cidaas-javascript-sdk 2.2.7 → 2.4.0

package/CHANGELOG.md

@@ -1,6 +1,24 @@
-## [2.2.7](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/compare/v2.2.6...v2.2.7) (2023-02-06)
+# [2.4.0](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/compare/v2.3.0...v2.4.0) (2023-03-23)
 
 
 ### Bug Fixes
 
-* **[gitlab-240](https://gitlab.widas.de/cidaas-v2/auth/issues/-/issues/240):** added cookie for device_dr ([bb50022](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/bb5002253e36fdccd1052bba746e2efbcd031a07))
+* add username and email ([eefaa29](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/eefaa296b685be80f10b6a12f4ed0fc99d380cf4))
+* Added few changes to readme file. ([ef38f00](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/ef38f00e9a734abe77e0553cb528f8836cd4085e))
+* added new api in webauth.ts file ([d5f650d](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/d5f650dcc1f0ce93ef0c0adc81c0d78e4769b556))
+* added the options for max_age parameter ([f1bb8a2](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/f1bb8a2a9e306b4515160b42786d9a5f401e091c))
+* added the options for max_age parameters in SDK method ([209ce9e](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/209ce9e278319f026d1d3da3195341abe407f5fe))
+* github sync ([b12d785](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/b12d7857c5d05972340ce27d4ceae72a0b9c0f90))
+* option error ([3c79e1d](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/3c79e1d44d71a902d9b3209e13e0a16d4c31071a))
+* option error fixed ([1724345](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/1724345045f11c8bedabebbdf433447baf08a8b5))
+* push only master to github ([5ddb5b5](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/5ddb5b5408838468ff38bc649777d6d41fcc7e41))
+* read me file update for account link ([1f62e22](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/1f62e22f40f3808aaa6566d404f2b5950616c8d7))
+* remove manual trigger ([80391c1](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/80391c135b19d15c86012899c784edf664e58fe5))
+* skip remote add if exists ([9080176](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/908017679774080c58e77f073c1c8fecd31d7de1))
+* sync branch changes ([2ae6213](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/2ae621374c29de663ecfc295610c54f03445e6c6))
+* vulnerability fix ([444adb5](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/444adb5249c45e0782d5fb2280a60c5518064a85))
+
+
+### Features
+
+* added useraccountLink api for two users and update the readme file ([3eea712](https://gitlab.widas.de/cidaas-public-devkits/cidaas-public-sdks/cidaas-javascript-sdk/commit/3eea7123c435bda2ea59ea5bfff1b0481d204940))

package/README.md

@@ -83,7 +83,7 @@ To complete the login process, call ****logincallback()****. This will parses th
 
 ```js
 cidaas.loginCallback().then(function(response) {
-    // your success code here            
+    // the response will give you login details.           
 }).catch(function(ex) {
     // your failure code here
 });
@@ -103,7 +103,7 @@ cidaas.registerWithBrowser();
 To get the user profile information, call ****getUserInfo()****. This will return the basic user profile details along with groups, roles and whatever scopes you mentioned in the options.
 ```js
 cidaas.getUserInfo().then(function (response) {
-    // your success code here
+    // the response will give you profile details.
