zudoku 0.0.0-fix-create-zudoku-run-build.fefccf58 → 0.0.0-reset-hash-value.ac516c6d

package/lib/zudoku.auth-auth0.js

@@ -1,31 +1,32 @@
-import { u as o } from "./hook-B4Q30zMI.js";
-import { OpenIDAuthenticationProvider as r } from "./zudoku.auth-openid.js";
-class a extends r {
-  constructor(e) {
+import { u as n } from "./ZudokuContext-BXTZApgy.js";
+import { OpenIDAuthenticationProvider as a } from "./zudoku.auth-openid.js";
+class r extends a {
+  options;
+  constructor(t) {
     super({
-      ...e,
+      ...t,
       type: "openid",
-      issuer: `https://${e.domain}/`,
-      clientId: e.clientId,
-      audience: e.audience,
-      scopes: e.scopes
-    });
+      issuer: `https://${t.domain}/`,
+      clientId: t.clientId,
+      audience: t.audience,
+      scopes: t.scopes
+    }), this.options = t.options;
   }
-  onAuthorizationUrl = async (e, { isSignUp: t }) => {
-    e.searchParams.set("prompt", "login"), t && e.searchParams.set("screen_hint", "signup");
+  onAuthorizationUrl = async (t, { isSignUp: e }) => {
+    this.options?.alwaysPromptLogin !== !1 && t.searchParams.set("prompt", "login"), e && t.searchParams.set("screen_hint", "signup");
   };
   signOut = async () => {
-    const e = await this.getAuthServer(), t = await this.getAccessToken();
-    o.setState({
+    const t = await this.getAuthServer(), e = await this.getAccessToken();
+    n.setState({
       isAuthenticated: !1,
       isPending: !1,
-      profile: null,
-      providerData: null
+      profile: void 0,
+      providerData: void 0
     });
     const i = new URL(window.location.origin);
-    if (i.pathname = this.redirectToAfterSignOut, e.end_session_endpoint) {
-      const n = new URL(e.end_session_endpoint);
-      t && n.searchParams.set("id_token_hint", t), n.searchParams.set(
+    if (i.pathname = this.redirectToAfterSignOut, t.end_session_endpoint) {
+      const o = new URL(t.end_session_endpoint);
+      e && o.searchParams.set("id_token_hint", e), o.searchParams.set(
         "post_logout_redirect_uri",
         i.toString()
       );
@@ -35,8 +36,8 @@ class a extends r {
       );
   };
 }
-const d = (s) => new a(s);
+const p = (s) => new r(s);
 export {
-  d as default
+  p as default
 };
 //# sourceMappingURL=zudoku.auth-auth0.js.map

package/lib/zudoku.auth-auth0.js.map

@@ -1 +1 @@
-{"version":3,"file":"zudoku.auth-auth0.js","sources":["../src/lib/authentication/providers/auth0.tsx"],"sourcesContent":["import type { Auth0AuthenticationConfig } from \"../../../config/config.js\";\nimport type {\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { useAuthState } from \"../state.js\";\nimport { OpenIDAuthenticationProvider } from \"./openid.js\";\n\nclass Auth0AuthenticationProvider\n  extends OpenIDAuthenticationProvider\n  implements AuthenticationPlugin\n{\n  constructor(config: Auth0AuthenticationConfig) {\n    super({\n      ...config,\n      type: \"openid\",\n      issuer: `https://${config.domain}/`,\n      clientId: config.clientId,\n      audience: config.audience,\n      scopes: config.scopes,\n    });\n  }\n\n  onAuthorizationUrl = async (\n    url: URL,\n    { isSignUp }: { isSignUp: boolean },\n  ) => {\n    url.searchParams.set(\"prompt\", \"login\");\n    if (isSignUp) {\n      url.searchParams.set(\"screen_hint\", \"signup\");\n    }\n  };\n\n  signOut = async (): Promise<void> => {\n    const as = await this.getAuthServer();\n    const idToken = await this.getAccessToken();\n\n    useAuthState.setState({\n      isAuthenticated: false,\n      isPending: false,\n      profile: null,\n      providerData: null,\n    });\n\n    const redirectUrl = new URL(window.location.origin);\n    redirectUrl.pathname = this.redirectToAfterSignOut;\n\n    // SEE: https://auth0.com/docs/authenticate/login/logout/log-users-out-of-auth0\n    // For Auth0 tenants created on or after 14 November 2023, RP-Initiated\n    // Logout End Session Endpoint Discovery is enabled by default.\n    // Otherwise we fallback to the old non-compliant logout\n\n    // The endSessionEndpoint is set, the IdP supports some form of logout,\n    // so we use the IdP logout. Otherwise, just redirect the user to home\n    if (as.end_session_endpoint) {\n      const logoutUrl = new URL(as.end_session_endpoint);\n      if (idToken) {\n        logoutUrl.searchParams.set(\"id_token_hint\", idToken);\n      }\n      logoutUrl.searchParams.set(\n        \"post_logout_redirect_uri\",\n        redirectUrl.toString(),\n      );\n\n      // window.location.href = logoutUrl.toString();\n    } else {\n      const _logoutUrl = new URL(\n        `${this.issuer.replace(/\\/$/, \"\")}/oidc/logout`,\n      );\n      // window.location.href = logoutUrl.toString();\n    }\n  };\n}\n\nconst auth0Auth: AuthenticationProviderInitializer<\n  Auth0AuthenticationConfig\n> = (options) => new Auth0AuthenticationProvider(options);\n\nexport default auth0Auth;\n"],"names":["Auth0AuthenticationProvider","OpenIDAuthenticationProvider","config","url","isSignUp","as","idToken","useAuthState","redirectUrl","logoutUrl","auth0Auth","options"],"mappings":";;AAQA,MAAMA,UACIC,EAEV;AAAA,EACE,YAAYC,GAAmC;AAC7C,UAAM;AAAA,MACJ,GAAGA;AAAA,MACH,MAAM;AAAA,MACN,QAAQ,WAAWA,EAAO,MAAM;AAAA,MAChC,UAAUA,EAAO;AAAA,MACjB,UAAUA,EAAO;AAAA,MACjB,QAAQA,EAAO;AAAA,IAAA,CAChB;AAAA,EACH;AAAA,EAEA,qBAAqB,OACnBC,GACA,EAAE,UAAAC,QACC;AACH,IAAAD,EAAI,aAAa,IAAI,UAAU,OAAO,GAClCC,KACFD,EAAI,aAAa,IAAI,eAAe,QAAQ;AAAA,EAEhD;AAAA,EAEA,UAAU,YAA2B;AACnC,UAAME,IAAK,MAAM,KAAK,cAAA,GAChBC,IAAU,MAAM,KAAK,eAAA;AAE3B,IAAAC,EAAa,SAAS;AAAA,MACpB,iBAAiB;AAAA,MACjB,WAAW;AAAA,MACX,SAAS;AAAA,MACT,cAAc;AAAA,IAAA,CACf;AAED,UAAMC,IAAc,IAAI,IAAI,OAAO,SAAS,MAAM;AAUlD,QATAA,EAAY,WAAW,KAAK,wBASxBH,EAAG,sBAAsB;AAC3B,YAAMI,IAAY,IAAI,IAAIJ,EAAG,oBAAoB;AACjD,MAAIC,KACFG,EAAU,aAAa,IAAI,iBAAiBH,CAAO,GAErDG,EAAU,aAAa;AAAA,QACrB;AAAA,QACAD,EAAY,SAAA;AAAA,MAAS;AAAA,IAIzB;AACqB,UAAI;AAAA,QACrB,GAAG,KAAK,OAAO,QAAQ,OAAO,EAAE,CAAC;AAAA,MAAA;AAAA,EAIvC;AACF;AAEA,MAAME,IAEF,CAACC,MAAY,IAAIX,EAA4BW,CAAO;"}
