openid-client 5.3.1 → 5.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/README.md +20 -12
  2. package/lib/helpers/deep_clone.js +1 -3
  3. package/lib/helpers/keystore.js +1 -4
  4. package/lib/passport_strategy.js +5 -0
  5. package/package.json +1 -1
package/README.md CHANGED
@@ -93,6 +93,11 @@ Node.js LTS releases Codename Erbium and newer LTS releases are supported.
93
93
  npm install openid-client
94
94
  ```
95
95
 
96
+ Note: Other javascript runtimes are not supported.
97
+ I recommend [panva/oauth4webapi][oauth4webapi], or a derivate thereof, if you're
98
+ looking for a similarly compliant and certified client software that's not dependent
99
+ on the Node.js runtime builtins.
100
+
96
101
  ## Quick start
97
102
 
98
103
  Discover an Issuer configuration using its published .well-known endpoints
@@ -252,8 +257,10 @@ private API and is subject to change between any versions.
252
257
 
253
258
  #### How do I use it outside of Node.js
254
259
 
255
- It is **only built for Node.js** environments - including openid-client in
256
- browser-environment targeted projects is not supported.
260
+ It is **only built for Node.js**. Other javascript runtimes are not supported.
261
+ I recommend [panva/oauth4webapi][oauth4webapi], or a derivate thereof, if you're
262
+ looking for a similarly compliant and certified client software that's not dependent
263
+ on the Node.js runtime builtins.
257
264
 
258
265
  #### How to make the client send client_id and client_secret in the body?
259
266
 
@@ -284,14 +291,15 @@ See [Customizing (docs)][documentation-customizing].
284
291
  [npm-url]: https://www.npmjs.com/package/openid-client
285
292
  [sponsor-auth0]: https://a0.to/try-auth0
286
293
  [support-sponsor]: https://github.com/sponsors/panva
287
- [documentation]: https://github.com/panva/node-openid-client/blob/master/docs/README.md
288
- [documentation-issuer]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#issuer
289
- [documentation-client]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#client
290
- [documentation-customizing]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#customizing
291
- [documentation-tokenset]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#tokenset
292
- [documentation-strategy]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#strategy
293
- [documentation-errors]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#errors
294
- [documentation-generators]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#generators
295
- [documentation-methods]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#client-authentication-methods
296
- [documentation-webfinger]: https://github.com/panva/node-openid-client/blob/master/docs/README.md#issuerwebfingerinput
294
+ [documentation]: https://github.com/panva/node-openid-client/blob/main/docs/README.md
295
+ [documentation-issuer]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#issuer
296
+ [documentation-client]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#client
297
+ [documentation-customizing]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#customizing
298
+ [documentation-tokenset]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#tokenset
299
+ [documentation-strategy]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#strategy
300
+ [documentation-errors]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#errors
301
+ [documentation-generators]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#generators
302
+ [documentation-methods]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#client-authentication-methods
303
+ [documentation-webfinger]: https://github.com/panva/node-openid-client/blob/main/docs/README.md#issuerwebfingerinput
297
304
  [express-openid-connect]: https://www.npmjs.com/package/express-openid-connect
305
+ [oauth4webapi]: https://github.com/panva/oauth4webapi#readme
package/lib/helpers/deep_clone.js CHANGED
@@ -1,3 +1 @@
1
- const { serialize, deserialize } = require('v8');
2
-
3
- module.exports = globalThis.structuredClone || ((obj) => deserialize(serialize(obj)));
1
+ module.exports = globalThis.structuredClone || JSON.parse(JSON.stringify(obj));
package/lib/helpers/keystore.js CHANGED
@@ -1,9 +1,6 @@
1
- const v8 = require('v8');
2
-
3
1
  const jose = require('jose');
4
2
 
5
- const clone = globalThis.structuredClone || ((value) => v8.deserialize(v8.serialize(value)));
6
-
3
+ const clone = require('./deep_clone');
7
4
  const isPlainObject = require('./is_plain_object');
8
5
  const isKeyObject = require('./is_key_object');
9
6
 
package/lib/passport_strategy.js CHANGED
@@ -41,6 +41,11 @@ function OpenIDConnectStrategy(
41
41
  this._usePKCE = usePKCE;
42
42
  this._key = sessionKey || `oidc:${url.parse(this._issuer.issuer).hostname}`;
43
43
  this._params = cloneDeep(params);
44
+
45
+ // state and nonce are handled in authenticate()
46
+ delete this._params.state;
47
+ delete this._params.nonce;
48
+
44
49
  this._extras = cloneDeep(extras);
45
50
 
46
51
  if (!this._params.response_type) this._params.response_type = resolveResponseType.call(client);
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "openid-client",
3
- "version": "5.3.1",
3
+ "version": "5.3.3",
4
4
  "description": "OpenID Connect Relying Party (RP, Client) implementation for Node.js runtime, supports passportjs",
5
5
  "keywords": [
6
6
  "auth",