 }).catch(function(ex) {
     // your failure code here
 });; 
@@ -114,7 +114,7 @@ cidaas.getUserInfo().then(function (response) {
 
 ```js
 cidaas.logout().then(function () {
-    // your success code here
+    // your logout success code here
 }).catch(function(ex) {
     // your failure code here
 });
@@ -136,7 +136,7 @@ Each and every proccesses starts with requestId, it is an entry point to login o
 
 ```js
 cidaas.getRequestId().then(function (response) {
-    // your success code here
+    // the response will give you request ID.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -163,7 +163,7 @@ To get the tenant basic information, call ****getTenantInfo()****. This will ret
 ##### Sample code
 ```js
 cidaas.getTenantInfo().then(function (response) {
-    // your success code here
+    // the response will give you tenent details.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -193,9 +193,10 @@ To get the client basic information, call ****getClientInfo()****. This will ret
 ##### Sample code
 ```js
 cidaas.getClientInfo({
-    requestId: 'your requestId'
+    requestId: 'your requestId',
+    acceptlanguage: 'your locale' // optional example: de-de, en-US
 }).then(function (resp) {
-    // your success code here
+    // the response will give you client info.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -255,9 +256,9 @@ To handle registration, first you need the registration fields. To get the regis
 ```js
 cidaas.getRegistrationSetup({
     requestId: 'your requestId',
-    acceptlanguage: 'your locale' // de-de, en-US
+    acceptlanguage: 'your locale' // optional example: de-de, en-US
 }).then(function (resp) {
-    // your success code here
+    // the response will give you fields that are required.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -361,9 +362,10 @@ cidaas.register({
     family_name: 'yyyyy', 
     password: '123456', 
     password_echo: '123456', 
-    provider: 'your provider' // FACEBOOK, GOOGLE, SELF
+    provider: 'your provider', // FACEBOOK, GOOGLE, SELF
+    acceptlanguage: 'your locale' // optional example: de-de, en-US
 }, headers).then(function (response) {
-    // type your code here
+    // the response will give you client registration details.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -412,9 +414,10 @@ Once social register, it will redirect to the extra information page with reques
 ```js
 cidaas.getMissingFields({
         trackId: 'your trackId', // which you will get it from url
-        requestId: 'your requestId' // which you will get it from url
+        requestId: 'your requestId', // which you will get it from url
+        acceptlanguage: 'your locale' // optional example: de-de, en-US
 }).then(function (response) {
-    // type your code here 
+    // the response will give you user info with missing fields.
 }).catch(function (ex) {
     // your failure code here  
 });
@@ -430,9 +433,10 @@ Once registration successful, verify the account based on the flow. To get the d
 
 ```js
 cidaas.getCommunicationStatus({
-    sub: 'your sub' // which you will get on the registration response
+    sub: 'your sub', // which you will get on the registration response
+    acceptlanguage: 'your locale' // optional example: de-de, en-US
 }).then(function (response) {
-    // type your code here
+    // the response will give you account details once its verified.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -463,7 +467,7 @@ cidaas.initiateAccountVerification({
     processingType: 'CODE', 
     sub: 'your sub'
 }).then(function (response) {
-    // type your code here
+    // the response will give you account verification details.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -490,7 +494,7 @@ cidaas.verifyAccount({
     accvid: 'your accvid', // which you will get on initiate account verification response
     code: 'your code in email or sms or ivr'
 }).then(function (response) {
-    // type your code here
+    // the response will give you account verification ID and unique code.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -511,7 +515,7 @@ cidaas.initiateResetPassword({
     requestId: 'your requestId',
     resetMedium: 'email'
 }).then(function (response) {
-    // type your code here
+    // the response will give you password reset details.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -539,7 +543,7 @@ cidaas.handleResetPassword({
     code: 'your code in email or sms or ivr',
     resetRequestId: 'your resetRequestId' // which you will get on initiate reset password response
 }).then(function (response) {
-    // type your code here
+    // the response will give you valid verification code.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -569,7 +573,7 @@ cidaas.resetPassword({
     exchangeId: 'your exchangeId', // which you will get on handle reset password response
     resetRequestId: 'your resetRequestId' // which you will get on handle reset password response
 }).then(function (response) {
-    // type your code here
+    // the response will give you reset password details.
 }).catch(function(ex) {
     // your failure code here
 });
@@ -599,7 +603,7 @@ cidaas.changePassword({
         identityId: 'asdauet1-quwyteuqqwejh-asdjhasd',
 }, 'your access token')
 .then(function () {
-    // type your code here 
+    // the response will give you changed password.
 }).catch(function (ex) {
     // your failure code here  
 });
@@ -624,9 +628,10 @@ To get user profile details, pass access token to ****getProfileInfo()****.
 
 ```js
 cidaas.getProfileInfo({
-        access_token: 'your access token'
+        access_token: 'your access token',
+        acceptlanguage: 'your locale' // optional example: de-de, en-US
 }).then(function (response) {
-    // type your code here 
+    // the response will give you user profile details.
 }).catch(function (ex) {
     // your failure code here  
 });
@@ -698,9 +703,10 @@ To get the user profile information, call ****getUserProfile()****.
 ##### Sample code
 ```js
 cidaas.getUserProfile({
-        access_token: 'your access token'
+        access_token: 'your access token',
+        acceptlanguage: 'your locale' // optional example: de-de, en-US
 }).then(function (response) {
-    // type your code here 
+    // the response will give you user profile information.
