piral-oidc 1.0.0-pre.2036 → 1.0.0

package/esm/types.js

@@ -0,0 +1,61 @@
+/**
+ * The available log levels.
+ */
+export var LogLevel;
+(function (LogLevel) {
+    /**
+     * Logging disabled.
+     */
+    LogLevel["none"] = "none";
+    /**
+     * Only log on error.
+     */
+    LogLevel["error"] = "error";
+    /**
+     * Start logging when its at least a warning.
+     */
+    LogLevel["warn"] = "warn";
+    /**
+     * Already start logging on info level.
+     */
+    LogLevel["info"] = "info";
+    /**
+     * Log everything - good for debugging purposes.
+     */
+    LogLevel["debug"] = "debug";
+})(LogLevel || (LogLevel = {}));
+/**
+ * The available error types.
+ */
+export var OidcErrorType;
+(function (OidcErrorType) {
+    /**
+     * This error was thrown at some point during authentication, by the browser or by oidc-client
+     * and we are unable to handle it.
+     */
+    OidcErrorType["unknown"] = "unknown";
+    /**
+     * This error happens when the user does not have an access token during Authentication.
+     * It is an expected error, and should be handled during `handleAuthentication()` calls.
+     * If doing manual authentication, prompt the user to `login()` when receiving it.
+     */
+    OidcErrorType["notAuthorized"] = "notAuthorized";
+    /**
+     * This error happens when silent renew fails in the background. It is not expected, and
+     * signifies a network error or configuration problem.
+     */
+    OidcErrorType["silentRenewFailed"] = "silentRenewFailed";
+    /**
+     * This is an unexpected error that happens when the `token()` call retrieves a User from
+     * the user manager, but it does not have an access_token. This signifies a configuration
+     * error, make sure the correct `scopes` are supplied during configuration.
+     */
+    OidcErrorType["invalidToken"] = "invalidToken";
+    /**
+     * This error happened during an Open ID callback. This signifies a network or configuration error
+     * which is non-recoverable. This should be logged to a logging service, and the user should be
+     * prompted to logout().
+     */
+    OidcErrorType["oidcCallback"] = "oidcCallback";
+})(OidcErrorType || (OidcErrorType = {}));
+//# sourceMappingURL=types.js.map

package/esm/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAuGA;;GAEG;AACH,MAAM,CAAN,IAAY,QAqBX;AArBD,WAAY,QAAQ;IAClB;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,2BAAe,CAAA;IACf;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,2BAAe,CAAA;AACjB,CAAC,EArBW,QAAQ,KAAR,QAAQ,QAqBnB;AA8FD;;GAEG;AACH,MAAM,CAAN,IAAY,aA6BX;AA7BD,WAAY,aAAa;IACvB;;;OAGG;IACH,oCAAmB,CAAA;IACnB;;;;OAIG;IACH,gDAA+B,CAAA;IAC/B;;;OAGG;IACH,wDAAuC,CAAA;IACvC;;;;OAIG;IACH,8CAA6B,CAAA;IAC7B;;;;OAIG;IACH,8CAA6B,CAAA;AAC/B,CAAC,EA7BW,aAAa,KAAb,aAAa,QA6BxB"}

package/lib/OidcError.js

@@ -1,16 +1,14 @@
 "use strict";
-var _a;
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.OidcError = void 0;
-var tslib_1 = require("tslib");
-var types_1 = require("./types");
-var errorMessageMap = (_a = {},
-    _a[types_1.OidcErrorType.notAuthorized] = 'Not logged in. Please call `login()` to retrieve a token.',
-    _a[types_1.OidcErrorType.silentRenewFailed] = 'Silent renew failed to retrieve access token.',
-    _a[types_1.OidcErrorType.invalidToken] = 'Invalid token during authentication',
-    _a);
-var getErrorMessage = function (type, innerError) {
-    var message = errorMessageMap[type];
+const types_1 = require("./types");
+const errorMessageMap = {
+    [types_1.OidcErrorType.notAuthorized]: 'Not logged in. Please call `login()` to retrieve a token.',
+    [types_1.OidcErrorType.silentRenewFailed]: 'Silent renew failed to retrieve access token.',
+    [types_1.OidcErrorType.invalidToken]: 'Invalid token during authentication',
+};
+const getErrorMessage = (type, innerError) => {
+    const message = errorMessageMap[type];
     return message || (innerError ? innerError.toString() : 'an unexpected error has occurred without a message');
 };
 /**
@@ -20,21 +18,17 @@ var getErrorMessage = function (type, innerError) {
  * An optional innerError can be supplied in order to not lose visibility on messages provided
  * by oidc-client.
  */
-var OidcError = /** @class */ (function (_super) {
-    tslib_1.__extends(OidcError, _super);
-    function OidcError(errorType, innerError) {
-        var _this = this;
-        var message = getErrorMessage(errorType, innerError);
-        _this = _super.call(this, message) || this;
+class OidcError extends Error {
+    constructor(errorType, innerError) {
+        const message = getErrorMessage(errorType, innerError);
+        super(message);
         if (Error.captureStackTrace) {
-            Error.captureStackTrace(_this, OidcError);
+            Error.captureStackTrace(this, OidcError);
         }
-        _this.name = 'OidcError';
-        _this.type = errorType;
-        _this.innerError = innerError;
-        return _this;
+        this.name = 'OidcError';
+        this.type = errorType;
+        this.innerError = innerError;
     }
-    return OidcError;
-}(Error));
+}
 exports.OidcError = OidcError;
 //# sourceMappingURL=OidcError.js.map

