anusii
diff --git a/‎lib/solid_auth_client.dart‎
Lines changed: 2 additions & 2 deletions b/‎lib/solid_auth_client.dart‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎lib/src/auth_manager/auth_manager_abstract.dart‎
Lines changed: 3 additions & 5 deletions b/‎lib/src/auth_manager/auth_manager_abstract.dart‎
Lines changed: 3 additions & 5 deletions
diff --git a/‎lib/src/auth_manager/auth_manager_stub.dart‎
Lines changed: 1 addition & 1 deletion b/‎lib/src/auth_manager/auth_manager_stub.dart‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎lib/src/auth_manager/web_auth_manager.dart‎
Lines changed: 2 additions & 3 deletions b/‎lib/src/auth_manager/web_auth_manager.dart‎
Lines changed: 2 additions & 3 deletions
diff --git a/‎lib/src/openid/openid_browser.dart‎
Lines changed: 0 additions & 100 deletions b/‎lib/src/openid/openid_browser.dart‎
Lines changed: 0 additions & 100 deletions
diff --git a/‎lib/src/openid/openid_client.dart‎
Lines changed: 6 additions & 0 deletions b/‎lib/src/openid/openid_client.dart‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎lib/src/openid/openid_client_browser.dart‎
Lines changed: 161 additions & 0 deletions b/‎lib/src/openid/openid_client_browser.dart‎
Lines changed: 161 additions & 0 deletions
@@ -36,13 +36,13 @@ import 'package:flutter/widgets.dart';
 import 'package:dart_jsonwebtoken/dart_jsonwebtoken.dart';
 import 'package:fast_rsa/fast_rsa.dart';
 import 'package:http/http.dart' as http;
-// import 'package:openid_client/openid_client.dart';
-// import 'package:openid_client/openid_client_io.dart' as oidc_mobile;
 import 'package:url_launcher/url_launcher.dart';
 import 'package:uuid/uuid.dart';
 
 import 'package:solid_auth/platform_info.dart';
 import 'package:solid_auth/src/auth_manager/auth_manager_abstract.dart';
+import 'package:solid_auth/src/openid/openid_client.dart';
+import 'package:solid_auth/src/openid/openid_client_io.dart' as oidc_mobile;
 
 /// Set port number to be used in localhost
 
 
@@ -28,11 +28,9 @@
 library;
 
 // import just for the client class. Not used anywhere else.
-// import 'package:openid_client/openid_client.dart';
-
-import 'package:openid_client/openid_client.dart';
-
-import 'auth_manager_stub.dart' if (dart.library.html) 'web_auth_manager.dart';
+import 'package:solid_auth/src/openid/src/openid.dart';
+import 'package:solid_auth/src/auth_manager/auth_manager_stub.dart'
+    if (dart.library.html) 'web_auth_manager.dart';
 
 abstract class AuthManager {
   // some generic methods to be exposed.
 
@@ -27,7 +27,7 @@
 /// Authors: Anushka Vidanage
 library;
 
-import 'auth_manager_abstract.dart';
+import 'package:solid_auth/src/auth_manager/auth_manager_abstract.dart';
 
 AuthManager getAuthManager() => throw UnsupportedError(
       'Cannot create a keyfinder without the packages dart:html or package:shared_preferences',
 
@@ -27,12 +27,11 @@
 /// Authors: Anushka Vidanage
 library;
 
-import 'package:openid_client/openid_client_browser.dart';
 import 'package:openidconnect_web/openidconnect_web.dart';
 import 'package:web/web.dart' hide Client;
 
-// Project imports:
-import 'auth_manager_abstract.dart';
+import 'package:solid_auth/src/openid/openid_client_browser.dart';
+import 'package:solid_auth/src/auth_manager/auth_manager_abstract.dart';
 
 late Window windowLoc;
 
