UNPKG

@auth0/auth0-spa-js

Version:

Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE

github.com/auth0/auth0-spa-js

auth0/auth0-spa-js

186 lines (138 loc) 5.2 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
# @auth0/auth0-spa-js Auth0 SDK for Single Page Applications using [Authorization Code Grant Flow with PKCE](https://auth0.com/docs/api-auth/tutorials/authorization-code-grant-pkce). [![CircleCI](https://circleci.com/gh/auth0/auth0-spa-js.svg?style=svg)](https://circleci.com/gh/auth0/auth0-spa-js) [![License](https://img.shields.io/:license-mit-blue.svg?style=flat)](https://opensource.org/licenses/MIT) ## Table of Contents Make sure this is updated based on the sections included: - [Documentation](#documentation) - [Installation](#installation) - [Getting Started](#getting-started) - [Contributing](#contributing) - [Support + Feedback](#support--feedback) - [Frequently Asked Questions](#frequently-asked-questions) - [Vulnerability Reporting](#vulnerability-reporting) - [What is Auth0](#what-is-auth0) - [License](#license) ## Documentation - See the [API reference](https://auth0.github.io/auth0-spa-js/) ## Installation From the CDN: ```html <script src="https://cdn.auth0.com/js/auth0-spa-js/1.1.1/auth0-spa-js.production.js"></script> ``` Using [npm](https://npmjs.org): ```sh npm install @auth0/auth0-spa-js ``` Using [yarn](https://yarnpkg.com): ```sh yarn add @auth0/auth0-spa-js ``` ## Getting Started ### Creating the client > Ideally, you should have only one instance of the client. Create one > before rendering / initializing your application. ```js //with async/await const auth0 = await createAuth0Client({ domain: '<AUTH0_DOMAIN>', client_id: '<AUTH0_CLIENT_ID>' }); //with promises createAuth0Client({ domain: '<AUTH0_DOMAIN>', client_id: '<AUTH0_CLIENT_ID>' }).then(auth0 => { //... }); ``` ### 1 - Login ```html <button id="login">Click to Login</button> ``` ```js //with async/await document.getElementById('login').addEventListener('click', async () => { await auth0.loginWithPopup(); //logged in. you can get the user profile like this: const user = await auth0.getUser(); console.log(user); }); //with promises document.getElementById('login').addEventListener('click', () => { auth0.loginWithPopup().then(token => { //logged in. you can get the user profile like this: auth0.getUser().then(user => { console.log(user); }); }); }); ``` ### 2 - Calling an API ```html <button id="call-api">Call an API</button> ``` ```js //with async/await document.getElementById('call-api').addEventListener('click', async () => { const accessToken = await auth0.getTokenSilently(); const result = await fetch('https://myapi.com', { method: 'GET', headers: { Authorization: `Bearer ${accessToken}` } }); const data = await result.json(); console.log(data); }); //with promises document.getElementById('call-api').addEventListener('click', () => { auth0 .getTokenSilently() .then(accessToken => fetch('https://myapi.com', { method: 'GET', headers: { Authorization: `Bearer ${accessToken}` } }) ) .then(result => result.json()) .then(data => { console.log(data); }); }); ``` ### 3 - Logout ```html <button id="logout">Logout</button> ``` ```js import createAuth0Client from '@auth0/auth0-spa-js'; document.getElementById('logout').addEventListener('click', () => { auth0.logout(); }); ``` ## Contributing We appreciate feedback and contribution to this repo! Before you get started, please see the following: - [Auth0's general contribution guidelines](https://github.com/auth0/open-source-template/blob/master/GENERAL-CONTRIBUTING.md) - [Auth0's code of conduct guidelines](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md) - [This repo's contribution guide](https://github.com/auth0/auth0-spa-js/blob/master/CONTRIBUTING.md) ## Support + Feedback This SDK is in Early Access with selected stakeholders. We process feedback and provide support via private channels. ## Frequently Asked Questions For a rundown of common issues you might encounter when using the SDK, please check out [the FAQ](https://github.com/auth0/auth0-spa-js/blob/master/FAQ.md). ## Vulnerability Reporting Please do not report security vulnerabilities on the public GitHub issue tracker. The [Responsible Disclosure Program](https://auth0.com/whitehat) details the procedure for disclosing security issues. ## What is Auth0? Auth0 helps you to easily: - implement authentication with multiple identity providers, including social (e.g., Google, Facebook, Microsoft, LinkedIn, GitHub, Twitter, etc), or enterprise (e.g., Windows Azure AD, Google Apps, Active Directory, ADFS, SAML, etc.) - log in users with username/password databases, passwordless, or multi-factor authentication - link multiple user accounts together - generate signed JSON Web Tokens to authorize your API calls and flow the user identity securely - access demographics and analytics detailing how, when, and where users are logging in - enrich user profiles from other data sources using customizable JavaScript rules [Why Auth0?](https://auth0.com/why-auth0) ## License This project is licensed under the MIT license. See the [LICENSE](https://github.com/auth0/auth0-spa-js/blob/master/LICENSE) file for more info.