Merge pull request #98 from brionmario/next-fixes

fix(react): fix `organizationHandle` resolution issues with the on-prem WSO2 Identity Server

Author: brionmario

.changeset/slimy-seas-relax.md

@@ -0,0 +1,7 @@
+---
+'@asgardeo/javascript': patch
+'@asgardeo/react': patch
+---
+
+- Fix `organizationHandle` resolution issues with the on-prem WSO2 Identity Server
+- Expose `fetch` method in `AsgardeoContext` to allow custom HTTP requests

.github/ISSUE_TEMPLATE/bug.yml

@@ -0,0 +1,62 @@
+name: "🐞 Report a Bug"
+description: Create an issue if something does not work as expected.
+labels: ["Type/Bug"]
+body:
+  - type: textarea
+    id: background
+    attributes:
+      label: Description
+      description: Please share a clear and concise description of the problem.
+      placeholder: Description
+  - type: textarea
+    id: steps
+    attributes:
+      label: Steps to Reproduce
+      description: List the steps you followed when you encountered the issue.
+    validations:
+      required: true
+  - type: dropdown
+    id: area
+    attributes:
+      label: Please select the package issue is related to
+      options:
+        - '@asgardeo/browser'
+        - '@asgardeo/express'
+        - '@asgardeo/javascript'
+        - '@asgardeo/nextjs'
+        - '@asgardeo/node'
+        - '@asgardeo/nuxt'
+        - '@asgardeo/react'
+        - '@asgardeo/react-router'
+        - '@asgardeo/vue'
+        - 'samples'
+      default: 1
+      multiple: true
+    validations:
+      required: true
+  - type: input
+    id: version
+    attributes:
+      label: Version
+      description: Enter package version or commit hash.
+    validations:
+      required: true
+  - type: textarea
+    id: environment
+    attributes:
+      label: Environment Details (with versions)
+      description: Mention the environment details (OS, Browser, etc..) that the SDK is running on.
+    validations:
+      required: false
+  - type: checkboxes
+    id: reporter-checklist
+    attributes:
+      label: Reporter Checklist
+      description: Please ensure the following before submitting the issue.
+      options:
+        - label: "I have searched the existing issues and this is not a duplicate."
+          required: true
+        - label: "I have provided all the necessary information."
+          required: true
+        - label: "I have tested the issue on the latest version of the package."
+          required: true

.github/ISSUE_TEMPLATE/improvement.yml

@@ -0,0 +1,56 @@
+name: "🚀 Improvement Request"
+description: Suggest an improvement for the SDKs.
+labels: ["Type/Improvement"]
+body:
+  - type: textarea
+    id: limitation
+    attributes:
+      label: Current Limitation
+      description: Describe the current limitation.
+    validations:
+      required: true
+  - type: textarea
+    id: suggestion
+    attributes:
+      label: Suggested Improvement
+      description: Describe the improvement you suggest.
+    validations:
+      required: true
+  - type: dropdown
+    id: area
+    attributes:
+      label: Please select the package issue is related to
+      options:
+        - '@asgardeo/browser'
+        - '@asgardeo/express'
+        - '@asgardeo/javascript'
+        - '@asgardeo/nextjs'
+        - '@asgardeo/node'
+        - '@asgardeo/nuxt'
+        - '@asgardeo/react'
+        - '@asgardeo/react-router'
+        - '@asgardeo/vue'
+        - 'samples'
+      default: 1
+      multiple: true
+    validations:
+      required: true
+  - type: input
+    id: version
+    attributes:
+      label: Version
+      description: Enter package version or commit hash.
+    validations:
+      required: true
+  - type: checkboxes
+    id: reporter-checklist
+    attributes:
+      label: Reporter Checklist
+      description: Please review and confirm the following items before opening the improvement request.
+      options:
+        - label: "I have searched the existing issues and this is not a duplicate."
+          required: true
+        - label: "I have provided all the necessary information."
+          required: true
+        - label: "I have verified the improvement is not available in the latest version of the package."
+          required: true

.github/ISSUE_TEMPLATE/new_feature.yml

@@ -0,0 +1,63 @@
+name: "💡 New Feature Request"
+description: Suggest new functionality and features for the SDKs.
+labels: ["Type/NewFeature"]
+body:
+  - type: textarea
+    id: problem
+    attributes:
+      label: Problem
+      description: What is the problem this feature will solve?
+    validations:
+      required: true
+  - type: textarea
+    id: solution
+    attributes:
+      label: Proposed Solution
+      description: Describe the solution you'd like to have.
+    validations:
+      required: true
+  - type: textarea
+    id: alternatives
+    attributes:
+      label: Alternatives
+      description: Describe any alternatives have you considered
+    validations:
+      required: false
+  - type: dropdown
+    id: area
+    attributes:
+      label: Please select the package issue is related to
+      options:
+        - '@asgardeo/browser'
+        - '@asgardeo/express'
+        - '@asgardeo/javascript'
+        - '@asgardeo/nextjs'
+        - '@asgardeo/node'
+        - '@asgardeo/nuxt'
+        - '@asgardeo/react'
+        - '@asgardeo/react-router'
+        - '@asgardeo/vue'
+        - 'samples'
+      default: 1
+      multiple: true
+    validations:
+      required: true
+  - type: input
+    id: version
+    attributes:
+      label: Version
+      description: Enter package version or commit hash.
+    validations:
+      required: true
+  - type: checkboxes
+    id: reporter-checklist
+    attributes:
+      label: Reporter Checklist
+      description: Please review and confirm the following items before opening the feature request.
+      options:
+        - label: "I have searched the existing issues and this is not a duplicate."
+          required: true
+        - label: "I have provided all the necessary information."
+          required: true
+        - label: "I have verified the feature on the latest version of the package."
+          required: true

packages/browser/src/__legacy__/http-client/clients/axios-http-client.ts

@@ -84,7 +84,7 @@ export class HttpClient implements HttpClientInterface<HttpRequestConfig, HttpRe
     }
 
