@phila/sso-react 0.0.1

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 City of Philadelphia
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/dist/index.d.ts

@@ -0,0 +1,67 @@
+import { AccountInfo } from '@azure/msal-browser';
+import { Context } from 'react';
+import { JSX } from 'react/jsx-runtime';
+import { ReactNode } from 'react';
+import { SignInOptions } from '@phila/sso-core';
+import { SignOutOptions } from '@phila/sso-core';
+import { SSOClient } from '@phila/sso-core';
+import { SSOClientConfig } from '@phila/sso-core';
+import { SSOClientState } from '@phila/sso-core';
+import { TokenOptions } from '@phila/sso-core';
+
+/**
+ * Drop-in provider for Azure AD B2C authentication.
+ * Reads connection details from VITE_SSO_* environment variables:
+ *   VITE_SSO_CLIENT_ID, VITE_SSO_TENANT, VITE_SSO_AUTHORITY_DOMAIN, VITE_SSO_REDIRECT_URI
+ */
+export declare function B2CSSOProvider({ children, signInPolicy, resetPasswordPolicy, debug, }: B2CSSOProviderProps): JSX.Element;
+
+export declare interface B2CSSOProviderProps {
+    children: ReactNode;
+    signInPolicy?: string;
+    resetPasswordPolicy?: string;
+    debug?: boolean;
+}
+
+export declare const SSOContext: Context<SSOContextValue | null>;
+
+export declare interface SSOContextValue {
+    client: SSOClient;
+    state: SSOClientState;
+}
+
+export declare function SSOProvider({ config, children }: SSOProviderProps): JSX.Element;
+
+export declare interface SSOProviderProps {
+    config: SSOClientConfig;
+    children: ReactNode;
+}
+
+/**
+ * Primary hook for SSO authentication in React apps.
+ * Same API shape as the Vue composable for consistency.
+ */
+export declare function useAuth(): {
+    isAuthenticated: boolean;
+    isLoading: boolean;
+    user: AccountInfo | null;
+    token: string | null;
+    error: Error | null;
+    activePolicy: string | null;
+    authReady: boolean;
+    userName: string | null;
+    signIn: (options?: SignInOptions) => Promise<void>;
+    signInCityEmployee: (options?: SignInOptions) => Promise<void>;
+    signOut: (options?: SignOutOptions) => Promise<void>;
+    forgotPassword: () => Promise<void>;
+    acquireToken: (options?: TokenOptions) => Promise<string | null>;
+    hasRole: (role: string) => boolean;
+};
+
+/**
+ * Access the raw SSOClient instance.
+ * Must be called within an SSOProvider.
+ */
+export declare function useSSOClient(): SSOClient;
+
+export { }

package/dist/index.js

@@ -0,0 +1,2 @@
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});const f=require("react/jsx-runtime"),r=require("react"),C=require("@phila/sso-core"),y={isAuthenticated:!1,isLoading:!0,user:null,token:null,error:null,activePolicy:null,authReady:!1},l=r.createContext(null);function m({config:s,children:n}){const e=r.useRef(null),[c,i]=r.useState(y);e.current||(e.current=new C.SSOClient(s));const o=e.current;return r.useEffect(()=>{const d=o.events.on("auth:stateChanged",S=>{i(S)});return o.initialize(),()=>{d(),o.destroy()}},[o]),f.jsx(l.Provider,{value:{client:o,state:c},children:n})}function O(){const s=r.useContext(l);if(!s)throw new Error("useAuth must be used within an SSOProvider");const{client:n,state:e}=s,c=r.useCallback(t=>n.signIn(t),[n]),i=r.useCallback(t=>n.signInCityEmployee(t),[n]),o=r.useCallback(t=>n.signOut(t),[n]),d=r.useCallback(()=>n.forgotPassword(),[n]),S=r.useCallback(t=>n.acquireToken(t),[n]),g=r.useCallback(t=>{const u=e.user?.idTokenClaims;if(!u)return!1;const a=u.roles??u.extension_Roles??