UNPKG

@criipto/verify-react

Version:

Verify SDK for React Single Page Applications

github.com/criipto/criipto-verify-react

criipto/criipto-verify-react

171 lines (129 loc) 4.56 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
# @criipto/verify-react Accept MitID, NemID, Swedish BankID, Norwegian BankID and more logins in your React app with `@criipto/verify-react`. ## App switch support `@criipto/verify-react` supports app switching for Swedish BankID and Danish MitID by a best-effort mobile-os detection and setting the relevant Criipto Verify login hints. ## Installation Using [npm](https://npmjs.org/) ```sh npm install @criipto/verify-react ``` ## Getting Started Setup the Criipto Verify SDK by wrapping your application in `CriiptoVerifyProvider`: ```jsx // src/index.js import React from 'react'; import ReactDOM from 'react-dom'; import { CriiptoVerifyProvider } from '@criipto/verify-react'; import App from './App'; ReactDOM.render( <CriiptoVerifyProvider domain="{YOUR_CRIIPTO_DOMAIN}" clientID="{YOUR_CRIIPTO_APPLICATION_CLIENT_ID}" redirectUri={window.location.href} > <App /> </CriiptoVerifyProvider>, document.getElementById('root') ); ``` You can find your domain and application client id on the [Criipto Dashboard](https://dashboard.criipto.com/). Use the `useCriiptoVerify` hook + the `AuthMethodSelector` component in your React app to render a login screen. ```jsx // src/App.js import React from 'react'; import { useCriiptoVerify, AuthMethodSelector } from '@criipto/verify-react'; import '@criipto/verify-react/dist/criipto-verify-react.css'; export default function App() { const {result} = useCriiptoVerify(); if (result?.id_token) { return ( <pre> {JSON.stringify(result.id_token, null, 2)} </pre> ) } return ( <React.Fragment> {result?.error ? ( <p> An error occurred: {result.error} ({result.error_description}). Please try again. </p> ) : null} <AuthMethodSelector /> </React.Fragment> ); } ``` ## Sessions If you want to use `@criipto/verify-react` for session management (rather than one-off authentication) you can configure a `sessionStore`: ```jsx // src/index.js import React from 'react'; import ReactDOM from 'react-dom'; import { CriiptoVerifyProvider } from '@criipto/verify-react'; import App from './App'; ReactDOM.render( <CriiptoVerifyProvider domain="{YOUR_CRIIPTO_DOMAIN}" clientID="{YOUR_CRIIPTO_APPLICATION_CLIENT_ID}" redirectUri={window.location.href} sessionStore={window.sessionStorage} // or window.localStorage > <App /> </CriiptoVerifyProvider>, document.getElementById('root') ); ``` When a `sessionStore` is configured the library will store the id_token in your chosen storage (sessionStorage or localStorage) and invalidate the token once it expires. The library will also attempt to retrieve a user token on page load via SSO (if your criipto domain has SSO enabled). You may wish to increase the "Token lifetime" setting of your Criipto Application. ```jsx // src/App.js import React from 'react'; import { useCriiptoVerify, AuthMethodSelector } from '@criipto/verify-react'; export default function App() { const {claims, error, isLoading} = useCriiptoVerify(); if (isLoading) { return <div>Loading</div> } if (claims) { return ( <pre> {JSON.stringify(claims, null, 2)} </pre> ) } return ( <React.Fragment> {error ? ( <p> An error occured: {error.error} ({error.error_description}). Please try again: </p> ) : null} <AuthMethodSelector /> </React.Fragment> ); } ``` ### Logging Out `@criipto/verify-react` offers the logout method you can use to clear session storage and log out of any existing SSO session. ```jsx const {logout} = useCriiptoVerify(); ... <button onClick={() => logout({redirectUri: window.location.href})}> Log Out </button> ``` ## useEffect + loginWithRedirect If you are triggering `loginWithRedirect` inside a `useEffect` hook, you need to allow the SDK time to initialize a few values before you redirect the user: ```jsx const {isLoading, isInitializing, loginWithRedirect} = useCriiptoVerify(); useEffect(() => { if (isLoading || isInitializing) return; loginWithRedirect(); }, [isLoading, isInitializing]); ``` ## XHR/fetch caveats The library may require to do fetch requests against Criipto to fetch application configuration. Make sure that the host that the React app runs on is included in the list of callback URLs for your application. Otherwise, you will encounter CORS errors. ## Criipto Learn more about Criipto and sign up for your free developer account at [criipto.com](https://www.criipto.com).