zudoku 0.0.0-fa903e7 → 0.0.0-fc5c03b

package/lib/zudoku.auth-openid.js

@@ -7,7 +7,7 @@ import { A as ze } from "./AuthenticationPlugin-D0Em0SwR.js";
 import { g as De } from "./utils-DcpDOncX.js";
 import { Z as Ne } from "./invariant-Caa8-XvF.js";
 import { l as Ke } from "./index-Czzd9rjU.js";
-import { u as z } from "./state-tsXBLONe.js";
+import { u as C } from "./state-tsXBLONe.js";
 var pe = { exports: {} };
 (function(t) {
   (function(e, n) {
@@ -56,7 +56,7 @@ var pe = { exports: {} };
       return _(l) || y.apply(this, arguments);
     }
     function h(l, m) {
-      var u = this, J, F, R, v = "loglevel";
+      var u = this, O, F, R, v = "loglevel";
       typeof l == "string" ? v += ":" + l : typeof l == "symbol" && (v = void 0);
       function Ce(d) {
         var g = (a[d] || "silent").toUpperCase();
@@ -81,9 +81,9 @@ var pe = { exports: {} };
           }
           if (typeof d === n)
             try {
-              var g = window.document.cookie, O = encodeURIComponent(v), re = g.indexOf(O + "=");
+              var g = window.document.cookie, z = encodeURIComponent(v), re = g.indexOf(z + "=");
               re !== -1 && (d = /^([^;]+)/.exec(
-                g.slice(re + O.length + 1)
+                g.slice(re + z.length + 1)
               )[1]);
             } catch {
             }
@@ -116,7 +116,7 @@ var pe = { exports: {} };
         ERROR: 4,
         SILENT: 5
       }, u.methodFactory = m || T, u.getLevel = function() {
-        return R ?? F ?? J;
+        return R ?? F ?? O;
       }, u.setLevel = function(d, g) {
         return R = U(d), g !== !1 && Ce(R), f.call(u);
       }, u.setDefaultLevel = function(d) {
@@ -128,10 +128,10 @@ var pe = { exports: {} };
       }, u.disableAll = function(d) {
         u.setLevel(u.levels.SILENT, d);
       }, u.rebuild = function() {
-        if (i !== u && (J = U(i.getLevel())), f.call(u), i === u)
+        if (i !== u && (O = U(i.getLevel())), f.call(u), i === u)
           for (var d in r)
             r[d].rebuild();
-      }, J = U(
+      }, O = U(
         i ? i.getLevel() : "WARN"
       );
       var ne = te();
@@ -146,9 +146,9 @@ var pe = { exports: {} };
         i.methodFactory
       )), u;
     };
-    var j = typeof window !== n ? window.log : void 0;
+    var J = typeof window !== n ? window.log : void 0;
     return i.noConflict = function() {
-      return typeof window !== n && window.log === i && (window.log = j), i;
+      return typeof window !== n && window.log === i && (window.log = J), i;
     }, i.getLoggers = function() {
       return r;
     }, i.default = i, i;
@@ -247,7 +247,7 @@ function Q(t) {
   }
   return t;
 }
-function C(t) {
+function L(t) {
   return !(t === null || typeof t != "object" || Array.isArray(t));
 }
 function W(t) {
@@ -306,7 +306,7 @@ async function Xe(t, e) {
   } catch (o) {
     throw new s('failed to parse "response" body as JSON', { cause: o });
   }
-  if (!C(n))
+  if (!L(n))
     throw new s('"response" body must be a top level object');
   if (!w(n.issuer))
     throw new s('"response" body "issuer" property must be a non-empty string');
@@ -399,7 +399,7 @@ function be(t) {
       throw new S("unsupported CryptoKey algorithm name");
   }
 }
-function L(t) {
+function x(t) {
   const e = t == null ? void 0 : t[K];
   return typeof e == "number" && Number.isFinite(e) ? e : 0;
 }
@@ -411,7 +411,7 @@ function $() {
   return Math.floor(Date.now() / 1e3);
 }
 function ct(t, e) {
-  const n = $() + L(e);
+  const n = $() + x(e);
   return {
     jti: H(),
     aud: [t.issuer, t.token_endpoint],
@@ -426,14 +426,14 @@ async function ut(t, e, n, o, a) {
   const r = { alg: be(n), kid: o }, i = ct(t, e);
   return a == null || a(r, i), ve(r, i, n);
 }
-function x(t) {
+function I(t) {
   if (typeof t != "object" || t === null)
     throw new TypeError('"as" must be an object');
   if (!w(t.issuer))
     throw new TypeError('"as.issuer" property must be a non-empty string');
   return !0;
 }
-function I(t) {
+function j(t) {
   if (typeof t != "object" || t === null)
     throw new TypeError('"client" must be an object');
