@propelauth/nextjs 0.0.115 → 0.0.119

package/dist/client/index.d.ts

@@ -1,7 +1,85 @@
 import React from 'react';
 
+declare enum SocialLoginProvider {
+    Google = "Google",
+    GitHub = "GitHub",
+    Microsoft = "Microsoft",
+    Slack = "Slack",
+    LinkedIn = "LinkedIn",
+    Salesforce = "Salesforce",
+    Xero = "Xero",
+    QuickBooksOnline = "QuickBooks Online"
+}
+declare enum SamlLoginProvider {
+    Google = "Google",
+    Rippling = "Rippling",
+    OneLogin = "OneLogin",
+    JumpCloud = "JumpCloud",
+    Okta = "Okta",
+    Azure = "Azure",
+    Duo = "Duo",
+    Generic = "Generic"
+}
+type InternalPasswordLoginMethod = {
+    login_method: 'password';
+};
+type InternalMagicLinkLoginMethod = {
+    login_method: 'magic_link';
+};
+type InternalSocialSsoLoginMethod = {
+    login_method: 'social_sso';
+    provider: SocialLoginProvider;
+};
+type InternalEmailConfirmationLinkLoginMethod = {
+    login_method: 'email_confirmation_link';
+};
+type InternalSamlSsoLoginMethod = {
+    login_method: 'saml_sso';
+    provider: SamlLoginProvider;
+    org_id: string;
+};
+type InternalImpersonationLoginMethod = {
+    login_method: 'impersonation';
+};
+type InternalGeneratedFromBackendApiLoginMethod = {
+    login_method: 'generated_from_backend_api';
+};
+type InternalUnknownLoginMethod = {
+    login_method: 'unknown';
+};
+type InternalLoginMethod = InternalPasswordLoginMethod | InternalMagicLinkLoginMethod | InternalSocialSsoLoginMethod | InternalEmailConfirmationLinkLoginMethod | InternalSamlSsoLoginMethod | InternalImpersonationLoginMethod | InternalGeneratedFromBackendApiLoginMethod | InternalUnknownLoginMethod;
+type PasswordLoginMethod = {
+    loginMethod: 'password';
+};
+type MagicLinkLoginMethod = {
+    loginMethod: 'magic_link';
+};
+type SocialSsoLoginMethod = {
+    loginMethod: 'social_sso';
+    provider: SocialLoginProvider;
+};
+type EmailConfirmationLinkLoginMethod = {
+    loginMethod: 'email_confirmation_link';
+};
+type SamlSsoLoginMethod = {
+    loginMethod: 'saml_sso';
+    provider: SamlLoginProvider;
+    orgId: string;
+};
+type ImpersonationLoginMethod = {
+    loginMethod: 'impersonation';
+};
+type GeneratedFromBackendApiLoginMethod = {
+    loginMethod: 'generated_from_backend_api';
+};
+type UnknownLoginMethod = {
+    loginMethod: 'unknown';
+};
+type LoginMethod = PasswordLoginMethod | MagicLinkLoginMethod | SocialSsoLoginMethod | EmailConfirmationLinkLoginMethod | SamlSsoLoginMethod | ImpersonationLoginMethod | GeneratedFromBackendApiLoginMethod | UnknownLoginMethod;
+
 declare class UserFromToken {
     userId: string;
+    activeOrgId?: string;
     orgIdToOrgMemberInfo?: OrgIdToOrgMemberInfo;
     email: string;
     firstName?: string;
@@ -10,16 +88,20 @@ declare class UserFromToken {
     properties?: {
         [key: string]: unknown;
     };
+    loginMethod?: LoginMethod;
     legacyUserId?: string;
     impersonatorUserId?: string;
     constructor(userId: string, email: string, orgIdToOrgMemberInfo?: OrgIdToOrgMemberInfo, firstName?: string, lastName?: string, username?: string, legacyUserId?: string, impersonatorUserId?: string, properties?: {
         [key: string]: unknown;
-    });
+    }, activeOrgId?: string, loginMethod?: LoginMethod);
+    getActiveOrg(): OrgMemberInfo | undefined;
+    getActiveOrgId(): string | undefined;
     getOrg(orgId: string): OrgMemberInfo | undefined;
     getOrgByName(orgName: string): OrgMemberInfo | undefined;
     getOrgs(): OrgMemberInfo[];
     isImpersonating(): boolean;
     static fromJSON(json: string): UserFromToken;
+    static fromJwtPayload(payload: InternalUser): UserFromToken;
 }
 type OrgIdToOrgMemberInfo = {
     [orgId: string]: OrgMemberInfo;
@@ -46,6 +128,34 @@ declare class OrgMemberInfo {
     get inheritedRolesPlusCurrentRole(): string[];
     get permissions(): string[];
 }
+type InternalOrgMemberInfo = {
+    org_id: string;
+    org_name: string;
+    org_metadata: {
+        [key: string]: any;
+    };
+    url_safe_org_name: string;
+    user_role: string;
+    inherited_user_roles_plus_current_role: string[];
+    user_permissions: string[];
+};
+type InternalUser = {
+    user_id: string;
+    org_member_info?: InternalOrgMemberInfo;
+    org_id_to_org_member_info?: {
+        [org_id: string]: InternalOrgMemberInfo;
+    };
+    email: string;
+    first_name?: string;
+    last_name?: string;
+    username?: string;
+    properties?: {
+        [key: string]: unknown;
+    };
+    login_method?: InternalLoginMethod;
+    legacy_user_id?: string;
+    impersonatorUserId?: string;
+};
 
