@touchtech/web-auth 0.0.1

package/README.md

@@ -0,0 +1 @@
+# DSR Authentication

package/dist/components/ProtectedRoute/ProtectedRoute.d.ts

@@ -0,0 +1,9 @@
+import React from "react";
+declare type ProtectedRouteProps = {
+    component: React.ComponentType<any>;
+    path: string | string[];
+    exact?: boolean;
+    skipAuthorization?: boolean;
+};
+declare function ProtectedRoute({ component, path, exact, skipAuthorization, }: ProtectedRouteProps): JSX.Element;
+export default ProtectedRoute;

package/dist/components/ProtectedRoute/ProtectedRoute.js

@@ -0,0 +1,22 @@
+import React, { useContext } from "react";
+import { Redirect, Route } from "react-router-dom";
+import { userHasAccess } from "../../utils";
+import { AuthContext, ProtectedRouteContext } from "../../contexts";
+function ProtectedRoute({ component, path, exact, skipAuthorization, }) {
+    const { user, authService } = useContext(AuthContext);
+    const { tenantId, privilege, unauthorizedPath } = useContext(ProtectedRouteContext);
+    if (user) {
+        if (skipAuthorization || userHasAccess(user, tenantId, privilege)) {
+            return React.createElement(Route, { path: path, component: component, exact: exact });
+        }
+        else {
+            return React.createElement(Redirect, { to: unauthorizedPath });
+        }
+    }
+    else {
+        authService.signIn();
+        return null;
+    }
+}
+export default ProtectedRoute;
+//# sourceMappingURL=ProtectedRoute.js.map

package/dist/components/ProtectedRoute/ProtectedRoute.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ProtectedRoute.js","sourceRoot":"","sources":["../../../src/components/ProtectedRoute/ProtectedRoute.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,EAAE,UAAU,EAAE,MAAM,OAAO,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAC;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,WAAW,EAAE,qBAAqB,EAAE,MAAM,gBAAgB,CAAC;AASpE,SAAS,cAAc,CAAC,EACtB,SAAS,EACT,IAAI,EACJ,KAAK,EACL,iBAAiB,GACG;IACpB,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,UAAU,CAAC,WAAW,CAAC,CAAC;IACtD,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,gBAAgB,EAAE,GAAG,UAAU,CAC1D,qBAAqB,CACtB,CAAC;IAEF,IAAI,IAAI,EAAE;QACR,IAAI,iBAAiB,IAAI,aAAa,CAAC,IAAI,EAAE,QAAQ,EAAE,SAAS,CAAC,EAAE;YACjE,OAAO,oBAAC,KAAK,IAAC,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,KAAK,GAAI,CAAC;SAClE;aAAM;YACL,OAAO,oBAAC,QAAQ,IAAC,EAAE,EAAE,gBAAgB,GAAI,CAAC;SAC3C;KACF;SAAM;QACL,WAAW,CAAC,MAAM,EAAE,CAAC;QACrB,OAAO,IAAI,CAAC;KACb;AACH,CAAC;AAED,eAAe,cAAc,CAAC"}

package/dist/components/ProtectedRoute/__tests__/protectedRoute.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/components/ProtectedRoute/__tests__/protectedRoute.test.js

@@ -0,0 +1,85 @@
+import { __awaiter } from "tslib";
+/* eslint-disable @typescript-eslint/no-empty-function */
+import EventEmitter from "events";
+import React from "react";
+import { HashRouter as Router, Switch } from "react-router-dom";
+import { render } from "@testing-library/react";
+import { ProtectedRoute } from "..";
+import { AuthContext, ProtectedRouteProvider } from "../../../contexts";
+const signedInHeader = "user signed in";
+const TestComponent = () => {
+    return React.createElement(React.Fragment, null, signedInHeader);
+};
+class AuthServiceMock extends EventEmitter {
+    get user() {
+        throw new Error("Method not implemented.");
+    }
+    signIn() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    signOut() {
+        throw new Error("Method not implemented.");
+    }
+    getAccessToken() {
+        throw new Error("Method not implemented.");
+    }
+    completeSignInIfPossible() {
+        throw new Error("Method not implemented.");
+    }
+}
+function renderRoutes(providerValues) {
+    return render(React.createElement(AuthContext.Provider, { value: providerValues },
+        React.createElement(Router, null,
+            React.createElement(ProtectedRouteProvider, { tenantId: "tenantId", privilege: "privilege", unauthorizedPath: "" },
+                React.createElement(Switch, null,
+                    React.createElement(ProtectedRoute, { component: TestComponent, path: "/" }))))));
+}
+describe("Protected Route", () => {
+    const authService = new AuthServiceMock();
+    const signInSpy = jest.spyOn(authService, "signIn");
+    beforeEach(() => {
+        signInSpy.mockClear();
+    });
+    describe("logged in user", () => {
+        const providerValues = {
+            user: {
+                firstName: "given_name",
+                lastName: "family_name",
+                email: "test@example.com",
+                roles: ["tenantId:privilege"],
+            },
+            authService,
+        };
+        it("renders the route", () => {
+            const { getByText } = renderRoutes(providerValues);
+            expect(signInSpy).not.toHaveBeenCalled();
+            expect(getByText(signedInHeader)).toBeInTheDocument();
+        });
+    });
+    describe("no logged in user", () => {
+        describe("sign-in in progress", () => {
+            const providerValues = {
+                isInProgress: true,
+                authService,
+            };
+            it("Does not try to sign in", () => {
+                renderRoutes(providerValues);
+                expect(signInSpy).not.toHaveBeenCalledTimes;
+            });
+        });
+        describe("sign-in not initiated", () => {
+            const providerValues = {
+                authService,
+            };
+            it("sign in the user", () => {
+                const { queryByText } = renderRoutes(providerValues);
+                expect(queryByText(signedInHeader)).not.toBeInTheDocument();
+                expect(signInSpy).toHaveBeenCalledTimes(1);
+            });
+        });
+    });
+});
+// it("works", () => {
+//   expect(true).toBe(true);
+// });
+//# sourceMappingURL=protectedRoute.test.js.map

package/dist/components/ProtectedRoute/__tests__/protectedRoute.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"protectedRoute.test.js","sourceRoot":"","sources":["../../../../src/components/ProtectedRoute/__tests__/protectedRoute.test.tsx"],"names":[],"mappings":";AAAA,yDAAyD;AACzD,OAAO,YAAY,MAAM,QAAQ,CAAC;AAClC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,UAAU,IAAI,MAAM,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAChE,OAAO,EAAE,MAAM,EAAE,MAAM,wBAAwB,CAAC;AAEhD,OAAO,EAAE,cAAc,EAAE,MAAM,IAAI,CAAC;AAEpC,OAAO,EAAE,WAAW,EAAE,sBAAsB,EAAE,MAAM,mBAAmB,CAAC;AAGxE,MAAM,cAAc,GAAG,gBAAgB,CAAC;AAExC,MAAM,aAAa,GAAG,GAAG,EAAE;IACzB,OAAO,0CAAG,cAAc,CAAI,CAAC;AAC/B,CAAC,CAAC;AAEF,MAAM,eAAgB,SAAQ,YAAY;IACxC,IAAI,IAAI;QACN,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IAEK,MAAM;8DAAmB,CAAC;KAAA;IAEhC,OAAO;QACL,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,cAAc;QACZ,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,wBAAwB;QACtB,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;CACF;AAED,SAAS,YAAY,CAAC,cAQrB;IACC,OAAO,MAAM,CACX,oBAAC,WAAW,CAAC,QAAQ,IAAC,KAAK,EAAE,cAAc;QACzC,oBAAC,MAAM;YACL,oBAAC,sBAAsB,IACrB,QAAQ,EAAC,UAAU,EACnB,SAAS,EAAC,WAAW,EACrB,gBAAgB,EAAC,EAAE;gBAEnB,oBAAC,MAAM;oBACL,oBAAC,cAAc,IAAC,SAAS,EAAE,aAAa,EAAE,IAAI,EAAC,GAAG,GAAG,CAC9C,CACc,CAClB,CACY,CACxB,CAAC;AACJ,CAAC;AAED,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;IAC/B,MAAM,WAAW,GAAG,IAAI,eAAe,EAAE,CAAC;IAC1C,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IACpD,UAAU,CAAC,GAAG,EAAE;QACd,SAAS,CAAC,SAAS,EAAE,CAAC;IACxB,CAAC,CAAC,CAAC;IACH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,MAAM,cAAc,GAAG;YACrB,IAAI,EAAE;gBACJ,SAAS,EAAE,YAAY;gBACvB,QAAQ,EAAE,aAAa;gBACvB,KAAK,EAAE,kBAAkB;gBACzB,KAAK,EAAE,CAAC,oBAAoB,CAAC;aAC9B;YACD,WAAW;SACZ,CAAC;QACF,EAAE,CAAC,mBAAmB,EAAE,GAAG,EAAE;YAC3B,MAAM,EAAE,SAAS,EAAE,GAAG,YAAY,CAAC,cAAc,CAAC,CAAC;YACnD,MAAM,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;YACzC,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC,CAAC,iBAAiB,EAAE,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IACH,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE;YACnC,MAAM,cAAc,GAAG;gBACrB,YAAY,EAAE,IAAI;gBAClB,WAAW;aACZ,CAAC;YACF,EAAE,CAAC,yBAAyB,EAAE,GAAG,EAAE;gBACjC,YAAY,CAAC,cAAc,CAAC,CAAC;gBAC7B,MAAM,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,qBAAqB,CAAC;YAC9C,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QACH,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;YACrC,MAAM,cAAc,GAAG;gBACrB,WAAW;aACZ,CAAC;YACF,EAAE,CAAC,kBAAkB,EAAE,GAAG,EAAE;gBAC1B,MAAM,EAAE,WAAW,EAAE,GAAG,YAAY,CAAC,cAAc,CAAC,CAAC;gBACrD,MAAM,CAAC,WAAW,CAAC,cAAc,CAAC,CAAC,CAAC,GAAG,CAAC,iBAAiB,EAAE,CAAC;gBAC5D,MAAM,CAAC,SAAS,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAC;YAC7C,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,sBAAsB;AACtB,6BAA6B;AAC7B,MAAM"}

