react-native-msal2 1.0.0

package/README.md

@@ -0,0 +1,48 @@
+# react-native-msal2
+
+A plugin for React Native.
+
+## Installation
+
+```
+npm i react-native-msal2
+```
+
+## Usage
+
+```jsx
+import React from 'react'
+import { Text } from 'react-native'
+import { Msal2 } from 'react-native-msal2'
+
+export () =>
+    <Msal2>
+        <Text>Hello Plugin</Text>
+    </Msal2>
+```
+
+## Development
+
+### Build
+
+Run a single build with `npm run build` and find the output in `/dist`.
+
+### Tests
+
+Tests configured for React Native can be run with `npm test` or `npm run test:watch` in watch mode.
+
+### Preview App
+
+To test your plugin on a device run the following to create a React Native app using it.
+
+```
+npm run app
+cd app
+npm run ios / npm run android
+```
+
+The following command will automatically copy over changes made to the plugin to the app.
+
+```
+npm run watch
+```

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+import { PublicClientApplication } from './src/publicClientApplication';
+export default PublicClientApplication;
+export * from './src/types';

package/dist/index.js

@@ -0,0 +1,92 @@
+// src/publicClientApplication.ts
+import { Platform } from "react-native";
+import { NativeModules } from "react-native";
+var RNMSAL = NativeModules.RNMSAL;
+var PublicClientApplication = class {
+  constructor(config) {
+    this.config = config;
+  }
+  isInitialized = false;
+  async init() {
+    if (!this.isInitialized) {
+      await RNMSAL.createPublicClientApplication(this.config);
+      this.isInitialized = true;
+    }
+    return this;
+  }
+  async acquireToken(params) {
+    this.validateIsInitialized();
+    return await RNMSAL.acquireToken(params);
+  }
+  async acquireTokenSilent(params) {
+    this.validateIsInitialized();
+    return await RNMSAL.acquireTokenSilent(params);
+  }
+  async getAccounts() {
+    this.validateIsInitialized();
+    return await RNMSAL.getAccounts();
+  }
+  async getAccount(accountIdentifier) {
+    this.validateIsInitialized();
+    return await RNMSAL.getAccount(accountIdentifier);
+  }
+  async removeAccount(account) {
+    this.validateIsInitialized();
+    return await RNMSAL.removeAccount(account);
+  }
+  async signOut(params) {
+    this.validateIsInitialized();
+    return await Platform.select({
+      ios: async () => await RNMSAL.signout(params),
+      default: async () => await RNMSAL.removeAccount(params.account)
+    })();
+  }
+  validateIsInitialized() {
+    if (!this.isInitialized) {
+      throw new Error(
+        "PublicClientApplication is not initialized. You must call the `init` method before any other method."
+      );
+    }
+  }
+};
+
+// src/types.ts
+var MSALPromptType = /* @__PURE__ */ ((MSALPromptType2) => {
+  MSALPromptType2[MSALPromptType2["SELECT_ACCOUNT"] = 0] = "SELECT_ACCOUNT";
+  MSALPromptType2[MSALPromptType2["LOGIN"] = 1] = "LOGIN";
+  MSALPromptType2[MSALPromptType2["CONSENT"] = 2] = "CONSENT";
+  MSALPromptType2[MSALPromptType2["WHEN_REQUIRED"] = 3] = "WHEN_REQUIRED";
+  MSALPromptType2[MSALPromptType2["DEFAULT"] = 3 /* WHEN_REQUIRED */] = "DEFAULT";
+  return MSALPromptType2;
+})(MSALPromptType || {});
+var Ios_ModalPresentationStyle = /* @__PURE__ */ ((Ios_ModalPresentationStyle2) => {
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["fullScreen"] = 0] = "fullScreen";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["pageSheet"] = 1] = "pageSheet";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["formSheet"] = 2] = "formSheet";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["currentContext"] = 3] = "currentContext";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["custom"] = 4] = "custom";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["overFullScreen"] = 5] = "overFullScreen";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["overCurrentContext"] = 6] = "overCurrentContext";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["popover"] = 7] = "popover";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["blurOverFullScreen"] = 8] = "blurOverFullScreen";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["none"] = -1] = "none";
+  Ios_ModalPresentationStyle2[Ios_ModalPresentationStyle2["automatic"] = -2] = "automatic";
+  return Ios_ModalPresentationStyle2;
+})(Ios_ModalPresentationStyle || {});
+var Ios_MSALWebviewType = /* @__PURE__ */ ((Ios_MSALWebviewType2) => {
