@trimble-oss/trimble-id-react 1.0.3-rc.3 → 1.0.4-rc.1

package/dist/trimble-id-react.es.js

@@ -104,36 +104,36 @@ class Z {
     await this.cacheStorage.clear();
   }
 }
-const x = 5 * 6e4, j = ["code", "state"], A = 600 * 1e3, U = (o) => o.split("?")[0], ee = (o) => o.split("?")[1], b = (o) => {
-  let e = o;
-  if (!o.startsWith("?"))
+const x = 5 * 6e4, j = ["code", "state"], A = 600 * 1e3, U = (n) => n.split("?")[0], ee = (n) => n.split("?")[1], b = (n) => {
+  let e = n;
+  if (!n.startsWith("?"))
     try {
-      e = new URL(o).search;
+      e = new URL(n).search;
     } catch {
     }
   return new URLSearchParams(e);
-}, te = (o = window.location.href, e) => {
+}, te = (n = window.location.href, e) => {
   if (e != null) {
-    const r = U(e), n = U(o ?? "");
-    if (r !== n)
+    const o = U(e), i = U(n ?? "");
+    if (o !== i)
       return !1;
   }
-  const t = b(o);
-  for (const r of j)
-    if (!t.has(r))
+  const t = b(n);
+  for (const o of j)
+    if (!t.has(o))
       return !1;
   return !0;
-}, oe = (o) => ({
-  id: o.sub,
-  name: `${o.given_name} ${o.family_name}`,
-  given_name: o.given_name,
-  family_name: o.family_name,
-  picture: o.picture,
-  email: o.email,
-  email_verified: o.email_verified,
-  ...o.account_id && { account_id: o.account_id }
-}), re = "@TID_COOKIE";
-class ne {
+}, ne = (n) => ({
+  id: n.sub,
+  name: `${n.given_name} ${n.family_name}`,
+  given_name: n.given_name,
+  family_name: n.family_name,
+  picture: n.picture,
+  email: n.email,
+  email_verified: n.email_verified,
+  ...n.account_id && { account_id: n.account_id }
+}), oe = "@TID_COOKIE";
+class ie {
   /**
    * Retrieve a cookie from the browser
    * @param {string} key - Key to retrieve the cookies
@@ -154,12 +154,12 @@ class ne {
    * @example Save cookies with a custom domain
    * cookiesStorage.set('key',{data:{...}},{domain:'https://example.com/subpath'})
    */
-  set(e, t, r) {
-    let n = {};
-    window.location.protocol === "https:" && (n = {
+  set(e, t, o) {
+    let i = {};
+    window.location.protocol === "https:" && (i = {
       secure: !0,
       sameSite: "none"
-    }), r?.expires && (n.expires = r.expires), r?.domain && (n.domain = r.domain), m.set(e, JSON.stringify(t), n);
+    }), o?.expires && (i.expires = o.expires), o?.domain && (i.domain = o.domain), m.set(e, JSON.stringify(t), i);
   }
   /**
    * Remove a cookie from the browser
@@ -171,11 +171,11 @@ class ne {
    * cookiesStorage.remove('key',{domain:'https://example.com/subpath'})
    */
   remove(e, t) {
-    const r = {};
-    t?.domain && (r.domain = t.domain), m.remove(e, r);
+    const o = {};
+    t?.domain && (o.domain = t.domain), m.remove(e, o);
   }
 }
-class ie {
+class re {
   /**
    * Cookie full key to store and retrieve the information from cookies
    * @type {string}
@@ -191,15 +191,15 @@ class ie {
    * @param {CookiesManagerOptions} options - Configuration for the managing the cookies
    */
   constructor(e) {
-    this.cookieKey = `${re}.${e.clientId}`, this.cookiesStorage = new ne();
+    this.cookieKey = `${oe}.${e.clientId}`, this.cookiesStorage = new ie();
   }
   /**
    * Store cookies in the browser
    * @param {Partial<CookieValue>} value - information to store
    */
   save(e) {
-    const r = { ...this.get() || {}, ...e };
-    this.cookiesStorage.set(this.cookieKey, r, {
+    const o = { ...this.get() || {}, ...e };
+    this.cookiesStorage.set(this.cookieKey, o, {
       expires: 1
     });
   }
@@ -241,7 +241,7 @@ class D extends Error {
 }
 class ae extends Error {
 }
-const u = "@trimble-oss/trimble-id-react", g = "1.0.3-rc.3", se = {
+const u = "@trimble-oss/trimble-id-react", g = "1.0.4-rc.1", se = {
   configurationEndpoint: "",
   clientId: "",
   redirectUrl: "",
@@ -280,20 +280,20 @@ class ce {
    */
   constructor(e) {
     const { config: t = se } = e;
-    if (this.redirectUrl = t.redirectUrl, t.configurationEndpoint == null || t.configurationEndpoint == "")
+    if (this.redirectUrl = t.redirectUrl, t.configurationEndpoint == null || t.configurationEndpoint === "")
       throw new Error("Configuration endpoint not defined");
-    if (t.clientId == null || t.clientId == "")
+    if (t.clientId == null || t.clientId === "")
       throw new Error("Consumer key is not defined");
-    this.cookiesManager = new ie({
+    this.cookiesManager = new re({
       clientId: t.clientId
     });
-    const r = this.cookiesManager.get(), n = new $(t.configurationEndpoint);
-    let i = new R(
-      n,
+    const o = this.cookiesManager.get(), i = new $(t.configurationEndpoint);
+    let r = new R(
+      i,
       t.clientId,
       t.redirectUrl
     ).WithScopes(t.scopes);
-    t.logoutRedirectUrl && (i = i.WithLogoutRedirect(t.logoutRedirectUrl)), r?.code_verifier != null && (i = i.WithProofKeyForCodeExchange(r.code_verifier)), this.tokenProvider = i, this.cacheManager = new Z(), this.clientId = t.clientId, h.sendInitEvent("TIDClient", this.clientId, u, g), this.cleanupExpiredState();
+    t.logoutRedirectUrl && (r = r.WithLogoutRedirect(t.logoutRedirectUrl)), o?.code_verifier != null && (r = r.WithProofKeyForCodeExchange(o.code_verifier)), this.tokenProvider = r, this.cacheManager = new Z(), this.clientId = t.clientId, h.sendInitEvent("TIDClient", this.clientId, u, g), this.cleanupExpiredState();