 }).catch(function (ex) {
     // your failure code here  
 });
@@ -733,9 +739,10 @@ To update the user profile information, call ****updateProfile()****.
 cidaas.updateProfile({
         family_name: 'Doe',
         given_name: 'John',
-        provider: 'self'
+        provider: 'self',
+        acceptlanguage: 'your locale' // optional example: de-de, en-US
 }, 'your access token', 'your sub').then(function () {
-    // type your code here 
+    // the response will give you updated user profile info.
 }).catch(function (ex) {
     // your failure code here  
 });
@@ -780,7 +787,7 @@ The usage of the method is as follows.
 ```js
 cidaas.deleteUserAccount(options).then(function (response) {
 
-   // your success code here
+   // the response will give you account details to be deleted.
 
 }).catch(function(ex) {
 
@@ -816,7 +823,7 @@ this.cidaas.setupEmail({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for email setup.
     }).catch((err) => {
       // your failure code here 
     });
@@ -846,7 +853,7 @@ this.cidaas.enrollEmail({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you email and device info to be linked.
     }).catch((err) => {
       // your failure code here 
     });
@@ -879,7 +886,7 @@ this.cidaas.initiateEmail({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you email verification code details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -911,7 +918,7 @@ this.cidaas.authenticateEmail({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you email authentication details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -941,7 +948,7 @@ this.cidaas.setupSMS({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for SMS setup. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -971,7 +978,7 @@ this.cidaas.enrollSMS({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you SMS and device info to be linked 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1004,7 +1011,7 @@ this.cidaas.initiateSMS({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you SMS verification code details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1036,7 +1043,7 @@ this.cidaas.authenticateSMS({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you SMS authentiction details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1066,7 +1073,7 @@ this.cidaas.setupIVR({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for IVR setup.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1096,7 +1103,7 @@ this.cidaas.enrollIVR({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you IVR and device info to be linked.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1129,7 +1136,7 @@ this.cidaas.initiateIVR({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you IVR verification code details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1161,7 +1168,7 @@ this.cidaas.authenticateIVR({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you IVR authentication details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1191,7 +1198,7 @@ this.cidaas.setupBackupcode({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for backup-code setup.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1230,7 +1237,7 @@ this.cidaas.initiateBackupcode({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you backup-code verification code details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1262,7 +1269,7 @@ this.cidaas.authenticateBackupcode({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you backup-code authentication details. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1293,7 +1300,7 @@ this.cidaas.setupTOTP({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for TOTP setup. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1323,7 +1330,7 @@ this.cidaas.enrollTOTP({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you TOTP and device info to be linked. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1356,7 +1363,7 @@ this.cidaas.initiateTOTP({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you TOTP verification details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1388,7 +1395,7 @@ this.cidaas.authenticateTOTP({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you TOTP authentication details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1419,7 +1426,7 @@ this.cidaas.setupPattern({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for Pattern setup.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1453,7 +1460,7 @@ this.cidaas.initiatePattern({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you Pattern verification details. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1486,7 +1493,7 @@ this.cidaas.setupTouchId({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for Touch ID setup.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1520,7 +1527,7 @@ this.cidaas.initiateTouchId({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you Touch ID verification details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1553,7 +1560,7 @@ this.cidaas.setupSmartPush({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for Smart Push setup. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1576,7 +1583,7 @@ this.cidaas.initiateSmartPush({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you Smart Push verification details. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1609,7 +1616,7 @@ this.cidaas.setupFace({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for Face setup. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1643,7 +1650,7 @@ this.cidaas.initiateFace({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you Face verification details.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1676,7 +1683,7 @@ this.cidaas.setupVoice({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you details for Voice setup. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1710,7 +1717,7 @@ this.cidaas.initiateVoice({
         deviceId: 'your device id'
       }
     }).then((response) => {
-      // type your code here 
+      // the response will give you Voice verification details. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1755,9 +1762,10 @@ To get the details of consent tile and description, call ****getConsentDetails()
 ##### Sample code
 ```js
 this.cidaas.getConsentDetails({
-      consent_name: 'your consent name'
+      consent_name: 'your consent name',
+      acceptlanguage: 'your locale' // optional example: de-de, en-US
     }).then((response) => {
-      // type your code here 
+      // the response will give you details of consent.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1788,7 +1796,7 @@ this.cidaas.acceptConsent({
       client_id: 'your client id',
       accepted: true
     }).then((response) => {
-      // type your code here 
+      // the response will give you details of accepted consent.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1830,7 +1838,7 @@ this.cidaas.acceptClaimConsent({
       client_id: 'your client id',
       accepted: "accepted claims with array eg: []"
     }).then((response) => {
-      // type your code here 
+      // the response will give you accepted claim consent. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1855,7 +1863,7 @@ this.cidaas.revokeClaimConsent({
       sub: 'your sub',
       revoked_claims: "revoked claims with array eg: []"
     }).then((response) => {
-      // type your code here 
+      // the response will give you revoked claim consent.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1878,9 +1886,10 @@ To get the list of existing users in deduplication, call ****getDeduplicationDet
 ##### Sample code
 ```js
 this.cidaas.getDeduplicationDetails({
-      track_id: 'your track id'
+      track_id: 'your track id',
+      acceptlanguage: 'your locale' // optional example: de-de, en-US
     }).then((response) => {
-      // type your code here 
+      // the response will give you deduplication details of users.
