npm - @versini/auth-provider - Versions diffs - 2.3.0 → 3.0.0 - Mend

@versini/auth-provider 2.3.0 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.d.ts CHANGED Viewed

@@ -9,15 +9,16 @@ type AuthProviderProps = {
 };
 type AuthState = {
+	isLoading: boolean;
 	isAuthenticated: boolean;
 	logoutReason?: string;
 	userId?: string;
+	idTokenClaims?: any;
 };
 type AuthContextProps = {
 	login: (username: string, password: string) => Promise<boolean>;
 	logout: () => void;
-	getIdTokenClaims: () => Promise<any>;
 } & AuthState;
 declare const AuthProvider: ({ children, sessionExpiration, clientId, }: AuthProviderProps) => react_jsx_runtime.JSX.Element;

package/dist/index.js CHANGED Viewed

@@ -1,14 +1,14 @@
 import { jsx as ne } from "react/jsx-runtime";
 import * as I from "react";
-import { useRef as ae, useEffect as Y, createContext as se, useState as ie, useContext as ce } from "react";
+import { useRef as ae, useEffect as F, createContext as se, useState as ie, useCallback as ce, useContext as ue } from "react";
 /*!
-  @versini/auth-provider v2.3.0
+  @versini/auth-provider v3.0.0
   © 2024 gizmette.com
 */
 try {
   window.__VERSINI_AUTH_CLIENT__ || (window.__VERSINI_AUTH_CLIENT__ = {
-    version: "2.3.0",
-    buildTime: "06/24/2024 06:34 PM EDT",
+    version: "3.0.0",
+    buildTime: "06/25/2024 08:53 AM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
@@ -21,21 +21,21 @@ try {
 try {
   window.__VERSINI_AUTH_COMMON__ || (window.__VERSINI_AUTH_COMMON__ = {
     version: "2.3.0",
-    buildTime: "06/24/2024 06:34 PM EDT",
+    buildTime: "06/25/2024 08:53 AM EDT",
     homepage: "https://github.com/aversini/auth-client",
     license: "MIT"
   });
 } catch {
 }
-const U = crypto, G = (e) => e instanceof CryptoKey, _ = new TextEncoder(), T = new TextDecoder();
-function ue(...e) {
+const N = crypto, G = (e) => e instanceof CryptoKey, _ = new TextEncoder(), T = new TextDecoder();
+function de(...e) {
   const t = e.reduce((n, { length: a }) => n + a, 0), o = new Uint8Array(t);
   let r = 0;
   for (const n of e)
     o.set(n, r), r += n.length;
   return o;
 }
-const de = (e) => {
+const le = (e) => {
   const t = atob(e), o = new Uint8Array(t.length);
   for (let r = 0; r < t.length; r++)
     o[r] = t.charCodeAt(r);
@@ -44,7 +44,7 @@ const de = (e) => {
   let t = e;
   t instanceof Uint8Array && (t = T.decode(t)), t = t.replace(/-/g, "+").replace(/_/g, "/").replace(/\s/g, "");
   try {
-    return de(t);
+    return le(t);
   } catch {
     throw new TypeError("The input to be decoded is not correctly encoded.");
   }
@@ -66,7 +66,7 @@ class m extends b {
     super(t), this.code = "ERR_JWT_CLAIM_VALIDATION_FAILED", this.claim = r, this.reason = n, this.payload = o;
   }
 }
-class $ extends b {
+class L extends b {
   static get code() {
     return "ERR_JWT_EXPIRED";
   }
@@ -74,7 +74,7 @@ class $ extends b {
     super(t), this.code = "ERR_JWT_EXPIRED", this.claim = r, this.reason = n, this.payload = o;
   }
 }
-class le extends b {
+class he extends b {
   constructor() {
     super(...arguments), this.code = "ERR_JOSE_ALG_NOT_ALLOWED";
   }
@@ -98,7 +98,7 @@ let l = class extends b {
     return "ERR_JWS_INVALID";
   }
 };
-class q extends b {
+class Y extends b {
   constructor() {
     super(...arguments), this.code = "ERR_JWT_INVALID";
   }
@@ -106,7 +106,7 @@ class q extends b {
     return "ERR_JWT_INVALID";
   }
 }
-class he extends b {
+class pe extends b {
   constructor() {
     super(...arguments), this.code = "ERR_JWS_SIGNATURE_VERIFICATION_FAILED", this.message = "signature verification failed";
   }
@@ -123,7 +123,7 @@ function v(e, t) {
 function P(e) {
   return parseInt(e.name.slice(4), 10);
 }
-function pe(e) {
+function fe(e) {
   switch (e) {
     case "ES256":
       return "P-256";
@@ -135,7 +135,7 @@ function pe(e) {
       throw new Error("unreachable");
   }
 }
-function fe(e, t) {