+  Ios_MSALWebviewType2[Ios_MSALWebviewType2["DEFAULT"] = 0] = "DEFAULT";
+  Ios_MSALWebviewType2[Ios_MSALWebviewType2["AUTHENTICATION_SESSION"] = 1] = "AUTHENTICATION_SESSION";
+  Ios_MSALWebviewType2[Ios_MSALWebviewType2["SAFARI_VIEW_CONTROLLER"] = 2] = "SAFARI_VIEW_CONTROLLER";
+  Ios_MSALWebviewType2[Ios_MSALWebviewType2["WK_WEB_VIEW"] = 3] = "WK_WEB_VIEW";
+  return Ios_MSALWebviewType2;
+})(Ios_MSALWebviewType || {});
+
+// index.tsx
+var react_native_msal2_default = PublicClientApplication;
+export {
+  Ios_MSALWebviewType,
+  Ios_ModalPresentationStyle,
+  MSALPromptType,
+  react_native_msal2_default as default
+};
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../src/publicClientApplication.ts", "../src/types.ts", "../index.tsx"],
+  "sourcesContent": ["import { Platform } from 'react-native'\n\nimport type {\n  MSALConfiguration,\n  MSALInteractiveParams,\n  MSALSilentParams,\n  MSALAccount,\n  MSALSignoutParams,\n  IPublicClientApplication,\n  MSALResult,\n} from './types'\n\nimport { NativeModules } from 'react-native'\n\ntype RNMSALNativeModule = {\n  createPublicClientApplication(config: MSALConfiguration): Promise<void>\n  acquireToken(params: MSALInteractiveParams): Promise<MSALResult | undefined>\n  acquireTokenSilent(params: MSALSilentParams): Promise<MSALResult | undefined>\n  getAccounts(): Promise<MSALAccount[]>\n  getAccount(accountIdentifier: string): Promise<MSALAccount | undefined>\n  removeAccount(account: MSALAccount): Promise<boolean>\n  signout(params: MSALSignoutParams): Promise<boolean>\n}\n\nconst RNMSAL: RNMSALNativeModule = NativeModules.RNMSAL\n\nexport default RNMSAL\n\nexport class PublicClientApplication implements IPublicClientApplication {\n  private isInitialized: boolean = false\n\n  constructor(private readonly config: MSALConfiguration) {}\n\n  public async init() {\n    if (!this.isInitialized) {\n      await RNMSAL.createPublicClientApplication(this.config)\n      this.isInitialized = true\n    }\n    return this\n  }\n\n  public async acquireToken(params: MSALInteractiveParams) {\n    this.validateIsInitialized()\n    return await RNMSAL.acquireToken(params)\n  }\n\n  public async acquireTokenSilent(params: MSALSilentParams) {\n    this.validateIsInitialized()\n    return await RNMSAL.acquireTokenSilent(params)\n  }\n\n  public async getAccounts() {\n    this.validateIsInitialized()\n    return await RNMSAL.getAccounts()\n  }\n\n  public async getAccount(accountIdentifier: string) {\n    this.validateIsInitialized()\n    return await RNMSAL.getAccount(accountIdentifier)\n  }\n\n  public async removeAccount(account: MSALAccount) {\n    this.validateIsInitialized()\n    return await RNMSAL.removeAccount(account)\n  }\n\n  public async signOut(params: MSALSignoutParams) {\n    this.validateIsInitialized()\n    return await Platform.select({\n      ios: async () => await RNMSAL.signout(params),\n      default: async () => await RNMSAL.removeAccount(params.account),\n    })()\n  }\n\n  private validateIsInitialized() {\n    if (!this.isInitialized) {\n      throw new Error(\n        'PublicClientApplication is not initialized. You must call the `init` method before any other method.',\n      )\n    }\n  }\n}\n", "export interface IPublicClientApplication {\n  /**\n   * Acquire a token interactively\n   * @param {MSALInteractiveParams} params\n   * @return Result containing an access token and account identifier\n   * used for acquiring subsequent tokens silently\n   */\n  acquireToken(params: MSALInteractiveParams): Promise<MSALResult | undefined>\n\n  /**\n   * Acquire a token silently\n   * @param {MSALSilentParams} params - Includes the account identifer retrieved from a\n   * previous interactive login\n   * @return Result containing an access token and account identifier\n   * used for acquiring subsequent tokens silently\n   */\n  acquireTokenSilent(params: MSALSilentParams): Promise<MSALResult | undefined>\n\n  /**\n   * Get all accounts for which this application has refresh tokens\n   * @return Promise containing array of MSALAccount objects for which this application\n   * has refresh tokens.\n   */\n  getAccounts(): Promise<MSALAccount[]>\n\n  /**\n   * Retrieve the account matching the identifier\n   * @return Promise containing MSALAccount object\n   */\n  getAccount(accountIdentifier: string): Promise<MSALAccount | undefined>\n\n  /**\n   * Removes all tokens from the cache for this application for the provided\n   * account.