npm - @telicent-oss/fe-auth-lib - Versions diffs - 0.0.1-TELFE-1438.0 → 0.0.2 - Mend

@telicent-oss/fe-auth-lib 0.0.1-TELFE-1438.0 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/package.json +2 -2
package/src/AuthServerOAuth2Client.js +5 -4
package/src/schemas.js +44 -40
package/src/schemas.test.js +13 -13

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@telicent-oss/fe-auth-lib",
-  "version": "0.0.1-TELFE-1438.0",
+  "version": "0.0.2",
   "private": false,
   "license": "Apache-2.0",
   "description": "OAuth2 client library for Telicent Authentication Server",
@@ -50,5 +50,5 @@
   "engines": {
     "node": ">=20.19.0"
   },
-  "gitHead": "8b19f4ea570f6d69313811bdc1e1addd3b92e43a"
+  "gitHead": "658932e3799d7e9cbc44e256960c73e071d15abd"
 }

package/src/AuthServerOAuth2Client.js CHANGED Viewed

@@ -34,6 +34,11 @@ class AuthServerOAuth2Client {
           `Invalid AuthServerOAuth2Client configuration: ${error.message}`
         );
       }
+    } else {
+      console.warn(
+        "⚠️ AuthServerOAuth2Client instantiated with undefined config"
+      );
+      return;
     }
     this.config = {
@@ -414,7 +419,6 @@ class AuthServerOAuth2Client {
         const result = await response.json();
         // set auth_session_id if user is already signed in
         sessionStorage.setItem("auth_id_token", result.id_token);
-        console.log(result);
         return true;
       }
@@ -724,9 +728,6 @@ class AuthServerOAuth2Client {
     const response = await fetch(url, requestOptions);
     if (response.status === 401) {
-      // QUESTION: would I ever use this method to call session check?
-      // I can only envisage scenarios where app endpoints get hit using this?
-      //
       // Don't auto-logout during callback flow or logout operations to prevent infinite loops
       const isCallbackFlow =
         options.skipAutoLogout || url.includes("/session/idtoken");

package/src/schemas.js CHANGED Viewed

@@ -4,11 +4,13 @@ let GetUserInfoSchema;
 let AuthServerOAuth2ClientConfigSchema;
 try {
-  if (typeof require !== 'undefined') {
-    z = require('zod').z;
+  if (typeof require !== "undefined") {
+    z = require("zod").z;
   }
 } catch (e) {
-  console.warn('Zod not available in this environment, schema validation will be disabled');
+  console.warn(
+    "Zod not available in this environment, schema validation will be disabled"
+  );
 }
 /**
@@ -17,64 +19,66 @@ try {
  */
 if (z) {
   GetUserInfoSchema = z.object({
-  // Core user identity (from JWTConfig.java:169-171)
-  sub: z.string(),                    // Always present
-  email: z.string().email(),          // NOT NULL in DB
-  preferred_name: z.string(),         // NOT NULL in DB
+    // Core user identity (from JWTConfig.java:169-171)
+    sub: z.string(), // Always present
+    email: z.string().email(), // NOT NULL in DB
+    preferred_name: z.string(), // NOT NULL in DB
-  // Standard OIDC claims (always present)
-  iss: z.string(),                    // Issuer URL
-  aud: z.string(),                    // Audience (client ID)
-  exp: z.number(),                    // Expiration timestamp
-  iat: z.number(),                    // Issued at timestamp
-  jti: z.string(),                    // JWT ID
+    // Standard OIDC claims (always present)
+    iss: z.string(), // Issuer URL
+    aud: z.string(), // Audience (client ID)
+    exp: z.number(), // Expiration timestamp
+    iat: z.number(), // Issued at timestamp
+    jti: z.string(), // JWT ID
-  // Optional OIDC claims (conditional)
-  nonce: z.string().optional(),       // Only if sent in auth request
-  auth_time: z.number().optional(),   // Authentication timestamp
-  sid: z.string().optional(),         // Session ID
-  azp: z.string().optional(),         // Authorized party
+    // Optional OIDC claims (conditional)
+    nonce: z.string().optional(), // Only if sent in auth request
+    auth_time: z.number().optional(), // Authentication timestamp
+    sid: z.string().optional(), // Session ID
+    azp: z.string().optional(), // Authorized party
-  // FE client additions (check your oauth2Client implementation)
-  name: z.string().optional(),
-  token_expired: z.boolean().optional(),
-  token_expires_at: z.string().optional(),
-  source: z.string().optional(),
-  externalProvider: z.record(z.unknown()).optional(),
+    // FE client additions (check your oauth2Client implementation)
+    name: z.string().optional(),
+    token_expired: z.boolean().optional(),
+    token_expires_at: z.string().optional(),
+    source: z.string().optional(),
+    externalProvider: z.record(z.unknown()).optional(),
   });
   /**
    * Zod schema for AuthServerOAuth2Client constructor config
    */
-  AuthServerOAuth2ClientConfigSchema = z.object({
-    // OAuth2 client identifier
-    clientId: z.string().optional(),
-    authServerUrl: z.string().url().optional(),
-    redirectUri: z.string().url().optional(),
-    popupRedirectUri: z.string().url().optional().nullable(),
-    scope: z.string().optional(),
-    apiUrl: z.string().url().optional(),
-    onLogout: z.function().optional(),
-  }).strict();
+  AuthServerOAuth2ClientConfigSchema = z
+    .object({
+      // OAuth2 client identifier
+      clientId: z.string(),
+      authServerUrl: z.string().url(),
+      redirectUri: z.string().url(),
+      popupRedirectUri: z.string().url(),
+      scope: z.string(),
+      onLogout: z.function(),
+    })
+    .strict();
 }
 // ES module and CommonJS exports
-if (typeof module !== 'undefined' && module.exports) {
+if (typeof module !== "undefined" && module.exports) {
   module.exports = {
     GetUserInfoSchema,
-    AuthServerOAuth2ClientConfigSchema
+    AuthServerOAuth2ClientConfigSchema,
   };
   module.exports.default = {
     GetUserInfoSchema,
-    AuthServerOAuth2ClientConfigSchema
+    AuthServerOAuth2ClientConfigSchema,
   };
 }
-if (typeof exports !== 'undefined' && typeof module === 'undefined') {
+if (typeof exports !== "undefined" && typeof module === "undefined") {
   exports.GetUserInfoSchema = GetUserInfoSchema;
-  exports.AuthServerOAuth2ClientConfigSchema = AuthServerOAuth2ClientConfigSchema;
+  exports.AuthServerOAuth2ClientConfigSchema =
+    AuthServerOAuth2ClientConfigSchema;
   exports.default = {
     GetUserInfoSchema,
-    AuthServerOAuth2ClientConfigSchema
+    AuthServerOAuth2ClientConfigSchema,
   };
 }