[];return Array.isArray(a)&&a.includes(t)},[e.user]),v=r.useMemo(()=>{const t=e.user?.idTokenClaims;if(!t)return null;const u=t.given_name??t.name??"",a=t.family_name??"";return a?`${u} ${a}`.trim():u},[e.user]);return{isAuthenticated:e.isAuthenticated,isLoading:e.isLoading,user:e.user,token:e.token,error:e.error,activePolicy:e.activePolicy,authReady:e.authReady,userName:v,signIn:c,signInCityEmployee:i,signOut:o,forgotPassword:d,acquireToken:S,hasRole:g}}function h(){const s=r.useContext(l);if(!s)throw new Error("useSSOClient must be used within an SSOProvider");return s.client}function P({children:s,signInPolicy:n="B2C_1A_AD_SIGNIN_ONLY",resetPasswordPolicy:e="B2C_1A_PASSWORDRESET",debug:c=!1}){const i=r.useRef(null);return i.current||(i.current=new C.B2CProvider({clientId:void 0,b2cEnvironment:void 0,authorityDomain:void 0,redirectUri:void 0,policies:{signUpSignIn:n,signInOnly:n,resetPassword:e}})),f.jsx(m,{config:{provider:i.current,debug:c},children:s})}exports.B2CSSOProvider=P;exports.SSOContext=l;exports.SSOProvider=m;exports.useAuth=O;exports.useSSOClient=h;
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sources":["../src/context.tsx","../src/hooks/useAuth.ts","../src/hooks/useSSOClient.ts","../src/B2CSSOProvider.tsx"],"sourcesContent":["import { createContext, useRef, useState, useEffect } from \"react\";\nimport { SSOClient } from \"@phila/sso-core\";\nimport type { SSOClientConfig, SSOClientState } from \"@phila/sso-core\";\nimport type { ReactNode } from \"react\";\n\nconst INITIAL_STATE: SSOClientState = {\n  isAuthenticated: false,\n  isLoading: true,\n  user: null,\n  token: null,\n  error: null,\n  activePolicy: null,\n  authReady: false,\n};\n\nexport interface SSOContextValue {\n  client: SSOClient;\n  state: SSOClientState;\n}\n\nexport const SSOContext = createContext<SSOContextValue | null>(null);\n\nexport interface SSOProviderProps {\n  config: SSOClientConfig;\n  children: ReactNode;\n}\n\nexport function SSOProvider({ config, children }: SSOProviderProps) {\n  const clientRef = useRef<SSOClient | null>(null);\n  const [state, setState] = useState<SSOClientState>(INITIAL_STATE);\n\n  // Create client once (stable across renders)\n  if (!clientRef.current) {\n    clientRef.current = new SSOClient(config);\n  }\n\n  const client = clientRef.current;\n\n  useEffect(() => {\n    // Subscribe to state changes\n    const unsubscribe = client.events.on(\"auth:stateChanged\", (newState: SSOClientState) => {\n      setState(newState);\n    });\n\n    // Initialize\n    client.initialize();\n\n    return () => {\n      unsubscribe();\n      client.destroy();\n    };\n  }, [client]);\n\n  return <SSOContext.Provider value={{ client, state }}>{children}</SSOContext.Provider>;\n}\n","import { useContext, useCallback, useMemo } from \"react\";\nimport { SSOContext } from \"../context\";\nimport type { SignInOptions, SignOutOptions, TokenOptions } from \"@phila/sso-core\";\n\n/**\n * Primary hook for SSO authentication in React apps.\n * Same API shape as the Vue composable for consistency.