Merge 2a4f9a5 into d00c5a5

src/RequestHandler.js

@@ -13,9 +13,13 @@ class RequestHandler {
 		if (!response.ok || response.status > 300) {
 			throw new RequestError(`Failed to fetch ${url}. Response=${text}`, response.status);
 		}
+
 		try {
 			return JSON.parse(text);
 		} catch(err) {
+			if (text !== '') {
+				return text;
+			}
 			throw new RequestError(`Invalid response while trying to fetch ${url}. Response=${text}`, response.status, err);
 		}
 	};

src/constants.js

@@ -16,6 +16,9 @@ module.exports = {
 	NOT_CD_USER: 'Must be a Cloud Directory user',
 	MISSING_CLIENT_ID: 'Missing client ID',
 	MISSING_ID_TOKEN_PAYLOAD: 'Missing id token payload',
+	MISSING_TOKENS: 'Missing tokens object',
+	MISSING_ACCESS_TOKEN: 'Missing access token string',
+	MISSING_ID_TOKEN: 'Missing access token string',
 	INVALID_DISCOVERY_ENDPOINT: 'Invalid discovery endpoint',
 	FAIL_TO_INITIALIZE: 'You must call and wait for init() before calling this function.',
 	RESPONSE_TYPE: 'code',
@@ -29,6 +32,8 @@ module.exports = {
 	TOKEN_ALG: 'RS256',
 	VERSION: 4,
 	CHANGE_PASSWORD: '/cloud_directory/change_password',
+	GENERATE_CODE: '/cloud_directory/generate_code',
+	CHANGE_DETAILS: '/cloud_directory/change_details',
 	OAUTH: '/oauth/v4/',
 	MALFORMED_ACCESS_TOKEN: 'eyJpc3MiOiJtb2JpbGVjbGllbnRhY2Nlc3Muc3RhZ2UxLm5nLmJsdWVtaXgubmV0IiwiZXhwIjoxNDg3MDg0ODc4LCJhdWQiOiIyNmNiMDEyZWIzMjdjNjEyZDkwYTY4MTkxNjNiNmJjYmQ0ODQ5Y2JiIiwiaWF0IjoxNDg3MDgxMjc4LCJhdXRoX2J5IjoiZmFjZWJvb2siLCJ0ZW5hbnQiOiI0ZGJhOTQzMC01NGU2LTRjZjItYTUxNi02ZjczZmViNzAyYmIiLCJzY29wZSI6ImFwcGlkX2RlZmF1bHQgYXBwaWRfcmVhZHByb2ZpbGUgYXBwaWRfcmVhZHVzZXJhdHRyIGFwcGlkX3dyaXRldXNlcmF0dHIifQ.HHterec250JSDY1965cM2DadBznl2wTKmzKNSnfjpdTAqax9VZvV3EwuFbEnGp9-i6AC-OlsVj7xvbALkdjwG2lZvpQx0M_gRc_3E0NiYuOGVolcm0wEXtbtDUFFqZQAf9BYYOPZ8OintdBiwUGETbH1ZRVtUvt3nalIko1OPE1Q12LvuRlhz5MClNHmvxJcXc7kucxCx4s4UFFy_HJA1gow7HWFqc9-PZf4JMWA-siYqPrdw_zYeBTBzE5co92F6JBEtGLLCjhJVz9eYgLLECXbak3z6hOaY9352Weuj7AgMOWxzw56jKKsiixMtvzrCzLVIcRUG96UJszwPHtPlA',
 	INVALID_SIGNATURE_TOKEN: 'eyJhbGciOiJSUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJodHRwczovL2p3dC1pZHAuZXhhbXBsZS5jb20iLCJzdWIiOiJtYWlsdG86bWlrZUBleGFtcGxlLmNvbSIsIm5iZiI6MTU2NjMxMDg5NSwiZXhwIjoxNTY2MzE0NDk1LCJpYXQiOjE1NjYzMTA4OTUsImp0aSI6ImlkMTIzNDU2IiwidHlwIjoiaHR0cHM6Ly9leGFtcGxlLmNvbS9yZWdpc3RlciIsImF1ZCI6WyJodHRwOi8vZm9vMS5jb20iLCJodHRwOi8vZm9vMi5jb20iXX0.NBDYg8VZxW770qcbIl40OFvaQntO-FVYUUJocE5ZgcyrvFTuomwF997OcEJghO8BE_Y2m67PbfPFsbN0VI6j'

src/index.js

@@ -33,7 +33,12 @@ class AppID {
 		this.URL = url;
 		this.utils = utils;
 		if (!utils) {
-			this.utils = new Utils({openIdConfigResource: this.openIdConfigResource, url: this.URL, popup: this.popup, jsrsasign});
+			this.utils = new Utils({
+				openIdConfigResource: this.openIdConfigResource,
+				url: this.URL,
+				popup: this.popup,
+				jsrsasign
+			});
 		}
 		this.request = requestHandler.request;
 		this.window = w;
@@ -177,13 +182,13 @@ class AppID {
 		this._validateInitalize();
 		let userId;
 
