@qlik/api 1.21.0 → 1.23.0

package/chunks/{BUSRKHDX.js → OCV75U5H.js}

@@ -565,9 +565,22 @@ function clearStoredAnonymousTokens(hostConfig) {
 }
 
 // src/auth/internal/default-auth-modules/oauth/oauth-utils.ts
+function toPerformInteractiveLoginFunction(performInteractiveLogin) {
+  if (typeof performInteractiveLogin === "string") {
+    const fn = lookupInteractiveLoginFn(performInteractiveLogin);
+    if (!fn) {
+      throw new Error(`No such function: ${performInteractiveLogin}`);
+    }
+    return fn;
+  }
+  return performInteractiveLogin;
+}
 function lookupGetAccessFn(getAccessToken2) {
   return globalThis[getAccessToken2];
 }
+function lookupInteractiveLoginFn(name) {
+  return globalThis[name];
+}
 function handlePossibleErrors(data) {
   if (data.errors) {
     throw new AuthorizationError(data.errors);
@@ -598,6 +611,21 @@ async function sha256(message) {
   const hashBase64 = byteArrayToBase64(hashArray);
   return hashBase64.replaceAll(/\+/g, "-").replaceAll(/\//g, "_").replace(/=+$/, "");
 }
+async function createInteractiveLoginUrl(hostConfig, redirectUri, state, verifier) {
+  const clientId = hostConfig.clientId || "";
+  const locationUrl = toValidLocationUrl(hostConfig);
+  const codeChallenge = await sha256(verifier);
+  const queryParams = {
+    response_type: "code",
+    client_id: clientId,
+    redirect_uri: redirectUri,
+    scope: hostConfig.scope || "user_default",
+    state,
+    code_challenge: codeChallenge,
+    code_challenge_method: "S256"
+  };
+  return `${locationUrl}/oauth/authorize?${toQueryString(queryParams)}`;
+}
 async function startFullPageLoginFlow(hostConfig) {
   const clientId = hostConfig.clientId || "";
   const locationUrl = toValidLocationUrl(hostConfig);
@@ -773,6 +801,39 @@ async function getOAuthTokensForBrowser(hostConfig) {
           refreshToken: void 0,
           errors: void 0
         };
+      } catch (error) {
+        return errorMessageToAuthData("Could not fetch access token using custom function");
+      }
+    }
+    if (hostConfig.performInteractiveLogin) {
+      let usedRedirectUri;
+      try {
+        const verifier2 = generateRandomString(128);
+        const originalState = generateRandomString(43);
+        const { code: code2, state } = extractCodeAndState(
+          await toPerformInteractiveLoginFunction(hostConfig.performInteractiveLogin)({
+            getLoginUrl: async ({ redirectUri }) => {
+              usedRedirectUri = redirectUri;
+              return createInteractiveLoginUrl(hostConfig, redirectUri, originalState, verifier2);
+            }
+          })
+        );
+        if (!usedRedirectUri) {
+          return errorMessageToAuthData("No redirect uri provided");
+        }
+        if (originalState !== state) {
+          return errorMessageToAuthData("State returned by custom interactive login function does not match original");
+        }
+        if (!code2) {
+          return errorMessageToAuthData("No code found in response from custom interactive login function");
+        }
+        const tokenResponse = await exchangeCodeAndVerifierForAccessTokenData(
+          hostConfig,
+          code2,
+          verifier2,
+          usedRedirectUri
+        );
+        return tokenResponse;
       } catch (error) {
         return {
           accessToken: void 0,
@@ -781,7 +842,7 @@ async function getOAuthTokensForBrowser(hostConfig) {
             {
               code: "",
               status: 401,
-              title: "Could not fetch access token using custom function",
+              title: "Could not perform custom interactive login",
               // eslint-disable-next-line @typescript-eslint/restrict-template-expressions
               detail: `${error}`
             }
@@ -808,6 +869,10 @@ async function getOAuthTokensForBrowser(hostConfig) {
   if (oauthTokens) {
     return oauthTokens;
   }
+  if (hostConfig.performInteractiveLogin) {
+    return new Promise(() => {
+    });
+  }
   if (hostConfig.authRedirectUserConfirmation) {
     await hostConfig.authRedirectUserConfirmation();
   }
@@ -856,6 +921,30 @@ async function refreshAccessToken(hostConfig) {
     }
   }
 }
+function extractCodeAndState(input) {
+  if (typeof input === "string") {
+    const queryParams = new URLSearchParams(new URL(input).search);
+    return {
+      code: queryParams.get("code") || "",
+      state: queryParams.get("state") || ""
+    };
+  }
+  return input;
+}
+function errorMessageToAuthData(message) {
+  return {
+    accessToken: void 0,
+    refreshToken: void 0,
+    errors: [
+      {
+        code: "",
+        status: 401,
+        title: message,
+        detail: ""
+      }
+    ]
+  };
+}
 
