Merge pull request #1165 from damienbod/fabiangosebrink/Only-one-returntype-(object)-when-subscribing-to-isAuthenticated-and-userdata-to-avoid-confusion-

Fabiangosebrink/only one returntype (object) when subscribing to is authenticated and userdata to avoid confusion

Author: damienbod

docs/site/angular-auth-oidc-client/docs/documentation/features.md

@@ -14,11 +14,13 @@ Currently the events
 ```ts
 {
     ConfigLoaded,
+    ConfigLoadingFailed,
     CheckSessionReceived,
     UserDataChanged,
-    NewAuthorizationResult,
+    NewAuthenticationResult,
     TokenExpired,
     IdTokenExpired,
+    SilentRenewStarted,
 }
 ```
 

docs/site/angular-auth-oidc-client/docs/documentation/guards.md

@@ -22,10 +22,10 @@ export class AuthorizationGuard implements CanActivate {
 
   canActivate(route: ActivatedRouteSnapshot, state: RouterStateSnapshot): Observable<boolean> {
     return this.oidcSecurityService.isAuthenticated$.pipe(
-      map((isAuthorized: boolean) => {
-        console.log('AuthorizationGuard, canActivate isAuthorized: ' + isAuthorized);
+      map(({ isAuthenticated }) => {
+        console.log('AuthorizationGuard, canActivate isAuthenticated: ' + isAuthenticated);
 
-        if (!isAuthorized) {
+        if (!isAuthenticated) {
           this.router.navigateByUrl('/unauthorized');
           return false;
         }

docs/site/angular-auth-oidc-client/docs/documentation/public-api.md

@@ -9,8 +9,23 @@ The most public accessible observables, properties and methods are placed in the
 
 ## userData$
 
-The `userData$` observable provides the information about the user after he has logged in. In case you are running with one configuration it returns the user data as an object depending on what you get back from the secure token server as user data.
-In case you have multiple configs running it returns a `ConfigUserDataResult[]` which holds the `configId` as well as the `userData` in an array.
+The `userData$` observable provides the information about the user after he has logged in. It returns an `UserDataResult` in the following form.
+
+```ts
+export interface UserDataResult {
+  userData: any;
+  allUserData: ConfigUserDataResult[];
+}
+
+export interface ConfigUserDataResult {
+  configId: string;
+  userData: any;
+}
+```
+
+In case you are running with one configuration the `ConfigUserDataResult` contains the user data in the `userData` property and the `ConfigUserData[]` returns the same user data with the `configId` filled in case you need it.
+
+In case you are running with multiple configs the `ConfigUserDataResult`s `userData` property is set to `null` and you find your user data per config in the `ConfigUserData[]`.
 
 Example:
 
@@ -22,68 +37,114 @@ Single Config:
 
 ```json
 {
-  "sub": "...",
-  "preferred_username": "john@doe.org",
-  "name": "john@doe.org",
-  "email": "john@doe.org",
-  "email_verified": false,
-  "given_name": "john@doe.org",
-  "role": "user",
-  "amr": "pwd"
+  "userData": {
+    "sub": "...",
+    "preferred_username": "john@doe.org",
+    "name": "john@doe.org",
+    "email": "john@doe.org",
+    "email_verified": false,
+    "given_name": "john@doe.org",
+    "role": "user",
+    "amr": "pwd"
+  },
+  "allUserData": [
+    {
+      "configId": "configId",
+      "userData": {
+        "sub": "...",
+        "preferred_username": "john@doe.org",
+        "name": "john@doe.org",
+        "email": "john@doe.org",
+        "email_verified": false,
+        "given_name": "john@doe.org",
+        "role": "user",
+        "amr": "pwd"
+      }
+    }
+  ]
 }
 ```
 
