oidc-spa 7.1.9 → 7.2.0-rc.1

package/core/OidcInitializationError.js

@@ -1,331 +1,264 @@
 "use strict";
-var __extends = (this && this.__extends) || (function () {
-    var extendStatics = function (d, b) {
-        extendStatics = Object.setPrototypeOf ||
-            ({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
-            function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };
-        return extendStatics(d, b);
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
     };
-    return function (d, b) {
-        if (typeof b !== "function" && b !== null)
-            throw new TypeError("Class extends value " + String(b) + " is not a constructor or null");
-        extendStatics(d, b);
-        function __() { this.constructor = d; }
-        d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
     };
 })();
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __generator = (this && this.__generator) || function (thisArg, body) {
-    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === "function" ? Iterator : Object).prototype);
-    return g.next = verb(0), g["throw"] = verb(1), g["return"] = verb(2), typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
-    function verb(n) { return function (v) { return step([n, v]); }; }
-    function step(op) {
-        if (f) throw new TypeError("Generator is already executing.");
-        while (g && (g = 0, op[0] && (_ = 0)), _) try {
-            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
-            if (y = 0, t) op = [op[0] & 2, t.value];
-            switch (op[0]) {
-                case 0: case 1: t = op; break;
-                case 4: _.label++; return { value: op[1], done: false };
-                case 5: _.label++; y = op[1]; op = [0]; continue;
-                case 7: op = _.ops.pop(); _.trys.pop(); continue;
-                default:
-                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
-                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
-                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
-                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
-                    if (t[2]) _.ops.pop();
-                    _.trys.pop(); continue;
-            }
-            op = body.call(thisArg, _);
-        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
-        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
-    }
-};
-var __read = (this && this.__read) || function (o, n) {
-    var m = typeof Symbol === "function" && o[Symbol.iterator];
-    if (!m) return o;
-    var i = m.call(o), r, ar = [], e;
-    try {
-        while ((n === void 0 || n-- > 0) && !(r = i.next()).done) ar.push(r.value);
-    }
-    catch (error) { e = { error: error }; }
-    finally {
-        try {
-            if (r && !r.done && (m = i["return"])) m.call(i);
-        }
-        finally { if (e) throw e.error; }
-    }
-    return ar;
-};
-var __spreadArray = (this && this.__spreadArray) || function (to, from, pack) {
-    if (pack || arguments.length === 2) for (var i = 0, l = from.length, ar; i < l; i++) {
-        if (ar || !(i in from)) {
-            if (!ar) ar = Array.prototype.slice.call(from, 0, i);
-            ar[i] = from[i];
-        }
-    }
-    return to.concat(ar || Array.prototype.slice.call(from));
-};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.OidcInitializationError = void 0;
 exports.createWellKnownOidcConfigurationEndpointUnreachableInitializationError = createWellKnownOidcConfigurationEndpointUnreachableInitializationError;
 exports.createIframeTimeoutInitializationError = createIframeTimeoutInitializationError;
 exports.createFailedToFetchTokenEndpointInitializationError = createFailedToFetchTokenEndpointInitializationError;
-var getIsValidRemoteJson_1 = require("../tools/getIsValidRemoteJson");
-var parseKeycloakIssuerUri_1 = require("../tools/parseKeycloakIssuerUri");
-var OidcInitializationError = /** @class */ (function (_super) {
-    __extends(OidcInitializationError, _super);
-    function OidcInitializationError(params) {
-        var _newTarget = this.constructor;
-        var _this = _super.call(this, (function () {
+const getIsValidRemoteJson_1 = require("../tools/getIsValidRemoteJson");
+const isKeycloak_1 = require("../keycloak/isKeycloak");
+class OidcInitializationError extends Error {
+    constructor(params) {
+        super((() => {
             if (typeof params.messageOrCause === "string") {
                 return params.messageOrCause;
             }
             else {
-                return "Unknown initialization error: ".concat(params.messageOrCause.message);
+                return `Unknown initialization error: ${params.messageOrCause.message}`;
             }
         })(), 
         // @ts-expect-error
-        { cause: typeof params.messageOrCause === "string" ? undefined : params.messageOrCause }) || this;
-        _this.isAuthServerLikelyDown = params.isAuthServerLikelyDown;
-        Object.setPrototypeOf(_this, _newTarget.prototype);
-        return _this;
+        { cause: typeof params.messageOrCause === "string" ? undefined : params.messageOrCause });
+        this.isAuthServerLikelyDown = params.isAuthServerLikelyDown;
+        Object.setPrototypeOf(this, new.target.prototype);
     }
-    return OidcInitializationError;
-}(Error));
+}
 exports.OidcInitializationError = OidcInitializationError;
-function createWellKnownOidcConfigurationEndpointUnreachableInitializationError(params) {
-    return __awaiter(this, void 0, void 0, function () {
-        var issuerUri, issuerUri_parsed, WELL_KNOWN_PATH, commonFallbackMessagePart, getCandidateIssuerUri, issuerUri_candidate, isValid, issuerUri_candidate, isValid;
-        return __generator(this, function (_a) {
-            switch (_a.label) {
-                case 0:
-                    issuerUri = params.issuerUri;
-                    issuerUri_parsed = (0, parseKeycloakIssuerUri_1.parseKeycloakIssuerUri)(issuerUri);
-                    WELL_KNOWN_PATH = "/.well-known/openid-configuration";
-                    commonFallbackMessagePart = [
-                        "The OIDC server is either down or the issuerUri you provided is incorrect.",
-                        "You provided the issuerUri: ".concat(issuerUri),
-                        "Endpoint that couldn't be reached: ".concat(issuerUri).concat(WELL_KNOWN_PATH)
-                    ].join("\n");
-                    if (issuerUri_parsed === undefined) {
-                        return [2 /*return*/, new OidcInitializationError({
-                                messageOrCause: [
-                                    commonFallbackMessagePart,
-                                    "",
-                                    "If you happen to be using Keycloak, be aware that the issuerUri you provided doesn't match the expected shape.",
-                                    "It should look like: https://<YOUR_KEYCLOAK_DOMAIN><KC_HTTP_RELATIVE_PATH>/realms/<YOUR_REALM>",
-                                    "Unless configured otherwise the KC_HTTP_RELATIVE_PATH is '/' by default on recent version of Keycloak."