 // src/auth/internal/default-auth-modules/oauth/temporary-token.ts
 async function exchangeAccessTokenForTemporaryToken(hostConfig, accessToken, purpose) {
@@ -1250,6 +1339,12 @@ async function handleAuthenticationError6({
     };
   }
   if (isBrowser()) {
+    if (hostConfig.performInteractiveLogin) {
+      clearStoredOauthTokens(hostConfig);
+      return {
+        retry: true
+      };
+    }
     if (hostConfig.authRedirectUserConfirmation) {
       await hostConfig.authRedirectUserConfirmation();
     }
@@ -1279,7 +1374,8 @@ var oauth_default = {
       "subject",
       "userId",
       "noCache",
-      "getAccessToken"
+      "getAccessToken",
+      "performInteractiveLogin"
     ]
   })
 };
@@ -1307,10 +1403,10 @@ function getXrfKey(hostConfig) {
 }
 
 // src/auth/internal/default-auth-modules/windows-cookie.ts
-function getRestCallAuthParams7({
+async function getRestCallAuthParams7({
   hostConfig
 }) {
-  return Promise.resolve({
+  return {
     headers: {
       "X-Qlik-XrfKey": getXrfKey(hostConfig)
     },
@@ -1318,16 +1414,17 @@ function getRestCallAuthParams7({
       xrfkey: getXrfKey(hostConfig)
     },
     credentials: getCredentialsForCookieAuth(hostConfig)
-  });
+  };
 }
-function getWebSocketAuthParams7({
+async function getWebSocketAuthParams7({
   hostConfig
 }) {
-  return Promise.resolve({
+  return {
     queryParams: {
-      xrfkey: getXrfKey(hostConfig)
+      xrfkey: getXrfKey(hostConfig),
+      "qlik-csrf-token": await getCsrfToken(hostConfig, true)
     }
-  });
+  };
 }
 async function handleAuthenticationError7({
   hostConfig
@@ -1983,6 +2080,7 @@ async function parseFetchResponse(fetchResponse, url) {
       case "application/octet-stream":
       case "application/zip":
       case "application/vnd.openxmlformats-officedocument.spreadsheetml.sheet":
+      case "application/pdf":
         resultData = toDownloadableBlob(await fetchResponse.blob());
         break;
       case "text/event-stream":
@@ -2049,6 +2147,5 @@ export {
   clearApiCache,
   parseFetchResponse,
   invoke_fetch_default,
-  getCsrfToken,
   auth_default
 };

package/chunks/{DTGUILK5.js → SMQGR3VM.js}

@@ -1,12 +1,12 @@
 import {
   getInvokeFetchRuntimeModule
-} from "./2OQLWLWE.js";
+} from "./3KD5W26Z.js";
 import {
   isBrowser
 } from "./2ZQ3ZX7F.js";
 