   }
   /**
    * Clean up expired state payloads to prevent storage bloat
@@ -302,8 +302,8 @@ class ce {
     try {
       const e = this.cookiesManager.getStatePayload();
       if (e) {
-        const t = atob(e), r = JSON.parse(t);
-        Date.now() - r.timestamp > A && this.cookiesManager.clearStatePayload();
+        const t = atob(e), o = JSON.parse(t);
+        Date.now() - o.timestamp > A && this.cookiesManager.clearStatePayload();
       }
     } catch {
       this.cookiesManager.clearStatePayload();
@@ -324,11 +324,11 @@ class ce {
    */
   async loginWithRedirect(e) {
     h.sendMethodEvent(this.loginWithRedirect.name, this.clientId, u, g);
-    const { onRedirect: t } = e || {}, r = window.location.pathname + window.location.search, n = this.createStatePayload(r);
-    this.cookiesManager.save({ state_payload: n });
-    const i = R.GenerateCodeVerifier();
-    this.cookiesManager.save({ code_verifier: i }), this.tokenProvider = this.tokenProvider.WithProofKeyForCodeExchange(i);
-    const c = await this.tokenProvider.GetOAuthRedirect(n);
+    const { onRedirect: t } = e || {}, o = window.location.pathname + window.location.search, i = this.createStatePayload(o);
+    this.cookiesManager.save({ state_payload: i });
+    const r = R.GenerateCodeVerifier();
+    this.cookiesManager.save({ code_verifier: r }), this.tokenProvider = this.tokenProvider.WithProofKeyForCodeExchange(r);
+    const c = await this.tokenProvider.GetOAuthRedirect(i);
     t != null ? t(c) : window.location.assign(c);
   }
   /**
@@ -348,10 +348,10 @@ class ce {
     const t = this.cookiesManager.get();
     if (t == null || t?.code_verifier == null)
       throw new ae("Code verifier not available");
-    const r = ee(e), n = b(e), i = n.get("identity_provider") ?? "", c = n.get("state") ?? "", d = this.validateStatePayload(c);
+    const o = ee(e), i = b(e), r = i.get("identity_provider") ?? "", c = i.get("state") ?? "", d = this.validateStatePayload(c);
     if (!d.isValid)
       throw new Error(`State validation failed: ${d.error}`);
-    return await this.tokenProvider.ValidateQuery(r), await this.generateToken(i), {
+    return await this.tokenProvider.ValidateQuery(o), await this.generateToken(r), {
       authState: c,
       returnTo: d.redirectTo
     };
@@ -362,7 +362,7 @@ class ce {
    * @return {Promise<void>} Empty promise
    */
   async generateToken(e) {
-    const t = await this.tokenProvider.RetrieveToken(), r = await this.tokenProvider.RetrieveRefreshToken(), n = await this.tokenProvider.RetrieveIdToken(), i = await this.tokenProvider.RetrieveTokenExpiry(), d = new Date(i).getTime(), k = this.tokenProvider?._scopes?.join(" ");
+    const t = await this.tokenProvider.RetrieveToken(), o = await this.tokenProvider.RetrieveRefreshToken(), i = await this.tokenProvider.RetrieveIdToken(), r = await this.tokenProvider.RetrieveTokenExpiry(), d = new Date(r).getTime(), k = this.tokenProvider?._scopes?.join(" ");
     await this.cacheManager.setToken({
       scope: k,
       state: "",
@@ -370,11 +370,11 @@ class ce {
       identity_provider: e,
       token_type: "bearer",
       access_token: t,
-      refresh_token: r,
-      id_token: n,
+      refresh_token: o,
+      id_token: i,
       expires_at: d
     });
-    const v = J(n), p = oe(v);
+    const v = J(i), p = ne(v);
     await this.cacheManager.setUser(p), await this.reloadCodeVerifier();
   }
   async reloadCodeVerifier() {
@@ -387,10 +387,10 @@ class ce {
    * @return {string} - Base64 encoded state payload
    */
   createStatePayload(e) {
-    const t = this.generateNonce(), r = Date.now();
+    const t = this.generateNonce(), o = Date.now();
     return btoa(JSON.stringify({
       redirectTo: e,
-      timestamp: r,
+      timestamp: o,
       nonce: t
     }));
   }
@@ -414,18 +414,18 @@ class ce {
       const t = this.cookiesManager.getStatePayload();
       if (!t)
         return { isValid: !1, error: "No stored state found" };
-      const r = atob(e), n = JSON.parse(r), i = atob(t), c = JSON.parse(i);
-      if (!n.nonce || !n.timestamp || !n.redirectTo)
+      const o = atob(e), i = JSON.parse(o), r = atob(t), c = JSON.parse(r);
+      if (!i.nonce || !i.timestamp || !i.redirectTo)
         return { isValid: !1, error: "Invalid state payload structure" };
-      if (n.nonce !== c.nonce)
+      if (i.nonce !== c.nonce)
         return { isValid: !1, error: "State nonce mismatch" };
-      const k = Date.now() - n.timestamp;
+      const k = Date.now() - i.timestamp;
       return k > A ? { isValid: !1, error: "State expired - possible replay attack" } : k < 0 ? {
         isValid: !1,
         error: "State timestamp is in the future - possible replay attack"
       } : (this.cookiesManager.clearStatePayload(), {
         isValid: !0,
-        redirectTo: n.redirectTo
+        redirectTo: i.redirectTo
       });
     } catch {
       return { isValid: !1, error: "Invalid state format" };
@@ -465,14 +465,14 @@ class ce {
     if (e?.expires_at == null || e?.expires_at < t.getTime()) {