package/lib/OidcError.js.map

@@ -1 +1 @@
-{"version":3,"file":"OidcError.js","sourceRoot":"","sources":["../src/OidcError.ts"],"names":[],"mappings":";;;;;AAAA,iCAAwD;AAExD,IAAM,eAAe;IACnB,GAAC,qBAAa,CAAC,aAAa,IAAG,2DAA2D;IAC1F,GAAC,qBAAa,CAAC,iBAAiB,IAAG,+CAA+C;IAClF,GAAC,qBAAa,CAAC,YAAY,IAAG,qCAAqC;OACpE,CAAC;AAEF,IAAM,eAAe,GAAG,UAAC,IAAmB,EAAE,UAA2B;IACvE,IAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC;IACtC,OAAO,OAAO,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,oDAAoD,CAAC,CAAC;AAChH,CAAC,CAAC;AAEF;;;;;;GAMG;AACH;IAA+B,qCAAK;IAIlC,mBAAY,SAAwB,EAAE,UAA2B;QAAjE,iBAWC;QAVC,IAAM,OAAO,GAAG,eAAe,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QACvD,QAAA,kBAAM,OAAO,CAAC,SAAC;QAEf,IAAI,KAAK,CAAC,iBAAiB,EAAE;YAC3B,KAAK,CAAC,iBAAiB,CAAC,KAAI,EAAE,SAAS,CAAC,CAAC;SAC1C;QAED,KAAI,CAAC,IAAI,GAAG,WAAW,CAAC;QACxB,KAAI,CAAC,IAAI,GAAG,SAAS,CAAC;QACtB,KAAI,CAAC,UAAU,GAAG,UAAU,CAAC;;IAC/B,CAAC;IACH,gBAAC;AAAD,CAAC,AAhBD,CAA+B,KAAK,GAgBnC;AAhBY,8BAAS"}
+{"version":3,"file":"OidcError.js","sourceRoot":"","sources":["../src/OidcError.ts"],"names":[],"mappings":";;;AAAA,mCAAwD;AAExD,MAAM,eAAe,GAAG;IACtB,CAAC,qBAAa,CAAC,aAAa,CAAC,EAAE,2DAA2D;IAC1F,CAAC,qBAAa,CAAC,iBAAiB,CAAC,EAAE,+CAA+C;IAClF,CAAC,qBAAa,CAAC,YAAY,CAAC,EAAE,qCAAqC;CACpE,CAAC;AAEF,MAAM,eAAe,GAAG,CAAC,IAAmB,EAAE,UAA2B,EAAE,EAAE;IAC3E,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC;IACtC,OAAO,OAAO,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,oDAAoD,CAAC,CAAC;AAChH,CAAC,CAAC;AAEF;;;;;;GAMG;AACH,MAAa,SAAU,SAAQ,KAAK;IAIlC,YAAY,SAAwB,EAAE,UAA2B;QAC/D,MAAM,OAAO,GAAG,eAAe,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QACvD,KAAK,CAAC,OAAO,CAAC,CAAC;QAEf,IAAI,KAAK,CAAC,iBAAiB,EAAE;YAC3B,KAAK,CAAC,iBAAiB,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;SAC1C;QAED,IAAI,CAAC,IAAI,GAAG,WAAW,CAAC;QACxB,IAAI,CAAC,IAAI,GAAG,SAAS,CAAC;QACtB,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;IAC/B,CAAC;CACF;AAhBD,8BAgBC"}

package/lib/create.d.ts

@@ -1,6 +1,6 @@
 import { PiralPlugin } from 'piral-core';
-import { PiralOidcApi, OidcClient } from './types';
+import { PiletOidcApi, OidcClient } from './types';
 /**
  * Creates new Pilet API extensions for the integration of OpenID Connect.
  */
-export declare function createOidcApi(client: OidcClient): PiralPlugin<PiralOidcApi>;
+export declare function createOidcApi(client: OidcClient): PiralPlugin<PiletOidcApi>;

package/lib/create.js

@@ -5,13 +5,13 @@ exports.createOidcApi = void 0;
  * Creates new Pilet API extensions for the integration of OpenID Connect.
  */
 function createOidcApi(client) {
-    return function (context) {
+    return (context) => {
         context.on('before-fetch', client.extendHeaders);
         return {
-            getAccessToken: function () {
+            getAccessToken() {
                 return client.token();
             },
-            getProfile: function () {
+            getProfile() {
                 return client.account();
             },
         };

package/lib/create.js.map

@@ -1 +1 @@
-{"version":3,"file":"create.js","sourceRoot":"","sources":["../src/create.ts"],"names":[],"mappings":";;;AAGA;;GAEG;AACH,SAAgB,aAAa,CAAC,MAAkB;IAC9C,OAAO,UAAC,OAAO;QACb,OAAO,CAAC,EAAE,CAAC,cAAc,EAAE,MAAM,CAAC,aAAa,CAAC,CAAC;QAEjD,OAAO;YACL,cAAc;gBACZ,OAAO,MAAM,CAAC,KAAK,EAAE,CAAC;YACxB,CAAC;YAED,UAAU;gBACR,OAAO,MAAM,CAAC,OAAO,EAAE,CAAC;YAC1B,CAAC;SACF,CAAC;IACJ,CAAC,CAAC;AACJ,CAAC;AAdD,sCAcC"}
+{"version":3,"file":"create.js","sourceRoot":"","sources":["../src/create.ts"],"names":[],"mappings":";;;AAGA;;GAEG;AACH,SAAgB,aAAa,CAAC,MAAkB;IAC9C,OAAO,CAAC,OAAO,EAAE,EAAE;QACjB,OAAO,CAAC,EAAE,CAAC,cAAc,EAAE,MAAM,CAAC,aAAa,CAAC,CAAC;QAEjD,OAAO;YACL,cAAc;gBACZ,OAAO,MAAM,CAAC,KAAK,EAAE,CAAC;YACxB,CAAC;YAED,UAAU;gBACR,OAAO,MAAM,CAAC,OAAO,EAAE,CAAC;YAC1B,CAAC;SACF,CAAC;IACJ,CAAC,CAAC;AACJ,CAAC;AAdD,sCAcC"}

package/lib/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-var tslib_1 = require("tslib");
+const tslib_1 = require("tslib");
 tslib_1.__exportStar(require("./create"), exports);
 tslib_1.__exportStar(require("./setup"), exports);
 tslib_1.__exportStar(require("./types"), exports);