 // src/public/invoke-fetch.ts
-var defaultUserAgent = "qlik-api/1.21.0";
+var defaultUserAgent = "qlik-api/1.23.0";
 async function invokeFetch(api, props) {
   const hostConfig = props.options?.hostConfig;
   let userAgent;

package/chunks/{4M3Q6QY3.js → UJV2QU2J.js}

@@ -4,7 +4,8 @@ import {
   invokeFetch,
   isWindows,
   toValidWebsocketLocationUrl
-} from "./BUSRKHDX.js";
+} from "./OCV75U5H.js";
+import "./7RHSSS4W.js";
 import {
   isBrowser
 } from "./2ZQ3ZX7F.js";
@@ -86,19 +87,27 @@ function toGlobalAppSessionId({
   identity,
   hostConfig,
   withoutData,
-  useReloadEngine
+  useReloadEngine,
+  ttlSeconds,
+  workloadType
 }) {
   const locationUrl = toValidWebsocketLocationUrl(hostConfig);
   let url = `${locationUrl}/${appId}`;
   if (identity) {
     url += `/${identity}`;
   }
+  if (ttlSeconds !== void 0 && ttlSeconds >= 0) {
+    url += `/ttl/${ttlSeconds}`;
+  }
   if (useReloadEngine) {
     url += "/useReloadEngine";
   }
   if (withoutData) {
     url += "/withoutData";
   }
+  if (workloadType) {
+    url += `?workloadType=${workloadType}`;
+  }
   return url;
 }
 async function runPendingInitialActions(initialActionsForApp, sharedSession, doc) {
@@ -109,7 +118,7 @@ async function runPendingInitialActions(initialActionsForApp, sharedSession, doc
     }
   }
 }
-async function addInitialSharedSessionCreationAction(openAppSessionProps, action) {
+function addInitialSharedSessionCreationAction(openAppSessionProps, action) {
   const key = toGlobalAppSessionId(openAppSessionProps);
   let initialActionArray = initialActions[key];
   if (!initialActionArray) {
@@ -118,11 +127,18 @@ async function addInitialSharedSessionCreationAction(openAppSessionProps, action
   initialActionArray.push(action);
   const existingSharedSession = sharedSessions[key];
   if (existingSharedSession) {
-    const doc = await existingSharedSession.docPromise;
-    if (doc) {
-      runPendingInitialActions(initialActionArray, existingSharedSession, doc);
-    }
+    existingSharedSession.docPromise.then((doc) => {
+      if (doc) {
+        runPendingInitialActions(initialActionArray, existingSharedSession, doc);
+      }
+    });
   }
+  return () => {
+    const index = initialActionArray.indexOf(action);
+    if (index > -1) {
+      initialActionArray.splice(index, 1);
+    }
+  };
 }
 function listenForWindowsAuthenticationInformation(session) {
   let resolveAuthSuggestedInWebsocket;
@@ -145,7 +161,7 @@ function listenForWindowsAuthenticationInformation(session) {
   return authSuggestedInWebsocket;
 }
 async function createAndSetupEnigmaSession(props, canRetry) {
-  const { createEnigmaSession } = await import("./3FHEUGST.js");
+  const { createEnigmaSession } = await import("./3REGOC54.js");
   const session = await createEnigmaSession(props);
   setupSessionListeners(session, props);
   let global;
@@ -439,7 +455,18 @@ function resumeShouldRejectPromiseIfNotReattached(bool) {
 }
 async function checkConnectivity(hostConfig) {
   let status = "online";
-  const catchFunc = (err) => {
+  const method = "get";
+  const options = {
+    hostConfig,
+    timeoutMs: 4e3,
+    noCache: true
+  };
+  try {
+    const result = await invokeFetch("", { method, pathTemplate: "/api/v1/user-locale", options });
+    if (!result.headers.get("content-type")?.includes("application/json")) {
+      status = "unauthorized";
+    }
+  } catch (err) {
     const fetchErr = err;
     switch (fetchErr.status) {
       case 0:
@@ -449,16 +476,7 @@ async function checkConnectivity(hostConfig) {
         status = "unauthorized";
         break;
     }
-  };
-  const method = "get";
-  const options = {
-    hostConfig,
-    timeoutMs: 2e3,
-    noCache: true
-  };
-  const fetchRoot = invokeFetch("", { method, pathTemplate: "", options }).catch(catchFunc);
-  const fetchMe = invokeFetch("", { method, pathTemplate: "/api/v1/users/me", options }).catch(catchFunc);
-  await Promise.all([fetchRoot, fetchMe]);
+  }
   return Promise.resolve(status);
 }
 async function sessionResumeWithRetry(session, hostConfig) {
@@ -566,14 +584,16 @@ function getExternalSession(externalApp, appSessionProps) {
 }
 