+function ye(e, t) {
   if (t.length && !t.some((o) => e.usages.includes(o))) {
     let o = "CryptoKey does not support this operation, its usages must include ";
     if (t.length > 2) {
@@ -146,7 +146,7 @@ function fe(e, t) {
     throw new TypeError(o);
   }
 }
-function ye(e, t, ...o) {
+function me(e, t, ...o) {
   switch (t) {
     case "HS256":
     case "HS384":
@@ -188,7 +188,7 @@ function ye(e, t, ...o) {
     case "ES512": {
       if (!v(e.algorithm, "ECDSA"))
         throw S("ECDSA");
-      const r = pe(t);
+      const r = fe(t);
       if (e.algorithm.namedCurve !== r)
         throw S(r, "algorithm.namedCurve");
       break;
@@ -196,9 +196,9 @@ function ye(e, t, ...o) {
     default:
       throw new TypeError("CryptoKey does not support this operation");
   }
-  fe(e, o);
+  ye(e, o);
 }
-function z(e, t, ...o) {
+function q(e, t, ...o) {
   var r;
   if (o.length > 2) {
     const n = o.pop();
@@ -207,11 +207,11 @@ function z(e, t, ...o) {
     o.length === 2 ? e += `one of type ${o[0]} or ${o[1]}.` : e += `of type ${o[0]}.`;
   return t == null ? e += ` Received ${t}` : typeof t == "function" && t.name ? e += ` Received function ${t.name}` : typeof t == "object" && t != null && (r = t.constructor) != null && r.name && (e += ` Received an instance of ${t.constructor.name}`), e;
 }
-const L = (e, ...t) => z("Key must be ", e, ...t);
-function X(e, t, ...o) {
-  return z(`Key for the ${e} algorithm must be `, t, ...o);
+const J = (e, ...t) => q("Key must be ", e, ...t);
+function z(e, t, ...o) {
+  return q(`Key for the ${e} algorithm must be `, t, ...o);
 }
-const Q = (e) => G(e), g = ["CryptoKey"], me = (...e) => {
+const X = (e) => G(e), E = ["CryptoKey"], we = (...e) => {
   const t = e.filter(Boolean);
   if (t.length === 0 || t.length === 1)
     return !0;
@@ -230,11 +230,11 @@ const Q = (e) => G(e), g = ["CryptoKey"], me = (...e) => {
   }
   return !0;
 };
-function we(e) {
+function Se(e) {
   return typeof e == "object" && e !== null;
 }
 function H(e) {
-  if (!we(e) || Object.prototype.toString.call(e) !== "[object Object]")
+  if (!Se(e) || Object.prototype.toString.call(e) !== "[object Object]")
     return !1;
   if (Object.getPrototypeOf(e) === null)
     return !0;
@@ -243,34 +243,34 @@ function H(e) {
     t = Object.getPrototypeOf(t);
   return Object.getPrototypeOf(e) === t;
 }
-const Se = (e, t) => {
+const ge = (e, t) => {
   if (e.startsWith("RS") || e.startsWith("PS")) {
     const { modulusLength: o } = t.algorithm;
     if (typeof o != "number" || o < 2048)
       throw new TypeError(`${e} requires key modulusLength to be 2048 bits or larger`);
   }
-}, E = (e, t, o = 0) => {
+}, g = (e, t, o = 0) => {
   o === 0 && (t.unshift(t.length), t.unshift(6));
   const r = e.indexOf(t[0], o);
   if (r === -1)
     return !1;
   const n = e.subarray(r, r + t.length);
-  return n.length !== t.length ? !1 : n.every((a, s) => a === t[s]) || E(e, t, r + 1);
-}, K = (e) => {
+  return n.length !== t.length ? !1 : n.every((a, s) => a === t[s]) || g(e, t, r + 1);
+}, $ = (e) => {
   switch (!0) {
-    case E(e, [42, 134, 72, 206, 61, 3, 1, 7]):
+    case g(e, [42, 134, 72, 206, 61, 3, 1, 7]):
       return "P-256";
-    case E(e, [43, 129, 4, 0, 34]):
+    case g(e, [43, 129, 4, 0, 34]):
       return "P-384";
-    case E(e, [43, 129, 4, 0, 35]):
+    case g(e, [43, 129, 4, 0, 35]):
       return "P-521";
-    case E(e, [43, 101, 110]):
+    case g(e, [43, 101, 110]):
       return "X25519";
-    case E(e, [43, 101, 111]):
+    case g(e, [43, 101, 111]):
       return "X448";
-    case E(e, [43, 101, 112]):
+    case g(e, [43, 101, 112]):
       return "Ed25519";
-    case E(e, [43, 101, 113]):
+    case g(e, [43, 101, 113]):
       return "Ed448";
     default:
       throw new k("Invalid or unsupported EC Key Curve or OKP Key Sub Type");
@@ -311,43 +311,43 @@ const Se = (e, t) => {