       try {
         await this.tokenProvider.RetrieveToken();
-      } catch (r) {
+      } catch (o) {
         throw h.sendExceptionEvent(
           this.getAccessTokenSilently.name,
-          r.message,
+          o.message,
           this.clientId,
           u,
           g
-        ), new O(r.message);
+        ), new O(o.message);
       }
       await this.generateToken(e?.identity_provider ?? ""), e = await this.cacheManager.getToken();
     }
@@ -500,14 +500,14 @@ class ce {
     if (e?.expires_at == null || e?.expires_at < t.getTime()) {
       try {
         await this.tokenProvider.RetrieveToken();
-      } catch (r) {
+      } catch (o) {
         throw h.sendExceptionEvent(
           this.getTokens.name,
-          r.message,
+          o.message,
           this.clientId,
           u,
           g
-        ), new O(r.message);
+        ), new O(o.message);
       }
       await this.generateToken(e?.identity_provider ?? ""), e = await this.cacheManager.getToken();
     }
@@ -531,12 +531,12 @@ class ce {
    */
   async logout(e) {
     h.sendMethodEvent(this.logout.name, this.clientId, u, g);
-    const { onRedirect: t, disabledAutoRedirect: r } = e || {};
+    const { onRedirect: t, disabledAutoRedirect: o } = e || {};
     this.cacheManager && await this.cacheManager.clear(), this.cookiesManager && this.cookiesManager.clear();
-    const n = await this.tokenProvider.GetOAuthLogoutRedirect("state");
+    const i = await this.tokenProvider.GetOAuthLogoutRedirect("state");
     if (t != null)
-      return t(n);
-    r || window.location.assign(n);
+      return t(i);
+    o || window.location.assign(i);
   }
   /**
    * Check if the user still has a valid session
@@ -565,8 +565,8 @@ class ce {
     const e = await this.cacheManager.getToken();
     if (e == null)
       return;
-    const t = e.access_token, r = e.refresh_token || "", n = e.id_token, i = e.expires_at;
-    this.tokenProvider = this.tokenProvider.WithAccessToken(t, i).WithRefreshToken(r).WithIdToken(n);
+    const t = e.access_token, o = e.refresh_token || "", i = e.id_token, r = e.expires_at;
+    this.tokenProvider = this.tokenProvider.WithAccessToken(t, r).WithRefreshToken(o).WithIdToken(i);
   }
   /**
    * Get a http bearer token client to use it for another SDK (Ex: Processing framework)
@@ -583,11 +583,11 @@ class ce {
     return this.redirectUrl;
   }
 }
-const T = H(null), K = () => L(T) ?? {}, de = (o, e) => {
+const T = H(null), K = () => L(T) ?? {}, de = (n, e) => {
   switch (e.type) {
     case "INIT":
       return {
-        ...o,
+        ...n,
         isLoading: !1,
         isAuthenticated: e.user != null,
         user: e.user,
@@ -597,7 +597,7 @@ const T = H(null), K = () => L(T) ?? {}, de = (o, e) => {
     case "HANDLE_CALLBACK_COMPLETE":
     case "GET_ACCESS_TOKEN_COMPLETE":
       return {
-        ...o,
+        ...n,
         isLoading: !1,
         isAuthenticated: e.user != null,
         user: e.user,
@@ -605,13 +605,13 @@ const T = H(null), K = () => L(T) ?? {}, de = (o, e) => {
       };
     case "LOGOUT":
       return {
-        ...o,
+        ...n,
         isAuthenticated: !1,
         user: void 0
       };
     case "ERROR":
       return {
-        ...o,
+        ...n,
         isLoading: !1,
         error: e.error
       };
@@ -619,46 +619,46 @@ const T = H(null), K = () => L(T) ?? {}, de = (o, e) => {
 }, le = {
   isLoading: !0,
   isAuthenticated: !1
-}, he = (o) => {
-  if (o == null || Object.keys(o).length <= 0)
+}, he = (n) => {
+  if (n == null || Object.keys(n).length <= 0)
     return !0;
-  const e = Object.keys(o);
+  const e = Object.keys(n);
   for (const t of e)
-    if (o[t] != null && o[t] !== "")
+    if (n[t] != null && n[t] !== "")
       return !1;
   return !0;
-}, ue = (o) => !he(o.config), ge = (o) => {
+}, ue = (n) => !he(n.config), ge = (n) => {
   const {
     children: e,
     configurationEndpoint: t,
-    clientId: r,
-    redirectUrl: n,
-    logoutRedirectUrl: i,
+    clientId: o,
+    redirectUrl: i,
+    logoutRedirectUrl: r,
     scopes: c,
     onRedirectCallback: d,
     checkRedirectUrlMatch: k
-  } = o;
+  } = n;
   if (L(T) != null)
     throw new Error("TID Provider already defined");
   const p = {
     config: {
       configurationEndpoint: t ?? "",
-      clientId: r ?? "",
-      redirectUrl: n ?? "",
-      logoutRedirectUrl: i ?? "",
+      clientId: o ?? "",
+      redirectUrl: i ?? "",
+      logoutRedirectUrl: r ?? "",
       scopes: c ?? [""]
     }
-  }, [a] = Q(o.tidClient ?? new ce(p)), [w, f] = X(de, le), E = q(!1), W = M(
+  }, [a] = Q(n.tidClient ?? new ce(p)), [w, f] = X(de, le), E = q(!1), W = M(
     () => k ? a.getRedirectUrl() : void 0,
     [k, a]
   );
   N(() => {
-    E.current || (o.tidClient != null && ue({
+    E.current || (n.tidClient != null && ue({
       config: {
         configurationEndpoint: t,
-        clientId: r,
-        redirectUrl: n,
-        logoutRedirectUrl: i,
+        clientId: o,
+        redirectUrl: i,
+        logoutRedirectUrl: r,
         scopes: c
       }
     }) && console.warn(
@@ -723,11 +723,11 @@ const T = H(null), K = () => L(T) ?? {}, de = (o, e) => {
