rabbitmq-server/deps/rabbitmq_management/priv/www/js/oidc-oauth/helper.js


var mgr;
var _management_logger;

/*
function oauth_initialize_if_required_deprecated() {
    rabbit_port = window.location.port ? ":" +  window.location.port : ""
    rabbit_path_prefix = window.location.pathname.replace(/(\/js\/oidc-oauth\/.*$|\/+$)/, "")
    rabbit_base_uri = window.location.protocol + "//" + window.location.hostname
      + rabbit_port + rabbit_path_prefix

    var request = new XMLHttpRequest();
    request.open("GET", rabbit_base_uri + "/api/auth", false);
    request.send(null);
    if (request.status === 200) {
        return oauth_initialize(JSON.parse(request.responseText));
    } else {
        return { "enabled" : false };
    }

}
*/

function rabbit_base_uri() {
  return window.location.protocol + "//" + window.location.hostname + rabbit_port() + rabbit_path_prefix()
}
function rabbit_path_prefix() {
  return window.location.pathname.replace(/(\/js\/oidc-oauth\/.*$|\/+$)/, "");
}
function rabbit_port() {
  return window.location.port ? ":" +  window.location.port : "";
}
function auth_settings_apply_defaults(authSettings) {

  if (!authSettings.oauth_response_type) {
    authSettings.oauth_response_type = "code"; // although the default value in oidc client
  }

  if (!authSettings.oauth_scopes) {
    authSettings.oauth_scopes = "openid profile";
  }

  return authSettings;

}


function oauth_initialize(authSettings) {
    oauth = {
      "logged_in": false,
      "enabled" : authSettings.oauth_enabled,
      "authority" : authSettings.oauth_provider_url
    };

    if (!oauth.enabled) return oauth;

    oauth.sp_initiated = true;
    if (authSettings.oauth_initiated_logon_type == "idp_initiated") {
      oauth.sp_initiated = false;
      return oauth;
    }

    authSettings = auth_settings_apply_defaults(authSettings);

    oidcSettings = {
        //userStore: new WebStorageStateStore({ store: window.localStorage }),
        authority: authSettings.oauth_provider_url,
        client_id: authSettings.oauth_client_id,
        response_type: authSettings.oauth_response_type,
        scope: authSettings.oauth_scopes,
        resource: authSettings.oauth_resource_id,
        redirect_uri: rabbit_base_uri() + "/js/oidc-oauth/login-callback.html",
        post_logout_redirect_uri: rabbit_base_uri() + "/",

        automaticSilentRenew: true,
        revokeAccessTokenOnSignout: true,
        extraQueryParams: {
          audience: authSettings.oauth_resource_id, // required by oauth0
        },
    };
    if (authSettings.oauth_client_secret != "") {
      oidcSettings.client_secret = authSettings.oauth_client_secret;
    }
    if (authSettings.oauth_metadata_url != "") {
      oidcSettings.metadataUrl = authSettings.oauth_metadata_url;
    }

    oidc.Log.setLevel(oidc.Log.DEBUG);
    oidc.Log.setLogger(console);

    mgr = new oidc.UserManager(oidcSettings);
    oauth.readiness_url = mgr.settings.metadataUrl;

    _management_logger = new oidc.Logger("Management");

    mgr.events.addAccessTokenExpiring(function() {
      _management_logger.info("token expiring...");
    });
    mgr.events.addAccessTokenExpired(function() {
      _management_logger.info("token expired!!");
    });
    mgr.events.addSilentRenewError(function(err) {
      _management_logger.error("token expiring failed due to ", err);
    });
    mgr.events.addUserLoaded(function(user) {
      console.log("addUserLoaded  setting oauth.access_token ")
      oauth.access_token = user.access_token  // DEPRECATED
      set_token_auth(oauth.access_token)
    });

    return oauth;
}

function log() {
    message = ""
    Array.prototype.forEach.call(arguments, function(msg) {
        if (msg instanceof Error) {
            msg = "Error: " + msg.message;
        }
        else if (typeof msg !== "string") {
            msg = JSON.stringify(msg, null, 2);
        }
        message += msg
    });
    _management_logger.info(message)
}

function oauth_is_logged_in() {
    return mgr.getUser().then(user => {
        if (!user) {
            return { "loggedIn": false };
        }
        return { "user": user, "loggedIn": !user.expired };
    });
}
function oauth_initiateLogin() {
  if (oauth.sp_initiated) {
    mgr.signinRedirect({ state: { } }).then(function() {
        _management_logger.debug("signinRedirect done");
    }).catch(function(err) {
        _management_logger.error(err);
    })
  } else {
    location.href = oauth.authority;
  }
}