-		if (!idTokenPayload){
+		if (!idTokenPayload) {
 			throw new AppIDError(constants.MISSING_ID_TOKEN_PAYLOAD);
 		}
 		if (typeof idTokenPayload === 'string') {
 			throw new AppIDError(constants.INVALID_ID_TOKEN_PAYLOAD);
 		}
-		if(idTokenPayload.identities && idTokenPayload.identities[0] && idTokenPayload.identities[0].id) {
+		if (idTokenPayload.identities && idTokenPayload.identities[0] && idTokenPayload.identities[0].id) {
 			if (idTokenPayload.identities[0].provider !== 'cloud_directory') {
 				throw new AppIDError(constants.NOT_CD_USER);
 			}
@@ -201,6 +206,47 @@ class AppID {
 		});
 	}
 
+	/**
+	 * This method will open a popup to the change details widget for Cloud Directory users.
+	 * You must enable users to manage their account from your app in Cloud Directory settings.
+	 * @param {Object} tokens App ID tokens
+	 * @returns {Promise<Tokens>}
+	 * @throws {AppIDError} "Missing id token string"
+	 * @throws {AppIDError} "Missing access token string"
+	 * @throws {AppIDError} "Missing tokens object"
+	 * @example
+	 * let tokens = {accessToken, idToken}
+	 * let newTokens = await appID.changeDetails(tokens);
+	 */
+	async changeDetails(tokens) {
+		if (!tokens) {
+			throw new AppIDError(constants.MISSING_TOKENS);
+		}
+
+		if (!tokens.accessToken && typeof tokens.accessToken !== 'string') {
+			throw new AppIDError(constants.MISSING_ACCESS_TOKEN);
+		}
+
+		if (!tokens.idToken && typeof tokens.idToken !== 'string') {
+			throw new AppIDError(constants.MISSING_ID_TOKEN);
+		}
+
+		const generateCodeUrl = this.openIdConfigResource.getIssuer() + constants.GENERATE_CODE;
+		const changeDetailsCode = await this.request(generateCodeUrl, {
+			headers: {
+				'Authorization': 'Bearer ' + tokens.accessToken + ' ' + tokens.idToken
+			}
+		});
+		const endpoint = this.openIdConfigResource.getIssuer() + constants.CHANGE_DETAILS;
+
+		return this.utils.performOAuthFlowAndGetTokens({
+			origin: this.window.origin,
+			clientId: this.clientId,
+			endpoint,
+			changeDetailsCode
+		});
+	}
+
 	/**
 	 *
 	 * @private

src/utils.js

@@ -45,7 +45,7 @@ class Utils {
 		return {codeVerifier, codeChallenge, state, nonce};
 	}
 
-	getAuthParamsAndUrl({clientId, origin, prompt, endpoint, userId}) {
+	getAuthParamsAndUrl({clientId, origin, prompt, endpoint, userId, changeDetailsCode}) {
 		const {codeVerifier, codeChallenge, state, nonce} = this.getPKCEFields();
 		let authParams = {
 			client_id: clientId,
@@ -67,6 +67,10 @@ class Utils {
 			authParams.user_id = userId;
 		}
 
+		if (changeDetailsCode) {
+			authParams.code = changeDetailsCode;
+		}
+
 		const url = endpoint + '?' + this.buildParams(authParams);
 		return {
 			codeVerifier,
@@ -76,8 +80,8 @@ class Utils {
 		};
 	}
 
-	async performOAuthFlowAndGetTokens({userId, origin, clientId, endpoint}) {
-		const {codeVerifier, state, nonce, url} = this.getAuthParamsAndUrl({userId, origin, clientId, endpoint});
+	async performOAuthFlowAndGetTokens({userId, origin, clientId, endpoint, changeDetailsCode}) {
+		const {codeVerifier, state, nonce, url} = this.getAuthParamsAndUrl({userId, origin, clientId, endpoint, changeDetailsCode});
 
 		this.popup.open();
 		this.popup.navigate(url);