     [w, S, _, P, I, C]
   );
   return /* @__PURE__ */ V(T.Provider, { value: G, children: e });
-}, me = K, Te = ge, ve = ({ renderComponent: o, loader: e }) => {
-  const { isAuthenticated: t, isLoading: r, loginWithRedirect: n } = K();
+}, me = K, Te = ge, ve = ({ renderComponent: n, loader: e }) => {
+  const { isAuthenticated: t, isLoading: o, loginWithRedirect: i } = K();
   return N(() => {
-    !r && !t && (async () => await n())();
-  }, [r, t, n]), t ? o : e || /* @__PURE__ */ V(z, {});
+    !o && !t && (async () => await i())();
+  }, [o, t, i]), t ? n : e || /* @__PURE__ */ V(z, {});
 };
 export {
   ve as AuthenticationGuard,

package/dist/trimble-id-react.umd.js

@@ -1 +1 @@
-(function(d,c){typeof exports=="object"&&typeof module<"u"?c(exports,require("@trimble-oss/trimble-id"),require("es-cookie"),require("jwt-decode"),require("react"),require("react/jsx-runtime")):typeof define=="function"&&define.amd?define(["exports","@trimble-oss/trimble-id","es-cookie","jwt-decode","react","react/jsx-runtime"],c):(d=typeof globalThis<"u"?globalThis:d||self,c(d.ReactTID={},d.trimbleId,d.esCookie,d.jwt_decode,d.React,d.jsxRuntime))})(this,(function(d,c,b,K,l,m){"use strict";function W(n){const e=Object.create(null,{[Symbol.toStringTag]:{value:"Module"}});if(n){for(const t in n)if(t!=="default"){const i=Object.getOwnPropertyDescriptor(n,t);Object.defineProperty(e,t,i.get?i:{enumerable:!0,get:()=>n[t]})}}return e.default=n,Object.freeze(e)}const v=W(b);class G{generateCache=(function(){const e={token:void 0,user:void 0};return{async getToken(){return e.token},async getUser(){return e.user},async storeToken(t){e.token=t},async storeUser(t){e.user=t},clear(){return e.token=void 0,e.user=void 0,Promise.resolve(void 0)}}})()}class H{cacheStorage;constructor(){this.cacheStorage=new G().generateCache}async setToken(e){await this.cacheStorage.storeToken(e)}async setUser(e){await this.cacheStorage.storeUser(e)}async getUser(){return this.cacheStorage.getUser()}async getToken(){return this.cacheStorage.getToken()}async clear(){await this.cacheStorage.clear()}}const E=5*6e4,F=["code","state"],S=600*1e3,C=n=>n.split("?")[0],$=n=>n.split("?")[1],P=n=>{let e=n;if(!n.startsWith("?"))try{e=new URL(n).search}catch{}return new URLSearchParams(e)},q=(n=window.location.href,e)=>{if(e!=null){const i=C(e),o=C(n??"");if(i!==o)return!1}const t=P(n);for(const i of F)if(!t.has(i))return!1;return!0},B=n=>({id:n.sub,name:`${n.given_name} ${n.family_name}`,given_name:n.given_name,family_name:n.family_name,picture:n.picture,email:n.email,email_verified:n.email_verified,...n.account_id&&{account_id:n.account_id}}),J="@TID_COOKIE";class j{get(e){const t=v.get(e);if(t==null)throw new Error("Cookie not found");return JSON.parse(t)}set(e,t,i){let o={};window.location.protocol==="https:"&&(o={secure:!0,sameSite:"none"}),i?.expires&&(o.expires=i.expires),i?.domain&&(o.domain=i.domain),v.set(e,JSON.stringify(t),o)}remove(e,t){const i={};t?.domain&&(i.domain=t.domain),v.remove(e,i)}}class z{cookieKey;cookiesStorage;constructor(e){this.cookieKey=`${J}.${e.clientId}`,this.cookiesStorage=new j}save(e){const i={...this.get()||{},...e};this.cookiesStorage.set(this.cookieKey,i,{expires:1})}getStatePayload(){return this.get()?.state_payload}clearStatePayload(){const e=this.get();e&&(delete e.state_payload,this.cookiesStorage.set(this.cookieKey,e,{expires:1}))}get(){try{return this.cookiesStorage.get(this.cookieKey)}catch{return}}clear(){this.cookiesStorage.remove(this.cookieKey)}}class _ extends Error{}class A extends Error{}class Q extends Error{}const h="@trimble-oss/trimble-id-react",g="1.0.3-rc.3",X={configurationEndpoint:"",clientId:"",redirectUrl:"",logoutRedirectUrl:"",scopes:[]};class M{tokenProvider;cacheManager;cookiesManager;clientId;redirectUrl;constructor(e){const{config:t=X}=e;if(this.redirectUrl=t.redirectUrl,t.configurationEndpoint==null||t.configurationEndpoint=="")throw new Error("Configuration endpoint not defined");if(t.clientId==null||t.clientId=="")throw new Error("Consumer key is not defined");this.cookiesManager=new z({clientId:t.clientId});const i=this.cookiesManager.get(),o=new c.OpenIdEndpointProvider(t.configurationEndpoint);let r=new c.AuthorizationCodeGrantTokenProvider(o,t.clientId,t.redirectUrl).WithScopes(t.scopes);t.logoutRedirectUrl&&(r=r.WithLogoutRedirect(t.logoutRedirectUrl)),i?.code_verifier!=null&&(r=r.WithProofKeyForCodeExchange(i.code_verifier)),this.tokenProvider=r,this.cacheManager=new H,this.clientId=t.clientId,c.AnalyticsHttpClient.sendInitEvent("TIDClient",this.clientId,h,g),this.cleanupExpiredState()}cleanupExpiredState(){try{const e=this.cookiesManager.getStatePayload();if(e){const t=atob(e),i=JSON.parse(t);Date.now()-i.timestamp>S&&this.cookiesManager.clearStatePayload()}}catch{this.cookiesManager.clearStatePayload()}}async loginWithRedirect(e){c.AnalyticsHttpClient.sendMethodEvent(this.loginWithRedirect.name,this.clientId,h,g);const{onRedirect:t}=e||{},i=window.location.pathname+window.location.search,o=this.createStatePayload(i);this.cookiesManager.save({state_payload:o});const r=c.AuthorizationCodeGrantTokenProvider.GenerateCodeVerifier();this.cookiesManager.save({code_verifier:r}),this.tokenProvider=this.tokenProvider.WithProofKeyForCodeExchange(r);const u=await this.tokenProvider.GetOAuthRedirect(o);t!