 declare class User {
     userId: string;
@@ -57,6 +167,7 @@ declare class User {
     lastName?: string;
     pictureUrl?: string;
     orgIdToOrgMemberInfo?: OrgIdToOrgMemberInfo;
+    activeOrgId?: string;
     mfaEnabled: boolean;
     canCreateOrgs: boolean;
     updatePasswordRequired: boolean;
@@ -67,7 +178,7 @@ declare class User {
     };
     legacyUserId?: string;
     impersonatorUserId?: string;
-    constructor({ userId, email, emailConfirmed, hasPassword, username, firstName, lastName, pictureUrl, orgIdToOrgMemberInfo, mfaEnabled, canCreateOrgs, updatePasswordRequired, createdAt, lastActiveAt, legacyUserId, properties, impersonatorUserId, }: {
+    constructor({ userId, email, emailConfirmed, hasPassword, username, firstName, lastName, pictureUrl, orgIdToOrgMemberInfo, activeOrgId, mfaEnabled, canCreateOrgs, updatePasswordRequired, createdAt, lastActiveAt, legacyUserId, properties, impersonatorUserId, }: {
         userId: string;
         email: string;
         emailConfirmed: boolean;
@@ -77,6 +188,7 @@ declare class User {
         lastName?: string;
         pictureUrl?: string;
         orgIdToOrgMemberInfo?: OrgIdToOrgMemberInfo;
+        activeOrgId?: string;
         mfaEnabled: boolean;
         canCreateOrgs: boolean;
         updatePasswordRequired: boolean;
@@ -88,6 +200,8 @@ declare class User {
         };
         impersonatorUserId?: string;
     });
+    getActiveOrg(): OrgMemberInfo | undefined;
+    getActiveOrgId(): string | undefined;
     getOrg(orgId: string): OrgMemberInfo | undefined;
     getOrgByName(orgName: string): OrgMemberInfo | undefined;
     getOrgs(): OrgMemberInfo[];
@@ -98,18 +212,21 @@ type UseUserLoading = {
     isLoggedIn: never;
     user: never;
     accessToken: never;
+    setActiveOrg: never;
 };
 type UseUserLoggedIn = {
     loading: false;
     isLoggedIn: true;
     user: User;
     accessToken: string;
+    setActiveOrg: (orgId: string) => Promise<User | undefined>;
 };
 type UseUserNotLoggedIn = {
     loading: false;
     isLoggedIn: false;
     user: undefined;
     accessToken: undefined;
+    setActiveOrg: never;
 };
 type UseUser = UseUserLoading | UseUserLoggedIn | UseUserNotLoggedIn;
 declare function useUser(): UseUser;

package/dist/client/index.js

@@ -82,10 +82,36 @@ __export(client_exports, {
 });
 module.exports = __toCommonJS(client_exports);
 
