zudoku 0.0.0-z6e949a6d → 0.0.0-z8ac421f0

package/lib/zudoku.auth-auth0.js

@@ -1,4 +1,5 @@
-import { b as r, j as a } from "./ZudokuContext-C6wlLMUH.js";
+import { j as a } from "./ZudokuContext-CYyb_PB_.js";
+import { u as r } from "./ZudokuReactContext-DGJAP1sN.js";
 import { OpenIDAuthenticationProvider as p } from "./zudoku.auth-openid.js";
 class d extends p {
   options;
@@ -28,15 +29,15 @@ class d extends p {
       "/",
       this.redirectToAfterSignOut
     ), e.end_session_endpoint) {
-      const i = new URL(e.end_session_endpoint);
-      s && i.searchParams.set("id_token_hint", s), i.searchParams.set(
+      const o = new URL(e.end_session_endpoint);
+      s && o.searchParams.set("id_token_hint", s), o.searchParams.set(
         "post_logout_redirect_uri",
         n.toString()
-      ), window.location.href = i.toString();
+      ), window.location.href = o.toString();
     }
   };
 }
-const l = (o) => new d(o);
+const l = (i) => new d(i);
 export {
   l as default
 };

package/lib/zudoku.auth-auth0.js.map

@@ -1 +1 @@
-{"version":3,"file":"zudoku.auth-auth0.js","sources":["../src/lib/authentication/providers/auth0.tsx"],"sourcesContent":["import type { Auth0AuthenticationConfig } from \"../../../config/config.js\";\nimport { joinUrl } from \"../../util/joinUrl.js\";\nimport type {\n  AuthActionContext,\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { useAuthState } from \"../state.js\";\nimport { OpenIDAuthenticationProvider } from \"./openid.js\";\n\nclass Auth0AuthenticationProvider\n  extends OpenIDAuthenticationProvider\n  implements AuthenticationPlugin\n{\n  private readonly options: Auth0AuthenticationConfig[\"options\"];\n  constructor(config: Auth0AuthenticationConfig) {\n    super({\n      ...config,\n      type: \"openid\",\n      issuer: `https://${config.domain}/`,\n      clientId: config.clientId,\n      audience: config.audience,\n      scopes: config.scopes,\n    });\n    this.options = config.options;\n  }\n\n  onAuthorizationUrl = async (\n    url: URL,\n    { isSignUp }: { isSignUp: boolean },\n  ) => {\n    if (this.options?.prompt !== undefined) {\n      if (this.options.prompt !== \"\") {\n        url.searchParams.set(\"prompt\", this.options.prompt);\n      }\n    } else if (this.options?.alwaysPromptLogin !== false) {\n      url.searchParams.set(\"prompt\", \"login\");\n    }\n\n    if (isSignUp) {\n      url.searchParams.set(\"screen_hint\", \"signup\");\n    }\n  };\n\n  signOut = async (_: AuthActionContext): Promise<void> => {\n    const as = await this.getAuthServer();\n\n    // biome-ignore lint/suspicious/noExplicitAny: We don't have a good way for typing provider-data yet.\n    const providerData = useAuthState.getState().providerData as any;\n    const idToken = providerData?.idToken;\n\n    useAuthState.setState({\n      isAuthenticated: false,\n      isPending: false,\n      profile: undefined,\n      providerData: undefined,\n    });\n\n    const redirectUrl = new URL(window.location.origin);\n    redirectUrl.pathname = joinUrl(\n      import.meta.env.BASE_URL,\n      this.redirectToAfterSignOut,\n    );\n\n    // SEE: https://auth0.com/docs/authenticate/login/logout/log-users-out-of-auth0\n    // For Auth0 tenants created on or after 14 November 2023, RP-Initiated\n    // Logout End Session Endpoint Discovery is enabled by default.\n    // Otherwise we fallback to the old non-compliant logout\n\n    // The end_session_endpoint is set, the IdP supports some form of logout,\n    // so we use auth0 logout. Otherwise, just redirect the user to home\n    if (as.end_session_endpoint) {\n      const logoutUrl = new URL(as.end_session_endpoint);\n      if (idToken) {\n        logoutUrl.searchParams.set(\"id_token_hint\", idToken);\n      }\n      logoutUrl.searchParams.set(\n        \"post_logout_redirect_uri\",\n        redirectUrl.toString(),\n      );\n\n      window.location.href = logoutUrl.toString();\n    } else {\n      // const logoutUrl = new URL(`${this.issuer.replace(/\\/$/, \"\")}/v2/logout`);\n      // logoutUrl.searchParams.set(\"returnTo\", redirectUrl.toString());\n      // don't support the deprecated logout today\n    }\n  };\n}\n\nconst auth0Auth: AuthenticationProviderInitializer<\n  Auth0AuthenticationConfig\n> = (options) => new Auth0AuthenticationProvider(options);\n\nexport default