-                                ].join("\n"),
-                                isAuthServerLikelyDown: true
-                            })];
-                    }
-                    getCandidateIssuerUri = function (params) {
-                        var kcHttpRelativePath = params.kcHttpRelativePath;
-                        return "".concat(issuerUri_parsed.origin).concat(kcHttpRelativePath === undefined ? "" : kcHttpRelativePath, "/realms/").concat(issuerUri_parsed.realm);
-                    };
-                    if (!(issuerUri_parsed.kcHttpRelativePath === undefined)) return [3 /*break*/, 2];
-                    issuerUri_candidate = getCandidateIssuerUri({ kcHttpRelativePath: "/auth" });
-                    return [4 /*yield*/, (0, getIsValidRemoteJson_1.getIsValidRemoteJson)("".concat(issuerUri_candidate).concat(WELL_KNOWN_PATH))];
-                case 1:
-                    isValid = _a.sent();
-                    if (isValid) {
-                        return [2 /*return*/, new OidcInitializationError({
-                                messageOrCause: [
-                                    "Your Keycloak server is configured with KC_HTTP_RELATIVE_PATH=/auth",
-                                    "The issuerUri you provided: ".concat(issuerUri),
-                                    "The correct issuerUri is: ".concat(issuerUri_candidate),
-                                    "(You are missing the /auth portion)"
-                                ].join("\n"),
-                                isAuthServerLikelyDown: false
-                            })];
-                    }
-                    return [3 /*break*/, 4];
-                case 2:
-                    issuerUri_candidate = getCandidateIssuerUri({ kcHttpRelativePath: undefined });
-                    return [4 /*yield*/, (0, getIsValidRemoteJson_1.getIsValidRemoteJson)("".concat(issuerUri_candidate).concat(WELL_KNOWN_PATH))];
-                case 3:
-                    isValid = _a.sent();
-                    if (isValid) {
-                        return [2 /*return*/, new OidcInitializationError({
-                                messageOrCause: [
-                                    "Your Keycloak server is configured with KC_HTTP_RELATIVE_PATH=/",
-                                    "The issuerUri you provided: ".concat(issuerUri),
-                                    "The correct issuerUri is: ".concat(issuerUri_candidate),
-                                    "(You should remove the ".concat(issuerUri_parsed.kcHttpRelativePath, " portion.)")
-                                ].join("\n"),
-                                isAuthServerLikelyDown: false
-                            })];
-                    }
-                    _a.label = 4;
-                case 4: return [2 /*return*/, new OidcInitializationError({
-                        messageOrCause: [
-                            commonFallbackMessagePart,
-                            "",
-                            "Given the shape of the issuerUri you provided, it seems that you are using Keycloak.",
-                            "- Make sure the realm '".concat(issuerUri_parsed.realm, "' exists."),
-                            "- Check the KC_HTTP_RELATIVE_PATH that you might have configured your keycloak server with.",
-                            "  For example if you have KC_HTTP_RELATIVE_PATH=/xxx the issuerUri should be ".concat(getCandidateIssuerUri({ kcHttpRelativePath: "/xxx" }))
-                        ].join("\n"),
-                        isAuthServerLikelyDown: true
-                    })];
-            }
+async function createWellKnownOidcConfigurationEndpointUnreachableInitializationError(params) {
+    const { issuerUri } = params;
+    const WELL_KNOWN_PATH = "/.well-known/openid-configuration";
+    const commonFallbackMessagePart = [
+        `The OIDC server is either down or the issuerUri you provided is incorrect.`,
+        `You provided the issuerUri: ${issuerUri}`,
+        `Endpoint that couldn't be reached: ${issuerUri}${WELL_KNOWN_PATH}`
+    ].join("\n");
+    if (!(0, isKeycloak_1.isKeycloak)({ issuerUri })) {
+        return new OidcInitializationError({
+            messageOrCause: [
+                commonFallbackMessagePart,
+                ``,
+                `If you happen to be using Keycloak, be aware that the issuerUri you provided doesn't match the expected shape.`,
+                `It should look like: https://<YOUR_KEYCLOAK_DOMAIN><KC_HTTP_RELATIVE_PATH>/realms/<YOUR_REALM>`,
+                `Unless configured otherwise the KC_HTTP_RELATIVE_PATH is '/' by default on recent version of Keycloak.`
+            ].join("\n"),
+            isAuthServerLikelyDown: true
         });
+    }
+    const keycloakUtils = (await Promise.resolve().then(() => __importStar(require("../keycloak")))).createKeycloakUtils({ issuerUri });
+    const getCandidateIssuerUri = (params) => {
+        const { kcHttpRelativePath } = params;
+        return `${keycloakUtils.issuerUriParsed.origin}${kcHttpRelativePath ?? ""}/realms/${encodeURIComponent(keycloakUtils.issuerUriParsed.realm)}`;
+    };
+    if (keycloakUtils.issuerUriParsed.kcHttpRelativePath === undefined) {
+        const issuerUri_candidate = getCandidateIssuerUri({ kcHttpRelativePath: "/auth" });
+        const isValid = await (0, getIsValidRemoteJson_1.getIsValidRemoteJson)(`${issuerUri_candidate}${WELL_KNOWN_PATH}`);
+        if (isValid) {
+            return new OidcInitializationError({
+                messageOrCause: [
+                    `Your Keycloak server is configured with KC_HTTP_RELATIVE_PATH=/auth`,
+                    `The issuerUri you provided: ${issuerUri}`,
+                    `The correct issuerUri is: ${issuerUri_candidate}`,
+                    `(You are missing the /auth portion)`
+                ].join("\n"),
+                isAuthServerLikelyDown: false
+            });
+        }
+    }
+    else {
+        const issuerUri_candidate = getCandidateIssuerUri({ kcHttpRelativePath: undefined });
+        const isValid = await (0, getIsValidRemoteJson_1.getIsValidRemoteJson)(`${issuerUri_candidate}${WELL_KNOWN_PATH}`);
+        if (isValid) {
+            return new OidcInitializationError({
+                messageOrCause: [
+                    `Your Keycloak server is configured with KC_HTTP_RELATIVE_PATH=/`,
+                    `The issuerUri you provided: ${issuerUri}`,
+                    `The correct issuerUri is: ${issuerUri_candidate}`,
+                    `(You should remove the ${keycloakUtils.issuerUriParsed.kcHttpRelativePath} portion.)`
+                ].join("\n"),
+                isAuthServerLikelyDown: false
+            });
+        }
+    }
+    return new OidcInitializationError({
+        messageOrCause: [
+            commonFallbackMessagePart,
+            ``,
+            `Given the shape of the issuerUri you provided, it seems that you are using Keycloak.`,
+            `- Make sure the realm '${keycloakUtils.issuerUriParsed.realm}' exists.`,
+            `- Check the KC_HTTP_RELATIVE_PATH that you might have configured your keycloak server with.`,
+            `  For example if you have KC_HTTP_RELATIVE_PATH=/xxx the issuerUri should be ${getCandidateIssuerUri({ kcHttpRelativePath: "/xxx" })}`
+        ].join("\n"),
+        isAuthServerLikelyDown: true
     });
 }
-function createIframeTimeoutInitializationError(params) {
-    return __awaiter(this, void 0, void 0, function () {
-        var callbackUri, issuerUri, clientId, noIframe, headersOrError, headers_1, key_problem;
-        return __generator(this, function (_a) {
-            switch (_a.label) {
-                case 0:
-                    callbackUri = params.callbackUri, issuerUri = params.issuerUri, clientId = params.clientId, noIframe = params.noIframe;
-                    if (noIframe) {
-                        return [3 /*break*/, 2];
-                    }
-                    return [4 /*yield*/, fetch(callbackUri).then(function (response) {
-                            if (!response.ok) {
-                                return new Error("".concat(callbackUri, " responded with a ").concat(response.status, " status code."));
-                            }
-                            return {
-                                "Content-Security-Policy": response.headers.get("Content-Security-Policy"),
-                                "X-Frame-Options": response.headers.get("X-Frame-Options")
-                            };
-                        }, function (error) { return error; })];
-                case 1:
-                    headersOrError = _a.sent();
-                    if (headersOrError instanceof Error) {
-                        return [2 /*return*/, new OidcInitializationError({