\n   * @param {MSALAccount} account\n   * @return A promise containing a boolean = true if account removal was successful\n   * otherwise rejects\n   */\n  removeAccount(account: MSALAccount): Promise<boolean>\n\n  /**\n   * Removes all tokens from the cache for this application for the provided\n   * account. Additionally, this will remove the account from the system browser.\n   * NOTE: iOS only. On Android and web this is the same as `removeAccount`.\n   * @param {MSALSignoutParams} params\n   * @return A promise which resolves if sign out is successful,\n   * otherwise rejects\n   * @platform ios\n   */\n  signOut(params: MSALSignoutParams): Promise<boolean>\n}\n\nexport interface MSALConfiguration {\n  auth: {\n    /**\n     * The client ID of the application, this should come from the app developer portal.\n     */\n    clientId: string\n    /**\n     * The authority the application will use to obtain tokens.\n     */\n    authority?: string\n    /**\n     * List of known authorities that the application should trust.\n     */\n    knownAuthorities?: string[]\n    /**\n     * The redirect URI of the application.\n     *\n     * If you are providing this property, you should probably use `Platform.select`,\n     * because the redirect uris will be different for each platform.\n     */\n    redirectUri?: string\n  }\n  /**\n   * Options as described here: {@link https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-configuration}\n   * @platform android\n   */\n  androidConfigOptions?: MSALAndroidConfigOptions\n}\n\nexport interface MSALAndroidConfigOptions {\n  authorization_user_agent?: 'DEFAULT' | 'BROWSER' | 'WEBVIEW'\n  broker_redirect_uri_registered?: boolean\n  browser_safelist?: {\n    browser_package_name: string\n    browser_signature_hashes: string[]\n    browser_use_customTab: boolean\n  }[]\n  http?: {\n    connect_timeout?: number\n    read_timeout?: number\n  }\n  logging?: {\n    pii_enabled?: boolean\n    log_level?: 'ERROR' | 'WARNING' | 'INFO' | 'VERBOSE'\n    logcat_enabled?: boolean\n  }\n  multiple_clouds_supported?: boolean\n}\n\nexport interface MSALInteractiveParams {\n  /**\n   * Permissions you want included in the access token received in the result.\n   * Not all scopes are guaranteed to be included in the access token returned.\n   */\n  scopes: string[]\n  /**\n   * The authority that MSAL will use to obtain tokens. If not included, authority from\n   * MSALConfiguration will be used.\n   */\n  authority?: string\n  /**\n   * A specific prompt type for the interactive authentication flow.\n   */\n  promptType?: MSALPromptType\n  /**\n   * A loginHint (usually an email) to pass to the service at the beginning of the\n   * interactive authentication flow. The account returned is not guaranteed to match\n   * the loginHint.\n   */\n  loginHint?: string\n  /**\n   * Key-value pairs to pass to the /authorize and /token endpoints.\n   */\n  extraQueryParameters?: Record<string, string>\n  /**\n   * Permissions you want the account to consent to in the same authentication flow,\n   * but won\u2019t be included in the returned access token.\n   */\n  extraScopesToConsent?: string[]\n  /**\n   * User Interface configuration that MSAL uses when getting a token interactively or\n   * authorizing an end user.\n   */\n  webviewParameters?: MSALWebviewParams\n}\n\n/**\n * OIDC prompt parameter that specifies whether the Authorization Server prompts the\n * End-User for reauthentication and consent.\n */\nexport enum MSALPromptType {\n  /**\n   * If no user is specified the authentication webview will present a list of users\n   * currently signed in for the user to select among.\n   */\n  SELECT_ACCOUNT,\n  /**\n   * Require the user to authenticate in the webview.\n   */\n  LOGIN,\n  /**\n   * Require the user to consent to the current set of scopes for the request.\n   */\n  CONSENT,\n  /**\n   * The SSO experience will be determined by the presence of cookies in the webview and\n   * account type. User won\u2019t be prompted unless necessary. If multiple users are signed in,\n   * select account experience will be presented.\n   */\n  WHEN_REQUIRED,\n  /**\n   * Default is MSALPromptType.WHEN_REQUIRED.