auth0Auth;\n"],"names":["Auth0AuthenticationProvider","OpenIDAuthenticationProvider","config","url","isSignUp","_","as","idToken","useAuthState","redirectUrl","joinUrl","logoutUrl","auth0Auth","options"],"mappings":";;AAUA,MAAMA,UACIC,EAEV;AAAA,EACmB;AAAA,EACjB,YAAYC,GAAmC;AAC7C,UAAM;AAAA,MACJ,GAAGA;AAAA,MACH,MAAM;AAAA,MACN,QAAQ,WAAWA,EAAO,MAAM;AAAA,MAChC,UAAUA,EAAO;AAAA,MACjB,UAAUA,EAAO;AAAA,MACjB,QAAQA,EAAO;AAAA,IAAA,CAChB,GACD,KAAK,UAAUA,EAAO;AAAA,EACxB;AAAA,EAEA,qBAAqB,OACnBC,GACA,EAAE,UAAAC,QACC;AACH,IAAI,KAAK,SAAS,WAAW,SACvB,KAAK,QAAQ,WAAW,MAC1BD,EAAI,aAAa,IAAI,UAAU,KAAK,QAAQ,MAAM,IAE3C,KAAK,SAAS,sBAAsB,MAC7CA,EAAI,aAAa,IAAI,UAAU,OAAO,GAGpCC,KACFD,EAAI,aAAa,IAAI,eAAe,QAAQ;AAAA,EAEhD;AAAA,EAEA,UAAU,OAAOE,MAAwC;AACvD,UAAMC,IAAK,MAAM,KAAK,cAAA,GAIhBC,IADeC,EAAa,SAAA,EAAW,cACf;AAE9B,IAAAA,EAAa,SAAS;AAAA,MACpB,iBAAiB;AAAA,MACjB,WAAW;AAAA,MACX,SAAS;AAAA,MACT,cAAc;AAAA,IAAA,CACf;AAED,UAAMC,IAAc,IAAI,IAAI,OAAO,SAAS,MAAM;AAalD,QAZAA,EAAY,WAAWC;AAAA,MACrB;AAAA,MACA,KAAK;AAAA,IAAA,GAUHJ,EAAG,sBAAsB;AAC3B,YAAMK,IAAY,IAAI,IAAIL,EAAG,oBAAoB;AACjD,MAAIC,KACFI,EAAU,aAAa,IAAI,iBAAiBJ,CAAO,GAErDI,EAAU,aAAa;AAAA,QACrB;AAAA,QACAF,EAAY,SAAA;AAAA,MAAS,GAGvB,OAAO,SAAS,OAAOE,EAAU,SAAA;AAAA,IACnC;AAAA,EAKF;AACF;AAEA,MAAMC,IAEF,CAACC,MAAY,IAAIb,EAA4Ba,CAAO;"}
+{"version":3,"file":"zudoku.auth-auth0.js","sources":["../src/lib/authentication/providers/auth0.tsx"],"sourcesContent":["import type { Auth0AuthenticationConfig } from \"../../../config/config.js\";\nimport { joinUrl } from \"../../util/joinUrl.js\";\nimport type {\n  AuthActionContext,\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { useAuthState } from \"../state.js\";\nimport { OpenIDAuthenticationProvider } from \"./openid.js\";\n\nclass Auth0AuthenticationProvider\n  extends OpenIDAuthenticationProvider\n  implements AuthenticationPlugin\n{\n  private readonly options: Auth0AuthenticationConfig[\"options\"];\n  constructor(config: Auth0AuthenticationConfig) {\n    super({\n      ...config,\n      type: \"openid\",\n      issuer: `https://${config.domain}/`,\n      clientId: config.clientId,\n      audience: config.audience,\n      scopes: config.scopes,\n    });\n    this.options = config.options;\n  }\n\n  onAuthorizationUrl = async (\n    url: URL,\n    { isSignUp }: { isSignUp: boolean },\n  ) => {\n    if (this.options?.prompt !== undefined) {\n      if (this.options.prompt !== \"\") {\n        url.searchParams.set(\"prompt\", this.options.prompt);\n      }\n    } else if (this.options?.alwaysPromptLogin !== false) {\n      url.searchParams.set(\"prompt\", \"login\");\n    }\n\n    if (isSignUp) {\n      url.searchParams.set(\"screen_hint\", \"signup\");\n    }\n  };\n\n  signOut = async (_: AuthActionContext): Promise<void> => {\n    const as = await this.getAuthServer();\n\n    // biome-ignore lint/suspicious/noExplicitAny: We don't have a good way for typing provider-data yet.\n    const providerData = useAuthState.getState().providerData as any;\n    const idToken = providerData?.idToken;\n\n    useAuthState.setState({\n      isAuthenticated: false,\n      isPending: false,\n      profile: undefined,\n      providerData: undefined,\n    });\n\n    const redirectUrl = new URL(window.location.origin);\n    redirectUrl.pathname = joinUrl(\n      import.meta.env.BASE_URL,\n      this.redirectToAfterSignOut,\n    );\n\n    // SEE: https://auth0.com/docs/authenticate/login/logout/log-users-out-of-auth0\n    // For Auth0 tenants created on or after 14 November 2023, RP-Initiated\n    // Logout End Session Endpoint Discovery is enabled by default.\n    // Otherwise we fallback to the old non-compliant logout\n\n    // The end_session_endpoint is set, the IdP supports some form of logout,\n    // so we use auth0 logout. Otherwise, just redirect the user to home\n    if (as.end_session_endpoint) {\n      const logoutUrl = new URL(as.end_session_endpoint);\n      if (idToken) {\n        logoutUrl.searchParams.set(\"id_token_hint\", idToken);\n      }\n      logoutUrl.searchParams.set(\n        \"post_logout_redirect_uri\",\n        redirectUrl.toString(),\n      );\n\n      window.location.href = logoutUrl.toString();\n    } else {\n      // const logoutUrl = new URL(`${this.issuer.replace(/\\/$/, \"\")}/v2/logout`);\n      // logoutUrl.searchParams.set(\"returnTo\", redirectUrl.toString());\n      // don't support the deprecated logout today\n    }\n  };\n}\n\nconst auth0Auth: AuthenticationProviderInitializer<\n  Auth0AuthenticationConfig\n> = (options) => new Auth0AuthenticationProvider(options);\n\nexport default auth0Auth;\n"],"names":["Auth0AuthenticationProvider","OpenIDAuthenticationProvider","config","url","isSignUp","_","as","idToken","useAuthState","redirectUrl","joinUrl","logoutUrl","auth0Auth","options"],"mappings":";;;AAUA,MAAMA,UACIC,EAEV;AAAA,EACmB;AAAA,EACjB,YAAYC,GAAmC;AAC7C,UAAM;AAAA,MACJ,GAAGA;AAAA,MACH,MAAM;AAAA,MACN,QAAQ,WAAWA,EAAO,MAAM;AAAA,MAChC,UAAUA,EAAO;AAAA,MACjB,UAAUA,EAAO;AAAA,MACjB,QAAQA,EAAO;AAAA,IAAA,CAChB,GACD,KAAK,UAAUA,EAAO;AAAA,EACxB;AAAA,EAEA,qBAAqB,OACnBC,GACA,EAAE,UAAAC,QACC;AACH,IAAI,KAAK,SAAS,WAAW,SACvB,KAAK,QAAQ,WAAW,MAC1BD,EAAI,aAAa,IAAI,UAAU,KAAK,QAAQ,MAAM,IAE3C,KAAK,SAAS,sBAAsB,MAC7CA,EAAI,aAAa,IAAI,UAAU,OAAO,GAGpCC,KACFD,EAAI,aAAa,IAAI,eAAe,QAAQ;AAAA,EAEhD;AAAA,EAEA,UAAU,OAAOE,MAAwC;AACvD,UAAMC,IAAK,MAAM,KAAK,cAAA,GAIhBC,IADeC,EAAa,SAAA,EAAW,cACf;AAE9B,IAAAA,EAAa,SAAS;AAAA,MACpB,iBAAiB;AAAA,MACjB,WAAW;AAAA,MACX,SAAS;AAAA,MACT,cAAc;AAAA,IAAA,CACf;AAED,UAAMC,IAAc,IAAI,IAAI,OAAO,SAAS,MAAM;AAalD,QAZAA,EAAY,WAAWC;AAAA,MACrB;AAAA,MACA,KAAK;AAAA,IAAA,GAUHJ,EAAG,sBAAsB;AAC3B,YAAMK,IAAY,IAAI,IAAIL,EAAG,oBAAoB;AACjD,MAAIC,KACFI,EAAU,aAAa,IAAI,iBAAiBJ,CAAO,GAErDI,EAAU,aAAa;AAAA,QACrB;AAAA,QACAF,EAAY,SAAA;AAAA,MAAS,GAGvB,OAAO,SAAS,OAAOE,EAAU,SAAA;AAAA,IACnC;AAAA,EAKF;AACF;AAEA,MAAMC,IAEF,CAACC,MAAY,IAAIb,EAA4Ba,CAAO;"}

package/lib/zudoku.auth-azureb2c.js

@@ -1,10 +1,11 @@
 import { j as n } from "./jsx-runtime-BzflLqGi.js";
 import { PublicClientApplication as A, EventType as f } from "@azure/msal-browser";
-import { E as I } from "./Zudoku-DA1yA-te.js";
+import { E as I } from "./Zudoku-iyiXgWFY.js";
 import { C as T } from "./ClientOnly-E7hGysn1.js";
-import { j as S, b as h } from "./ZudokuContext-C6wlLMUH.js";
-import { C, A as c } from "./errors-CYLN8SNc.js";
-import { C as k, O as w } from "./OAuthErrorPage-D7n-_cqN.js";
+import { j as S } from "./ZudokuContext-CYyb_PB_.js";
+import { C, A as c } from "./errors-B77S9iOc.js";
+import { C as k, O as w } from "./OAuthErrorPage-CFz_gBFx.js";
+import { u as h } from "./ZudokuReactContext-DGJAP1sN.js";
 const u = "/oauth/callback";
 class y extends C {
   msalInstance;
@@ -16,13 +17,13 @@ class y extends C {
     clientId: e,
     tenantName: t,
     policyName: i,
-    scopes: a,
+    scopes: r,
     redirectToAfterSignUp: s,
-    redirectToAfterSignIn: r,
+    redirectToAfterSignIn: a,
     redirectToAfterSignOut: d = "/",
     basePath: m = ""
   }) {
-    super(), this.scopes = a ?? ["openid", "profile", "email"], this.redirectToAfterSignUp = s, this.redirectToAfterSignIn = r, this.redirectToAfterSignOut = d;
+    super(), this.scopes = r ?? ["openid", "profile", "email"], this.redirectToAfterSignUp = s, this.redirectToAfterSignIn = a, this.redirectToAfterSignOut = d;
     const p = `https://${t}.b2clogin.com/${t}.onmicrosoft.com/${i}`, g = S(m, u);
     this.msalInstance = new A({
       auth: {
@@ -44,21 +45,21 @@ class y extends C {
     });
   }
   handleAuthResponse(e) {
-    const { accessToken: t, idToken: i, scopes: a, account: s } = e;
+    const { accessToken: t, idToken: i, scopes: r, account: s } = e;
     if (!s)
       throw new c("No account information in response");
-    const r = [s.idTokenClaims?.given_name, s.idTokenClaims?.family_name].filter(Boolean).join(" ") || s.username;
+    const a = [s.idTokenClaims?.given_name, s.idTokenClaims?.family_name].filter(Boolean).join(" ") || s.username;
     h.getState().setLoggedIn({
       providerData: {
         accessToken: t,
         idToken: i,
-        scopes: a,
+        scopes: r,
         account: s
       },
       profile: {
         sub: s.localAccountId,
         email: s.username,
-        name: r,
+        name: a,
         emailVerified: !0,
         // Azure B2C emails are verified
         pictureUrl: void 0
@@ -128,9 +129,9 @@ class y extends C {
     ];
   }
 }
-const _ = (l) => new y(l);
+const x = (l) => new y(l);
 export {
   y as AzureB2CAuthPlugin,
-  _ as default
+  x as default
 };
 //# sourceMappingURL=zudoku.auth-azureb2c.js.map

package/lib/zudoku.auth-azureb2c.js.map

@@ -1 +1 @@