\n */\nexport function useAuth() {\n  const context = useContext(SSOContext);\n  if (!context) {\n    throw new Error(\"useAuth must be used within an SSOProvider\");\n  }\n\n  const { client, state } = context;\n\n  // Stable action references\n  const signIn = useCallback((options?: SignInOptions) => client.signIn(options), [client]);\n\n  const signInCityEmployee = useCallback((options?: SignInOptions) => client.signInCityEmployee(options), [client]);\n\n  const signOut = useCallback((options?: SignOutOptions) => client.signOut(options), [client]);\n\n  const forgotPassword = useCallback(() => client.forgotPassword(), [client]);\n\n  const acquireToken = useCallback((options?: TokenOptions) => client.acquireToken(options), [client]);\n\n  const hasRole = useCallback(\n    (role: string): boolean => {\n      const claims = state.user?.idTokenClaims as Record<string, unknown> | undefined;\n      if (!claims) return false;\n      const roles = (claims.roles ?? claims.extension_Roles ?? []) as string[];\n      return Array.isArray(roles) && roles.includes(role);\n    },\n    [state.user],\n  );\n\n  const userName = useMemo(() => {\n    const claims = state.user?.idTokenClaims as Record<string, unknown> | undefined;\n    if (!claims) return null;\n    const given = (claims.given_name ?? claims.name ?? \"\") as string;\n    const family = (claims.family_name ?? \"\") as string;\n    return family ? `${given} ${family}`.trim() : given;\n  }, [state.user]);\n\n  return {\n    // State\n    isAuthenticated: state.isAuthenticated,\n    isLoading: state.isLoading,\n    user: state.user,\n    token: state.token,\n    error: state.error,\n    activePolicy: state.activePolicy,\n    authReady: state.authReady,\n    userName,\n\n    // Actions\n    signIn,\n    signInCityEmployee,\n    signOut,\n    forgotPassword,\n    acquireToken,\n\n    // Utilities\n    hasRole,\n  };\n}\n","import { useContext } from \"react\";\nimport { SSOContext } from \"../context\";\nimport type { SSOClient } from \"@phila/sso-core\";\n\n/**\n * Access the raw SSOClient instance.\n * Must be called within an SSOProvider.\n */\nexport function useSSOClient(): SSOClient {\n  const context = useContext(SSOContext);\n  if (!context) {\n    throw new Error(\"useSSOClient must be used within an SSOProvider\");\n  }\n  return context.client;\n}\n","// ABOUTME: Convenience provider component for React/Vite apps using Azure AD B2C\n// ABOUTME: Reads VITE_SSO_* env vars by convention so apps need zero B2CProvider boilerplate\nimport { useRef } from \"react\";\nimport { B2CProvider } from \"@phila/sso-core\";\nimport { SSOProvider } from \"./context\";\nimport type { ReactNode } from \"react\";\n\nexport interface B2CSSOProviderProps {\n  children: ReactNode;\n  signInPolicy?: string;\n  resetPasswordPolicy?: string;\n  debug?: boolean;\n}\n\n/**\n * Drop-in provider for Azure AD B2C authentication.