\n   */\n  DEFAULT = WHEN_REQUIRED,\n}\n\nexport interface MSALSilentParams {\n  /**\n   * Permissions you want included in the access token received in the result.\n   * Not all scopes are guaranteed to be included in the access token returned.\n   */\n  scopes: string[]\n  /**\n   * An account object for which tokens should be returned.\n   */\n  account: MSALAccount\n  /**\n   * The authority that MSAL will use to obtain tokens. If not included, authority from\n   * MSALConfiguration will be used.\n   */\n  authority?: string\n  /**\n   * Ignore any existing access token in the cache and force MSAL to get a new access token\n   * from the service.\n   */\n  forceRefresh?: boolean\n}\n\nexport interface MSALSignoutParams {\n  /**\n   * The account object for which to sign out of.\n   */\n  account: MSALAccount\n  /**\n   * Specifies whether signout should also open the browser and send a network request to the end_session_endpoint.\n   * false by default.\n   */\n  signoutFromBrowser?: boolean\n  /**\n   * User Interface configuration that MSAL uses when getting a token interactively or\n   * authorizing an end user.\n   */\n  webviewParameters?: MSALWebviewParams\n}\n\nexport interface MSALResult {\n  /**\n   * The Access Token requested, or empty string if no access token is returned in response\n   */\n  accessToken: string\n  /**\n   * The account object that holds account information.\n   */\n  account: MSALAccount\n  /**\n   * The time that the access token returned in the accessToken property ceases to be valid.\n   * This value is calculated based on current UTC time measured locally and the value expiresIn returned from the service\n   */\n  expiresOn: number\n  /**\n   * The raw id token if it\u2019s returned by the service or undefined if no id token is returned.\n   */\n  idToken?: string\n  /**\n   * The scope values returned from the service.\n   */\n  scopes: string[]\n  /**\n   * Identifier for the directory where account is locally represented\n   */\n  tenantId?: string\n}\n\nexport interface MSALAccount {\n  /**\n   * Unique identifier for the account.\n   */\n  identifier: string\n  /**\n   * Host part of the authority string used for authentication based on the issuer identifier.\n   */\n  environment?: string\n  /**\n   * An identifier for the AAD tenant that the account was acquired from.\n   */\n  tenantId: string\n  /**\n   * Shorthand name by which the End-User wishes to be referred to at the RP, such as janedoe or j.doe.\n   */\n  username: string\n  /**\n   * ID token claims for the account. Can be used to read additional information about the account, e.g. name.\n   */\n  claims?: object\n}\n\n/**\n * Mostly, if not all, iOS webview parameters\n * See https://azuread.github.io/microsoft-authentication-library-for-objc/Classes/MSALWebviewParameters.html\n */\nexport interface MSALWebviewParams {\n  /**\n   * A Boolean value that indicates whether the ASWebAuthenticationSession should ask the\n   * browser for a private authentication session.\n   * For more info see here: https://developer.apple.com/documentation/authenticationservices/aswebauthenticationsession/3237231-prefersephemeralwebbrowsersessio?language=objc\n   * @platform iOS 13+\n   */\n  ios_prefersEphemeralWebBrowserSession?: boolean\n  /**\n   * MSAL requires a web browser for interactive authentication.\n   * There are multiple web browsers available to complete authentication.\n   * MSAL will default to the web browser that provides best security and user experience for a given platform.\n   * Ios_MSALWebviewType allows changing the experience by customizing the configuration to other options for\n   * displaying web content\n   * @platform iOS\n   */\n  ios_webviewType?: Ios_MSALWebviewType\n  /**\n   * Note: Has no effect when ios_webviewType === `Ios_MSALWebviewType.DEFAULT` or\n   * ios_webviewType === `Ios_MSALWebviewType.AUTHENTICATION_SESSION`\n   * @platform iOS\n   */\n  ios_presentationStyle?: Ios_ModalPresentationStyle\n}\n\n/**\n * See https://developer.apple.com/documentation/uikit/uimodalpresentationstyle\n */\nexport enum Ios_ModalPresentationStyle {\n  fullScreen = 0,\n  pageSheet,\n  formSheet,\n  currentContext,\n  custom,\n  overFullScreen,\n  overCurrentContext,\n  popover,\n  blurOverFullScreen,\n  none = -1,\n  automatic = -2,\n}\n\n/**\n * See https://azuread.github.io/microsoft-authentication-library-for-objc/Enums/MSALWebviewType.html\n */\nexport enum Ios_MSALWebviewType {\n  DEFAULT = 0,\n  AUTHENTICATION_SESSION,\n  SAFARI_VIEW_CONTROLLER,\n  WK_WEB_VIEW,\n}\n", "import { PublicClientApplication } from './src/publicClientApplication'\nexport default PublicClientApplication\nexport * from './src/types'\n"],