package/dist/components/ProtectedRoute/index.d.ts

@@ -0,0 +1 @@
+export { default as ProtectedRoute } from "./ProtectedRoute";

package/dist/components/ProtectedRoute/index.js

@@ -0,0 +1,2 @@
+export { default as ProtectedRoute } from "./ProtectedRoute";
+//# sourceMappingURL=index.js.map

package/dist/components/ProtectedRoute/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/components/ProtectedRoute/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,cAAc,EAAE,MAAM,kBAAkB,CAAC"}

package/dist/components/index.d.ts

@@ -0,0 +1 @@
+export * from "./ProtectedRoute";

package/dist/components/index.js

@@ -0,0 +1,2 @@
+export * from "./ProtectedRoute";
+//# sourceMappingURL=index.js.map

package/dist/components/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/components/index.ts"],"names":[],"mappings":"AAAA,cAAc,kBAAkB,CAAC"}

package/dist/contexts/AuthContext.d.ts

@@ -0,0 +1,16 @@
+import React from "react";
+import { IAuthService } from "../services/IAuthService";
+import { User } from "../types";
+declare type Props = {
+    children: React.ReactNode;
+    authService: IAuthService;
+    onError: (error: Error) => void;
+    onUserIdentified: (user: User) => void;
+};
+declare type ProviderValue = {
+    user?: User;
+    authService: IAuthService;
+};
+export declare const AuthContext: React.Context<ProviderValue>;
+export declare const AuthProvider: ({ children, authService, onError, onUserIdentified, }: Props) => JSX.Element;
+export {};

package/dist/contexts/AuthContext.js

@@ -0,0 +1,28 @@
+import React, { useState, useEffect, useMemo } from "react";
+export const AuthContext = React.createContext(null);
+export const AuthProvider = ({ children, authService, onError, onUserIdentified, }) => {
+    const [user, setUser] = useState(null);
+    useEffect(() => {
+        function trySetUser() {
+            const user = authService.user;
+            if (user) {
+                setUser(user);
+                onUserIdentified(user);
+            }
+        }
+        trySetUser();
+        const handleUserChanged = () => {
+            trySetUser();
+        };
+        authService.on("userChanged", handleUserChanged).on("error", onError);
+        return () => {
+            authService.off("userChanged", handleUserChanged).off("error", onError);
+        };
+    }, [setUser, onUserIdentified, authService, onError]);
+    const providerValue = useMemo(() => ({
+        user,
+        authService,
+    }), [authService, user]);
+    return (React.createElement(AuthContext.Provider, { value: providerValue }, children));
+};
+//# sourceMappingURL=AuthContext.js.map

package/dist/contexts/AuthContext.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthContext.js","sourceRoot":"","sources":["../../src/contexts/AuthContext.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM,OAAO,CAAC;AAgB5D,MAAM,CAAC,MAAM,WAAW,GAAG,KAAK,CAAC,aAAa,CAAgB,IAAI,CAAC,CAAC;AAEpE,MAAM,CAAC,MAAM,YAAY,GAAG,CAAC,EAC3B,QAAQ,EACR,WAAW,EACX,OAAO,EACP,gBAAgB,GACV,EAAE,EAAE;IACV,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,GAAG,QAAQ,CAAO,IAAI,CAAC,CAAC;IAE7C,SAAS,CAAC,GAAG,EAAE;QACb,SAAS,UAAU;YACjB,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC;YAE9B,IAAI,IAAI,EAAE;gBACR,OAAO,CAAC,IAAI,CAAC,CAAC;gBACd,gBAAgB,CAAC,IAAI,CAAC,CAAC;aACxB;QACH,CAAC;QAED,UAAU,EAAE,CAAC;QAEb,MAAM,iBAAiB,GAAG,GAAG,EAAE;YAC7B,UAAU,EAAE,CAAC;QACf,CAAC,CAAC;QACF,WAAW,CAAC,EAAE,CAAC,aAAa,EAAE,iBAAiB,CAAC,CAAC,EAAE,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAEtE,OAAO,GAAG,EAAE;YACV,WAAW,CAAC,GAAG,CAAC,aAAa,EAAE,iBAAiB,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC1E,CAAC,CAAC;IACJ,CAAC,EAAE,CAAC,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC,CAAC;IAEtD,MAAM,aAAa,GAAkB,OAAO,CAC1C,GAAG,EAAE,CAAC,CAAC;QACL,IAAI;QACJ,WAAW;KACZ,CAAC,EACF,CAAC,WAAW,EAAE,IAAI,CAAC,CACpB,CAAC;IAEF,OAAO,CACL,oBAAC,WAAW,CAAC,QAAQ,IAAC,KAAK,EAAE,aAAa,IACvC,QAAQ,CACY,CACxB,CAAC;AACJ,CAAC,CAAC"}

package/dist/contexts/ProtectedRouteContext.d.ts

@@ -0,0 +1,15 @@
+import React from "react";
+declare type Props = {
+    children: React.ReactNode;
+    tenantId: string;
+    privilege: string;
+    unauthorizedPath: string;
+};
+declare type ProviderValue = {
+    tenantId: string;
+    privilege: string;
+    unauthorizedPath: string;
+};
+export declare const ProtectedRouteContext: React.Context<ProviderValue>;
+export declare const ProtectedRouteProvider: ({ children, tenantId, privilege, unauthorizedPath, }: Props) => JSX.Element;
+export {};

package/dist/contexts/ProtectedRouteContext.js

@@ -0,0 +1,11 @@
+import React, { useMemo } from "react";
+export const ProtectedRouteContext = React.createContext(null);
+export const ProtectedRouteProvider = ({ children, tenantId, privilege, unauthorizedPath, }) => {
+    const providerValue = useMemo(() => ({
+        tenantId,
+        privilege,
+        unauthorizedPath,
+    }), [unauthorizedPath, privilege, tenantId]);
+    return (React.createElement(ProtectedRouteContext.Provider, { value: providerValue }, children));
+};
+//# sourceMappingURL=ProtectedRouteContext.js.map

package/dist/contexts/ProtectedRouteContext.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ProtectedRouteContext.js","sourceRoot":"","sources":["../../src/contexts/ProtectedRouteContext.tsx"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,EAAE,OAAO,EAAE,MAAM,OAAO,CAAC;AAevC,MAAM,CAAC,MAAM,qBAAqB,GAAG,KAAK,CAAC,aAAa,CAAgB,IAAI,CAAC,CAAC;AAE9E,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,EACrC,QAAQ,EACR,QAAQ,EACR,SAAS,EACT,gBAAgB,GACV,EAAE,EAAE;IACV,MAAM,aAAa,GAAkB,OAAO,CAC1C,GAAG,EAAE,CAAC,CAAC;QACL,QAAQ;QACR,SAAS;QACT,gBAAgB;KACjB,CAAC,EACF,CAAC,gBAAgB,EAAE,SAAS,EAAE,QAAQ,CAAC,CACxC,CAAC;IAEF,OAAO,CACL,oBAAC,qBAAqB,CAAC,QAAQ,IAAC,KAAK,EAAE,aAAa,IACjD,QAAQ,CACsB,CAClC,CAAC;AACJ,CAAC,CAAC"}

package/dist/contexts/__tests__/AuthContext.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/contexts/__tests__/AuthContext.test.js