\n * Reads connection details from VITE_SSO_* environment variables:\n *   VITE_SSO_CLIENT_ID, VITE_SSO_TENANT, VITE_SSO_AUTHORITY_DOMAIN, VITE_SSO_REDIRECT_URI\n */\nexport function B2CSSOProvider({\n  children,\n  signInPolicy = \"B2C_1A_AD_SIGNIN_ONLY\",\n  resetPasswordPolicy = \"B2C_1A_PASSWORDRESET\",\n  debug = import.meta.env.DEV,\n}: B2CSSOProviderProps) {\n  const providerRef = useRef<B2CProvider | null>(null);\n\n  // Create once — props that affect provider construction are treated as initializers\n  if (!providerRef.current) {\n    providerRef.current = new B2CProvider({\n      clientId: import.meta.env.VITE_SSO_CLIENT_ID,\n      b2cEnvironment: import.meta.env.VITE_SSO_TENANT,\n      authorityDomain: import.meta.env.VITE_SSO_AUTHORITY_DOMAIN,\n      redirectUri: import.meta.env.VITE_SSO_REDIRECT_URI,\n      policies: {\n        signUpSignIn: signInPolicy,\n        signInOnly: signInPolicy,\n        resetPassword: resetPasswordPolicy,\n      },\n    });\n  }\n\n  return <SSOProvider config={{ provider: providerRef.current, debug }}>{children}</SSOProvider>;\n}\n"],"names":["INITIAL_STATE","SSOContext","createContext","SSOProvider","config","children","clientRef","useRef","state","setState","useState","SSOClient","client","useEffect","unsubscribe","newState","jsx","useAuth","context","useContext","signIn","useCallback","options","signInCityEmployee","signOut","forgotPassword","acquireToken","hasRole","role","claims","roles","userName","useMemo","given","family","useSSOClient","B2CSSOProvider","signInPolicy","resetPasswordPolicy","debug","providerRef","B2CProvider"],"mappings":"qKAKMA,EAAgC,CACpC,gBAAiB,GACjB,UAAW,GACX,KAAM,KACN,MAAO,KACP,MAAO,KACP,aAAc,KACd,UAAW,EACb,EAOaC,EAAaC,EAAAA,cAAsC,IAAI,EAO7D,SAASC,EAAY,CAAE,OAAAC,EAAQ,SAAAC,GAA8B,CAClE,MAAMC,EAAYC,EAAAA,OAAyB,IAAI,EACzC,CAACC,EAAOC,CAAQ,EAAIC,EAAAA,SAAyBV,CAAa,EAG3DM,EAAU,UACbA,EAAU,QAAU,IAAIK,EAAAA,UAAUP,CAAM,GAG1C,MAAMQ,EAASN,EAAU,QAEzBO,OAAAA,EAAAA,UAAU,IAAM,CAEd,MAAMC,EAAcF,EAAO,OAAO,GAAG,oBAAsBG,GAA6B,CACtFN,EAASM,CAAQ,CACnB,CAAC,EAGD,OAAAH,EAAO,WAAA,EAEA,IAAM,CACXE,EAAA,EACAF,EAAO,QAAA,CACT,CACF,EAAG,CAACA,CAAM,CAAC,EAEJI,EAAAA,IAACf,EAAW,SAAX,CAAoB,MAAO,CAAE,OAAAW,EAAQ,MAAAJ,GAAU,SAAAH,EAAS,CAClE,CC9CO,SAASY,GAAU,CACxB,MAAMC,EAAUC,EAAAA,WAAWlB,CAAU,EACrC,GAAI,CAACiB,EACH,MAAM,IAAI,MAAM,4CAA4C,EAG9D,KAAM,CAAE,OAAAN,EAAQ,MAAAJ,CAAA,EAAUU,EAGpBE,EAASC,cAAaC,GAA4BV,EAAO,OAAOU,CAAO,EAAG,CAACV,CAAM,CAAC,EAElFW,EAAqBF,cAAaC,GAA4BV,EAAO,mBAAmBU,CAAO,EAAG,CAACV,CAAM,CAAC,EAE1GY,EAAUH,cAAaC,GAA6BV,EAAO,QAAQU,CAAO,EAAG,CAACV,CAAM,CAAC,EAErFa,EAAiBJ,EAAAA,YAAY,IAAMT,EAAO,iBAAkB,CAACA,CAAM,CAAC,EAEpEc,EAAeL,cAAaC,GAA2BV,EAAO,aAAaU,CAAO,EAAG,CAACV,CAAM,CAAC,EAE7Fe,EAAUN,EAAAA,YACbO,GAA0B,CACzB,MAAMC,EAASrB,EAAM,MAAM,cAC3B,GAAI,CAACqB,EAAQ,MAAO,GACpB,MAAMC,EAASD,EAAO,OAASA,EAAO,iBAAmB,CAAA,EACzD,OAAO,MAAM,QAAQC,CAAK,GAAKA,EAAM,SAASF,CAAI,CACpD,EACA,CAACpB,EAAM,IAAI,CAAA,EAGPuB,EAAWC,EAAAA,QAAQ,IAAM,CAC7B,MAAMH,EAASrB,EAAM,MAAM,cAC3B,GAAI,CAACqB,EAAQ,OAAO,KACpB,MAAMI,EAASJ,EAAO,YAAcA,EAAO,MAAQ,GAC7CK,EAAUL,EAAO,aAAe,GACtC,OAAOK,EAAS,GAAGD,CAAK,IAAIC,CAAM,GAAG,OAASD,CAChD,EAAG,CAACzB,EAAM,IAAI,CAAC,EAEf,MAAO,CAEL,gBAAiBA,EAAM,gBACvB,UAAWA,EAAM,UACjB,KAAMA,EAAM,KACZ,MAAOA,EAAM,MACb,MAAOA,EAAM,MACb,aAAcA,EAAM,aACpB,UAAWA,EAAM,UACjB,SAAAuB,EAGA,OAAAX,EACA,mBAAAG,EACA,QAAAC,EACA,eAAAC,EACA,aAAAC,EAGA,QAAAC,CAAA,CAEJ,CC1DO,SAASQ,GAA0B,CACxC,MAAMjB,EAAUC,EAAAA,WAAWlB,CAAU,EACrC,GAAI,CAACiB,EACH,MAAM,IAAI,MAAM,iDAAiD,EAEnE,OAAOA,EAAQ,MACjB,CCKO,SAASkB,EAAe,CAC7B,SAAA/B,EACA,aAAAgC,EAAe,wBACf,oBAAAC,EAAsB,uBACtB,MAAAC,EAAQ,EACV,EAAwB,CACtB,MAAMC,EAAcjC,EAAAA,OAA2B,IAAI,EAGnD,OAAKiC,EAAY,UACfA,EAAY,QAAU,IAAIC,cAAY,CACpC,SAAU,OACV,eAAgB,OAChB,gBAAiB,OACjB,YAAa,OACb,SAAU,CACR,aAAcJ,EACd,WAAYA,EACZ,cAAeC,CAAA,CACjB,CACD,GAGItB,MAACb,GAAY,OAAQ,CAAE,SAAUqC,EAAY,QAAS,MAAAD,GAAU,SAAAlC,EAAS,CAClF"}