+// src/loginMethod.ts
+function toLoginMethod(snake_case) {
+  if (!snake_case) {
+    return { loginMethod: "unknown" };
+  }
+  switch (snake_case.login_method) {
+    case "password":
+      return { loginMethod: "password" };
+    case "magic_link":
+      return { loginMethod: "magic_link" };
+    case "social_sso":
+      return { loginMethod: "social_sso", provider: snake_case.provider };
+    case "email_confirmation_link":
+      return { loginMethod: "email_confirmation_link" };
+    case "saml_sso":
+      return { loginMethod: "saml_sso", provider: snake_case.provider, orgId: snake_case.org_id };
+    case "impersonation":
+      return { loginMethod: "impersonation" };
+    case "generated_from_backend_api":
+      return { loginMethod: "generated_from_backend_api" };
+    default:
+      return { loginMethod: "unknown" };
+  }
+}
+
 // src/user.ts
 var UserFromToken = class {
-  constructor(userId, email, orgIdToOrgMemberInfo, firstName, lastName, username, legacyUserId, impersonatorUserId, properties) {
+  constructor(userId, email, orgIdToOrgMemberInfo, firstName, lastName, username, legacyUserId, impersonatorUserId, properties, activeOrgId, loginMethod) {
     this.userId = userId;
+    this.activeOrgId = activeOrgId;
     this.orgIdToOrgMemberInfo = orgIdToOrgMemberInfo;
     this.email = email;
     this.firstName = firstName;
@@ -94,6 +120,16 @@ var UserFromToken = class {
     this.legacyUserId = legacyUserId;
     this.impersonatorUserId = impersonatorUserId;
     this.properties = properties;
+    this.loginMethod = loginMethod;
+  }
+  getActiveOrg() {
+    if (!this.activeOrgId || !this.orgIdToOrgMemberInfo) {
+      return void 0;
+    }
+    return this.orgIdToOrgMemberInfo[this.activeOrgId];
+  }
+  getActiveOrgId() {
+    return this.activeOrgId;
   }
   getOrg(orgId) {
     if (!this.orgIdToOrgMemberInfo) {
@@ -127,9 +163,7 @@ var UserFromToken = class {
     const obj = JSON.parse(json);
     const orgIdToOrgMemberInfo = {};
     for (const orgId in obj.orgIdToOrgMemberInfo) {
-      orgIdToOrgMemberInfo[orgId] = OrgMemberInfo.fromJSON(
-        JSON.stringify(obj.orgIdToOrgMemberInfo[orgId])
-      );
+      orgIdToOrgMemberInfo[orgId] = OrgMemberInfo.fromJSON(JSON.stringify(obj.orgIdToOrgMemberInfo[orgId]));
     }
     return new UserFromToken(
       obj.userId,
@@ -140,7 +174,34 @@ var UserFromToken = class {
       obj.username,
       obj.legacyUserId,
       obj.impersonatorUserId,
-      obj.properties
+      obj.properties,
+      obj.activeOrgId,
+      obj.loginMethod
+    );
+  }
+  static fromJwtPayload(payload) {
+    let activeOrgId;
+    let orgIdToOrgMemberInfo;
+    if (payload.org_member_info) {
+      activeOrgId = payload.org_member_info.org_id;
+      orgIdToOrgMemberInfo = toOrgIdToOrgMemberInfo({ [activeOrgId]: payload.org_member_info });
+    } else {
+      activeOrgId = void 0;
+      orgIdToOrgMemberInfo = toOrgIdToOrgMemberInfo(payload.org_id_to_org_member_info);
+    }
+    const loginMethod = toLoginMethod(payload.login_method);
+    return new UserFromToken(
+      payload.user_id,
+      payload.email,
+      orgIdToOrgMemberInfo,
+      payload.first_name,
+      payload.last_name,
+      payload.username,
+      payload.legacy_user_id,
+      payload.impersonatorUserId,
+      payload.properties,
+      activeOrgId,
+      loginMethod
     );
   }
 };
@@ -292,6 +353,7 @@ var User = class {
     lastName,
     pictureUrl,
     orgIdToOrgMemberInfo,
+    activeOrgId,
     mfaEnabled,
     canCreateOrgs,
     updatePasswordRequired,
@@ -310,6 +372,7 @@ var User = class {
     this.lastName = lastName;
     this.pictureUrl = pictureUrl;
     this.orgIdToOrgMemberInfo = orgIdToOrgMemberInfo;
+    this.activeOrgId = activeOrgId;
     this.mfaEnabled = mfaEnabled;
     this.canCreateOrgs = canCreateOrgs;
     this.updatePasswordRequired = updatePasswordRequired;
@@ -319,6 +382,15 @@ var User = class {
     this.properties = properties;
     this.impersonatorUserId = impersonatorUserId;
   }
+  getActiveOrg() {
+    if (!this.activeOrgId) {
+      return void 0;
+    }
+    return this.getOrg(this.activeOrgId);
+  }
+  getActiveOrgId() {
+    return this.activeOrgId;
+  }
   getOrg(orgId) {
     var _a;
     return (_a = this.orgIdToOrgMemberInfo) == null ? void 0 : _a[orgId];
@@ -357,21 +429,24 @@ function useUser() {
       loading: true,
       isLoggedIn: void 0,
       user: void 0,
-      accessToken: void 0
+      accessToken: void 0,
+      setActiveOrg: void 0
     };
   } else if (userAndAccessToken.user) {
     return {
       loading: false,
       isLoggedIn: true,
       user: userAndAccessToken.user,