 // src/qix/qix-functions.ts
-async function createSessionApp() {
+async function createSessionApp(ttlSeconds, workloadType) {
   let sharedSession;
   if ((await getPlatform()).isCloud) {
-    sharedSession = await getOrCreateSharedSession({ appId: `SessionApp_${Date.now()}` });
+    sharedSession = await getOrCreateSharedSession({ appId: `SessionApp_${Date.now()}`, ttlSeconds, workloadType });
   } else {
     sharedSession = await getOrCreateSharedSession({
       appId: `%3Ftransient%3D/identity/${Date.now()}`,
-      useSessionApp: true
+      useSessionApp: true,
+      ttlSeconds,
+      workloadType
     });
   }
   let alreadyClosed = false;
@@ -657,7 +677,7 @@ function useAppHook(react) {
   };
 }
 function addInitialAppAction(openAppSessionProps, action) {
-  addInitialSharedSessionCreationAction(openAppSessionProps, action);
+  return addInitialSharedSessionCreationAction(openAppSessionProps, action);
 }
 function onWebSocketEvent(fn) {
   return globalOnWebSocketEvent(fn);

package/chunks/{YQLW56LG.js → VXEOAWM6.js}

@@ -1,6 +1,6 @@
 import {
   getQixRuntimeModule
-} from "./2OQLWLWE.js";
+} from "./3KD5W26Z.js";
 
 // src/public/qix.ts
 function openAppSession(appSessionProps) {

package/collections.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 type CollectionByIdPatch = {

package/collections.js

@@ -1,8 +1,8 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/collections.ts

package/csp-origins.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 type CSPEntry = {

package/csp-origins.js

@@ -1,8 +1,8 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/csp-origins.ts

package/data-assets.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 type BatchIdDto = {

package/data-assets.js

@@ -1,8 +1,8 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/data-assets.ts

package/data-connections.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 type ActionDeleteRequest = {
@@ -300,7 +300,7 @@ declare const getDataConnections: (query: {
     dataName?: string;
     /** Returns extended list of properties (e.g. encrypted credential string) when set to true. */
     extended?: boolean;
-    /** Filtering resources by properties (filterable properties only) using SCIM filter string. Note the filter string only applies to connections managed by data-connections service, i.e. filtering doesn't apply to DataFile connections. */
+    /** Filtering resources by properties (filterable properties only) using SCIM filter string. Note the filter string only applies to connections managed by data-connections service, i.e. filtering doesn't apply to DataFile connections. When filtering on datetime property (e.g. created, updated), datetime should be in RFC3339 format. */
     filter?: string;
     /** Base Qri (encrypted) will be returned when the query is set to true, default is false */
     includeQris?: boolean;

package/data-connections.js

@@ -1,8 +1,8 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/data-connections.ts