=null?t(u):window.location.assign(u)}async handleCallback(e=window.location.href){const t=this.cookiesManager.get();if(t==null||t?.code_verifier==null)throw new Q("Code verifier not available");const i=$(e),o=P(e),r=o.get("identity_provider")??"",u=o.get("state")??"",f=this.validateStatePayload(u);if(!f.isValid)throw new Error(`State validation failed: ${f.error}`);return await this.tokenProvider.ValidateQuery(i),await this.generateToken(r),{authState:u,returnTo:f.redirectTo}}async generateToken(e){const t=await this.tokenProvider.RetrieveToken(),i=await this.tokenProvider.RetrieveRefreshToken(),o=await this.tokenProvider.RetrieveIdToken(),r=await this.tokenProvider.RetrieveTokenExpiry(),f=new Date(r).getTime(),y=this.tokenProvider?._scopes?.join(" ");await this.cacheManager.setToken({scope:y,state:"",session_state:"",identity_provider:e,token_type:"bearer",access_token:t,refresh_token:i,id_token:o,expires_at:f});const I=K(o),w=B(I);await this.cacheManager.setUser(w),await this.reloadCodeVerifier()}async reloadCodeVerifier(){const e=await this.tokenProvider.RetrieveCodeVerifier();this.cookiesManager.save({code_verifier:e}),this.tokenProvider=this.tokenProvider.WithProofKeyForCodeExchange(e)}createStatePayload(e){const t=this.generateNonce(),i=Date.now();return btoa(JSON.stringify({redirectTo:e,timestamp:i,nonce:t}))}generateNonce(){const e=new Uint8Array(16);return crypto.getRandomValues(e),Array.from(e,t=>t.toString(16).padStart(2,"0")).join("")}validateStatePayload(e){try{if(!e||e.trim()==="")return{isValid:!1,error:"Empty state parameter"};const t=this.cookiesManager.getStatePayload();if(!t)return{isValid:!1,error:"No stored state found"};const i=atob(e),o=JSON.parse(i),r=atob(t),u=JSON.parse(r);if(!o.nonce||!o.timestamp||!o.redirectTo)return{isValid:!1,error:"Invalid state payload structure"};if(o.nonce!==u.nonce)return{isValid:!1,error:"State nonce mismatch"};const y=Date.now()-o.timestamp;return y>S?{isValid:!1,error:"State expired - possible replay attack"}:y<0?{isValid:!1,error:"State timestamp is in the future - possible replay attack"}:(this.cookiesManager.clearStatePayload(),{isValid:!0,redirectTo:o.redirectTo})}catch{return{isValid:!1,error:"Invalid state format"}}}async getUser(){return c.AnalyticsHttpClient.sendMethodEvent(this.getUser.name,this.clientId,h,g),await this.cacheManager.getUser()}async getAccessTokenSilently(){c.AnalyticsHttpClient.sendMethodEvent(this.getAccessTokenSilently.name,this.clientId,h,g);let e=await this.cacheManager.getToken();if(e==null)throw c.AnalyticsHttpClient.sendExceptionEvent(this.getAccessTokenSilently.name,"No token available",this.clientId,h,g),new A("No token available");const t=new Date(new Date().getTime()+E);if(e?.expires_at==null||e?.expires_at<t.getTime()){try{await this.tokenProvider.RetrieveToken()}catch(i){throw c.AnalyticsHttpClient.sendExceptionEvent(this.getAccessTokenSilently.name,i.message,this.clientId,h,g),new _(i.message)}await this.generateToken(e?.identity_provider??""),e=await this.cacheManager.getToken()}return e?.access_token||""}async getTokens(){c.AnalyticsHttpClient.sendMethodEvent(this.getTokens.name,this.clientId,h,g);let e=await this.cacheManager.getToken();if(e==null)throw c.AnalyticsHttpClient.sendExceptionEvent(this.getTokens.name,"No token available",this.clientId,h,g),new A("No token available");const t=new Date(new Date().getTime()+E);if(e?.expires_at==null||e?.expires_at<t.getTime()){try{await this.tokenProvider.RetrieveToken()}catch(i){throw c.AnalyticsHttpClient.sendExceptionEvent(this.getTokens.name,i.message,this.clientId,h,g),new _(i.message)}await this.generateToken(e?.identity_provider??""),e=await this.cacheManager.getToken()}return{access_token:e?.access_token||"",expires_at:e?.expires_at||0,id_token:e?.id_token||""}}async logout(e){c.AnalyticsHttpClient.sendMethodEvent(this.logout.name,this.clientId,h,g);const{onRedirect:t,disabledAutoRedirect:i}=e||{};this.cacheManager&&await this.cacheManager.clear(),this.cookiesManager&&this.cookiesManager.clear();const o=await this.tokenProvider.GetOAuthLogoutRedirect("state");if(t!=null)return t(o);i||window.location.assign(o)}async checkSession(){try{await this.getAccessTokenSilently()}catch{return!1}return!0}async loadUserSession(){await this.loadCacheSessionIntoSDK(),await this.checkSession()||await this.cacheManager.clear()}async loadCacheSessionIntoSDK(){const e=await this.cacheManager.getToken();if(e==null)return;const t=e.access_token,i=e.refresh_token||"",o=e.id_token,r=e.expires_at;this.tokenProvider=this.tokenProvider.WithAccessToken(t,r).WithRefreshToken(i).WithIdToken(o)}getBearerTokenHttpClient(e){return new c.BearerTokenHttpClientProvider(this.tokenProvider,e)}getRedirectUrl(){return this.redirectUrl}}const T=l.createContext(null),R=()=>l.useContext(T)??{},Y=(n,e)=>{switch(e.type){case"INIT":return{...n,isLoading:!1,isAuthenticated:e.user!=null,user:e.user,error:void 0};case"GET_TOKENS_COMPLETE":case"HANDLE_CALLBACK_COMPLETE":case"GET_ACCESS_TOKEN_COMPLETE":return{...n,isLoading:!1,isAuthenticated:e.user!