package/lib/setup.js

@@ -1,18 +1,17 @@
 "use strict";
-var _a;
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.setupOidcClient = void 0;
-var tslib_1 = require("tslib");
-var oidc_client_1 = require("oidc-client");
-var OidcError_1 = require("./OidcError");
-var types_1 = require("./types");
-var logLevelToOidcMap = (_a = {},
-    _a[types_1.LogLevel.none] = 0,
-    _a[types_1.LogLevel.error] = 1,
-    _a[types_1.LogLevel.warn] = 2,
-    _a[types_1.LogLevel.info] = 3,
-    _a[types_1.LogLevel.debug] = 4,
-    _a);
+const tslib_1 = require("tslib");
+const oidc_client_1 = require("oidc-client");
+const OidcError_1 = require("./OidcError");
+const types_1 = require("./types");
+const logLevelToOidcMap = {
+    [types_1.LogLevel.none]: 0,
+    [types_1.LogLevel.error]: 1,
+    [types_1.LogLevel.warn]: 2,
+    [types_1.LogLevel.info]: 3,
+    [types_1.LogLevel.debug]: 4,
+};
 function doesWindowLocationMatch(targetUri) {
     return window.location.pathname === new URL(targetUri).pathname;
 }
@@ -24,10 +23,9 @@ function convertLogLevelToOidcClient(level) {
  * @param config The configuration for the client.
  */
 function setupOidcClient(config) {
-    var _this = this;
-    var clientId = config.clientId, clientSecret = config.clientSecret, identityProviderUri = config.identityProviderUri, _a = config.redirectUri, redirectUri = _a === void 0 ? location.origin + "/auth" : _a, signInRedirectParams = config.signInRedirectParams, _b = config.postLogoutRedirectUri, postLogoutRedirectUri = _b === void 0 ? location.origin : _b, responseType = config.responseType, scopes = config.scopes, _c = config.restrict, restrict = _c === void 0 ? false : _c, parentName = config.parentName, appUri = config.appUri, logLevel = config.logLevel, userStore = config.userStore;
-    var isMainWindow = function () { var _a; return (parentName ? parentName === ((_a = window.parent) === null || _a === void 0 ? void 0 : _a.name) : window === window.top); };
-    var userManager = new oidc_client_1.UserManager({
+    const { clientId, clientSecret, identityProviderUri, redirectUri = `${location.origin}/auth`, signInRedirectParams, postLogoutRedirectUri = location.origin, responseType, responseMode, scopes, restrict = false, parentName, appUri, logLevel, userStore, extraQueryParams, uiLocales, metadata, metadataUrl, monitorSession, } = config;
+    const isMainWindow = () => { var _a; return (parentName ? parentName === ((_a = window.parent) === null || _a === void 0 ? void 0 : _a.name) : window === window.top); };
+    const userManager = new oidc_client_1.UserManager({
         authority: identityProviderUri,
         redirect_uri: redirectUri,
         silent_redirect_uri: redirectUri,
@@ -37,7 +35,13 @@ function setupOidcClient(config) {
         client_secret: clientSecret,
         response_type: responseType,
         scope: scopes === null || scopes === void 0 ? void 0 : scopes.join(' '),
-        userStore: userStore,
+        userStore,
+        extraQueryParams,
+        ui_locales: uiLocales,
+        response_mode: responseMode,
+        metadata,
+        metadataUrl,
+        monitorSession,
     });
     if (logLevel !== undefined) {
         oidc_client_1.Log.logger = console;
@@ -55,11 +59,11 @@ function setupOidcClient(config) {
             userManager.signoutPopupCallback();
         }
     }
-    var retrieveToken = function () {
-        return new Promise(function (res, rej) {
+    const retrieveToken = () => {
+        return new Promise((res, rej) => {
             userManager
                 .getUser()
-                .then(function (user) {
+                .then((user) => {
                 if (!user) {
                     rej(new OidcError_1.OidcError(types_1.OidcErrorType.notAuthorized));
                 }
@@ -67,7 +71,7 @@ function setupOidcClient(config) {
                     res(user.access_token);
                 }
                 else {
-                    return userManager.signinSilent().then(function (user) {
+                    return userManager.signinSilent().then((user) => {
                         if (!user) {
                             return rej(new OidcError_1.OidcError(types_1.OidcErrorType.silentRenewFailed));
                         }
@@ -78,141 +82,119 @@ function setupOidcClient(config) {
                     });
                 }
             })
-                .catch(function (err) { return rej(new OidcError_1.OidcError(types_1.OidcErrorType.unknown, err)); });
+                .catch((err) => rej(new OidcError_1.OidcError(types_1.OidcErrorType.unknown, err)));
         });
     };
-    var retrieveProfile = function () {
-        return new Promise(function (res, rej) {
-            userManager.getUser().then(function (user) {
+    const retrieveProfile = () => {
+        return new Promise((res, rej) => {
+            userManager.getUser().then((user) => {
                 if (!user || user.expires_in <= 0) {
                     return rej(new OidcError_1.OidcError(types_1.OidcErrorType.notAuthorized));
                 }
                 else {
                     return res(user.profile);
                 }
-            }, function (err) { return rej(new OidcError_1.OidcError(types_1.OidcErrorType.unknown, err)); });
+            }, (err) => rej(new OidcError_1.OidcError(types_1.OidcErrorType.unknown, err)));
         });
     };
-    var handleAuthentication = function () {
-        return new Promise(function (resolve, reject) { return tslib_1.__awaiter(_this, void 0, void 0, function () {
-            var user, e_1, e_2;
-            var _this = this;
-            return tslib_1.__generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!((doesWindowLocationMatch(userManager.settings.silent_redirect_uri) ||
-                            doesWindowLocationMatch(userManager.settings.popup_redirect_uri)) &&
-                            !isMainWindow())) return [3 /*break*/, 5];
-                        _a.label = 1;
-                    case 1:
-                        _a.trys.push([1, 3, , 4]);
-                        return [4 /*yield*/, userManager.signinSilentCallback()];
-                    case 2:
-                        user = _a.sent();
-                        return [3 /*break*/, 4];
-                    case 3:
-                        e_1 = _a.sent();
-                        return [2 /*return*/, reject(new OidcError_1.OidcError(types_1.OidcErrorType.oidcCallback, e_1))];
-                    case 4: return [2 /*return*/, resolve({
-                            shouldRender: false,
-                            state: user === null || user === void 0 ? void 0 : user.state,
-                        })];
-                    case 5:
-                        if (!(doesWindowLocationMatch(userManager.settings.redirect_uri) && isMainWindow())) return [3 /*break*/, 10];
-                        _a.label = 6;
-                    case 6:
-                        _a.trys.push([6, 8, , 9]);
-                        return [4 /*yield*/, userManager.signinCallback()];
-                    case 7:
-                        user = _a.sent();
-                        return [3 /*break*/, 9];
-                    case 8:
-                        e_2 = _a.sent();
-                        /*
-                         * Failing to handle a sign-in callback is non-recoverable. The user is expected to call `logout()`, after
-                         * logging this error to their internal error-handling service. Usually, this is due to a misconfigured auth server.
-                         */
-                        return [2 /*return*/, reject(new OidcError_1.OidcError(types_1.OidcErrorType.oidcCallback, e_2))];
-                    case 9:
-                        if (appUri) {
-                            oidc_client_1.Log.debug("Redirecting to " + appUri + " due to appUri being configured.");
-                            window.location.href = appUri;
-                            return [2 /*return*/, resolve({
-                                    shouldRender: false,
-                                    state: user === null || user === void 0 ? void 0 : user.state,
-                                })];
-                        }
-                        /* If appUri is not configured, we let the user decide what to do after getting a session. */
-                        return [2 /*return*/, resolve({
-                                shouldRender: true,
-                                state: user === null || user === void 0 ? void 0 : user.state,
-                            })];
-                    case 10: 
-                    /*
-                     * The current page is a normal flow, not a callback or signout. We should retrieve the current access_token,
