cidaas-javascript-sdk 2.4.3 → 2.5.0

package/src/main/web-auth/LoginService.ts

@@ -0,0 +1,248 @@
+import { Helper, CustomException } from "./Helper";
+import {
+  IUserEntity,
+  LoginFormRequestEntity,
+  PhysicalVerificationLoginRequest,
+  LoginFormRequestAsyncEntity,
+  IChangePasswordEntity
+} from "./Entities"
+
+
+export namespace LoginService {
+
+  /**
+ * login with username and password
+ * @param options 
+ */
+  export function loginWithCredentials(options: LoginFormRequestEntity) {
+    try {
+      const url = window.webAuthSettings.authority + "/login-srv/login";
+      let form = Helper.createForm(url, options)
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+ * login with username and password and return response
+ * @param options 
+ * @returns 
+ */
+  export function loginWithCredentialsAsynFn(options: LoginFormRequestAsyncEntity) {
+    try {
+      var searchParams = new URLSearchParams(options);
+      var response = fetch(window.webAuthSettings.authority + "/login-srv/login", {
+        method: "POST",
+        redirect: "follow",
+        body: searchParams.toString(),
+        headers: {
+          "Content-Type": "application/x-www-form-urlencoded",
+        }
+      });
+
+      return response;
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+   * login with social
+   * @param options 
+   * @param queryParams 
+   */
+  export function loginWithSocial(
+    options: { provider: string; requestId: string; },
+    queryParams: { dc: string; device_fp: string }
+  ) {
+    try {
+      var _serviceURL = window.webAuthSettings.authority + "/login-srv/social/login/" + options.provider.toLowerCase() + "/" + options.requestId;
+      if (queryParams && queryParams.dc && queryParams.device_fp) {
+        _serviceURL = _serviceURL + "?dc=" + queryParams.dc + "&device_fp=" + queryParams.device_fp;
+      }
+      window.location.href = _serviceURL;
+    } catch (ex) {
+      console.log(ex);
+    }
+  };
+
+  /**
+   * register with social
+   * @param options 
+   * @param queryParams 
+   */
+  export function registerWithSocial(
+    options: { provider: string; requestId: string; },
+    queryParams: { dc: string; device_fp: string }) {
+    try {
+      var _serviceURL = window.webAuthSettings.authority + "/login-srv/social/register/" + options.provider.toLowerCase() + "/" + options.requestId;
+      if (queryParams && queryParams.dc && queryParams.device_fp) {
+        _serviceURL = _serviceURL + "?dc=" + queryParams.dc + "&device_fp=" + queryParams.device_fp;
+      }
+      window.location.href = _serviceURL;
+    } catch (ex) {
+      console.log(ex);
+    }
+  };
+
+  /** 
+  * passwordless login
+  * @param options 
+  */
+  export function passwordlessLogin(options: PhysicalVerificationLoginRequest) {
+    try {
+      const url = window.webAuthSettings.authority + "/login-srv/verification/login";
+      let form = Helper.createForm(url, options)
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+   * scope consent continue after token pre check
+   * @param options 
+   */
+  export function scopeConsentContinue(options: { track_id: string }) {
+    try {
+      var form = document.createElement('form');
+      form.action = window.webAuthSettings.authority + "/login-srv/precheck/continue/" + options.track_id;
+      form.method = 'POST';
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+   * claim consent continue login
+   * @param options 
+   */
+  export function claimConsentContinue(options: { track_id: string }) {
+    try {
+      var form = document.createElement('form');
+      form.action = window.webAuthSettings.authority + "/login-srv/precheck/continue/" + options.track_id;
+      form.method = 'POST';
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+  * consent continue login
+  * @param options 
+  */
+  export function consentContinue(options: {
+    client_id: string;
+    consent_refs: string[];
+    sub: string;
+    scopes: string[];
+    matcher: any;
+    track_id: string;
+  }) {
+    try {
+      const url = window.webAuthSettings.authority + "/login-srv/precheck/continue/" + options.track_id;
+      let form = Helper.createForm(url, options)
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+   * mfa continue login
+   * @param options 
+   */
+  export function mfaContinue(options: PhysicalVerificationLoginRequest & { track_id: string }) {
+    try {