=null,user:e.user,error:void 0};case"LOGOUT":return{...n,isAuthenticated:!1,user:void 0};case"ERROR":return{...n,isLoading:!1,error:e.error}}},Z={isLoading:!0,isAuthenticated:!1},ee=n=>{if(n==null||Object.keys(n).length<=0)return!0;const e=Object.keys(n);for(const t of e)if(n[t]!=null&&n[t]!=="")return!1;return!0},te=n=>!ee(n.config),ne=n=>{const{children:e,configurationEndpoint:t,clientId:i,redirectUrl:o,logoutRedirectUrl:r,scopes:u,onRedirectCallback:f,checkRedirectUrlMatch:y}=n;if(l.useContext(T)!=null)throw new Error("TID Provider already defined");const w={config:{configurationEndpoint:t??"",clientId:i??"",redirectUrl:o??"",logoutRedirectUrl:r??"",scopes:u??[""]}},[a]=l.useState(n.tidClient??new M(w)),[x,p]=l.useReducer(Y,Z),O=l.useRef(!1),ae=l.useMemo(()=>y?a.getRedirectUrl():void 0,[y,a]);l.useEffect(()=>{O.current||(n.tidClient!=null&&te({config:{configurationEndpoint:t,clientId:i,redirectUrl:o,logoutRedirectUrl:r,scopes:u}})&&console.warn("When TID client is pass as prop, any client configuration property sent directly to the TID Provider component will be ignored"),O.current=!0,(async()=>{try{let s;if(q(void 0,ae)){const k=await a.handleCallback();s=await a.getUser(),f?.(k)}else await a.loadUserSession(),s=await a.getUser();p({type:"INIT",user:s})}catch(s){let k=s;typeof s=="string"&&(k=new Error(s)),p({type:"ERROR",error:k})}})())},[a,f]);const D=l.useCallback(async()=>{const s=await a.getAccessTokenSilently(),k=await a.getUser();return p({type:"GET_ACCESS_TOKEN_COMPLETE",user:k}),s},[a]),U=l.useCallback(async()=>{const s=await a.getTokens(),k=await a.getUser();return p({type:"GET_TOKENS_COMPLETE",user:k}),s},[a]),L=l.useCallback(async s=>{await a.loginWithRedirect(s)},[a]),N=l.useCallback(async s=>{await a.logout(s),s?.disabledAutoRedirect!=null&&s.disabledAutoRedirect&&p({type:"LOGOUT"})},[a]),V=l.useCallback(async s=>{const k=await a.handleCallback(s),ce=await a.getUser();return p({type:"HANDLE_CALLBACK_COMPLETE",user:ce}),k},[a]),se=l.useMemo(()=>({...x,getAccessTokenSilently:D,getTokens:U,loginWithRedirect:L,handleCallback:V,logout:N}),[x,D,U,L,V,N]);return m.jsx(T.Provider,{value:se,children:e})},ie=R,oe=ne,re=({renderComponent:n,loader:e})=>{const{isAuthenticated:t,isLoading:i,loginWithRedirect:o}=R();return l.useEffect(()=>{!i&&!t&&(async()=>await o())()},[i,t,o]),t?n:e||m.jsx(m.Fragment,{})};d.AuthenticationGuard=re,d.TIDClient=M,d.TIDContext=T,d.TIDProvider=oe,d.useAuth=ie,Object.defineProperty(d,Symbol.toStringTag,{value:"Module"})}));
+(function(d,c){typeof exports=="object"&&typeof module<"u"?c(exports,require("@trimble-oss/trimble-id"),require("es-cookie"),require("jwt-decode"),require("react"),require("react/jsx-runtime")):typeof define=="function"&&define.amd?define(["exports","@trimble-oss/trimble-id","es-cookie","jwt-decode","react","react/jsx-runtime"],c):(d=typeof globalThis<"u"?globalThis:d||self,c(d.ReactTID={},d.trimbleId,d.esCookie,d.jwt_decode,d.React,d.jsxRuntime))})(this,(function(d,c,b,K,l,m){"use strict";function W(n){const e=Object.create(null,{[Symbol.toStringTag]:{value:"Module"}});if(n){for(const t in n)if(t!=="default"){const i=Object.getOwnPropertyDescriptor(n,t);Object.defineProperty(e,t,i.get?i:{enumerable:!0,get:()=>n[t]})}}return e.default=n,Object.freeze(e)}const v=W(b);class G{generateCache=(function(){const e={token:void 0,user:void 0};return{async getToken(){return e.token},async getUser(){return e.user},async storeToken(t){e.token=t},async storeUser(t){e.user=t},clear(){return e.token=void 0,e.user=void 0,Promise.resolve(void 0)}}})()}class H{cacheStorage;constructor(){this.cacheStorage=new G().generateCache}async setToken(e){await this.cacheStorage.storeToken(e)}async setUser(e){await this.cacheStorage.storeUser(e)}async getUser(){return this.cacheStorage.getUser()}async getToken(){return this.cacheStorage.getToken()}async clear(){await this.cacheStorage.clear()}}const E=5*6e4,F=["code","state"],S=600*1e3,C=n=>n.split("?")[0],$=n=>n.split("?")[1],P=n=>{let e=n;if(!n.startsWith("?"))try{e=new URL(n).search}catch{}return new URLSearchParams(e)},q=(n=window.location.href,e)=>{if(e!=null){const i=C(e),o=C(n??"");if(i!==o)return!1}const t=P(n);for(const i of F)if(!t.has(i))return!1;return!0},B=n=>({id:n.sub,name:`${n.given_name} ${n.family_name}`,given_name:n.given_name,family_name:n.family_name,picture:n.picture,email:n.email,email_verified:n.email_verified,...n.account_id&&{account_id:n.account_id}}),J="@TID_COOKIE";class j{get(e){const t=v.get(e);if(t==null)throw new Error("Cookie not found");return JSON.parse(t)}set(e,t,i){let o={};window.location.protocol==="https:"&&(o={secure:!0,sameSite:"none"}),i?.expires&&(o.expires=i.expires),i?.domain&&(o.domain=i.domain),v.set(e,JSON.stringify(t),o)}remove(e,t){const i={};t?.domain&&(i.domain=t.domain),v.remove(e,i)}}class z{cookieKey;cookiesStorage;constructor(e){this.cookieKey=`${J}.