auth0-lock 12.5.0 → 12.5.1

package/.version

@@ -1 +1 @@
-v12.5.0
+v12.5.1

package/CHANGELOG.md

@@ -1,59 +1,83 @@
 # Change Log
 
+## [v12.5.1](https://github.com/auth0/lock/tree/v12.5.1) (2024-05-30)
+
+[Full Changelog](https://github.com/auth0/lock/compare/v12.5.0...v12.5.1)
+
+- Swap CAPTCHA on each reload [\#2560](https://github.com/auth0/lock/pull/2560) ([josh-cain](https://github.com/josh-cain))
+
 ## [v12.5.0](https://github.com/auth0/lock/tree/v12.5.0) (2024-04-30)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.4.0...v12.5.0)
 
 - Support captchas in reset password flow [\#2547](https://github.com/auth0/lock/pull/2547) ([srijonsaha](https://github.com/srijonsaha))
 
 ## [v12.4.0](https://github.com/auth0/lock/tree/v12.4.0) (2024-01-04)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.3.1...v12.4.0)
 
 **Added**
+
 - [IAMRISK-2916] Added support for Auth0 v2 captcha provider [\#2503](https://github.com/auth0/lock/pull/2503) ([alexkoumarianos-okta](https://github.com/alexkoumarianos-okta))
 
 **Changed**
+
 - [IAMRISK-3010] Added support for auth0_v2 captcha failOpen [\#2507](https://github.com/auth0/lock/pull/2507) ([alexkoumarianos-okta](https://github.com/alexkoumarianos-okta))
 
 ## [v12.3.1](https://github.com/auth0/lock/tree/v12.3.1) (2023-11-13)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.3.0...v12.3.1)
 
 **Security**
+
 - Bump auth0-js to solve crypto-js vulnerability [\#2492](https://github.com/auth0/lock/pull/2492) ([frederikprijck](https://github.com/frederikprijck))
 
 ## [v12.3.0](https://github.com/auth0/lock/tree/v12.3.0) (2023-10-06)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.2.0...v12.3.0)
 
 **Added**
+
 - [IAMRISK-2603] Add support for Arkose [\#2455](https://github.com/auth0/lock/pull/2455) ([srijonsaha](https://github.com/srijonsaha))
 
 ## [v12.2.0](https://github.com/auth0/lock/tree/v12.2.0) (2023-09-15)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.1.0...v12.2.0)
 
 **Added**
+
 - Wrap CheckBoxInput in InputWrapper to provide visual feedback [\#2423](https://github.com/auth0/lock/pull/2423) ([ewanharris](https://github.com/ewanharris))
 
 ## [v12.1.0](https://github.com/auth0/lock/tree/v12.1.0) (2023-07-17)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.0.2...v12.1.0)
 
 **Added**
+
 - Added support for hCaptcha and Friendly Captcha [\#2387](https://github.com/auth0/lock/pull/2387) ([DominickBattistini](https://github.com/DominickBattistini))
 
 **Changed**
+
 - WelcomeMessage header text marked as heading [\#2373](https://github.com/auth0/lock/pull/2373) ([piwysocki](https://github.com/piwysocki))
 
 ## [v12.0.2](https://github.com/auth0/lock/tree/v12.0.2) (2023-02-10)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.0.1...v12.0.2)
 
 **Changed**
+
 - Slight tweaks to Captcha input component handler methods + refresh button mask [\#2272](https://github.com/auth0/lock/pull/2272) ([stevehobbsdev](https://github.com/stevehobbsdev))
 
 **Fixed**
+
 - Fix for when component is undefined on unmount [\#2271](https://github.com/auth0/lock/pull/2271) ([codetheweb](https://github.com/codetheweb))
 
 ## [v12.0.1](https://github.com/auth0/lock/tree/v12.0.1) (2023-02-01)
+
 [Full Changelog](https://github.com/auth0/lock/compare/v12.0.0...v12.0.1)
 
 **Changed**
+
 - FDR-487 - feat: update microsoft button [\#2259](https://github.com/auth0/lock/pull/2259) ([jamescgarrett](https://github.com/jamescgarrett))
 
 ## [v12.0.0](https://github.com/auth0/lock/tree/v12.0.0) (2023-01-20)
@@ -99,6 +123,7 @@ Despite the major version bump, **v12 is completely API-compatible with v11**.
 - Upgrade to React 18 [\#2209](https://github.com/auth0/lock/pull/2209) ([stevehobbsdev](https://github.com/stevehobbsdev))
 - Upgrade to Webpack 5, Jest 29, Babel 8 [\#2213](https://github.com/auth0/lock/pull/2213) ([stevehobbsdev](https://github.com/stevehobbsdev))
 - bump dependencies to latest patch and fix typos [\#2210](https://github.com/auth0/lock/pull/2210) ([piwysocki](https://github.com/piwysocki))
+
 ## [v11.34.2](https://github.com/auth0/lock/tree/v11.34.2) (2022-10-10)
 