+{"version":3,"file":"zudoku.auth-auth0.js","sources":["../src/lib/authentication/providers/auth0.tsx"],"sourcesContent":["import type { Auth0AuthenticationConfig } from \"../../../config/config.js\";\nimport type {\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { useAuthState } from \"../state.js\";\nimport { OpenIDAuthenticationProvider } from \"./openid.js\";\n\nclass Auth0AuthenticationProvider\n  extends OpenIDAuthenticationProvider\n  implements AuthenticationPlugin\n{\n  private readonly options: Auth0AuthenticationConfig[\"options\"];\n  constructor(config: Auth0AuthenticationConfig) {\n    super({\n      ...config,\n      type: \"openid\",\n      issuer: `https://${config.domain}/`,\n      clientId: config.clientId,\n      audience: config.audience,\n      scopes: config.scopes,\n    });\n    this.options = config.options;\n  }\n\n  onAuthorizationUrl = async (\n    url: URL,\n    { isSignUp }: { isSignUp: boolean },\n  ) => {\n    if (this.options?.alwaysPromptLogin !== false) {\n      url.searchParams.set(\"prompt\", \"login\");\n    }\n    if (isSignUp) {\n      url.searchParams.set(\"screen_hint\", \"signup\");\n    }\n  };\n\n  signOut = async (): Promise<void> => {\n    const as = await this.getAuthServer();\n    const idToken = await this.getAccessToken();\n\n    useAuthState.setState({\n      isAuthenticated: false,\n      isPending: false,\n      profile: undefined,\n      providerData: undefined,\n    });\n\n    const redirectUrl = new URL(window.location.origin);\n    redirectUrl.pathname = this.redirectToAfterSignOut;\n\n    // SEE: https://auth0.com/docs/authenticate/login/logout/log-users-out-of-auth0\n    // For Auth0 tenants created on or after 14 November 2023, RP-Initiated\n    // Logout End Session Endpoint Discovery is enabled by default.\n    // Otherwise we fallback to the old non-compliant logout\n\n    // The endSessionEndpoint is set, the IdP supports some form of logout,\n    // so we use the IdP logout. Otherwise, just redirect the user to home\n    if (as.end_session_endpoint) {\n      const logoutUrl = new URL(as.end_session_endpoint);\n      if (idToken) {\n        logoutUrl.searchParams.set(\"id_token_hint\", idToken);\n      }\n      logoutUrl.searchParams.set(\n        \"post_logout_redirect_uri\",\n        redirectUrl.toString(),\n      );\n\n      // window.location.href = logoutUrl.toString();\n    } else {\n      const _logoutUrl = new URL(\n        `${this.issuer.replace(/\\/$/, \"\")}/oidc/logout`,\n      );\n      // window.location.href = logoutUrl.toString();\n    }\n  };\n}\n\nconst auth0Auth: AuthenticationProviderInitializer<\n  Auth0AuthenticationConfig\n> = (options) => new Auth0AuthenticationProvider(options);\n\nexport default auth0Auth;\n"],"names":["Auth0AuthenticationProvider","OpenIDAuthenticationProvider","config","url","isSignUp","as","idToken","useAuthState","redirectUrl","logoutUrl","auth0Auth","options"],"mappings":";;AAQA,MAAMA,UACIC,EAEV;AAAA,EACmB;AAAA,EACjB,YAAYC,GAAmC;AAC7C,UAAM;AAAA,MACJ,GAAGA;AAAA,MACH,MAAM;AAAA,MACN,QAAQ,WAAWA,EAAO,MAAM;AAAA,MAChC,UAAUA,EAAO;AAAA,MACjB,UAAUA,EAAO;AAAA,MACjB,QAAQA,EAAO;AAAA,IAAA,CAChB,GACD,KAAK,UAAUA,EAAO;AAAA,EACxB;AAAA,EAEA,qBAAqB,OACnBC,GACA,EAAE,UAAAC,QACC;AACH,IAAI,KAAK,SAAS,sBAAsB,MACtCD,EAAI,aAAa,IAAI,UAAU,OAAO,GAEpCC,KACFD,EAAI,aAAa,IAAI,eAAe,QAAQ;AAAA,EAEhD;AAAA,EAEA,UAAU,YAA2B;AACnC,UAAME,IAAK,MAAM,KAAK,cAAA,GAChBC,IAAU,MAAM,KAAK,eAAA;AAE3B,IAAAC,EAAa,SAAS;AAAA,MACpB,iBAAiB;AAAA,MACjB,WAAW;AAAA,MACX,SAAS;AAAA,MACT,cAAc;AAAA,IAAA,CACf;AAED,UAAMC,IAAc,IAAI,IAAI,OAAO,SAAS,MAAM;AAUlD,QATAA,EAAY,WAAW,KAAK,wBASxBH,EAAG,sBAAsB;AAC3B,YAAMI,IAAY,IAAI,IAAIJ,EAAG,oBAAoB;AACjD,MAAIC,KACFG,EAAU,aAAa,IAAI,iBAAiBH,CAAO,GAErDG,EAAU,aAAa;AAAA,QACrB;AAAA,QACAD,EAAY,SAAA;AAAA,MAAS;AAAA,IAIzB;AACqB,UAAI;AAAA,QACrB,GAAG,KAAK,OAAO,QAAQ,OAAO,EAAE,CAAC;AAAA,MAAA;AAAA,EAIvC;AACF;AAEA,MAAME,IAEF,CAACC,MAAY,IAAIX,EAA4BW,CAAO;"}

package/lib/zudoku.auth-azureb2c.js

@@ -1,11 +1,10 @@
-import { j as o } from "./jsx-runtime-C5mzlN2N.js";
+import { j as o } from "./jsx-runtime-BzflLqGi.js";
 import { PublicClientApplication as A, EventType as f } from "@azure/msal-browser";
-import { E as I } from "./index-BuKx9nrj.js";
+import { E as I } from "./index-BPSpOxTK.js";
 import { C as T } from "./ClientOnly-E7hGysn1.js";
-import { j as S } from "./ZudokuContext-BR-lnR7O.js";
-import { C, A as c } from "./errors-CjmCml50.js";
-import { C as k, O as w } from "./OAuthErrorPage-rAKHHveX.js";
-import { u as h } from "./hook-B4Q30zMI.js";
+import { j as S, u as h } from "./ZudokuContext-BXTZApgy.js";
+import { C, A as c } from "./errors-XqO6MsfU.js";
+import { C as k, O as w } from "./OAuthErrorPage-DJUOdr6Q.js";
 const u = "/oauth/callback";
 class y extends C {
   msalInstance;
@@ -17,13 +16,13 @@ class y extends C {
     clientId: e,
     tenantName: t,
     policyName: n,
-    scopes: r,
+    scopes: a,
     redirectToAfterSignUp: s,
-    redirectToAfterSignIn: a,
+    redirectToAfterSignIn: r,
     redirectToAfterSignOut: d = "/",
     basePath: m = ""
   }) {
-    super(), this.scopes = r ?? ["openid", "profile", "email"], this.redirectToAfterSignUp = s, this.redirectToAfterSignIn = a, this.redirectToAfterSignOut = d;