@@ -0,0 +1,48 @@
+import { __awaiter } from "tslib";
+import React, { useContext } from "react";
+import { render } from "@testing-library/react";
+import { AuthContext, AuthProvider } from "../AuthContext";
+import EventEmitter from "events";
+const TestComponent = () => {
+    const { user } = useContext(AuthContext);
+    return (React.createElement(React.Fragment, null,
+        React.createElement("div", null, user === null || user === void 0 ? void 0 : user.firstName),
+        React.createElement("div", null, user === null || user === void 0 ? void 0 : user.lastName),
+        React.createElement("div", null, user === null || user === void 0 ? void 0 : user.email)));
+};
+const mockedUser = {
+    firstName: "John",
+    lastName: "Doe",
+    email: "johnDoe@example.com",
+    roles: ["tenantId:privilege"],
+};
+class AuthServiceMock extends EventEmitter {
+    get user() {
+        return mockedUser;
+    }
+    completeSignInIfPossible() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    signIn() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    signOut() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    getAccessToken() {
+        return __awaiter(this, void 0, void 0, function* () {
+            return "";
+        });
+    }
+}
+describe("AuthContext", () => {
+    const authServiceMock = new AuthServiceMock();
+    it("provides the user", () => __awaiter(void 0, void 0, void 0, function* () {
+        const { findByText } = render(React.createElement(AuthProvider, { authService: authServiceMock, onUserIdentified: jest.fn(), onError: jest.fn() },
+            React.createElement(TestComponent, null)));
+        expect(yield findByText(mockedUser.firstName)).toBeInTheDocument();
+        expect(yield findByText(mockedUser.lastName)).toBeInTheDocument();
+        expect(yield findByText(mockedUser.email)).toBeInTheDocument();
+    }));
+});
+//# sourceMappingURL=AuthContext.test.js.map

package/dist/contexts/__tests__/AuthContext.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthContext.test.js","sourceRoot":"","sources":["../../../src/contexts/__tests__/AuthContext.test.tsx"],"names":[],"mappings":";AAAA,OAAO,KAAK,EAAE,EAAE,UAAU,EAAE,MAAM,OAAO,CAAC;AAC1C,OAAO,EAAE,MAAM,EAAE,MAAM,wBAAwB,CAAC;AAEhD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAG3D,OAAO,YAAY,MAAM,QAAQ,CAAC;AAElC,MAAM,aAAa,GAAG,GAAG,EAAE;IACzB,MAAM,EAAE,IAAI,EAAE,GAAG,UAAU,CAAC,WAAW,CAAC,CAAC;IAEzC,OAAO,CACL;QACE,iCAAM,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,SAAS,CAAO;QAC5B,iCAAM,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAO;QAC3B,iCAAM,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK,CAAO,CACvB,CACJ,CAAC;AACJ,CAAC,CAAC;AAEF,MAAM,UAAU,GAAS;IACvB,SAAS,EAAE,MAAM;IACjB,QAAQ,EAAE,KAAK;IACf,KAAK,EAAE,qBAAqB;IAC5B,KAAK,EAAE,CAAC,oBAAoB,CAAC;CAC9B,CAAC;AAEF,MAAM,eAAgB,SAAQ,YAAY;IACxC,IAAI,IAAI;QACN,OAAO,UAAU,CAAC;IACpB,CAAC;IAEK,wBAAwB;8DAAmB,CAAC;KAAA;IAE5C,MAAM;8DAAmB,CAAC;KAAA;IAE1B,OAAO;8DAAmB,CAAC;KAAA;IAE3B,cAAc;;YAClB,OAAO,EAAE,CAAC;QACZ,CAAC;KAAA;CACF;AAED,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE;IAC3B,MAAM,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;IAE9C,EAAE,CAAC,mBAAmB,EAAE,GAAS,EAAE;QACjC,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,CAC3B,oBAAC,YAAY,IACX,WAAW,EAAE,eAAe,EAC5B,gBAAgB,EAAE,IAAI,CAAC,EAAE,EAAE,EAC3B,OAAO,EAAE,IAAI,CAAC,EAAE,EAAE;YAElB,oBAAC,aAAa,OAAG,CACJ,CAChB,CAAC;QAEF,MAAM,CAAC,MAAM,UAAU,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,iBAAiB,EAAE,CAAC;QACnE,MAAM,CAAC,MAAM,UAAU,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,iBAAiB,EAAE,CAAC;QAClE,MAAM,CAAC,MAAM,UAAU,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,iBAAiB,EAAE,CAAC;IACjE,CAAC,CAAA,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/contexts/index.d.ts

@@ -0,0 +1,2 @@
+export * from "./AuthContext";
+export * from "./ProtectedRouteContext";

package/dist/contexts/index.js

@@ -0,0 +1,3 @@
+export * from "./AuthContext";
+export * from "./ProtectedRouteContext";
+//# sourceMappingURL=index.js.map

package/dist/contexts/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/contexts/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,yBAAyB,CAAC"}

package/dist/features/auth/Auth.d.ts

@@ -0,0 +1,5 @@
+declare type Props = {
+    basename: string;
+};
+declare function AuthComponent({ basename }: Props): any;
+export default AuthComponent;

package/dist/features/auth/Auth.js

@@ -0,0 +1,30 @@
+import { useContext, useEffect } from "react";
+import { useHistory, useLocation } from "react-router-dom";
+import qs from "qs";
+import { AuthContext } from "../../contexts";
+function AuthComponent({ basename }) {
+    const history = useHistory();
+    const location = useLocation();
+    const { authService, user } = useContext(AuthContext);
+    useEffect(() => {
+        if (user) {
+            const { state: relativeUrl } = qs.parse(location.search, {
+                ignoreQueryPrefix: true,
+            });
+            if (relativeUrl != null && relativeUrl.startsWith(basename)) {
+                // Remove basename from URL
+                const path = relativeUrl.substring(basename.length);
+                history.replace(path);
+            }
+            else {
+                history.replace("/");
+            }
+        }
+    }, [basename, history, location.search, user]);
+    useEffect(() => {
+        authService.completeSignInIfPossible();
+    }, [authService]);
+    return null;
+}
+export default AuthComponent;
+//# sourceMappingURL=Auth.js.map

package/dist/features/auth/Auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Auth.js","sourceRoot":"","sources":["../../../src/features/auth/Auth.tsx"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,OAAO,CAAC;AAC9C,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAC3D,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAM7C,SAAS,aAAa,CAAC,EAAE,QAAQ,EAAS;IACxC,MAAM,OAAO,GAAG,UAAU,EAAE,CAAC;IAC7B,MAAM,QAAQ,GAAG,WAAW,EAAE,CAAC;IAE/B,MAAM,EAAE,WAAW,EAAE,IAAI,EAAE,GAAG,UAAU,CAAC,WAAW,CAAC,CAAC;IAEtD,SAAS,CAAC,GAAG,EAAE;QACb,IAAI,IAAI,EAAE;YACR,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,GAAG,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE;gBACvD,iBAAiB,EAAE,IAAI;aACxB,CAAsB,CAAC;YAExB,IAAI,WAAW,IAAI,IAAI,IAAI,WAAW,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE;gBAC3D,2BAA2B;gBAC3B,MAAM,IAAI,GAAG,WAAW,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;gBACpD,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;aACvB;iBAAM;gBACL,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;aACtB;SACF;IACH,CAAC,EAAE,CAAC,QAAQ,EAAE,OAAO,EAAE,QAAQ,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC;IAE/C,SAAS,CAAC,GAAG,EAAE;QACb,WAAW,CAAC,wBAAwB,EAAE,CAAC;IACzC,CAAC,EAAE,CAAC,WAAW,CAAC,CAAC,CAAC;IAElB,OAAO,IAAI,CAAC;AACd,CAAC;AAED,eAAe,aAAa,CAAC"}

package/dist/features/auth/index.d.ts

@@ -0,0 +1 @@
+export { default as AuthComponent } from "./Auth";

package/dist/features/auth/index.js

@@ -0,0 +1,2 @@
+export { default as AuthComponent } from "./Auth";
+//# sourceMappingURL=index.js.map

package/dist/features/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/features/auth/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,IAAI,aAAa,EAAE,MAAM,QAAQ,CAAC"}

package/dist/features/index.d.ts

@@ -0,0 +1 @@
+export * from "./auth";

package/dist/features/index.js

@@ -0,0 +1,2 @@
+export * from "./auth";
+//# sourceMappingURL=index.js.map

package/dist/features/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/features/index.ts"],"names":[],"mappings":"AAAA,cAAc,QAAQ,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,6 @@
+export * from "./components";
+export * from "./contexts";
+export * from "./features";
+export * from "./services";
+export * from "./types";
+export * from "./utils";

package/dist/index.js

@@ -0,0 +1,7 @@
+export * from "./components";
+export * from "./contexts";
+export * from "./features";
+export * from "./services";
+export * from "./types";
+export * from "./utils";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,cAAc,CAAC;AAC7B,cAAc,YAAY,CAAC;AAC3B,cAAc,YAAY,CAAC;AAC3B,cAAc,YAAY,CAAC;AAC3B,cAAc,SAAS,CAAC;AACxB,cAAc,SAAS,CAAC"}

package/dist/services/AuthConfiguration.d.ts

@@ -0,0 +1,7 @@
+export declare type AuthConfiguration = {
+    openIdIssuerUrl: string;
+    clientId: string;
+    redirectUri: string;
+    postLogoutRedirectUri: string;
+    scope: string;
+};

package/dist/services/AuthConfiguration.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=AuthConfiguration.js.map