-      accessToken: userAndAccessToken.accessToken
+      accessToken: userAndAccessToken.accessToken,
+      setActiveOrg: context.setActiveOrg
     };
   } else {
     return {
       loading: false,
       isLoggedIn: false,
       user: void 0,
-      accessToken: void 0
+      accessToken: void 0,
+      setActiveOrg: void 0
     };
   }
 }
@@ -558,7 +633,7 @@ var AuthProvider = (props) => {
   const redirectToOrgPage = (orgId, opts) => redirectTo(getOrgPageUrl(orgId, opts));
   const redirectToCreateOrgPage = (opts) => redirectTo(getCreateOrgPageUrl(opts));
   const redirectToSetupSAMLPage = (orgId, opts) => redirectTo(getSetupSAMLPageUrl(orgId, opts));
-  const refreshAuthInfo = () => __async(void 0, null, function* () {
+  const refreshAuthInfo = (0, import_react2.useCallback)(() => __async(void 0, null, function* () {
     const action = yield apiGetUserInfo();
     if (action.error) {
       throw new Error("Failed to refresh token");
@@ -566,7 +641,19 @@ var AuthProvider = (props) => {
       dispatch(action);
       return action.user;
     }
-  });
+  }), [dispatch]);
+  const setActiveOrg = (0, import_react2.useCallback)(
+    (orgId) => __async(void 0, null, function* () {
+      const action = yield apiPostSetActiveOrg(orgId);
+      if (action.error === "not_in_org") {
+        return void 0;
+      } else {
+        dispatch(action);
+        return action.user;
+      }
+    }),
+    [dispatch]
+  );
   const value = {
     loading: authState.loading,
     userAndAccessToken: authState.userAndAccessToken,
@@ -583,7 +670,8 @@ var AuthProvider = (props) => {
     getOrgPageUrl,
     getCreateOrgPageUrl,
     getSetupSAMLPageUrl,
-    refreshAuthInfo
+    refreshAuthInfo,
+    setActiveOrg
   };
   return /* @__PURE__ */ import_react2.default.createElement(AuthContext.Provider, { value }, props.children);
 };
@@ -598,7 +686,7 @@ function apiGetUserInfo() {
         credentials: "include"
       });
       if (userInfoResponse.ok) {
-        const { userinfo, accessToken, impersonatorUserId } = yield userInfoResponse.json();
+        const { userinfo, accessToken, impersonatorUserId, activeOrgId } = yield userInfoResponse.json();
         const user = new User({
           userId: userinfo.user_id,
           email: userinfo.email,
@@ -609,6 +697,7 @@ function apiGetUserInfo() {
           lastName: userinfo.last_name,
           pictureUrl: userinfo.picture_url,
           orgIdToOrgMemberInfo: toOrgIdToOrgMemberInfo(userinfo.org_id_to_org_info),
+          activeOrgId,
           mfaEnabled: userinfo.mfa_enabled,
           canCreateOrgs: userinfo.can_create_orgs,
           updatePasswordRequired: userinfo.update_password_required,
@@ -630,6 +719,51 @@ function apiGetUserInfo() {
     }
   });
 }
+function apiPostSetActiveOrg(orgId) {
+  return __async(this, null, function* () {
+    try {
+      const queryParams = new URLSearchParams({ active_org_id: orgId }).toString();
+      const url = `/api/auth/set-active-org?${queryParams}`;
+      const userInfoResponse = yield fetch(url, {
+        method: "POST",
+        headers: {
+          "Content-Type": "application/json"
+        },
+        credentials: "include"
+      });
+      if (userInfoResponse.ok) {
+        const { userinfo, accessToken, impersonatorUserId, activeOrgId } = yield userInfoResponse.json();
+        const user = new User({
+          userId: userinfo.user_id,
+          email: userinfo.email,
+          emailConfirmed: userinfo.email_confirmed,
+          hasPassword: userinfo.has_password,
+          username: userinfo.username,
+          firstName: userinfo.first_name,
+          lastName: userinfo.last_name,
+          pictureUrl: userinfo.picture_url,
+          orgIdToOrgMemberInfo: toOrgIdToOrgMemberInfo(userinfo.org_id_to_org_info),
+          activeOrgId,
+          mfaEnabled: userinfo.mfa_enabled,
+          canCreateOrgs: userinfo.can_create_orgs,
+          updatePasswordRequired: userinfo.update_password_required,
+          createdAt: userinfo.created_at,
+          lastActiveAt: userinfo.last_active_at,
+          properties: userinfo.properties,
+          impersonatorUserId
+        });
+        return { user, accessToken, error: void 0 };
+      } else if (userInfoResponse.status === 401) {
+        return { error: "not_in_org" };
+      } else {
+        console.info("Failed to set active org", userInfoResponse);
+      }
+    } catch (e) {
+      console.info("Failed to set active org", e);
+    }
+    throw new Error("Failed to set active org");
+  });
+}
 var encodeBase64 = (str) => {
   const encode = window ? window.btoa : btoa;
   return encode(str);