${e.clientId}`,this.cookiesStorage=new j}save(e){const i={...this.get()||{},...e};this.cookiesStorage.set(this.cookieKey,i,{expires:1})}getStatePayload(){return this.get()?.state_payload}clearStatePayload(){const e=this.get();e&&(delete e.state_payload,this.cookiesStorage.set(this.cookieKey,e,{expires:1}))}get(){try{return this.cookiesStorage.get(this.cookieKey)}catch{return}}clear(){this.cookiesStorage.remove(this.cookieKey)}}class _ extends Error{}class A extends Error{}class Q extends Error{}const h="@trimble-oss/trimble-id-react",g="1.0.4-rc.1",X={configurationEndpoint:"",clientId:"",redirectUrl:"",logoutRedirectUrl:"",scopes:[]};class M{tokenProvider;cacheManager;cookiesManager;clientId;redirectUrl;constructor(e){const{config:t=X}=e;if(this.redirectUrl=t.redirectUrl,t.configurationEndpoint==null||t.configurationEndpoint==="")throw new Error("Configuration endpoint not defined");if(t.clientId==null||t.clientId==="")throw new Error("Consumer key is not defined");this.cookiesManager=new z({clientId:t.clientId});const i=this.cookiesManager.get(),o=new c.OpenIdEndpointProvider(t.configurationEndpoint);let r=new c.AuthorizationCodeGrantTokenProvider(o,t.clientId,t.redirectUrl).WithScopes(t.scopes);t.logoutRedirectUrl&&(r=r.WithLogoutRedirect(t.logoutRedirectUrl)),i?.code_verifier!=null&&(r=r.WithProofKeyForCodeExchange(i.code_verifier)),this.tokenProvider=r,this.cacheManager=new H,this.clientId=t.clientId,c.AnalyticsHttpClient.sendInitEvent("TIDClient",this.clientId,h,g),this.cleanupExpiredState()}cleanupExpiredState(){try{const e=this.cookiesManager.getStatePayload();if(e){const t=atob(e),i=JSON.parse(t);Date.now()-i.timestamp>S&&this.cookiesManager.clearStatePayload()}}catch{this.cookiesManager.clearStatePayload()}}async loginWithRedirect(e){c.AnalyticsHttpClient.sendMethodEvent(this.loginWithRedirect.name,this.clientId,h,g);const{onRedirect:t}=e||{},i=window.location.pathname+window.location.search,o=this.createStatePayload(i);this.cookiesManager.save({state_payload:o});const r=c.AuthorizationCodeGrantTokenProvider.GenerateCodeVerifier();this.cookiesManager.save({code_verifier:r}),this.tokenProvider=this.tokenProvider.WithProofKeyForCodeExchange(r);const u=await this.tokenProvider.GetOAuthRedirect(o);t!=null?t(u):window.location.assign(u)}async handleCallback(e=window.location.href){const t=this.cookiesManager.get();if(t==null||t?.code_verifier==null)throw new Q("Code verifier not available");const i=$(e),o=P(e),r=o.get("identity_provider")??"",u=o.get("state")??"",f=this.validateStatePayload(u);if(!f.isValid)throw new Error(`State validation failed: ${f.error}`);return await this.tokenProvider.ValidateQuery(i),await this.generateToken(r),{authState:u,returnTo:f.redirectTo}}async generateToken(e){const t=await this.tokenProvider.RetrieveToken(),i=await this.tokenProvider.RetrieveRefreshToken(),o=await this.tokenProvider.RetrieveIdToken(),r=await this.tokenProvider.RetrieveTokenExpiry(),f=new Date(r).getTime(),y=this.tokenProvider?._scopes?.join(" ");await this.cacheManager.setToken({scope:y,state:"",session_state:"",identity_provider:e,token_type:"bearer",access_token:t,refresh_token:i,id_token:o,expires_at:f});const I=K(o),w=B(I);await this.cacheManager.setUser(w),await this.reloadCodeVerifier()}async reloadCodeVerifier(){const e=await this.tokenProvider.RetrieveCodeVerifier();this.cookiesManager.save({code_verifier:e}),this.tokenProvider=this.tokenProvider.WithProofKeyForCodeExchange(e)}createStatePayload(e){const t=this.generateNonce(),i=Date.now();return btoa(JSON.stringify({redirectTo:e,timestamp:i,nonce:t}))}generateNonce(){const e=new Uint8Array(16);return crypto.getRandomValues(e),Array.from(e,t=>t.toString(16).padStart(2,"0")).join("")}validateStatePayload(e){try{if(!e||e.trim()==="")return{isValid:!1,error:"Empty state parameter"};const t=this.cookiesManager.getStatePayload();if(!t)return{isValid:!1,error:"No stored state found"};const i=atob(e),o=JSON.parse(i),r=atob(t),u=JSON.parse(r);if(!o.nonce||!o.timestamp||!o.redirectTo)return{isValid:!1,error:"Invalid state payload structure"};if(o.nonce!==u.nonce)return{isValid:!1,error:"State nonce mismatch"};const y=Date.now()-o.timestamp;return y>S?{isValid:!1,error:"State expired - possible replay attack"}:y<0?{isValid:!1,error:"State timestamp is in the future - possible replay attack"}:(this.cookiesManager.clearStatePayload(),{isValid:!0,redirectTo:o.redirectTo})}catch{return{isValid:!1,error:"Invalid state format"}}}async getUser(){return c.AnalyticsHttpClient.sendMethodEvent(this.getUser.name,this.clientId,h,g),await this.cacheManager.getUser()}async getAccessTokenSilently(){c.AnalyticsHttpClient.sendMethodEvent(this.getAccessTokenSilently.name,this.clientId,h,g);let e=await this.cacheManager.getToken();if(e==null)throw c.AnalyticsHttpClient.sendExceptionEvent(this.getAccessTokenSilently.name,"No token available",this.clientId,h,g),new A("No token available");const t=new Date(new Date().getTime()+E);if(e?.expires_at==null||e?.expires_at<t.getTime()){try{await this.tokenProvider.RetrieveToken()}catch(i){throw c.AnalyticsHttpClient.sendExceptionEvent(this.getAccessTokenSilently.name,i.message,this.clientId,h,g),new _(i.message)}await this.generateToken(e?.identity_provider??""),e=await this.cacheManager.getToken()}return e?.access_token||""}async getTokens(){c.AnalyticsHttpClient.sendMethodEvent(this.getTokens.name,this.clientId,h,g);let e=await this.cacheManager.getToken();if(e==null)throw