package/dist/services/AuthConfiguration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthConfiguration.js","sourceRoot":"","sources":["../../src/services/AuthConfiguration.ts"],"names":[],"mappings":""}

package/dist/services/AuthFlow.d.ts

@@ -0,0 +1,38 @@
+/// <reference types="node" />
+import { EventEmitter } from "events";
+import { AuthConfiguration } from "./AuthConfiguration";
+interface AuthFlowEvents {
+    tokenResponse(): void;
+}
+export declare interface AuthFlow {
+    on<E extends keyof AuthFlowEvents>(event: E, listener: AuthFlowEvents[E]): this;
+    off<E extends keyof AuthFlowEvents>(event: E, listener: AuthFlowEvents[E]): this;
+    emit<E extends keyof AuthFlowEvents>(event: E, ...args: Parameters<AuthFlowEvents[E]>): boolean;
+}
+export declare class AuthFlow extends EventEmitter {
+    private static readonly TOKEN_RESPONSE_KEY;
+    private static readonly s_requestor;
+    private readonly _configuration;
+    private readonly _notifier;
+    private readonly _authorizationHandler;
+    private readonly _tokenHandler;
+    private _serviceConfiguration;
+    private _tokenResponse;
+    private _refreshTokenPromise;
+    constructor(configuration: AuthConfiguration);
+    initialize(): void;
+    private authorizationListener;
+    signIn(identityProvider: string, force?: boolean): Promise<void>;
+    completeSignInIfPossible(): Promise<void>;
+    isSignedIn(): boolean;
+    getAccessToken(): Promise<string>;
+    signOut(): Promise<void>;
+    private signOutCore;
+    private makeAuthorizationRequest;
+    private ensureServiceConfiguration;
+    private saveState;
+    private loadState;
+    private makeTokenRequest;
+    private refreshToken;
+}
+export {};

package/dist/services/AuthFlow.js

@@ -0,0 +1,183 @@
+import { __awaiter } from "tslib";
+import { AuthorizationRequest } from "@openid/appauth/built/authorization_request";
+import { AuthorizationNotifier, } from "@openid/appauth/built/authorization_request_handler";
+import { AuthorizationServiceConfiguration } from "@openid/appauth/built/authorization_service_configuration";
+import { GRANT_TYPE_AUTHORIZATION_CODE, GRANT_TYPE_REFRESH_TOKEN, TokenRequest, } from "@openid/appauth/built/token_request";
+import { BaseTokenRequestHandler, } from "@openid/appauth/built/token_request_handler";
+import { TokenResponse } from "@openid/appauth/built/token_response";
+import { EventEmitter } from "events";
+import { FetchRequestor, RedirectRequestHandler, BasicQueryStringUtils, LocalStorageBackend, } from "@openid/appauth";
+class NoHashQueryStringUtils extends BasicQueryStringUtils {
+    parse(input) {
+        return super.parse(input, false);
+    }
+}
+export class AuthFlow extends EventEmitter {
+    constructor(configuration) {
+        super();
+        this._configuration = configuration;
+        this._notifier = new AuthorizationNotifier();
+        this._authorizationHandler = new RedirectRequestHandler(new LocalStorageBackend(), new NoHashQueryStringUtils());
+        this._tokenHandler = new BaseTokenRequestHandler(AuthFlow.s_requestor);
+        this._authorizationHandler.setAuthorizationNotifier(this._notifier);
+        this._notifier.setAuthorizationListener(this.authorizationListener.bind(this));
+    }
+    initialize() {
+        this.loadState();
+    }
+    authorizationListener(request, response, error) {
+        return __awaiter(this, void 0, void 0, function* () {
+            console.debug("Authorization request complete", request, response, error);
+            if (response) {
+                let codeVerifier;
+                if (request.internal && request.internal.code_verifier) {
+                    codeVerifier = request.internal.code_verifier;
+                }
+                yield this.makeTokenRequest(response.code, codeVerifier);
+                this.emit("tokenResponse");
+            }
+        });
+    }
+    signIn(identityProvider, force = false) {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (!this.isSignedIn()) {
+                yield this.makeAuthorizationRequest(identityProvider);
+            }
+            else if (force) {
+                this.signOutCore();
+                yield this.makeAuthorizationRequest(identityProvider);
+            }
+        });
+    }
+    completeSignInIfPossible() {
+        return __awaiter(this, void 0, void 0, function* () {
+            yield this._authorizationHandler.completeAuthorizationRequestIfPossible();
+        });
+    }
+    isSignedIn() {
+        return !!this._tokenResponse && this._tokenResponse.isValid();
+    }
+    getAccessToken() {
+        return __awaiter(this, void 0, void 0, function* () {
+            // Do we already have a valid access token?
+            if (this._tokenResponse && this._tokenResponse.isValid()) {
+                return this._tokenResponse.accessToken;
+            }
+            // Try to refresh and get a new access token
+            if (this._refreshTokenPromise) {
+                return yield this._refreshTokenPromise;
+            }
+            else {
+                if (!this._tokenResponse) {
+                    return null;
+                }
+                let result;
+                try {
+                    this._refreshTokenPromise = this.refreshToken();
+                    result = yield this._refreshTokenPromise;
+                }
+                finally {
+                    this._refreshTokenPromise = undefined;
+                }
+                return result;
+            }
+        });
+    }
+    signOut() {
+        return __awaiter(this, void 0, void 0, function* () {
+            // forget all cached token state
+            const idToken = this._tokenResponse.idToken;
+            this.signOutCore();
+            const serviceConfiguration = yield this.ensureServiceConfiguration();
+            // TODO: update when sign out is ready
+            const postLogoutRedirectUri = this._configuration.postLogoutRedirectUri;
+            const endSessionUrl = `${serviceConfiguration.endSessionEndpoint}?id_token_hint=${idToken}&post_logout_redirect_uri=${postLogoutRedirectUri}`;
+            console.debug(`[AuthFlow] Signing out using post_logout_redirect_uri '${postLogoutRedirectUri}' (full endSession URL: '${endSessionUrl}') ...`);
+            window.location.assign(endSessionUrl);
+        });
+    }
+    signOutCore() {
+        this._tokenResponse = undefined;
+        window.sessionStorage.removeItem(AuthFlow.TOKEN_RESPONSE_KEY);
+    }
+    makeAuthorizationRequest(identityProvider) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const extras = {
+                idp: identityProvider,
+            };
+            const request = new AuthorizationRequest({
+                client_id: this._configuration.clientId,
+                redirect_uri: this._configuration.redirectUri,
+                scope: this._configuration.scope,
+                response_type: AuthorizationRequest.RESPONSE_TYPE_CODE,
+                state: `${window.location.pathname}${window.location.search}`,
+                extras: extras,
+            });
+            this._authorizationHandler.performAuthorizationRequest(yield this.ensureServiceConfiguration(), request);
+        });
+    }
+    ensureServiceConfiguration() {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (!this._serviceConfiguration) {
+                const response = yield AuthorizationServiceConfiguration.fetchFromIssuer(this._configuration.openIdIssuerUrl, AuthFlow.s_requestor);
+                this._serviceConfiguration = response;
+            }
+            return this._serviceConfiguration;
+        });
+    }
+    saveState() {
+        window.sessionStorage.setItem(AuthFlow.TOKEN_RESPONSE_KEY, JSON.stringify(this._tokenResponse.toJson()));
+    }
+    loadState() {
+        const responseString = window.sessionStorage.getItem(AuthFlow.TOKEN_RESPONSE_KEY);
+        if (responseString != null) {
+            const responseJson = JSON.parse(responseString);
+            const response = new TokenResponse(responseJson);
+            this._tokenResponse = response;
+            this.emit("tokenResponse");
+        }
+    }
+    makeTokenRequest(code, codeVerifier) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const extras = {};
+            if (codeVerifier) {
+                extras.code_verifier = codeVerifier;
+            }
+            const request = new TokenRequest({
+                code,
+                extras,
+                client_id: this._configuration.clientId,
+                redirect_uri: this._configuration.redirectUri,
+                grant_type: GRANT_TYPE_AUTHORIZATION_CODE,
+                refresh_token: undefined,
+            });
+            const response = yield this._tokenHandler.performTokenRequest(yield this.ensureServiceConfiguration(), request);
+            this._tokenResponse = response;
+            this.saveState();
+        });
+    }
+    refreshToken() {
+        return __awaiter(this, void 0, void 0, function* () {
+            console.debug("Refreshing token ...");
+            const refreshToken = this._tokenResponse.refreshToken;
+            this._tokenResponse = undefined;
+            window.sessionStorage.removeItem(AuthFlow.TOKEN_RESPONSE_KEY);
+            const request = new TokenRequest({
+                client_id: this._configuration.clientId,
+                redirect_uri: this._configuration.redirectUri,
+                grant_type: GRANT_TYPE_REFRESH_TOKEN,
+                refresh_token: refreshToken,
+                code: undefined,
+                extras: undefined,
+            });
+            const response = yield this._tokenHandler.performTokenRequest(yield this.ensureServiceConfiguration(), request);
+            this._tokenResponse = response;
+            this.saveState();
+            console.debug("Refreshed token -->", response);
+            return response.accessToken;
+        });
+    }
+}
+AuthFlow.TOKEN_RESPONSE_KEY = "AuthFlow:tokenResponse";
+AuthFlow.s_requestor = new FetchRequestor();
+//# sourceMappingURL=AuthFlow.js.map