+  "mappings": ";AAAA,SAAS,gBAAgB;AAYzB,SAAS,qBAAqB;AAY9B,IAAM,SAA6B,cAAc;AAI1C,IAAM,0BAAN,MAAkE;AAAA,EAGvE,YAA6B,QAA2B;AAA3B;AAAA,EAA4B;AAAA,EAFjD,gBAAyB;AAAA,EAIjC,MAAa,OAAO;AAClB,QAAI,CAAC,KAAK,eAAe;AACvB,YAAM,OAAO,8BAA8B,KAAK,MAAM;AACtD,WAAK,gBAAgB;AAAA,IACvB;AACA,WAAO;AAAA,EACT;AAAA,EAEA,MAAa,aAAa,QAA+B;AACvD,SAAK,sBAAsB;AAC3B,WAAO,MAAM,OAAO,aAAa,MAAM;AAAA,EACzC;AAAA,EAEA,MAAa,mBAAmB,QAA0B;AACxD,SAAK,sBAAsB;AAC3B,WAAO,MAAM,OAAO,mBAAmB,MAAM;AAAA,EAC/C;AAAA,EAEA,MAAa,cAAc;AACzB,SAAK,sBAAsB;AAC3B,WAAO,MAAM,OAAO,YAAY;AAAA,EAClC;AAAA,EAEA,MAAa,WAAW,mBAA2B;AACjD,SAAK,sBAAsB;AAC3B,WAAO,MAAM,OAAO,WAAW,iBAAiB;AAAA,EAClD;AAAA,EAEA,MAAa,cAAc,SAAsB;AAC/C,SAAK,sBAAsB;AAC3B,WAAO,MAAM,OAAO,cAAc,OAAO;AAAA,EAC3C;AAAA,EAEA,MAAa,QAAQ,QAA2B;AAC9C,SAAK,sBAAsB;AAC3B,WAAO,MAAM,SAAS,OAAO;AAAA,MAC3B,KAAK,YAAY,MAAM,OAAO,QAAQ,MAAM;AAAA,MAC5C,SAAS,YAAY,MAAM,OAAO,cAAc,OAAO,OAAO;AAAA,IAChE,CAAC,EAAE;AAAA,EACL;AAAA,EAEQ,wBAAwB;AAC9B,QAAI,CAAC,KAAK,eAAe;AACvB,YAAM,IAAI;AAAA,QACR;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF;;;AC6DO,IAAK,iBAAL,kBAAKA,oBAAL;AAKL,EAAAA,gCAAA;AAIA,EAAAA,gCAAA;AAIA,EAAAA,gCAAA;AAMA,EAAAA,gCAAA;AAIA,EAAAA,gCAAA,aAAU,yBAAV;AAvBU,SAAAA;AAAA,GAAA;AAoJL,IAAK,6BAAL,kBAAKC,gCAAL;AACL,EAAAA,wDAAA,gBAAa,KAAb;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA;AACA,EAAAA,wDAAA,UAAO,MAAP;AACA,EAAAA,wDAAA,eAAY,MAAZ;AAXU,SAAAA;AAAA,GAAA;AAiBL,IAAK,sBAAL,kBAAKC,yBAAL;AACL,EAAAA,0CAAA,aAAU,KAAV;AACA,EAAAA,0CAAA;AACA,EAAAA,0CAAA;AACA,EAAAA,0CAAA;AAJU,SAAAA;AAAA,GAAA;;;AClTZ,IAAO,6BAAQ;",
+  "names": ["MSALPromptType", "Ios_ModalPresentationStyle", "Ios_MSALWebviewType"]
+}

package/dist/src/publicClientApplication.d.ts

@@ -0,0 +1,25 @@
+import type { MSALConfiguration, MSALInteractiveParams, MSALSilentParams, MSALAccount, MSALSignoutParams, IPublicClientApplication, MSALResult } from './types';
+type RNMSALNativeModule = {
+    createPublicClientApplication(config: MSALConfiguration): Promise<void>;
+    acquireToken(params: MSALInteractiveParams): Promise<MSALResult | undefined>;
+    acquireTokenSilent(params: MSALSilentParams): Promise<MSALResult | undefined>;
+    getAccounts(): Promise<MSALAccount[]>;
+    getAccount(accountIdentifier: string): Promise<MSALAccount | undefined>;
+    removeAccount(account: MSALAccount): Promise<boolean>;
+    signout(params: MSALSignoutParams): Promise<boolean>;
+};
+declare const RNMSAL: RNMSALNativeModule;
+export default RNMSAL;
+export declare class PublicClientApplication implements IPublicClientApplication {
+    private readonly config;
+    private isInitialized;
+    constructor(config: MSALConfiguration);
+    init(): Promise<this>;
+    acquireToken(params: MSALInteractiveParams): Promise<MSALResult | undefined>;
+    acquireTokenSilent(params: MSALSilentParams): Promise<MSALResult | undefined>;
+    getAccounts(): Promise<MSALAccount[]>;
+    getAccount(accountIdentifier: string): Promise<MSALAccount | undefined>;
+    removeAccount(account: MSALAccount): Promise<boolean>;
+    signOut(params: MSALSignoutParams): Promise<boolean>;
+    private validateIsInitialized;
+}

package/dist/src/types.d.ts

@@ -0,0 +1,297 @@
+export interface IPublicClientApplication {
+    /**
+     * Acquire a token interactively
+     * @param {MSALInteractiveParams} params
+     * @return Result containing an access token and account identifier
+     * used for acquiring subsequent tokens silently
+     */
+    acquireToken(params: MSALInteractiveParams): Promise<MSALResult | undefined>;
+    /**
+     * Acquire a token silently
+     * @param {MSALSilentParams} params - Includes the account identifer retrieved from a
+     * previous interactive login
+     * @return Result containing an access token and account identifier
+     * used for acquiring subsequent tokens silently
+     */
+    acquireTokenSilent(params: MSALSilentParams): Promise<MSALResult | undefined>;
+    /**
+     * Get all accounts for which this application has refresh tokens
+     * @return Promise containing array of MSALAccount objects for which this application
+     * has refresh tokens.