c.AnalyticsHttpClient.sendExceptionEvent(this.getTokens.name,"No token available",this.clientId,h,g),new A("No token available");const t=new Date(new Date().getTime()+E);if(e?.expires_at==null||e?.expires_at<t.getTime()){try{await this.tokenProvider.RetrieveToken()}catch(i){throw c.AnalyticsHttpClient.sendExceptionEvent(this.getTokens.name,i.message,this.clientId,h,g),new _(i.message)}await this.generateToken(e?.identity_provider??""),e=await this.cacheManager.getToken()}return{access_token:e?.access_token||"",expires_at:e?.expires_at||0,id_token:e?.id_token||""}}async logout(e){c.AnalyticsHttpClient.sendMethodEvent(this.logout.name,this.clientId,h,g);const{onRedirect:t,disabledAutoRedirect:i}=e||{};this.cacheManager&&await this.cacheManager.clear(),this.cookiesManager&&this.cookiesManager.clear();const o=await this.tokenProvider.GetOAuthLogoutRedirect("state");if(t!=null)return t(o);i||window.location.assign(o)}async checkSession(){try{await this.getAccessTokenSilently()}catch{return!1}return!0}async loadUserSession(){await this.loadCacheSessionIntoSDK(),await this.checkSession()||await this.cacheManager.clear()}async loadCacheSessionIntoSDK(){const e=await this.cacheManager.getToken();if(e==null)return;const t=e.access_token,i=e.refresh_token||"",o=e.id_token,r=e.expires_at;this.tokenProvider=this.tokenProvider.WithAccessToken(t,r).WithRefreshToken(i).WithIdToken(o)}getBearerTokenHttpClient(e){return new c.BearerTokenHttpClientProvider(this.tokenProvider,e)}getRedirectUrl(){return this.redirectUrl}}const T=l.createContext(null),R=()=>l.useContext(T)??{},Y=(n,e)=>{switch(e.type){case"INIT":return{...n,isLoading:!1,isAuthenticated:e.user!=null,user:e.user,error:void 0};case"GET_TOKENS_COMPLETE":case"HANDLE_CALLBACK_COMPLETE":case"GET_ACCESS_TOKEN_COMPLETE":return{...n,isLoading:!1,isAuthenticated:e.user!=null,user:e.user,error:void 0};case"LOGOUT":return{...n,isAuthenticated:!1,user:void 0};case"ERROR":return{...n,isLoading:!1,error:e.error}}},Z={isLoading:!0,isAuthenticated:!1},ee=n=>{if(n==null||Object.keys(n).length<=0)return!0;const e=Object.keys(n);for(const t of e)if(n[t]!=null&&n[t]!=="")return!1;return!0},te=n=>!ee(n.config),ne=n=>{const{children:e,configurationEndpoint:t,clientId:i,redirectUrl:o,logoutRedirectUrl:r,scopes:u,onRedirectCallback:f,checkRedirectUrlMatch:y}=n;if(l.useContext(T)!=null)throw new Error("TID Provider already defined");const w={config:{configurationEndpoint:t??"",clientId:i??"",redirectUrl:o??"",logoutRedirectUrl:r??"",scopes:u??[""]}},[a]=l.useState(n.tidClient??new M(w)),[x,p]=l.useReducer(Y,Z),O=l.useRef(!1),ae=l.useMemo(()=>y?a.getRedirectUrl():void 0,[y,a]);l.useEffect(()=>{O.current||(n.tidClient!=null&&te({config:{configurationEndpoint:t,clientId:i,redirectUrl:o,logoutRedirectUrl:r,scopes:u}})&&console.warn("When TID client is pass as prop, any client configuration property sent directly to the TID Provider component will be ignored"),O.current=!0,(async()=>{try{let s;if(q(void 0,ae)){const k=await a.handleCallback();s=await a.getUser(),f?.(k)}else await a.loadUserSession(),s=await a.getUser();p({type:"INIT",user:s})}catch(s){let k=s;typeof s=="string"&&(k=new Error(s)),p({type:"ERROR",error:k})}})())},[a,f]);const D=l.useCallback(async()=>{const s=await a.getAccessTokenSilently(),k=await a.getUser();return p({type:"GET_ACCESS_TOKEN_COMPLETE",user:k}),s},[a]),U=l.useCallback(async()=>{const s=await a.getTokens(),k=await a.getUser();return p({type:"GET_TOKENS_COMPLETE",user:k}),s},[a]),L=l.useCallback(async s=>{await a.loginWithRedirect(s)},[a]),N=l.useCallback(async s=>{await a.logout(s),s?.disabledAutoRedirect!=null&&s.disabledAutoRedirect&&p({type:"LOGOUT"})},[a]),V=l.useCallback(async s=>{const k=await a.handleCallback(s),ce=await a.getUser();return p({type:"HANDLE_CALLBACK_COMPLETE",user:ce}),k},[a]),se=l.useMemo(()=>({...x,getAccessTokenSilently:D,getTokens:U,loginWithRedirect:L,handleCallback:V,logout:N}),[x,D,U,L,V,N]);return m.jsx(T.Provider,{value:se,children:e})},ie=R,oe=ne,re=({renderComponent:n,loader:e})=>{const{isAuthenticated:t,isLoading:i,loginWithRedirect:o}=R();return l.useEffect(()=>{!i&&!t&&(async()=>await o())()},[i,t,o]),t?n:e||m.jsx(m.Fragment,{})};d.AuthenticationGuard=re,d.TIDClient=M,d.TIDContext=T,d.TIDProvider=oe,d.useAuth=ie,Object.defineProperty(d,Symbol.toStringTag,{value:"Module"})}));

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@trimble-oss/trimble-id-react",
   "private": false,
-  "version": "1.0.3-rc.3",
+  "version": "1.0.4-rc.1",
   "homepage": "https://github.com/trimble-oss/trimble-id-sdk-docs-for-react",
   "author": "Trimble developers <developers@trimble.com>",
   "license": "MIT",
@@ -31,7 +31,7 @@
   "module": "./dist/trimble-id-react.es.js",
   "types": "./dist/index.d.ts",
   "dependencies": {
-    "@trimble-oss/trimble-id": "^1.0.1",
+    "@trimble-oss/trimble-id": "^1.0.3-rc.1",
     "es-cookie": "^1.4.0",
     "husky": "^8.0.3",
     "jwt-decode": "^3.1.2"
@@ -56,7 +56,6 @@
     "eslint-plugin-react-hooks": "^5.2.0",
     "eslint-plugin-react-refresh": "^0.4.26",
     "globals": "^16.2.0",
-    "gts": "^7.0.0",
     "typescript-eslint": "^8.46.0",
     "jest": "^30.0.0",
     "jest-environment-jsdom": "^30.0.0",