package/dist/services/AuthFlow.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthFlow.js","sourceRoot":"","sources":["../../src/services/AuthFlow.ts"],"names":[],"mappings":";AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,6CAA6C,CAAC;AAKnF,OAAO,EACL,qBAAqB,GAEtB,MAAM,qDAAqD,CAAC;AAC7D,OAAO,EAAE,iCAAiC,EAAE,MAAM,2DAA2D,CAAC;AAC9G,OAAO,EACL,6BAA6B,EAC7B,wBAAwB,EACxB,YAAY,GACb,MAAM,qCAAqC,CAAC;AAC7C,OAAO,EACL,uBAAuB,GAExB,MAAM,6CAA6C,CAAC;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,sCAAsC,CAAC;AAErE,OAAO,EAAE,YAAY,EAAE,MAAM,QAAQ,CAAC;AAGtC,OAAO,EACL,cAAc,EACd,sBAAsB,EACtB,qBAAqB,EACrB,mBAAmB,GACpB,MAAM,iBAAiB,CAAC;AAwBzB,MAAM,sBAAuB,SAAQ,qBAAqB;IACxD,KAAK,CAAC,KAAmB;QACvB,OAAO,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IACnC,CAAC;CACF;AAED,MAAM,OAAO,QAAS,SAAQ,YAAY;IAexC,YAAY,aAAgC;QAC1C,KAAK,EAAE,CAAC;QAER,IAAI,CAAC,cAAc,GAAG,aAAa,CAAC;QACpC,IAAI,CAAC,SAAS,GAAG,IAAI,qBAAqB,EAAE,CAAC;QAC7C,IAAI,CAAC,qBAAqB,GAAG,IAAI,sBAAsB,CACrD,IAAI,mBAAmB,EAAE,EACzB,IAAI,sBAAsB,EAAE,CAC7B,CAAC;QAEF,IAAI,CAAC,aAAa,GAAG,IAAI,uBAAuB,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAEvE,IAAI,CAAC,qBAAqB,CAAC,wBAAwB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAEpE,IAAI,CAAC,SAAS,CAAC,wBAAwB,CACrC,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,IAAI,CAAC,CACtC,CAAC;IACJ,CAAC;IAEM,UAAU;QACf,IAAI,CAAC,SAAS,EAAE,CAAC;IACnB,CAAC;IAEa,qBAAqB,CACjC,OAA6B,EAC7B,QAAsC,EACtC,KAAgC;;YAEhC,OAAO,CAAC,KAAK,CAAC,gCAAgC,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;YAC1E,IAAI,QAAQ,EAAE;gBACZ,IAAI,YAAgC,CAAC;gBACrC,IAAI,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,aAAa,EAAE;oBACtD,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC;iBAC/C;gBAED,MAAM,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;gBAEzD,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;aAC5B;QACH,CAAC;KAAA;IAEY,MAAM,CAAC,gBAAwB,EAAE,KAAK,GAAG,KAAK;;YACzD,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,EAAE;gBACtB,MAAM,IAAI,CAAC,wBAAwB,CAAC,gBAAgB,CAAC,CAAC;aACvD;iBAAM,IAAI,KAAK,EAAE;gBAChB,IAAI,CAAC,WAAW,EAAE,CAAC;gBAEnB,MAAM,IAAI,CAAC,wBAAwB,CAAC,gBAAgB,CAAC,CAAC;aACvD;QACH,CAAC;KAAA;IAEY,wBAAwB;;YACnC,MAAM,IAAI,CAAC,qBAAqB,CAAC,sCAAsC,EAAE,CAAC;QAC5E,CAAC;KAAA;IAEM,UAAU;QACf,OAAO,CAAC,CAAC,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;IAChE,CAAC;IAEY,cAAc;;YACzB,2CAA2C;YAC3C,IAAI,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,EAAE;gBACxD,OAAO,IAAI,CAAC,cAAc,CAAC,WAAW,CAAC;aACxC;YAED,4CAA4C;YAC5C,IAAI,IAAI,CAAC,oBAAoB,EAAE;gBAC7B,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC;aACxC;iBAAM;gBACL,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE;oBACxB,OAAO,IAAI,CAAC;iBACb;gBAED,IAAI,MAAc,CAAC;gBACnB,IAAI;oBACF,IAAI,CAAC,oBAAoB,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;oBAChD,MAAM,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC;iBAC1C;wBAAS;oBACR,IAAI,CAAC,oBAAoB,GAAG,SAAS,CAAC;iBACvC;gBAED,OAAO,MAAM,CAAC;aACf;QACH,CAAC;KAAA;IAEY,OAAO;;YAClB,gCAAgC;YAChC,MAAM,OAAO,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC;YAE5C,IAAI,CAAC,WAAW,EAAE,CAAC;YAEnB,MAAM,oBAAoB,GAAG,MAAM,IAAI,CAAC,0BAA0B,EAAE,CAAC;YACrE,sCAAsC;YACtC,MAAM,qBAAqB,GAAG,IAAI,CAAC,cAAc,CAAC,qBAAqB,CAAC;YACxE,MAAM,aAAa,GAAG,GAAG,oBAAoB,CAAC,kBAAkB,kBAAkB,OAAO,6BAA6B,qBAAqB,EAAE,CAAC;YAC9I,OAAO,CAAC,KAAK,CACX,0DAA0D,qBAAqB,4BAA4B,aAAa,QAAQ,CACjI,CAAC;YACF,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;QACxC,CAAC;KAAA;IAEO,WAAW;QACjB,IAAI,CAAC,cAAc,GAAG,SAAS,CAAC;QAChC,MAAM,CAAC,cAAc,CAAC,UAAU,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;IAChE,CAAC;IAEa,wBAAwB,CAAC,gBAAwB;;YAC7D,MAAM,MAAM,GAAc;gBACxB,GAAG,EAAE,gBAAgB;aACtB,CAAC;YAEF,MAAM,OAAO,GAAG,IAAI,oBAAoB,CAAC;gBACvC,SAAS,EAAE,IAAI,CAAC,cAAc,CAAC,QAAQ;gBACvC,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC,WAAW;gBAC7C,KAAK,EAAE,IAAI,CAAC,cAAc,CAAC,KAAK;gBAChC,aAAa,EAAE,oBAAoB,CAAC,kBAAkB;gBACtD,KAAK,EAAE,GAAG,MAAM,CAAC,QAAQ,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE;gBAC7D,MAAM,EAAE,MAAM;aACf,CAAC,CAAC;YAEH,IAAI,CAAC,qBAAqB,CAAC,2BAA2B,CACpD,MAAM,IAAI,CAAC,0BAA0B,EAAE,EACvC,OAAO,CACR,CAAC;QACJ,CAAC;KAAA;IAEa,0BAA0B;;YACtC,IAAI,CAAC,IAAI,CAAC,qBAAqB,EAAE;gBAC/B,MAAM,QAAQ,GAAG,MAAM,iCAAiC,CAAC,eAAe,CACtE,IAAI,CAAC,cAAc,CAAC,eAAe,EACnC,QAAQ,CAAC,WAAW,CACrB,CAAC;gBACF,IAAI,CAAC,qBAAqB,GAAG,QAAQ,CAAC;aACvC;YAED,OAAO,IAAI,CAAC,qBAAqB,CAAC;QACpC,CAAC;KAAA;IAEO,SAAS;QACf,MAAM,CAAC,cAAc,CAAC,OAAO,CAC3B,QAAQ,CAAC,kBAAkB,EAC3B,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE,CAAC,CAC7C,CAAC;IACJ,CAAC;IAEO,SAAS;QACf,MAAM,cAAc,GAAG,MAAM,CAAC,cAAc,CAAC,OAAO,CAClD,QAAQ,CAAC,kBAAkB,CAC5B,CAAC;QACF,IAAI,cAAc,IAAI,IAAI,EAAE;YAC1B,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;YAChD,MAAM,QAAQ,GAAG,IAAI,aAAa,CAAC,YAAY,CAAC,CAAC;YACjD,IAAI,CAAC,cAAc,GAAG,QAAQ,CAAC;YAE/B,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;SAC5B;IACH,CAAC;IAEa,gBAAgB,CAC5B,IAAY,EACZ,YAAgC;;YAEhC,MAAM,MAAM,GAAc,EAAE,CAAC;YAE7B,IAAI,YAAY,EAAE;gBAChB,MAAM,CAAC,aAAa,GAAG,YAAY,CAAC;aACrC;YAED,MAAM,OAAO,GAAG,IAAI,YAAY,CAAC;gBAC/B,IAAI;gBACJ,MAAM;gBACN,SAAS,EAAE,IAAI,CAAC,cAAc,CAAC,QAAQ;gBACvC,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC,WAAW;gBAC7C,UAAU,EAAE,6BAA6B;gBACzC,aAAa,EAAE,SAAS;aACzB,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,mBAAmB,CAC3D,MAAM,IAAI,CAAC,0BAA0B,EAAE,EACvC,OAAO,CACR,CAAC;YAEF,IAAI,CAAC,cAAc,GAAG,QAAQ,CAAC;YAC/B,IAAI,CAAC,SAAS,EAAE,CAAC;QACnB,CAAC;KAAA;IAEa,YAAY;;YACxB,OAAO,CAAC,KAAK,CAAC,sBAAsB,CAAC,CAAC;YAEtC,MAAM,YAAY,GAAG,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC;YAEtD,IAAI,CAAC,cAAc,GAAG,SAAS,CAAC;YAChC,MAAM,CAAC,cAAc,CAAC,UAAU,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;YAE9D,MAAM,OAAO,GAAG,IAAI,YAAY,CAAC;gBAC/B,SAAS,EAAE,IAAI,CAAC,cAAc,CAAC,QAAQ;gBACvC,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC,WAAW;gBAC7C,UAAU,EAAE,wBAAwB;gBACpC,aAAa,EAAE,YAAY;gBAC3B,IAAI,EAAE,SAAS;gBACf,MAAM,EAAE,SAAS;aAClB,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,mBAAmB,CAC3D,MAAM,IAAI,CAAC,0BAA0B,EAAE,EACvC,OAAO,CACR,CAAC;YAEF,IAAI,CAAC,cAAc,GAAG,QAAQ,CAAC;YAC/B,IAAI,CAAC,SAAS,EAAE,CAAC;YAEjB,OAAO,CAAC,KAAK,CAAC,qBAAqB,EAAE,QAAQ,CAAC,CAAC;YAE/C,OAAO,QAAQ,CAAC,WAAW,CAAC;QAC9B,CAAC;KAAA;;AApOuB,2BAAkB,GAAG,wBAAwB,CAAC;AAE9C,oBAAW,GAAG,IAAI,cAAc,EAAE,CAAC"}

