UNPKG

@auth0/auth0-spa-js

Version:

Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE

github.com/auth0/auth0-spa-js

auth0/auth0-spa-js

76 lines (71 loc) 2.12 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
/** * Represents the configuration options required for initiating a Custom Token Exchange request * following RFC 8693 specifications. * * @see {@link https://www.rfc-editor.org/rfc/rfc8693 | RFC 8693: OAuth 2.0 Token Exchange} */ export type CustomTokenExchangeOptions = { /** * The type identifier for the subject token being exchanged * * @pattern * - Must be a namespaced URI under your organization's control * - Forbidden patterns: * - `^urn:ietf:params:oauth:*` (IETF reserved) * - `^https:\/\/auth0\.com/*` (Auth0 reserved) * - `^urn:auth0:*` (Auth0 reserved) * * @example * "urn:acme:legacy-system-token" * "https://api.yourcompany.com/token-type/v1" */ subject_token_type: string; /** * The opaque token value being exchanged for Auth0 tokens * * @security * - Must be validated in Auth0 Actions using strong cryptographic verification * - Implement replay attack protection * - Recommended validation libraries: `jose`, `jsonwebtoken` * * @example * "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c" */ subject_token: string; /** * The target audience for the requested Auth0 token * * @remarks * Must match exactly with an API identifier configured in your Auth0 tenant. * If not provided, falls back to the client's default audience. * * @example * "https://api.your-service.com/v1" */ audience?: string; /** * Space-separated list of OAuth 2.0 scopes being requested * * @remarks * Subject to API authorization policies configured in Auth0 * * @example * "openid profile email read:data write:data" */ scope?: string; /** * Additional custom parameters for Auth0 Action processing * * @remarks * Accessible in Action code via `event.request.body` * * @example * ```typescript * { * custom_parameter: "session_context", * device_fingerprint: "a3d8f7...", * } * ``` */ [key: string]: unknown; };