 [Full Changelog](https://github.com/auth0/lock/compare/v11.34.1...v11.34.2)

package/README.md

@@ -30,8 +30,9 @@ From CDN
 
 ```html
 <!-- Latest patch release (recommended for production) -->
-<script src="https://cdn.auth0.com/js/lock/12.5.0/lock.min.js"></script>
+<script src="https://cdn.auth0.com/js/lock/12.5.1/lock.min.js"></script>
 ```
+
 ### Configure Auth0
 
 Create a **Single Page Application** in the [Auth0 Dashboard](https://manage.auth0.com/#/applications).

package/lib/__tests__/connection/database/actions.js

@@ -1,11 +1,17 @@
 "use strict";
 
-function _typeof(o) { "@babel/helpers - typeof"; return _typeof = "function" == typeof Symbol && "symbol" == typeof Symbol.iterator ? function (o) { return typeof o; } : function (o) { return o && "function" == typeof Symbol && o.constructor === Symbol && o !== Symbol.prototype ? "symbol" : typeof o; }, _typeof(o); }
 var _immutable = _interopRequireWildcard(require("immutable"));
 var _actions = require("../../../connection/database/actions");
 var _store = require("../../../store");
+var _captcha = require("../../../connection/captcha");
 function _getRequireWildcardCache(e) { if ("function" != typeof WeakMap) return null; var r = new WeakMap(), t = new WeakMap(); return (_getRequireWildcardCache = function _getRequireWildcardCache(e) { return e ? t : r; })(e); }
 function _interopRequireWildcard(e, r) { if (!r && e && e.__esModule) return e; if (null === e || "object" != _typeof(e) && "function" != typeof e) return { default: e }; var t = _getRequireWildcardCache(r); if (t && t.has(e)) return t.get(e); var n = { __proto__: null }, a = Object.defineProperty && Object.getOwnPropertyDescriptor; for (var u in e) if ("default" !== u && {}.hasOwnProperty.call(e, u)) { var i = a ? Object.getOwnPropertyDescriptor(e, u) : null; i && (i.get || i.set) ? Object.defineProperty(n, u, i) : n[u] = e[u]; } return n.default = e, t && t.set(e, n), n; }
+function _typeof(o) { "@babel/helpers - typeof"; return _typeof = "function" == typeof Symbol && "symbol" == typeof Symbol.iterator ? function (o) { return typeof o; } : function (o) { return o && "function" == typeof Symbol && o.constructor === Symbol && o !== Symbol.prototype ? "symbol" : typeof o; }, _typeof(o); }
+function ownKeys(e, r) { var t = Object.keys(e); if (Object.getOwnPropertySymbols) { var o = Object.getOwnPropertySymbols(e); r && (o = o.filter(function (r) { return Object.getOwnPropertyDescriptor(e, r).enumerable; })), t.push.apply(t, o); } return t; }
+function _objectSpread(e) { for (var r = 1; r < arguments.length; r++) { var t = null != arguments[r] ? arguments[r] : {}; r % 2 ? ownKeys(Object(t), !0).forEach(function (r) { _defineProperty(e, r, t[r]); }) : Object.getOwnPropertyDescriptors ? Object.defineProperties(e, Object.getOwnPropertyDescriptors(t)) : ownKeys(Object(t)).forEach(function (r) { Object.defineProperty(e, r, Object.getOwnPropertyDescriptor(t, r)); }); } return e; }
+function _defineProperty(obj, key, value) { key = _toPropertyKey(key); if (key in obj) { Object.defineProperty(obj, key, { value: value, enumerable: true, configurable: true, writable: true }); } else { obj[key] = value; } return obj; }
+function _toPropertyKey(t) { var i = _toPrimitive(t, "string"); return "symbol" == _typeof(i) ? i : i + ""; }
+function _toPrimitive(t, r) { if ("object" != _typeof(t) || !t) return t; var e = t[Symbol.toPrimitive]; if (void 0 !== e) { var i = e.call(t, r || "default"); if ("object" != _typeof(i)) return i; throw new TypeError("@@toPrimitive must return a primitive value."); } return ("string" === r ? String : Number)(t); }
 var webApiMock = function webApiMock() {
   return require('core/web_api');
 };
@@ -17,6 +23,16 @@ jest.mock('core/actions', function () {
     validateAndSubmit: jest.fn()
   };
 });
+jest.mock('../../../connection/captcha', function () {
+  var originalCaptcha = jest.requireActual('../../../connection/captcha');
+  return _objectSpread(_objectSpread({
+    __esModule: true
+  }, originalCaptcha), {}, {
+    swapCaptcha: jest.fn(function (id, flow, wasInvalid, next) {
+      next();
+    })
+  });
+});
 jest.mock('core/web_api', function () {
   return {
     signUp: jest.fn()
@@ -225,4 +241,89 @@ describe('database/actions.js', function () {
       }
     });
   });
+  describe('exported functions', function () {
+    var id = 2;
+    var mCaptcha = _immutable.default.fromJS({
+      field: {
+        email: {
+          value: 'test@email.com'
+        },
+        password: {
+          value: 'testpass'
+        },
+        family_name: {
+          value: 'test-family-name'
+        },
+        given_name: {
+          value: 'test-given-name'
+        },
+        name: {
+          value: 'test-name'
+        },
+        nickname: {
+          value: 'test-nickname'
+        },
+        picture: {
+          value: 'test-pic'
+        },
+        other_prop: {
+          value: 'test-other'
+        }
+      },
+      database: {
+        additionalSignUpFields: [{
+          name: 'family_name',
+          storage: 'root'
+        }, {
+          name: 'given_name',
+          storage: 'root'
+        }, {
+          name: 'name',
+          storage: 'root'
+        }, {
+          name: 'nickname',
+          storage: 'root'
+        }, {
+          name: 'picture',
+          storage: 'root'
+        }, {
+          name: 'other_prop'
+        }]
+      },
+      captcha: {
+        provider: 'auth0'
+      },
+      passwordResetCaptcha: {
+        provider: 'auth0'
+      }
+    });
+    describe('resetPasswordSuccess', function () {
+      it('runs swap CAPTCHA', function () {
+        (0, _store.swap)(_store.setEntity, 'lock', id, mCaptcha);
+        (0, _actions.resetPasswordSuccess)(id);
+        expect(_captcha.swapCaptcha.mock.calls.length).toEqual(1);
+      });
+    });
+    describe('showResetPasswordActivity', function () {
+      it('runs swap CAPTCHA', function () {
+        (0, _store.swap)(_store.setEntity, 'lock', id, mCaptcha);
+        (0, _actions.showResetPasswordActivity)(id);
+        expect(_captcha.swapCaptcha.mock.calls.length).toEqual(1);
+      });
+    });
+    describe('showLoginActivity', function () {
+      it('runs swap CAPTCHA', function () {
+        (0, _store.swap)(_store.setEntity, 'lock', id, mCaptcha);
+        (0, _actions.showLoginActivity)(id);
+        expect(_captcha.swapCaptcha.mock.calls.length).toEqual(1);
+      });
+    });
+    describe('showSignupActivity', function () {
+      it('runs swap CAPTCHA', function () {
+        (0, _store.swap)(_store.setEntity, 'lock', id, mCaptcha);
+        (0, _actions.showSignUpActivity)(id);
+        expect(_captcha.swapCaptcha.mock.calls.length).toEqual(1);
+      });
+    });
+  });
 });

