UNPKG

@oxyhq/services

Version:

OxyHQ Expo/React Native SDK — UI components, screens, and native features

oxy.so

oxyhq/sdk

152 lines (144 loc) 4.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.useAuth = useAuth; Object.defineProperty(exports, "useOxy", { enumerable: true, get: function () { return _OxyContext.useOxy; } }); var _react = require("react"); var _OxyContext = require("../context/OxyContext.js"); var _useWebSSO = require("./useWebSSO.js"); /** * Unified Auth Hook * * Provides a clean, standard interface for authentication across all platforms. * This is the recommended way to access auth state in Oxy apps. * * Usage: * ```tsx * import { useAuth } from '@oxyhq/services'; * * function MyComponent() { * const { user, isAuthenticated, isLoading, signIn, signOut } = useAuth(); * * if (isLoading) return <Loading />; * if (!isAuthenticated) return <SignInButton onClick={() => signIn()} />; * return <Welcome user={user} />; * } * ``` * * Cross-domain SSO: * - Web: Automatic via FedCM (Chrome 108+, Safari 16.4+) * - Native: Automatic via shared Keychain/Account Manager * - Manual sign-in: signIn() opens popup (web) or auth sheet (native) */ /** * Unified auth hook for all Oxy apps * * Features: * - Zero config: Just wrap with OxyProvider and use * - Cross-platform: Same API on native and web * - Auto SSO: Web apps automatically check for cross-domain sessions * - Type-safe: Full TypeScript support */ function useAuth() { const { user, isAuthenticated, isLoading, isTokenReady, error, signIn: oxySignIn, handlePopupSession, logout, logoutAll, refreshSessions, oxyServices, hasIdentity, getPublicKey, showBottomSheet } = (0, _OxyContext.useOxy)(); const signIn = (0, _react.useCallback)(async publicKey => { // Check if we're on the identity provider itself (auth.oxy.so) // Only auth.oxy.so has local login forms - accounts.oxy.so is a client app const isIdentityProvider = (0, _useWebSSO.isWebBrowser)() && window.location.hostname === 'auth.oxy.so'; // Web (not on IdP): Use popup-based authentication // We go straight to popup to preserve the "user gesture" (click event) // FedCM silent SSO already runs on page load via useWebSSO // If user is clicking "Sign In", they need interactive auth NOW if ((0, _useWebSSO.isWebBrowser)() && !publicKey && !isIdentityProvider) { try { const popupSession = await oxyServices.signInWithPopup?.(); if (popupSession?.user) { // Update context state with the session (this updates user, sessions, storage) await handlePopupSession(popupSession); return popupSession.user; } throw new Error('Sign-in failed. Please try again.'); } catch (popupError) { if (popupError instanceof Error && popupError.message.includes('blocked')) { throw new Error('Popup blocked. Please allow popups for this site.'); } throw popupError; } } // Native: Use cryptographic identity // If public key provided, use it directly if (publicKey) { return oxySignIn(publicKey); } // Try to get existing identity const hasExisting = await hasIdentity(); if (hasExisting) { const existingKey = await getPublicKey(); if (existingKey) { return oxySignIn(existingKey); } } // No identity - show auth UI if (showBottomSheet) { showBottomSheet('OxyAuth'); // Return a promise that resolves when auth completes return new Promise((_, reject) => { reject(new Error('Please complete sign-in in the auth sheet')); }); } // Web fallback: navigate to login page on auth domain if ((0, _useWebSSO.isWebBrowser)()) { const loginUrl = window.location.hostname.includes('oxy.so') ? '/login' : 'https://accounts.oxy.so/login'; window.location.href = loginUrl; return new Promise(() => {}); // Never resolves, page will redirect } throw new Error('No authentication method available'); }, [oxySignIn, hasIdentity, getPublicKey, showBottomSheet, oxyServices, handlePopupSession]); const signOut = (0, _react.useCallback)(async () => { await logout(); }, [logout]); const signOutAll = (0, _react.useCallback)(async () => { await logoutAll(); }, [logoutAll]); const refresh = (0, _react.useCallback)(async () => { await refreshSessions(); }, [refreshSessions]); return { // State user, isAuthenticated, isLoading, isReady: isTokenReady, error, // Actions signIn, signOut, signOutAll, refresh, // Advanced oxyServices }; } // Re-export useOxy for backward compatibility and advanced usage //# sourceMappingURL=useAuth.js.map