oauth2-popup-flow
oauth2-popup-flow copied to clipboard
ricokahler
A very simple oauth2 implicit flow library that uses window.open
On many modern browsers, `window.open` doesn't actually use a popup. Instead, it opens a new tab. Being able to customize the `windowFeatures` passed to `window.open` (e.g. as part of a...
The docs for `token` and `tokenPayload` say > If the user is `loggedIn()`, the token will be returned immediate, else it will open a popup and wait until the user...
Some authentication services return a "code" as part of the OAuth flow and that eventually needs to be converted into a full token. It'd be great to be able to...
Quite a bit has chanced since this lib has been released so this issue represents what features should go into v2. - [ ] #41 - [ ] #132 -...
Some OAuth 2 implementations, when using implicit flow, will pass back a hash that looks something like this: ``` localhost:8080/redirect.html#access_token=redacted&expires_in=2520&token_type=bearer&scope=basic&state=whatever#_=_ ``` This is to defend against open redirects in clients...
Bumps [@babel/preset-env](https://github.com/babel/babel/tree/HEAD/packages/babel-preset-env) from 7.10.4 to 7.14.9. Release notes Sourced from @babel/preset-env's releases. v7.14.9 (2021-08-01) Thanks @SCLeoX for your first PR! :bug: Bug Fix babel-traverse #13596 Fix completion record for variable...
![dependabot-preview[bot] avatar](https://avatars.githubusercontent.com/in/2141?v=4 "dependabot-preview[bot] avatar"){kind=avatar}
Bumps [rollup](https://github.com/rollup/rollup) from 2.18.1 to 2.55.1. Release notes Sourced from rollup's releases. v2.55.1 2021-07-29 Bug Fixes Improve CLI warning message for unused external imports (#4194) Pull Requests #4194: Align batch...
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest) from 26.0.3 to 26.0.24. Commits See full diff in compare view [](https://dependabot.com/compatibility-score/?dependency-name=@types/jest&package-manager=npm_and_yarn&previous-version=26.0.3&new-version=26.0.24) Dependabot will resolve any conflicts with this PR as long as you don't alter...
Bumps [ws](https://github.com/websockets/ws) from 7.2.5 to 7.5.3. **This update includes security fixes.** Vulnerabilities fixed Sourced from The GitHub Security Advisory Database. ReDoS in Sec-Websocket-Protocol header Impact A specially crafted value of...
Bumps [tslib](https://github.com/Microsoft/tslib) from 2.0.0 to 2.3.0. Release notes Sourced from tslib's releases. tslib 2.3.0 This release updates tslib to use TypeScript 4.4's upcoming __spreadArray helper which correctly preserves sparse array...
Metadata
Owner
Metadata
A very simple oauth2 implicit flow library that uses window.open