function oauth_redirectToHome(oauth) {
  console.log("oauth_redirectToHome set_token_auth")
  set_token_auth(oauth.access_token)
  go_to_home()
}
function go_to_home() {
  location.href = rabbit_path_prefix() + "/"
}
function go_to_authority() {
  location.href = oauth.authority
}
function oauth_redirectToLogin(error) {
  if (!error) location.href = rabbit_path_prefix() + "/"
  else {
    location.href = rabbit_path_prefix() + "/?error=" + error
  }
}
function oauth_completeLogin() {
    mgr.signinRedirectCallback().then(user => oauth_redirectToHome(user)).catch(function(err) {
        _management_logger.error(err)
        oauth_redirectToLogin(err)
    });
}

function oauth_initiateLogout() {
  if (oauth.sp_initiated) {
    mgr.signoutRedirect()
  } else {
    go_to_authority()
  }
}
function oauth_completeLogout() {
    clear_auth()
    mgr.signoutRedirectCallback().then(_ => oauth_redirectToLogin())
}
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
			`var mgr;`
Logging improvements Rather than logging directly via console.log we do it via the Logger library provided by oidc-client which allows to use logging levels 2022-09-01 20:53:42 +08:00			`var _management_logger;`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Read JWT token from Authorization Header 2023-03-31 15:51:22 +08:00			`/*`
			`function oauth_initialize_if_required_deprecated() {`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`rabbit_port = window.location.port ? ":" + window.location.port : ""`
Support multiple path segments in management path Updated selenium tests to tests against 2 path segments rather than just one 2022-10-04 22:43:18 +08:00			`rabbit_path_prefix = window.location.pathname.replace(/(\/js\/oidc-oauth\/.*$\|\/+$)/, "")`
Support management path prefix when using OAuth2 2022-10-04 15:13:57 +08:00			`rabbit_base_uri = window.location.protocol + "//" + window.location.hostname`
Support multiple path segments in management path Updated selenium tests to tests against 2 path segments rather than just one 2022-10-04 22:43:18 +08:00			`+ rabbit_port + rabbit_path_prefix`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
			`var request = new XMLHttpRequest();`
Support management path prefix when using OAuth2 2022-10-04 15:13:57 +08:00			`request.open("GET", rabbit_base_uri + "/api/auth", false);`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`request.send(null);`
			`if (request.status === 200) {`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`return oauth_initialize(JSON.parse(request.responseText));`
Support management path prefix when using OAuth2 2022-10-04 15:13:57 +08:00			`} else {`
Management plugin: oauth_enable => oauth_enabled in more places 2022-09-02 05:17:58 +08:00			`return { "enabled" : false };`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`

			`}`
Read JWT token from Authorization Header 2023-03-31 15:51:22 +08:00			`*/`
Support multiple path segments in management path Updated selenium tests to tests against 2 path segments rather than just one 2022-10-04 22:43:18 +08:00
Read JWT token from Authorization Header 2023-03-31 15:51:22 +08:00			`function rabbit_base_uri() {`
Do not mount route to pages which require vhost access but the use has no access to any vhost 2023-05-18 23:17:11 +08:00			`return window.location.protocol + "//" + window.location.hostname + rabbit_port() + rabbit_path_prefix()`
			`}`
			`function rabbit_path_prefix() {`
			`return window.location.pathname.replace(/(\/js\/oidc-oauth\/.*$\|\/+$)/, "");`
			`}`
			`function rabbit_port() {`
			`return window.location.port ? ":" + window.location.port : "";`
Read JWT token from Authorization Header 2023-03-31 15:51:22 +08:00			`}`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function auth_settings_apply_defaults(authSettings) {`

			`if (!authSettings.oauth_response_type) {`
			`authSettings.oauth_response_type = "code"; // although the default value in oidc client`
			`}`

Handle scopes It is important that RabbitMQ specifies which scopes it has to request. We control that via the management.oauth_scopes field. If we have enable_uaa = true, the scopes are automatically configured for us as follows: "openid profile " + authSettings.oauth_resource_id + ".*" Else we have to configure oauth_scopes field. 2022-05-24 23:07:39 +08:00			`if (!authSettings.oauth_scopes) {`
			`authSettings.oauth_scopes = "openid profile";`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`}`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`return authSettings;`