package/dist/services/AuthService.d.ts

@@ -0,0 +1,26 @@
+/// <reference types="node" />
+import EventEmitter from "events";
+import { IAuthServiceEvents, IAuthService } from "./IAuthService";
+import { User } from "../types";
+import { AuthConfiguration } from "./AuthConfiguration";
+export declare interface AuthService {
+    on<E extends keyof IAuthServiceEvents>(event: E, listener: IAuthServiceEvents[E]): this;
+    off<E extends keyof IAuthServiceEvents>(event: E, listener: IAuthServiceEvents[E]): this;
+    emit<E extends keyof IAuthServiceEvents>(event: E, ...args: Parameters<IAuthServiceEvents[E]>): boolean;
+}
+export declare class AuthService extends EventEmitter implements IAuthService {
+    private static s_instance;
+    private readonly _auth;
+    private _user;
+    private constructor();
+    static get instance(): AuthService;
+    static initialize(configuration: AuthConfiguration): void;
+    private setUser;
+    private handleTokenResponse;
+    private getUser;
+    get user(): User;
+    signIn(force?: boolean): Promise<void>;
+    completeSignInIfPossible(): Promise<void>;
+    getAccessToken(): Promise<string | null>;
+    signOut(): Promise<void>;
+}

package/dist/services/AuthService.js

@@ -0,0 +1,110 @@
+import { __awaiter } from "tslib";
+import { Logger } from "@touchtech/web-logging";
+import EventEmitter from "events";
+import jwtDecode from "jwt-decode";
+import { AuthFlow } from "./AuthFlow";
+import { getIdentityProviderFromHostname } from "../utils";
+class JwtClaimTypes {
+}
+// Standard claims
+JwtClaimTypes.EMAIL = "email";
+JwtClaimTypes.GIVEN_NAME = "given_name";
+JwtClaimTypes.FAMILY_NAME = "family_name";
+// Non-standard claims
+JwtClaimTypes.ROLE = "http://schemas.microsoft.com/ws/2008/06/identity/claims/role";
+export class AuthService extends EventEmitter {
+    constructor(configuration) {
+        super();
+        this._auth = new AuthFlow(configuration);
+        this._auth.on("tokenResponse", this.handleTokenResponse.bind(this));
+        this._auth.initialize();
+    }
+    static get instance() {
+        if (!AuthService.s_instance) {
+            throw new Error("AuthService has not been initialized");
+        }
+        return AuthService.s_instance;
+    }
+    static initialize(configuration) {
+        if (AuthService.s_instance) {
+            throw new Error("AuthService has already been initialized");
+        }
+        AuthService.s_instance = new AuthService(configuration);
+    }
+    setUser(user) {
+        if (this._user !== user) {
+            this._user = user;
+            this.emit("userChanged");
+        }
+    }
+    handleTokenResponse() {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                this.setUser(yield this.getUser());
+            }
+            catch (error) {
+                this.emit("error", error);
+            }
+        });
+    }
+    getUser() {
+        return __awaiter(this, void 0, void 0, function* () {
+            const accessToken = yield this.getAccessToken();
+            const decoded = jwtDecode(accessToken);
+            const email = decoded[JwtClaimTypes.EMAIL];
+            const firstName = decoded[JwtClaimTypes.GIVEN_NAME];
+            const lastName = decoded[JwtClaimTypes.FAMILY_NAME];
+            const role = decoded[JwtClaimTypes.ROLE];
+            const roles = Array.isArray(role) ? role : [role];
+            return { email, firstName, lastName, roles };
+        });
+    }
+    get user() {
+        return this._user;
+    }
+    signIn(force = false) {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                const identityProvider = getIdentityProviderFromHostname(window.location.hostname);
+                console.debug(`[AuthService] Using identity provider '${identityProvider}' ...`);
+                yield this._auth.signIn(identityProvider, force);
+            }
+            catch (error) {
+                this.emit("error", error);
+            }
+        });
+    }
+    completeSignInIfPossible() {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                yield this._auth.completeSignInIfPossible();
+            }
+            catch (error) {
+                this.emit("error", error);
+            }
+        });
+    }
+    getAccessToken() {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                return yield this._auth.getAccessToken();
+            }
+            catch (error) {
+                Logger.instance.error(error.message, error);
+                this.emit("error", error);
+                return null;
+            }
+        });
+    }
+    signOut() {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                yield this._auth.signOut();
+            }
+            catch (error) {
+                this.emit("error", error);
+            }
+        });
+    }
+}
+//# sourceMappingURL=AuthService.js.map

package/dist/services/AuthService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthService.js","sourceRoot":"","sources":["../../src/services/AuthService.ts"],"names":[],"mappings":";AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,wBAAwB,CAAC;AAChD,OAAO,YAAY,MAAM,QAAQ,CAAC;AAClC,OAAO,SAAyB,MAAM,YAAY,CAAC;AAGnD,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAEtC,OAAO,EAAE,+BAA+B,EAAE,MAAM,UAAU,CAAC;AAE3D,MAAM,aAAa;;AACjB,kBAAkB;AACK,mBAAK,GAAG,OAAO,CAAC;AAChB,wBAAU,GAAG,YAAY,CAAC;AAC1B,yBAAW,GAAG,aAAa,CAAC;AAEnD,sBAAsB;AACC,kBAAI,GACzB,8DAA8D,CAAC;AAoBnE,MAAM,OAAO,WAAY,SAAQ,YAAY;IAO3C,YAAoB,aAAgC;QAClD,KAAK,EAAE,CAAC;QAER,IAAI,CAAC,KAAK,GAAG,IAAI,QAAQ,CAAC,aAAa,CAAC,CAAC;QAEzC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,eAAe,EAAE,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAEpE,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;IAC1B,CAAC;IAEM,MAAM,KAAK,QAAQ;QACxB,IAAI,CAAC,WAAW,CAAC,UAAU,EAAE;YAC3B,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;SACzD;QAED,OAAO,WAAW,CAAC,UAAU,CAAC;IAChC,CAAC;IAEM,MAAM,CAAC,UAAU,CAAC,aAAgC;QACvD,IAAI,WAAW,CAAC,UAAU,EAAE;YAC1B,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;SAC7D;QAED,WAAW,CAAC,UAAU,GAAG,IAAI,WAAW,CAAC,aAAa,CAAC,CAAC;IAC1D,CAAC;IAEO,OAAO,CAAC,IAAU;QACxB,IAAI,IAAI,CAAC,KAAK,KAAK,IAAI,EAAE;YACvB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;YAClB,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;SAC1B;IACH,CAAC;IAEa,mBAAmB;;YAC/B,IAAI;gBACF,IAAI,CAAC,OAAO,CAAC,MAAM,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;aACpC;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;aAC3B;QACH,CAAC;KAAA;IAEa,OAAO;;YACnB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;YAChD,MAAM,OAAO,GAAG,SAAS,CAAa,WAAW,CAAC,CAAC;YAEnD,MAAM,KAAK,GAAG,OAAO,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YAC3C,MAAM,SAAS,GAAG,OAAO,CAAC,aAAa,CAAC,UAAU,CAAC,CAAC;YACpD,MAAM,QAAQ,GAAG,OAAO,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;YAEpD,MAAM,IAAI,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;YACzC,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;YAElD,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;QAC/C,CAAC;KAAA;IAED,IAAW,IAAI;QACb,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAEY,MAAM,CAAC,KAAK,GAAG,KAAK;;YAC/B,IAAI;gBACF,MAAM,gBAAgB,GAAG,+BAA+B,CACtD,MAAM,CAAC,QAAQ,CAAC,QAAQ,CACzB,CAAC;gBAEF,OAAO,CAAC,KAAK,CACX,0CAA0C,gBAAgB,OAAO,CAClE,CAAC;gBAEF,MAAM,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAC;aAClD;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;aAC3B;QACH,CAAC;KAAA;IAEY,wBAAwB;;YACnC,IAAI;gBACF,MAAM,IAAI,CAAC,KAAK,CAAC,wBAAwB,EAAE,CAAC;aAC7C;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;aAC3B;QACH,CAAC;KAAA;IAEY,cAAc;;YACzB,IAAI;gBACF,OAAO,MAAM,IAAI,CAAC,KAAK,CAAC,cAAc,EAAE,CAAC;aAC1C;YAAC,OAAO,KAAK,EAAE;gBACd,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;gBAC5C,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;gBAC1B,OAAO,IAAI,CAAC;aACb;QACH,CAAC;KAAA;IAEY,OAAO;;YAClB,IAAI;gBACF,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;aAC5B;YAAC,OAAO,KAAK,EAAE;gBACd,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;aAC3B;QACH,CAAC;KAAA;CACF"}

