@opensourcekd/ng-common-libs 1.2.6 → 1.2.7

package/README.md

@@ -217,14 +217,16 @@ export default {
 
 ### AuthService
 
-- `login(options?: RedirectLoginOptions): Promise<void>` - Initiate Auth0 login
-- `logout(options?: LogoutOptions): Promise<void>` - Logout and clear session
-- `handleCallback(): Promise<{ success: boolean, appState?: any }>` - Handle Auth0 callback
-- `getToken(): Promise<string | null>` - Get access token asynchronously
-- `getTokenSync(): string | null` - Get cached access token synchronously
-- `getUser(): Signal<UserInfo | null>` - Get user information as signal
-- `isAuthenticated(): Signal<boolean>` - Check authentication status
-- `isLoading(): Signal<boolean>` - Check if authentication is loading
+- `login(user?: string, options?: { invitation?: string; organization?: string }): Promise<void>` - Initiate Auth0 login with optional user identifier and organization invitation parameters
+- `logout(): Promise<void>` - Logout and clear session
+- `handleCallback(): Promise<{ success: boolean, appState?: any }>` - Handle Auth0 callback and return success status with preserved appState
+- `getToken(): Promise<string | null>` - Get access token asynchronously (checks storage first, then Auth0)
+- `getTokenSync(): string | null` - Get cached access token synchronously (storage only)
+- `getUser(): UserInfo | null` - Get current user information
+- `getUserData(): UserData | null` - Get simplified user data with role and organization extraction
+- `isAuthenticated(): Promise<boolean>` - Check authentication status asynchronously (verifies with Auth0)
+- `isAuthenticatedSync(): boolean` - Check authentication status synchronously (storage only)
+- `user$: Observable<UserInfo | null>` - Observable stream of user changes
 
 ### EventBusService
 

package/dist/angular/index.cjs

@@ -205,11 +205,15 @@ function jwtDecode(token, options) {
 /**
  * Auth0 client configuration
  * Override these values in your consuming application by setting them before importing AuthService
+ *
+ * Note: redirectUri defaults to window.location.origin (base URL without path).
+ * Auth0 will redirect back to this URL after authentication.
+ * You can override this to a specific callback URL (e.g., '/auth-callback') using configureAuth0().
  */
 const AUTH0_CONFIG = {
     domain: '', // Set in consuming app: process.env['NX_AUTH0_DOMAIN'] || 'your-domain.auth0.com'
     clientId: '', // Set in consuming app: process.env['NX_AUTH0_CLIENT_ID'] || 'your-client-id'
-    redirectUri: typeof window !== 'undefined' ? window.location.origin + '/auth-callback' : '',
+    redirectUri: typeof window !== 'undefined' ? window.location.origin : '',
     logoutUri: typeof window !== 'undefined' ? window.location.origin : '',
     audience: '', // Optional: Set in consuming app if using API authorization
     scope: 'openid profile email', // Default scopes
@@ -270,22 +274,55 @@ function removeStorageItem(key, storageType = 'sessionStorage') {
     storage.removeItem(key);
 }
 /**
- * Configure Auth0 settings
- * Call this function in your consuming application before using AuthService
+ * Configure Auth0 settings (OPTIONAL)
+ * Call this function in your consuming application to override default Auth0 configuration.
+ * Only the values you provide will be overridden; all other defaults remain unchanged.
+ *
+ * Note: This function is optional. If not called, default values will be used.
+ *
+ * @param config - Partial Auth0 configuration object with values to override
  *
  * @example
  * ```typescript
  * import { configureAuth0 } from '@opensourcekd/ng-common-libs';
  *
+ * // Only override specific values - others keep their defaults
  * configureAuth0({
  *   domain: 'your-domain.auth0.com',
  *   clientId: 'your-client-id',
  *   audience: 'https://your-api.com'
+ *   // redirectUri, logoutUri, scope, etc. will use defaults
+ * });
+ *
+ * // Or override just redirectUri to use a specific callback page
+ * configureAuth0({
+ *   redirectUri: window.location.origin + '/auth-callback'
  * });
  * ```
  */
 function configureAuth0(config) {
+    // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+    console.log('[AuthConfig] 🔍 DEBUG: configureAuth0() called with config:', {
+        domain: config.domain || 'not provided',
+        clientId: config.clientId ? '[REDACTED]' : 'not provided',
+        redirectUri: config.redirectUri || 'not provided',
+        logoutUri: config.logoutUri || 'not provided',
+        audience: config.audience || 'not provided',
+        scope: config.scope || 'not provided',
+        connection: config.connection || 'not provided'
+    });
+    // Only override provided values, keeping defaults for others
     Object.assign(AUTH0_CONFIG, config);
+    // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+    console.log('[AuthConfig] 🔍 DEBUG: AUTH0_CONFIG after merge:', {
+        domain: AUTH0_CONFIG.domain,
+        clientId: AUTH0_CONFIG.clientId ? '[REDACTED]' : undefined,
+        redirectUri: AUTH0_CONFIG.redirectUri,
+        logoutUri: AUTH0_CONFIG.logoutUri,
+        audience: AUTH0_CONFIG.audience || 'not set',
+        scope: AUTH0_CONFIG.scope,
+        connection: AUTH0_CONFIG.connection || 'not set'
+    });
 }
 