     // Register request interceptor
-    this.axiosInstance.interceptors.request.use(async request => await this.clientInstance.requestHandler(request));
+    this.axiosInstance.interceptors.request.use(async request => await this.clientInstance.requestHandler(request as HttpRequestConfig));
 
     // Register response interceptor
     this.axiosInstance.interceptors.response.use(

packages/browser/src/__legacy__/models/http-client.ts

@@ -36,7 +36,7 @@ export interface HttpRequestInterface {
   enableRetrievingSignOutURLFromSession?: (config: SPACustomGrantConfig) => void;
 }
 
-export interface HttpRequestConfig extends AxiosRequestConfig {
+export interface HttpRequestConfig extends AxiosRequestConfig, Omit<Request, 'headers' | 'method' | 'signal' | 'url'> {
   attachToken?: boolean;
   shouldEncodeToFormData?: boolean;
   shouldAttachIDPAccessToken?: boolean;

packages/javascript/src/__legacy__/client.ts

@@ -45,12 +45,16 @@ import processOpenIDScopes from '../utils/processOpenIDScopes';
  * Default configurations.
  */
 const DefaultConfig: Partial<AuthClientConfig<unknown>> = {
-  clockTolerance: 300,
+  tokenValidation: {
+    idToken: {
+      validate: true,
+      validateIssuer: true,
+      clockTolerance: 300,
+    },
+  },
   enablePKCE: true,
   responseMode: 'query',
   sendCookiesInRequests: true,
-  validateIDToken: true,
-  validateIDTokenIssuer: true,
 };
 
 /**

packages/javascript/src/__legacy__/helpers/authentication-helper.ts

@@ -197,8 +197,8 @@ export class AuthenticationHelper<T> {
       (await this._config()).clientId,
       issuer ?? '',
       this._cryptoHelper.decodeIdToken(idToken).sub,
-      (await this._config()).clockTolerance,
-      (await this._config()).validateIDTokenIssuer ?? true,
+      (await this._config()).tokenValidation?.idToken?.clockTolerance,
+      (await this._config()).tokenValidation?.idToken?.validateIssuer ?? true,
     );
   }
 
@@ -257,7 +257,7 @@ export class AuthenticationHelper<T> {
 
     parsedResponse.created_at = new Date().getTime();
 
-    const shouldValidateIdToken: boolean | undefined = (await this._config()).validateIDToken;
+    const shouldValidateIdToken: boolean | undefined = (await this._config()).tokenValidation?.idToken?.validate;
 
     if (shouldValidateIdToken) {
       return this.validateIdToken(parsedResponse.id_token).then(async () => {

packages/javascript/src/__legacy__/models/client-config.ts

@@ -29,12 +29,25 @@ export interface DefaultAuthClientConfig {
   prompt?: string;
   responseMode?: OAuthResponseMode;
   scopes?: string | string[] | undefined;
-  validateIDToken?: boolean;
-  validateIDTokenIssuer?: boolean;
-  /**
-   * Allowed leeway for id_tokens (in seconds).
-   */
-  clockTolerance?: number;
+  tokenValidation?: {
+    /**
+     * ID token validation config.
+     */
+    idToken?: {
+      /**
+       * Whether to validate ID tokens.
+       */
+      validate?: boolean;
+      /**
+       * Whether to validate the issuer of ID tokens.
+       */
+      validateIssuer?: boolean;
+      /**
+       * Allowed leeway for ID tokens (in seconds).
+       */
+      clockTolerance?: number;
+    };
+  };
   /**
    * Specifies if cookies should be sent with access-token requests, refresh-token requests,
    * custom-grant requests, etc.

packages/javascript/src/models/config.ts

@@ -107,6 +107,33 @@ export interface BaseConfig<T = unknown> extends WithPreferences {
    * and use the `SignUp` component to render it.
    */
   signUpUrl?: string | undefined;
+
+  /**
+   * Token validation configuration.
+   * This allows you to configure how the SDK validates tokens received from the authorization server.
+   * It includes options for ID token validation, such as whether to validate the token,
+   * whether to validate the issuer, and the allowed clock tolerance for token validation.
+   * If not provided, the SDK will use default validation settings.
+   */
+  tokenValidation?: {
+    /**
+     * ID token validation config.
+     */
+    idToken?: {
+      /**
+       * Whether to validate ID tokens.
+       */
+      validate?: boolean;
+      /**
+       * Whether to validate the issuer of ID tokens.
+       */
+      validateIssuer?: boolean;
+      /**
+       * Allowed leeway for ID tokens (in seconds).
+       */
+      clockTolerance?: number;
+    };
+  };
 }
 
 export interface WithPreferences {