package/src/schemas.test.js CHANGED Viewed

@@ -65,19 +65,19 @@ describe("AuthServerOAuth2ClientConfigSchema", () => {
     expect(results).toMatchInlineSnapshot(`
       [
-        "✓ absolute https URL",
-        "✓ absolute http URL",
-        "✓ null value",
-        "✓ omitted field",
-        "✓ all fields with absolute URLs",
-        "✗ relative slash URL in popupRedirectUri → popupRedirectUri: Invalid url",
-        "✗ relative dot-slash URL in popupRedirectUri → popupRedirectUri: Invalid url",
-        "✗ URL without protocol in popupRedirectUri → popupRedirectUri: Invalid url",
-        "✗ protocol-relative URL in popupRedirectUri → popupRedirectUri: Invalid url",
-        "✗ relative URL in authServerUrl → authServerUrl: Invalid url",
-        "✗ relative URL in redirectUri → redirectUri: Invalid url",
-        "✗ relative URL in apiUrl → apiUrl: Invalid url",
-        "✗ unknown property → root: Unrecognized key(s) in object: 'unknownProperty'",
+        "✗ absolute https URL → clientId: Required, authServerUrl: Required, redirectUri: Required, scope: Required, onLogout: Required",
+        "✗ absolute http URL → clientId: Required, authServerUrl: Required, redirectUri: Required, scope: Required, onLogout: Required",
+        "✗ null value → clientId: Required, authServerUrl: Required, redirectUri: Required, popupRedirectUri: Expected string, received null, scope: Required, onLogout: Required",
+        "✗ omitted field → authServerUrl: Required, redirectUri: Required, popupRedirectUri: Required, scope: Required, onLogout: Required",
+        "✗ all fields with absolute URLs → onLogout: Required, root: Unrecognized key(s) in object: 'apiUrl'",
+        "✗ relative slash URL in popupRedirectUri → clientId: Required, authServerUrl: Required, redirectUri: Required, popupRedirectUri: Invalid url, scope: Required, onLogout: Required",
+        "✗ relative dot-slash URL in popupRedirectUri → clientId: Required, authServerUrl: Required, redirectUri: Required, popupRedirectUri: Invalid url, scope: Required, onLogout: Required",
+        "✗ URL without protocol in popupRedirectUri → clientId: Required, authServerUrl: Required, redirectUri: Required, popupRedirectUri: Invalid url, scope: Required, onLogout: Required",
+        "✗ protocol-relative URL in popupRedirectUri → clientId: Required, authServerUrl: Required, redirectUri: Required, popupRedirectUri: Invalid url, scope: Required, onLogout: Required",
+        "✗ relative URL in authServerUrl → clientId: Required, authServerUrl: Invalid url, redirectUri: Required, popupRedirectUri: Required, scope: Required, onLogout: Required",
+        "✗ relative URL in redirectUri → clientId: Required, authServerUrl: Required, redirectUri: Invalid url, popupRedirectUri: Required, scope: Required, onLogout: Required",
+        "✗ relative URL in apiUrl → clientId: Required, authServerUrl: Required, redirectUri: Required, popupRedirectUri: Required, scope: Required, onLogout: Required, root: Unrecognized key(s) in object: 'apiUrl'",
+        "✗ unknown property → authServerUrl: Required, redirectUri: Required, popupRedirectUri: Required, scope: Required, onLogout: Required, root: Unrecognized key(s) in object: 'unknownProperty'",
       ]
     `);
   });