     }).catch((err) => {
       // your failure code here 
     });
@@ -1912,9 +1921,10 @@ To register new user in deduplication, call ****registerDeduplication()****.
 ##### Sample code
 ```js
 this.cidaas.registerDeduplication({
-      track_id: 'your track id'
+      track_id: 'your track id',
+      acceptlanguage: 'your locale' // optional example: de-de, en-US
     }).then((response) => {
-      // type your code here 
+      // the response will give you new registered deduplication user. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1945,7 +1955,7 @@ this.cidaas.deduplicationLogin({
         requestId: 'your request id',
         password: 'your password'
     }).then((response) => {
-      // type your code here 
+      // the response will give you deduplication login details. 
     }).catch((err) => {
       // your failure code here 
     });
@@ -1966,6 +1976,40 @@ this.cidaas.deduplicationLogin({
     }
 }
 ```
+
+##### Initiate Users Link
+
+To initiate a new user link, call ****userAccountLink()****.
+
+##### Sample code
+
+```js
+var options = {
+    sub: 'sub of the user who initiates the user link',
+    username: 'username of the user which should get linked',
+    redirect_uri: 'redirect uri the user should get redirected after successful account linking'
+}
+```
+
+```js
+this.cidaas.userAccountLink(options, access_token).then((response) => {
+      // the response will give you that both user are linked.
+    }).catch((err) => {
+      // your failure code here 
+    });
+```
+
+##### Response
+```json
+{
+    "success":true,
+    "status":200,
+    "data": {
+         "redirectUri": "string"
+    }
+}
+```
+
 #### Socket Connection
 
 ##### Installation
@@ -2055,4 +2099,12 @@ this.socket.on("status-update", (msg) => {
     }
 });
 ```
-F
+
+## Possible Error
+
+The SDK will throws Custom Exception if something went wrong during the operation:
+
+| HTTP Status Code | When could it be thrown |
+|---|---|
+|  500 | during creation of WebAuth instance |
+|  417 | if there are any other failure |

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cidaas-javascript-sdk",
-  "version": "2.2.7",
+  "version": "2.4.0",
   "author": "cidaas by Widas ID GmbH",
   "description": "Cidaas native javascript sdk",
   "license": "MIT",
@@ -37,7 +37,7 @@
     "jest": "27.3.1",
     "terser-webpack-plugin": "^5.2.4",
     "typescript": "^4.5.4",
-    "webpack": "^5.59.1",
+    "webpack": "^5.76.2",
     "webpack-cli": "^4.9.1",
     "webpack-dev-server": "^4.3.1",
     "webpack-hot-middleware": "^2.25.1",

package/src/main/web-auth/webauth.js

@@ -2,8 +2,7 @@ var Authentication = require('../authentication');
 var CustomException = require('./exception');
 var Oidc = require('oidc-client');
 var CryptoJS = require("crypto-js");
-var fingerprint = require('@fingerprintjs/fingerprintjs')
-
+var fingerprint = require('@fingerprintjs/fingerprintjs');
 
 var code_verifier;
 
@@ -24,6 +23,17 @@ function WebAuth(settings) {
 
 var registrationFields = [];
 
+// added the common header
+function createHeaders(http, options) {
+  http.setRequestHeader("Content-Type", "application/json");
+  if (options && options.acceptlanguage) {
+    http.setRequestHeader("Accept-Language", options.acceptlanguage);
+  } else if (window.localeSettings) {
+    http.setRequestHeader("Accept-Language", window.localeSettings);
+  }
+  return http;
+}
+
 // prototype methods 
 // login
 WebAuth.prototype.loginWithBrowser = function () {
@@ -135,11 +145,8 @@ WebAuth.prototype.getUserProfile = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("Authorization", `Bearer ${options.access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send();
     } catch (ex) {
       reject(ex);
@@ -162,11 +169,8 @@ WebAuth.prototype.getProfileInfo = function (access_token) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, null);
       http.setRequestHeader("Authorization", `Bearer ${access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send();
     } catch (ex) {
       reject(ex);
@@ -246,9 +250,6 @@ function createPostPromise(options, serviceurl, errorResolver, access_token) {
       if (access_token) {