package/dist/services/IAuthService.d.ts

@@ -0,0 +1,15 @@
+import { User } from "../types";
+export interface IAuthServiceEvents {
+    userChanged(): void;
+    error(error: Error): void;
+}
+export interface IAuthService {
+    on<E extends keyof IAuthServiceEvents>(event: E, listener: IAuthServiceEvents[E]): this;
+    off<E extends keyof IAuthServiceEvents>(event: E, listener: IAuthServiceEvents[E]): this;
+    emit<E extends keyof IAuthServiceEvents>(event: E, ...args: Parameters<IAuthServiceEvents[E]>): boolean;
+    get user(): User;
+    signIn(force?: boolean): Promise<void>;
+    completeSignInIfPossible(): Promise<void>;
+    getAccessToken(): Promise<string | null>;
+    signOut(): Promise<void>;
+}

package/dist/services/IAuthService.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=IAuthService.js.map

package/dist/services/IAuthService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"IAuthService.js","sourceRoot":"","sources":["../../src/services/IAuthService.ts"],"names":[],"mappings":""}

package/dist/services/__tests__/AuthService.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/services/__tests__/AuthService.test.js

@@ -0,0 +1,58 @@
+import { __awaiter } from "tslib";
+/* eslint-disable @typescript-eslint/no-empty-function */
+import EventEmitter from "events";
+const mockedUser = {
+    firstName: "John",
+    lastName: "Doe",
+    email: "johnDoe@example.com",
+    roles: ["tenantId:privilege"],
+};
+const mockedToken = "mockedToken";
+class AuthServiceMock extends EventEmitter {
+    get user() {
+        return mockedUser;
+    }
+    completeSignInIfPossible() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    signIn() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    signOut() {
+        return __awaiter(this, void 0, void 0, function* () { });
+    }
+    getAccessToken() {
+        return __awaiter(this, void 0, void 0, function* () {
+            return mockedToken;
+        });
+    }
+}
+describe("AuthService", () => {
+    const authServiceMock = new AuthServiceMock();
+    it("signs in", () => __awaiter(void 0, void 0, void 0, function* () {
+        const signInSpy = jest.spyOn(authServiceMock, "signIn");
+        yield authServiceMock.signIn();
+        expect(signInSpy).toBeCalledTimes(1);
+    }));
+    it("signs out", () => __awaiter(void 0, void 0, void 0, function* () {
+        const signOutSpy = jest.spyOn(authServiceMock, "signOut");
+        yield authServiceMock.signOut();
+        expect(signOutSpy).toBeCalledTimes(1);
+    }));
+    describe("getUser", () => {
+        it("returns the user", () => __awaiter(void 0, void 0, void 0, function* () {
+            const { firstName, lastName, email, roles } = authServiceMock.user;
+            expect(firstName).toEqual(mockedUser.firstName);
+            expect(lastName).toEqual(mockedUser.lastName);
+            expect(email).toEqual(mockedUser.email);
+            expect(roles).toEqual(mockedUser.roles);
+        }));
+    });
+    describe("getAccessToken", () => {
+        it("returns the access token", () => __awaiter(void 0, void 0, void 0, function* () {
+            const token = yield authServiceMock.getAccessToken();
+            expect(token).toEqual(mockedToken);
+        }));
+    });
+});
+//# sourceMappingURL=AuthService.test.js.map

package/dist/services/__tests__/AuthService.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuthService.test.js","sourceRoot":"","sources":["../../../src/services/__tests__/AuthService.test.ts"],"names":[],"mappings":";AAAA,yDAAyD;AACzD,OAAO,YAAY,MAAM,QAAQ,CAAC;AAIlC,MAAM,UAAU,GAAS;IACvB,SAAS,EAAE,MAAM;IACjB,QAAQ,EAAE,KAAK;IACf,KAAK,EAAE,qBAAqB;IAC5B,KAAK,EAAE,CAAC,oBAAoB,CAAC;CAC9B,CAAC;AACF,MAAM,WAAW,GAAG,aAAa,CAAC;AAElC,MAAM,eAAgB,SAAQ,YAAY;IACxC,IAAI,IAAI;QACN,OAAO,UAAU,CAAC;IACpB,CAAC;IAEK,wBAAwB;8DAAmB,CAAC;KAAA;IAE5C,MAAM;8DAAmB,CAAC;KAAA;IAE1B,OAAO;8DAAmB,CAAC;KAAA;IAE3B,cAAc;;YAClB,OAAO,WAAW,CAAC;QACrB,CAAC;KAAA;CACF;AAED,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE;IAC3B,MAAM,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC;IAE9C,EAAE,CAAC,UAAU,EAAE,GAAS,EAAE;QACxB,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,EAAE,QAAQ,CAAC,CAAC;QAExD,MAAM,eAAe,CAAC,MAAM,EAAE,CAAC;QAC/B,MAAM,CAAC,SAAS,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;IACvC,CAAC,CAAA,CAAC,CAAC;IAEH,EAAE,CAAC,WAAW,EAAE,GAAS,EAAE;QACzB,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,EAAE,SAAS,CAAC,CAAC;QAE1D,MAAM,eAAe,CAAC,OAAO,EAAE,CAAC;QAChC,MAAM,CAAC,UAAU,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;IACxC,CAAC,CAAA,CAAC,CAAC;IAEH,QAAQ,CAAC,SAAS,EAAE,GAAG,EAAE;QACvB,EAAE,CAAC,kBAAkB,EAAE,GAAS,EAAE;YAChC,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,eAAe,CAAC,IAAI,CAAC;YAEnE,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;YAChD,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAC9C,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;YACxC,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QAC1C,CAAC,CAAA,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,0BAA0B,EAAE,GAAS,EAAE;YACxC,MAAM,KAAK,GAAG,MAAM,eAAe,CAAC,cAAc,EAAE,CAAC;YACrD,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;QACrC,CAAC,CAAA,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/services/index.d.ts

@@ -0,0 +1,4 @@
+export * from "./IAuthService";
+export * from "./AuthService";
+export * from "./AuthFlow";
+export * from "./AuthConfiguration";

package/dist/services/index.js

@@ -0,0 +1,5 @@
+export * from "./IAuthService";
+export * from "./AuthService";
+export * from "./AuthFlow";
+export * from "./AuthConfiguration";
+//# sourceMappingURL=index.js.map

package/dist/services/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":"AAAA,cAAc,gBAAgB,CAAC;AAC/B,cAAc,eAAe,CAAC;AAC9B,cAAc,YAAY,CAAC;AAC3B,cAAc,qBAAqB,CAAC"}

package/dist/types/Privileges.d.ts

@@ -0,0 +1,6 @@
+export declare class Privileges {
+    static readonly UNIVERSAL = "universal";
+    static readonly SHOWROOM_APP = "showroom-app";
+    static readonly MARKETING_ENGINE_APP = "marketing-engine-app";
+    static readonly USER_MANAGEMENT_APP = "user-management-app";
+}

package/dist/types/Privileges.js

@@ -0,0 +1,7 @@
+export class Privileges {
+}
+Privileges.UNIVERSAL = "universal";
+Privileges.SHOWROOM_APP = "showroom-app";
+Privileges.MARKETING_ENGINE_APP = "marketing-engine-app";
+Privileges.USER_MANAGEMENT_APP = "user-management-app";
+//# sourceMappingURL=Privileges.js.map