-                     * or log the user in if there is no current session.
-                     * This branch of code should also tell the user to render the main application.
-                     */
-                    return [2 /*return*/, retrieveToken()
-                            .then(function (token) {
-                            if (token) {
-                                return resolve({ shouldRender: true });
-                            }
-                            else {
-                                /* We should never get into this state, retrieveToken() should reject if there is no token */
-                                return reject(new OidcError_1.OidcError(types_1.OidcErrorType.invalidToken));
-                            }
-                        })
-                            .catch(function (reason) { return tslib_1.__awaiter(_this, void 0, void 0, function () {
-                            return tslib_1.__generator(this, function (_a) {
-                                switch (_a.label) {
-                                    case 0:
-                                        if (!(reason.type === types_1.OidcErrorType.notAuthorized)) return [3 /*break*/, 2];
-                                        /*
-                                         * Expected Error during normal code flow:
-                                         * This is the first time logging in since a logout (or ever), instead of asking the user
-                                         * to call `login()`, just perform it ourself here.
-                                         *
-                                         * The resolve shouldn't matter, as `signinRedirect` will redirect the browser location
-                                         * to the user's configured redirectUri.
-                                         */
-                                        return [4 /*yield*/, userManager.signinRedirect(signInRedirectParams)];
-                                    case 1:
-                                        /*
-                                         * Expected Error during normal code flow:
-                                         * This is the first time logging in since a logout (or ever), instead of asking the user
-                                         * to call `login()`, just perform it ourself here.
-                                         *
-                                         * The resolve shouldn't matter, as `signinRedirect` will redirect the browser location
-                                         * to the user's configured redirectUri.
-                                         */
-                                        _a.sent();
-                                        return [2 /*return*/, resolve({ shouldRender: false })];
-                                    case 2: 
-                                    /*
-                                     * Getting here is a non-recoverable error. It is up to the user to determine what to do.
-                                     * Usually this is a result of failing to reach the authentication server, or a misconfigured
-                                     * authentication server, or a bad clock skew (commonly caused by docker in windows).
-                                     */
-                                    return [2 /*return*/, reject(reason)];
-                                }
-                            });
-                        }); })];
-                }
+    const handleAuthentication = () => new Promise((resolve, reject) => tslib_1.__awaiter(this, void 0, void 0, function* () {
+        /** The user that is resolved when finishing the callback  */
+        let user;
+        if ((doesWindowLocationMatch(userManager.settings.silent_redirect_uri) ||
+            doesWindowLocationMatch(userManager.settings.popup_redirect_uri)) &&
+            !isMainWindow()) {
+            /*
+             * This is a silent redirect frame. The correct behavior is to notify the parent of the updated user,
+             * and then to do nothing else. Encountering an error here means the background IFrame failed
+             * to update the parent. This is usually due to a timeout from a network error.
+             */
+            try {
+                user = yield userManager.signinSilentCallback();
+            }
+            catch (e) {
+                return reject(new OidcError_1.OidcError(types_1.OidcErrorType.oidcCallback, e));
+            }
+            return resolve({
+                shouldRender: false,
+                state: user === null || user === void 0 ? void 0 : user.state,
             });
-        }); });
-    };
+        }
+        if (doesWindowLocationMatch(userManager.settings.redirect_uri) && isMainWindow()) {
+            try {
+                user = yield userManager.signinCallback();
+            }
+            catch (e) {
+                /*
+                 * Failing to handle a sign-in callback is non-recoverable. The user is expected to call `logout()`, after
+                 * logging this error to their internal error-handling service. Usually, this is due to a misconfigured auth server.
+                 */
+                return reject(new OidcError_1.OidcError(types_1.OidcErrorType.oidcCallback, e));
+            }
+            if (appUri) {
+                oidc_client_1.Log.debug(`Redirecting to ${appUri} due to appUri being configured.`);
+                window.location.href = appUri;
+                return resolve({
+                    shouldRender: false,
+                    state: user === null || user === void 0 ? void 0 : user.state,
+                });
+            }
+            /* If appUri is not configured, we let the user decide what to do after getting a session. */
+            return resolve({
+                shouldRender: true,
+                state: user === null || user === void 0 ? void 0 : user.state,
+            });
+        }
+        /*
+         * The current page is a normal flow, not a callback or signout. We should retrieve the current access_token,
+         * or log the user in if there is no current session.
+         * This branch of code should also tell the user to render the main application.
+         */
+        return retrieveToken()
+            .then((token) => {
+            if (token) {
+                return resolve({ shouldRender: true });
+            }
+            else {
+                /* We should never get into this state, retrieveToken() should reject if there is no token */
+                return reject(new OidcError_1.OidcError(types_1.OidcErrorType.invalidToken));
+            }
+        })
+            .catch((reason) => tslib_1.__awaiter(this, void 0, void 0, function* () {
+            if (reason.type === types_1.OidcErrorType.notAuthorized) {
+                /*
+                 * Expected Error during normal code flow:
+                 * This is the first time logging in since a logout (or ever), instead of asking the user
+                 * to call `login()`, just perform it ourself here.
+                 *
+                 * The resolve shouldn't matter, as `signinRedirect` will redirect the browser location
+                 * to the user's configured redirectUri.
+                 */
+                yield userManager.signinRedirect(signInRedirectParams);
+                return resolve({ shouldRender: false });
+            }
+            /*
+             * Getting here is a non-recoverable error. It is up to the user to determine what to do.
+             * Usually this is a result of failing to reach the authentication server, or a misconfigured
+             * authentication server, or a bad clock skew (commonly caused by docker in windows).
+             */
+            return reject(reason);
+        }));
+    }));
     return {
-        login: function () {
+        _: userManager,
+        login() {
             return userManager.signinRedirect(signInRedirectParams);
         },
-        logout: function () {
+        logout() {
             return userManager.signoutRedirect();
         },
-        handleAuthentication: handleAuthentication,
-        extendHeaders: function (req) {
+        revoke() {
+            return userManager.revokeAccessToken();
+        },
+        handleAuthentication,
+        extendHeaders(req) {
             if (!restrict) {
-                req.setHeaders(retrieveToken().then(function (token) { return token && { Authorization: "Bearer " + token }; }, function () { return undefined; }));
+                req.setHeaders(retrieveToken().then((token) => token && { Authorization: `Bearer ${token}` }, () => undefined));
             }
         },
         token: retrieveToken,