         http.setRequestHeader("Authorization", `Bearer ${access_token}`);
       }
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       if (options) {
         http.send(JSON.stringify(options));
       } else {
@@ -276,10 +277,7 @@ WebAuth.prototype.renewToken = function (options) {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send(JSON.stringify(options));
     } catch (ex) {
       reject(ex);
@@ -309,7 +307,7 @@ WebAuth.prototype.base64URL = function (string) {
 };
 
 // get login url
-WebAuth.prototype.getLoginURL = function () {
+WebAuth.prototype.getLoginURL = function (options = {}) {
   var settings = window.webAuthSettings;
   if (!settings.response_type) {
     settings.response_type = "code";
@@ -330,6 +328,9 @@ WebAuth.prototype.getLoginURL = function () {
     loginURL += "&response_mode=" + settings.response_mode;
   }
   loginURL += "&scope=" + settings.scope;
+  if(options && options.max_age){
+    loginURL += "&max_age=" + options.max_age;
+  }
   console.log(loginURL);
   return loginURL;
 };
@@ -353,10 +354,7 @@ WebAuth.prototype.getAccessToken = function (options) {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send(JSON.stringify(options));
     } catch (ex) {
       reject(ex);
@@ -379,10 +377,7 @@ WebAuth.prototype.validateAccessToken = function (options) {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send(JSON.stringify(options));
     } catch (ex) {
       reject(ex);
@@ -423,10 +418,7 @@ WebAuth.prototype.getRequestId = function () {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, null);
       http.send(JSON.stringify(bodyParams));
     } catch (ex) {
       reject(ex);
@@ -522,10 +514,7 @@ WebAuth.prototype.getMissingFields = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -549,10 +538,7 @@ WebAuth.prototype.getTenantInfo = function () {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, null);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -585,10 +571,7 @@ WebAuth.prototype.getClientInfo = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -612,11 +595,8 @@ WebAuth.prototype.getDevicesInfo = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
-      if(window.navigator.userAgent) {
+      http = createHeaders(http, options);
+      if (window.navigator.userAgent) {
         http.setRequestBody("userAgent", window.navigator.userAgent)
       }
       http.send();
@@ -642,11 +622,8 @@ WebAuth.prototype.deleteDevice = function (options) {
         }
       };
       http.open("DELETE", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
-      if(window.navigator.userAgent) {
+      http = createHeaders(http, options);
+      if (window.navigator.userAgent) {
         http.setRequestBody("userAgent", window.navigator.userAgent)
       }
       http.send();
@@ -676,10 +653,7 @@ WebAuth.prototype.getRegistrationSetup = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -707,16 +681,11 @@ WebAuth.prototype.register = function (options, headers) {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("requestId", headers.requestId);
       if (headers.captcha) {
         http.setRequestHeader("captcha", headers.captcha);
       }
-      if (headers.acceptlanguage) {
-        http.setRequestHeader("accept-language", headers.acceptlanguage);
-      } else if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       if (headers.bot_captcha_response) {
         http.setRequestHeader("bot_captcha_response", headers.bot_captcha_response);
       }
@@ -747,10 +716,7 @@ WebAuth.prototype.getInviteUserDetails = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -774,13 +740,10 @@ WebAuth.prototype.getCommunicationStatus = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       if (options.requestId) {
         http.setRequestHeader("requestId", options.requestId);
       }
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send();
     } catch (ex) {
       reject(ex);
@@ -813,7 +776,7 @@ WebAuth.prototype.initiateAccountVerification = function (options) {
 
 // initiate verification and return response
 WebAuth.prototype.initiateAccountVerificationAsynFn = async function (options) {
-   try {
+  try {
 
     const searchParams = new URLSearchParams(options);
 