package/lib/connection/database/actions.js

@@ -8,6 +8,7 @@ exports.cancelMFALogin = cancelMFALogin;
 exports.cancelResetPassword = cancelResetPassword;
 exports.logIn = logIn;
 exports.resetPassword = resetPassword;
+exports.resetPasswordSuccess = resetPasswordSuccess;
 exports.showLoginActivity = showLoginActivity;
 exports.showLoginMFAActivity = showLoginMFAActivity;
 exports.showResetPasswordActivity = showResetPasswordActivity;
@@ -247,10 +248,12 @@ function resetPassword(id) {
 function resetPasswordSuccess(id) {
   var m = (0, _index.read)(_index.getEntity, 'lock', id);
   if ((0, _index4.hasScreen)(m, 'login')) {
-    (0, _index.swap)(_index.updateEntity, 'lock', id, function (m) {
-      return (0, _index4.setScreen)(l.setSubmitting(m, false), 'login', ['']);
-    } // array with one empty string tells the function to not clear any field
-    );
+    (0, _captcha.swapCaptcha)(id, _captcha.Flow.PASSWORD_RESET, false, function () {
+      (0, _index.swap)(_index.updateEntity, 'lock', id, function (m) {
+        return (0, _index4.setScreen)(l.setSubmitting(m, false), 'login', ['']);
+      } // array with one empty string tells the function to not clear any field
+      );
+    });
 