     case "ECDH-ES+A128KW":
     case "ECDH-ES+A192KW":
     case "ECDH-ES+A256KW": {
-      const c = K(i);
+      const c = $(i);
       a = c.startsWith("P-") ? { name: "ECDH", namedCurve: c } : { name: c }, s = [];
       break;
     }
     case "EdDSA":
-      a = { name: K(i) }, s = ["verify"];
+      a = { name: $(i) }, s = ["verify"];
       break;
     default:
       throw new k('Invalid or unsupported "alg" (Algorithm) value');
   }
-  return U.subtle.importKey(t, i, a, !1, s);
-}, ge = (e, t, o) => Ee(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
-async function Ae(e, t, o) {
+  return N.subtle.importKey(t, i, a, !1, s);
+}, Ae = (e, t, o) => Ee(/(?:-----(?:BEGIN|END) PUBLIC KEY-----|\s)/g, "spki", e, t);
+async function be(e, t, o) {
   if (e.indexOf("-----BEGIN PUBLIC KEY-----") !== 0)
     throw new TypeError('"spki" must be SPKI formatted string');
-  return ge(e, t);
+  return Ae(e, t);
 }
-const be = (e, t) => {
+const Ie = (e, t) => {
   if (!(t instanceof Uint8Array)) {
-    if (!Q(t))
-      throw new TypeError(X(e, t, ...g, "Uint8Array"));
+    if (!X(t))
+      throw new TypeError(z(e, t, ...E, "Uint8Array"));
     if (t.type !== "secret")
-      throw new TypeError(`${g.join(" or ")} instances for symmetric algorithms must be of type "secret"`);
+      throw new TypeError(`${E.join(" or ")} instances for symmetric algorithms must be of type "secret"`);
   }
-}, Ie = (e, t, o) => {
-  if (!Q(t))
-    throw new TypeError(X(e, t, ...g));
+}, _e = (e, t, o) => {
+  if (!X(t))
+    throw new TypeError(z(e, t, ...E));
   if (t.type === "secret")
-    throw new TypeError(`${g.join(" or ")} instances for asymmetric algorithms must not be of type "secret"`);
+    throw new TypeError(`${E.join(" or ")} instances for asymmetric algorithms must not be of type "secret"`);
   if (t.algorithm && o === "verify" && t.type === "private")
-    throw new TypeError(`${g.join(" or ")} instances for asymmetric algorithm verifying must be of type "public"`);
+    throw new TypeError(`${E.join(" or ")} instances for asymmetric algorithm verifying must be of type "public"`);
   if (t.algorithm && o === "encrypt" && t.type === "private")
-    throw new TypeError(`${g.join(" or ")} instances for asymmetric algorithm encryption must be of type "public"`);
-}, _e = (e, t, o) => {
-  e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? be(e, t) : Ie(e, t, o);
+    throw new TypeError(`${E.join(" or ")} instances for asymmetric algorithm encryption must be of type "public"`);
+}, ve = (e, t, o) => {
+  e.startsWith("HS") || e === "dir" || e.startsWith("PBES2") || /^A\d{3}(?:GCM)?KW$/.test(e) ? Ie(e, t) : _e(e, t, o);
 };
-function ve(e, t, o, r, n) {
+function Re(e, t, o, r, n) {
   if (n.crit !== void 0 && (r == null ? void 0 : r.crit) === void 0)
     throw new e('"crit" (Critical) Header Parameter MUST be integrity protected');
   if (!r || r.crit === void 0)
@@ -366,13 +366,13 @@ function ve(e, t, o, r, n) {
   }
   return new Set(r.crit);
 }
-const Re = (e, t) => {
+const Te = (e, t) => {
   if (t !== void 0 && (!Array.isArray(t) || t.some((o) => typeof o != "string")))
     throw new TypeError(`"${e}" option must be an array of strings`);
   if (t)
     return new Set(t);
 };
-function Te(e, t) {
+function ke(e, t) {
   const o = `SHA-${e.slice(-3)}`;
   switch (e) {
     case "HS256":
@@ -397,27 +397,27 @@ function Te(e, t) {
       throw new k(`alg ${e} is not supported either by JOSE or your javascript runtime`);
   }
 }
-function ke(e, t, o) {
+function Ce(e, t, o) {
   if (G(t))
-    return ye(t, e, o), t;
+    return me(t, e, o), t;
   if (t instanceof Uint8Array) {
     if (!e.startsWith("HS"))
-      throw new TypeError(L(t, ...g));
-    return U.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [o]);
+      throw new TypeError(J(t, ...E));
+    return N.subtle.importKey("raw", t, { hash: `SHA-${e.slice(-3)}`, name: "HMAC" }, !1, [o]);