package/lib/setup.js.map

@@ -1 +1 @@
-{"version":3,"file":"setup.js","sourceRoot":"","sources":["../src/setup.ts"],"names":[],"mappings":";;;;;AAAA,2CAAqD;AACrD,yCAAwC;AACxC,iCAA6G;AAE7G,IAAM,iBAAiB;IACrB,GAAC,gBAAQ,CAAC,IAAI,IAAG,CAAC;IAClB,GAAC,gBAAQ,CAAC,KAAK,IAAG,CAAC;IACnB,GAAC,gBAAQ,CAAC,IAAI,IAAG,CAAC;IAClB,GAAC,gBAAQ,CAAC,IAAI,IAAG,CAAC;IAClB,GAAC,gBAAQ,CAAC,KAAK,IAAG,CAAC;OACpB,CAAC;AAEF,SAAS,uBAAuB,CAAC,SAAiB;IAChD,OAAO,MAAM,CAAC,QAAQ,CAAC,QAAQ,KAAK,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC;AAClE,CAAC;AAED,SAAS,2BAA2B,CAAC,KAAe;IAClD,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAC;AAClC,CAAC;AAED;;;GAGG;AACH,SAAgB,eAAe,CAAC,MAAkB;IAAlD,iBAsMC;IApMG,IAAA,QAAQ,GAaN,MAAM,SAbA,EACR,YAAY,GAYV,MAAM,aAZI,EACZ,mBAAmB,GAWjB,MAAM,oBAXW,EACnB,KAUE,MAAM,YAV+B,EAAvC,WAAW,mBAAM,QAAQ,CAAC,MAAM,UAAO,KAAA,EACvC,oBAAoB,GASlB,MAAM,qBATY,EACpB,KAQE,MAAM,sBAR+B,EAAvC,qBAAqB,mBAAG,QAAQ,CAAC,MAAM,KAAA,EACvC,YAAY,GAOV,MAAM,aAPI,EACZ,MAAM,GAMJ,MAAM,OANF,EACN,KAKE,MAAM,SALQ,EAAhB,QAAQ,mBAAG,KAAK,KAAA,EAChB,UAAU,GAIR,MAAM,WAJE,EACV,MAAM,GAGJ,MAAM,OAHF,EACN,QAAQ,GAEN,MAAM,SAFA,EACR,SAAS,GACP,MAAM,UADC,CACA;IAEX,IAAM,YAAY,GAAG,sBAAM,OAAA,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,YAAK,MAAM,CAAC,MAAM,0CAAE,IAAI,CAAA,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,GAAG,CAAC,CAAA,EAAA,CAAC;IAErG,IAAM,WAAW,GAAG,IAAI,yBAAW,CAAC;QAClC,SAAS,EAAE,mBAAmB;QAC9B,YAAY,EAAE,WAAW;QACzB,mBAAmB,EAAE,WAAW;QAChC,kBAAkB,EAAE,WAAW;QAC/B,wBAAwB,EAAE,qBAAqB;QAC/C,SAAS,EAAE,QAAQ;QACnB,aAAa,EAAE,YAAY;QAC3B,aAAa,EAAE,YAAY;QAC3B,KAAK,EAAE,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAC,GAAG,CAAC;QACxB,SAAS,EAAE,SAAS;KACrB,CAAC,CAAC;IAEH,IAAI,QAAQ,KAAK,SAAS,EAAE;QAC1B,iBAAG,CAAC,MAAM,GAAG,OAAO,CAAC;QACrB,iBAAG,CAAC,KAAK,GAAG,2BAA2B,CAAC,QAAQ,CAAC,CAAC;KACnD;SAAM,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa,EAAE;QACjD,iBAAG,CAAC,MAAM,GAAG,OAAO,CAAC;QACrB,iBAAG,CAAC,KAAK,GAAG,iBAAG,CAAC,KAAK,CAAC;KACvB;IAED,IAAI,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,wBAAwB,CAAC,EAAE;QAC1E,IAAI,YAAY,EAAE,EAAE;YAClB,WAAW,CAAC,uBAAuB,EAAE,CAAC;SACvC;aAAM;YACL,WAAW,CAAC,oBAAoB,EAAE,CAAC;SACpC;KACF;IAED,IAAM,aAAa,GAAG;QACpB,OAAO,IAAI,OAAO,CAAS,UAAC,GAAG,EAAE,GAAG;YAClC,WAAW;iBACR,OAAO,EAAE;iBACT,IAAI,CAAC,UAAC,IAAI;gBACT,IAAI,CAAC,IAAI,EAAE;oBACT,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,aAAa,CAAC,CAAC,CAAC;iBACjD;qBAAM,IAAI,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,UAAU,GAAG,EAAE,EAAE;oBACpD,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;iBACxB;qBAAM;oBACL,OAAO,WAAW,CAAC,YAAY,EAAE,CAAC,IAAI,CAAC,UAAC,IAAI;wBAC1C,IAAI,CAAC,IAAI,EAAE;4BACT,OAAO,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,iBAAiB,CAAC,CAAC,CAAC;yBAC5D;wBACD,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE;4BACtB,OAAO,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,CAAC,CAAC,CAAC;yBACvD;wBACD,OAAO,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;oBAChC,CAAC,CAAC,CAAC;iBACJ;YACH,CAAC,CAAC;iBACD,KAAK,CAAC,UAAC,GAAG,IAAK,OAAA,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,EAA9C,CAA8C,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;IAEF,IAAM,eAAe,GAAG;QACtB,OAAO,IAAI,OAAO,CAAc,UAAC,GAAG,EAAE,GAAG;YACvC,WAAW,CAAC,OAAO,EAAE,CAAC,IAAI,CACxB,UAAC,IAAI;gBACH,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,IAAI,CAAC,EAAE;oBACjC,OAAO,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,aAAa,CAAC,CAAC,CAAC;iBACxD;qBAAM;oBACL,OAAO,GAAG,CAAC,IAAI,CAAC,OAAsB,CAAC,CAAC;iBACzC;YACH,CAAC,EACD,UAAC,GAAG,IAAK,OAAA,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,EAA9C,CAA8C,CACxD,CAAC;QACJ,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;IAEF,IAAM,oBAAoB,GAAG;QAC3B,OAAA,IAAI,OAAO,CAAC,UAAO,OAAO,EAAE,MAAM;;;;;;6BAI9B,CAAA,CAAC,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,mBAAmB,CAAC;4BAChE,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;4BACnE,CAAC,YAAY,EAAE,CAAA,EAFf,wBAEe;;;;wBAQN,qBAAM,WAAW,CAAC,oBAAoB,EAAE,EAAA;;wBAA/C,IAAI,GAAG,SAAwC,CAAC;;;;wBAEhD,sBAAO,MAAM,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,EAAE,GAAC,CAAC,CAAC,EAAC;4BAE9D,sBAAO,OAAO,CAAC;4BACb,YAAY,EAAE,KAAK;4BACnB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;yBACnB,CAAC,EAAC;;6BAGD,CAAA,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,YAAY,EAAE,CAAA,EAA5E,yBAA4E;;;;wBAErE,qBAAM,WAAW,CAAC,cAAc,EAAE,EAAA;;wBAAzC,IAAI,GAAG,SAAkC,CAAC;;;;wBAE1C;;;2BAGG;wBACH,sBAAO,MAAM,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,EAAE,GAAC,CAAC,CAAC,EAAC;;wBAG9D,IAAI,MAAM,EAAE;4BACV,iBAAG,CAAC,KAAK,CAAC,oBAAkB,MAAM,qCAAkC,CAAC,CAAC;4BACtE,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,MAAM,CAAC;4BAC9B,sBAAO,OAAO,CAAC;oCACb,YAAY,EAAE,KAAK;oCACnB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;iCACnB,CAAC,EAAC;yBACJ;wBAED,6FAA6F;wBAC7F,sBAAO,OAAO,CAAC;gCACb,YAAY,EAAE,IAAI;gCAClB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;6BACnB,CAAC,EAAC;;oBAGL;;;;uBAIG;oBACH,sBAAO,aAAa,EAAE;6BACnB,IAAI,CAAC,UAAC,KAAK;4BACV,IAAI,KAAK,EAAE;gCACT,OAAO,OAAO,CAAC,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC;6BACxC;iCAAM;gCACL,6FAA6F;gCAC7F,OAAO,MAAM,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,CAAC,CAAC,CAAC;6BAC1D;wBACH,CAAC,CAAC;6BACD,KAAK,CAAC,UAAO,MAAiB;;;;6CACzB,CAAA,MAAM,CAAC,IAAI,KAAK,qBAAa,CAAC,aAAa,CAAA,EAA3C,wBAA2C;wCAC7C;;;;;;;2CAOG;wCACH,qBAAM,WAAW,CAAC,cAAc,CAAC,oBAAoB,CAAC,EAAA;;wCARtD;;;;;;;2CAOG;wCACH,SAAsD,CAAC;wCACvD,sBAAO,OAAO,CAAC,EAAE,YAAY,EAAE,KAAK,EAAE,CAAC,EAAC;;oCAG1C;;;;uCAIG;oCACH,sBAAO,MAAM,CAAC,MAAM,CAAC,EAAC;;;6BACvB,CAAC,EAAC;;;aACN,CAAC;IAtFF,CAsFE,CAAC;IAEL,OAAO;QACL,KAAK;YACH,OAAO,WAAW,CAAC,cAAc,CAAC,oBAAoB,CAAC,CAAC;QAC1D,CAAC;QACD,MAAM;YACJ,OAAO,WAAW,CAAC,eAAe,EAAE,CAAC;QACvC,CAAC;QACD,oBAAoB,sBAAA;QACpB,aAAa,YAAC,GAAG;YACf,IAAI,CAAC,QAAQ,EAAE;gBACb,GAAG,CAAC,UAAU,CACZ,aAAa,EAAE,CAAC,IAAI,CAClB,UAAC,KAAK,IAAK,OAAA,KAAK,IAAI,EAAE,aAAa,EAAE,YAAU,KAAO,EAAE,EAA7C,CAA6C,EACxD,cAAM,OAAA,SAAS,EAAT,CAAS,CAChB,CACF,CAAC;aACH;QACH,CAAC;QACD,KAAK,EAAE,aAAa;QACpB,OAAO,EAAE,eAAe;KACzB,CAAC;AACJ,CAAC;AAtMD,0CAsMC"}
+{"version":3,"file":"setup.js","sourceRoot":"","sources":["../src/setup.ts"],"names":[],"mappings":";;;;AAAA,6CAAqD;AACrD,2CAAwC;AACxC,mCAA6G;AAE7G,MAAM,iBAAiB,GAAG;IACxB,CAAC,gBAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;IAClB,CAAC,gBAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;IACnB,CAAC,gBAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;IAClB,CAAC,gBAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;IAClB,CAAC,gBAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;CACpB,CAAC;AAEF,SAAS,uBAAuB,CAAC,SAAiB;IAChD,OAAO,MAAM,CAAC,QAAQ,CAAC,QAAQ,KAAK,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC;AAClE,CAAC;AAED,SAAS,2BAA2B,CAAC,KAAe;IAClD,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAC;AAClC,CAAC;AAED;;;GAGG;AACH,SAAgB,eAAe,CAAC,MAAkB;IAChD,MAAM,EACJ,QAAQ,EACR,YAAY,EACZ,mBAAmB,EACnB,WAAW,GAAG,GAAG,QAAQ,CAAC,MAAM,OAAO,EACvC,oBAAoB,EACpB,qBAAqB,GAAG,QAAQ,CAAC,MAAM,EACvC,YAAY,EACZ,YAAY,EACZ,MAAM,EACN,QAAQ,GAAG,KAAK,EAChB,UAAU,EACV,MAAM,EACN,QAAQ,EACR,SAAS,EACT,gBAAgB,EAChB,SAAS,EACT,QAAQ,EACR,WAAW,EACX,cAAc,GACf,GAAG,MAAM,CAAC;IAEX,MAAM,YAAY,GAAG,GAAG,EAAE,WAAC,OAAA,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,MAAK,MAAA,MAAM,CAAC,MAAM,0CAAE,IAAI,CAAA,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,GAAG,CAAC,CAAA,EAAA,CAAC;IAErG,MAAM,WAAW,GAAG,IAAI,yBAAW,CAAC;QAClC,SAAS,EAAE,mBAAmB;QAC9B,YAAY,EAAE,WAAW;QACzB,mBAAmB,EAAE,WAAW;QAChC,kBAAkB,EAAE,WAAW;QAC/B,wBAAwB,EAAE,qBAAqB;QAC/C,SAAS,EAAE,QAAQ;QACnB,aAAa,EAAE,YAAY;QAC3B,aAAa,EAAE,YAAY;QAC3B,KAAK,EAAE,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,IAAI,CAAC,GAAG,CAAC;QACxB,SAAS;QACT,gBAAgB;QAChB,UAAU,EAAE,SAAS;QACrB,aAAa,EAAE,YAAY;QAC3B,QAAQ;QACR,WAAW;QACX,cAAc;KACf,CAAC,CAAC;IAEH,IAAI,QAAQ,KAAK,SAAS,EAAE;QAC1B,iBAAG,CAAC,MAAM,GAAG,OAAO,CAAC;QACrB,iBAAG,CAAC,KAAK,GAAG,2BAA2B,CAAC,QAAQ,CAAC,CAAC;KACnD;SAAM,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa,EAAE;QACjD,iBAAG,CAAC,MAAM,GAAG,OAAO,CAAC;QACrB,iBAAG,CAAC,KAAK,GAAG,iBAAG,CAAC,KAAK,CAAC;KACvB;IAED,IAAI,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,wBAAwB,CAAC,EAAE;QAC1E,IAAI,YAAY,EAAE,EAAE;YAClB,WAAW,CAAC,uBAAuB,EAAE,CAAC;SACvC;aAAM;YACL,WAAW,CAAC,oBAAoB,EAAE,CAAC;SACpC;KACF;IAED,MAAM,aAAa,GAAG,GAAG,EAAE;QACzB,OAAO,IAAI,OAAO,CAAS,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACtC,WAAW;iBACR,OAAO,EAAE;iBACT,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE;gBACb,IAAI,CAAC,IAAI,EAAE;oBACT,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,aAAa,CAAC,CAAC,CAAC;iBACjD;qBAAM,IAAI,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,UAAU,GAAG,EAAE,EAAE;oBACpD,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;iBACxB;qBAAM;oBACL,OAAO,WAAW,CAAC,YAAY,EAAE,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE;wBAC9C,IAAI,CAAC,IAAI,EAAE;4BACT,OAAO,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,iBAAiB,CAAC,CAAC,CAAC;yBAC5D;wBACD,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE;4BACtB,OAAO,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,CAAC,CAAC,CAAC;yBACvD;wBACD,OAAO,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;oBAChC,CAAC,CAAC,CAAC;iBACJ;YACH,CAAC,CAAC;iBACD,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;IAEF,MAAM,eAAe,GAAG,GAAG,EAAE;QAC3B,OAAO,IAAI,OAAO,CAAc,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YAC3C,WAAW,CAAC,OAAO,EAAE,CAAC,IAAI,CACxB,CAAC,IAAI,EAAE,EAAE;gBACP,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,IAAI,CAAC,EAAE;oBACjC,OAAO,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,aAAa,CAAC,CAAC,CAAC;iBACxD;qBAAM;oBACL,OAAO,GAAG,CAAC,IAAI,CAAC,OAAsB,CAAC,CAAC;iBACzC;YACH,CAAC,EACD,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CACxD,CAAC;QACJ,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;IAEF,MAAM,oBAAoB,GAAG,GAAkC,EAAE,CAC/D,IAAI,OAAO,CAAC,CAAO,OAAO,EAAE,MAAM,EAAE,EAAE;QACpC,6DAA6D;QAC7D,IAAI,IAAU,CAAC;QACf,IACE,CAAC,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,mBAAmB,CAAC;YAChE,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;YACnE,CAAC,YAAY,EAAE,EACf;YACA;;;;eAIG;YACH,IAAI;gBACF,IAAI,GAAG,MAAM,WAAW,CAAC,oBAAoB,EAAE,CAAC;aACjD;YAAC,OAAO,CAAC,EAAE;gBACV,OAAO,MAAM,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,EAAE,CAAC,CAAC,CAAC,CAAC;aAC7D;YACD,OAAO,OAAO,CAAC;gBACb,YAAY,EAAE,KAAK;gBACnB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;aACnB,CAAC,CAAC;SACJ;QAED,IAAI,uBAAuB,CAAC,WAAW,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,YAAY,EAAE,EAAE;YAChF,IAAI;gBACF,IAAI,GAAG,MAAM,WAAW,CAAC,cAAc,EAAE,CAAC;aAC3C;YAAC,OAAO,CAAC,EAAE;gBACV;;;mBAGG;gBACH,OAAO,MAAM,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,EAAE,CAAC,CAAC,CAAC,CAAC;aAC7D;YAED,IAAI,MAAM,EAAE;gBACV,iBAAG,CAAC,KAAK,CAAC,kBAAkB,MAAM,kCAAkC,CAAC,CAAC;gBACtE,MAAM,CAAC,QAAQ,CAAC,IAAI,GAAG,MAAM,CAAC;gBAC9B,OAAO,OAAO,CAAC;oBACb,YAAY,EAAE,KAAK;oBACnB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;iBACnB,CAAC,CAAC;aACJ;YAED,6FAA6F;YAC7F,OAAO,OAAO,CAAC;gBACb,YAAY,EAAE,IAAI;gBAClB,KAAK,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK;aACnB,CAAC,CAAC;SACJ;QAED;;;;WAIG;QACH,OAAO,aAAa,EAAE;aACnB,IAAI,CAAC,CAAC,KAAK,EAAE,EAAE;YACd,IAAI,KAAK,EAAE;gBACT,OAAO,OAAO,CAAC,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC;aACxC;iBAAM;gBACL,6FAA6F;gBAC7F,OAAO,MAAM,CAAC,IAAI,qBAAS,CAAC,qBAAa,CAAC,YAAY,CAAC,CAAC,CAAC;aAC1D;QACH,CAAC,CAAC;aACD,KAAK,CAAC,CAAO,MAAiB,EAAE,EAAE;YACjC,IAAI,MAAM,CAAC,IAAI,KAAK,qBAAa,CAAC,aAAa,EAAE;gBAC/C;;;;;;;mBAOG;gBACH,MAAM,WAAW,CAAC,cAAc,CAAC,oBAAoB,CAAC,CAAC;gBACvD,OAAO,OAAO,CAAC,EAAE,YAAY,EAAE,KAAK,EAAE,CAAC,CAAC;aACzC;YAED;;;;eAIG;YACH,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC;QACxB,CAAC,CAAA,CAAC,CAAC;IACP,CAAC,CAAA,CAAC,CAAC;IAEL,OAAO;QACL,CAAC,EAAE,WAAW;QACd,KAAK;YACH,OAAO,WAAW,CAAC,cAAc,CAAC,oBAAoB,CAAC,CAAC;QAC1D,CAAC;QACD,MAAM;YACJ,OAAO,WAAW,CAAC,eAAe,EAAE,CAAC;QACvC,CAAC;QACD,MAAM;YACJ,OAAO,WAAW,CAAC,iBAAiB,EAAE,CAAC;QACzC,CAAC;QACD,oBAAoB;QACpB,aAAa,CAAC,GAAG;YACf,IAAI,CAAC,QAAQ,EAAE;gBACb,GAAG,CAAC,UAAU,CACZ,aAAa,EAAE,CAAC,IAAI,CAClB,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,IAAI,EAAE,aAAa,EAAE,UAAU,KAAK,EAAE,EAAE,EACxD,GAAG,EAAE,CAAC,SAAS,CAChB,CACF,CAAC;aACH;QACH,CAAC;QACD,KAAK,EAAE,aAAa;QACpB,OAAO,EAAE,eAAe;KACzB,CAAC;AACJ,CAAC;AAtND,0CAsNC"}