+      const url = window.webAuthSettings.authority + "/login-srv/precheck/continue/" + options.track_id;
+      let form = Helper.createForm(url, options)
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+   * change password continue
+   * @param options 
+   */
+  export function firstTimeChangePassword(options: IChangePasswordEntity) {
+    try {
+      const url = window.webAuthSettings.authority + "/login-srv/precheck/continue/" + options.loginSettingsId;;
+      let form = Helper.createForm(url, options)
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+
+  /**
+   * progressiveRegistration
+   * @param options 
+   * @param headers 
+   * @returns 
+   */
+  export function progressiveRegistration(options: IUserEntity, headers: {
+    requestId: string;
+    trackId: string;
+    acceptlanguage: string;
+  }) {
+    return new Promise((resolve, reject) => {
+      try {
+        var http = new XMLHttpRequest();
+        var _serviceURL = window.webAuthSettings.authority + "/login-srv/progressive/update/user";
+        http.onreadystatechange = function () {
+          if (http.readyState == 4) {
+            if (http.responseText) {
+              resolve(JSON.parse(http.responseText));
+            } else {
+              resolve(undefined);
+            }
+          }
+        };
+        http.open("POST", _serviceURL, true);
+        http.setRequestHeader("Content-type", "application/json");
+        http.setRequestHeader("requestId", headers.requestId);
+        http.setRequestHeader("trackId", headers.trackId);
+        if (headers.acceptlanguage) {
+          http.setRequestHeader("accept-language", headers.acceptlanguage);
+        } else if (window.localeSettings) {
+          http.setRequestHeader("accept-language", window.localeSettings);
+        }
+        http.send(JSON.stringify(options));
+      } catch (ex) {
+        reject(ex);
+      }
+    });
+  };
+
+  /**
+   * loginAfterRegister
+   * @param options 
+   */
+  export function loginAfterRegister(options: {
+    device_id: string;
+    dc?: string;
+    rememberMe: boolean;
+    trackId: string;
+  }) {
+    try {
+      const url = window.webAuthSettings.authority + "/login-srv/login/handle/afterregister/" + options.trackId;
+      let form = Helper.createForm(url, options)
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new CustomException(ex, 417);
+    }
+  };
+}

package/src/main/web-auth/TokenService.ts

@@ -0,0 +1,196 @@
+import { AccessTokenRequest, TokenIntrospectionEntity, ISuggestedMFAActionConfig } from "./Entities"
+import { Helper, CustomException } from "./Helper";
+
+export namespace TokenService {
+
+  /**
+   * renew token using refresh token
+   * @param options 
+   * @returns 
+   */
+  export function renewToken(options: AccessTokenRequest) {
+    return new Promise((resolve, reject) => {
+      try {
+        if (!options.refresh_token) {
+          throw new CustomException("refresh_token cannot be empty", 417);
+        }
+        options.client_id = window.webAuthSettings.client_id;
+        options.grant_type = 'refresh_token';
+        var http = new XMLHttpRequest();
+        var _serviceURL = window.webAuthSettings.authority + "/token-srv/token";
+        http.onreadystatechange = function () {
+          if (http.readyState == 4) {
+            resolve(JSON.parse(http.responseText));
+          }
+        };
+        http.open("POST", _serviceURL, true);
+        http.setRequestHeader("Content-type", "application/json");
+        if (window.localeSettings) {
+          http.setRequestHeader("accept-language", window.localeSettings);
+        }
+        http.send(JSON.stringify(options));
+      } catch (ex) {
+        reject(ex);
+      }
+    });
+  };
+
+  /**
+   * get access token from code
+   * @param options 
+   * @returns 
+   */
+  export function getAccessToken(options: AccessTokenRequest) {
+    return new Promise((resolve, reject) => {
+      try {
+        if (!options.code) {
+          throw new CustomException("code cannot be empty", 417);
+        }
+        options.client_id = window.webAuthSettings.client_id;
+        options.redirect_uri = window.webAuthSettings.redirect_uri;
+        options.code_verifier = this.code_verifier;
+        options.grant_type = "authorization_code";
+        var http = new XMLHttpRequest();
+        var _serviceURL = window.webAuthSettings.authority + "/token-srv/token";