-                                isAuthServerLikelyDown: false,
-                                messageOrCause: new Error("Unexpected error while trying to diagnose why the silent sign-in process timed out.", 
-                                // @ts-expect-error
-                                { cause: cspOrError })
-                            })];
-                    }
-                    headers_1 = headersOrError;
-                    key_problem = (function () {
-                        block: {
-                            var key = "Content-Security-Policy";
-                            var header = headers_1[key];
-                            if (header === null) {
-                                break block;
-                            }
-                            var hasFrameAncestorsNone = header
-                                .replace(/["']/g, "")
-                                .replace(/\s+/g, " ")
-                                .toLowerCase()
-                                .includes("frame-ancestors none");
-                            if (!hasFrameAncestorsNone) {
-                                break block;
-                            }
-                            return key;
-                        }
-                        block: {
-                            var key = "X-Frame-Options";
-                            var header = headers_1[key];
-                            if (header === null) {
-                                break block;
-                            }
-                            var hasFrameAncestorsNone = header.toLowerCase().includes("deny");
-                            if (!hasFrameAncestorsNone) {
-                                break block;
-                            }
-                            return key;
-                        }
-                        return undefined;
-                    })();
-                    if (key_problem === undefined) {
-                        return [3 /*break*/, 2];
-                    }
-                    return [2 /*return*/, new OidcInitializationError({
-                            isAuthServerLikelyDown: false,
-                            messageOrCause: [
-                                "".concat(callbackUri, " is currently served by your web server with the HTTP header `").concat(key_problem, ": ").concat(headers_1[key_problem], "`.\n"),
-                                "This header prevents the silent sign-in process from working.\n",
-                                "Refer to this documentation page to fix this issue: https://docs.oidc-spa.dev/v/v7/resources/iframe-related-issues"
-                            ].join(" ")
-                        })];
-                case 2: 
-                // Here we know that the server is not down and that the issuer_uri is correct
-                // otherwise we would have had a fetch error earlier on the well-known endpoint.
-                // So this means that it's very likely a OIDC client misconfiguration.
-                // It could also be a very slow network but this risk is mitigated by the fact that we check
-                // for the network speed to adjust the timeout delay.
-                return [2 /*return*/, new OidcInitializationError({
-                        isAuthServerLikelyDown: false,
-                        messageOrCause: __spreadArray(__spreadArray([
-                            "The silent sign-in process timed out.\n",
-                            "Based on the diagnostic performed by oidc-spa the more likely causes are:\n",
-                            "- Either the client ID \"".concat(clientId, "\" does not exist, or\n"),
-                            "- You forgot to add the OIDC callback URL to the list of Valid Redirect URIs.\n",
-                            "Client ID: \"".concat(clientId, "\"\n"),
-                            "Callback URL to add to the list of Valid Redirect URIs: \"".concat(callbackUri, "\"\n\n")
-                        ], __read((function () {
-                            var kc = (0, parseKeycloakIssuerUri_1.parseKeycloakIssuerUri)(issuerUri);
-                            if (!kc) {
-                                return [
-                                    "Check the documentation of your OIDC server to learn how to configure the public client (Authorization Code Flow + PKCE) properly."
-                                ];
-                            }
-                            return [
-                                "It seems you are using Keycloak. Follow these steps to resolve the issue:\n\n",
-                                "1. Go to the Keycloak admin console: ".concat(kc.adminConsoleUrl_master, "\n"),
-                                "2. Log in as an admin user.\n",
-                                "3. In the top left corner select the realm \"".concat(kc.realm, "\".\n"),
-                                "4. In the left menu, click on \"Clients\".\n",
-                                "5. Locate the client \"".concat(clientId, "\" in the list and click on it.\n"),
-                                "6. Find \"Valid Redirect URIs\" and add \"".concat(callbackUri, "\" to the list.\n"),
-                                "7. Save the changes.\n\n",
-                                "For more information, refer to the documentation: https://docs.oidc-spa.dev/v/v7/providers-configuration/keycloak"
-                            ];
-                        })()), false), [
-                            "\n\n",
-                            "If nothing works, you can try disabling the use of iframe: https://docs.oidc-spa.dev/resources/iframe-related-issues\n",
-                            "with some OIDC provider it might solve the issue."
-                        ], false).join(" ")
-                    })];
+async function createIframeTimeoutInitializationError(params) {
+    const { redirectUri, issuerUri, clientId, noIframe } = params;
+    iframe_blocked: {
+        if (noIframe) {
+            break iframe_blocked;
+        }
+        const headersOrError = await fetch(redirectUri).then(response => {
+            if (!response.ok) {
+                return new Error(`${redirectUri} responded with a ${response.status} status code.`);
+            }
+            return {
+                "Content-Security-Policy": response.headers.get("Content-Security-Policy"),
+                "X-Frame-Options": response.headers.get("X-Frame-Options")
+            };
+        }, (error) => error);
+        if (headersOrError instanceof Error) {
+            return new OidcInitializationError({
+                isAuthServerLikelyDown: false,
+                messageOrCause: new Error(`Unexpected error while trying to diagnose why the silent sign-in process timed out.`, 
+                // @ts-expect-error
+                { cause: cspOrError })
+            });
+        }
+        const headers = headersOrError;
+        let key_problem = (() => {
+            block: {
+                const key = "Content-Security-Policy";
+                const header = headers[key];
+                if (header === null) {
+                    break block;
+                }
+                const hasFrameAncestorsNone = header
+                    .replace(/["']/g, "")
+                    .replace(/\s+/g, " ")
+                    .toLowerCase()
+                    .includes("frame-ancestors none");
+                if (!hasFrameAncestorsNone) {
+                    break block;
+                }
+                return key;
+            }
+            block: {
+                const key = "X-Frame-Options";
+                const header = headers[key];
+                if (header === null) {
+                    break block;
+                }
+                const hasFrameAncestorsNone = header.toLowerCase().includes("deny");
+                if (!hasFrameAncestorsNone) {
+                    break block;
+                }
+                return key;
             }
+            return undefined;
+        })();
+        if (key_problem === undefined) {
+            break iframe_blocked;
+        }
+        return new OidcInitializationError({
+            isAuthServerLikelyDown: false,
+            messageOrCause: [
+                `${redirectUri} is currently served by your web server with the HTTP header \`${key_problem}: ${headers[key_problem]}\`.\n`,
+                "This header prevents the silent sign-in process from working.\n",
+                "Refer to this documentation page to fix this issue: https://docs.oidc-spa.dev/v/v7/resources/iframe-related-issues"
+            ].join(" ")
         });
+    }
+    // Here we know that the server is not down and that the issuer_uri is correct
+    // otherwise we would have had a fetch error earlier on the well-known endpoint.