-{"version":3,"file":"zudoku.auth-azureb2c.js","sources":["../src/lib/authentication/providers/azureb2c.tsx"],"sourcesContent":["import type { AuthenticationResult, EventMessage } from \"@azure/msal-browser\";\nimport { EventType, PublicClientApplication } from \"@azure/msal-browser\";\nimport { ErrorBoundary } from \"react-error-boundary\";\nimport type { AzureB2CAuthenticationConfig } from \"../../../config/config.js\";\nimport { ClientOnly } from \"../../components/ClientOnly.js\";\nimport { joinUrl } from \"../../util/joinUrl.js\";\nimport { CoreAuthenticationPlugin } from \"../AuthenticationPlugin.js\";\nimport type {\n  AuthActionContext,\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { CallbackHandler } from \"../components/CallbackHandler.js\";\nimport { OAuthErrorPage } from \"../components/OAuthErrorPage.js\";\nimport { AuthorizationError } from \"../errors.js\";\nimport { useAuthState } from \"../state.js\";\n\nconst AZUREB2C_CALLBACK_PATH = \"/oauth/callback\";\n\nexport class AzureB2CAuthPlugin\n  extends CoreAuthenticationPlugin\n  implements AuthenticationPlugin\n{\n  private msalInstance: PublicClientApplication;\n  private readonly scopes: string[];\n  private readonly redirectToAfterSignUp?: string;\n  private readonly redirectToAfterSignIn?: string;\n  private readonly redirectToAfterSignOut: string;\n\n  constructor({\n    clientId,\n    tenantName,\n    policyName,\n    scopes,\n    redirectToAfterSignUp,\n    redirectToAfterSignIn,\n    redirectToAfterSignOut = \"/\",\n    basePath = \"\",\n  }: AzureB2CAuthenticationConfig) {\n    super();\n    this.scopes = scopes ?? [\"openid\", \"profile\", \"email\"];\n    this.redirectToAfterSignUp = redirectToAfterSignUp;\n    this.redirectToAfterSignIn = redirectToAfterSignIn;\n    this.redirectToAfterSignOut = redirectToAfterSignOut;\n\n    const authority = `https://${tenantName}.b2clogin.com/${tenantName}.onmicrosoft.com/${policyName}`;\n    const redirectUri = joinUrl(basePath, AZUREB2C_CALLBACK_PATH);\n\n    this.msalInstance = new PublicClientApplication({\n      auth: {\n        clientId,\n        authority,\n        redirectUri,\n        knownAuthorities: [`${tenantName}.b2clogin.com`],\n      },\n      cache: {\n        cacheLocation: \"sessionStorage\",\n        storeAuthStateInCookie: false,\n      },\n    });\n\n    void this.msalInstance.initialize().then(async () => {\n      void this.msalInstance\n        .handleRedirectPromise()\n        .then((response: AuthenticationResult | null) => {\n          if (response) {\n            this.handleAuthResponse(response);\n          }\n        });\n\n      // Add event callback\n      void this.msalInstance.addEventCallback((event: EventMessage) => {\n        if (event.eventType === EventType.LOGIN_SUCCESS) {\n          this.handleAuthResponse(event.payload as AuthenticationResult);\n        }\n      });\n    });\n  }\n\n  private handleAuthResponse(response: AuthenticationResult) {\n    const { accessToken, idToken, scopes, account } = response;\n\n    if (!account) {\n      throw new AuthorizationError(\"No account information in response\");\n    }\n\n    // Get the user's name from Azure B2C claims\n    const name =\n      [account.idTokenClaims?.given_name, account.idTokenClaims?.family_name]\n        .filter(Boolean)\n        .join(\" \") || account.username;\n\n    useAuthState.getState().setLoggedIn({\n      providerData: {\n        accessToken,\n        idToken,\n        scopes,\n        account,\n      },\n      profile: {\n        sub: account.localAccountId,\n        email: account.username,\n        name,\n        emailVerified: true, // Azure B2C emails are verified\n        pictureUrl: undefined, // Azure B2C doesn't provide profile pictures by default\n      },\n    });\n  }\n\n  async signUp(\n    _: AuthActionContext,\n    { redirectTo }: { redirectTo?: string } = {},\n  ) {\n    const redirectUri = this.redirectToAfterSignUp ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n      prompt: \"select_account\",\n    });\n  }\n\n  async signIn(\n    _: AuthActionContext,\n    { redirectTo }: { redirectTo?: string } = {},\n  ) {\n    const redirectUri = this.redirectToAfterSignIn ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n    });\n  }\n\n  async getAccessToken(): Promise<string> {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (!account) {\n      throw new AuthorizationError(\"No active account\");\n    }\n\n    try {\n      const response = await this.msalInstance.acquireTokenSilent({\n        scopes: this.scopes,\n        account,\n      });\n      return