     // TODO: should be handled by box
     setTimeout(function () {
@@ -261,8 +264,10 @@ function resetPasswordSuccess(id) {
     if (l.ui.autoclose(m)) {
       (0, _actions.closeLock)(id);
     } else {
-      (0, _index.swap)(_index.updateEntity, 'lock', id, function (m) {
-        return l.setSubmitting(m, false).set('passwordResetted', true);
+      (0, _captcha.swapCaptcha)(id, _captcha.Flow.PASSWORD_RESET, false, function () {
+        (0, _index.swap)(_index.updateEntity, 'lock', id, function (m) {
+          return l.setSubmitting(m, false).set('passwordResetted', true);
+        });
       });
     }
   }
@@ -281,15 +286,39 @@ function resetPasswordError(id, error) {
 }
 function showLoginActivity(id) {
   var fields = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : ['password'];
-  (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'login', fields);
+  var m = (0, _index.read)(_index.getEntity, 'lock', id);
+  var captchaConfig = l.captcha(m);
+  if (captchaConfig && captchaConfig.get('provider') === 'arkose') {
+    (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'login', fields);
+  } else {
+    (0, _captcha.swapCaptcha)(id, 'login', false, function () {
+      (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'login', fields);
+    });
+  }
 }
 function showSignUpActivity(id) {
   var fields = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : ['password'];
-  (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'signUp', fields);
+  var m = (0, _index.read)(_index.getEntity, 'lock', id);
+  var captchaConfig = l.captcha(m);
+  if (captchaConfig && captchaConfig.get('provider') === 'arkose') {
+    (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'signUp', fields);
+  } else {
+    (0, _captcha.swapCaptcha)(id, 'login', false, function () {
+      (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'signUp', fields);
+    });
+  }
 }
 function showResetPasswordActivity(id) {
   var fields = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : ['password'];
-  (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'forgotPassword', fields);
+  var m = (0, _index.read)(_index.getEntity, 'lock', id);
+  var captchaConfig = l.passwordResetCaptcha(m);
+  if (captchaConfig && captchaConfig.get('provider') === 'arkose') {
+    (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'forgotPassword', fields);
+  } else {
+    (0, _captcha.swapCaptcha)(id, 'login', false, function () {
+      (0, _index.swap)(_index.updateEntity, 'lock', id, _index4.setScreen, 'forgotPassword', fields);
+    });
+  }
 }
 function cancelResetPassword(id) {
   return showLoginActivity(id);

package/lib/core/web_api/helper.js

@@ -169,5 +169,5 @@ function trimAuthParams() {
   return p;
 }
 function getVersion() {
-  return "12.5.0";
+  return "12.5.1";
 }

package/lib/i18n.js

@@ -91,7 +91,7 @@ function assertLanguage(m, language, base) {
 function syncLang(m, language, _cb) {
   (0, _cdn_utils.load)({
     method: 'registerLanguageDictionary',
-    url: "".concat(l.languageBaseUrl(m), "/js/lock/").concat("12.5.0", "/").concat(language, ".js"),
+    url: "".concat(l.languageBaseUrl(m), "/js/lock/").concat("12.5.1", "/").concat(language, ".js"),
     check: function check(str) {
       return str && str === language;
     },

package/lib/lock.js

@@ -37,7 +37,7 @@ var Auth0Lock = exports.default = /*#__PURE__*/function (_Core) {
   _inherits(Auth0Lock, _Core);
   return _createClass(Auth0Lock);
 }(_core.default); // telemetry
-Auth0Lock.version = "12.5.0";
+Auth0Lock.version = "12.5.1";
 
 // TODO: should we have different telemetry for classic/passwordless?
 // TODO: should we set telemetry info before each request?

package/lib/passwordless.js

@@ -37,4 +37,4 @@ var Auth0LockPasswordless = exports.default = /*#__PURE__*/function (_Core) {
   _inherits(Auth0LockPasswordless, _Core);
   return _createClass(Auth0LockPasswordless);
 }(_core.default);
-Auth0LockPasswordless.version = "12.5.0";
+Auth0LockPasswordless.version = "12.5.1";

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "auth0-lock",
-  "version": "12.5.0",
+  "version": "12.5.1",
   "description": "Auth0 Lock",
   "author": "Auth0 <support@auth0.com> (http://auth0.com)",
   "license": "MIT",
@@ -61,7 +61,7 @@
     "@babel/plugin-syntax-import-meta": "^7.0.0",
     "@babel/preset-env": "^7.0.0",
     "@babel/preset-react": "^7.0.0",
-    "@cfaester/enzyme-adapter-react-18": "^0.7.0",
+    "@cfaester/enzyme-adapter-react-18": "^0.8.0",
     "@google-cloud/translate": "^6.0.2",
     "babel-jest": "^29.3.1",
     "babel-loader": "8.3.0",
@@ -111,7 +111,7 @@
     "puppeteer": "^10.1.0",
     "react-test-renderer": "^18.2.0",
     "sinon": "^1.15.4",
-    "stylus": "^0.62.0",
+    "stylus": "^0.63.0",
     "stylus-loader": "^3.0.2",
     "tmp": "^0.2.1",
     "unminified-webpack-plugin": "^3.0.0",