			`}`

Support management path prefix when using OAuth2 2022-10-04 15:13:57 +08:00
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function oauth_initialize(authSettings) {`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`oauth = {`
			`"logged_in": false,`
Management plugin: oauth_enable => oauth_enabled in more places 2022-09-02 05:17:58 +08:00			`"enabled" : authSettings.oauth_enabled,`
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`"authority" : authSettings.oauth_provider_url`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`};`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Add missing renamed oauth.enable -> oauth.enabled 2022-09-02 16:33:11 +08:00			`if (!oauth.enabled) return oauth;`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`oauth.sp_initiated = true;`
			`if (authSettings.oauth_initiated_logon_type == "idp_initiated") {`
			`oauth.sp_initiated = false;`
			`return oauth;`
			`}`

WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`authSettings = auth_settings_apply_defaults(authSettings);`

Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`oidcSettings = {`
			`//userStore: new WebStorageStateStore({ store: window.localStorage }),`
			`authority: authSettings.oauth_provider_url,`
			`client_id: authSettings.oauth_client_id,`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`response_type: authSettings.oauth_response_type,`
Deprecate uaa settings from management plugin 2023-04-13 17:21:17 +08:00			`scope: authSettings.oauth_scopes,`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`resource: authSettings.oauth_resource_id,`
Read JWT token from Authorization Header 2023-03-31 15:51:22 +08:00			`redirect_uri: rabbit_base_uri() + "/js/oidc-oauth/login-callback.html",`
			`post_logout_redirect_uri: rabbit_base_uri() + "/",`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Set cookies expiry from token expiry claim 2022-05-05 22:22:47 +08:00			`automaticSilentRenew: true,`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`revokeAccessTokenOnSignout: true,`
Add audience request parameter to /authorize Oauth0 requires this parameter in order to return a proper JWT token and not an opaque JWT token. 2022-05-31 21:08:32 +08:00			`extraQueryParams: {`
			`audience: authSettings.oauth_resource_id, // required by oauth0`
			`},`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`};`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`if (authSettings.oauth_client_secret != "") {`
			`oidcSettings.client_secret = authSettings.oauth_client_secret;`
			`}`
			`if (authSettings.oauth_metadata_url != "") {`
			`oidcSettings.metadataUrl = authSettings.oauth_metadata_url;`
			`}`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Logging improvements Rather than logging directly via console.log we do it via the Logger library provided by oidc-client which allows to use logging levels 2022-09-01 20:53:42 +08:00			`oidc.Log.setLevel(oidc.Log.DEBUG);`
			`oidc.Log.setLogger(console);`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
			`mgr = new oidc.UserManager(oidcSettings);`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`oauth.readiness_url = mgr.settings.metadataUrl;`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Logging improvements Rather than logging directly via console.log we do it via the Logger library provided by oidc-client which allows to use logging levels 2022-09-01 20:53:42 +08:00			`_management_logger = new oidc.Logger("Management");`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
Set cookies expiry from token expiry claim 2022-05-05 22:22:47 +08:00			`mgr.events.addAccessTokenExpiring(function() {`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`_management_logger.info("token expiring...");`
Set cookies expiry from token expiry claim 2022-05-05 22:22:47 +08:00			`});`
Fix issue related to refreshing access tokens 2022-07-07 17:10:03 +08:00			`mgr.events.addAccessTokenExpired(function() {`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`_management_logger.info("token expired!!");`
Fix issue related to refreshing access tokens 2022-07-07 17:10:03 +08:00			`});`
Set cookies expiry from token expiry claim 2022-05-05 22:22:47 +08:00			`mgr.events.addSilentRenewError(function(err) {`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`_management_logger.error("token expiring failed due to ", err);`
Set cookies expiry from token expiry claim 2022-05-05 22:22:47 +08:00			`});`
Fix issue related to refreshing access tokens 2022-07-07 17:10:03 +08:00			`mgr.events.addUserLoaded(function(user) {`
Test token refresh And enable hard session timeout which was disabled by mistake when moved credentials from cookies to local storage 2022-12-19 22:39:32 +08:00			`console.log("addUserLoaded setting oauth.access_token ")`
			`oauth.access_token = user.access_token // DEPRECATED`
			`set_token_auth(oauth.access_token)`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`});`
Set cookies expiry from token expiry claim 2022-05-05 22:22:47 +08:00
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`return oauth;`
			`}`