   }
-  throw new TypeError(L(t, ...g, "Uint8Array"));
+  throw new TypeError(J(t, ...E, "Uint8Array"));
 }
-const Ce = async (e, t, o, r) => {
-  const n = await ke(e, t, "verify");
-  Se(e, n);
-  const a = Te(e, n.algorithm);
+const Pe = async (e, t, o, r) => {
+  const n = await Ce(e, t, "verify");
+  ge(e, n);
+  const a = ke(e, n.algorithm);
   try {
-    return await U.subtle.verify(a, n, o, r);
+    return await N.subtle.verify(a, n, o, r);
   } catch {
     return !1;
   }
 };
-async function Pe(e, t, o) {
+async function Oe(e, t, o) {
   if (!H(e))
     throw new l("Flattened JWS must be an object");
   if (e.protected === void 0 && e.header === void 0)
@@ -433,42 +433,42 @@ async function Pe(e, t, o) {
   let r = {};
   if (e.protected)
     try {
-      const p = C(e.protected);
-      r = JSON.parse(T.decode(p));
+      const f = C(e.protected);
+      r = JSON.parse(T.decode(f));
     } catch {
       throw new l("JWS Protected Header is invalid");
     }
-  if (!me(r, e.header))
+  if (!we(r, e.header))
     throw new l("JWS Protected and JWS Unprotected Header Parameter names must be disjoint");
   const n = {
     ...r,
     ...e.header
-  }, a = ve(l, /* @__PURE__ */ new Map([["b64", !0]]), o == null ? void 0 : o.crit, r, n);
+  }, a = Re(l, /* @__PURE__ */ new Map([["b64", !0]]), o == null ? void 0 : o.crit, r, n);
   let s = !0;
   if (a.has("b64") && (s = r.b64, typeof s != "boolean"))
     throw new l('The "b64" (base64url-encode payload) Header Parameter must be a boolean');
   const { alg: i } = n;
   if (typeof i != "string" || !i)
     throw new l('JWS "alg" (Algorithm) Header Parameter missing or invalid');
-  const c = o && Re("algorithms", o.algorithms);
+  const c = o && Te("algorithms", o.algorithms);
   if (c && !c.has(i))
-    throw new le('"alg" (Algorithm) Header Parameter value not allowed');
+    throw new he('"alg" (Algorithm) Header Parameter value not allowed');
   if (s) {
     if (typeof e.payload != "string")
       throw new l("JWS Payload must be a string");
   } else if (typeof e.payload != "string" && !(e.payload instanceof Uint8Array))
     throw new l("JWS Payload must be a string or an Uint8Array instance");
-  let f = !1;
-  typeof t == "function" && (t = await t(r, e), f = !0), _e(i, t, "verify");
-  const w = ue(_.encode(e.protected ?? ""), _.encode("."), typeof e.payload == "string" ? _.encode(e.payload) : e.payload);
-  let h;
+  let h = !1;
+  typeof t == "function" && (t = await t(r, e), h = !0), ve(i, t, "verify");
+  const w = de(_.encode(e.protected ?? ""), _.encode("."), typeof e.payload == "string" ? _.encode(e.payload) : e.payload);
+  let p;
   try {
-    h = C(e.signature);
+    p = C(e.signature);
   } catch {
     throw new l("Failed to base64url decode the signature");
   }
-  if (!await Ce(i, t, h, w))
-    throw new he();
+  if (!await Pe(i, t, p, w))
+    throw new pe();
   let u;
   if (s)
     try {
@@ -479,19 +479,19 @@ async function Pe(e, t, o) {
   else
     typeof e.payload == "string" ? u = _.encode(e.payload) : u = e.payload;
   const y = { payload: u };
-  return e.protected !== void 0 && (y.protectedHeader = r), e.header !== void 0 && (y.unprotectedHeader = e.header), f ? { ...y, key: t } : y;
+  return e.protected !== void 0 && (y.protectedHeader = r), e.header !== void 0 && (y.unprotectedHeader = e.header), h ? { ...y, key: t } : y;
 }
-async function Oe(e, t, o) {
+async function De(e, t, o) {
   if (e instanceof Uint8Array && (e = T.decode(e)), typeof e != "string")
     throw new l("Compact JWS must be a string or Uint8Array");
   const { 0: r, 1: n, 2: a, length: s } = e.split(".");
   if (s !== 3)
     throw new l("Invalid Compact JWS");
-  const i = await Pe({ payload: n, protected: r, signature: a }, t, o), c = { payload: i.payload, protectedHeader: i.protectedHeader };