response.accessToken;\n    } catch {\n      // If silent token acquisition fails, try interactive\n      await this.msalInstance.acquireTokenRedirect({\n        scopes: this.scopes,\n        account,\n      });\n\n      throw new AuthorizationError(\n        \"Token acquisition failed after interactive attempt\",\n      );\n    }\n  }\n\n  signRequest = async (request: Request): Promise<Request> => {\n    const accessToken = await this.getAccessToken();\n    request.headers.set(\"Authorization\", `Bearer ${accessToken}`);\n    return request;\n  };\n\n  signOut = async (_: AuthActionContext) => {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (account) {\n      await this.msalInstance.logoutRedirect({\n        account,\n        postLogoutRedirectUri:\n          window.location.origin + this.redirectToAfterSignOut,\n      });\n    }\n\n    useAuthState.getState().setLoggedOut();\n  };\n\n  handleCallback = async () => {\n    const redirectTo = sessionStorage.getItem(\"redirect-to\") ?? \"/\";\n    sessionStorage.removeItem(\"redirect-to\");\n    return redirectTo;\n  };\n\n  getRoutes() {\n    return [\n      ...super.getRoutes(),\n      {\n        path: AZUREB2C_CALLBACK_PATH,\n        element: (\n          <ClientOnly>\n            <ErrorBoundary\n              fallbackRender={({ error }) => <OAuthErrorPage error={error} />}\n            >\n              <CallbackHandler handleCallback={this.handleCallback} />\n            </ErrorBoundary>\n          </ClientOnly>\n        ),\n      },\n    ];\n  }\n}\n\nconst azureB2CAuth: AuthenticationProviderInitializer<\n  AzureB2CAuthenticationConfig\n> = (options) => new AzureB2CAuthPlugin(options);\n\nexport default azureB2CAuth;\n"],"names":["AZUREB2C_CALLBACK_PATH","AzureB2CAuthPlugin","CoreAuthenticationPlugin","clientId","tenantName","policyName","scopes","redirectToAfterSignUp","redirectToAfterSignIn","redirectToAfterSignOut","basePath","authority","redirectUri","joinUrl","PublicClientApplication","response","event","EventType","accessToken","idToken","account","AuthorizationError","name","useAuthState","_","redirectTo","request","ClientOnly","jsx","ErrorBoundary","error","OAuthErrorPage","CallbackHandler","azureB2CAuth","options"],"mappings":";;;;;;;AAiBA,MAAMA,IAAyB;AAExB,MAAMC,UACHC,EAEV;AAAA,EACU;AAAA,EACS;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY;AAAA,IACV,UAAAC;AAAA,IACA,YAAAC;AAAA,IACA,YAAAC;AAAA,IACA,QAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,wBAAAC,IAAyB;AAAA,IACzB,UAAAC,IAAW;AAAA,EAAA,GACoB;AAC/B,UAAA,GACA,KAAK,SAASJ,KAAU,CAAC,UAAU,WAAW,OAAO,GACrD,KAAK,wBAAwBC,GAC7B,KAAK,wBAAwBC,GAC7B,KAAK,yBAAyBC;AAE9B,UAAME,IAAY,WAAWP,CAAU,iBAAiBA,CAAU,oBAAoBC,CAAU,IAC1FO,IAAcC,EAAQH,GAAUV,CAAsB;AAE5D,SAAK,eAAe,IAAIc,EAAwB;AAAA,MAC9C,MAAM;AAAA,QACJ,UAAAX;AAAA,QACA,WAAAQ;AAAA,QACA,aAAAC;AAAA,QACA,kBAAkB,CAAC,GAAGR,CAAU,eAAe;AAAA,MAAA;AAAA,MAEjD,OAAO;AAAA,QACL,eAAe;AAAA,QACf,wBAAwB;AAAA,MAAA;AAAA,IAC1B,CACD,GAEI,KAAK,aAAa,WAAA,EAAa,KAAK,YAAY;AACnD,MAAK,KAAK,aACP,sBAAA,EACA,KAAK,CAACW,MAA0C;AAC/C,QAAIA,KACF,KAAK,mBAAmBA,CAAQ;AAAA,MAEpC,CAAC,GAGE,KAAK,aAAa,iBAAiB,CAACC,MAAwB;AAC/D,QAAIA,EAAM,cAAcC,EAAU,iBAChC,KAAK,mBAAmBD,EAAM,OAA+B;AAAA,MAEjE,CAAC;AAAA,IACH,CAAC;AAAA,EACH;AAAA,EAEQ,mBAAmBD,GAAgC;AACzD,UAAM,EAAE,aAAAG,GAAa,SAAAC,GAAS,QAAAb,GAAQ,SAAAc,MAAYL;AAElD,QAAI,CAACK;AACH,YAAM,IAAIC,EAAmB,oCAAoC;AAInE,UAAMC,IACJ,CAACF,EAAQ,eAAe,YAAYA,EAAQ,eAAe,WAAW,EACnE,OAAO,OAAO,EACd,KAAK,GAAG,KAAKA,EAAQ;AAE1B,IAAAG,EAAa,SAAA,EAAW,YAAY;AAAA,MAClC,cAAc;AAAA,QACZ,aAAAL;AAAA,QACA,SAAAC;AAAA,QACA,QAAAb;AAAA,QACA,SAAAc;AAAA,MAAA;AAAA,MAEF,SAAS;AAAA,QACP,KAAKA,EAAQ;AAAA,QACb,OAAOA,EAAQ;AAAA,QACf,MAAAE;AAAA,QACA,eAAe;AAAA;AAAA,QACf,YAAY;AAAA;AAAA,MAAA;AAAA,IACd,CACD;AAAA,EACH;AAAA,EAEA,MAAM,OACJE,GACA,EAAE,YAAAC,EAAA,IAAwC,CAAA,GAC1C;AACA,UAAMb,IAAc,KAAK,yBAAyBa,KAAc;AAChE,mBAAe,QAAQ,eAAeb,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,MACb,QAAQ;AAAA,IAAA,CACT;AAAA,EACH;AAAA,EAEA,MAAM,OACJY,GACA,EAAE,YAAAC,EAAA,IAAwC,CAAA,GAC1C;AACA,UAAMb,IAAc,KAAK,yBAAyBa,KAAc;AAChE,mBAAe,QAAQ,eAAeb,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,IAAA,CACd;AAAA,EACH;AAAA,EAEA,MAAM,iBAAkC;AACtC,UAAMQ,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,QAAI,CAACA;AACH,YAAM,IAAIC,EAAmB,mBAAmB;AAGlD,QAAI;AAKF,cAJiB,MAAM,KAAK,aAAa,mBAAmB;AAAA,QAC1D,QAAQ,KAAK;AAAA,QACb,SAAAD;AAAA,MAAA,CACD,GACe;AAAA,IAClB,QAAQ;AAEN,kBAAM,KAAK,aAAa,qBAAqB;AAAA,QAC3C