[pull] main from AxaFrance:main#1
Open
pull[bot] wants to merge 503 commits into
Open
Conversation
* feature(oidc):preload user (alpha) * fix (alpha) * fix (alpha)
* fix(react-oidc): compatibility with react 19
* remove all readmes * re-add readme
…1386) * fix(oidc): renew token (alpha) * test (alpha) * test (alpha) * Update renewTokens.ts
…lease) (#1396) Co-authored-by: rchamot <rchamot@guidewire.com>
…alls (#1655) (release) * Initial plan * fix: cache navigator.serviceWorker.register to prevent infinite calls per session Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/39857db9-4f77-4326-bf37-c5840cfccf59 Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/bb2a602c-26d1-484d-9297-e7f88ec0d87a Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
#1657) Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/ae74946f-abdc-4fd8-85b3-f7bcea07d00f Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/cfced9d8-6d28-4ce4-9969-e891320d9995 Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
* Update workspace dependencies Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/a16aa964-48d7-42e3-bfac-9bc6e1529354 Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> * Fix demo website CI Node version Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/6bb881d1-127d-43b2-803b-3d670bed2007 Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
* Initial plan * Bypass non OIDC service worker requests Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/c3807b47-b316-4658-928d-53c56b639eba Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> * Refine non OIDC bypass helper Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/c3807b47-b316-4658-928d-53c56b639eba Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> * Keep access token domains intercepted Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/c87015bc-b866-4c0f-9042-c87efba325fc Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
* Initial plan * Update all libraries to latest versions Agent-Logs-Url: https://github.com/AxaFrance/oidc-client/sessions/72020054-7ed1-4849-94c9-5d9f05e003b0 Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com> --------- Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: guillaume-chervet <52236059+guillaume-chervet@users.noreply.github.com>
) (release) Bracket-notation assignment to `Storage` coerces `undefined`/`null` to the literal strings `"undefined"`/`"null"`, which then poison the next `JSON.parse` read and throw `SyntaxError: "undefined" is not valid JSON`. This is the same bug reported in #871, #1257, #1274. PR #1258 added a falsy-string guard to `getLoginParams`, but `"undefined"` is a truthy string so the guard misses the poisoning case, and the setter side was never addressed. This change: - Guards every setter in `initSession.ts` (and the SW fallback path in `initWorker.ts`) so `undefined`/`null` deletes the key instead of writing a poisoned string. - Adds a `parseJsonOrNull` helper used by all readers, providing defence-in-depth against pre-existing poisoned values written by older versions of the library. - Adds regression tests covering poisoning via both new writes and pre-existing poisoned storage entries. Affected setters: `setLoginParams`, `setTokens`, `setNonceAsync`, `setStateAsync`, `setCodeVerifierAsync`, `setSessionStateAsync`, `setDemonstratingProofOfPossession{Jwk,Nonce}`. Affected readers (defensive parse): `initAsync`, `getTokens`, `getLoginParams`, `getDemonstratingProofOfPossessionJwkAsync`.
…1687) (release) Navigation requests (mode='navigate') with destination='document' were incorrectly bypassed by the early-return filter added in 7.27.4. This caused 401 errors when opening protected URLs in new tabs, since the service worker no longer injected the access token. Extract the bypass condition into a testable shouldBypassDestination utility that skips only sub-resource loads (images, fonts, scripts, etc.) while allowing navigate requests through to the token injection logic. Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
… (release) Co-authored-by: GnOuGo Agent <gnougo-agent@localhost>
…ing indefinitely with no timeout event (#1692) (release) * feat: add loading timeout watchdog to OidcProvider (#1681) Add a configurable loading timeout that fires a loadingTimeout_error event when OidcProvider remains stuck in loading/authenticating state beyond a threshold (default 30s). This allows consumers to render recovery UI via the existing event/component plumbing instead of maintaining their own watchdog timers. Changes: - Add loadingTimeout_error event name to oidc-client events - Add loading_timeout_ms config option to OidcConfiguration (default 30s, 0 or negative disables the watchdog) - Add timeout useEffect in OidcProvider that publishes the event when stuck - Add loadingTimeoutComponent prop with a default LoadingTimeout component - Handle loadingTimeout_error in the render switch to show timeout UI - Propagate the event through existing onEvent callback - Add comprehensive tests covering all scenarios Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> * chore: fix lint and formatting for PR #1692 - Remove unused 'waitFor' import from OidcProvider.spec.tsx - Fix prettier formatting in OidcProvider.spec.tsx and OidcProvider.tsx Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
…post-callback navigation has committed (Safari edge case) (#1691) (release) * Auto fix for issue #1682: evolution * fix: auto-fix lint formatting errors Applied eslint --fix to resolve formatting issues in: - Callback.component.tsx (arrow function parentheses, line wrapping) - Callback.component.spec.tsx (import formatting, JSX formatting) - index.ts (trailing formatting) Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com> --------- Co-authored-by: GnOuGo Agent <gnougo-agent@localhost> Co-authored-by: Copilot <223556219+Copilot@users.noreply.github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
See Commits and Changes for more details.
Created by
pull[bot] (v2.0.0-alpha.4)
Can you help keep this open source service alive? 💖 Please sponsor : )