 Multiple Configs:
 
 ```json
-[
-  {
-    "configId": "...",
-    "userData": {
-      "sub": "...",
-      "preferred_username": "john@doe.org",
-      "name": "john@doe.org",
-      "email": "john@doe.org",
-      "email_verified": false,
-      "given_name": "john@doe.org",
-      "role": "user",
-      "amr": "pwd"
+{
+  "userData": null,
+  "allUserData": [
+    {
+      "configId": "configId1",
+      "userData": {
+        "sub": "...",
+        "preferred_username": "john@doe.org",
+        "name": "john@doe.org",
+        "email": "john@doe.org",
+        "email_verified": false,
+        "given_name": "john@doe.org",
+        "role": "user",
+        "amr": "pwd"
+      }
+    },
+    {
+      "configId": "configId2",
+      "userData": {
+        "sub": "...",
+        "preferred_username": "john@doe.org",
+        "name": "john@doe.org",
+        "email": "john@doe.org",
+        "email_verified": false,
+        "given_name": "john@doe.org",
+        "role": "user",
+        "amr": "pwd"
+      }
     }
-  },
-  {
-    "configId": "...",
-    "userData": { ... }
-  }
-]
+  ]
+}
 ```
 
 ## isAuthenticated$
 
-This property returns an `Observable<boolean>` to receive authenticated events, either true or false if you run in a single config. If you run with multiple configs it returns an `ConfigAuthenticatedResult[]` holding the `configId` as well as a boolean to tell you if you are authenticated or not.
+This property returns an `Observable<AuthenticatedResult>`. This object is filled depending on with how many configurations you run. The `AuthenticatedResult` is built as following:
 
 ```ts
-this.isAuthenticated$ = this.oidcSecurityService.isAuthenticated$; // true/false or...
+export interface AuthenticatedResult {
+  isAuthenticated: boolean;
+
+  allConfigsAuthenticated: ConfigAuthenticatedResult[];
+}
+
+export interface ConfigAuthenticatedResult {
+  configId: string;
+  isAuthenticated: boolean;
+}
+```
+
+In case you have a single config the `isAuthenticated` on the `AuthenticatedResult` tells you if you are authenticated or not. The `ConfigAuthenticatedResult[]` contains the single config result with it's `configId` and again if this config is authenticated or not.
+
+In case you have multiple configs the `isAuthenticated` on the `AuthenticatedResult` tells you if all configs are authenticated (`true`) or not (`false`). The `ConfigAuthenticatedResult[]` contains the single config results with it's `configId` and again if this config is authenticated or not.
+
+```ts
+this.isAuthenticated$ = this.oidcSecurityService.isAuthenticated$;
 ```
 
 Single Config
 
 ```json
-true / false;
+{
+  "isAuthenticated": true,
+  "allConfigsAuthenticated": [{ "configId": "configId1", "isAuthenticated": true }]
+}
 ```
 
 Multiple Configs
 
 ```json
-[
-  {
-    "configId": "...",
-    "isAuthenticated": true
-  },
-  {
-    "configId": "...",
-    "isAuthenticated": false
-  }
-]
+{
+  "isAuthenticated": false,
+  "allConfigsAuthenticated": [
+    { "configId": "configId1", "isAuthenticated": true },
+    { "configId": "configId2", "isAuthenticated": false }
+  ]
+}
 ```
 
 ## checkSessionChanged$

docs/site/angular-auth-oidc-client/docs/migrations/v11-to-v12.md

@@ -355,7 +355,7 @@ New:
 this.oidcSecurityService.checkAuth().subscribe(({ isAuthenticated }) => {});
 ```
 
-### `isAuthenticated$` returning `boolean | ConfigAuthenticatedResult[]` instead of `boolean` only
+### `isAuthenticated$` returning `AuthenticatedResult` instead of `boolean` only
 
 Old:
 
@@ -365,19 +365,11 @@ this.oidcSecurityService.isAuthenticated$.subscribe((isAuthenticated) => {});
 
 New:
 
-Single Config:
-
-```ts
-this.oidcSecurityService.isAuthenticated$.subscribe((isAuthenticated: boolean) => {});
-```
-
-Multiple Configs:
-
 ```ts
-this.oidcSecurityService.isAuthenticated$.subscribe((isAuthenticated: ConfigAuthenticatedResult[]) => {});
+this.oidcSecurityService.isAuthenticated$.subscribe(({ isAuthenticated, allConfigsAuthenticated }) => {});
 ```
 
-### `userData$` returning `ConfigUserDataResult[] | any` instead of `any` only
+### `userData$` returning `UserDataResult` instead of `any` only
 
 Old:
 
@@ -390,13 +382,13 @@ New:
 Single Config:
 