+  const i = await Oe({ payload: n, protected: r, signature: a }, t, o), c = { payload: i.payload, protectedHeader: i.protectedHeader };
   return typeof t == "function" ? { ...c, key: i.key } : c;
 }
-const De = (e) => Math.floor(e.getTime() / 1e3), Z = 60, ee = Z * 60, J = ee * 24, He = J * 7, Ne = J * 365.25, Ue = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, W = (e) => {
-  const t = Ue.exec(e);
+const He = (e) => Math.floor(e.getTime() / 1e3), Q = 60, Z = Q * 60, U = Z * 24, Ne = U * 7, Ue = U * 365.25, Le = /^(\+|\-)? ?(\d+|\d+\.\d+) ?(seconds?|secs?|s|minutes?|mins?|m|hours?|hrs?|h|days?|d|weeks?|w|years?|yrs?|y)(?: (ago|from now))?$/i, K = (e) => {
+  const t = Le.exec(e);
   if (!t || t[4] && t[1])
     throw new TypeError("Invalid time period format");
   const o = parseFloat(t[2]), r = t[3].toLowerCase();
@@ -509,108 +509,108 @@ const De = (e) => Math.floor(e.getTime() / 1e3), Z = 60, ee = Z * 60, J = ee * 2
     case "min":
     case "mins":
     case "m":
-      n = Math.round(o * Z);
+      n = Math.round(o * Q);
       break;
     case "hour":
     case "hours":
     case "hr":
     case "hrs":
     case "h":
-      n = Math.round(o * ee);
+      n = Math.round(o * Z);
       break;
     case "day":
     case "days":
     case "d":
-      n = Math.round(o * J);
+      n = Math.round(o * U);
       break;
     case "week":
     case "weeks":
     case "w":
-      n = Math.round(o * He);
+      n = Math.round(o * Ne);
       break;
     default:
-      n = Math.round(o * Ne);
+      n = Math.round(o * Ue);
       break;
   }
   return t[1] === "-" || t[4] === "ago" ? -n : n;
-}, x = (e) => e.toLowerCase().replace(/^application\//, ""), Je = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, $e = (e, t, o = {}) => {
+}, W = (e) => e.toLowerCase().replace(/^application\//, ""), Je = (e, t) => typeof e == "string" ? t.includes(e) : Array.isArray(e) ? t.some(Set.prototype.has.bind(new Set(e))) : !1, $e = (e, t, o = {}) => {
   let r;
   try {
     r = JSON.parse(T.decode(t));
   } catch {
   }
   if (!H(r))
-    throw new q("JWT Claims Set must be a top-level JSON object");
+    throw new Y("JWT Claims Set must be a top-level JSON object");
   const { typ: n } = o;
-  if (n && (typeof e.typ != "string" || x(e.typ) !== x(n)))
+  if (n && (typeof e.typ != "string" || W(e.typ) !== W(n)))
     throw new m('unexpected "typ" JWT header value', r, "typ", "check_failed");
-  const { requiredClaims: a = [], issuer: s, subject: i, audience: c, maxTokenAge: f } = o, w = [...a];
-  f !== void 0 && w.push("iat"), c !== void 0 && w.push("aud"), i !== void 0 && w.push("sub"), s !== void 0 && w.push("iss");
-  for (const p of new Set(w.reverse()))
-    if (!(p in r))
-      throw new m(`missing required "${p}" claim`, r, p, "missing");
+  const { requiredClaims: a = [], issuer: s, subject: i, audience: c, maxTokenAge: h } = o, w = [...a];
+  h !== void 0 && w.push("iat"), c !== void 0 && w.push("aud"), i !== void 0 && w.push("sub"), s !== void 0 && w.push("iss");
+  for (const f of new Set(w.reverse()))
+    if (!(f in r))
+      throw new m(`missing required "${f}" claim`, r, f, "missing");
   if (s && !(Array.isArray(s) ? s : [s]).includes(r.iss))
     throw new m('unexpected "iss" claim value', r, "iss", "check_failed");
   if (i && r.sub !== i)
     throw new m('unexpected "sub" claim value', r, "sub", "check_failed");
   if (c && !Je(r.aud, typeof c == "string" ? [c] : c))
     throw new m('unexpected "aud" claim value', r, "aud", "check_failed");
-  let h;
+  let p;
   switch (typeof o.clockTolerance) {
     case "string":
-      h = W(o.clockTolerance);
+      p = K(o.clockTolerance);
       break;
     case "number":
-      h = o.clockTolerance;
+      p = o.clockTolerance;
       break;
     case "undefined":
-      h = 0;
+      p = 0;
       break;
     default:
       throw new TypeError("Invalid clockTolerance option type");
   }