package/lib/types.d.ts

@@ -45,6 +45,12 @@ export interface OidcConfig {
      * is used.
      */
     responseType?: string;
+    /**
+     * The response mode, which is usually already configured well
+     * via the responseType. By default, the responseType `code` will
+     * get `query` and responseType `token` will get `fragment`.
+     */
+    responseMode?: string;
     /**
      * The scopes to be used. By default, `openid` is used.
      */
@@ -70,6 +76,26 @@ export interface OidcConfig {
      * This defaults to oidc-client's WebStorageStateStore, using sessionStorage as the internal store
      */
     userStore?: OidcStore;
+    /**
+     * Provides some extra query parameters. These are included in the authorization request.
+     */
+    extraQueryParams?: Record<string, any>;
+    /**
+     * Sets the optiopnal ui_locales parameter to set the language of the login page.
+     */
+    uiLocales?: string;
+    /**
+     * Sets the metadata if the OIDC service does not allow querying it for whatever reason.
+     */
+    metadata?: any;
+    /**
+     * Overrides the default metadata URL if the server does not follow the standard paths.
+     */
+    metadataUrl?: string;
+    /**
+     * Determines if the OIDCS session should be automatically monitored.
+     */
+    monitorSession?: boolean;
 }
 /**
  * The available log levels.
@@ -119,7 +145,7 @@ export interface PiralCustomOidcProfile {
 /**
  * The defined OIDC profile.
  */
-export declare type OidcProfile = PiralCustomOidcProfile & Profile;
+export type OidcProfile = PiralCustomOidcProfile & Profile;
 export interface OidcRequest {
     /**
      * Sets the headers of the request.
@@ -128,6 +154,10 @@ export interface OidcRequest {
     setHeaders(headers: any): void;
 }
 export interface OidcClient {
+    /**
+     * The underlying OIDC client.
+     */
+    _: any;
     /**
      * Performs a login. Will do nothing when called from a non-top window.
      */
@@ -136,6 +166,10 @@ export interface OidcClient {
      * Performs a logout.
      */
     logout(): Promise<void>;
+    /**
+     * Revokes the access token.
+     */
+    revoke(): Promise<void>;
     /**
      * Performs a login when the app needs a new token, handles callbacks when on
      * a callback URL, and redirects into the app route if the client was configured with an `appUri`.
@@ -161,7 +195,7 @@ export interface OidcClient {
      */
     extendHeaders(req: OidcRequest): void;
 }
-export interface PiralOidcApi {
+export interface PiletOidcApi {
     /**
      * Gets the currently valid access token, if any.
      */
@@ -172,7 +206,7 @@ export interface PiralOidcApi {
     getProfile(): Promise<OidcProfile>;
 }
 declare module 'piral-core/lib/types/custom' {
-    interface PiletCustomApi extends PiralOidcApi {
+    interface PiletCustomApi extends PiletOidcApi {
     }
 }
 /**

package/lib/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";;;AA6EA;;GAEG;AACH,IAAY,QAqBX;AArBD,WAAY,QAAQ;IAClB;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,2BAAe,CAAA;IACf;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,2BAAe,CAAA;AACjB,CAAC,EArBW,QAAQ,GAAR,gBAAQ,KAAR,gBAAQ,QAqBnB;AAsFD;;GAEG;AACH,IAAY,aA6BX;AA7BD,WAAY,aAAa;IACvB;;;OAGG;IACH,oCAAmB,CAAA;IACnB;;;;OAIG;IACH,gDAA+B,CAAA;IAC/B;;;OAGG;IACH,wDAAuC,CAAA;IACvC;;;;OAIG;IACH,8CAA6B,CAAA;IAC7B;;;;OAIG;IACH,8CAA6B,CAAA;AAC/B,CAAC,EA7BW,aAAa,GAAb,qBAAa,KAAb,qBAAa,QA6BxB"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";;;AAuGA;;GAEG;AACH,IAAY,QAqBX;AArBD,WAAY,QAAQ;IAClB;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,2BAAe,CAAA;IACf;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,yBAAa,CAAA;IACb;;OAEG;IACH,2BAAe,CAAA;AACjB,CAAC,EArBW,QAAQ,GAAR,gBAAQ,KAAR,gBAAQ,QAqBnB;AA8FD;;GAEG;AACH,IAAY,aA6BX;AA7BD,WAAY,aAAa;IACvB;;;OAGG;IACH,oCAAmB,CAAA;IACnB;;;;OAIG;IACH,gDAA+B,CAAA;IAC/B;;;OAGG;IACH,wDAAuC,CAAA;IACvC;;;;OAIG;IACH,8CAA6B,CAAA;IAC7B;;;;OAIG;IACH,8CAA6B,CAAA;AAC/B,CAAC,EA7BW,aAAa,GAAb,qBAAa,KAAb,qBAAa,QA6BxB"}