 ```ts
-this.oidcSecurityService.userData$.subscribe((userData: any) => {});
+this.oidcSecurityService.userData$.subscribe(({ userData }) => {});
 ```
 
 Multiple Configs:
 
 ```ts
-this.oidcSecurityService.userData$.subscribe((userData: ConfigUserDataResult[]) => {});
+this.oidcSecurityService.userData$.subscribe(({ allUserData }) => {});
 ```
 
 ### `authorize(...)` has new `configId` as first parameter
@@ -462,7 +454,7 @@ const configIdOrNull = ./*...*/;
 this.oidcSecurityService.logoff(configIdOrNull, authOptions)
 ```
 
-## Interface `AuthorizationResult` changed and renamed to `AuthenticatedResult`
+## Interface `AuthorizationResult` changed and renamed to `AuthStateResult`
 
 The old interface `AuthorizationResult` had the following structure:
 
@@ -498,7 +490,7 @@ this.eventService
 New
 
 ```ts
-export interface AuthenticatedResult {
+export interface AuthStateResult {
   isAuthenticated: boolean;
   validationResult: ValidationResult;
   isRenewProcess: boolean;
@@ -508,12 +500,34 @@ export interface AuthenticatedResult {
 ```ts
 this.eventService
   .registerForEvents()
-  .pipe(filter((notification) => notification.type === EventTypes.NewAuthorizationResult))
-  .subscribe((result: OidcClientNotification<AuthenticatedResult>) => {
+  .pipe(filter((notification) => notification.type === EventTypes.NewAuthenticationResult))
+  .subscribe((result: OidcClientNotification<AuthStateResult>) => {
     console.log('isAuthenticated', result.isAuthenticated);
   });
 ```
 
+## `NewAuthorizationResult` was renamed to `NewAuthenticationResult`
+
+The event has changed from `NewAuthorizationResult` to `NewAuthenticationResult`
+
+Old:
+
+```ts
+this.eventService
+  .registerForEvents()
+  .pipe(filter((notification) => notification.type === EventTypes.NewAuthorizationResult))
+  .subscribe((result: OidcClientNotification<AuthorizationResult>) => {});
+```
+
+New:
+
+```ts
+this.eventService
+  .registerForEvents()
+  .pipe(filter((notification) => notification.type === EventTypes.NewAuthenticationResult))
+  .subscribe((result: OidcClientNotification<AuthStateResult>) => {});
+```
+
 ## `AutoLoginGuard` --> `AutoLoginAllRoutesGuard` and `AutoLoginPartialRoutesGuard`
 
 Due to a lot of feedback about the `AutoLoginGuard` and usage we did not expect in that way we decided to give the `AuthGuard` a brush and divided it into a `AutoLoginAllRoutesGuard` when you want to secure your complete app and an `AutoLoginPartialRoutesGuard` if some of your routes are publicly accessible.

projects/angular-auth-oidc-client/src/lib/angular-auth-oidc-client.ts

@@ -3,6 +3,7 @@
 export * from './auth-options';
 export * from './auth.module';
 export * from './authState/auth-result';
+export * from './authState/auth-state';
 export * from './auto-login/auto-login-all-routes.guard';
 export * from './auto-login/auto-login-partial-routes.guard';
 export * from './config/auth-well-known/auth-well-known-endpoints';
@@ -17,6 +18,7 @@ export * from './public-events/event-types';
 export * from './public-events/notification';
 export * from './public-events/public-events.service';
 export * from './storage/abstract-security-storage';
+export * from './userData/userdata-result';
 export * from './utils/tokenHelper/token-helper.service';
 export * from './validation/jwtkeys';
 export * from './validation/state-validation-result';

projects/angular-auth-oidc-client/src/lib/authState/auth-result.ts

@@ -1,9 +1,7 @@
-import { ValidationResult } from '../validation/validation-result';
-
 export interface AuthenticatedResult {
   isAuthenticated: boolean;
-  validationResult: ValidationResult;
-  isRenewProcess: boolean;
+
+  allConfigsAuthenticated: ConfigAuthenticatedResult[];
 }
 
 export interface ConfigAuthenticatedResult {