@@ -830,8 +793,8 @@ WebAuth.prototype.initiateAccountVerificationAsynFn = async function (options) {
 
   } catch (ex) {
     throw new CustomException(ex, 417);
-  } 
-  
+  }
+
 };
 
 // verofy account
@@ -918,10 +881,7 @@ WebAuth.prototype.getMFAList = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -940,7 +900,7 @@ WebAuth.prototype.getMFAListV2 = function (options) {
 // initiate mfa v2
 WebAuth.prototype.initiateMFAV2 = function (options) {
   var _serviceURL = window.webAuthSettings.authority + "/verification-srv/v2/authenticate/initiate/" + options.type;
-  return createPostPromise(options, _serviceURL, undefined);
+  return createPostPromise(options, _serviceURL, false);
 };
 
 // initiate email
@@ -953,7 +913,7 @@ WebAuth.prototype.initiateEmail = function (options) {
 // initiate email v2
 WebAuth.prototype.initiateEmailV2 = function (options) {
   var _serviceURL = window.webAuthSettings.authority + "/verification-srv/v2/authenticate/initiate/email";
-  return createPostPromise(options, _serviceURL, undefined);
+  return createPostPromise(options, _serviceURL, false);
 };
 
 // initiate sms
@@ -966,7 +926,7 @@ WebAuth.prototype.initiateSMS = function (options) {
 // initiate sms v2
 WebAuth.prototype.initiateSMSV2 = function (options) {
   var _serviceURL = window.webAuthSettings.authority + "/verification-srv/v2/authenticate/initiate/sms";
-  return createPostPromise(options, _serviceURL, undefined);
+  return createPostPromise(options, _serviceURL, false);
 };
 
 // initiate ivr
@@ -1189,10 +1149,7 @@ WebAuth.prototype.getConsentDetails = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -1233,10 +1190,7 @@ WebAuth.prototype.getScopeConsentDetails = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -1260,11 +1214,8 @@ WebAuth.prototype.getScopeConsentVersionDetailsV2 = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("Authorization", `Bearer ${options.access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send();
     } catch (ex) {
       reject(ex);
@@ -1333,10 +1284,7 @@ WebAuth.prototype.getDeduplicationDetails = function (options) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -1369,10 +1317,7 @@ WebAuth.prototype.registerDeduplication = function (options) {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, options);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -1473,11 +1418,8 @@ WebAuth.prototype.updateProfile = function (options, access_token, sub) {
         }
       };
       http.open("PUT", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("Authorization", `Bearer ${access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send(JSON.stringify(options));
     } catch (ex) {
       throw new CustomException(ex, 417);
@@ -1507,11 +1449,9 @@ WebAuth.prototype.getUnreviewedDevices = function (access_token, sub) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, null);
       http.setRequestHeader("Authorization", `Bearer ${access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+
       http.send();
     } catch (ex) {
       throw new CustomException(ex, 417);
@@ -1535,11 +1475,8 @@ WebAuth.prototype.getReviewedDevices = function (access_token, sub) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, null);
       http.setRequestHeader("Authorization", `Bearer ${access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send();
     } catch (ex) {
       throw new CustomException(ex, 417);
@@ -1563,11 +1500,8 @@ WebAuth.prototype.reviewDevice = function (options, access_token, sub) {
         }
       };
       http.open("PUT", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("Authorization", `Bearer ${access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send(JSON.stringify(options));
     } catch (ex) {
       throw new CustomException(ex, 417);
@@ -1597,11 +1531,8 @@ WebAuth.prototype.viewAcceptedConsent = function (options, access_token) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("Authorization", `Bearer ${access_token}`);
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send();
     } catch (ex) {
       throw new CustomException(ex, 417);
@@ -1803,10 +1734,8 @@ WebAuth.prototype.authenticateFaceVerification = function (options) {
