Revert "Release PR"

Author: ryanbas21

.gitignore

@@ -3,7 +3,6 @@
 */DS_Store
 **/*.DS_Store
 .pnpm-store/*
-
 # Generated code
 tmp/
 e2e/**/dist
@@ -31,10 +30,9 @@ packages/javascript-sdk/lib/
 .swc
 .vite
 .env.serve.development
-package-lock.json
 
 # Certificates
-*.pem
+# *.pem
 
 # IDEs
 .vscode
@@ -85,4 +83,4 @@ outputs/*
 
 e2e/mock-api-v2/html/*
 
-vitest.config.*.timestamp*
+vitest.config.*.timestamp*

e2e/autoscript-apps/index.html

@@ -26,18 +26,14 @@
     <a href="./src/authn-basic/index.html">AuthN: Basic</a><br />
     <a href="./src/authn-basic-self-service/">AuthN: Self Service</a><br />
     <a href="./src/authn-central-login/index.html">AuthN: Central Login</a><br />
-    <a href="./src/authn-central-login-no-iframe/index.html">AuthN: Central Login, no iframe</a
-    ><br />
     <a href="./src/authn-central-logout/index.html">AuthN: Central Logout Ping</a><br />
-    <a href="./src/authn-central-logout-wellknown/index.html"
-      >AuthN: Central Logout with Wellknown</a
-    ><br />
     <a href="./src/authn-device-profile/index.html">AuthN: Device Profile</a><br />
     <a href="./src/authn-protect/index.html">AuthN: Ping Protect</a><br />
     <a href="./src/authn-email-suspend/index.html">AuthN: Email Suspend</a><br />
     <a href="./src/authn-recaptcha-enterprise/index.html">AuthN: Recaptcha Enterprise</a><br />
     <a href="./src/authn-no-session/index.html">AuthN: No Session</a><br />
     <a href="./src/authn-oauth/index.html">AuthN: OAuth</a><br />
+    <a href="./src/authn-wellknown/index.html">AuthN: WellKnown</a><br />
     <a href="./src/authn-platform/index.html">AuthN: Platform Login</a><br />
     <a href="./src/authn-second-factor/index.html">AuthN: Second Factor</a><br />
     <a href="./src/authn-saml/index.html">AuthN: SAML</a><br />

e2e/autoscript-apps/src/authn-basic-self-service/autoscript.ts

@@ -3,7 +3,7 @@
  *
  * autoscript.ts
  *
- * Copyright (c) 2020 - 2025 Ping Identity Corporation. All rights reserved.
+ * Copyright (c) 2020 ForgeRock. All rights reserved.
  * This software may be modified and distributed under the terms
  * of the MIT license. See the LICENSE file for details.
  */

e2e/autoscript-apps/src/authn-basic/autoscript.ts

@@ -3,7 +3,7 @@
  *
  * autoscript.ts
  *
- * Copyright (c) 2020 - 2025 Ping Identity Corporation. All rights reserved.
+ * Copyright (c) 2020 ForgeRock. All rights reserved.
  * This software may be modified and distributed under the terms
  * of the MIT license. See the LICENSE file for details.
  */

e2e/autoscript-apps/src/authn-central-login-no-iframe/autoscript.ts

@@ -3,7 +3,7 @@
  *
  * autoscript.ts
  *
- * Copyright (c) 2020 - 2025 Ping Identity Corporation. All rights reserved.
+ * Copyright (c) 2020 ForgeRock. All rights reserved.
  * This software may be modified and distributed under the terms
  * of the MIT license. See the LICENSE file for details.
  */
@@ -16,50 +16,49 @@ async function autoscript() {
   const delay = 0;
 
   const url = new URL(window.location.href);
-  const preAuthenticated = url.searchParams.get('preAuthenticated') || 'false';
   const code = url.searchParams.get('code') || '';
-  const clientId = url.searchParams.get('clientId');
-  const client_id = url.searchParams.get('client_id');
-  const error = url.searchParams.get('error_description') || false;
-  const realmPath = url.searchParams.get('realmPath') || 'root';
-  const scope = url.searchParams.get('scope') || 'openid profile me.read';
+  const error = url.searchParams.get('error') || '';
   const state = url.searchParams.get('state') || '';
-  const acr_values = url.searchParams.get('acr') || 'SpecificTree';
   // in central login we use an auth query param for the return of our mock 401 request
   // this is to prevent the evaluation of the page before we have technically authenticated
   const auth = url.searchParams.get('auth') || false;
-  let wellknown =
-    url.searchParams.get('wellknown') || 'http://localhost:9443/am/.well-known/oidc-configuration';
+  const acr_values = url.searchParams.get('acr') || 'SpecificTree';
 