package/dist/index.mjs

@@ -0,0 +1,96 @@
+import { jsx as m } from "react/jsx-runtime";
+import { createContext as y, useRef as S, useState as C, useEffect as A, useContext as g, useCallback as u, useMemo as O } from "react";
+import { SSOClient as P, B2CProvider as w } from "@phila/sso-core";
+const I = {
+  isAuthenticated: !1,
+  isLoading: !0,
+  user: null,
+  token: null,
+  error: null,
+  activePolicy: null,
+  authReady: !1
+}, f = y(null);
+function p({ config: r, children: n }) {
+  const e = S(null), [c, i] = C(I);
+  e.current || (e.current = new P(r));
+  const s = e.current;
+  return A(() => {
+    const l = s.events.on("auth:stateChanged", (d) => {
+      i(d);
+    });
+    return s.initialize(), () => {
+      l(), s.destroy();
+    };
+  }, [s]), /* @__PURE__ */ m(f.Provider, { value: { client: s, state: c }, children: n });
+}
+function k() {
+  const r = g(f);
+  if (!r)
+    throw new Error("useAuth must be used within an SSOProvider");
+  const { client: n, state: e } = r, c = u((t) => n.signIn(t), [n]), i = u((t) => n.signInCityEmployee(t), [n]), s = u((t) => n.signOut(t), [n]), l = u(() => n.forgotPassword(), [n]), d = u((t) => n.acquireToken(t), [n]), h = u(
+    (t) => {
+      const o = e.user?.idTokenClaims;
+      if (!o) return !1;
+      const a = o.roles ?? o.extension_Roles ?? [];
+      return Array.isArray(a) && a.includes(t);
+    },
+    [e.user]
+  ), v = O(() => {
+    const t = e.user?.idTokenClaims;
+    if (!t) return null;
+    const o = t.given_name ?? t.name ?? "", a = t.family_name ?? "";
+    return a ? `${o} ${a}`.trim() : o;
+  }, [e.user]);
+  return {
+    // State
+    isAuthenticated: e.isAuthenticated,
+    isLoading: e.isLoading,
+    user: e.user,
+    token: e.token,
+    error: e.error,
+    activePolicy: e.activePolicy,
+    authReady: e.authReady,
+    userName: v,
+    // Actions
+    signIn: c,
+    signInCityEmployee: i,
+    signOut: s,
+    forgotPassword: l,
+    acquireToken: d,
+    // Utilities
+    hasRole: h
+  };
+}
+function x() {
+  const r = g(f);
+  if (!r)
+    throw new Error("useSSOClient must be used within an SSOProvider");
+  return r.client;
+}
+function T({
+  children: r,
+  signInPolicy: n = "B2C_1A_AD_SIGNIN_ONLY",
+  resetPasswordPolicy: e = "B2C_1A_PASSWORDRESET",
+  debug: c = !1
+}) {
+  const i = S(null);
+  return i.current || (i.current = new w({
+    clientId: void 0,
+    b2cEnvironment: void 0,
+    authorityDomain: void 0,
+    redirectUri: void 0,
+    policies: {
+      signUpSignIn: n,
+      signInOnly: n,
+      resetPassword: e
+    }
+  })), /* @__PURE__ */ m(p, { config: { provider: i.current, debug: c }, children: r });
+}
+export {
+  T as B2CSSOProvider,
+  f as SSOContext,
+  p as SSOProvider,
+  k as useAuth,
+  x as useSSOClient
+};
