UNPKG

synapse-react-client

Version:

[![npm version](https://badge.fury.io/js/synapse-react-client.svg)](https://badge.fury.io/js/synapse-react-client) [![code style: prettier](https://img.shields.io/badge/code_style-prettier-ff69b4.svg?style=flat-square)](https://github.com/prettier/prettie

sage-bionetworks.github.io/synapse-web-monorepo/

Sage-Bionetworks/synapse-web-monorepo

104 lines 4.66 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
import { OAuthTokenIntrospectionResponse, RealmPrincipal } from '@sage-bionetworks/synapse-client'; export type SessionState = { token: string | undefined; realmId: string | undefined; userId: string | undefined; isAuthenticated: boolean; hasInitializedSession: boolean; }; export type SynapseSessionManagerOptions = { /** The realm that an unauthenticated user should be signed in to. Defaults to "0", the public Synapse realm */ defaultRealm?: string; /** If defined, specifies the allowable elapsed time in seconds since the last time the End-User was actively authenticated. * If the elapsed time is greater than this value, the session will be cleared and the user will have to re-authenticate. */ maxAge?: number; /** Called if the user is not authenticated when the session is initialized. */ onMissingExpectedAuthentication?: () => void; /** Called when a stored token fails validation (e.g. expired). Called after the session manager signs out. * If not provided, the session manager will call `window.location.reload()` after signing out. */ onSessionInvalid?: () => void; }; /** * Framework-agnostic session manager for Synapse applications. * * Handles the full session lifecycle: token retrieval from browser cookies, * token validation via OAuth2 introspection, periodic refresh, and sign-out. * * Can be used directly from any JavaScript context (GWT/JsInterop, vanilla JS, etc.) * or wrapped by a framework-specific adapter (e.g. a React hook via `useSyncExternalStore`). * * Implements the external store contract: use {@link subscribe} and {@link getSnapshot} * to integrate with React's `useSyncExternalStore`, or any other subscription-based framework. */ export declare class SynapseSessionManager { private state; private listeners; private intervalId; private options; constructor(options?: SynapseSessionManagerOptions); /** * Subscribe to state changes. The listener is called whenever session state is updated. * @returns an unsubscribe function. * * Compatible with React's `useSyncExternalStore(manager.subscribe, manager.getSnapshot)`. */ subscribe(listener: () => void): () => void; /** * Get the current session state snapshot. Returns a stable reference that only * changes when the state is updated. * * Compatible with React's `useSyncExternalStore(manager.subscribe, manager.getSnapshot)`. */ getSnapshot(): SessionState; /** * Get the server-side (SSR) snapshot: always returns the unauthenticated initial state. * Required by React's `useSyncExternalStore` when rendering on the server. */ getServerSnapshot(): SessionState; /** * Update mutable options. Values are read at `refreshSession`/`clearSession` call time, * so changes take effect on the next refresh cycle. */ setOptions(options: Pick<SynapseSessionManagerOptions, 'defaultRealm' | 'maxAge'>): void; /** * Start the session manager: performs an initial refresh and sets up the periodic refresh interval. */ start(): void; /** * Stop the periodic refresh and clean up resources. */ dispose(): void; /** * Refresh the session by reading the stored token, validating it, and updating state. * If no token is stored, initializes an anonymous session. * If the token is invalid, signs out and triggers onSessionInvalid (or reloads the page). */ refreshSession(): Promise<void>; /** * Clear the current session by signing out and initializing an anonymous session. * Does NOT handle navigation/reload — the caller is responsible for that. */ clearSession(): Promise<void>; /** * Attempt to get the stored access token from the browser cookie. * Returns the token string, or undefined if not found or on error. */ static getStoredToken(): Promise<string | undefined>; /** * Validate the token by calling the token introspection service. * @return the introspection response if valid, or null if the token is invalid */ static validateToken(accessToken: string, maxAge?: number): Promise<OAuthTokenIntrospectionResponse | null>; /** * Get the realm principals for the current token. */ static getCurrentRealmPrincipals(accessToken: string): Promise<RealmPrincipal>; /** * Initialize the session for an anonymous user. * @return the new anonymous token. */ private initAnonymousUserState; private updateState; private emitChange; } //# sourceMappingURL=SynapseSessionManager.d.ts.map