+    super(), this.scopes = a ?? ["openid", "profile", "email"], this.redirectToAfterSignUp = s, this.redirectToAfterSignIn = r, this.redirectToAfterSignOut = d;
     const p = `https://${t}.b2clogin.com/${t}.onmicrosoft.com/${n}`, g = S(m, u);
     this.msalInstance = new A({
       auth: {
@@ -45,21 +44,21 @@ class y extends C {
     });
   }
   handleAuthResponse(e) {
-    const { accessToken: t, idToken: n, scopes: r, account: s } = e;
+    const { accessToken: t, idToken: n, scopes: a, account: s } = e;
     if (!s)
       throw new c("No account information in response");
-    const a = [s.idTokenClaims?.given_name, s.idTokenClaims?.family_name].filter(Boolean).join(" ") || s.username;
+    const r = [s.idTokenClaims?.given_name, s.idTokenClaims?.family_name].filter(Boolean).join(" ") || s.username;
     h.getState().setLoggedIn({
       providerData: {
         accessToken: t,
         idToken: n,
-        scopes: r,
+        scopes: a,
         account: s
       },
       profile: {
         sub: s.localAccountId,
         email: s.username,
-        name: a,
+        name: r,
         emailVerified: !0,
         // Azure B2C emails are verified
         pictureUrl: void 0
@@ -129,9 +128,9 @@ class y extends C {
     ];
   }
 }
-const B = (l) => new y(l);
+const x = (l) => new y(l);
 export {
   y as AzureB2CAuthPlugin,
-  B as default
+  x as default
 };
 //# sourceMappingURL=zudoku.auth-azureb2c.js.map

package/lib/zudoku.auth-azureb2c.js.map

@@ -1 +1 @@
-{"version":3,"file":"zudoku.auth-azureb2c.js","sources":["../src/lib/authentication/providers/azureb2c.tsx"],"sourcesContent":["import type { AuthenticationResult, EventMessage } from \"@azure/msal-browser\";\nimport { EventType, PublicClientApplication } from \"@azure/msal-browser\";\nimport { ErrorBoundary } from \"react-error-boundary\";\nimport type { AzureB2CAuthenticationConfig } from \"../../../config/config.js\";\nimport { ClientOnly } from \"../../components/ClientOnly.js\";\nimport { joinUrl } from \"../../util/joinUrl.js\";\nimport { CoreAuthenticationPlugin } from \"../AuthenticationPlugin.js\";\nimport type {\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { CallbackHandler } from \"../components/CallbackHandler.js\";\nimport { OAuthErrorPage } from \"../components/OAuthErrorPage.js\";\nimport { AuthorizationError } from \"../errors.js\";\nimport { useAuthState } from \"../state.js\";\n\nconst AZUREB2C_CALLBACK_PATH = \"/oauth/callback\";\n\nexport class AzureB2CAuthPlugin\n  extends CoreAuthenticationPlugin\n  implements AuthenticationPlugin\n{\n  private msalInstance: PublicClientApplication;\n  private readonly scopes: string[];\n  private readonly redirectToAfterSignUp?: string;\n  private readonly redirectToAfterSignIn?: string;\n  private readonly redirectToAfterSignOut: string;\n\n  constructor({\n    clientId,\n    tenantName,\n    policyName,\n    scopes,\n    redirectToAfterSignUp,\n    redirectToAfterSignIn,\n    redirectToAfterSignOut = \"/\",\n    basePath = \"\",\n  }: AzureB2CAuthenticationConfig) {\n    super();\n    this.scopes = scopes ?? [\"openid\", \"profile\", \"email\"];\n    this.redirectToAfterSignUp = redirectToAfterSignUp;\n    this.redirectToAfterSignIn = redirectToAfterSignIn;\n    this.redirectToAfterSignOut = redirectToAfterSignOut;\n\n    const authority = `https://${tenantName}.b2clogin.com/${tenantName}.onmicrosoft.com/${policyName}`;\n    const redirectUri = joinUrl(basePath, AZUREB2C_CALLBACK_PATH);\n\n    this.msalInstance = new PublicClientApplication({\n      auth: {\n        clientId,\n        authority,\n        redirectUri,\n        knownAuthorities: [`${tenantName}.b2clogin.com`],\n      },\n      cache: {\n        cacheLocation: \"sessionStorage\",\n        storeAuthStateInCookie: false,\n      },\n    });\n\n    void this.msalInstance.initialize().then(async () => {\n      void this.msalInstance\n        .handleRedirectPromise()\n        .then((response: AuthenticationResult | null) => {\n          if (response) {\n            this.handleAuthResponse(response);\n          }\n        });\n\n      // Add event callback\n      void this.msalInstance.addEventCallback((event: EventMessage) => {\n        if (event.eventType === EventType.LOGIN_SUCCESS) {\n          this.handleAuthResponse(event.payload as AuthenticationResult);\n        }\n      });\n    });\n  }\n\n  private handleAuthResponse(response: AuthenticationResult) {\n    const { accessToken, idToken, scopes, account } = response;\n\n    if (!account) {\n      throw new AuthorizationError(\"No account information in response\");\n    }\n\n    // Get the user's name from Azure B2C claims\n    const name =\n      [account.idTokenClaims?.given_name, account.idTokenClaims?.family_name]\n        .filter(Boolean)\n        .join(\" \") || account.username;\n\n    useAuthState.getState().setLoggedIn({\n      providerData: {\n        accessToken,\n        idToken,\n        scopes,\n        account,\n      },\n      profile: {\n        sub: account.localAccountId,\n        email: account.username,\n        name,\n        emailVerified: true, // Azure B2C emails are verified\n        pictureUrl: undefined, // Azure B2C doesn't provide profile pictures by default\n      },\n    });\n  }\n\n  async signUp({ redirectTo }: { redirectTo?: string } = {}) {\n    const redirectUri = this.redirectToAfterSignUp ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n      prompt: \"select_account\",\n    });\n  }\n\n  async