UNPKG

@auth0/auth0-spa-js

Version:

Auth0 SDK for Single Page Applications using Authorization Code Grant Flow with PKCE

github.com/auth0/auth0-spa-js

auth0/auth0-spa-js

135 lines (106 loc) 3.42 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
import { type KeyPair } from './utils'; const VERSION = 1; const NAME = 'auth0-spa-js'; const TABLES = { NONCE: 'nonce', KEYPAIR: 'keypair' } as const; const AUTH0_NONCE_ID = 'auth0'; type Table = (typeof TABLES)[keyof typeof TABLES]; export class DpopStorage { protected readonly clientId: string; protected dbHandle: IDBDatabase | undefined; constructor(clientId: string) { this.clientId = clientId; } protected getVersion(): number { return VERSION; } protected createDbHandle(): Promise<IDBDatabase> { const req = window.indexedDB.open(NAME, this.getVersion()); return new Promise((resolve, reject) => { req.onupgradeneeded = () => Object.values(TABLES).forEach(t => req.result.createObjectStore(t)); req.onerror = () => reject(req.error); req.onsuccess = () => resolve(req.result); }); } protected async getDbHandle(): Promise<IDBDatabase> { if (!this.dbHandle) { this.dbHandle = await this.createDbHandle(); } return this.dbHandle; } protected async executeDbRequest<T = unknown>( table: string, mode: IDBTransactionMode, requestFactory: (table: IDBObjectStore) => IDBRequest<T> ): Promise<T> { const db = await this.getDbHandle(); const txn = db.transaction(table, mode); const store = txn.objectStore(table); const request = requestFactory(store); return new Promise((resolve, reject) => { request.onsuccess = () => resolve(request.result); request.onerror = () => reject(request.error); }); } protected buildKey(id?: string): string { const finalId = id ? `_${id}` // prefix to avoid collisions : AUTH0_NONCE_ID; return `${this.clientId}::${finalId}`; } public setNonce(nonce: string, id?: string): Promise<void> { return this.save(TABLES.NONCE, this.buildKey(id), nonce); } public setKeyPair(keyPair: KeyPair): Promise<void> { return this.save(TABLES.KEYPAIR, this.buildKey(), keyPair); } protected async save( table: Table, key: IDBValidKey, obj: unknown ): Promise<void> { return void await this.executeDbRequest(table, 'readwrite', table => table.put(obj, key) ); } public findNonce(id?: string): Promise<string | undefined> { return this.find(TABLES.NONCE, this.buildKey(id)); } public findKeyPair(): Promise<KeyPair | undefined> { return this.find(TABLES.KEYPAIR, this.buildKey()); } protected find<T = unknown>( table: Table, key: IDBValidKey ): Promise<T | undefined> { return this.executeDbRequest(table, 'readonly', table => table.get(key)); } protected async deleteBy( table: Table, predicate: (key: IDBValidKey) => boolean ): Promise<void> { const allKeys = await this.executeDbRequest(table, 'readonly', table => table.getAllKeys() ); allKeys ?.filter(predicate) .map(k => this.executeDbRequest(table, 'readwrite', table => table.delete(k)) ); } protected deleteByClientId(table: Table, clientId: string): Promise<void> { return this.deleteBy( table, k => typeof k === 'string' && k.startsWith(`${clientId}::`) ); } public clearNonces(): Promise<void> { return this.deleteByClientId(TABLES.NONCE, this.clientId); } public clearKeyPairs(): Promise<void> { return this.deleteByClientId(TABLES.KEYPAIR, this.clientId); } }