+        http.onreadystatechange = function () {
+          if (http.readyState == 4) {
+            resolve(JSON.parse(http.responseText));
+          }
+        };
+        http.open("POST", _serviceURL, true);
+        http.setRequestHeader("Content-type", "application/json");
+        if (window.localeSettings) {
+          http.setRequestHeader("accept-language", window.localeSettings);
+        }
+        http.send(JSON.stringify(options));
+      } catch (ex) {
+        reject(ex);
+      }
+    });
+  };
+
+  /**
+   * validate access token
+   * @param options 
+   * @returns 
+   */
+  export function validateAccessToken(options: TokenIntrospectionEntity) {
+    return new Promise((resolve, reject) => {
+      try {
+        if (!options.token || !options.token_type_hint) {
+          throw new CustomException("token or token_type_hint cannot be empty", 417);
+        }
+        var http = new XMLHttpRequest();
+        var _serviceURL = window.webAuthSettings.authority + "/token-srv/introspect";
+        http.onreadystatechange = function () {
+          if (http.readyState == 4) {
+            resolve(JSON.parse(http.responseText));
+          }
+        };
+        http.open("POST", _serviceURL, true);
+        http.setRequestHeader("Content-type", "application/json");
+        if (window.localeSettings) {
+          http.setRequestHeader("accept-language", window.localeSettings);
+        }
+        http.send(JSON.stringify(options));
+      } catch (ex) {
+        reject(ex);
+      }
+    });
+  };
+
+  /**
+   * get scope consent details
+   * @param options 
+   * @returns 
+   */
+  export function getScopeConsentDetails(options: {
+    track_id: string;
+    locale: string;
+  }) {
+    return new Promise((resolve, reject) => {
+      try {
+        var http = new XMLHttpRequest();
+        var _serviceURL = window.webAuthSettings.authority + "/token-srv/prelogin/metadata/" + options.track_id + "?acceptLanguage=" + options.locale;
+        http.onreadystatechange = function () {
+          if (http.readyState == 4) {
+            if (http.responseText) {
+              resolve(JSON.parse(http.responseText));
+            } else {
+              resolve(false);
+            }
+          }
+        };
+        http.open("GET", _serviceURL, true);
+        http.setRequestHeader("Content-type", "application/json");
+        if (window.localeSettings) {
+          http.setRequestHeader("accept-language", window.localeSettings);
+        }
+        http.send();
+      } catch (ex) {
+        reject(ex);
+      }
+    });
+  };
+
+  /**
+   * updateSuggestMFA
+   * @param track_id 
+   * @param options 
+   * @returns 
+   */
+  export function updateSuggestMFA(track_id: string, options: ISuggestedMFAActionConfig) {
+    var _serviceURL = window.webAuthSettings.authority + "/token-srv/prelogin/suggested/mfa/update/" + track_id;
+    return Helper.createPostPromise(options, _serviceURL, false);
+  };
+
+  /**
+   * getMissingFieldsLogin
+   * @param trackId 
+   * @returns 
+   */
+  export function getMissingFieldsLogin(trackId: string) {
+    return new Promise((resolve, reject) => {
+      try {
+        var http = new XMLHttpRequest();
+        var _serviceURL = window.webAuthSettings.authority + "/token-srv/prelogin/metadata/" + trackId;
+        http.onreadystatechange = function () {
+          if (http.readyState == 4) {
+            if (http.responseText) {
+              resolve(JSON.parse(http.responseText));
+            } else {
+              resolve(undefined);
+            }
+          }
+        };
+        http.open("GET", _serviceURL, true);
+        http.setRequestHeader("Content-type", "application/json");
+        if (window.localeSettings) {
+          http.setRequestHeader("accept-language", window.localeSettings);
+        }
+        http.send();
+      } catch (ex) {
+        reject(ex);
+      }
+    });
+  };
+
+  /**
+   * device code flow - verify
+   * @param code 
+   */
+  export function deviceCodeVerify(code: string) {
+    var params = `user_code=${encodeURI(code)}`;
+    var url = `${window.webAuthSettings.authority}/token-srv/device/verify?${params}`;
+    try {
+      const options = {
+        user_code: encodeURI(code)
+      }
+      let form = Helper.createForm(url, options, 'GET');
+      document.body.appendChild(form);
+      form.submit();
+    } catch (ex) {
+      throw new Error(ex);
+    }
+  }
+}