signIn({ redirectTo }: { redirectTo?: string } = {}) {\n    const redirectUri = this.redirectToAfterSignIn ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n    });\n  }\n\n  async getAccessToken(): Promise<string> {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (!account) {\n      throw new AuthorizationError(\"No active account\");\n    }\n\n    try {\n      const response = await this.msalInstance.acquireTokenSilent({\n        scopes: this.scopes,\n        account,\n      });\n      return response.accessToken;\n    } catch {\n      // If silent token acquisition fails, try interactive\n      await this.msalInstance.acquireTokenRedirect({\n        scopes: this.scopes,\n        account,\n      });\n\n      throw new AuthorizationError(\n        \"Token acquisition failed after interactive attempt\",\n      );\n    }\n  }\n\n  signRequest = async (request: Request): Promise<Request> => {\n    const accessToken = await this.getAccessToken();\n    request.headers.set(\"Authorization\", `Bearer ${accessToken}`);\n    return request;\n  };\n\n  signOut = async () => {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (account) {\n      await this.msalInstance.logoutRedirect({\n        account,\n        postLogoutRedirectUri:\n          window.location.origin + this.redirectToAfterSignOut,\n      });\n    }\n\n    useAuthState.getState().setLoggedOut();\n  };\n\n  handleCallback = async () => {\n    const redirectTo = sessionStorage.getItem(\"redirect-to\") ?? \"/\";\n    sessionStorage.removeItem(\"redirect-to\");\n    return redirectTo;\n  };\n\n  getRoutes() {\n    return [\n      ...super.getRoutes(),\n      {\n        path: AZUREB2C_CALLBACK_PATH,\n        element: (\n          <ClientOnly>\n            <ErrorBoundary\n              fallbackRender={({ error }) => <OAuthErrorPage error={error} />}\n            >\n              <CallbackHandler handleCallback={this.handleCallback} />\n            </ErrorBoundary>\n          </ClientOnly>\n        ),\n      },\n    ];\n  }\n}\n\nconst azureB2CAuth: AuthenticationProviderInitializer<\n  AzureB2CAuthenticationConfig\n> = (options) => new AzureB2CAuthPlugin(options);\n\nexport default azureB2CAuth;\n"],"names":["AZUREB2C_CALLBACK_PATH","AzureB2CAuthPlugin","CoreAuthenticationPlugin","clientId","tenantName","policyName","scopes","redirectToAfterSignUp","redirectToAfterSignIn","redirectToAfterSignOut","basePath","authority","redirectUri","joinUrl","PublicClientApplication","response","event","EventType","accessToken","idToken","account","AuthorizationError","name","useAuthState","redirectTo","request","ClientOnly","jsx","ErrorBoundary","error","OAuthErrorPage","CallbackHandler","azureB2CAuth","options"],"mappings":";;;;;;;;AAgBA,MAAMA,IAAyB;AAExB,MAAMC,UACHC,EAEV;AAAA,EACU;AAAA,EACS;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY;AAAA,IACV,UAAAC;AAAA,IACA,YAAAC;AAAA,IACA,YAAAC;AAAA,IACA,QAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,wBAAAC,IAAyB;AAAA,IACzB,UAAAC,IAAW;AAAA,EAAA,GACoB;AAC/B,UAAA,GACA,KAAK,SAASJ,KAAU,CAAC,UAAU,WAAW,OAAO,GACrD,KAAK,wBAAwBC,GAC7B,KAAK,wBAAwBC,GAC7B,KAAK,yBAAyBC;AAE9B,UAAME,IAAY,WAAWP,CAAU,iBAAiBA,CAAU,oBAAoBC,CAAU,IAC1FO,IAAcC,EAAQH,GAAUV,CAAsB;AAE5D,SAAK,eAAe,IAAIc,EAAwB;AAAA,MAC9C,MAAM;AAAA,QACJ,UAAAX;AAAA,QACA,WAAAQ;AAAA,QACA,aAAAC;AAAA,QACA,kBAAkB,CAAC,GAAGR,CAAU,eAAe;AAAA,MAAA;AAAA,MAEjD,OAAO;AAAA,QACL,eAAe;AAAA,QACf,wBAAwB;AAAA,MAAA;AAAA,IAC1B,CACD,GAEI,KAAK,aAAa,WAAA,EAAa,KAAK,YAAY;AACnD,MAAK,KAAK,aACP,sBAAA,EACA,KAAK,CAACW,MAA0C;AAC/C,QAAIA,KACF,KAAK,mBAAmBA,CAAQ;AAAA,MAEpC,CAAC,GAGE,KAAK,aAAa,iBAAiB,CAACC,MAAwB;AAC/D,QAAIA,EAAM,cAAcC,EAAU,iBAChC,KAAK,mBAAmBD,EAAM,OAA+B;AAAA,MAEjE,CAAC;AAAA,IACH,CAAC;AAAA,EACH;AAAA,EAEQ,mBAAmBD,GAAgC;AACzD,UAAM,EAAE,aAAAG,GAAa,SAAAC,GAAS,QAAAb,GAAQ,SAAAc,MAAYL;AAElD,QAAI,CAACK;AACH,YAAM,IAAIC,EAAmB,oCAAoC;AAInE,UAAMC,IACJ,CAACF,EAAQ,eAAe,YAAYA,EAAQ,eAAe,WAAW,EACnE,OAAO,OAAO,EACd,KAAK,GAAG,KAAKA,EAAQ;AAE1B,IAAAG,EAAa,SAAA,EAAW,YAAY;AAAA,MAClC,cAAc;AAAA,QACZ,aAAAL;AAAA,QACA,SAAAC;AAAA,QACA,QAAAb;AAAA,QACA,SAAAc;AAAA,MAAA;AAAA,MAEF,SAAS;AAAA,QACP,KAAKA,EAAQ;AAAA,QACb,OAAOA,EAAQ;AAAA,QACf,MAAAE;AAAA,QACA,eAAe;AAAA;AAAA,QACf,YAAY;AAAA;AAAA,MAAA;AAAA,IACd,CACD;AAAA,EACH;AAAA,EAEA,MAAM,OAAO,EAAE,YAAAE,EAAA,IAAwC,IAAI;AACzD,UAAMZ,IAAc,KAAK,yBAAyBY,KAAc;AAChE,mBAAe,QAAQ,eAAeZ,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,MACb,QAAQ;AAAA,IAAA,CACT;AAAA,EACH;AAAA,EAEA,MAAM,OAAO,EAAE,YAAAY,EAAA,IAAwC,IAAI;AACzD,UAAMZ,IAAc,KAAK,yBAAyBY,KAAc;AAChE,mBAAe,QAAQ,eAAeZ,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,IAAA,CACd;AAAA,EACH;AAAA,EAEA,MAAM,iBAAkC;AACtC,UAAMQ,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,QAAI,CAACA;AACH,YAAM,IAAIC,EAAmB,mBAAmB;AAGlD,QAAI;AAKF,cAJiB,MAAM,KAAK,aAAa,mBAAmB;AAAA,QAC1D,QAAQ,KAAK;AAAA,QACb,SAAAD;AAAA,MAAA,CACD,GACe;AAAA,IAClB,QAAQ;AAEN,kBAAM,KAAK,aAAa,qBAAqB;AAAA,QAC3C,QAAQ,KAAK;AAAA,QACb,SAAAA;AAAA,MAAA,CACD,GAEK,IAAIC;AAAA,QACR;AAAA,MAAA;AAAA,IAEJ;AAAA,EACF;AAAA,EAEA,cAAc,OAAOI,MAAuC;AAC1D,UAAMP,IAAc,MAAM,KAAK,eAAA;AAC/B,WAAAO,EAAQ,QAAQ,IAAI,iBAAiB,UAAUP,CAAW,EAAE,GACrDO;AAAA,EACT;AAAA,EAEA,UAAU,YAAY;AACpB,UAAML,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,IAAIA,KACF,MAAM,KAAK,aAAa,eAAe;AAAA,MACrC,SAAAA;AAAA,MACA,uBACE,OAAO,SAAS,SAAS,KAAK;AAAA,IAAA,CACjC,GAGHG,EAAa,SAAA,EAAW,aAAA;AAAA,EAC1B;AAAA,EAEA,iBAAiB,YAAY;AAC3B,UAAMC,IAAa,eAAe,QAAQ,aAAa,KAAK;AAC5D,0BAAe,WAAW,aAAa,GAChCA;AAAA,EACT;AAAA,EAEA,YAAY;AACV,WAAO;AAAA,MACL,GAAG,MAAM,UAAA;AAAA,MACT;AAAA,QACE,MAAMxB;AAAA,QACN,+BACG0B,GAAA,EACC,UAAAC,gBAAAA,EAAAA;AAAAA,UAACC;AAAA,UAAA;AAAA,YACC,gBAAgB,CAAC,EAAE,OAAAC,QAAYF,gBAAAA,EAAAA,IAACG,KAAe,OAAAD,GAAc;AAAA,YAE7D,UAAAF,gBAAAA,EAAAA,IAACI,GAAA,EAAgB,gBAAgB,KAAK,eAAA,CAAgB;AAAA,UAAA;AAAA,QAAA,EACxD,CACF;AAAA,MAAA;AAAA,IAEJ;AAAA,EAEJ;AACF;AAEA,MAAMC,IAEF,CAACC,MAAY,IAAIhC,EAAmBgC,CAAO;"}