+    // So this means that it's very likely a OIDC client misconfiguration.
+    // It could also be a very slow network but this risk is mitigated by the fact that we check
+    // for the network speed to adjust the timeout delay.
+    return new OidcInitializationError({
+        isAuthServerLikelyDown: false,
+        messageOrCause: [
+            `The silent sign-in process timed out.\n`,
+            `Based on the diagnostic performed by oidc-spa the more likely causes are:\n`,
+            `- Either the client ID "${clientId}" does not exist, or\n`,
+            `- You forgot to add the OIDC callback URL to the list of Valid Redirect URIs.\n`,
+            `Client ID: "${clientId}"\n`,
+            `Callback URL to add to the list of Valid Redirect URIs: "${redirectUri}"\n\n`,
+            ...(await (async () => {
+                if (!(0, isKeycloak_1.isKeycloak)({ issuerUri })) {
+                    return [
+                        "Check the documentation of your OIDC server to learn how to configure the public client (Authorization Code Flow + PKCE) properly."
+                    ];
+                }
+                const kc = (await Promise.resolve().then(() => __importStar(require("../keycloak")))).createKeycloakUtils({ issuerUri });
+                return [
+                    `It seems you are using Keycloak. Follow these steps to resolve the issue:\n\n`,
+                    `1. Go to the Keycloak admin console: ${kc.adminConsoleUrl_master}\n`,
+                    `2. Log in as an admin user.\n`,
+                    `3. In the top left corner select the realm "${kc.issuerUriParsed.realm}".\n`,
+                    `4. In the left menu, click on "Clients".\n`,
+                    `5. Locate the client "${clientId}" in the list and click on it.\n`,
+                    `6. Find "Valid Redirect URIs" and add "${redirectUri}" to the list.\n`,
+                    `7. Save the changes.\n\n`,
+                    `For more information, refer to the documentation: https://docs.oidc-spa.dev/v/v7/providers-configuration/keycloak`
+                ];
+            })()),
+            "\n\n",
+            "If nothing works, you can try disabling the use of iframe: https://docs.oidc-spa.dev/resources/iframe-related-issues\n",
+            "with some OIDC provider it might solve the issue."
+        ].join(" ")
     });
 }
-function createFailedToFetchTokenEndpointInitializationError(params) {
-    var issuerUri = params.issuerUri, clientId = params.clientId;
+async function createFailedToFetchTokenEndpointInitializationError(params) {
+    const { issuerUri, clientId } = params;
     return new OidcInitializationError({
         isAuthServerLikelyDown: false,
-        messageOrCause: __spreadArray([
+        messageOrCause: [
             "Failed to fetch the token endpoint.\n",
             "This is usually due to a CORS issue.\n",
-            "Make sure you have added '".concat(window.location.origin, "' to the list of Web Origins"),
-            "in the '".concat(clientId, "' client configuration of your OIDC server.\n"),
-            "\n"
-        ], __read((function () {
-            var kc = (0, parseKeycloakIssuerUri_1.parseKeycloakIssuerUri)(issuerUri);
-            if (kc === undefined) {
+            `Make sure you have added '${window.location.origin}' to the list of Web Origins`,
+            `in the '${clientId}' client configuration of your OIDC server.\n`,
+            "\n",
+            ...(await (async () => {
+                if (!(0, isKeycloak_1.isKeycloak)({ issuerUri })) {
+                    return [
+                        "Check the documentation of your OIDC server to learn how to configure the public client (Authorization Code Flow + PKCE) properly."
+                    ];
+                }
+                const kc = (await Promise.resolve().then(() => __importStar(require("../keycloak")))).createKeycloakUtils({ issuerUri });
                 return [
-                    "Check the documentation of your OIDC server to learn how to configure the public client (Authorization Code Flow + PKCE) properly."