package/data-credentials.d.ts

@@ -1,7 +1,22 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
+type ActionFilterOrphanRequest = {
+    /** Filtering on datasource ID of credentials */
+    datasourceID?: string;
+    /** Filtering on separate status of credentials: * 0 - embedded credential * 1 - separated credential */
+    qSeparated?: 0 | 1;
+    /** Filtering on type of credentials */
+    qType?: string;
+};
+type ActionFilterOrphanResponse = {
+    /** Number of orphan credentials found */
+    count: number;
+    data: OrphanCredentialResItem[];
+};
 type Credential = {
+    /** Datetime when the credential was created */
+    created?: string;
     /** ID datasource that the credential is created for */
     datasourceID?: string;
     links?: Link;
@@ -15,6 +30,8 @@ type Credential = {
     qReferenceKey?: string;
     /** Type of credential */
     qType: string;
+    /** Datetime when the credential was last updated */
+    updated?: string;
 };
 /**
  * Credential
@@ -53,6 +70,27 @@ type Link = {
         href: string;
     };
 };
+/**
+ * Orphan credential
+ */
+type OrphanCredentialResItem = {
+    /** Datetime when the credential was created */
+    created: string;
+    /** ID datasource that the credential is created for */
+    datasourceID?: string;
+    /** UUID of the credential */
+    qID: string;
+    /** Name of the credential */
+    qName: string;
+    /** Type of credential (i.e. connector provider of the corresponding connection) */
+    qType: string;
+    /** Tenant ID of the credential's owner */
+    tenant?: string;
+    /** Datetime when the credential was last updated */
+    updated: string;
+    /** User ID of the credential's owner */
+    user?: string;
+};
 type PatchRequest = {
     patchData: {
         /** Operation type */
@@ -66,6 +104,23 @@ type PatchRequest = {
 type ResponseErrors = {
     errors?: Errors;
 };
+/**
+ * Gets list of orphan data credentials (i.e. credentials that are not associated to any data connection) filtering on properties defined in request body
+ *
+ * @param body an object with the body content
+ * @throws FilterOrphanedDataCredentialsHttpError
+ */
+declare const filterOrphanedDataCredentials: (body: ActionFilterOrphanRequest, options?: ApiCallOptions) => Promise<FilterOrphanedDataCredentialsHttpResponse>;
+type FilterOrphanedDataCredentialsHttpResponse = {
+    data: ActionFilterOrphanResponse;
+    headers: Headers;
+    status: number;
+};
+type FilterOrphanedDataCredentialsHttpError = {
+    data: ResponseErrors;
+    headers: Headers;
+    status: number;
+};
 /**
  * Deletes the specified credential by ID (or by name when type=credentialname is set in query)
  *
@@ -157,6 +212,13 @@ type UpdateDataCredentialHttpError = {
  */
 declare function clearCache(): void;
 interface DataCredentialsAPI {
+    /**
+     * Gets list of orphan data credentials (i.e. credentials that are not associated to any data connection) filtering on properties defined in request body
+     *
+     * @param body an object with the body content
+     * @throws FilterOrphanedDataCredentialsHttpError
+     */
+    filterOrphanedDataCredentials: typeof filterOrphanedDataCredentials;
     /**
      * Deletes the specified credential by ID (or by name when type=credentialname is set in query)
      *
@@ -201,4 +263,4 @@ interface DataCredentialsAPI {
  */
 declare const dataCredentialsExport: DataCredentialsAPI;
 
-export { type Credential, type CredentialCreate, type DataCredentialsAPI, type DeleteDataCredentialHttpError, type DeleteDataCredentialHttpResponse, type Error, type Errors, type GetDataCredentialHttpError, type GetDataCredentialHttpResponse, type Link, type PatchDataCredentialHttpError, type PatchDataCredentialHttpResponse, type PatchRequest, type ResponseErrors, type UpdateDataCredentialHttpError, type UpdateDataCredentialHttpResponse, clearCache, dataCredentialsExport as default, deleteDataCredential, getDataCredential, patchDataCredential, updateDataCredential };
+export { type ActionFilterOrphanRequest, type ActionFilterOrphanResponse, type Credential, type CredentialCreate, type DataCredentialsAPI, type DeleteDataCredentialHttpError, type DeleteDataCredentialHttpResponse, type Error, type Errors, type FilterOrphanedDataCredentialsHttpError, type FilterOrphanedDataCredentialsHttpResponse, type GetDataCredentialHttpError, type GetDataCredentialHttpResponse, type Link, type OrphanCredentialResItem, type PatchDataCredentialHttpError, type PatchDataCredentialHttpResponse, type PatchRequest, type ResponseErrors, type UpdateDataCredentialHttpError, type UpdateDataCredentialHttpResponse, clearCache, dataCredentialsExport as default, deleteDataCredential, filterOrphanedDataCredentials, getDataCredential, patchDataCredential, updateDataCredential };