 /**
@@ -314,6 +351,8 @@ exports.AuthService = class AuthService {
     constructor(eventBus) {
         this.eventBus = eventBus;
         console.log("[AuthService] Initializing Auth0 authentication service");
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: Constructor called, starting initialization');
         this.initializationPromise = this.initializeAuth0();
     }
     /**
@@ -322,13 +361,30 @@ exports.AuthService = class AuthService {
     async initializeAuth0() {
         try {
             console.log("[AuthService] Starting Auth0 client initialization...");
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: initializeAuth0 called');
             // Defensive check for AUTH0_CONFIG
             if (!AUTH0_CONFIG || typeof AUTH0_CONFIG !== 'object') {
+                // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+                console.error('[AuthService] 🔍 DEBUG: AUTH0_CONFIG validation failed - invalid or undefined');
                 throw new Error('[AuthService] AUTH0_CONFIG is not defined or invalid');
             }
             if (!AUTH0_CONFIG.domain || !AUTH0_CONFIG.clientId) {
+                // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+                console.error('[AuthService] 🔍 DEBUG: AUTH0_CONFIG validation failed - missing domain or clientId', {
+                    domain: AUTH0_CONFIG.domain,
+                    clientId: AUTH0_CONFIG.clientId ? '[REDACTED]' : undefined
+                });
                 throw new Error('[AuthService] AUTH0_CONFIG is missing required fields (domain, clientId)');
             }
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Creating Auth0 client with config:', {
+                domain: AUTH0_CONFIG.domain,
+                clientId: AUTH0_CONFIG.clientId ? '[REDACTED]' : undefined,
+                redirectUri: AUTH0_CONFIG.redirectUri,
+                scope: AUTH0_CONFIG.scope,
+                audience: AUTH0_CONFIG.audience || 'not set'
+            });
             this.auth0Client = await oa({
                 domain: AUTH0_CONFIG.domain,
                 clientId: AUTH0_CONFIG.clientId,
@@ -341,9 +397,13 @@ exports.AuthService = class AuthService {
                 useRefreshTokens: true, // Enable refresh tokens for better security
             });
             console.log("[AuthService] Auth0 client initialized successfully");
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Auth0 client created successfully');
         }
         catch (error) {
             console.error("[AuthService] Failed to initialize Auth0 client:", error);
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.error('[AuthService] 🔍 DEBUG: initializeAuth0 failed with error:', error);
             throw error;
         }
     }
@@ -365,21 +425,24 @@ exports.AuthService = class AuthService {
      * @param options - Optional login options including invitation and organization parameters
      */
     async login(user, options) {
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: login() called', { user, options });
         if (user) {
             console.log(`[AuthService] Logging in: ${user}`);
         }
         try {
             // Ensure Auth0 client is initialized
             await this.ensureInitialized();
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Auth0 client ensured initialized for login');
             // Capture current URL search parameters to preserve through auth flow
-            // Only capture if we're not already on the callback page
-            const currentPath = window.location.pathname;
-            const isCallbackPage = currentPath.includes('auth-callback');
             let appState = undefined;
-            if (!isCallbackPage && window.location.search) {
+            if (window.location.search) {
                 const currentSearchParams = window.location.search;
                 appState = { returnTo: currentSearchParams };
                 console.log('[AuthService] Preserving URL parameters through auth flow:', currentSearchParams);
+                // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+                console.log('[AuthService] 🔍 DEBUG: Captured URL search params for preservation:', currentSearchParams);
             }
             // Build authorization parameters
             const authorizationParams = {
@@ -397,14 +460,30 @@ exports.AuthService = class AuthService {
                 authorizationParams.organization = options.organization;
                 console.log('[AuthService] Including organization parameter:', options.organization);
             }
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Authorization params prepared:', {
+                redirect_uri: authorizationParams.redirect_uri,
+                scope: authorizationParams.scope,
+                audience: authorizationParams.audience || 'not set',
+                connection: authorizationParams.connection || 'not set',
+                invitation: authorizationParams.invitation || 'not set',
+                organization: authorizationParams.organization || 'not set',
+                hasAppState: !!appState
+            });