+                    `Since it seems that you are using Keycloak, here are the steps to follow:\n`,
+                    `1. Go to the Keycloak admin console: ${kc.adminConsoleUrl_master}\n`,
+                    `2. Log in as an admin user.\n`,
+                    `3. In the top left corner select the realm "${kc.issuerUriParsed.realm}".\n`,
+                    `4. In the left menu, click on "Clients".\n`,
+                    `5. Find '${clientId}' in the list of clients and click on it.\n`,
+                    `6. Find 'Web Origins' and add '${window.location.origin}' to the list.\n`,
+                    `7. Save the changes.\n\n`,
+                    `More info: https://docs.oidc-spa.dev/v/v7/providers-configuration/keycloak`
                 ];
-            }
-            return [
-                "Since it seems that you are using Keycloak, here are the steps to follow:\n",
-                "1. Go to the Keycloak admin console: ".concat(kc.adminConsoleUrl_master, "\n"),
-                "2. Log in as an admin user.\n",
-                "3. In the top left corner select the realm \"".concat(kc.realm, "\".\n"),
-                "4. In the left menu, click on \"Clients\".\n",
-                "5. Find '".concat(clientId, "' in the list of clients and click on it.\n"),
-                "6. Find 'Web Origins' and add '".concat(window.location.origin, "' to the list.\n"),
-                "7. Save the changes.\n\n",
-                "More info: https://docs.oidc-spa.dev/v/v7/providers-configuration/keycloak"
-            ];
-        })()), false).join(" ")
+            })())
+        ].join(" ")
     });
 }
 //# sourceMappingURL=OidcInitializationError.js.map

package/core/OidcInitializationError.js.map

@@ -1 +1 @@
-{"version":3,"file":"OidcInitializationError.js","sourceRoot":"","sources":["../src/core/OidcInitializationError.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAuBA,wJAmFC;AAED,wFA0IC;AAED,kHAqCC;AA7RD,sEAAqE;AACrE,0EAAyE;AAEzE;IAA6C,2CAAK;IAG9C,iCAAY,MAA2E;;QACnF,YAAA,MAAK,YACD,CAAC;YACG,IAAI,OAAO,MAAM,CAAC,cAAc,KAAK,QAAQ,EAAE,CAAC;gBAC5C,OAAO,MAAM,CAAC,cAAc,CAAC;YACjC,CAAC;iBAAM,CAAC;gBACJ,OAAO,wCAAiC,MAAM,CAAC,cAAc,CAAC,OAAO,CAAE,CAAC;YAC5E,CAAC;QACL,CAAC,CAAC,EAAE;QACJ,mBAAmB;QACnB,EAAE,KAAK,EAAE,OAAO,MAAM,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,EAAE,CAC3F,SAAC;QACF,KAAI,CAAC,sBAAsB,GAAG,MAAM,CAAC,sBAAsB,CAAC;QAC5D,MAAM,CAAC,cAAc,CAAC,KAAI,EAAE,WAAW,SAAS,CAAC,CAAC;;IACtD,CAAC;IACL,8BAAC;AAAD,CAAC,AAlBD,CAA6C,KAAK,GAkBjD;AAlBY,0DAAuB;AAoBpC,SAAsB,sEAAsE,CAAC,MAE5F;;;;;;oBACW,SAAS,GAAK,MAAM,UAAX,CAAY;oBAEvB,gBAAgB,GAAG,IAAA,+CAAsB,EAAC,SAAS,CAAC,CAAC;oBAErD,eAAe,GAAG,mCAAmC,CAAC;oBAEtD,yBAAyB,GAAG;wBAC9B,4EAA4E;wBAC5E,sCAA+B,SAAS,CAAE;wBAC1C,6CAAsC,SAAS,SAAG,eAAe,CAAE;qBACtE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;oBAEb,IAAI,gBAAgB,KAAK,SAAS,EAAE,CAAC;wBACjC,sBAAO,IAAI,uBAAuB,CAAC;gCAC/B,cAAc,EAAE;oCACZ,yBAAyB;oCACzB,EAAE;oCACF,gHAAgH;oCAChH,gGAAgG;oCAChG,wGAAwG;iCAC3G,CAAC,IAAI,CAAC,IAAI,CAAC;gCACZ,sBAAsB,EAAE,IAAI;6BAC/B,CAAC,EAAC;oBACP,CAAC;oBAEK,qBAAqB,GAAG,UAAC,MAAkD;wBACrE,IAAA,kBAAkB,GAAK,MAAM,mBAAX,CAAY;wBAEtC,OAAO,UAAG,gBAAgB,CAAC,MAAM,SAC7B,kBAAkB,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,kBAAkB,qBACnD,gBAAgB,CAAC,KAAK,CAAE,CAAC;oBACxC,CAAC,CAAC;yBAEE,CAAA,gBAAgB,CAAC,kBAAkB,KAAK,SAAS,CAAA,EAAjD,wBAAiD;oBAC3C,mBAAmB,GAAG,qBAAqB,CAAC,EAAE,kBAAkB,EAAE,OAAO,EAAE,CAAC,CAAC;oBAEnE,qBAAM,IAAA,2CAAoB,EAAC,UAAG,mBAAmB,SAAG,eAAe,CAAE,CAAC,EAAA;;oBAAhF,OAAO,GAAG,SAAsE;oBAEtF,IAAI,OAAO,EAAE,CAAC;wBACV,sBAAO,IAAI,uBAAuB,CAAC;gCAC/B,cAAc,EAAE;oCACZ,qEAAqE;oCACrE,sCAA+B,SAAS,CAAE;oCAC1C,oCAA6B,mBAAmB,CAAE;oCAClD,qCAAqC;iCACxC,CAAC,IAAI,CAAC,IAAI,CAAC;gCACZ,sBAAsB,EAAE,KAAK;6BAChC,CAAC,EAAC;oBACP,CAAC;;;oBAEK,mBAAmB,GAAG,qBAAqB,CAAC,EAAE,kBAAkB,EAAE,SAAS,EAAE,CAAC,CAAC;oBAErE,qBAAM,IAAA,2CAAoB,EAAC,UAAG,mBAAmB,SAAG,eAAe,CAAE,CAAC,EAAA;;oBAAhF,OAAO,GAAG,SAAsE;oBAEtF,IAAI,OAAO,EAAE,CAAC;wBACV,sBAAO,IAAI,uBAAuB,CAAC;gCAC/B,cAAc,EAAE;oCACZ,iEAAiE;oCACjE,sCAA+B,SAAS,CAAE;oCAC1C,oCAA6B,mBAAmB,CAAE;oCAClD,iCAA0B,gBAAgB,CAAC,kBAAkB,eAAY;iCAC5E,CAAC,IAAI,CAAC,IAAI,CAAC;gCACZ,sBAAsB,EAAE,KAAK;6BAChC,CAAC,EAAC;oBACP,CAAC;;wBAGL,sBAAO,IAAI,uBAAuB,CAAC;wBAC/B,cAAc,EAAE;4BACZ,yBAAyB;4BACzB,EAAE;4BACF,sFAAsF;4BACtF,iCAA0B,gBAAgB,CAAC,KAAK,cAAW;4BAC3D,6FAA6F;4BAC7F,uFAAgF,qBAAqB,CACjG,EAAE,kBAAkB,EAAE,MAAM,EAAE,CACjC,CAAE;yBACN,CAAC,IAAI,CAAC,IAAI,CAAC;wBACZ,sBAAsB,EAAE,IAAI;qBAC/B,CAAC,EAAC;;;;CACN;AAED,SAAsB,sCAAsC,CAAC,MAK5D;;;;;;oBACW,WAAW,GAAoC,MAAM,YAA1C,EAAE,SAAS,GAAyB,MAAM,UAA/B,EAAE,QAAQ,GAAe,MAAM,SAArB,EAAE,QAAQ,GAAK,MAAM,SAAX,CAAY;oBAG1D,IAAI,QAAQ,EAAE,CAAC;wBACX,wBAAqB;oBACzB,CAAC;oBAEsB,qBAAM,KAAK,CAAC,WAAW,CAAC,CAAC,IAAI,CAChD,UAAA,QAAQ;4BACJ,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gCACf,OAAO,IAAI,KAAK,CAAC,UAAG,WAAW,+BAAqB,QAAQ,CAAC,MAAM,kBAAe,CAAC,CAAC;4BACxF,CAAC;4BAED,OAAO;gCACH,yBAAyB,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC;gCAC1E,iBAAiB,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;6BAC7D,CAAC;wBACN,CAAC,EACD,UAAC,KAAY,IAAK,OAAA,KAAK,EAAL,CAAK,CAC1B,EAAA;;oBAZK,cAAc,GAAG,SAYtB;oBAED,IAAI,cAAc,YAAY,KAAK,EAAE,CAAC;wBAClC,sBAAO,IAAI,uBAAuB,CAAC;gCAC/B,sBAAsB,EAAE,KAAK;gCAC7B,cAAc,EAAE,IAAI,KAAK,CACrB,qFAAqF;gCACrF,mBAAmB;gCACnB,EAAE,KAAK,EAAE,UAAU,EAAE,CACxB;6BACJ,CAAC,EAAC;oBACP,CAAC;oBAEK,YAAU,cAAc,CAAC;oBAE3B,WAAW,GAAG,CAAC;wBACf,KAAK,EAAE,CAAC;4BACJ,IAAM,GAAG,GAAG,yBAAkC,CAAC;4BAE/C,IAAM,MAAM,GAAG,SAAO,CAAC,GAAG,CAAC,CAAC;4BAE5B,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;gCAClB,MAAM,KAAK,CAAC;4BAChB,CAAC;4BAED,IAAM,qBAAqB,GAAG,MAAM;iCAC/B,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC;iCACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;iCACpB,WAAW,EAAE;iCACb,QAAQ,CAAC,sBAAsB,CAAC,CAAC;4BAEtC,IAAI,CAAC,qBAAqB,EAAE,CAAC;gCACzB,MAAM,KAAK,CAAC;4BAChB,CAAC;4BAED,OAAO,GAAG,CAAC;wBACf,CAAC;wBAED,KAAK,EAAE,CAAC;4BACJ,IAAM,GAAG,GAAG,iBAA0B,CAAC;4BAEvC,IAAM,MAAM,GAAG,SAAO,CAAC,GAAG,CAAC,CAAC;4BAE5B,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;gCAClB,MAAM,KAAK,CAAC;4BAChB,CAAC;4BAED,IAAM,qBAAqB,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;4BAEpE,IAAI,CAAC,qBAAqB,EAAE,CAAC;gCACzB,MAAM,KAAK,CAAC;4BAChB,CAAC;4BAED,OAAO,GAAG,CAAC;wBACf,CAAC;wBAED,OAAO,SAAS,CAAC;oBACrB,CAAC,CAAC,EAAE,CAAC;oBAEL,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;wBAC5B,wBAAqB;oBACzB,CAAC;oBAED,sBAAO,IAAI,uBAAuB,CAAC;4BAC/B,sBAAsB,EAAE,KAAK;4BAC7B,cAAc,EAAE;gCACZ,UAAG,WAAW,2EAAkE,WAAW,eAAK,SAAO,CAAC,WAAW,CAAC,SAAO;gCAC3H,iEAAiE;gCACjE,oHAAoH;6BACvH,CAAC,IAAI,CAAC,GAAG,CAAC;yBACd,CAAC,EAAC;;gBAGP,8EAA8E;gBAC9E,gFAAgF;gBAChF,sEAAsE;gBACtE,4FAA4F;gBAC5F,qDAAqD;gBACrD,sBAAO,IAAI,uBAAuB,CAAC;wBAC/B,sBAAsB,EAAE,KAAK;wBAC7B,cAAc,EAAE;4BACZ,yCAAyC;4BACzC,6EAA6E;4BAC7E,mCAA2B,QAAQ,4BAAwB;4BAC3D,iFAAiF;4BACjF,uBAAe,QAAQ,SAAK;4BAC5B,oEAA4D,WAAW,WAAO;kCAC3E,CAAC;4BACA,IAAM,EAAE,GAAG,IAAA,+CAAsB,EAAC,SAAS,CAAC,CAAC;4BAE7C,IAAI,CAAC,EAAE,EAAE,CAAC;gCACN,OAAO;oCACH,oIAAoI;iCACvI,CAAC;4BACN,CAAC;4BAED,OAAO;gCACH,+EAA+E;gCAC/E,+CAAwC,EAAE,CAAC,sBAAsB,OAAI;gCACrE,+BAA+B;gCAC/B,uDAA+C,EAAE,CAAC,KAAK,UAAM;gCAC7D,8CAA4C;gCAC5C,iCAAyB,QAAQ,sCAAkC;gCACnE,oDAA0C,WAAW,sBAAkB;gCACvE,0BAA0B;gCAC1B,mHAAmH;6BACtH,CAAC;wBACN,CAAC,CAAC,EAAE;4BACJ,MAAM;4BACN,wHAAwH;4BACxH,mDAAmD;kCACrD,IAAI,CAAC,GAAG,CAAC;qBACd,CAAC,EAAC;;;;CACN;AAED,SAAgB,mDAAmD,CAAC,MAGnE;IACW,IAAA,SAAS,GAAe,MAAM,UAArB,EAAE,QAAQ,GAAK,MAAM,SAAX,CAAY;IAEvC,OAAO,IAAI,uBAAuB,CAAC;QAC/B,sBAAsB,EAAE,KAAK;QAC7B,cAAc,EAAE;YACZ,uCAAuC;YACvC,wCAAwC;YACxC,oCAA6B,MAAM,CAAC,QAAQ,CAAC,MAAM,iCAA8B;YACjF,kBAAW,QAAQ,kDAA+C;YAClE,IAAI;kBACD,CAAC;YACA,IAAM,EAAE,GAAG,IAAA,+CAAsB,EAAC,SAAS,CAAC,CAAC;YAE7C,IAAI,EAAE,KAAK,SAAS,EAAE,CAAC;gBACnB,OAAO;oBACH,oIAAoI;iBACvI,CAAC;YACN,CAAC;YAED,OAAO;gBACH,6EAA6E;gBAC7E,+CAAwC,EAAE,CAAC,sBAAsB,OAAI;gBACrE,+BAA+B;gBAC/B,uDAA+C,EAAE,CAAC,KAAK,UAAM;gBAC7D,8CAA4C;gBAC5C,mBAAY,QAAQ,gDAA6C;gBACjE,yCAAkC,MAAM,CAAC,QAAQ,CAAC,MAAM,qBAAkB;gBAC1E,0BAA0B;gBAC1B,4EAA4E;aAC/E,CAAC;QACN,CAAC,CAAC,EAAE,UACN,IAAI,CAAC,GAAG,CAAC;KACd,CAAC,CAAC;AACP,CAAC"}