+{"version":3,"file":"zudoku.auth-azureb2c.js","sources":["../src/lib/authentication/providers/azureb2c.tsx"],"sourcesContent":["import type { AuthenticationResult, EventMessage } from \"@azure/msal-browser\";\nimport { EventType, PublicClientApplication } from \"@azure/msal-browser\";\nimport { ErrorBoundary } from \"react-error-boundary\";\nimport type { AzureB2CAuthenticationConfig } from \"../../../config/config.js\";\nimport { ClientOnly } from \"../../components/ClientOnly.js\";\nimport { joinUrl } from \"../../util/joinUrl.js\";\nimport { CoreAuthenticationPlugin } from \"../AuthenticationPlugin.js\";\nimport type {\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { CallbackHandler } from \"../components/CallbackHandler.js\";\nimport { OAuthErrorPage } from \"../components/OAuthErrorPage.js\";\nimport { AuthorizationError } from \"../errors.js\";\nimport { useAuthState } from \"../state.js\";\n\nconst AZUREB2C_CALLBACK_PATH = \"/oauth/callback\";\n\nexport class AzureB2CAuthPlugin\n  extends CoreAuthenticationPlugin\n  implements AuthenticationPlugin\n{\n  private msalInstance: PublicClientApplication;\n  private readonly scopes: string[];\n  private readonly redirectToAfterSignUp?: string;\n  private readonly redirectToAfterSignIn?: string;\n  private readonly redirectToAfterSignOut: string;\n\n  constructor({\n    clientId,\n    tenantName,\n    policyName,\n    scopes,\n    redirectToAfterSignUp,\n    redirectToAfterSignIn,\n    redirectToAfterSignOut = \"/\",\n    basePath = \"\",\n  }: AzureB2CAuthenticationConfig) {\n    super();\n    this.scopes = scopes ?? [\"openid\", \"profile\", \"email\"];\n    this.redirectToAfterSignUp = redirectToAfterSignUp;\n    this.redirectToAfterSignIn = redirectToAfterSignIn;\n    this.redirectToAfterSignOut = redirectToAfterSignOut;\n\n    const authority = `https://${tenantName}.b2clogin.com/${tenantName}.onmicrosoft.com/${policyName}`;\n    const redirectUri = joinUrl(basePath, AZUREB2C_CALLBACK_PATH);\n\n    this.msalInstance = new PublicClientApplication({\n      auth: {\n        clientId,\n        authority,\n        redirectUri,\n        knownAuthorities: [`${tenantName}.b2clogin.com`],\n      },\n      cache: {\n        cacheLocation: \"sessionStorage\",\n        storeAuthStateInCookie: false,\n      },\n    });\n\n    void this.msalInstance.initialize().then(async () => {\n      void this.msalInstance\n        .handleRedirectPromise()\n        .then((response: AuthenticationResult | null) => {\n          if (response) {\n            this.handleAuthResponse(response);\n          }\n        });\n\n      // Add event callback\n      void this.msalInstance.addEventCallback((event: EventMessage) => {\n        if (event.eventType === EventType.LOGIN_SUCCESS) {\n          this.handleAuthResponse(event.payload as AuthenticationResult);\n        }\n      });\n    });\n  }\n\n  private handleAuthResponse(response: AuthenticationResult) {\n    const { accessToken, idToken, scopes, account } = response;\n\n    if (!account) {\n      throw new AuthorizationError(\"No account information in response\");\n    }\n\n    // Get the user's name from Azure B2C claims\n    const name =\n      [account.idTokenClaims?.given_name, account.idTokenClaims?.family_name]\n        .filter(Boolean)\n        .join(\" \") || account.username;\n\n    useAuthState.getState().setLoggedIn({\n      providerData: {\n        accessToken,\n        idToken,\n        scopes,\n        account,\n      },\n      profile: {\n        sub: account.localAccountId,\n        email: account.username,\n        name,\n        emailVerified: true, // Azure B2C emails are verified\n        pictureUrl: undefined, // Azure B2C doesn't provide profile pictures by default\n      },\n    });\n  }\n\n  async signUp({ redirectTo }: { redirectTo?: string } = {}) {\n    const redirectUri = this.redirectToAfterSignUp ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n      prompt: \"select_account\",\n    });\n  }\n\n  async signIn({ redirectTo }: { redirectTo?: string } = {}) {\n    const redirectUri = this.redirectToAfterSignIn ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n    });\n  }\n\n  async getAccessToken(): Promise<string> {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (!account) {\n      throw new AuthorizationError(\"No active account\");\n    }\n\n    try {\n      const response = await this.msalInstance.acquireTokenSilent({\n        scopes: this.scopes,\n        account,\n      });\n      return response.accessToken;\n    } catch {\n      // If silent token acquisition fails, try interactive\n      await this.msalInstance.acquireTokenRedirect({\n        scopes: this.scopes,\n        account,\n      });\n\n      throw new AuthorizationError(\n        \"Token acquisition failed after interactive attempt\",\n      );\n    }\n  }\n\n  signRequest = async (request: Request): Promise<Request> => {\n    const accessToken = await this.getAccessToken();\n    request.headers.set(\"Authorization\", `Bearer ${accessToken}`);\n    return request;\n  };\n\n  signOut = async () => {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (account) {\n      await this.msalInstance.logoutRedirect({\n        account,\n        postLogoutRedirectUri:\n          window.location.origin + this.redirectToAfterSignOut,\n      });\n    }\n\n    