             console.log('[AuthService] Starting Auth0 login redirect...');
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: About to call loginWithRedirect');
             await this.auth0Client.loginWithRedirect({
                 authorizationParams,
                 ...(appState && { appState })
             });
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: loginWithRedirect completed (this may not be visible due to redirect)');
         }
         catch (error) {
             console.error("[AuthService] Login failed:", error);
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.error('[AuthService] 🔍 DEBUG: login() failed with error:', error);
             // Emit login failure event
             this.emitAuthEvent('login_failure', { error: error instanceof Error ? error.message : String(error) });
             throw error; // Re-throw to allow caller to handle
@@ -422,11 +501,19 @@ exports.AuthService = class AuthService {
     async handleCallback() {
         try {
             console.log("[AuthService] Processing Auth0 callback...");
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: handleCallback() called');
+            console.log('[AuthService] 🔍 DEBUG: Current URL:', window.location.href);
+            console.log('[AuthService] 🔍 DEBUG: URL params:', window.location.search);
             // Ensure Auth0 client is initialized
             await this.ensureInitialized();
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Auth0 client ensured initialized for callback');
             // Process the callback
             const result = await this.auth0Client.handleRedirectCallback();
             console.log("[AuthService] Callback processed successfully");
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: handleRedirectCallback result:', result);
             // Log preserved appState if present
             if (result.appState) {
                 console.log('[AuthService] Restored appState from auth flow:', JSON.stringify(result.appState));
@@ -435,23 +522,35 @@ exports.AuthService = class AuthService {
                 console.log('[AuthService] No appState restored (user may not have started from invitation link)');
             }
             // Get user info
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Fetching user info from Auth0');
             const user = await this.auth0Client.getUser();
             if (user) {
+                // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+                console.log('[AuthService] 🔍 DEBUG: User info retrieved successfully');
                 this.logUserClaims(user);
                 this.setUserInfo(user);
             }
             else {
                 console.warn('[AuthService] No user info returned from Auth0');
+                // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+                console.warn('[AuthService] 🔍 DEBUG: getUser() returned null or undefined');
                 // Emit login failure event
                 this.emitAuthEvent('login_failure', { error: 'No user info returned from Auth0' });
                 return { success: false };
             }
             // Get and store access token
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Fetching access token');
             const token = await this.auth0Client.getTokenSilently();
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Access token retrieved, length:', token?.length || 0);
             this.setToken(token);
             // Decode and print the token to console
             this.decodeAndLogToken(token);
             console.log("[AuthService] Authentication successful");
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: handleCallback() completed successfully');
             // Emit login success event
             this.emitAuthEvent('login_success', { user, appState: result.appState });
             return { success: true, appState: result.appState };
@@ -459,6 +558,10 @@ exports.AuthService = class AuthService {
         catch (error) {
             console.error("[AuthService] Error processing callback:", error);
             console.error("[AuthService] Error details:", JSON.stringify(error, null, 2));
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.error('[AuthService] 🔍 DEBUG: handleCallback() failed with error:', error);
+            console.error('[AuthService] 🔍 DEBUG: Error type:', typeof error);
+            console.error('[AuthService] 🔍 DEBUG: Error stack:', error?.stack);
             // Emit login failure event
             this.emitAuthEvent('login_failure', { error: error instanceof Error ? error.message : String(error) });
             return { success: false };
@@ -565,23 +668,33 @@ exports.AuthService = class AuthService {
      * Redirects to Auth0 logout endpoint and clears local state
      */
     async logout() {
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: logout() called');
         // Clear local storage
         removeStorageItem(STORAGE_KEYS.ACCESS_TOKEN, STORAGE_CONFIG.TOKEN_STORAGE);
         removeStorageItem(STORAGE_KEYS.USER_INFO, STORAGE_CONFIG.USER_INFO_STORAGE);
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: Storage cleared (token and user info removed)');