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","sources":["../src/context.tsx","../src/hooks/useAuth.ts","../src/hooks/useSSOClient.ts","../src/B2CSSOProvider.tsx"],"sourcesContent":["import { createContext, useRef, useState, useEffect } from \"react\";\nimport { SSOClient } from \"@phila/sso-core\";\nimport type { SSOClientConfig, SSOClientState } from \"@phila/sso-core\";\nimport type { ReactNode } from \"react\";\n\nconst INITIAL_STATE: SSOClientState = {\n  isAuthenticated: false,\n  isLoading: true,\n  user: null,\n  token: null,\n  error: null,\n  activePolicy: null,\n  authReady: false,\n};\n\nexport interface SSOContextValue {\n  client: SSOClient;\n  state: SSOClientState;\n}\n\nexport const SSOContext = createContext<SSOContextValue | null>(null);\n\nexport interface SSOProviderProps {\n  config: SSOClientConfig;\n  children: ReactNode;\n}\n\nexport function SSOProvider({ config, children }: SSOProviderProps) {\n  const clientRef = useRef<SSOClient | null>(null);\n  const [state, setState] = useState<SSOClientState>(INITIAL_STATE);\n\n  // Create client once (stable across renders)\n  if (!clientRef.current) {\n    clientRef.current = new SSOClient(config);\n  }\n\n  const client = clientRef.current;\n\n  useEffect(() => {\n    // Subscribe to state changes\n    const unsubscribe = client.events.on(\"auth:stateChanged\", (newState: SSOClientState) => {\n      setState(newState);\n    });\n\n    // Initialize\n    client.initialize();\n\n    return () => {\n      unsubscribe();\n      client.destroy();\n    };\n  }, [client]);\n\n  return <SSOContext.Provider value={{ client, state }}>{children}</SSOContext.Provider>;\n}\n","import { useContext, useCallback, useMemo } from \"react\";\nimport { SSOContext } from \"../context\";\nimport type { SignInOptions, SignOutOptions, TokenOptions } from \"@phila/sso-core\";\n\n/**\n * Primary hook for SSO authentication in React apps.\n * Same API shape as the Vue composable for consistency.\n */\nexport function useAuth() {\n  const context = useContext(SSOContext);\n  if (!context) {\n    throw new Error(\"useAuth must be used within an SSOProvider\");\n  }\n\n  const { client, state } = context;\n\n  // Stable action references\n  const signIn = useCallback((options?: SignInOptions) => client.signIn(options), [client]);\n\n  const signInCityEmployee = useCallback((options?: SignInOptions) => client.signInCityEmployee(options), [client]);\n\n  const signOut = useCallback((options?: SignOutOptions) => client.signOut(options), [client]);\n\n  const forgotPassword = useCallback(() => client.forgotPassword(), [client]);\n\n  const acquireToken = useCallback((options?: TokenOptions) => client.acquireToken(options), [client]);\n\n  const hasRole = useCallback(\n    (role: string): boolean => {\n      const claims = state.user?.idTokenClaims as Record<string, unknown> | undefined;\n      if (!claims) return false;\n      const roles = (claims.roles ?? claims.extension_Roles ?? []) as string[];\n      return Array.isArray(roles) && roles.includes(role);\n    },\n    [state.user],\n  );\n\n  const userName = useMemo(() => {\n    const claims = state.user?.idTokenClaims as Record<string, unknown> | undefined;\n    if (!claims) return null;\n    const given = (claims.given_name ?? claims.name ?? \"\") as string;\n    const family = (claims.family_name ?? \"\") as string;\n    return family ? `${given} ${family}`.trim() : given;\n  }, [state.user]);\n\n  return {\n    // State\n    isAuthenticated: state.isAuthenticated,\n    isLoading: state.isLoading,\n    user: state.user,\n    token: state.token,\n    error: state.error,\n    activePolicy: state.activePolicy,\n    authReady: state.authReady,\n    userName,\n\n    // Actions\n    signIn,\n    signInCityEmployee,\n    signOut,\n    forgotPassword,\n    acquireToken,\n\n    // Utilities\n    hasRole,\n  };\n}\n","import { useContext } from \"react\";\nimport { SSOContext } from \"../context\";\nimport type { SSOClient } from \"@phila/sso-core\";\n\n/**\n * Access the raw SSOClient instance.