npm - @telicent-oss/fe-auth-lib - Versions diffs - 0.0.2 → 1.0.1 - Mend

@telicent-oss/fe-auth-lib 0.0.2 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/package.json +2 -2
package/src/AuthServerOAuth2Client.d.ts +12 -23
package/src/AuthServerOAuth2Client.js +6 -26
package/src/schemas.d.ts +1 -0
package/src/schemas.js +4 -3

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@telicent-oss/fe-auth-lib",
-  "version": "0.0.2",
+  "version": "1.0.1",
   "private": false,
   "license": "Apache-2.0",
   "description": "OAuth2 client library for Telicent Authentication Server",
@@ -50,5 +50,5 @@
   "engines": {
     "node": ">=20.19.0"
   },
-  "gitHead": "658932e3799d7e9cbc44e256960c73e071d15abd"
+  "gitHead": "4868d793fefb4b0a564b028a85189e608d9ca927"
 }

package/src/AuthServerOAuth2Client.d.ts CHANGED Viewed

@@ -37,14 +37,14 @@ export interface UserInfo {
   email: string;
   /** Preferred display name - NOT NULL in DB */
   preferred_name: string;
-  /** Is Active - NOT NULL in DB */
-  isActive: boolean;
-  /** Groups - NOT NULL in DB */
-  groups: string[];
-  /** Roles - NOT NULL in DB */
-  roles: string[];
-  /** Permissions - NOT NULL in DB */
-  permissions: string[];
+  /** Is Active - from ID token custom claim */
+  isActive?: boolean;
+  /** Groups - optional (not present in ID token) */
+  groups?: string[];
+  /** Roles - optional (not present in ID token) */
+  roles?: string[];
+  /** Permissions - optional (not present in ID token) */
+  permissions?: string[];
   // Standard OIDC claims (always present)
   /** Token issuer URL */
   iss: string;
@@ -74,7 +74,7 @@ export interface UserInfo {
   token_expired?: boolean;
   /** Token expiration timestamp (ISO string) */
   token_expires_at?: string;
-  /** Source of user info ('id_token' or 'oauth2_userinfo_api') */
+  /** Source of user info (id_token; /userinfo removed) */
   source?: string;
   /** External identity provider details */
   externalProvider?: Record<string, unknown>;
@@ -343,22 +343,11 @@ declare class AuthServerOAuth2Client {
   getUserInfo(): UserInfo | null;
   /**
-   * Get fresh user info from OAuth2 userinfo endpoint
+   * Returns ID token claims; /userinfo is no longer available.
    *
-   * Fetches current user data from auth server. Slower than getUserInfo() but
-   * guarantees fresh data. Use when you need up-to-date user information.
+   * Use getUserInfo() instead. This method remains for API compatibility.
    *
-   * @returns Promise resolving to fresh user information
-   * @throws {Error} If request fails or session invalid
-   * @example
-   * ```javascript
-   * try {
-   *   const freshUserInfo = await authClient.getUserInfoFromAPI();
-   *   console.log("Fresh user data:", freshUserInfo);
-   * } catch (error) {
-   *   console.error("Failed to get fresh user info:", error);
-   * }
-   * ```
+   * @returns Promise resolving to user information or null
    */
   getUserInfoFromAPI(): Promise<UserInfo | null>;

package/src/AuthServerOAuth2Client.js CHANGED Viewed

@@ -601,6 +601,7 @@ class AuthServerOAuth2Client {
         sub: payload.sub,
         email: payload.email,
         preferred_name: payload.preferred_name,
+        isActive: payload.isActive,
         iss: payload.iss,
         aud: payload.aud,
         exp: payload.exp,
@@ -646,25 +647,10 @@ class AuthServerOAuth2Client {
   // Get fresh user info from OAuth2 userinfo endpoint (UNIFIED ENDPOINT)
   async getUserInfoFromAPI() {
-    try {
-      const response = await this.makeAuthenticatedRequest(
-        `${this.config.authServerUrl}/userinfo`
-      );
-      if (response.ok) {
-        const data = await response.json();
-        return {
-          ...data,
-          source: this.isCrossDomain
-            ? "oauth2_userinfo_api_cross_domain"
-            : "oauth2_userinfo_api_same_domain",
-        };
-      }
-      return null;
-    } catch (error) {
-      console.error("Error getting user info from OAuth2 API:", error);
-      return null;
-    }
+    console.warn(
+      "getUserInfoFromAPI: /userinfo has been removed; returning ID token claims instead."
+    );
+    return this.getUserInfo();
   }
   // Get raw ID token from storage
@@ -977,10 +963,4 @@ if (typeof module !== "undefined" && module.exports) {
   // ES modules
   exports.default = AuthServerOAuth2Client;
   exports.AuthServerOAuth2Client = AuthServerOAuth2Client;
-}
-// Create global OAuth client instance for browser use
-if (typeof window !== "undefined") {
-  window.AuthServerOAuth2Client = AuthServerOAuth2Client;
-  window.authServerOAuth2Client = new AuthServerOAuth2Client();
-}
+}

package/src/schemas.d.ts CHANGED Viewed

@@ -9,6 +9,7 @@ export declare const GetUserInfoSchema: z.ZodObject<{
   sub: z.ZodString;
   email: z.ZodString;
   preferred_name: z.ZodString;
+  isActive: z.ZodOptional<z.ZodBoolean>;
   // Standard OIDC claims (always present)
   iss: z.ZodString;

package/src/schemas.js CHANGED Viewed

@@ -20,9 +20,10 @@ try {
 if (z) {
   GetUserInfoSchema = z.object({
     // Core user identity (from JWTConfig.java:169-171)
-    sub: z.string(), // Always present
-    email: z.string().email(), // NOT NULL in DB
-    preferred_name: z.string(), // NOT NULL in DB
+    sub: z.string(),                    // Always present
+    email: z.string().email(),          // NOT NULL in DB
+    preferred_name: z.string(),         // NOT NULL in DB
+    isActive: z.boolean().optional(),   // Custom claim from ID token
     // Standard OIDC claims (always present)
     iss: z.string(), // Issuer URL