+     */
+    getAccounts(): Promise<MSALAccount[]>;
+    /**
+     * Retrieve the account matching the identifier
+     * @return Promise containing MSALAccount object
+     */
+    getAccount(accountIdentifier: string): Promise<MSALAccount | undefined>;
+    /**
+     * Removes all tokens from the cache for this application for the provided
+     * account.
+     * @param {MSALAccount} account
+     * @return A promise containing a boolean = true if account removal was successful
+     * otherwise rejects
+     */
+    removeAccount(account: MSALAccount): Promise<boolean>;
+    /**
+     * Removes all tokens from the cache for this application for the provided
+     * account. Additionally, this will remove the account from the system browser.
+     * NOTE: iOS only. On Android and web this is the same as `removeAccount`.
+     * @param {MSALSignoutParams} params
+     * @return A promise which resolves if sign out is successful,
+     * otherwise rejects
+     * @platform ios
+     */
+    signOut(params: MSALSignoutParams): Promise<boolean>;
+}
+export interface MSALConfiguration {
+    auth: {
+        /**
+         * The client ID of the application, this should come from the app developer portal.
+         */
+        clientId: string;
+        /**
+         * The authority the application will use to obtain tokens.
+         */
+        authority?: string;
+        /**
+         * List of known authorities that the application should trust.
+         */
+        knownAuthorities?: string[];
+        /**
+         * The redirect URI of the application.
+         *
+         * If you are providing this property, you should probably use `Platform.select`,
+         * because the redirect uris will be different for each platform.
+         */
+        redirectUri?: string;
+    };
+    /**
+     * Options as described here: {@link https://docs.microsoft.com/en-us/azure/active-directory/develop/msal-configuration}
+     * @platform android
+     */
+    androidConfigOptions?: MSALAndroidConfigOptions;
+}
+export interface MSALAndroidConfigOptions {
+    authorization_user_agent?: 'DEFAULT' | 'BROWSER' | 'WEBVIEW';
+    broker_redirect_uri_registered?: boolean;
+    browser_safelist?: {
+        browser_package_name: string;
+        browser_signature_hashes: string[];
+        browser_use_customTab: boolean;
+    }[];
+    http?: {
+        connect_timeout?: number;
+        read_timeout?: number;
+    };
+    logging?: {
+        pii_enabled?: boolean;
+        log_level?: 'ERROR' | 'WARNING' | 'INFO' | 'VERBOSE';
+        logcat_enabled?: boolean;
+    };
+    multiple_clouds_supported?: boolean;
+}
+export interface MSALInteractiveParams {
+    /**
+     * Permissions you want included in the access token received in the result.
+     * Not all scopes are guaranteed to be included in the access token returned.
+     */
+    scopes: string[];
+    /**
+     * The authority that MSAL will use to obtain tokens. If not included, authority from
+     * MSALConfiguration will be used.
+     */
+    authority?: string;
+    /**
+     * A specific prompt type for the interactive authentication flow.
+     */
+    promptType?: MSALPromptType;
+    /**
+     * A loginHint (usually an email) to pass to the service at the beginning of the
+     * interactive authentication flow. The account returned is not guaranteed to match
+     * the loginHint.
+     */
+    loginHint?: string;
+    /**
+     * Key-value pairs to pass to the /authorize and /token endpoints.
+     */
+    extraQueryParameters?: Record<string, string>;
+    /**
+     * Permissions you want the account to consent to in the same authentication flow,
+     * but won’t be included in the returned access token.
