@oslokommune/auth-bff 2.0.0 → 2.0.1

package/README.md

@@ -67,21 +67,21 @@ When running in docker you should specify the version to use, and make sure it m
 Example dockerfile:
 
 ```dockerfile
-FROM node:23-alpine AS base
+FROM node:24-alpine AS base
 
-FROM base AS react-build
-WORKDIR /home/react
-COPY package*.json /home/react
-RUN npm install
+FROM base AS build
+WORKDIR /home/app
+COPY package*.json /home/app
+RUN npm ci
 COPY . ./
 RUN npm run build
 
 FROM base
 WORKDIR /application
 EXPOSE 8080
-COPY --from=react-build /home/react/dist /application/dist
+COPY --from=build /home/app/dist /application/dist
 ENV NODE_ENV=production
-RUN npm install -g @oslokommune/auth-bff@2.0.0
+RUN npm install -g @oslokommune/auth-bff@2.0.1
 COPY bff.config.json /application/
 CMD ["auth-bff"]
 ```
@@ -372,6 +372,26 @@ if (authState === 'authenticated') {
 ## Content Security Policy
 
 To configure the content security policy returned by the server, use the `contentSecurityPolicy` config option. This
-configuration is passed almost as-is to [helmet](https://github.com/helmetjs/helmet). Since our configuration is json
-only, not all features are supported. To set a nonce, use the special form `"{nonce}"` instead. It will be replaced by a
-generated nonce for each request.
+configuration is passed almost as-is to [helmet](https://github.com/helmetjs/helmet). Note that since our configuration is json
+only, not all features are supported.
+
+### Nonce 
+To set a nonce, use the special form `"{nonce}"`. It will be replaced by a
+generated nonce for each request. For example:
+```json
+{
+  "contentSecurityPolicy": {
+    "directives": {
+      ...
+      "script-src": ["'self'", "{nonce}", ...]
+    }
+  }
+}
+```
+
+To use a nonce in your app, use `__CSP_NONCE__` in your html. It will be replaced with a nonce for each request:
+```html
+<script nonce="__CSP_NONCE__">
+    ...
+</script>
+```

package/dist/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@oslokommune/auth-bff",
-    "version": "2.0.0",
+    "version": "2.0.1",
     "repository": "https://github.com/oslokommune/auth-bff.git",
     "publishConfig": {
         "access": "public"
@@ -27,32 +27,32 @@
     "license": "",
     "description": "",
     "devDependencies": {
-        "@types/command-line-args": "^5.2.3",
-        "@types/compression": "^1.8.1",
-        "@types/express": "^4.17.22",
-        "@types/express-session": "^1.18.2",
+        "@types/command-line-args": "5.2.3",
+        "@types/compression": "1.8.1",
+        "@types/express": "4.17.22",
+        "@types/express-session": "1.18.2",
         "@types/node-forge": "1.3.13",
         "@types/react": "17.0.87",
-        "@types/supertest": "^6.0.3",
+        "@types/supertest": "6.0.3",
         "react": "17.0.2",
-        "supertest": "^7.2.2",
-        "typescript": "^5.9.3",
-        "vitest": "^4.1.2"
+        "supertest": "7.2.2",
+        "typescript": "5.9.3",
+        "vitest": "4.1.6"
     },
     "dependencies": {
-        "@aws-sdk/client-dynamodb": "^3.1018.0",
-        "@aws-sdk/client-ssm": "^3.1018.0",
-        "command-line-args": "^6.0.1",
-        "compression": "^1.8.1",
-        "connect-dynamodb": "^3.0.5",
-        "express": "4.22.1",
+        "@aws-sdk/client-dynamodb": "3.1045.0",
+        "@aws-sdk/client-ssm": "3.1045.0",
+        "command-line-args": "6.0.1",
+        "compression": "1.8.1",
+        "connect-dynamodb": "3.0.5",
+        "express": "4.22.2",
         "express-session": "1.19.0",
-        "find-up": "^7.0.0",
-        "helmet": "^8.1.0",
-        "http-proxy-middleware": "^3.0.5",
-        "jose": "^6.1.3",
+        "find-up": "7.0.0",
+        "helmet": "8.1.0",
+        "http-proxy-middleware": "4.0.0",
+        "jose": "6.1.3",
         "node-forge": "1.4.0",
-        "openid-client": "^6.8.2",
-        "string-replace-middleware": "^1.1.0"
+        "openid-client": "6.8.2",
+        "string-replace-middleware": "1.1.0"
     }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@oslokommune/auth-bff",
-  "version": "2.0.0",
+  "version": "2.0.1",
   "repository": "https://github.com/oslokommune/auth-bff.git",
   "publishConfig": {
     "access": "public"
@@ -27,32 +27,32 @@
   "license": "",
   "description": "",
   "devDependencies": {
-    "@types/command-line-args": "^5.2.3",
-    "@types/compression": "^1.8.1",
-    "@types/express": "^4.17.22",
-    "@types/express-session": "^1.18.2",
+    "@types/command-line-args": "5.2.3",
+    "@types/compression": "1.8.1",
+    "@types/express": "4.17.22",
+    "@types/express-session": "1.18.2",
     "@types/node-forge": "1.3.13",
     "@types/react": "17.0.87",
-    "@types/supertest": "^6.0.3",
+    "@types/supertest": "6.0.3",
     "react": "17.0.2",
-    "supertest": "^7.2.2",
-    "typescript": "^5.9.3",
-    "vitest": "^4.1.2"
+    "supertest": "7.2.2",
+    "typescript": "5.9.3",
+    "vitest": "4.1.6"
   },
   "dependencies": {
-    "@aws-sdk/client-dynamodb": "^3.1018.0",
-    "@aws-sdk/client-ssm": "^3.1018.0",
-    "command-line-args": "^6.0.1",
-    "compression": "^1.8.1",
-    "connect-dynamodb": "^3.0.5",
-    "express": "4.22.1",
+    "@aws-sdk/client-dynamodb": "3.1045.0",
+    "@aws-sdk/client-ssm": "3.1045.0",
+    "command-line-args": "6.0.1",
+    "compression": "1.8.1",
+    "connect-dynamodb": "3.0.5",
+    "express": "4.22.2",
     "express-session": "1.19.0",
-    "find-up": "^7.0.0",
-    "helmet": "^8.1.0",
-    "http-proxy-middleware": "^3.0.5",
-    "jose": "^6.1.3",
+    "find-up": "7.0.0",
+    "helmet": "8.1.0",
+    "http-proxy-middleware": "4.0.0",
+    "jose": "6.1.3",
     "node-forge": "1.4.0",
-    "openid-client": "^6.8.2",
-    "string-replace-middleware": "^1.1.0"
+    "openid-client": "6.8.2",
+    "string-replace-middleware": "1.1.0"
   }
 }