+{"version":3,"file":"OidcInitializationError.js","sourceRoot":"","sources":["../src/core/OidcInitializationError.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAuBA,wJAmFC;AAED,wFA0IC;AAED,kHAqCC;AA7RD,wEAAqE;AACrE,uDAAoD;AAEpD,MAAa,uBAAwB,SAAQ,KAAK;IAG9C,YAAY,MAA2E;QACnF,KAAK,CACD,CAAC,GAAG,EAAE;YACF,IAAI,OAAO,MAAM,CAAC,cAAc,KAAK,QAAQ,EAAE,CAAC;gBAC5C,OAAO,MAAM,CAAC,cAAc,CAAC;YACjC,CAAC;iBAAM,CAAC;gBACJ,OAAO,iCAAiC,MAAM,CAAC,cAAc,CAAC,OAAO,EAAE,CAAC;YAC5E,CAAC;QACL,CAAC,CAAC,EAAE;QACJ,mBAAmB;QACnB,EAAE,KAAK,EAAE,OAAO,MAAM,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,cAAc,EAAE,CAC3F,CAAC;QACF,IAAI,CAAC,sBAAsB,GAAG,MAAM,CAAC,sBAAsB,CAAC;QAC5D,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACtD,CAAC;CACJ;AAlBD,0DAkBC;AAEM,KAAK,UAAU,sEAAsE,CAAC,MAE5F;IACG,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC;IAE7B,MAAM,eAAe,GAAG,mCAAmC,CAAC;IAE5D,MAAM,yBAAyB,GAAG;QAC9B,4EAA4E;QAC5E,+BAA+B,SAAS,EAAE;QAC1C,sCAAsC,SAAS,GAAG,eAAe,EAAE;KACtE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAEb,IAAI,CAAC,IAAA,uBAAU,EAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;QAC7B,OAAO,IAAI,uBAAuB,CAAC;YAC/B,cAAc,EAAE;gBACZ,yBAAyB;gBACzB,EAAE;gBACF,gHAAgH;gBAChH,gGAAgG;gBAChG,wGAAwG;aAC3G,CAAC,IAAI,CAAC,IAAI,CAAC;YACZ,sBAAsB,EAAE,IAAI;SAC/B,CAAC,CAAC;IACP,CAAC;IAED,MAAM,aAAa,GAAG,CAAC,wDAAa,aAAa,GAAC,CAAC,CAAC,mBAAmB,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC;IAEvF,MAAM,qBAAqB,GAAG,CAAC,MAAkD,EAAE,EAAE;QACjF,MAAM,EAAE,kBAAkB,EAAE,GAAG,MAAM,CAAC;QAEtC,OAAO,GAAG,aAAa,CAAC,eAAe,CAAC,MAAM,GAC1C,kBAAkB,IAAI,EAC1B,WAAW,kBAAkB,CAAC,aAAa,CAAC,eAAe,CAAC,KAAK,CAAC,EAAE,CAAC;IACzE,CAAC,CAAC;IAEF,IAAI,aAAa,CAAC,eAAe,CAAC,kBAAkB,KAAK,SAAS,EAAE,CAAC;QACjE,MAAM,mBAAmB,GAAG,qBAAqB,CAAC,EAAE,kBAAkB,EAAE,OAAO,EAAE,CAAC,CAAC;QAEnF,MAAM,OAAO,GAAG,MAAM,IAAA,2CAAoB,EAAC,GAAG,mBAAmB,GAAG,eAAe,EAAE,CAAC,CAAC;QAEvF,IAAI,OAAO,EAAE,CAAC;YACV,OAAO,IAAI,uBAAuB,CAAC;gBAC/B,cAAc,EAAE;oBACZ,qEAAqE;oBACrE,+BAA+B,SAAS,EAAE;oBAC1C,6BAA6B,mBAAmB,EAAE;oBAClD,qCAAqC;iBACxC,CAAC,IAAI,CAAC,IAAI,CAAC;gBACZ,sBAAsB,EAAE,KAAK;aAChC,CAAC,CAAC;QACP,CAAC;IACL,CAAC;SAAM,CAAC;QACJ,MAAM,mBAAmB,GAAG,qBAAqB,CAAC,EAAE,kBAAkB,EAAE,SAAS,EAAE,CAAC,CAAC;QAErF,MAAM,OAAO,GAAG,MAAM,IAAA,2CAAoB,EAAC,GAAG,mBAAmB,GAAG,eAAe,EAAE,CAAC,CAAC;QAEvF,IAAI,OAAO,EAAE,CAAC;YACV,OAAO,IAAI,uBAAuB,CAAC;gBAC/B,cAAc,EAAE;oBACZ,iEAAiE;oBACjE,+BAA+B,SAAS,EAAE;oBAC1C,6BAA6B,mBAAmB,EAAE;oBAClD,0BAA0B,aAAa,CAAC,eAAe,CAAC,kBAAkB,YAAY;iBACzF,CAAC,IAAI,CAAC,IAAI,CAAC;gBACZ,sBAAsB,EAAE,KAAK;aAChC,CAAC,CAAC;QACP,CAAC;IACL,CAAC;IAED,OAAO,IAAI,uBAAuB,CAAC;QAC/B,cAAc,EAAE;YACZ,yBAAyB;YACzB,EAAE;YACF,sFAAsF;YACtF,0BAA0B,aAAa,CAAC,eAAe,CAAC,KAAK,WAAW;YACxE,6FAA6F;YAC7F,gFAAgF,qBAAqB,CACjG,EAAE,kBAAkB,EAAE,MAAM,EAAE,CACjC,EAAE;SACN,CAAC,IAAI,CAAC,IAAI,CAAC;QACZ,sBAAsB,EAAE,IAAI;KAC/B,CAAC,CAAC;AACP,CAAC;AAEM,KAAK,UAAU,sCAAsC,CAAC,MAK5D;IACG,MAAM,EAAE,WAAW,EAAE,SAAS,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC;IAE9D,cAAc,EAAE,CAAC;QACb,IAAI,QAAQ,EAAE,CAAC;YACX,MAAM,cAAc,CAAC;QACzB,CAAC;QAED,MAAM,cAAc,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,CAAC,IAAI,CAChD,QAAQ,CAAC,EAAE;YACP,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACf,OAAO,IAAI,KAAK,CAAC,GAAG,WAAW,qBAAqB,QAAQ,CAAC,MAAM,eAAe,CAAC,CAAC;YACxF,CAAC;YAED,OAAO;gBACH,yBAAyB,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC;gBAC1E,iBAAiB,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;aAC7D,CAAC;QACN,CAAC,EACD,CAAC,KAAY,EAAE,EAAE,CAAC,KAAK,CAC1B,CAAC;QAEF,IAAI,cAAc,YAAY,KAAK,EAAE,CAAC;YAClC,OAAO,IAAI,uBAAuB,CAAC;gBAC