         this.userSubject.next(null);
         this.emitAuthEvent('logout', null);
         console.log('[AuthService] User logged out, clearing Auth0 session');
         // Logout from Auth0
         try {
             await this.ensureInitialized();
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: About to call Auth0 logout, returnTo:', AUTH0_CONFIG.logoutUri);
             await this.auth0Client.logout({
                 logoutParams: {
                     returnTo: AUTH0_CONFIG.logoutUri
                 }
             });
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Auth0 logout completed (this may not be visible due to redirect)');
         }
         catch (error) {
             console.error('[AuthService] Error during Auth0 logout:', error);
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.error('[AuthService] 🔍 DEBUG: logout() failed with error:', error);
         }
     }
     /**
@@ -589,20 +702,30 @@ exports.AuthService = class AuthService {
      * @returns string | null - Access token or null if not authenticated
      */
     async getToken() {
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: getToken() called');
         // Try to get from storage first
         const storedToken = getStorageItem(STORAGE_KEYS.ACCESS_TOKEN, STORAGE_CONFIG.TOKEN_STORAGE);
         if (storedToken) {
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Token found in storage, length:', storedToken.length);
             return storedToken;
         }
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: Token not in storage, fetching from Auth0');
         // If not in storage, try to get from Auth0 client
         try {
             await this.ensureInitialized();
             const token = await this.auth0Client.getTokenSilently();
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: Token retrieved from Auth0, length:', token?.length || 0);
             this.setToken(token);
             return token;
         }
         catch (error) {
             console.error('[AuthService] Error getting token from Auth0:', error);
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.error('[AuthService] 🔍 DEBUG: getToken() failed:', error);
             return null;
         }
     }
@@ -619,22 +742,34 @@ exports.AuthService = class AuthService {
      * @param token - Access token to store
      */
     setToken(token) {
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: setToken() called, storing token in storage');
         setStorageItem(STORAGE_KEYS.ACCESS_TOKEN, token, STORAGE_CONFIG.TOKEN_STORAGE);
         this.emitAuthEvent('token_updated', { token });
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: Token stored and token_updated event emitted');
     }
     /**
      * Check if user is authenticated
      * @returns boolean - True if user has valid token
      */
     async isAuthenticated() {
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: isAuthenticated() called');
         try {
             await this.ensureInitialized();
-            return await this.auth0Client.isAuthenticated();
+            const result = await this.auth0Client.isAuthenticated();
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.log('[AuthService] 🔍 DEBUG: isAuthenticated() result from Auth0:', result);
+            return result;
         }
         catch (error) {
             console.error('[AuthService] Error checking authentication status:', error);
             // Fallback to checking storage
-            return !!getStorageItem(STORAGE_KEYS.ACCESS_TOKEN, STORAGE_CONFIG.TOKEN_STORAGE);
+            const hasToken = !!getStorageItem(STORAGE_KEYS.ACCESS_TOKEN, STORAGE_CONFIG.TOKEN_STORAGE);
+            // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+            console.error('[AuthService] 🔍 DEBUG: isAuthenticated() failed, falling back to storage check:', hasToken);
+            return hasToken;
         }
     }
     /**
@@ -714,6 +849,8 @@ exports.AuthService = class AuthService {
      * @param userInfo - User information to store
      */
     setUserInfo(userInfo) {
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: setUserInfo() called');
         setStorageItem(STORAGE_KEYS.USER_INFO, JSON.stringify(userInfo), STORAGE_CONFIG.USER_INFO_STORAGE);
         this.userSubject.next(userInfo);
         // Log stored user info with all claims
@@ -732,6 +869,8 @@ exports.AuthService = class AuthService {
                 console.log(`    • ${claim}:`, userInfo[claim]);
             });
         }
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: User info stored in storage and userSubject updated');
         this.emitAuthEvent('user_info_updated', userInfo);
     }
     /**
@@ -746,6 +885,8 @@ exports.AuthService = class AuthService {
             payload,
             timestamp: new Date().toISOString()
         };
+        // TODO_REMOVE_DEBUG: Temporary debug log - remove after debugging
+        console.log('[AuthService] 🔍 DEBUG: emitAuthEvent() called, event type:', event.type);
         this.eventBus.sendEvent(JSON.stringify(event));
         console.log('[AuthService] Auth event emitted:', event.type);
     }