BREAKING CHANGE: set signOut option clearTokensAfterRedirect default to true #1059
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Codecov Report
@@ Coverage Diff @@
## dev-6 #1059 +/- ##
==========================================
+ Coverage 92.42% 92.53% +0.10%
==========================================
Files 134 134
Lines 3722 3722
Branches 775 775
==========================================
+ Hits 3440 3444 +4
+ Misses 282 278 -4
Continue to review full report at Codecov.
|
aarongranick-okta
force-pushed
the
dev-6
branch
from
f1bf054
to
d05d815
Compare
shuowu-okta
force-pushed
the
sw-set-clearTokensAfterRedirect-default-to-true-OKTA-459787
branch
from
6680448
to
e8501b2
Compare
| @@ -109,7 +109,7 @@ | |||
|
|
|||
| function logout(e) { | |||
| e.preventDefault(); | |||
| authClient.signOut() | |||
| authClient.signOut({ clearTokensBeforeRedirect: true }) | |||
There was a problem hiding this comment.
This is because we are not running start() by default, right? Can you add a small comment explaining why we are passing true here.
test/spec/OktaAuth/browser.ts
Outdated
| expect(auth.revokeRefreshToken).not.toHaveBeenCalled(); | ||
| expect(auth.revokeAccessToken).toHaveBeenCalledWith(accessToken); | ||
| expect(auth.tokenManager.clear).toHaveBeenCalled(); | ||
| expect(auth.tokenManager.clear).not.toHaveBeenCalled(); |
There was a problem hiding this comment.
since this assertion is being reversed, can we update the title to include this information?
Default options: will X, Y, and set tokens to clear after redirect
add an assert that the pending token renew was saved
There was a problem hiding this comment.
alternatively, can remove the tokenManager asserts from this test since this logic is covered in another test
test/spec/OktaAuth/browser.ts
Outdated
| expect(auth.revokeAccessToken).toHaveBeenCalledWith(accessToken); | ||
| expect(auth.revokeRefreshToken).toHaveBeenCalledWith(refreshToken); | ||
| expect(auth.tokenManager.clear).toHaveBeenCalled(); | ||
| expect(auth.tokenManager.clear).not.toHaveBeenCalled(); |
There was a problem hiding this comment.
same as comment above, please update title and add assertion for pending state
aarongranick-okta
requested changes
Jan 12, 2022
CHANGELOG.md
Outdated
| @@ -9,6 +9,9 @@ | |||
| - [#1050](https://github.com/okta/okta-auth-js/pull/1050) Removes `userAgent` field from oktaAuth instance | |||
| - [#1014](https://github.com/okta/okta-auth-js/pull/1014) Shared transaction storage is automatically cleared on success and error states. Storage is not cleared for "terminal" state which is neither success nor error. | |||
| - [#1051](https://github.com/okta/okta-auth-js/pull/1051) Removes `useMultipleCookies` from CookieStorage options | |||
| - [#1059](https://github.com/okta/okta-auth-js/pull/1059) | |||
| - Removes signOut option `clearTokensAfterRedirect` | |||
| - Adds signOut option `clearTokensAfterRedirect` (default: `false`) to remove local tokens before logout redirect happen | |||
There was a problem hiding this comment.
should say clearTokensBeforeRedirect here
| expect(window.location.assign).toHaveBeenCalledWith(`${issuer}/oauth2/v1/logout?id_token_hint=${idToken.idToken}&post_logout_redirect_uri=${encodedOrigin}`); | ||
| }); | ||
| }); | ||
|
|
||
| it('Can pass a "clearTokensAfterRedirect=true" to skip clear tokens logic', function() { | ||
| it('skips token clear logic by default', () => { |
There was a problem hiding this comment.
it's not skipping the logic, it is adding a pending remove flag. Let's make sure the test title matches as closely as possible to the assertions that we are making
By default, does not clear tokens before redirect but sets a pending remove flag
test/spec/OktaAuth/browser.ts
Outdated
| .then(function() { | ||
| expect(auth.tokenManager.clear).not.toHaveBeenCalled(); | ||
| expect(auth.tokenManager.addPendingRemoveFlags).toHaveBeenCalled(); | ||
| expect(window.location.assign).toHaveBeenCalledWith(`${issuer}/oauth2/v1/logout?id_token_hint=${idToken.idToken}&post_logout_redirect_uri=${encodedOrigin}`); | ||
| }); | ||
| }); | ||
|
|
||
| it('Can pass a "clearTokensAfterRedirect=false" to force clear tokens logic', function() { |
There was a problem hiding this comment.
if 'clearTokensBeforeRedirect' is true, then tokens will be cleared and pending remove flag will not be set
aarongranick-okta
approved these changes
Jan 13, 2022
eng-prod-CI-bot-okta
pushed a commit
that referenced
this pull request
Jan 13, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
shuowu-okta
pushed a commit
that referenced
this pull request
Jan 14, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
aarongranick-okta
pushed a commit
that referenced
this pull request
Jan 14, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
shuowu-okta
pushed a commit
that referenced
this pull request
Jan 18, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
aarongranick-okta
pushed a commit
that referenced
this pull request
Jan 19, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
aarongranick-okta
pushed a commit
that referenced
this pull request
Jan 19, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
aarongranick-okta
pushed a commit
that referenced
this pull request
Jan 20, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059"
eng-prod-CI-bot-okta
pushed a commit
that referenced
this pull request
Jan 20, 2022
…to true OKTA-459787 <<<Jenkins Check-In of Tested SHA: 3bb06dc for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 7 PR Link: "#1059" OKTA-383487 <<<Jenkins Check-In of Tested SHA: f1b290b for eng_productivity_ci_bot_okta@okta.com>>> Artifact: okta-auth-js Files changed count: 235 PR Link: "#1053"
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.