next-auth-client - npm Package Compare versions

Comparing version 1.0.4 to 1.0.5

dist/bundle.js

@@ -98,3 +98,3 @@ (function webpackUniversalModuleDefinition(root, factory) {
 "use strict";
-eval("/* harmony import */ var __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch__ = __webpack_require__(/*! isomorphic-fetch */ 2);\n/* harmony import */ var __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default = __webpack_require__.n(__WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch__);\n\n\n\n\n/* harmony default export */ __webpack_exports__[\"a\"] = (class {\n  /**\n   * This is an async, isometric method which returns a session object - \n   * either by looking up the current express session object when run on the\n   * server, or by using fetch (and optionally caching the result in local\n   * storage) when run on the client.  \n   * \n   * Note that actual session tokens are not stored in local storage, they are\n   * kept in an HTTP Only cookie as protection against session hi-jacking by\n   * malicious JavaScript.\n   **/\n  static async init({\n    req = null,\n    force = false\n  } = {}) {\n    let session = {}\n    if (req) {\n      if (req.session) {\n        // If running on the server session data should be in the req object\n        session.csrfToken = req.connection._httpMessage.locals._csrf\n        session.expires = req.session.cookie._expires\n        // If the user is logged in, add the user to the session object\n        if (req.user) {\n          session.user = req.user\n        }\n      }\n    } else {\n      // If running in the browser attempt to load session from sessionStore\n      if (force === true) {\n        // If force update is set, reset data store\n        this._removeLocalStore('session')\n      } else {\n        session = this._getLocalStore('session')\n      }\n    }\n\n    // If session data exists, has not expired AND force is not set then\n    // return the stored session we already have.\n    if (session && Object.keys(session).length > 0 && session.expires && session.expires > Date.now()) {\n      return new Promise(resolve => {\n        resolve(session)\n      })\n    } else {\n      // If running on server, but session has expired return empty object\n      // (no valid session)\n      if (typeof window === 'undefined') {\n        return new Promise(resolve => {\n          resolve({})\n        })\n      }\n    }\n\n    // If we don't have session data, or it's expired, or force is set\n    // to true then revalidate it by fetching it again from the server.\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/session', {\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('HTTP error when trying to get session'))\n      }\n    })\n    .then(response => response.json())\n    .then(data => {\n      // Update session with session info\n      session = data\n\n      // Set a value we will use to check this client should silently\n      // revalidate, using the value for revalidateAge returned by the server.