UNPKG

authress-login

Version:

Universal login sdk for Authress authentication as a service. Provides managed authentication for user identity, authentication, and token verification.

authress.io

Authress/authress-login.js

74 lines (64 loc) 2.69 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
const cookieManager = require('cookie'); const AuthenticationCredentialsStorageKey = 'AuthenticationCredentialsStorage'; class UserIdentityTokenStorageManager { set(value, expiry) { try { const cookies = cookieManager.parse(document.cookie); localStorage.setItem(AuthenticationCredentialsStorageKey, JSON.stringify({ idToken: value, expiry: expiry && expiry.getTime(), jsCookies: !!cookies.authorization })); this.clearCookies('user'); } catch (error) { console.debug('LocalStorage failed in Browser', error); } } get() { try { const { idToken, expiry, jsCookies } = JSON.parse(localStorage.getItem(AuthenticationCredentialsStorageKey) || '{}'); if (!idToken || expiry < Date.now()) { return null; } const cookies = cookieManager.parse(document.cookie); // If the authorization cookie was present when the identity was stored, then it must still be present after, otherwise we know that the user data saved isn't valid anymore // * If the authorization cookie wasn't present, then it is because the application configuration restricts access to javascript. // * That means that the implementation can't use the presence of the ID token information to make a decision about if the user is logged in. if (jsCookies && !cookies.authorization) { return null; } return idToken; } catch (error) { console.debug('LocalStorage failed in Browser', error); return null; } } delete() { try { localStorage.removeItem(AuthenticationCredentialsStorageKey); } catch (error) { console.debug('LocalStorage failed in Browser', error); } } clear() { this.clearCookies(); this.delete(); } clearCookies(cookieName) { const cookies = document.cookie.split('; '); for (const cookie of cookies) { // Remove only the cookies that are relevant to the client if (!['user', 'authorization', 'auth-code'].includes(cookie.split('=')[0]) || cookieName && cookie.split('=')[0] !== cookieName) { continue; } const domain = window.location.hostname.split('.'); while (domain.length > 1) { const cookieBase = `${encodeURIComponent(cookie.split(';')[0].split('=')[0])}=; expires=Thu, 01-Jan-1970 00:00:01 GMT; domain=${domain.join('.')}; SameSite=Strict; path=`; const path = location.pathname.split('/'); document.cookie = `${cookieBase}/`; while (path.length > 0) { document.cookie = cookieBase + path.join('/'); path.pop(); } domain.shift(); } } } } module.exports = new UserIdentityTokenStorageManager();