,QAAQ,KAAK;AAAA,QACb,SAAAA;AAAA,MAAA,CACD,GAEK,IAAIC;AAAA,QACR;AAAA,MAAA;AAAA,IAEJ;AAAA,EACF;AAAA,EAEA,cAAc,OAAOK,MAAuC;AAC1D,UAAMR,IAAc,MAAM,KAAK,eAAA;AAC/B,WAAAQ,EAAQ,QAAQ,IAAI,iBAAiB,UAAUR,CAAW,EAAE,GACrDQ;AAAA,EACT;AAAA,EAEA,UAAU,OAAOF,MAAyB;AACxC,UAAMJ,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,IAAIA,KACF,MAAM,KAAK,aAAa,eAAe;AAAA,MACrC,SAAAA;AAAA,MACA,uBACE,OAAO,SAAS,SAAS,KAAK;AAAA,IAAA,CACjC,GAGHG,EAAa,SAAA,EAAW,aAAA;AAAA,EAC1B;AAAA,EAEA,iBAAiB,YAAY;AAC3B,UAAME,IAAa,eAAe,QAAQ,aAAa,KAAK;AAC5D,0BAAe,WAAW,aAAa,GAChCA;AAAA,EACT;AAAA,EAEA,YAAY;AACV,WAAO;AAAA,MACL,GAAG,MAAM,UAAA;AAAA,MACT;AAAA,QACE,MAAMzB;AAAA,QACN,+BACG2B,GAAA,EACC,UAAAC,gBAAAA,EAAAA;AAAAA,UAACC;AAAA,UAAA;AAAA,YACC,gBAAgB,CAAC,EAAE,OAAAC,QAAYF,gBAAAA,EAAAA,IAACG,KAAe,OAAAD,GAAc;AAAA,YAE7D,UAAAF,gBAAAA,EAAAA,IAACI,GAAA,EAAgB,gBAAgB,KAAK,eAAA,CAAgB;AAAA,UAAA;AAAA,QAAA,EACxD,CACF;AAAA,MAAA;AAAA,IAEJ;AAAA,EAEJ;AACF;AAEA,MAAMC,IAEF,CAACC,MAAY,IAAIjC,EAAmBiC,CAAO;"}
+{"version":3,"file":"zudoku.auth-azureb2c.js","sources":["../src/lib/authentication/providers/azureb2c.tsx"],"sourcesContent":["import type { AuthenticationResult, EventMessage } from \"@azure/msal-browser\";\nimport { EventType, PublicClientApplication } from \"@azure/msal-browser\";\nimport { ErrorBoundary } from \"react-error-boundary\";\nimport type { AzureB2CAuthenticationConfig } from \"../../../config/config.js\";\nimport { ClientOnly } from \"../../components/ClientOnly.js\";\nimport { joinUrl } from \"../../util/joinUrl.js\";\nimport { CoreAuthenticationPlugin } from \"../AuthenticationPlugin.js\";\nimport type {\n  AuthActionContext,\n  AuthenticationPlugin,\n  AuthenticationProviderInitializer,\n} from \"../authentication.js\";\nimport { CallbackHandler } from \"../components/CallbackHandler.js\";\nimport { OAuthErrorPage } from \"../components/OAuthErrorPage.js\";\nimport { AuthorizationError } from \"../errors.js\";\nimport { useAuthState } from \"../state.js\";\n\nconst AZUREB2C_CALLBACK_PATH = \"/oauth/callback\";\n\nexport class AzureB2CAuthPlugin\n  extends CoreAuthenticationPlugin\n  implements AuthenticationPlugin\n{\n  private msalInstance: PublicClientApplication;\n  private readonly scopes: string[];\n  private readonly redirectToAfterSignUp?: string;\n  private readonly redirectToAfterSignIn?: string;\n  private readonly redirectToAfterSignOut: string;\n\n  constructor({\n    clientId,\n    tenantName,\n    policyName,\n    scopes,\n    redirectToAfterSignUp,\n    redirectToAfterSignIn,\n    redirectToAfterSignOut = \"/\",\n    basePath = \"\",\n  }: AzureB2CAuthenticationConfig) {\n    super();\n    this.scopes = scopes ?? [\"openid\", \"profile\", \"email\"];\n    this.redirectToAfterSignUp = redirectToAfterSignUp;\n    this.redirectToAfterSignIn = redirectToAfterSignIn;\n    this.redirectToAfterSignOut = redirectToAfterSignOut;\n\n    const authority = `https://${tenantName}.b2clogin.com/${tenantName}.onmicrosoft.com/${policyName}`;\n    const redirectUri = joinUrl(basePath, AZUREB2C_CALLBACK_PATH);\n\n    this.msalInstance = new PublicClientApplication({\n      auth: {\n        clientId,\n        authority,\n        redirectUri,\n        knownAuthorities: [`${tenantName}.b2clogin.com`],\n      },\n      cache: {\n        cacheLocation: \"sessionStorage\",\n        storeAuthStateInCookie: false,\n      },\n    });\n\n    void this.msalInstance.initialize().then(async () => {\n      void this.msalInstance\n        .handleRedirectPromise()\n        .then((response: AuthenticationResult | null) => {\n          if (response) {\n            this.handleAuthResponse(response);\n          }\n        });\n\n      // Add event callback\n      void this.msalInstance.addEventCallback((event: EventMessage) => {\n        if (event.eventType === EventType.LOGIN_SUCCESS) {\n          this.handleAuthResponse(event.payload as AuthenticationResult);\n        }\n      });\n    });\n  }\n\n  private handleAuthResponse(response: AuthenticationResult) {\n    const { accessToken, idToken, scopes, account } = response;\n\n    if (!account) {\n      throw new AuthorizationError(\"No account information in response\");\n    }\n\n    // Get the user's name from Azure B2C claims\n    const name =\n      [account.idTokenClaims?.given_name, account.idTokenClaims?.family_name]\n        .filter(Boolean)\n        .join(\" \") || account.username;\n\n    