			`function log() {`
			`message = ""`
			`Array.prototype.forEach.call(arguments, function(msg) {`
			`if (msg instanceof Error) {`
			`msg = "Error: " + msg.message;`
			`}`
			`else if (typeof msg !== "string") {`
			`msg = JSON.stringify(msg, null, 2);`
			`}`
			`message += msg`
			`});`
Logging improvements Rather than logging directly via console.log we do it via the Logger library provided by oidc-client which allows to use logging levels 2022-09-01 20:53:42 +08:00			`_management_logger.info(message)`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`

WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function oauth_is_logged_in() {`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`return mgr.getUser().then(user => {`
			`if (!user) {`
			`return { "loggedIn": false };`
			`}`
			`return { "user": user, "loggedIn": !user.expired };`
			`});`
			`}`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function oauth_initiateLogin() {`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`if (oauth.sp_initiated) {`
Logging improvements Rather than logging directly via console.log we do it via the Logger library provided by oidc-client which allows to use logging levels 2022-09-01 20:53:42 +08:00			`mgr.signinRedirect({ state: { } }).then(function() {`
			`_management_logger.debug("signinRedirect done");`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}).catch(function(err) {`
Logging improvements Rather than logging directly via console.log we do it via the Logger library provided by oidc-client which allows to use logging levels 2022-09-01 20:53:42 +08:00			`_management_logger.error(err);`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`})`
			`} else {`
			`location.href = oauth.authority;`
			`}`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`
Support management path prefix when using OAuth2 2022-10-04 15:13:57 +08:00
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`function oauth_redirectToHome(oauth) {`
Do not use cookies to store basic auth Use window.localStorage. If it is disabled Management UI should stop working rather than falling back to cookies 2022-12-13 21:09:18 +08:00			`console.log("oauth_redirectToHome set_token_auth")`
			`set_token_auth(oauth.access_token)`
			`go_to_home()`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`}`
			`function go_to_home() {`
Do not mount route to pages which require vhost access but the use has no access to any vhost 2023-05-18 23:17:11 +08:00			`location.href = rabbit_path_prefix() + "/"`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`function go_to_authority() {`
Do not use cookies to store basic auth Use window.localStorage. If it is disabled Management UI should stop working rather than falling back to cookies 2022-12-13 21:09:18 +08:00			`location.href = oauth.authority`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`}`
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`function oauth_redirectToLogin(error) {`
Do not mount route to pages which require vhost access but the use has no access to any vhost 2023-05-18 23:17:11 +08:00			`if (!error) location.href = rabbit_path_prefix() + "/"`
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`else {`
Do not mount route to pages which require vhost access but the use has no access to any vhost 2023-05-18 23:17:11 +08:00			`location.href = rabbit_path_prefix() + "/?error=" + error`
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`}`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function oauth_completeLogin() {`
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`mgr.signinRedirectCallback().then(user => oauth_redirectToHome(user)).catch(function(err) {`
Do not use cookies to store basic auth Use window.localStorage. If it is disabled Management UI should stop working rather than falling back to cookies 2022-12-13 21:09:18 +08:00			`_management_logger.error(err)`
Handle rabbitmq session timeout 2022-05-26 22:49:07 +08:00			`oauth_redirectToLogin(err)`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`});`
			`}`

WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function oauth_initiateLogout() {`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`if (oauth.sp_initiated) {`
Do not use cookies to store basic auth Use window.localStorage. If it is disabled Management UI should stop working rather than falling back to cookies 2022-12-13 21:09:18 +08:00			`mgr.signoutRedirect()`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`} else {`
Do not use cookies to store basic auth Use window.localStorage. If it is disabled Management UI should stop working rather than falling back to cookies 2022-12-13 21:09:18 +08:00			`go_to_authority()`
Support Idp initiated logon in mgt ui with Oauth Configure preferred username from a token Make client_secret optional 2022-11-08 16:41:47 +08:00			`}`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`
WIP login/logout/token-refresh against keycloak 2022-05-10 22:22:04 +08:00			`function oauth_completeLogout() {`
Do not use cookies to store basic auth Use window.localStorage. If it is disabled Management UI should stop working rather than falling back to cookies 2022-12-13 21:09:18 +08:00			`clear_auth()`
			`mgr.signoutRedirectCallback().then(_ => oauth_redirectToLogin())`
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00			`}`