/B,sBAAsB,EAAE,KAAK;gBAC7B,cAAc,EAAE,IAAI,KAAK,CACrB,qFAAqF;gBACrF,mBAAmB;gBACnB,EAAE,KAAK,EAAE,UAAU,EAAE,CACxB;aACJ,CAAC,CAAC;QACP,CAAC;QAED,MAAM,OAAO,GAAG,cAAc,CAAC;QAE/B,IAAI,WAAW,GAAG,CAAC,GAAG,EAAE;YACpB,KAAK,EAAE,CAAC;gBACJ,MAAM,GAAG,GAAG,yBAAkC,CAAC;gBAE/C,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;gBAE5B,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;oBAClB,MAAM,KAAK,CAAC;gBAChB,CAAC;gBAED,MAAM,qBAAqB,GAAG,MAAM;qBAC/B,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC;qBACpB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;qBACpB,WAAW,EAAE;qBACb,QAAQ,CAAC,sBAAsB,CAAC,CAAC;gBAEtC,IAAI,CAAC,qBAAqB,EAAE,CAAC;oBACzB,MAAM,KAAK,CAAC;gBAChB,CAAC;gBAED,OAAO,GAAG,CAAC;YACf,CAAC;YAED,KAAK,EAAE,CAAC;gBACJ,MAAM,GAAG,GAAG,iBAA0B,CAAC;gBAEvC,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;gBAE5B,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;oBAClB,MAAM,KAAK,CAAC;gBAChB,CAAC;gBAED,MAAM,qBAAqB,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;gBAEpE,IAAI,CAAC,qBAAqB,EAAE,CAAC;oBACzB,MAAM,KAAK,CAAC;gBAChB,CAAC;gBAED,OAAO,GAAG,CAAC;YACf,CAAC;YAED,OAAO,SAAS,CAAC;QACrB,CAAC,CAAC,EAAE,CAAC;QAEL,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;YAC5B,MAAM,cAAc,CAAC;QACzB,CAAC;QAED,OAAO,IAAI,uBAAuB,CAAC;YAC/B,sBAAsB,EAAE,KAAK;YAC7B,cAAc,EAAE;gBACZ,GAAG,WAAW,kEAAkE,WAAW,KAAK,OAAO,CAAC,WAAW,CAAC,OAAO;gBAC3H,iEAAiE;gBACjE,oHAAoH;aACvH,CAAC,IAAI,CAAC,GAAG,CAAC;SACd,CAAC,CAAC;IACP,CAAC;IAED,8EAA8E;IAC9E,gFAAgF;IAChF,sEAAsE;IACtE,4FAA4F;IAC5F,qDAAqD;IACrD,OAAO,IAAI,uBAAuB,CAAC;QAC/B,sBAAsB,EAAE,KAAK;QAC7B,cAAc,EAAE;YACZ,yCAAyC;YACzC,6EAA6E;YAC7E,2BAA2B,QAAQ,wBAAwB;YAC3D,iFAAiF;YACjF,eAAe,QAAQ,KAAK;YAC5B,4DAA4D,WAAW,OAAO;YAC9E,GAAG,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE;gBAClB,IAAI,CAAC,IAAA,uBAAU,EAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;oBAC7B,OAAO;wBACH,oIAAoI;qBACvI,CAAC;gBACN,CAAC;gBAED,MAAM,EAAE,GAAG,CAAC,wDAAa,aAAa,GAAC,CAAC,CAAC,mBAAmB,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC;gBAE5E,OAAO;oBACH,+EAA+E;oBAC/E,wCAAwC,EAAE,CAAC,sBAAsB,IAAI;oBACrE,+BAA+B;oBAC/B,+CAA+C,EAAE,CAAC,eAAe,CAAC,KAAK,MAAM;oBAC7E,4CAA4C;oBAC5C,yBAAyB,QAAQ,kCAAkC;oBACnE,0CAA0C,WAAW,kBAAkB;oBACvE,0BAA0B;oBAC1B,mHAAmH;iBACtH,CAAC;YACN,CAAC,CAAC,EAAE,CAAC;YACL,MAAM;YACN,wHAAwH;YACxH,mDAAmD;SACtD,CAAC,IAAI,CAAC,GAAG,CAAC;KACd,CAAC,CAAC;AACP,CAAC;AAEM,KAAK,UAAU,mDAAmD,CAAC,MAGzE;IACG,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC;IAEvC,OAAO,IAAI,uBAAuB,CAAC;QAC/B,sBAAsB,EAAE,KAAK;QAC7B,cAAc,EAAE;YACZ,uCAAuC;YACvC,wCAAwC;YACxC,6BAA6B,MAAM,CAAC,QAAQ,CAAC,MAAM,8BAA8B;YACjF,WAAW,QAAQ,+CAA+C;YAClE,IAAI;YACJ,GAAG,CAAC,MAAM,CAAC,KAAK,IAAI,EAAE;gBAClB,IAAI,CAAC,IAAA,uBAAU,EAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;oBAC7B,OAAO;wBACH,oIAAoI;qBACvI,CAAC;gBACN,CAAC;gBAED,MAAM,EAAE,GAAG,CAAC,wDAAa,aAAa,GAAC,CAAC,CAAC,mBAAmB,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC;gBAE5E,OAAO;oBACH,6EAA6E;oBAC7E,wCAAwC,EAAE,CAAC,sBAAsB,IAAI;oBACrE,+BAA+B;oBAC/B,+CAA+C,EAAE,CAAC,eAAe,CAAC,KAAK,MAAM;oBAC7E,4CAA4C;oBAC5C,YAAY,QAAQ,6CAA6C;oBACjE,kCAAkC,MAAM,CAAC,QAAQ,CAAC,MAAM,kBAAkB;oBAC1E,0BAA0B;oBAC1B,4EAA4E;iBAC/E,CAAC;YACN,CAAC,CAAC,EAAE,CAAC;SACR,CAAC,IAAI,CAAC,GAAG,CAAC;KACd,CAAC,CAAC;AACP,CAAC"}

package/core/OidcMetadata.js

@@ -1,5 +1,5 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-var tsafe_1 = require("../vendor/frontend/tsafe");
+const tsafe_1 = require("../vendor/frontend/tsafe");
 tsafe_1.assert;
 //# sourceMappingURL=OidcMetadata.js.map

package/core/OidcMetadata.js.map

@@ -1 +1 @@
-{"version":3,"file":"OidcMetadata.js","sourceRoot":"","sources":["../src/core/OidcMetadata.ts"],"names":[],"mappings":";;AACA,kDAA+D;AA6Q/D,cAAsD,CAAC"}
+{"version":3,"file":"OidcMetadata.js","sourceRoot":"","sources":["../src/core/OidcMetadata.ts"],"names":[],"mappings":";;AACA,oDAA+D;AA6Q/D,cAAsD,CAAC"}