-  const { currentDate: u } = o, y = De(u || /* @__PURE__ */ new Date());
-  if ((r.iat !== void 0 || f) && typeof r.iat != "number")
+  const { currentDate: u } = o, y = He(u || /* @__PURE__ */ new Date());
+  if ((r.iat !== void 0 || h) && typeof r.iat != "number")
     throw new m('"iat" claim must be a number', r, "iat", "invalid");
   if (r.nbf !== void 0) {
     if (typeof r.nbf != "number")
       throw new m('"nbf" claim must be a number', r, "nbf", "invalid");
-    if (r.nbf > y + h)
+    if (r.nbf > y + p)
       throw new m('"nbf" claim timestamp check failed', r, "nbf", "check_failed");
   }
   if (r.exp !== void 0) {
     if (typeof r.exp != "number")
       throw new m('"exp" claim must be a number', r, "exp", "invalid");
-    if (r.exp <= y - h)
-      throw new $('"exp" claim timestamp check failed', r, "exp", "check_failed");
-  }
-  if (f) {
-    const p = y - r.iat, oe = typeof f == "number" ? f : W(f);
-    if (p - h > oe)
-      throw new $('"iat" claim timestamp check failed (too far in the past)', r, "iat", "check_failed");
-    if (p < 0 - h)
+    if (r.exp <= y - p)
+      throw new L('"exp" claim timestamp check failed', r, "exp", "check_failed");
+  }
+  if (h) {
+    const f = y - r.iat, oe = typeof h == "number" ? h : K(h);
+    if (f - p > oe)
+      throw new L('"iat" claim timestamp check failed (too far in the past)', r, "iat", "check_failed");
+    if (f < 0 - p)
       throw new m('"iat" claim timestamp check failed (it should be in the past)', r, "iat", "check_failed");
   }
   return r;
 };
-async function Le(e, t, o) {
+async function Ke(e, t, o) {
   var r;
-  const n = await Oe(e, t, o);
+  const n = await De(e, t, o);
   if ((r = n.protectedHeader.crit) != null && r.includes("b64") && n.protectedHeader.b64 === !1)
-    throw new q("JWTs MUST NOT use unencoded payload");
+    throw new Y("JWTs MUST NOT use unencoded payload");
   const a = { payload: $e(n.protectedHeader, n.payload, o), protectedHeader: n.protectedHeader };
   return typeof t == "function" ? { ...a, key: n.key } : a;
 }
-const Ke = {
+const We = {
   ID_TOKEN: "id_token"
-}, We = {
+}, xe = {
   CLIENT_ID: "X-Auth-ClientId"
 }, A = {
   ALG: "RS256",
   USER_ID_KEY: "_id",
   TOKEN_ID_KEY: "__raw",
   ISSUER: "gizmette.com"
-}, xe = `-----BEGIN PUBLIC KEY-----
+}, je = `-----BEGIN PUBLIC KEY-----
 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsF6i3Jd9fY/3COqCw/m7
 w5PKyTYLGAI2I6SIIdpe6i6DOCbEkmDz7LdVsBqwNtVi8gvWYIj+8ol6rU3qu1v5
 i1Jd45GSK4kzkVdgCmQZbM5ak0KI99q5wsrAIzUd+LRJ2HRvWtr5IYdsIiXaQjle
@@ -618,10 +618,10 @@ aMwPFOIcJH+rKfFgNcHLcaS5syp7zU1ANwZ+trgR+DifBr8TLVkBynmNeTyhDm2+
 l0haqjMk0UoNPPE8iYBWUHQJJE1Dqstj65d6Eh5g64Pao25y4cmYJbKjiblIGEkE
 sjqybA9mARAqh9k/eiIopecWSiffNQTwVQVd2I9ZH3BalhEXHlqFgrjz51kFqg81
 awIDAQAB
------END PUBLIC KEY-----`, N = async (e, t) => {
+-----END PUBLIC KEY-----`, ee = async (e, t) => {
   try {
-    const o = A.ALG, r = await Ae(xe, o);
-    return await Le(e, r, {
+    const o = A.ALG, r = await be(je, o);
+    return await Ke(e, r, {
       issuer: A.ISSUER,
       audience: t
     });
@@ -632,26 +632,26 @@ awIDAQAB
 function te(e, t) {
   window.dispatchEvent(new StorageEvent("storage", { key: e, newValue: t }));
 }
-const j = (e, t) => {
+const x = (e, t) => {
   const o = JSON.stringify(
     typeof t == "function" ? t() : t
   );
   window.localStorage.setItem(e, o), te(e, o);
-}, je = (e) => {
+}, Me = (e) => {
   window.localStorage.removeItem(e), te(e, null);
-}, M = (e) => window.localStorage.getItem(e), Me = (e) => (window.addEventListener("storage", e), () => window.removeEventListener("storage", e));
-function Ve({
+}, j = (e) => window.localStorage.getItem(e), Ve = (e) => (window.addEventListener("storage", e), () => window.removeEventListener("storage", e));
+function Be({
   key: e,
   initialValue: t
 }) {
-  const o = () => M(e), r = I.useSyncExternalStore(
-    Me,
+  const o = () => j(e), r = I.useSyncExternalStore(
+    Ve,
     o
   ), n = I.useCallback(
     (i) => {
       try {
         const c = typeof i == "function" ? i(JSON.parse(r)) : i;
-        c == null ? je(e) : j(e, c);
+        c == null ? Me(e) : x(e, c);
       } catch (c) {
         console.warn(c);
       }
@@ -664,49 +664,49 @@ function Ve({
   }, [n]);
   return I.useEffect(() => {
     try {
-      M(e) === null && typeof t < "u" && j(e, t);
+      j(e) === null && typeof t < "u" && x(e, t);
     } catch (i) {
       console.warn(i);
     }
   }, [e, t]), [r ? JSON.parse(r) : null, n, a, s];
 }
-const V = "Oops! It looks like your session has expired. For your security, please log in again to continue.", Be = "Your session has been successfully terminated.", Fe = "You forgot to wrap your component in <AuthProvider>.", B = {
+const O = "Oops! It looks like your session has expired. For your security, please log in again to continue.", Fe = "Your session has been successfully terminated.", Ge = "Login failed. Please try again.", Ye = "You forgot to wrap your component in <AuthProvider>.", M = {
   dev: "https://auth.gizmette.local.com:3003",
   prod: "https://mylogin.gizmette.com"
-}, Ye = "@@auth@@";
+}, qe = "@@auth@@";
 var d = [];
-for (var O = 0; O < 256; ++O)
-  d.push((O + 256).toString(16).slice(1));
-function Ge(e, t = 0) {
+for (var D = 0; D < 256; ++D)
+  d.push((D + 256).toString(16).slice(1));
+function ze(e, t = 0) {
   return (d[e[t + 0]] + d[e[t + 1]] + d[e[t + 2]] + d[e[t + 3]] + "-" + d[e[t + 4]] + d[e[t + 5]] + "-" + d[e[t + 6]] + d[e[t + 7]] + "-" + d[e[t + 8]] + d[e[t + 9]] + "-" + d[e[t + 10]] + d[e[t + 11]] + d[e[t + 12]] + d[e[t + 13]] + d[e[t + 14]] + d[e[t + 15]]).toLowerCase();
 }
-var R, qe = new Uint8Array(16);
-function ze() {
+var R, Xe = new Uint8Array(16);
+function Qe() {
   if (!R && (R = typeof crypto < "u" && crypto.getRandomValues && crypto.getRandomValues.bind(crypto), !R))
     throw new Error("crypto.getRandomValues() not supported. See https://github.com/uuidjs/uuid#getrandomvalues-not-supported");
-  return R(qe);
+  return R(Xe);
 }
-var Xe = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
-const F = {
-  randomUUID: Xe
+var Ze = typeof crypto < "u" && crypto.randomUUID && crypto.randomUUID.bind(crypto);
+const V = {
+  randomUUID: Ze
 };
-function Qe(e, t, o) {
-  if (F.randomUUID && !t && !e)
-    return F.randomUUID();
+function et(e, t, o) {
+  if (V.randomUUID && !t && !e)
+    return V.randomUUID();
   e = e || {};
-  var r = e.random || (e.rng || ze)();
-  return r[6] = r[6] & 15 | 64, r[8] = r[8] & 63 | 128, Ge(r);
+  var r = e.random || (e.rng || Qe)();
+  return r[6] = r[6] & 15 | 64, r[8] = r[8] & 63 | 128, ze(r);
 }
-const Ze = process.env.NODE_ENV === "production", et = !Ze, tt = async ({ params: e = {} }) => {
+const tt = process.env.NODE_ENV === "production", rt = !tt, ot = async ({ params: e = {} }) => {
   try {
-    const t = Qe(), o = await fetch(
-      et ? `${B.dev}/authenticate` : `${B.prod}/authenticate`,
+    const t = et(), o = await fetch(
+      rt ? `${M.dev}/authenticate` : `${M.prod}/authenticate`,
       {
         credentials: "include",
         method: "POST",
         headers: {
           "Content-Type": "application/json",
-          [We.CLIENT_ID]: `${e.clientId}`
+          [xe.CLIENT_ID]: `${e.clientId}`
         },
         body: JSON.stringify({ ...e, nonce: t })
       }
@@ -722,22 +722,22 @@ const Ze = process.env.NODE_ENV === "production", et = !Ze, tt = async ({ params
   } catch (t) {
     return console.error(t), { status: 500, data: [] };
   }
-}, rt = async ({
+}, nt = async ({
   username: e,
   password: t,
   clientId: o,
   sessionExpiration: r
 }) => {
   try {
-    const n = await tt({
+    const n = await ot({
       params: {
-        type: Ke.ID_TOKEN,
+        type: We.ID_TOKEN,
         username: e,
         password: t,