+     */
+    extraScopesToConsent?: string[];
+    /**
+     * User Interface configuration that MSAL uses when getting a token interactively or
+     * authorizing an end user.
+     */
+    webviewParameters?: MSALWebviewParams;
+}
+/**
+ * OIDC prompt parameter that specifies whether the Authorization Server prompts the
+ * End-User for reauthentication and consent.
+ */
+export declare enum MSALPromptType {
+    /**
+     * If no user is specified the authentication webview will present a list of users
+     * currently signed in for the user to select among.
+     */
+    SELECT_ACCOUNT = 0,
+    /**
+     * Require the user to authenticate in the webview.
+     */
+    LOGIN = 1,
+    /**
+     * Require the user to consent to the current set of scopes for the request.
+     */
+    CONSENT = 2,
+    /**
+     * The SSO experience will be determined by the presence of cookies in the webview and
+     * account type. User won’t be prompted unless necessary. If multiple users are signed in,
+     * select account experience will be presented.
+     */
+    WHEN_REQUIRED = 3,
+    /**
+     * Default is MSALPromptType.WHEN_REQUIRED.
+     */
+    DEFAULT = 3
+}
+export interface MSALSilentParams {
+    /**
+     * Permissions you want included in the access token received in the result.
+     * Not all scopes are guaranteed to be included in the access token returned.
+     */
+    scopes: string[];
+    /**
+     * An account object for which tokens should be returned.
+     */
+    account: MSALAccount;
+    /**
+     * The authority that MSAL will use to obtain tokens. If not included, authority from
+     * MSALConfiguration will be used.
+     */
+    authority?: string;
+    /**
+     * Ignore any existing access token in the cache and force MSAL to get a new access token
+     * from the service.
+     */
+    forceRefresh?: boolean;
+}
+export interface MSALSignoutParams {
+    /**
+     * The account object for which to sign out of.
+     */
+    account: MSALAccount;
+    /**
+     * Specifies whether signout should also open the browser and send a network request to the end_session_endpoint.
+     * false by default.
+     */
+    signoutFromBrowser?: boolean;
+    /**
+     * User Interface configuration that MSAL uses when getting a token interactively or
+     * authorizing an end user.
+     */
+    webviewParameters?: MSALWebviewParams;
+}
+export interface MSALResult {
+    /**
+     * The Access Token requested, or empty string if no access token is returned in response
+     */
+    accessToken: string;
+    /**
+     * The account object that holds account information.
+     */
+    account: MSALAccount;
+    /**
+     * The time that the access token returned in the accessToken property ceases to be valid.
+     * This value is calculated based on current UTC time measured locally and the value expiresIn returned from the service
+     */
+    expiresOn: number;
+    /**
+     * The raw id token if it’s returned by the service or undefined if no id token is returned.
+     */
+    idToken?: string;
+    /**
+     * The scope values returned from the service.
+     */
+    scopes: string[];
+    /**
+     * Identifier for the directory where account is locally represented
+     */
+    tenantId?: string;
+}
+export interface MSALAccount {
+    /**
+     * Unique identifier for the account.
+     */
+    identifier: string;
+    /**
+     * Host part of the authority string used for authentication based on the issuer identifier.
+     */
+    environment?: string;
+    /**
+     * An identifier for the AAD tenant that the account was acquired from.
+     */
+    tenantId: string;
+    /**
+     * Shorthand name by which the End-User wishes to be referred to at the RP, such as janedoe or j.doe.
+     */
+    username: string;
+    /**
+     * ID token claims for the account. Can be used to read additional information about the account, e.g. name.
+     */
+    claims?: object;
+}
+/**
+ * Mostly, if not all, iOS webview parameters
+ * See https://azuread.github.io/microsoft-authentication-library-for-objc/Classes/MSALWebviewParameters.html
+ */
+export interface MSALWebviewParams {
+    /**
+     * A Boolean value that indicates whether the ASWebAuthenticationSession should ask the
+     * browser for a private authentication session.
+     * For more info see here: https://developer.apple.com/documentation/authenticationservices/aswebauthenticationsession/3237231-prefersephemeralwebbrowsersessio?language=objc
+     * @platform iOS 13+
+     */
+    ios_prefersEphemeralWebBrowserSession?: boolean;
+    /**
+     * MSAL requires a web browser for interactive authentication.
+     * There are multiple web browsers available to complete authentication.
+     * MSAL will default to the web browser that provides best security and user experience for a given platform.