useAuthState.getState().setLoggedIn({\n      providerData: {\n        accessToken,\n        idToken,\n        scopes,\n        account,\n      },\n      profile: {\n        sub: account.localAccountId,\n        email: account.username,\n        name,\n        emailVerified: true, // Azure B2C emails are verified\n        pictureUrl: undefined, // Azure B2C doesn't provide profile pictures by default\n      },\n    });\n  }\n\n  async signUp(\n    _: AuthActionContext,\n    { redirectTo }: { redirectTo?: string } = {},\n  ) {\n    const redirectUri = this.redirectToAfterSignUp ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n      prompt: \"select_account\",\n    });\n  }\n\n  async signIn(\n    _: AuthActionContext,\n    { redirectTo }: { redirectTo?: string } = {},\n  ) {\n    const redirectUri = this.redirectToAfterSignIn ?? redirectTo ?? \"/\";\n    sessionStorage.setItem(\"redirect-to\", redirectUri);\n\n    await this.msalInstance.loginRedirect({\n      scopes: this.scopes,\n    });\n  }\n\n  async getAccessToken(): Promise<string> {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (!account) {\n      throw new AuthorizationError(\"No active account\");\n    }\n\n    try {\n      const response = await this.msalInstance.acquireTokenSilent({\n        scopes: this.scopes,\n        account,\n      });\n      return response.accessToken;\n    } catch {\n      // If silent token acquisition fails, try interactive\n      await this.msalInstance.acquireTokenRedirect({\n        scopes: this.scopes,\n        account,\n      });\n\n      throw new AuthorizationError(\n        \"Token acquisition failed after interactive attempt\",\n      );\n    }\n  }\n\n  signRequest = async (request: Request): Promise<Request> => {\n    const accessToken = await this.getAccessToken();\n    request.headers.set(\"Authorization\", `Bearer ${accessToken}`);\n    return request;\n  };\n\n  signOut = async (_: AuthActionContext) => {\n    const account = this.msalInstance.getAllAccounts()[0];\n    if (account) {\n      await this.msalInstance.logoutRedirect({\n        account,\n        postLogoutRedirectUri:\n          window.location.origin + this.redirectToAfterSignOut,\n      });\n    }\n\n    useAuthState.getState().setLoggedOut();\n  };\n\n  handleCallback = async () => {\n    const redirectTo = sessionStorage.getItem(\"redirect-to\") ?? \"/\";\n    sessionStorage.removeItem(\"redirect-to\");\n    return redirectTo;\n  };\n\n  getRoutes() {\n    return [\n      ...super.getRoutes(),\n      {\n        path: AZUREB2C_CALLBACK_PATH,\n        element: (\n          <ClientOnly>\n            <ErrorBoundary\n              fallbackRender={({ error }) => <OAuthErrorPage error={error} />}\n            >\n              <CallbackHandler handleCallback={this.handleCallback} />\n            </ErrorBoundary>\n          </ClientOnly>\n        ),\n      },\n    ];\n  }\n}\n\nconst azureB2CAuth: AuthenticationProviderInitializer<\n  AzureB2CAuthenticationConfig\n> = (options) => new AzureB2CAuthPlugin(options);\n\nexport default azureB2CAuth;\n"],"names":["AZUREB2C_CALLBACK_PATH","AzureB2CAuthPlugin","CoreAuthenticationPlugin","clientId","tenantName","policyName","scopes","redirectToAfterSignUp","redirectToAfterSignIn","redirectToAfterSignOut","basePath","authority","redirectUri","joinUrl","PublicClientApplication","response","event","EventType","accessToken","idToken","account","AuthorizationError","name","useAuthState","_","redirectTo","request","ClientOnly","jsx","ErrorBoundary","error","OAuthErrorPage","CallbackHandler","azureB2CAuth","options"],"mappings":";;;;;;;;AAiBA,MAAMA,IAAyB;AAExB,MAAMC,UACHC,EAEV;AAAA,EACU;AAAA,EACS;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EAEjB,YAAY;AAAA,IACV,UAAAC;AAAA,IACA,YAAAC;AAAA,IACA,YAAAC;AAAA,IACA,QAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,uBAAAC;AAAA,IACA,wBAAAC,IAAyB;AAAA,IACzB,UAAAC,IAAW;AAAA,EAAA,GACoB;AAC/B,UAAA,GACA,KAAK,SAASJ,KAAU,CAAC,UAAU,WAAW,OAAO,GACrD,KAAK,wBAAwBC,GAC7B,KAAK,wBAAwBC,GAC7B,KAAK,yBAAyBC;AAE9B,UAAME,IAAY,WAAWP,CAAU,iBAAiBA,CAAU,oBAAoBC,CAAU,IAC1FO,IAAcC,EAAQH,GAAUV,CAAsB;AAE5D,SAAK,eAAe,IAAIc,EAAwB;AAAA,MAC9C,MAAM;AAAA,QACJ,UAAAX;AAAA,QACA,WAAAQ;AAAA,QACA,aAAAC;AAAA,QACA,kBAAkB,CAAC,GAAGR,CAAU,eAAe;AAAA,MAAA;AAAA,MAEjD,OAAO;AAAA,QACL,eAAe;AAAA,QACf,wBAAwB;AAAA,MAAA;AAAA,IAC1B,CACD,GAEI,KAAK,aAAa,WAAA,EAAa,KAAK,YAAY;AACnD,MAAK,KAAK,aACP,sBAAA,EACA,KAAK,CAACW,MAA0C;AAC/C,QAAIA,KACF,KAAK,mBAAmBA,CAAQ;AAAA,MAEpC,CAAC,GAGE,KAAK,aAAa,iBAAiB,CAACC,MAAwB;AAC/D,QAAIA,EAAM,cAAcC,EAAU,iBAChC,KAAK,mBAAmBD,EAAM,OAA+B;AAAA,MAEjE,CAAC;AAAA,IACH,CAAC;AAAA,EACH;AAAA,EAEQ,mBAAmBD,GAAgC;AACzD,UAAM,EAAE,aAAAG,GAAa,SAAAC,GAAS,QAAAb,GAAQ,SAAAc,MAAYL;AAElD,QAAI,CAACK;AACH,YAAM,IAAIC,EAAmB,oCAAoC;AAInE,UAAMC,IACJ,CAACF,EAAQ,eAAe,YAAYA,EAAQ,eAAe,WAAW,EACnE,OAAO,OAAO,EACd,KAAK,GAAG,KAAKA,EAAQ;AAE1B,IAAAG,EAAa,SAAA,EAAW,YAAY;AAAA,MAClC,cAAc;AAAA,QACZ,aAAAL;AAAA,QACA,SAAAC;AAAA,QACA,QAAAb;AAAA,QACA,SAAAc;AAAA,MAAA;AAAA,MAEF,SAAS;AAAA,QACP,KAAKA,EAAQ;AAAA,QACb,OAAOA,EAAQ;AAAA,QACf,MAAAE;AAAA,QACA,eAAe;AAAA;AAAA,QACf,YAAY;AAAA;AAAA,MAAA;AAAA,IACd,CACD;AAAA,EACH;AAAA,EAEA,MAAM,OACJE,GACA,EAAE,YAAAC,EAAA,IAAwC,CAAA,GAC1C;AACA,UAAMb,IAAc,KAAK,yBAAyBa,KAAc;AAChE,mBAAe,QAAQ,eAAeb,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,MACb,QAAQ;AAAA,IAAA,CACT;AAAA,EACH;AAAA,EAEA,MAAM,OACJY,GACA,EAAE,YAAAC,EAAA,IAAwC,CAAA,GAC1C;AACA,UAAMb,IAAc,KAAK,yBAAyBa,KAAc;AAChE,mBAAe,QAAQ,eAAeb,CAAW,GAEjD,MAAM,KAAK,aAAa,cAAc;AAAA,MACpC,QAAQ,KAAK;AAAA,IAAA,CACd;AAAA,EACH;AAAA,EAEA,MAAM,iBAAkC;AACtC,UAAMQ,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,QAAI,CAACA;AACH,YAAM,IAAIC,EAAmB,mBAAmB;AAGlD,QAAI;AAKF,cAJiB,MAAM,KAAK,aAAa,mBAAmB;AAAA,QAC1D,QAAQ,KAAK;AAAA,QACb,SAAAD;AAAA,MAAA,CACD,GACe;AAAA,IAClB,QAAQ;AAEN,kBAAM,KAAK,aAAa,qBAAqB;AAAA,QAC3C,QAAQ,KAAK;AAAA,QACb,SAAAA;AAAA,MAAA,CACD,GAEK,IAAIC;AAAA,QACR;AAAA,MAAA;AAAA,IAEJ;AAAA,EACF;AAAA,EAEA,cAAc,OAAOK,MAAuC;AAC1D,UAAMR,IAAc,MAAM,KAAK,eAAA;AAC/B,WAAAQ,EAAQ,QAAQ,IAAI,iBAAiB,UAAUR,CAAW,EAAE,GACrDQ;AAAA,EACT;AAAA,EAEA,UAAU,OAAOF,MAAyB;AACxC,UAAMJ,IAAU,KAAK,aAAa,eAAA,EAAiB,CAAC;AACpD,IAAIA,KACF,MAAM,KAAK,aAAa,eAAe;AAAA,MACrC,SAAAA;AAAA,MACA,uBACE,OAAO,SAAS,SAAS,KAAK;AAAA,IAAA,CACjC,GAGHG,EAAa,SAAA,EAAW,aAAA;AAAA,EAC1B;AAAA,EAEA,iBAAiB,YAAY;AAC3B,UAAME,IAAa,eAAe,QAAQ,aAAa,KAAK;AAC5D,0BAAe,WAAW,aAAa,GAChCA;AAAA,EACT;AAAA,EAEA,YAAY;AACV,WAAO;AAAA,MACL,GAAG,MAAM,UAAA;AAAA,MACT;AAAA,QACE,MAAMzB;AAAA,QACN,+BACG2B,GAAA,EACC,UAAAC,gBAAAA,EAAAA;AAAAA,UAACC;AAAA,UAAA;AAAA,YACC,gBAAgB,CAAC,EAAE,OAAAC,QAAYF,gBAAAA,EAAAA,IAACG,KAAe,OAAAD,GAAc;AAAA,YAE7D,UAAAF,gBAAAA,EAAAA,IAACI,GAAA,EAAgB,gBAAgB,KAAK,eAAA,CAAgB;AAAA,UAAA;AAAA,QAAA,EACxD,CACF;AAAA,MAAA;AAAA,IAEJ;AAAA,EAEJ;AACF;AAEA,MAAMC,IAEF,CAACC,MAAY,IAAIjC,EAAmBiC,CAAO;"}

package/lib/zudoku.auth-clerk.js

@@ -1,7 +1,7 @@
 import { j as a } from "./jsx-runtime-BzflLqGi.js";
 import { LogOutIcon as m } from "lucide-react";
-import { S as p, a as f, b as h } from "./SignUp-ChqXj9vd.js";
-import { b as r } from "./ZudokuContext-C6wlLMUH.js";
+import { S as p, a as f, b as h } from "./SignUp-Dug1jAGC.js";
+import { u as r } from "./ZudokuReactContext-DGJAP1sN.js";
 const R = ({
   clerkPubKey: u,
   jwtTemplateName: c,

package/lib/zudoku.auth-firebase.js

@@ -1,9 +1,9 @@
 import "./jsx-runtime-BzflLqGi.js";
-import { y as e } from "./firebase-DF-VVKB7.js";
+import { y as e } from "./firebase-C7XKRGLf.js";
 import "./invariant-B_t_F2s_.js";
-import "./errors-CYLN8SNc.js";
-import "./SignUp-ChqXj9vd.js";
-import "./ZudokuContext-C6wlLMUH.js";
+import "./errors-B77S9iOc.js";
+import "./SignUp-Dug1jAGC.js";
+import "./ZudokuReactContext-DGJAP1sN.js";
 export {
   e as default
 };

package/lib/zudoku.auth-openid.js

@@ -1,10 +1,11 @@
 import { j as D } from "./jsx-runtime-BzflLqGi.js";
 import { g as Le } from "./invariant-B_t_F2s_.js";
-import { E as Ue } from "./Zudoku-DA1yA-te.js";
+import { E as Ue } from "./Zudoku-iyiXgWFY.js";
 import { C as xe } from "./ClientOnly-E7hGysn1.js";
-import { j as Ce, b as S } from "./ZudokuContext-C6wlLMUH.js";
-import { C as Ie, O as re, A as R } from "./errors-CYLN8SNc.js";
-import { C as je, O as Oe } from "./OAuthErrorPage-D7n-_cqN.js";
+import { j as Ce } from "./ZudokuContext-CYyb_PB_.js";
+import { C as Ie, O as re, A as R } from "./errors-B77S9iOc.js";
+import { C as je, O as Oe } from "./OAuthErrorPage-CFz_gBFx.js";
+import { u as S } from "./ZudokuReactContext-DGJAP1sN.js";
 var J = { exports: {} }, De = J.exports, oe;
 function Je() {
   return oe || (oe = 1, (function(t) {
@@ -1110,10 +1111,10 @@ class It extends Ie {
     ];
   }
 }
-const Kt = (t) => new It(t);
+const Ht = (t) => new It(t);
 export {
   pe as OPENID_CALLBACK_PATH,
   It as OpenIDAuthenticationProvider,
-  Kt as default
+  Ht as default
 };
 //# sourceMappingURL=zudoku.auth-openid.js.map