   if (!w(t.client_id))
@@ -542,7 +542,7 @@ async function pt(t, e, n, o, a, r) {
     throw new TypeError('"accessToken" must be a non-empty string');
   if (!(n instanceof URL))
     throw new TypeError('"url" must be an instance of URL');
-  return o = W(o), (r == null ? void 0 : r.DPoP) === void 0 ? o.set("authorization", `Bearer ${t}`) : (await dt(o, r.DPoP, n, e.toUpperCase(), L({ [K]: r == null ? void 0 : r[K] }), t), o.set("authorization", `DPoP ${t}`)), ((r == null ? void 0 : r[Y]) || fetch)(n.href, {
+  return o = W(o), (r == null ? void 0 : r.DPoP) === void 0 ? o.set("authorization", `Bearer ${t}`) : (await dt(o, r.DPoP, n, e.toUpperCase(), x({ [K]: r == null ? void 0 : r[K] }), t), o.set("authorization", `DPoP ${t}`)), ((r == null ? void 0 : r[Y]) || fetch)(n.href, {
     body: a,
     headers: Object.fromEntries(o.entries()),
     method: e,
@@ -551,11 +551,11 @@ async function pt(t, e, n, o, a, r) {
   }).then(Q);
 }
 async function wt(t, e, n, o) {
-  x(t), I(e);
+  I(t), j(e);
   const a = Se(t, "userinfo_endpoint", Te(e, o)), r = W(o == null ? void 0 : o.headers);
   return e.userinfo_signed_response_alg ? r.set("accept", "application/jwt") : (r.set("accept", "application/json"), r.append("accept", "application/jwt")), pt(n, "GET", a, r, null, {
     ...o,
-    [K]: L(e)
+    [K]: x(e)
   });
 }
 async function mt(t, e, n, o, a, r, i) {
@@ -574,7 +574,7 @@ async function ke(t, e, n, o, a) {
   return i.set("accept", "application/json"), mt(t, e, "POST", r, o, i, a);
 }
 async function gt(t, e, n, o) {
-  if (x(t), I(e), !w(n))
+  if (I(t), j(e), !w(n))
     throw new TypeError('"refreshToken" must be a non-empty string');
   const a = new URLSearchParams(o == null ? void 0 : o.additionalParameters);
   return a.set("refresh_token", n), ke(t, e, "refresh_token", a, o);
@@ -589,7 +589,7 @@ function yt(t) {
   return e[0];
 }
 async function Ee(t, e, n, o = !1, a = !1) {
-  if (x(t), I(e), !Z(n, Response))
+  if (I(t), j(e), !Z(n, Response))
     throw new TypeError('"response" must be an instance of Response');
   if (n.status !== 200) {
     let i;
@@ -604,7 +604,7 @@ async function Ee(t, e, n, o = !1, a = !1) {
   } catch (i) {
     throw new s('failed to parse "response" body as JSON', { cause: i });
   }
-  if (!C(r))
+  if (!L(r))
     throw new s('"response" body must be a top level object');
   if (!w(r.access_token))
     throw new s('"response" body "access_token" property must be a non-empty string');
@@ -622,7 +622,7 @@ async function Ee(t, e, n, o = !1, a = !1) {
     if (r.id_token !== void 0 && !w(r.id_token))
       throw new s('"response" body "id_token" property must be a non-empty string');
     if (r.id_token) {
-      const { claims: i, jwt: c } = await Lt(r.id_token, xt.bind(void 0, e.id_token_signed_response_alg, t.id_token_signing_alg_values_supported), Ue, L(e), _e(e), e[$e]).then(At.bind(void 0, ["aud", "exp", "iat", "iss", "sub"])).then(vt.bind(void 0, t.issuer)).then(_t.bind(void 0, e.client_id));
+      const { claims: i, jwt: c } = await Lt(r.id_token, xt.bind(void 0, e.id_token_signed_response_alg, t.id_token_signing_alg_values_supported), Ue, x(e), _e(e), e[$e]).then(At.bind(void 0, ["aud", "exp", "iat", "iss", "sub"])).then(vt.bind(void 0, t.issuer)).then(_t.bind(void 0, e.client_id));
       if (Array.isArray(i.aud) && i.aud.length !== 1) {
         if (i.azp === void 0)
           throw new s('ID Token "aud" (audience) claim includes additional untrusted audiences');
@@ -657,7 +657,7 @@ function St(t) {
   return Re.add(t), t;
 }
 async function Tt(t, e, n, o, a, r) {
-  if (x(t), I(e), !Re.has(n))
+  if (I(t), j(e), !Re.has(n))
     throw new TypeError('"callbackParameters" must be an instance of URLSearchParams obtained from "validateAuthResponse()", or "validateJwtAuthResponse()');
   if (!w(o))
     throw new TypeError('"redirectUri" must be a non-empty string');
@@ -705,7 +705,7 @@ async function Rt(t, e, n, o, a) {
   if (a !== B) {
     if (typeof a != "number" || a < 0)
       throw new TypeError('"maxAge" must be a non-negative number');
-    const c = $() + L(e), p = _e(e);