\n      session.expires = Date.now() + session.revalidateAge\n\n      // Save changes to session\n      this._saveLocalStore('session', session)\n\n      return session\n    })\n    .catch(() => Error('Unable to get session'))\n  }\n\n  /**\n   * A simple static method to get the CSRF Token is provided for convenience\n   **/\n  static async csrfToken() {\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/csrf', {\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('Unexpected response when trying to get CSRF token'))\n      }\n    })\n    .then(response => response.json())\n    .then(data => data.csrfToken)\n    .catch(() => Error('Unable to get CSRF token'))\n  }\n\n  /**\n   * A simple static method to get list of currently linked oAuth Accounts\n   **/\n  static async linked() {\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/linked', {\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('Unexpected response when trying to get linked accounts'))\n      }\n    })\n    .then(response => response.json())\n    .then(data => data.csrfToken)\n    .catch(() => Error('Unable to get linked accounts'))\n  }\n  \n  static async signin(email) {\n    // Sign in to the server\n\n    // Load current session info from cache\n    let session = await this.init()\n\n    // Make sure we have the latest CSRF Token in our session\n    session.csrfToken = await this.csrfToken()\n\n    const formData = {\n      _csrf: session.csrfToken,\n      email,\n    }\n    \n    // Encoded form parser for sending data in the body\n    const encodedForm = Object.keys(formData).map((key) => {\n      return encodeURIComponent(key) + '=' + encodeURIComponent(formData[key])\n    }).join('&')\n\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/email/signin', {\n      method: 'POST',\n      headers: {\n        'Content-Type': 'application/x-www-form-urlencoded'\n      },\n      body: encodedForm,\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('HTTP error while attempting to sign in'))\n      }\n    })\n    .then(() => true)\n    .catch(() => Error('Unable to sign in'))\n  }\n\n  static async signout() {\n    // Signout from the server\n    const csrfToken = await this.csrfToken()\n    const formData = { _csrf: csrfToken }\n\n    // Encoded form parser for sending data in the body\n    const encodedForm = Object.keys(formData).map((key) => {\n      return encodeURIComponent(key) + '=' + encodeURIComponent(formData[key])\n    }).join('&')\n\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/signout', {\n      method: 'POST',\n      headers: {\n        'Content-Type': 'application/x-www-form-urlencoded'\n      },\n      body: encodedForm,\n      credentials: 'same-origin'\n    })\n    .then(() => {\n      // @TODO We aren't checking for success, just completion\n      this._removeLocalStore('session')\n      return true\n    })\n    .catch(() => Error('Unable to sign out'))\n  }\n\n  // The Web Storage API is widely supported, but not always available (e.g.