\n * Must be called within an SSOProvider.\n */\nexport function useSSOClient(): SSOClient {\n  const context = useContext(SSOContext);\n  if (!context) {\n    throw new Error(\"useSSOClient must be used within an SSOProvider\");\n  }\n  return context.client;\n}\n","// ABOUTME: Convenience provider component for React/Vite apps using Azure AD B2C\n// ABOUTME: Reads VITE_SSO_* env vars by convention so apps need zero B2CProvider boilerplate\nimport { useRef } from \"react\";\nimport { B2CProvider } from \"@phila/sso-core\";\nimport { SSOProvider } from \"./context\";\nimport type { ReactNode } from \"react\";\n\nexport interface B2CSSOProviderProps {\n  children: ReactNode;\n  signInPolicy?: string;\n  resetPasswordPolicy?: string;\n  debug?: boolean;\n}\n\n/**\n * Drop-in provider for Azure AD B2C authentication.\n * Reads connection details from VITE_SSO_* environment variables:\n *   VITE_SSO_CLIENT_ID, VITE_SSO_TENANT, VITE_SSO_AUTHORITY_DOMAIN, VITE_SSO_REDIRECT_URI\n */\nexport function B2CSSOProvider({\n  children,\n  signInPolicy = \"B2C_1A_AD_SIGNIN_ONLY\",\n  resetPasswordPolicy = \"B2C_1A_PASSWORDRESET\",\n  debug = import.meta.env.DEV,\n}: B2CSSOProviderProps) {\n  const providerRef = useRef<B2CProvider | null>(null);\n\n  // Create once — props that affect provider construction are treated as initializers\n  if (!providerRef.current) {\n    providerRef.current = new B2CProvider({\n      clientId: import.meta.env.VITE_SSO_CLIENT_ID,\n      b2cEnvironment: import.meta.env.VITE_SSO_TENANT,\n      authorityDomain: import.meta.env.VITE_SSO_AUTHORITY_DOMAIN,\n      redirectUri: import.meta.env.VITE_SSO_REDIRECT_URI,\n      policies: {\n        signUpSignIn: signInPolicy,\n        signInOnly: signInPolicy,\n        resetPassword: resetPasswordPolicy,\n      },\n    });\n  }\n\n  return <SSOProvider config={{ provider: providerRef.current, debug }}>{children}</SSOProvider>;\n}\n"],"names":["INITIAL_STATE","SSOContext","createContext","SSOProvider","config","children","clientRef","useRef","state","setState","useState","SSOClient","client","useEffect","unsubscribe","newState","jsx","useAuth","context","useContext","signIn","useCallback","options","signInCityEmployee","signOut","forgotPassword","acquireToken","hasRole","role","claims","roles","userName","useMemo","given","family","useSSOClient","B2CSSOProvider","signInPolicy","resetPasswordPolicy","debug","providerRef","B2CProvider"],"mappings":";;;AAKA,MAAMA,IAAgC;AAAA,EACpC,iBAAiB;AAAA,EACjB,WAAW;AAAA,EACX,MAAM;AAAA,EACN,OAAO;AAAA,EACP,OAAO;AAAA,EACP,cAAc;AAAA,EACd,WAAW;AACb,GAOaC,IAAaC,EAAsC,IAAI;AAO7D,SAASC,EAAY,EAAE,QAAAC,GAAQ,UAAAC,KAA8B;AAClE,QAAMC,IAAYC,EAAyB,IAAI,GACzC,CAACC,GAAOC,CAAQ,IAAIC,EAAyBV,CAAa;AAGhE,EAAKM,EAAU,YACbA,EAAU,UAAU,IAAIK,EAAUP,CAAM;AAG1C,QAAMQ,IAASN,EAAU;AAEzB,SAAAO,EAAU,MAAM;AAEd,UAAMC,IAAcF,EAAO,OAAO