 
@@ -0,0 +1,6 @@
+// Copyright (c) 2017, rbellens. All rights reserved. Use of this source code
+// is governed by a BSD-style license that can be found in the LICENSE file.
+
+library openid_client;
+
+export 'src/openid.dart';
@@ -0,0 +1,161 @@
+import 'dart:js_interop';
+
+import 'openid_client.dart';
+import 'package:web/web.dart' hide Credential, Client;
+import 'dart:async';
+export 'openid_client.dart';
+
+/// A wrapper around [Flow] that handles the browser-specific parts of
+/// authentication.
+///
+/// The constructor takes a [Client] and a list of scopes. It then
+/// creates a [Flow] and uses it to generate an authentication URI.
+///
+/// The [authorize] method redirects the browser to the authentication URI.
+///
+/// The [logout] method redirects the browser to the logout URI.
+///
+/// The [credential] property returns a [Future] that completes with a
+/// [Credential] after the user has signed in and the browser is redirected to
+/// the app. Otherwise, it completes with `null`.
+///
+/// The state is not persisted in the browser, so the user will have to sign in
+/// again after a page refresh. If you want to persist the state, you'll have to
+/// store and restore the credential yourself. You can listen to the
+/// [Credential.onTokenChanged] event to be notified when the credential changes.
+class Authenticator {
+  /// The [Flow] used for authentication.
+  ///
+  /// This will be a flow of type [FlowType.implicit].
+  final Flow flow;
+
+  /// A [Future] that completes with a [Credential] after the user has signed in
+  /// and the browser is redirected to the app. Otherwise, it completes with
+  /// `null`.
+  final Future<Credential?> credential;
+
+  Authenticator._(this.flow) : credential = _credentialFromUri(flow);
+
+  // Authenticator(Client client,
+  //     {Iterable<String> scopes = const [], String? device, String? prompt})
+  //     : this._(Flow.implicit(client,
+  //           device: device,
+  //           state: window.localStorage.getItem('openid_client:state'),
+  //           prompt: prompt)
+  //         ..scopes.addAll(scopes)
+  //         ..redirectUri = Uri.parse(window.location.href).removeFragment());
+
+  // With PKCE flow
+  Authenticator(
+    Client client, {
+    Iterable<String> scopes = const [],
+    popToken = '',
+  }) : this._(
+          Flow.authorizationCodeWithPKCE(
+            client,
+            state: window.localStorage.getItem('openid_client:state'),
+          )
+            ..scopes.addAll(scopes)
+            ..redirectUri = Uri.parse(
+              window.location.href.contains('#/')
+                  ? window.location.href.replaceAll('#/', 'callback.html')
+                  : '${window.location.href}callback.html',
+            ).removeFragment()
+            ..dPoPToken = popToken,
+        );
+
+  /// Redirects the browser to the authentication URI.
+  void authorize() {
+    _forgetCredentials();
+    window.localStorage.setItem('openid_client:state', flow.state);
+    window.location.href = flow.authenticationUri.toString();
+  }
+
+  /// Redirects the browser to the logout URI.
+  void logout() async {
+    _forgetCredentials();
+    var c = await credential;
+    if (c == null) return;
+    var uri = c.generateLogoutUrl(
+        redirectUri: Uri.parse(window.location.href).removeFragment());
+    if (uri != null) {
+      window.location.href = uri.toString();
+    }
+  }
+
+  void _forgetCredentials() {
+    window.localStorage.removeItem('openid_client:state');
+    window.localStorage.removeItem('openid_client:auth');
+  }
+
+  static Future<Credential?> _credentialFromUri(Flow flow) async {
+    var uri = Uri.parse(window.location.href);
+    var iframe = uri.queryParameters['iframe'] != null;
+    uri = Uri(query: uri.fragment);
+    var q = uri.queryParameters;
+    if (q.containsKey('access_token') ||
+        q.containsKey('code') ||
+        q.containsKey('id_token')) {
+      window.history.replaceState(''.toJS, '',
+          Uri.parse(window.location.href).removeFragment().toString());
+      window.localStorage.removeItem('openid_client:state');
+
+      var c = await flow.callback(q.cast());
+      if (iframe) window.parent!.postMessage(c.response?.toJSBox, '*'.toJS);
+      return c;
+    }
+    return null;
+  }
+
+  /// Tries to refresh the access token silently in a hidden iframe.
+  ///
+  /// The implicit flow does not support refresh tokens. This method uses a
+  /// hidden iframe to try to get a new access token without the user having to
+  /// sign in again. It returns a [Future] that completes with a [Credential]
+  /// when the iframe receives a response from the authorization server. The
+  /// future will timeout after [timeout] if the iframe does not receive a
+  /// response.
+  Future<Credential> trySilentRefresh(
+      {Duration timeout = const Duration(seconds: 20)}) async {
+    var iframe = HTMLIFrameElement();
+    var url = flow.authenticationUri;
+    window.localStorage.setItem('openid_client:state', flow.state);
+    iframe.src = url.replace(queryParameters: {
+      ...url.queryParameters,
+      'prompt': 'none',
+      'redirect_uri': flow.redirectUri.replace(queryParameters: {
+        ...flow.redirectUri.queryParameters,
+        'iframe': 'true',
+      }).toString(),
+    }).toString();
+    iframe.style.display = 'none';
+    document.body!.append(iframe);
+    var event = await window.onMessage.first.timeout(timeout).whenComplete(() {
+      iframe.remove();
+    });
+
+    var data = event.data?.dartify();
+    if (data is Map) {
+      var current = await credential;
+      if (current == null) {
+        return flow.client.createCredential(
+          accessToken: data['access_token'],
+          expiresAt: data['expires_at'] == null
+              ? null
+              : DateTime.fromMillisecondsSinceEpoch(
+                  int.parse(data['expires_at'].toString()) * 1000),
+          refreshToken: data['refresh_token'],
+          expiresIn: data['expires_in'] == null
+              ? null
+              : Duration(seconds: int.parse(data['expires_in'].toString())),
+          tokenType: data['token_type'],
+          idToken: data['id_token'],
+        );
+      } else {
+        return current..updateToken(data.cast());
+      }
+    } else {
+      throw Exception('$data');
+    }
+  }
+}