\n  // it can be restricted in private browsing mode, triggering an exception).\n  // We handle that silently by just returning null here.\n  static _getLocalStore(name) {\n    try {\n      return JSON.parse(localStorage.getItem(name))\n    } catch (err) {\n      return null\n    }\n  }\n  \n  static _saveLocalStore(name, data) {\n    try {\n      localStorage.setItem(name, JSON.stringify(data))\n      return true\n    } catch (err) {\n      return false\n    }\n  }\n  \n  static _removeLocalStore(name) {\n    try {\n      localStorage.removeItem(name)\n      return true\n    } catch (err) {\n      return false\n    }\n  }\n});//# sourceURL=[module]\n//# sourceMappingURL=data:application/json;charset=utf-8;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiMS5qcyIsInNvdXJjZXMiOlsid2VicGFjazovLy8uL3NyYy9zZXNzaW9uLmpzPzlmYzAiXSwic291cmNlc0NvbnRlbnQiOlsiJ3VzZSBzdHJpY3QnXG5cbmltcG9ydCBmZXRjaCBmcm9tICdpc29tb3JwaGljLWZldGNoJ1xuXG5leHBvcnQgZGVmYXVsdCBjbGFzcyB7XG4gIC8qKlxuICAgKiBUaGlzIGlzIGFuIGFzeW5jLCBpc29tZXRyaWMgbWV0aG9kIHdoaWNoIHJldHVybnMgYSBzZXNzaW9uIG9iamVjdCAtIFxuICAgKiBlaXRoZXIgYnkgbG9va2luZyB1cCB0aGUgY3VycmVudCBleHByZXNzIHNlc3Npb24gb2JqZWN0IHdoZW4gcnVuIG9uIHRoZVxuICAgKiBzZXJ2ZXIsIG9yIGJ5IHVzaW5nIGZldGNoIChhbmQgb3B0aW9uYWxseSBjYWNoaW5nIHRoZSByZXN1bHQgaW4gbG9jYWxcbiAgICogc3RvcmFnZSkgd2hlbiBydW4gb24gdGhlIGNsaWVudC4gIFxuICAgKiBcbiAgICogTm90ZSB0aGF0IGFjdHVhbCBzZXNzaW9uIHRva2VucyBhcmUgbm90IHN0b3JlZCBpbiBsb2NhbCBzdG9yYWdlLCB0aGV5IGFyZVxuICAgKiBrZXB0IGluIGFuIEhUVFAgT25seSBjb29raWUgYXMgcHJvdGVjdGlvbiBhZ2FpbnN0IHNlc3Npb24gaGktamFja2luZyBieVxuICAgKiBtYWxpY2lvdXMgSmF2YVNjcmlwdC5cbiAgICoqL1xuICBzdGF0aWMgYXN5bmMgaW5pdCh7XG4gICAgcmVxID0gbnVsbCxcbiAgICBmb3JjZSA9IGZhbHNlXG4gIH0gPSB7fSkge1xuICAgIGxldCBzZXNzaW9uID0ge31cbiAgICBpZiAocmVxKSB7XG4gICAgICBpZiAocmVxLnNlc3Npb24pIHtcbiAgICAgICAgLy8gSWYgcnVubmluZyBvbiB0aGUgc2VydmVyIHNlc3Npb24gZGF0YSBzaG91bGQgYmUgaW4gdGhlIHJlcSBvYmplY3RcbiAgICAgICAgc2Vzc2lvbi5jc3JmVG9rZW4gPSByZXEuY29ubmVjdGlvbi5faHR0cE1lc3NhZ2UubG9jYWxzLl9jc3JmXG4gICAgICAgIHNlc3Npb24uZXhwaXJlcyA9IHJlcS5zZXNzaW9uLmNvb2tpZS5fZXhwaXJlc1xuICAgICAgICAvLyBJZiB0aGUgdXNlciBpcyBsb2dnZWQgaW4sIGFkZCB0aGUgdXNlciB0byB0aGUgc2Vzc2lvbiBvYmplY3RcbiAgICAgICAgaWYgKHJlcS51c2VyKSB7XG4gICAgICAgICAgc2Vzc2lvbi51c2VyID0gcmVxLnVzZXJcbiAgICAgICAgfVxuICAgICAgfVxuICAgIH0gZWxzZSB7XG4gICAgICAvLyBJZiBydW5uaW5nIGluIHRoZSBicm93c2VyIGF0dGVtcHQgdG8gbG9hZCBzZXNzaW9uIGZyb20gc2Vzc2lvblN0b3JlXG4gICAgICBpZiAoZm9yY2UgPT09IHRydWUpIHtcbiAgICAgICAgLy8gSWYgZm9yY2UgdXBkYXRlIGlzIHNldCwgcmVzZXQgZGF0YSBzdG9yZVxuICAgICAgICB0aGlzLl9yZW1vdmVMb2NhbFN0b3JlKCdzZXNzaW9uJylcbiAgICAgIH0gZWxzZSB7XG4gICAgICAgIHNlc3Npb24gPSB0aGlzLl9nZXRMb2NhbFN0b3JlKCdzZXNzaW9uJylcbiAgICAgIH1cbiAgICB9XG5cbiAgICAvLyBJZiBzZXNzaW9uIGRhdGEgZXhpc3RzLCBoYXMgbm90IGV4cGlyZWQgQU5EIGZvcmNlIGlzIG5vdCBzZXQgdGhlblxuICAgIC8vIHJldHVybiB0aGUgc3RvcmVkIHNlc3Npb24gd2UgYWxyZWFkeSBoYXZlLlxuICAgIGlmIChzZXNzaW9uICYmIE9iamVjdC5rZXlzKHNlc3Npb24pLmxlbmd0aCA+IDAgJiYgc2Vzc2lvbi5leHBpcmVzICYmIHNlc3Npb24uZXhwaXJlcyA+IERhdGUubm93KCkpIHtcbiAgICAgIHJldHVybiBuZXcgUHJvbWlzZShyZXNvbHZlID0+IHtcbiAgICAgICAgcmVzb2x2ZShzZXNzaW9uKVxuICAgICAgfSlcbiAgICB9IGVsc2Uge1xuICAgICAgLy8gSWYgcnVubmluZyBvbiBzZXJ2ZXIsIGJ1dCBzZXNzaW9uIGhhcyBleHBpcmVkIHJldHVybiBlbXB0eSBvYmplY3RcbiAgICAgIC8vIChubyB2YWxpZCBzZXNzaW9uKVxuICAgICAgaWYgKHR5cGVvZiB3aW5kb3cgPT09ICd1bmRlZmluZWQnKSB7XG4gICAgICAgIHJldHVybiBuZXcgUHJvbWlzZShyZXNvbHZlID0+IHtcbiAgICAgICAgICByZXNvbHZlKHt9KVxuICAgICAgICB9KVxuICAgICAgfVxuICAgIH1cblxuICAgIC8vIElmIHdlIGRvbid0IGhhdmUgc2Vzc2lvbiBkYXRhLCBvciBpdCdzIGV4cGlyZWQsIG9yIGZvcmNlIGlzIHNldFxuICAgIC8vIHRvIHRydWUgdGhlbiByZXZhbGlkYXRlIGl0IGJ5IGZldGNoaW5nIGl0IGFnYWluIGZyb20gdGhlIHNlcnZlci5cbiAgICByZXR1cm4gZmV0Y2goJy9hdXRoL3Nlc3Npb24nLCB7XG4gICAgICBjcmVkZW50aWFsczogJ3NhbWUtb3JpZ2luJ1xuICAgIH0pXG4gICAgLnRoZW4ocmVzcG9uc2UgPT4ge1xuICAgICAgaWYgKHJlc3BvbnNlLm9rKSB7XG4gICAgICAgIHJldHVybiByZXNwb25zZVxuICAgICAgfSBlbHNlIHtcbiAgICAgICAgcmV0dXJuIFByb21pc2UucmVqZWN0KEVycm9yKCdIVFRQIGVycm9yIHdoZW4gdHJ5aW5nIHRvIGdldCBzZXNzaW9uJykpXG4gICAgICB9XG4gICAgfSlcbiAgICAudGhlbihyZXNwb25zZSA9PiByZXNwb25zZS5qc29uKCkpXG4gICAgLnRoZW4oZGF0YSA9PiB7XG4gICAgICAvLyBVcGRhdGUgc2Vzc2lvbiB3aXRoIHNlc3Npb24gaW5mb1xuICAgICAgc2Vzc2lvbiA9IGRhdGFcblxuICAgICAgLy8gU2V0IGEgdmFsdWUgd2Ugd2lsbCB1c2UgdG8gY2hlY2sgdGhpcyBjbGllbnQgc2hvdWxkIHNpbGVudGx5XG4gICAgICAvLyByZXZhbGlkYXRlLCB1c2luZyB0aGUgdmFsdWUgZm9yIHJldmFsaWRhdGVBZ2UgcmV0dXJuZWQgYnkgdGhlIHNlcnZlci5cbiAgICAgIHNlc3Npb24uZXhwaXJlcyA9IERhdGUubm93KCkgKyBzZXNzaW9uLnJldmFsaWRhdGVBZ2VcblxuICAgICAgLy8gU2F2ZSBjaGFuZ2VzIHRvIHNlc3Npb25cbiAgICAgIHRoaXMuX3NhdmVMb2NhbFN0b3JlKCdzZXNzaW9uJywgc2Vzc2lvbilcblxuICAgICAgcmV0dXJuIHNlc3Npb25cbiAgICB9KVxuICAgIC5jYXRjaCgoKSA9PiBFcnJvcignVW5hYmxlIHRvIGdldCBzZXNzaW9uJykpXG4gIH1cblxuICAvKipcbiAgICogQSBzaW1wbGUgc3RhdGljIG1ldGhvZCB0byBnZXQgdGhlIENTUkYgVG9rZW4gaXMgcHJvdmlkZWQgZm9yIGNvbnZlbmllbmNlXG4gICAqKi9cbiAgc3RhdGljIGFzeW5jIGNzcmZUb2tlbigpIHtcbiAgICByZXR1cm4gZmV0Y2goJy9hdXRoL2NzcmYnLCB7XG4gICAgICBjcmVkZW50aWFsczogJ3NhbWUtb3JpZ2luJ1xuICAgIH0pXG4gICAgLnRoZW4ocmVzcG9uc2UgPT4ge1xuICAgICAgaWYgKHJlc3BvbnNlLm9rKSB7XG4gICAgICAgIHJldHVybiByZXNwb25zZVxuICAgICAgfSBlbHNlIHtcbiAgICAgICAgcmV0dXJuIFByb21pc2UucmVqZWN0KEVycm9yKCdVbmV4cGVjdGVkIHJlc3BvbnNlIHdoZW4gdHJ5aW5nIHRvIGdldCBDU1JGIHRva2VuJykpXG4gICAgICB9XG4gICAgfSlcbiAgICAudGhlbihyZXNwb25zZSA9PiByZXNwb25zZS5qc29uKCkpXG4gICAgLnRoZW4oZGF0YSA9PiBkYXRhLmNzcmZUb2tlbilcbiAgICAuY2F0Y2goKCkgPT4gRXJyb3IoJ1VuYWJsZSB0byBnZXQgQ1NSRiB0b2tlbicpKVxuICB9XG5cbiAgLyoqXG4gICAqIEEgc2ltcGxlIHN0YXRpYyBtZXRob2QgdG8gZ2V0IGxpc3Qgb2YgY3VycmVudGx5IGxpbmtlZCBvQXV0aCBBY2NvdW50c1xuICAgKiovXG4gIHN0YXRpYyBhc3luYyBsaW5rZWQoKSB7XG4gICAgcmV0dXJuIGZldGNoKCcvYXV0aC9saW5rZWQnLCB7XG4gICAgICBjcmVkZW50aWFsczogJ3NhbWUtb3JpZ2luJ1xuICAgIH0pXG4gICAgLnRoZW4ocmVzcG9uc2UgPT4ge1xuICAgICAgaWYgKHJlc3BvbnNlLm9rKSB7XG4gICAgICAgIHJldHVybiByZXNwb25zZVxuICAgICAgfSBlbHNlIHtcbiAgICAgICAgcmV0dXJuIFByb21pc2UucmVqZWN0KEVycm9yKCdVbmV4cGVjdGVkIHJlc3BvbnNlIHdoZW4gdHJ5aW5nIHRvIGdldCBsaW5rZWQgYWNjb3VudHMnKSlcbiAgICAgIH1cbiAgICB9KVxuICAgIC50aGVuKHJlc3BvbnNlID0+IHJlc3BvbnNlLmpzb24oKSlcbiAgICAudGhlbihkYXRhID0+IGRhdGEuY3NyZlRva2VuKVxuICAgIC5jYXRjaCgoKSA9PiBFcnJvcignVW5hYmxlIHRvIGdldCBsaW5rZWQgYWNjb3VudHMnKSlcbiAgfVxuICBcbiAgc3RhdGljIGFzeW5jIHNpZ25pbihlbWFpbCkge1xuICAgIC8vIFNpZ24gaW4gdG8gdGhlIHNlcnZlclxuXG4gICAgLy8gTG9hZCBjdXJyZW50IHNlc3Npb24gaW5mbyBmcm9tIGNhY2hlXG4gICAgbGV0IHNlc3Npb24gPSBhd2FpdCB0aGlzLmluaXQoKVxuXG4gICAgLy8gTWFrZSBzdXJlIHdlIGhhdmUgdGhlIGxhdGVzdCBDU1JGIFRva2VuIGluIG91ciBzZXNzaW9uXG4gICAgc2Vzc2lvbi5jc3JmVG9rZW4gPSBhd2FpdCB0aGlzLmNzcmZUb2tlbigpXG5cbiAgICBjb25zdCBmb3JtRGF0YSA9IHtcbiAgICAgIF9jc3JmOiBzZXNzaW9uLmNzcmZUb2tlbixcbiAgICAgIGVtYWlsLFxuICAgIH1cbiAgICBcbiAgICAvLyBFbmNvZGVkIGZvcm0gcGFyc2VyIGZvciBzZW5kaW5nIGRhdGEgaW4gdGhlIGJvZHlcbiAgICBjb25zdCBlbmNvZGVkRm9ybSA9IE9iamVjdC5rZXlzKGZvcm1EYXRhKS5tYXAoKGtleSkgPT4ge1xuICAgICAgcmV0dXJuIGVuY29kZVVSSUNvbXBvbmVudChrZXkpICsgJz0nICsgZW5jb2RlVVJJQ29tcG9uZW50KGZvcm1EYXRhW2tleV0pXG4gICAgfSkuam9pbignJicpXG5cbiAgICByZXR1cm4gZmV0Y2goJy9hdXRoL2VtYWlsL3NpZ25pbicsIHtcbiAgICAgIG1ldGhvZDogJ1BPU1QnLFxuICAgICAgaGVhZGVyczoge1xuICAgICAgICAnQ29udGVudC1UeXBlJzogJ2FwcGxpY2F0aW9uL3gtd3d3LWZvcm0tdXJsZW5jb2RlZCdcbiAgICAgIH0sXG4gICAgICBib2R5OiBlbmNvZGVkRm9ybSxcbiAgICAgIGNyZWRlbnRpYWxzOiAnc2FtZS1vcmlnaW4nXG4gICAgfSlcbiAgICAudGhlbihyZXNwb25zZSA9PiB7XG4gICAgICBpZiAocmVzcG9uc2Uub2spIHtcbiAgICAgICAgcmV0dXJuIHJlc3BvbnNlXG4gICAgICB9IGVsc2Uge1xuICAgICAgICByZXR1cm4gUHJvbWlzZS5yZWplY3QoRXJyb3IoJ0hUVFAgZXJyb3Igd2hpbGUgYXR0ZW1wdGluZyB0byBzaWduIGluJykpXG4gICAgICB9XG4gICAgfSlcbiAgICAudGhlbigoKSA9PiB0cnVlKVxuICAgIC5jYXRjaCgoKSA9PiBFcnJvcignVW5hYmxlIHRvIHNpZ24gaW4nKSlcbiAgfVxuXG4gIHN0YXRpYyBhc3luYyBzaWdub3V0KCkge1xuICAgIC8vIFNpZ25vdXQgZnJvbSB0aGUgc2VydmVyXG4gICAgY29uc3QgY3NyZlRva2VuID0gYXdhaXQgdGhpcy5jc3JmVG9rZW4oKVxuICAgIGNvbnN0IGZvcm1EYXRhID0geyBfY3NyZjogY3NyZlRva2VuIH1cblxuICAgIC8vIEVuY29kZWQgZm9ybSBwYXJzZXIgZm9yIHNlbmRpbmcgZGF0YSBpbiB0aGUgYm9keVxuICAgIGNvbnN0IGVuY29kZWRGb3JtID0gT2JqZWN0LmtleXMoZm9ybURhdGEpLm1hcCgoa2V5KSA9PiB7XG4gICAgICByZXR1cm4gZW5jb2RlVVJJQ29tcG9uZW50KGtleSkgKyAnPScgKyBlbmNvZGVVUklDb21wb25lbnQoZm9ybURhdGFba2V5XSlcbiAgICB9KS5qb2luKCcmJylcblxuICAgIHJldHVybiBmZXRjaCgnL2F1dGgvc2lnbm91dCcsIHtcbiAgICAgIG1ldGhvZDogJ1BPU1QnLFxuICAgICAgaGVhZGVyczoge1xuICAgICAgICAnQ29udGVudC1UeXBlJzogJ2FwcGxpY2F0aW9uL3gtd3d3LWZvcm0tdXJsZW5jb2RlZCdcbiAgICAgIH0sXG4gICAgICBib2R5OiBlbmNvZGVkRm9ybSxcbiAgICAgIGNyZWRlbnRpYWxzOiAnc2FtZS1vcmlnaW4nXG4gICAgfSlcbiAgICAudGhlbigoKSA9PiB7XG4gICAgICAvLyBAVE9ETyBXZSBhcmVuJ3QgY2hlY2tpbmcgZm9yIHN1Y2Nlc3MsIGp1c3QgY29tcGxldGlvblxuICAgICAgdGhpcy5fcmVtb3ZlTG9jYWxTdG9yZSgnc2Vzc2lvbicpXG4gICAgICByZXR1cm4gdHJ1ZVxuICAgIH0pXG4gICAgLmNhdGNoKCgpID0+IEVycm9yKCdVbmFibGUgdG8gc2lnbiBvdXQnKSlcbiAgfVxuXG4gIC8vIFRoZSBXZWIgU3RvcmFnZSBBUEkgaXMgd2lkZWx5IHN1cHBvcnRlZCwgYnV0IG5vdCBhbHdheXMgYXZhaWxhYmxlIChlLmcuXG4gIC8vIGl0IGNhbiBiZSByZXN0cmljdGVkIGluIHByaXZhdGUgYnJvd3NpbmcgbW9kZSwgdHJpZ2dlcmluZyBhbiBleGNlcHRpb24pLlxuICAvLyBXZSBoYW5kbGUgdGhhdCBzaWxlbnRseSBieSBqdXN0IHJldHVybmluZyBudWxsIGhlcmUuXG4gIHN0YXRpYyBfZ2V0TG9jYWxTdG9yZShuYW1lKSB7XG4gICAgdHJ5IHtcbiAgICAgIHJldHVybiBKU09OLnBhcnNlKGxvY2FsU3RvcmFnZS5nZXRJdGVtKG5hbWUpKVxuICAgIH0gY2F0Y2ggKGVycikge1xuICAgICAgcmV0dXJuIG51bGxcbiAgICB9XG4gIH1cbiAgXG4gIHN0YXRpYyBfc2F2ZUxvY2FsU3RvcmUobmFtZSwgZGF0YSkge1xuICAgIHRyeSB7XG4gICAgICBsb2NhbFN0b3JhZ2Uuc2V0SXRlbShuYW1lLCBKU09OLnN0cmluZ2lmeShkYXRhKSlcbiAgICAgIHJldHVybiB0cnVlXG4gICAgfSBjYXRjaCAoZXJyKSB7XG4gICAgICByZXR1cm4gZmFsc2VcbiAgICB9XG4gIH1cbiAgXG4gIHN0YXRpYyBfcmVtb3ZlTG9jYWxTdG9yZShuYW1lKSB7XG4gICAgdHJ5IHtcbiAgICAgIGxvY2FsU3RvcmFnZS5yZW1vdmVJdGVtKG5hbWUpXG4gICAgICByZXR1cm4gdHJ1ZVxuICAgIH0gY2F0Y2ggKGVycikge1xuICAgICAgcmV0dXJuIGZhbHNlXG4gICAgfVxuICB9XG59XG5cblxuLy8vLy8vLy8vLy8vLy8vLy8vXG4vLyBXRUJQQUNLIEZPT1RFUlxuLy8gLi9zcmMvc2Vzc2lvbi5qc1xuLy8gbW9kdWxlIGlkID0gMVxuLy8gbW9kdWxlIGNodW5rcyA9IDAiXSwibWFwcGluZ3MiOiJBQUFBO0FBQUE7QUFBQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0E7QUFDQTtBQUNBO0FBQ0EiLCJzb3VyY2VSb290IjoiIn0=\n//# sourceURL=webpack-internal:///1\n");
+eval("/* harmony import */ var __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch__ = __webpack_require__(/*! isomorphic-fetch */ 2);\n/* harmony import */ var __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default = __webpack_require__.n(__WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch__);\n\n\n\n\n/* harmony default export */ __webpack_exports__[\"a\"] = (class {\n  /**\n   * This is an async, isometric method which returns a session object - \n   * either by looking up the current express session object when run on the\n   * server, or by using fetch (and optionally caching the result in local\n   * storage) when run on the client.  \n   * \n   * Note that actual session tokens are not stored in local storage, they are\n   * kept in an HTTP Only cookie as protection against session hi-jacking by\n   * malicious JavaScript.\n   **/\n  static async init({\n    req = null,\n    force = false\n  } = {}) {\n    let session = {}\n    if (req) {\n      if (req.session) {\n        // If running on the server session data should be in the req object\n        session.csrfToken = req.connection._httpMessage.locals._csrf\n        session.expires = req.session.cookie._expires\n        // If the user is logged in, add the user to the session object\n        if (req.user) {\n          session.user = req.user\n        }\n      }\n    } else {\n      // If running in the browser attempt to load session from sessionStore\n      if (force === true) {\n        // If force update is set, reset data store\n        this._removeLocalStore('session')\n      } else {\n        session = this._getLocalStore('session')\n      }\n    }\n\n    // If session data exists, has not expired AND force is not set then\n    // return the stored session we already have.