         sessionExpiration: r,
         clientId: o
       }
-    }), a = await N(n.data.idToken, o);
+    }), a = await ee(n.data.idToken, o);
     return a && a.payload[A.USER_ID_KEY] !== "" ? {
       idToken: n.data.idToken,
       userId: a.payload[A.USER_ID_KEY],
@@ -751,90 +751,83 @@ const Ze = process.env.NODE_ENV === "production", et = !Ze, tt = async ({ params
     };
   }
 };
-function ot(e) {
+function at(e) {
   const t = ae();
-  return Y(() => {
+  return F(() => {
     t.current = e;
   }), t.current;
 }
-const D = () => {
-  throw new Error(Fe);
+const B = () => {
+  throw new Error(Ye);
 }, re = se({
   isAuthenticated: !1,
-  login: D,
-  logout: D,
-  getIdTokenClaims: D,
-  logoutReason: ""
-}), it = ({
+  isLoading: !1,
+  login: B,
+  logout: B,
+  logoutReason: "",
+  idTokenClaims: null
+}), ut = ({
   children: e,
   sessionExpiration: t,
   clientId: o
 }) => {
-  const [r, n, , a] = Ve({
-    key: `${Ye}::${o}::@@user@@`
+  const [r, n, , a] = Be({
+    key: `${qe}::${o}::@@user@@`
   }), [s, i] = ie({
-    isAuthenticated: !!r,
+    isLoading: !0,
+    isAuthenticated: !1,
     logoutReason: "",
-    userId: ""
-  }), c = ot(r) || "";
-  Y(() => {
+    userId: "",
+    idTokenClaims: null
+  }), c = at(r) || "", h = ce(
+    (u) => {
+      i({
+        isLoading: !1,
+        isAuthenticated: !1,
+        logoutReason: u || O,
+        userId: "",
+        idTokenClaims: null
+      }), a();
+    },
+    [a]
+  );
+  F(() => {
     c !== r && r !== null && (async () => {
       try {
-        const u = await N(r, o);
+        const u = await ee(r, o);
         u && u.payload[A.USER_ID_KEY] !== "" ? i({
+          isLoading: !1,
           isAuthenticated: !0,
           logoutReason: "",
-          userId: u.payload[A.USER_ID_KEY]
-        }) : i({
-          isAuthenticated: !1,
-          logoutReason: V,
-          userId: ""
-        });
+          userId: u.payload[A.USER_ID_KEY],
+          idTokenClaims: {
+            ...u == null ? void 0 : u.payload,
+            [A.TOKEN_ID_KEY]: r
+          }
+        }) : h(O);
       } catch {
-        i({
-          isAuthenticated: !1,
-          logoutReason: V,
-          userId: ""
-        });
+        h(O);
       }
     })();
-  }, [r, c, o]);
-  const f = async (u, y) => {
-    const p = await rt({
+  }, [r, c, o, h]);
+  const w = async (u, y) => {
+    const f = await nt({
       username: u,
       password: y,
       clientId: o,
       sessionExpiration: t
     });
-    return p.status ? (n(p.idToken), i({
+    return f.status ? (n(f.idToken), i({
+      isLoading: !1,
       isAuthenticated: !0,
-      userId: p.userId
-    }), !0) : !1;
-  }, w = () => {
-    i({
-      isAuthenticated: !1,
-      logoutReason: Be,
-      userId: ""
-    }), a();
-  }, h = async () => {
-    if (s.isAuthenticated)
-      try {
-        const u = await N(r, o);
-        return { ...u == null ? void 0 : u.payload, [A.TOKEN_ID_KEY]: r };
-      } catch {
-        return {};
-      }
-    return {};
+      userId: f.userId
+    }), !0) : (h(Ge), !1);
+  }, p = () => {
+    h(Fe);
   };
-  return /* @__PURE__ */ ne(
-    re.Provider,
-    {
-      value: { ...s, login: f, logout: w, getIdTokenClaims: h },
-      children: e
-    }
-  );
-}, ct = (e = re) => ce(e);
+  return /* @__PURE__ */ ne(re.Provider, { value: { ...s, login: w, logout: p }, children: e });
+}, dt = (e = re) => ue(e);
 export {
-  it as AuthProvider,
-  ct as useAuth
+  ut as AuthProvider,
+  dt as useAuth
 };

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
 	"name": "@versini/auth-provider",
-	"version": "2.3.0",
+	"version": "3.0.0",
 	"license": "MIT",
 	"author": "Arno Versini",
 	"publishConfig": {
@@ -49,5 +49,5 @@
 		"jose": "5.4.1",
 		"uuid": "10.0.0"
 	},
-	"gitHead": "db5816d0e48518c40b0aa20ff564a88abf5bc426"
+	"gitHead": "b9b733518d3e78c87fbb366cb4e5668a7a928cdd"
 }