package/dist/types/Privileges.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Privileges.js","sourceRoot":"","sources":["../../src/types/Privileges.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,UAAU;;AACE,oBAAS,GAAG,WAAW,CAAC;AACxB,uBAAY,GAAG,cAAc,CAAC;AAC9B,+BAAoB,GAAG,sBAAsB,CAAC;AAC9C,8BAAmB,GAAG,qBAAqB,CAAC"}

package/dist/types/TenantIds.d.ts

@@ -0,0 +1,3 @@
+export declare class TenantIds {
+    static readonly UNIVERSAL = "10000001-c001-0001-0001-000000000000";
+}

package/dist/types/TenantIds.js

@@ -0,0 +1,4 @@
+export class TenantIds {
+}
+TenantIds.UNIVERSAL = "10000001-c001-0001-0001-000000000000";
+//# sourceMappingURL=TenantIds.js.map

package/dist/types/TenantIds.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"TenantIds.js","sourceRoot":"","sources":["../../src/types/TenantIds.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,SAAS;;AACG,mBAAS,GAAG,sCAAsC,CAAC"}

package/dist/types/index.d.ts

@@ -0,0 +1,3 @@
+export * from "./user";
+export * from "./Privileges";
+export * from "./TenantIds";

package/dist/types/index.js

@@ -0,0 +1,4 @@
+export * from "./user";
+export * from "./Privileges";
+export * from "./TenantIds";
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA,cAAc,QAAQ,CAAC;AACvB,cAAc,cAAc,CAAC;AAC7B,cAAc,aAAa,CAAC"}

package/dist/types/user.d.ts

@@ -0,0 +1,6 @@
+export declare type User = {
+    firstName: string;
+    lastName: string;
+    email: string;
+    roles: Array<string>;
+};

package/dist/types/user.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=user.js.map

package/dist/types/user.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.js","sourceRoot":"","sources":["../../src/types/user.ts"],"names":[],"mappings":""}

package/dist/utils/identityProvider.d.ts

@@ -0,0 +1 @@
+export declare function getIdentityProviderFromHostname(hostname: string): any;

package/dist/utils/identityProvider.js

@@ -0,0 +1,12 @@
+const DEFAULT_IDENTITY_PROVIDER = "touchtech";
+export function getIdentityProviderFromHostname(hostname) {
+    var _a;
+    const hostnameToIdentityProviderMap = {
+        "bestseller.digitalvenue.dev": "bestseller",
+        "bestseller.digitalvenue.app": "bestseller",
+        "bestseller.digitalvenue.training": "bestseller",
+        "bestseller.localhost": "bestseller",
+    };
+    return (_a = hostnameToIdentityProviderMap[hostname]) !== null && _a !== void 0 ? _a : DEFAULT_IDENTITY_PROVIDER;
+}
+//# sourceMappingURL=identityProvider.js.map

package/dist/utils/identityProvider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identityProvider.js","sourceRoot":"","sources":["../../src/utils/identityProvider.ts"],"names":[],"mappings":"AAAA,MAAM,yBAAyB,GAAG,WAAW,CAAC;AAE9C,MAAM,UAAU,+BAA+B,CAAC,QAAgB;;IAC9D,MAAM,6BAA6B,GAAG;QACpC,6BAA6B,EAAE,YAAY;QAC3C,6BAA6B,EAAE,YAAY;QAC3C,kCAAkC,EAAE,YAAY;QAChD,sBAAsB,EAAE,YAAY;KACrC,CAAC;IAEF,OAAO,MAAA,6BAA6B,CAAC,QAAQ,CAAC,mCAAI,yBAAyB,CAAC;AAC9E,CAAC"}

package/dist/utils/index.d.ts

@@ -0,0 +1,2 @@
+export * from "./identityProvider";
+export * from "./roles";

package/dist/utils/index.js

@@ -0,0 +1,3 @@
+export * from "./identityProvider";
+export * from "./roles";
+//# sourceMappingURL=index.js.map

package/dist/utils/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,cAAc,oBAAoB,CAAC;AACnC,cAAc,SAAS,CAAC"}

package/dist/utils/roles.d.ts

@@ -0,0 +1,2 @@
+import { User } from "../types";
+export declare function userHasAccess(user: User, tenantId: string, privilege: string): boolean;

package/dist/utils/roles.js

@@ -0,0 +1,16 @@
+import { Privileges, TenantIds } from "../types";
+export function userHasAccess(user, tenantId, privilege) {
+    if (user) {
+        for (const role of user.roles) {
+            if (role === `${tenantId}:${privilege}` || // specific privilege for specific tenant
+                role === `${tenantId}:${Privileges.UNIVERSAL}` || // universal privilege for specific tenant
+                role === `${TenantIds.UNIVERSAL}:${privilege}` || // specific privilege for universal tenant
+                role === `${TenantIds.UNIVERSAL}:${Privileges.UNIVERSAL}` // universal privilege for universal tenant
+            ) {
+                return true;
+            }
+        }
+    }
+    return false;
+}
+//# sourceMappingURL=roles.js.map

package/dist/utils/roles.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"roles.js","sourceRoot":"","sources":["../../src/utils/roles.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAQ,MAAM,UAAU,CAAC;AAEvD,MAAM,UAAU,aAAa,CAAC,IAAU,EAAE,QAAgB,EAAE,SAAiB;IAC3E,IAAI,IAAI,EAAE;QACR,KAAK,MAAM,IAAI,IAAI,IAAI,CAAC,KAAK,EAAE;YAC7B,IACE,IAAI,KAAK,GAAG,QAAQ,IAAI,SAAS,EAAE,IAAI,yCAAyC;gBAChF,IAAI,KAAK,GAAG,QAAQ,IAAI,UAAU,CAAC,SAAS,EAAE,IAAI,0CAA0C;gBAC5F,IAAI,KAAK,GAAG,SAAS,CAAC,SAAS,IAAI,SAAS,EAAE,IAAI,0CAA0C;gBAC5F,IAAI,KAAK,GAAG,SAAS,CAAC,SAAS,IAAI,UAAU,CAAC,SAAS,EAAE,CAAC,2CAA2C;cACrG;gBACA,OAAO,IAAI,CAAC;aACb;SACF;KACF;IACD,OAAO,KAAK,CAAC;AACf,CAAC"}

package/package.json

@@ -0,0 +1,70 @@
+{
+  "name": "@touchtech/web-auth",
+  "version": "0.0.1",
+  "description": "DSR Auth",
+  "source": "index.ts",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "rm -rf ./dist && tsc",
+    "dev": "rm -rf ./dist && tsc --watch",
+    "lint": "eslint --ext .jsx,.js,.tsx,.ts src/",
+    "check": "yarn lint && yarn test",
+    "prepublishOnly": "yarn check && yarn run build",
+    "prepublish": "yarn run build",
+    "test": "jest --passWithNoTests",
+    "format": "yarn run tool-prettier --list-different \"**/*.{css,html,js,ts,tsx,json}\"",
+    "tool-prettier": "prettier --ignore-path .gitignore"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/TouchtechAB/web-auth.git"
+  },
+  "keywords": [
+    "auth"
+  ],
+  "author": "Touchtech",
+  "license": "UNLICENSED",
+  "bugs": {
+    "url": "https://github.com/TouchtechAB/dsr-next/issues"
+  },
+  "homepage": "https://github.com/TouchtechAB/web-auth#readme",
+  "devDependencies": {
+    "@testing-library/jest-dom": "^5.14.1",
+    "@testing-library/react": "^12.0.0",
+    "@testing-library/react-hooks": "^7.0.1",
+    "@testing-library/user-event": "^13.2.1",
+    "@types/jest": "^27.0.0",
+    "@types/node": "^15.12.2",
+    "@types/react": "^17.0.15",
+    "@types/react-dom": "^17.0.9",
+    "@typescript-eslint/eslint-plugin": "^4.28.5",
+    "@typescript-eslint/parser": "^4.28.5",
+    "eslint": "^7.32.0",
+    "eslint-plugin-react": "^7.24.0",
+    "eslint-plugin-import": "^2.24.2",
+    "eslint-plugin-prettier": "^4.0.0",
+    "eslint-config-prettier": "^8.3.0",
+    "eslint-plugin-react-hooks": "^4.2.0",
+    "identity-obj-proxy": "^3.0.0",
+    "jest": "^27.0.6",
+    "prettier": "^2.3.2",
+    "react": "^17.0.2",
+    "react-dom": "^17.0.2",
+    "ts-jest": "^27.0.4",
+    "typescript": "^4.5.4",
+    "clean-webpack-plugin": "^4.0.0"
+  },
+  "dependencies": {
+    "@openid/appauth": "^1.3.1",
+    "jwt-decode": "^3.1.2",
+    "@touchtech/web-logging": "^0.0.1",
+    "react-router-dom": "^5.3.0",
+    "react": "^17.0.2",
+    "react-dom": "^17.0.2",
+    "qs": "^6.10.1"
+  }
+}