         }
       };
       http.open("POST", _serviceURL, true);
+      http = createHeaders(http, options);
       http.setRequestHeader("Content-type", "multipart/form-data; boundary=----WebKitFormBoundary7MA4YWxkTrZu0gW");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send(JSON.stringify(options));
     } catch (ex) {
       reject(ex);
@@ -1842,10 +1771,7 @@ WebAuth.prototype.getMissingFieldsLogin = function (trackId) {
         }
       };
       http.open("GET", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
-      if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
+      http = createHeaders(http, null);
       http.send();
     } catch (ex) {
       reject(ex);
@@ -1869,14 +1795,9 @@ WebAuth.prototype.progressiveRegistration = function (options, headers) {
         }
       };
       http.open("POST", _serviceURL, true);
-      http.setRequestHeader("Content-type", "application/json");
+      http = createHeaders(http, options);
       http.setRequestHeader("requestId", headers.requestId);
       http.setRequestHeader("trackId", headers.trackId);
-      if (headers.acceptlanguage) {
-        http.setRequestHeader("accept-language", headers.acceptlanguage);
-      } else if (window.localeSettings) {
-        http.setRequestHeader("accept-language", window.localeSettings);
-      }
       http.send(JSON.stringify(options));
     } catch (ex) {
       reject(ex);
@@ -1942,10 +1863,10 @@ WebAuth.prototype.setAcceptLanguageHeader = function (acceptLanguage) {
 WebAuth.prototype.getDeviceInfo = function () {
   return new Promise(function (resolve, reject) {
     try {
-      const value = ('; '+document.cookie).split(`; cidaas_dr=`).pop().split(';')[0];
+      const value = ('; ' + document.cookie).split(`; cidaas_dr=`).pop().split(';')[0];
       const fpPromise = fingerprint.load();
-      var options = {fingerprint:"", userAgent:""};
-      if(!value) {
+      var options = { fingerprint: "", userAgent: "" };
+      if (!value) {
         (async () => {
           const fp = await fpPromise;
           const result = await fp.get();
@@ -1959,10 +1880,7 @@ WebAuth.prototype.getDeviceInfo = function () {
             }
           };
           http.open("POST", _serviceURL, true);
-          http.setRequestHeader("Content-type", "application/json");
-          if (window.localeSettings) {
-            http.setRequestHeader("accept-language", window.localeSettings);
-          }
+          http = createHeaders(http, options);
           http.send(JSON.stringify(options));
         })();
       }
@@ -1972,4 +1890,10 @@ WebAuth.prototype.getDeviceInfo = function () {
   });
 };
 
+// initiates a new user link to link two existing users
+WebAuth.prototype.userAccountLink = function (options, access_token) {
+  var _serviceURL = window.webAuthSettings.authority + "/useractions-srv/users/" + options.sub + "/link";
+  return createPostPromise(options, _serviceURL, false, access_token);
+};
+
 module.exports = WebAuth;

package/types/main/web-auth/webauth.d.ts

@@ -15,7 +15,7 @@ declare class WebAuth {
     generateRandomString(length: any): string;
     generateCodeChallenge(code_verifier: any): any;
     base64URL(string: any): any;
-    getLoginURL(): string;
+    getLoginURL(options?: {}): string;
     getAccessToken(options: any): Promise<any>;
     validateAccessToken(options: any): Promise<any>;
     getRequestId(): Promise<any>;
@@ -27,6 +27,8 @@ declare class WebAuth {
     getTenantInfo(): Promise<any>;
     logoutUser(options: any): void;
     getClientInfo(options: any): Promise<any>;
+    getDevicesInfo(options: any): Promise<any>;
+    deleteDevice(options: any): Promise<any>;
     getRegistrationSetup(options: any): Promise<any>;
     register(options: any, headers: any): Promise<any>;
     getInviteUserDetails(options: any): Promise<any>;
@@ -134,5 +136,6 @@ declare class WebAuth {
     deviceCodeVerify(code: any): void;
     userCheckExists(options: any): Promise<any>;
     setAcceptLanguageHeader(acceptLanguage: any): void;
-    getDeviceInfo(options: any): Promise<any>;
+    getDeviceInfo(): Promise<any>;
+    userAccountLink(options: any, access_token: any): Promise<any>;
 }