\n    if (session && Object.keys(session).length > 0 && session.expires && session.expires > Date.now()) {\n      return new Promise(resolve => {\n        resolve(session)\n      })\n    } else {\n      // If running on server, but session has expired return empty object\n      // (no valid session)\n      if (typeof window === 'undefined') {\n        return new Promise(resolve => {\n          resolve({})\n        })\n      }\n    }\n\n    // If we don't have session data, or it's expired, or force is set\n    // to true then revalidate it by fetching it again from the server.\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/session', {\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('HTTP error when trying to get session'))\n      }\n    })\n    .then(response => response.json())\n    .then(data => {\n      // Update session with session info\n      session = data\n\n      // Set a value we will use to check this client should silently\n      // revalidate, using the value for revalidateAge returned by the server.\n      session.expires = Date.now() + session.revalidateAge\n\n      // Save changes to session\n      this._saveLocalStore('session', session)\n\n      return session\n    })\n    .catch(() => Error('Unable to get session'))\n  }\n\n  /**\n   * A simple static method to get the CSRF Token is provided for convenience\n   **/\n  static async csrfToken() {\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/csrf', {\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('Unexpected response when trying to get CSRF token'))\n      }\n    })\n    .then(response => response.json())\n    .then(data => data.csrfToken)\n    .catch(() => Error('Unable to get CSRF token'))\n  }\n\n  /**\n   * A simple static method to get list of currently linked oAuth Accounts\n   **/\n  static async linked() {\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/linked', {\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('Unexpected response when trying to get linked accounts'))\n      }\n    })\n    .then(response => response.json())\n    .then(data => data)\n    .catch(() => Error('Unable to get linked accounts'))\n  }\n  \n  static async signin(email) {\n    // Sign in to the server\n\n    // Load current session info from cache\n    let session = await this.init()\n\n    // Make sure we have the latest CSRF Token in our session\n    session.csrfToken = await this.csrfToken()\n\n    const formData = {\n      _csrf: session.csrfToken,\n      email,\n    }\n    \n    // Encoded form parser for sending data in the body\n    const encodedForm = Object.keys(formData).map((key) => {\n      return encodeURIComponent(key) + '=' + encodeURIComponent(formData[key])\n    }).join('&')\n\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/email/signin', {\n      method: 'POST',\n      headers: {\n        'Content-Type': 'application/x-www-form-urlencoded'\n      },\n      body: encodedForm,\n      credentials: 'same-origin'\n    })\n    .then(response => {\n      if (response.ok) {\n        return response\n      } else {\n        return Promise.reject(Error('HTTP error while attempting to sign in'))\n      }\n    })\n    .then(() => true)\n    .catch(() => Error('Unable to sign in'))\n  }\n\n  static async signout() {\n    // Signout from the server\n    const csrfToken = await this.csrfToken()\n    const formData = { _csrf: csrfToken }\n\n    // Encoded form parser for sending data in the body\n    const encodedForm = Object.keys(formData).map((key) => {\n      return encodeURIComponent(key) + '=' + encodeURIComponent(formData[key])\n    }).join('&')\n\n    return __WEBPACK_IMPORTED_MODULE_0_isomorphic_fetch___default()('/auth/signout', {\n      method: 'POST',\n      headers: {\n        'Content-Type': 'application/x-www-form-urlencoded'\n      },\n      body: encodedForm,\n      credentials: 'same-origin'\n    })\n    .then(() => {\n      // @TODO We aren't checking for success, just completion\n      this._removeLocalStore('session')\n      return true\n    })\n    .catch(() => Error('Unable to sign out'))\n  }\n\n  // The Web Storage API is widely supported, but not always available (e.g.\n  // it can be restricted in private browsing mode, triggering an exception).\n  // We handle that silently by just returning null here.\n  static _getLocalStore(name) {\n    try {\n      return JSON.parse(localStorage.getItem(name))\n    } catch (err) {\n      return null\n    }\n  }\n  \n  static _saveLocalStore(name, data) {\n    try {\n      localStorage.setItem(name, JSON.stringify(data))\n      return true\n    } catch (err) {\n      return false\n    }\n  }\n  \n  static _removeLocalStore(name) {\n    try {\n      localStorage.removeItem(name)\n      return true\n    } catch (err) {\n      return false\n    }\n  }\n});//# sourceURL=[module]\n//# sourceMappingURL=data:application/json;charset=utf-8;base64,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\n//# sourceURL=webpack-internal:///1\n");
 
@@ -101,0 +101,0 @@ /***/ }),

package.json

 {
   "name": "next-auth-client",
-  "version": "1.0.4",
+  "version": "1.0.5",
   "description": "A client for next-auth",
@@ -5,0 +5,0 @@ "main": "dist/bundle.js",

src/session.js

@@ -120,3 +120,3 @@ 'use strict'
     .then(response => response.json())
-    .then(data => data.csrfToken)
+    .then(data => data)
     .catch(() => Error('Unable to get linked accounts'))
@@ -123,0 +123,0 @@ }

New alerts

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Fixed alerts

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

Worsened metrics

Total package byte prevSize

31364

decreased by-0.1%

No dependency changes