useAuthState.getState().setLoggedOut();\n  };\n\n  handleCallback = async () => {\n    const redirectTo = sessionStorage.getItem(\"redirect-to\") ?? \"/\";\n    sessionStorage.removeItem(\"redirect-to\");\n    return redirectTo;\n  };\n\n  getRoutes() {\n    return [\n      ...super.getRoutes(),\n      {\n        path: AZUREB2C_CALLBACK_PATH,\n        element: (\n          <ClientOnly>\n            <ErrorBoundary\n              fallbackRender={({ error }) => <OAuthErrorPage error={error} />}\n            >\n              <CallbackHandler handleCallback={this.handleCallback} />\n            </ErrorBoundary>\n          </ClientOnly>\n        ),\n      },\n    ];\n  }\n}\n\nconst azureB2CAuth: AuthenticationProviderInitializer<\n  AzureB2CAuthenticationConfig\n> = (options) => new AzureB2CAuthPlugin(options);\n\nexport default azureB2CAuth;\n"],"names":["AZUREB2C_CALLBACK_PATH","AzureB2CAuthPlugin","CoreAuthenticationPlugin","clientId","tenantName","policyName","scopes","redirectToAfterSignUp","redirectToAfterSignIn","redirectToAfterSignOut","basePath","authority","redirectUri","joinUrl","PublicClientApplication","response","event","EventType","accessToken","idToken","account","AuthorizationError","name","useAuthState","redirectTo","request","ClientOnly","jsx","ErrorBoundary","error","OAuthErrorPage","CallbackHandler","azureB2CAuth","options"],"mappings":";;;;;;;AAgBA,MAAMA,IAAyB;AAExB,MAAMC,UACHC,EAEV;AAAA,EACU;AAAA,EACS;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY;AAAA,IACV,UAAAC;AAAA,IACA,YAAAC;AAAA,IACA,YAAAC;AAAA,IACA,QAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,wBAAAC,IAAyB;AAAA,IACzB,UAAAC,IAAW;AAAA,EAAA,GACoB;AAC/B,UAAA,GACA,KAAK,SAASJ,KAAU,CAAC,UAAU,WAAW,OAAO,GACrD,KAAK,wBAAwBC,GAC7B,KAAK,wBAAwBC,GAC7B,KAAK,yBAAyBC;AAE9B,UAAME,IAAY,WAAWP,CAAU,iBAAiBA,CAAU,oBAAoBC,CAAU,IAC1FO,IAAcC,EAAQH,GAAUV,CAAsB;AAE5D,SAAK,eAAe,IAAIc,EAAwB;AAAA,MAC9C,MAAM;AAAA,QACJ,UAAAX;AAAA,QACA,WAAAQ;AAAA,QACA,aAAAC;AAAA,QACA,kBAAkB,CAAC,GAAGR,CAAU,eAAe;AAAA,MAAA;AAAA,MAEjD,OAAO;AAAA,QACL,eAAe;AAAA,QACf,wBAAwB;AAAA,MAAA;AAAA,IAC1B,CACD,GAEI,KAAK,aAAa,WAAA,EAAa,KAAK,YAAY;AACnD,MAAK,KAAK,aACP,sBAAA,EACA,KAAK,CAACW,MAA0C;AAC/C,QAAIA,KACF,KAAK,mBAAmBA,CAAQ;AAAA,MAEpC,CAAC,GAGE,KAAK,aAAa,iBAAiB,CAACC,MAAwB;AAC/D,QAAIA,EAAM,cAAcC,EAAU,iBAChC,KAAK,mBAAmBD,EAAM,OAA+B;AAAA,MAEjE,CAAC;AAAA,IACH,CAAC;AAAA,EACH;AAAA,EAEQ,mBAAmBD,GAAgC;AACzD,UAAM,EAAE,aAAAG,GAAa,SAAAC,GAAS,QAAAb,GAAQ,SAAAc,MAAYL;AAElD,QAAI,CAACK;AACH,YAAM,IAAIC,EAAmB,oCAAoC;AAInE,UAAMC,IACJ,CAACF,EAAQ,eAAe,YAAYA,EAAQ,eAAe,WAAW,EACnE,OAAO,OAAO,EACd,KAAK,GAAG,KAAKA,EAAQ;AAE1B,IAAAG,EAAa,SAAA,EAAW,YAAY;AAAA,MAClC,cAAc;AAAA,QACZ,aAAAL;AAAA,QACA,SAAAC;AAAA,QACA,QAAAb;AAAA,QACA,SAAAc;AAAA,MAAA;AAAA,MAEF,SAAS;AAAA,QACP,KAAKA,EAAQ;AAAA,QACb,OAAOA,EAAQ;AAAA,QACf,MAAAE;AAAA,QACA,eAAe;AAAA;AAAA,QACf,YAAY;AAAA;AAAA,MAAA;AAAA,IACd,CACD;AAAA,EACH;AAAA,EAEA,MAAM,OAAO,EAAE,YAAAE,EAAA,IAAwC,IAAI;AACzD,UAAMZ,IAAc,KAAK,yBAAyBY,KAAc;AAChE,mBAAe,QAAQ,eAAeZ,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,MACb,QAAQ;AAAA,IAAA,CACT;AAAA,EACH;AAAA,EAEA,MAAM,OAAO,EAAE,YAAAY,EAAA,IAAwC,IAAI;AACzD,UAAMZ,IAAc,KAAK,yBAAyBY,KAAc;AAChE,mBAAe,QAAQ,eAAeZ,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,IAAA,CACd;AAAA,EACH;AAAA,EAEA,MAAM,iBAAkC;AACtC,UAAMQ,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,QAAI,CAACA;AACH,YAAM,IAAIC,EAAmB,mBAAmB;AAGlD,QAAI;AAKF,cAJiB,MAAM,KAAK,aAAa,mBAAmB;AAAA,QAC1D,QAAQ,KAAK;AAAA,QACb,SAAAD;AAAA,MAAA,CACD,GACe;AAAA,IAClB,QAAQ;AAEN,kBAAM,KAAK,aAAa,qBAAqB;AAAA,QAC3C,QAAQ,KAAK;AAAA,QACb,SAAAA;AAAA,MAAA,CACD,GAEK,IAAIC;AAAA,QACR;AAAA,MAAA;AAAA,IAEJ;AAAA,EACF;AAAA,EAEA,cAAc,OAAOI,MAAuC;AAC1D,UAAMP,IAAc,MAAM,KAAK,eAAA;AAC/B,WAAAO,EAAQ,QAAQ,IAAI,iBAAiB,UAAUP,CAAW,EAAE,GACrDO;AAAA,EACT;AAAA,EAEA,UAAU,YAAY;AACpB,UAAML,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,IAAIA,KACF,MAAM,KAAK,aAAa,eAAe;AAAA,MACrC,SAAAA;AAAA,MACA,uBACE,OAAO,SAAS,SAAS,KAAK;AAAA,IAAA,CACjC,GAGHG,EAAa,SAAA,EAAW,aAAA;AAAA,EAC1B;AAAA,EAEA,iBAAiB,YAAY;AAC3B,UAAMC,IAAa,eAAe,QAAQ,aAAa,KAAK;AAC5D,0BAAe,WAAW,aAAa,GAChCA;AAAA,EACT;AAAA,EAEA,YAAY;AACV,WAAO;AAAA,MACL,GAAG,MAAM,UAAA;AAAA,MACT;AAAA,QACE,MAAMxB;AAAA,QACN,+BACG0B,GAAA,EACC,UAAAC,gBAAAA,EAAAA;AAAAA,UAACC;AAAA,UAAA;AAAA,YACC,gBAAgB,CAAC,EAAE,OAAAC,QAAYF,gBAAAA,EAAAA,IAACG,KAAe,OAAAD,GAAc;AAAA,YAE7D,UAAAF,gBAAAA,EAAAA,IAACI,GAAA,EAAgB,gBAAgB,KAAK,eAAA,CAAgB;AAAA,UAAA;AAAA,QAAA,EACxD,CACF;AAAA,MAAA;AAAA,IAEJ;AAAA,EAEJ;AACF;AAEA,MAAMC,IAEF,CAACC,MAAY,IAAIhC,EAAmBgC,CAAO;"}

package/lib/zudoku.auth-clerk.js

@@ -1,7 +1,7 @@
-import { j as l } from "./jsx-runtime-C5mzlN2N.js";
+import { j as l } from "./jsx-runtime-BzflLqGi.js";
 import { LogOutIcon as f } from "lucide-react";
-import { S as w, a as p, b as v } from "./SignUp-CznaQsRx.js";
-import { u as n } from "./hook-B4Q30zMI.js";
+import { S as w, a as p, b as v } from "./SignUp-BraHuRN_.js";
+import { u as n } from "./ZudokuContext-BXTZApgy.js";
 const b = ({
   clerkPubKey: d,
   jwtTemplateName: m,

package/lib/zudoku.auth-openid.js

@@ -1,14 +1,13 @@
-import { j as D } from "./jsx-runtime-C5mzlN2N.js";
+import { j as D } from "./jsx-runtime-BzflLqGi.js";
 import { g as Le } from "./invariant-Bm-FVUQE.js";
-import { E as Ue } from "./index-BuKx9nrj.js";
+import { E as Ue } from "./index-BPSpOxTK.js";
 import { C as xe } from "./ClientOnly-E7hGysn1.js";
-import { j as Ce } from "./ZudokuContext-BR-lnR7O.js";
-import { C as Ie, O as re, A as R } from "./errors-CjmCml50.js";
-import { C as je, O as Oe } from "./OAuthErrorPage-rAKHHveX.js";
-import { u as S } from "./hook-B4Q30zMI.js";
+import { j as Ce, u as S } from "./ZudokuContext-BXTZApgy.js";