,GAAG,qBAAqB,CAACG,MAA6B;AACtF,MAAAN,EAASM,CAAQ;AAAA,IACnB,CAAC;AAGD,WAAAH,EAAO,WAAA,GAEA,MAAM;AACX,MAAAE,EAAA,GACAF,EAAO,QAAA;AAAA,IACT;AAAA,EACF,GAAG,CAACA,CAAM,CAAC,GAEJ,gBAAAI,EAACf,EAAW,UAAX,EAAoB,OAAO,EAAE,QAAAW,GAAQ,OAAAJ,KAAU,UAAAH,GAAS;AAClE;AC9CO,SAASY,IAAU;AACxB,QAAMC,IAAUC,EAAWlB,CAAU;AACrC,MAAI,CAACiB;AACH,UAAM,IAAI,MAAM,4CAA4C;AAG9D,QAAM,EAAE,QAAAN,GAAQ,OAAAJ,EAAA,IAAUU,GAGpBE,IAASC,EAAY,CAACC,MAA4BV,EAAO,OAAOU,CAAO,GAAG,CAACV,CAAM,CAAC,GAElFW,IAAqBF,EAAY,CAACC,MAA4BV,EAAO,mBAAmBU,CAAO,GAAG,CAACV,CAAM,CAAC,GAE1GY,IAAUH,EAAY,CAACC,MAA6BV,EAAO,QAAQU,CAAO,GAAG,CAACV,CAAM,CAAC,GAErFa,IAAiBJ,EAAY,MAAMT,EAAO,kBAAkB,CAACA,CAAM,CAAC,GAEpEc,IAAeL,EAAY,CAACC,MAA2BV,EAAO,aAAaU,CAAO,GAAG,CAACV,CAAM,CAAC,GAE7Fe,IAAUN;AAAA,IACd,CAACO,MAA0B;AACzB,YAAMC,IAASrB,EAAM,MAAM;AAC3B,UAAI,CAACqB,EAAQ,QAAO;AACpB,YAAMC,IAASD,EAAO,SAASA,EAAO,mBAAmB,CAAA;AACzD,aAAO,MAAM,QAAQC,CAAK,KAAKA,EAAM,SAASF,CAAI;AAAA,IACpD;AAAA,IACA,CAACpB,EAAM,IAAI;AAAA,EAAA,GAGPuB,IAAWC,EAAQ,MAAM;AAC7B,UAAMH,IAASrB,EAAM,MAAM;AAC3B,QAAI,CAACqB,EAAQ,QAAO;AACpB,UAAMI,IAASJ,EAAO,cAAcA,EAAO,QAAQ,IAC7CK,IAAUL,EAAO,eAAe;AACtC,WAAOK,IAAS,GAAGD,CAAK,IAAIC,CAAM,GAAG,SAASD;AAAA,EAChD,GAAG,CAACzB,EAAM,IAAI,CAAC;AAEf,SAAO;AAAA;AAAA,IAEL,iBAAiBA,EAAM;AAAA,IACvB,WAAWA,EAAM;AAAA,IACjB,MAAMA,EAAM;AAAA,IACZ,OAAOA,EAAM;AAAA,IACb,OAAOA,EAAM;AAAA,IACb,cAAcA,EAAM;AAAA,IACpB,WAAWA,EAAM;AAAA,IACjB,UAAAuB;AAAA;AAAA,IAGA,QAAAX;AAAA,IACA,oBAAAG;AAAA,IACA,SAAAC;AAAA,IACA,gBAAAC;AAAA,IACA,cAAAC;AAAA;AAAA,IAGA,SAAAC;AAAA,EAAA;AAEJ;AC1DO,SAASQ,IAA0B;AACxC,QAAMjB,IAAUC,EAAWlB,CAAU;AACrC,MAAI,CAACiB;AACH,UAAM,IAAI,MAAM,iDAAiD;AAEnE,SAAOA,EAAQ;AACjB;ACKO,SAASkB,EAAe;AAAA,EAC7B,UAAA/B;AAAA,EACA,cAAAgC,IAAe;AAAA,EACf,qBAAAC,IAAsB;AAAA,EACtB,OAAAC,IAAQ;AACV,GAAwB;AACtB,QAAMC,IAAcjC,EAA2B,IAAI;AAGnD,SAAKiC,EAAY,YACfA,EAAY,UAAU,IAAIC,EAAY;AAAA,IACpC,UAAU;AAAA,IACV,gBAAgB;AAAA,IAChB,iBAAiB;AAAA,IACjB,aAAa;AAAA,IACb,UAAU;AAAA,MACR,cAAcJ;AAAA,MACd,YAAYA;AAAA,MACZ,eAAeC;AAAA,IAAA;AAAA,EACjB,CACD,IAGI,gBAAAtB,EAACb,KAAY,QAAQ,EAAE,UAAUqC,EAAY,SAAS,OAAAD,KAAU,UAAAlC,GAAS;AAClF;"}

package/package.json

@@ -0,0 +1,54 @@
+{
+  "name": "@phila/sso-react",
+  "version": "0.0.1",
+  "type": "module",
+  "description": "React adapter for @phila/sso-core",
+  "main": "./dist/index.js",
+  "module": "./dist/index.mjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.mjs",
+      "require": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "keywords": [
+    "sso",
+    "react",
+    "authentication",
+    "hooks"
+  ],
+  "author": "City of Philadelphia",
+  "license": "MIT",
+  "dependencies": {
+    "@phila/sso-core": "0.0.1"
+  },
+  "peerDependencies": {
+    "react": "^18.0.0 || ^19.0.0"
+  },
+  "devDependencies": {
+    "@types/node": "^24.0.0",
+    "@types/react": "^19.2.7",
+    "eslint": "^9.0.0",
+    "react": "^19.1.0",
+    "typescript": "^5.9.3",
+    "vite": "^7.0.6",
+    "vite-plugin-dts": "^3.9.1"
+  },
+  "scripts": {
+    "build": "vite build",
+    "dev": "vite build --watch",
+    "lint": "eslint src/**/*.{ts,tsx}",
+    "lint:fix": "eslint src/**/*.{ts,tsx} --fix",
+    "type-check": "tsc --noEmit",
+    "clean": "rm -rf dist",
+    "test": "vitest run --passWithNoTests",
+    "test:watch": "vitest",
+    "format": "prettier --write .",
+    "format:check": "prettier --check ."
+  }
+}