+    const c = $() + x(e), p = _e(e);
     if (i.auth_time + a < c - p)
       throw new s("too much time has elapsed since the last End-User authentication");
   }
@@ -734,7 +734,7 @@ async function Pt(t) {
     ee(t);
     try {
       const e = await t.json();
-      if (C(e) && typeof e.error == "string" && e.error.length)
+      if (L(e) && typeof e.error == "string" && e.error.length)
         return e.error_description !== void 0 && typeof e.error_description != "string" && delete e.error_description, e.error_uri !== void 0 && typeof e.error_uri != "string" && delete e.error_uri, e.algs !== void 0 && typeof e.algs != "string" && delete e.algs, e.scope !== void 0 && typeof e.scope != "string" && delete e.scope, e;
     } catch {
     }
@@ -804,7 +804,7 @@ async function Lt(t, e, n, o, a, r) {
   } catch (l) {
     throw new s("failed to parse JWT Header body as base64url encoded JSON", { cause: l });
   }
-  if (!C(f))
+  if (!L(f))
     throw new s("JWT Header must be a top level object");
   if (e(f), f.crit !== void 0)
     throw new s('unexpected JWT "crit" header parameter');
@@ -817,13 +817,13 @@ async function Lt(t, e, n, o, a, r) {
   } catch (l) {
     throw new s("failed to parse JWT Payload body as base64url encoded JSON", { cause: l });
   }
-  if (!C(h))
+  if (!L(h))
     throw new s("JWT Payload must be a top level object");
-  const j = $() + o;
+  const J = $() + o;
   if (h.exp !== void 0) {
     if (typeof h.exp != "number")
       throw new s('unexpected JWT "exp" (expiration time) claim type');
-    if (h.exp <= j - a)
+    if (h.exp <= J - a)
       throw new s('unexpected JWT "exp" (expiration time) claim value, timestamp is <= now()');
   }
   if (h.iat !== void 0 && typeof h.iat != "number")
@@ -833,7 +833,7 @@ async function Lt(t, e, n, o, a, r) {
   if (h.nbf !== void 0) {
     if (typeof h.nbf != "number")
       throw new s('unexpected JWT "nbf" (not before) claim type');
-    if (h.nbf > j + a)
+    if (h.nbf > J + a)
       throw new s('unexpected JWT "nbf" (not before) claim value, timestamp is > now()');
   }
   if (h.aud !== void 0 && typeof h.aud != "string" && !Array.isArray(h.aud))
@@ -862,7 +862,7 @@ function k(t, e) {
 }
 const It = Symbol(), jt = Symbol();
 function Jt(t, e, n, o) {
-  if (x(t), I(e), n instanceof URL && (n = n.searchParams), !(n instanceof URLSearchParams))
+  if (I(t), j(e), n instanceof URL && (n = n.searchParams), !(n instanceof URLSearchParams))
     throw new TypeError('"parameters" must be an instance of URLSearchParams, or URL');
   if (k(n, "response"))
     throw new s('"parameters" contains a JARM response, use validateJwtAuthResponse() instead of validateAuthResponse()');
@@ -961,7 +961,7 @@ class Dt {
     b(this, "redirectToAfterSignOut");
     b(this, "audience");
     b(this, "signOut", async () => {
-      z.setState({
+      C.setState({
         isAuthenticated: !1,
         isPending: !1,
         profile: void 0,
@@ -1017,7 +1017,7 @@ class Dt {
         emailVerified: y.email_verified ?? !1,
         pictureUrl: y.picture
       };
-      z.setState({
+      C.setState({
         isAuthenticated: !0,
         isPending: !1,
         profile: T
@@ -1055,7 +1055,7 @@ class Dt {
       expiresOn: new Date(Date.now() + e.expires_in * 1e3),
       tokenType: e.token_type
     };
-    z.setState({
+    C.setState({
       providerData: n
     });
   }
@@ -1098,13 +1098,18 @@ class Dt {
     location.href = c.href;
   }
   async getAccessToken() {
-    const e = await this.getAuthServer(), { providerData: n } = z.getState();
+    const e = await this.getAuthServer(), { providerData: n } = C.getState();
     if (!n)
       throw new P("User is not authenticated");
     const o = n;
-    if (o.expiresOn < /* @__PURE__ */ new Date()) {
+    if (new Date(o.expiresOn) < /* @__PURE__ */ new Date()) {
       if (!o.refreshToken)
-        return await this.signIn(), "";
+        return C.setState({
+          isAuthenticated: !1,
+          isPending: !1,
+          profile: null,
+          providerData: null
+        }), "";
       const a = await gt(
         e,
         this.client,