-  let tokenStore = url.searchParams.get('tokenStore') || 'localStorage';
+  let clientId = url.searchParams.get('clientId') || 'CentralLoginOAuthClient';
+  let realmPath = url.searchParams.get('realmPath') || 'root';
+  // The `revoke` scope is required for PingOne support
+  let scope = url.searchParams.get('scope') || 'openid profile me.read revoke';
+  let wellKnownUrl =
+    url.searchParams.get('wellKnownUrl') ||
+    'http://localhost:9443/am/.well-known/oidc-configuration';
 
-  // Support full redirects by setting storage, rather than rely purely on URL
-  if (!localStorage.getItem('tokenStore')) {
-    localStorage.setItem('tokenStore', tokenStore);
+  console.log('Configure the SDK');
+
+  if (wellKnownUrl) {
+    localStorage.setItem('wellknown', wellKnownUrl);
+    localStorage.setItem('clientId', clientId);
+    localStorage.setItem('realmPath', realmPath);
+    localStorage.setItem('scope', scope);
   } else {
-    tokenStore = localStorage.getItem('tokenStore');
+    wellKnownUrl = localStorage.getItem('wellknown');
+    clientId = localStorage.getItem('clientId');
+    realmPath = localStorage.getItem('realmPath');
+    scope = localStorage.getItem('scope');
   }
-
-  console.log('Configure the SDK');
-  forgerock.Config.setAsync({
-    clientId: clientId || client_id || 'CentralLoginOAuthClient',
+  await forgerock.Config.setAsync({
+    clientId,
     realmPath,
-    redirectUri: `${url.origin}/src/${
-      preAuthenticated === 'false' ? 'authn-central-login' : '_callback'
-    }/`,
+    redirectUri: `${url.origin}/src/authn-central-login-wellknown/`,
     scope,
     serverConfig: {
-      wellknown,
+      wellknown: wellKnownUrl,
     },
-    tokenStore,
   });
 
-  if (!code && !state) {
-    try {
-      forgerock.SessionManager.logout();
-    } catch (err) {
-      // Do nothing
-    }
+  try {
+    forgerock.SessionManager.logout();
+  } catch (err) {
+    // Do nothing
   }
 
   console.log('Initiate first step with `undefined`');
@@ -68,29 +67,15 @@ async function autoscript() {
   setTimeout(() => {
     from([1])
       .pipe(
-        map(() => {
-          if (preAuthenticated === 'true') {
-            console.log('Set mock cookie to represent existing session');
-            document.cookie = 'iPlanetDirectoryPro=abcd1234; domain=localhost; path=/';
-            if (code && state) {
-              window.sessionStorage.setItem(
-                `FR-SDK-authflow-${clientId}`,
-                JSON.stringify({ responseType: 'code', state, verifier: '1234' }),
-              );
-            }
-          }
-          return;
-        }),
-        rxDelay(delay),
-        mergeMap((step) => {
+        mergeMap(() => {
           let tokens;
-          if (error) {
-            // Do nothing
+          // detect when in iframe as to not call `/authorize` needlessly
+          if (window.self !== window.top) {
             return;
           } else if (code && state) {
             tokens = forgerock.TokenManager.getTokens({
               login: 'redirect',
-              query: { code, state, acr_values },
+              query: { code, state },
             });
           } else {
             tokens = forgerock.TokenManager.getTokens({
@@ -113,6 +98,7 @@ async function autoscript() {
           console.log('Remove cookie');
           document.cookie = '';
           console.log('Initiate logout');
+          // You have to allow specific origins to CORS for OAuth client
           return forgerock.FRUser.logout();
         }),
       )
@@ -130,12 +116,14 @@ async function autoscript() {
           }
           console.log(`Error: ${err.message}`);
           document.body.innerHTML = `<p class="Test_Complete">${err.message}</p>`;
-          localStorage.clear();
         },
         complete: () => {
           console.log('Test script complete');
           document.body.innerHTML = `<p class="Test_Complete">Test script complete</p>`;
-          localStorage.clear();
+          localStorage.removeItem('wellknown');
+          localStorage.removeItem('clientId');
+          localStorage.removeItem('realmPath');
+          localStorage.removeItem('scope');
         },
       });
   }, 250);

e2e/autoscript-apps/src/authn-central-login-wellknown/autoscript.ts

@@ -3,7 +3,7 @@
  *
  * autoscript.ts
  *
- * Copyright (c) 2020 - 2025 Ping Identity Corporation. All rights reserved.
+ * Copyright (c) 2020 ForgeRock. All rights reserved.
  * This software may be modified and distributed under the terms
  * of the MIT license. See the LICENSE file for details.
  */