+import { C as Ie, O as re, A as R } from "./errors-XqO6MsfU.js";
+import { C as je, O as Oe } from "./OAuthErrorPage-DJUOdr6Q.js";
 var J = { exports: {} }, De = J.exports, oe;
 function Je() {
-  return oe || (oe = 1, function(t) {
+  return oe || (oe = 1, (function(t) {
     (function(e, n) {
       t.exports ? t.exports = n() : e.log = n();
     })(De, function() {
@@ -54,11 +53,11 @@ function Je() {
       function b(l, m, c) {
         return y(l) || k.apply(this, arguments);
       }
-      function h(l, m) {
+      function f(l, m) {
         var c = this, j, H, L, _ = "loglevel";
         typeof l == "string" ? _ += ":" + l : typeof l == "symbol" && (_ = void 0);
-        function Ee(f) {
-          var g = (s[f] || "silent").toUpperCase();
+        function Ee(h) {
+          var g = (s[h] || "silent").toUpperCase();
           if (!(typeof window === n || !_)) {
             try {
               window.localStorage[_] = g;
@@ -72,21 +71,21 @@ function Je() {
           }
         }
         function ee() {
-          var f;
+          var h;
           if (!(typeof window === n || !_)) {
             try {
-              f = window.localStorage[_];
+              h = window.localStorage[_];
             } catch {
             }
-            if (typeof f === n)
+            if (typeof h === n)
               try {
                 var g = window.document.cookie, O = encodeURIComponent(_), ne = g.indexOf(O + "=");
-                ne !== -1 && (f = /^([^;]+)/.exec(
+                ne !== -1 && (h = /^([^;]+)/.exec(
                   g.slice(ne + O.length + 1)
                 )[1]);
               } catch {
               }
-            return c.levels[f] === void 0 && (f = void 0), f;
+            return c.levels[h] === void 0 && (h = void 0), h;
           }
         }
         function Re() {
@@ -101,11 +100,11 @@ function Je() {
             }
           }
         }
-        function U(f) {
-          var g = f;
+        function U(h) {
+          var g = h;
           if (typeof g == "string" && c.levels[g.toUpperCase()] !== void 0 && (g = c.levels[g.toUpperCase()]), typeof g == "number" && g >= 0 && g <= c.levels.SILENT)
             return g;
-          throw new TypeError("log.setLevel() called with invalid level: " + f);
+          throw new TypeError("log.setLevel() called with invalid level: " + h);
         }
         c.name = l, c.levels = {
           TRACE: 0,
@@ -116,31 +115,31 @@ function Je() {
           SILENT: 5
         }, c.methodFactory = m || b, c.getLevel = function() {
           return L ?? H ?? j;
-        }, c.setLevel = function(f, g) {
-          return L = U(f), g !== !1 && Ee(L), p.call(c);
-        }, c.setDefaultLevel = function(f) {
-          H = U(f), ee() || c.setLevel(f, !1);
+        }, c.setLevel = function(h, g) {
+          return L = U(h), g !== !1 && Ee(L), p.call(c);
+        }, c.setDefaultLevel = function(h) {
+          H = U(h), ee() || c.setLevel(h, !1);
         }, c.resetLevel = function() {
           L = null, Re(), p.call(c);
-        }, c.enableAll = function(f) {
-          c.setLevel(c.levels.TRACE, f);
-        }, c.disableAll = function(f) {
-          c.setLevel(c.levels.SILENT, f);
+        }, c.enableAll = function(h) {
+          c.setLevel(c.levels.TRACE, h);
+        }, c.disableAll = function(h) {
+          c.setLevel(c.levels.SILENT, h);
         }, c.rebuild = function() {
           if (i !== c && (j = U(i.getLevel())), p.call(c), i === c)
-            for (var f in r)
-              r[f].rebuild();
+            for (var h in r)
+              r[h].rebuild();
         }, j = U(
           i ? i.getLevel() : "WARN"
         );
         var te = ee();
         te != null && (L = U(te)), p.call(c);
       }
-      i = new h(), i.getLogger = function(m) {
+      i = new f(), i.getLogger = function(m) {
         if (typeof m != "symbol" && typeof m != "string" || m === "")
           throw new TypeError("You must supply a name when creating a logger.");
         var c = r[m];
-        return c || (c = r[m] = new h(
+        return c || (c = r[m] = new f(
           m,
           i.methodFactory
         )), c;
@@ -152,7 +151,7 @@ function Je() {
         return r;
       }, i.default = i, i;
     });
-  }(J)), J.exports;
+  })(J)), J.exports;
 }
 var ze = Je();
 const ie = /* @__PURE__ */ Le(ze);
@@ -459,7 +458,7 @@ async function lt(t, e, n, o, s, r) {
   const y = Q() + s, p = {
     alg: at(i),
     typ: "dpop+jwt",
-    jwk: await ft(u)
+    jwk: await ht(u)
   }, k = {
     iat: y,
     jti: Z(),
@@ -475,7 +474,7 @@ async function dt(t) {
   const { kty: e, e: n, n: o, x: s, y: r, crv: i } = await crypto.subtle.exportKey("jwk", t), u = { kty: e, e: n, n: o, x: s, y: r, crv: i };
   return z.set(t, u), u;
 }
-async function ft(t) {
+async function ht(t) {
   return z || (z = /* @__PURE__ */ new WeakMap()), z.get(t) || dt(t);
 }
 function le(t, e, n) {
@@ -493,7 +492,7 @@ function q(t) {
   const e = t;
   return typeof e != "object" || Array.isArray(e) || e === null ? !1 : e.error !== void 0;
 }
-async function ht(t, e, n, o, s, r) {
+async function ft(t, e, n, o, s, r) {
   if (!w(t))
     throw new TypeError('"accessToken" must be a non-empty string');
   if (!(n instanceof URL))
@@ -509,7 +508,7 @@ async function ht(t, e, n, o, s, r) {
 async function pt(t, e, n, o) {
   C(t), I(e);
   const s = ye(t, "userinfo_endpoint", be(e, o)), r = W(o?.headers);
-  return e.userinfo_signed_response_alg ? r.set("accept", "application/jwt") : (r.set("accept", "application/json"), r.append("accept", "application/jwt")), ht(n, "GET", s, r, null, {