+     * Ios_MSALWebviewType allows changing the experience by customizing the configuration to other options for
+     * displaying web content
+     * @platform iOS
+     */
+    ios_webviewType?: Ios_MSALWebviewType;
+    /**
+     * Note: Has no effect when ios_webviewType === `Ios_MSALWebviewType.DEFAULT` or
+     * ios_webviewType === `Ios_MSALWebviewType.AUTHENTICATION_SESSION`
+     * @platform iOS
+     */
+    ios_presentationStyle?: Ios_ModalPresentationStyle;
+}
+/**
+ * See https://developer.apple.com/documentation/uikit/uimodalpresentationstyle
+ */
+export declare enum Ios_ModalPresentationStyle {
+    fullScreen = 0,
+    pageSheet = 1,
+    formSheet = 2,
+    currentContext = 3,
+    custom = 4,
+    overFullScreen = 5,
+    overCurrentContext = 6,
+    popover = 7,
+    blurOverFullScreen = 8,
+    none = -1,
+    automatic = -2
+}
+/**
+ * See https://azuread.github.io/microsoft-authentication-library-for-objc/Enums/MSALWebviewType.html
+ */
+export declare enum Ios_MSALWebviewType {
+    DEFAULT = 0,
+    AUTHENTICATION_SESSION = 1,
+    SAFARI_VIEW_CONTROLLER = 2,
+    WK_WEB_VIEW = 3
+}

package/package.json

@@ -0,0 +1,103 @@
+{
+  "name": "react-native-msal2",
+  "version": "1.0.0",
+  "license": "MIT",
+  "description": "MSAL React Native wrapper for iOS and Android",
+  "homepage": "https://github.com/bittu/react-native-msal2#readme",
+  "author": "Sandeep Vemula <vsandeep414@gmail.com>",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/bittu/react-native-msal2.git"
+  },
+  "scripts": {
+    "app": "node create-app.js",
+    "app:install": "npm i --no-save $(npm pack . | tail -1)  --prefix app",
+    "build": "esbuild index.tsx --outdir=dist --bundle --format=esm --sourcemap --external:react-native --external:react && tsc",
+    "watch": "npm-run-all --parallel build:watch copy",
+    "copy": "cpx 'dist/**/*' app/node_modules/react-native-msal2/dist --watch",
+    "build:watch": "esbuild index.tsx --watch --outdir=dist --bundle --format=esm --sourcemap --external:react-native --external:react",
+    "test": "jest",
+    "test:watch": "jest --watchAll",
+    "lint": "eslint . --fix --ext .js,.jsx,.ts,.tsx",
+    "format": "prettier \"{,!(app|dist)/**/}*.{ts,tsx}\" --write"
+  },
+  "devDependencies": {
+    "@react-native/babel-preset": "^0.74.0",
+    "@react-native/eslint-config": "^0.74.0",
+    "@react-native/typescript-config": "^0.74.0",
+    "@types/jest": "^29.5.11",
+    "@types/node": "^20.11.8",
+    "@types/react": "^18.2.48",
+    "@types/react-native": "^0.72.8",
+    "@types/react-test-renderer": "^18.0.7",
+    "babel-jest": "^29.7.0",
+    "cpx": "^1.5.0",
+    "esbuild": "^0.20.0",
+    "eslint": "^8.56.0",
+    "eslint-plugin-flowtype": "^8.0.3",
+    "eslint-plugin-prettier": "^5.1.3",
+    "jest": "^29.7.0",
+    "npm-run-all": "^4.1.5",
+    "prettier": "^3.2.4",
+    "react": "^18.2.0",
+    "react-native": "^0.73.2",
+    "react-test-renderer": "^18.2.0",
+    "typescript": "^5.3.3"
+  },
+  "peerDependencies": {
+    "react": ">= 18",
+    "react-native": ">= 0.70"
+  },
+  "type": "module",
+  "main": "./dist/index.js",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    }
+  },
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "prettier": {
+    "printWidth": 100,
+    "semi": false,
+    "singleQuote": true
+  },
+  "eslintConfig": {
+    "extends": "@react-native",
+    "rules": {
+      "semi": 0
+    },
+    "ignorePatterns": [
+      "dist",
+      "app"
+    ],
+    "root": true
+  },
+  "jest": {
+    "moduleFileExtensions": [
+      "ts",
+      "tsx",
+      "js",
+      "jsx",
+      "json",
+      "node"
+    ],
+    "moduleNameMapper": {
+      "react-dom": "react-native",
+      "react-native-msal2": "<rootDir>"
+    },
+    "preset": "react-native",
+    "testPathIgnorePatterns": [
+      "/app/"
+    ],
+    "transformIgnorePatterns": [
+      "node_modules/(?!react-native|@react-native)"
+    ]
+  },
+  "publishConfig": {
+    "provenance": false
+  }
+}