package/data-credentials.js

@@ -1,11 +1,18 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/data-credentials.ts
+var filterOrphanedDataCredentials = async (body, options) => invokeFetch("data-credentials", {
+  method: "post",
+  pathTemplate: "/api/v1/data-credentials/actions/filter-orphan",
+  body,
+  contentType: "application/json",
+  options
+});
 var deleteDataCredential = async (qID, query, options) => invokeFetch("data-credentials", {
   method: "delete",
   pathTemplate: "/api/v1/data-credentials/{qID}",
@@ -42,6 +49,7 @@ function clearCache() {
   return clearApiCache("data-credentials");
 }
 var dataCredentialsExport = {
+  filterOrphanedDataCredentials,
   deleteDataCredential,
   getDataCredential,
   patchDataCredential,
@@ -53,6 +61,7 @@ export {
   clearCache,
   data_credentials_default as default,
   deleteDataCredential,
+  filterOrphanedDataCredentials,
   getDataCredential,
   patchDataCredential,
   updateDataCredential

package/data-files.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 type BatchChangeSpaceItem = {

package/data-files.js

@@ -1,8 +1,8 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/data-files.ts

package/extensions.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 /**

package/extensions.js

@@ -1,8 +1,8 @@
 import {
   clearApiCache,
   invokeFetch
-} from "./chunks/DTGUILK5.js";
-import "./chunks/2OQLWLWE.js";
+} from "./chunks/SMQGR3VM.js";
+import "./chunks/3KD5W26Z.js";
 import "./chunks/2ZQ3ZX7F.js";
 
 // src/public/rest/extensions.ts

package/{global.types--37uwGji.d.ts → global.types-qsBNouXJ.d.ts}

@@ -68,6 +68,18 @@ type WindowsCookieAuthConfig = {
     /** If set to false the `credentials` property will be set to same-origin  */
     crossSiteCookies?: boolean;
 };
+type PerformInteractiveLoginFn = (props: {
+    /**
+     * Returns the url to the login page. The redirectUri parameter property is used to tell the login page where to redirect the browser after the login has succeeded.
+     * Note that the redirectUri needs to be registered in the oauth configuration.
+     */
+    getLoginUrl: (props: {
+        redirectUri: string;
+    }) => Promise<string>;
+}) => Promise<{
+    code: string;
+    state: string;
+} | string>;
 /** OAuth2 Auth Configuration for a HostConfig */
 type Oauth2AuthConfig = {
     /** client id of oauth client created by tenant admin */
@@ -101,6 +113,12 @@ type Oauth2AuthConfig = {
      * Typically used together with the `noCache` since caching is done on the browser side.
      */
     userId?: string;
+    /**
+     * Can be used to customize the login flow, for instance if the login page should be shown in another browser tab/window.
+     * The function is asynchronous and when the loging flow is finished it should return the code and state provided in the
+     * query of the oauth redirect callback. The code and state can either be provided as an object or as the entire callback url.
+     */
+    performInteractiveLogin?: PerformInteractiveLoginFn;
 };
 /** Anonymous Auth Configuration for a HostConfig - used when embedding UI's linked to an anonymous tenant/app */
 type AnonymousAuthConfig = {

package/glossaries.d.ts

@@ -1,4 +1,4 @@
-import { A as ApiCallOptions } from './global.types--37uwGji.js';
+import { A as ApiCallOptions } from './global.types-qsBNouXJ.js';
 import './auth-types-PkN9CAF_.js';
 
 /**