+  return e.userinfo_signed_response_alg ? r.set("accept", "application/jwt") : (r.set("accept", "application/json"), r.append("accept", "application/jwt")), ft(n, "GET", s, r, null, {
     ...o,
     [N]: K(e)
   });
@@ -592,7 +591,7 @@ async function Se(t, e, n, o = !1, s = !1) {
   }
   return r;
 }
-async function fe(t, e, n) {
+async function he(t, e, n) {
   return Se(t, e, n);
 }
 function gt(t, e) {
@@ -696,7 +695,7 @@ async function kt(t) {
     }
   }
 }
-function he(t) {
+function fe(t) {
   if (typeof t.modulusLength != "number" || t.modulusLength < 2048)
     throw new a(`${t.name} modulusLength must be at least 2048 bits`);
 }
@@ -720,7 +719,7 @@ function Ae(t) {
         hash: Et(t.algorithm.namedCurve)
       };
     case "RSA-PSS":
-      switch (he(t.algorithm), t.algorithm.hash.name) {
+      switch (fe(t.algorithm), t.algorithm.hash.name) {
         case "SHA-256":
         case "SHA-384":
         case "SHA-512":
@@ -732,7 +731,7 @@ function Ae(t) {
           throw new v();
       }
     case "RSASSA-PKCS1-v1_5":
-      return he(t.algorithm), t.algorithm.name;
+      return fe(t.algorithm), t.algorithm.name;
     case "Ed448":
     case "Ed25519":
       return t.algorithm.name;
@@ -767,34 +766,34 @@ async function Pt(t, e, n, o, s, r) {
   const k = A(d);
   let b;
   n !== ke && (b = await n(p), await Rt(i, u, b, k));
-  let h;
+  let f;
   try {
-    h = JSON.parse(E(A(u)));
+    f = JSON.parse(E(A(u)));
   } catch (l) {
     throw new a("failed to parse JWT Payload body as base64url encoded JSON", { cause: l });
   }
-  if (!x(h))
+  if (!x(f))
     throw new a("JWT Payload must be a top level object");
   const P = Q() + o;
-  if (h.exp !== void 0) {
-    if (typeof h.exp != "number")
+  if (f.exp !== void 0) {
+    if (typeof f.exp != "number")
       throw new a('unexpected JWT "exp" (expiration time) claim type');
-    if (h.exp <= P - s)
+    if (f.exp <= P - s)
       throw new a('unexpected JWT "exp" (expiration time) claim value, timestamp is <= now()');
   }
-  if (h.iat !== void 0 && typeof h.iat != "number")
+  if (f.iat !== void 0 && typeof f.iat != "number")
     throw new a('unexpected JWT "iat" (issued at) claim type');
-  if (h.iss !== void 0 && typeof h.iss != "string")
+  if (f.iss !== void 0 && typeof f.iss != "string")
     throw new a('unexpected JWT "iss" (issuer) claim type');
-  if (h.nbf !== void 0) {
-    if (typeof h.nbf != "number")
+  if (f.nbf !== void 0) {
+    if (typeof f.nbf != "number")
       throw new a('unexpected JWT "nbf" (not before) claim type');
-    if (h.nbf > P + s)
+    if (f.nbf > P + s)
       throw new a('unexpected JWT "nbf" (not before) claim value, timestamp is > now()');
   }
-  if (h.aud !== void 0 && typeof h.aud != "string" && !Array.isArray(h.aud))
+  if (f.aud !== void 0 && typeof f.aud != "string" && !Array.isArray(f.aud))
     throw new a('unexpected JWT "aud" (audience) claim type');
-  return { header: p, claims: h, signature: k, key: b, jwt: t };
+  return { header: p, claims: f, signature: k, key: b, jwt: t };
 }
 function Lt(t, e, n) {
   if (t !== void 0) {
@@ -946,7 +945,7 @@ class It extends Ie {
     );
     sessionStorage.setItem("redirect-to", e);
     const y = new URL(window.location.origin);
-    y.pathname = this.callbackUrlPath, y.search = "", d.searchParams.set("client_id", this.client.client_id), d.searchParams.set("redirect_uri", y.toString()), d.searchParams.set("response_type", "code"), d.searchParams.set("scope", this.scopes.join(" ")), d.searchParams.set("code_challenge", u), d.searchParams.set(
+    y.pathname = this.callbackUrlPath, y.search = "", y.hash = "", d.searchParams.set("client_id", this.client.client_id), d.searchParams.set("redirect_uri", y.toString()), d.searchParams.set("response_type", "code"), d.searchParams.set("scope", this.scopes.join(" ")), d.searchParams.set("code_challenge", u), d.searchParams.set(
       "code_challenge_method",
       s
     ), this.audience && d.searchParams.set("audience", this.audience), this.onAuthorizationUrl?.(d, {
@@ -973,7 +972,7 @@ class It extends Ie {
         e,
         this.client,
         o.refreshToken
-      ), r = await fe(
+      ), r = await he(
         e,
         this.client,
         s
@@ -1027,7 +1026,7 @@ class It extends Ie {
           o,
           this.client,
           n.refreshToken
-        ), r = await fe(
+        ), r = await he(
           o,
           this.client,
           s
@@ -1066,7 +1065,7 @@ class It extends Ie {
         i
       );
     const u = new URL(e);
-    u.pathname = this.callbackUrlPath, u.search = "";
+    u.pathname = this.callbackUrlPath, u.search = "", u.hash = "";
     const d = await _t(
       r,
       this.client,
@@ -1083,7 +1082,7 @@ class It extends Ie {
       r,
       this.client,
       p
-    )).json(), h = {
+    )).json(), f = {
       sub: b.sub,
       email: b.email,
       name: b.name,
@@ -1093,7 +1092,7 @@ class It extends Ie {
     S.setState({
       isAuthenticated: !0,
       isPending: !1,
-      profile: h
+      profile: f
     });
     const P = sessionStorage.getItem("redirect-to") ?? "/";
     return sessionStorage.removeItem("redirect-to"), P;
@@ -1114,10 +1113,10 @@ class It extends Ie {
     ];
   }
 }
-const Ht = (t) => new It(t);
+const Kt = (t) => new It(t);
 export {
   pe as OPENID_CALLBACK_PATH,
   It as OpenIDAuthenticationProvider,
-  Ht as default
+  Kt as default
 };
 //# sourceMappingURL=zudoku.auth-openid.js.map