPI {
 }
 export interface TokenAPI extends BaseTokenAPI {
     getUserInfo<S extends CustomUserClaims = CustomUserClaims>(accessToken?: AccessToken, idToken?: IDToken): Promise<UserClaims<S>>;
-    getWithRedirect: GetWithRedirectAPI;
+    getWithRedirect: GetWithRedirectFunction;
     parseFromUrl: ParseFromUrlInterface;
     getWithoutPrompt(params?: TokenParams): Promise<TokenResponse>;
     getWithPopup(params?: TokenParams): Promise<TokenResponse>;
@@ -103,6 +103,7 @@ export interface OktaAuthOAuthInterface<M extends OAuthTransactionMeta = PKCETra
     tokenManager: TokenManagerInterface;
     pkce: PkceAPI;
     transactionManager: TM;
+    endpoints: Endpoints;
     isPKCE(): boolean;
     getIdToken(): string | undefined;
     getAccessToken(): string | undefined;

package/types/lib/oidc/types/endpoints.d.ts

@@ -0,0 +1,18 @@
+/*!
+ * Copyright (c) 2021-present, Okta, Inc. and/or its affiliates. All rights reserved.
+ * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.")
+ *
+ * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0.
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ *
+ * See the License for the specific language governing permissions and limitations under the License.
+ */
+import { EnrollAuthenticatorOptions } from './options';
+export declare type EnrollAuthenticatorFunction = (params: EnrollAuthenticatorOptions) => void;
+export interface Endpoints {
+    authorize: {
+        enrollAuthenticator: EnrollAuthenticatorFunction;
+    };
+}

package/types/lib/oidc/types/index.d.ts

@@ -20,3 +20,4 @@ export * from './TokenManager';
 export * from './Transaction';
 export * from './TransactionManager';
 export * from './UserClaims';
+export * from './endpoints';

package/types/lib/oidc/types/meta.d.ts

@@ -10,7 +10,7 @@
  * See the License for the specific language governing permissions and limitations under the License.
  */
 import { CustomUrls, TokenParams } from './options';
-export interface OAuthTransactionMeta extends Pick<TokenParams, 'issuer' | 'clientId' | 'redirectUri' | 'responseType' | 'responseMode' | 'scopes' | 'state' | 'pkce' | 'ignoreSignature' | 'nonce' | 'acrValues'> {
+export interface OAuthTransactionMeta extends Pick<TokenParams, 'issuer' | 'clientId' | 'redirectUri' | 'responseType' | 'responseMode' | 'scopes' | 'state' | 'pkce' | 'ignoreSignature' | 'nonce' | 'acrValues' | 'enrollAmrValues'> {
     urls: CustomUrls;
     originalUri?: string;
 }