From f21e54d8a88d2ee89e788ce1af61f0e642b51452 Mon Sep 17 00:00:00 2001
From: Darrel O'Pry <darrel.opry@spry-group.com>
Date: Thu, 18 Mar 2021 15:44:46 -0400
Subject: [PATCH] fix: auth0 logout

---
 package-lock.json                 | 106 +++++++++++++++++-------------
 package.json                      |   4 +-
 src/components/OidcContext.svelte |  21 +++++-
 3 files changed, 83 insertions(+), 48 deletions(-)

diff --git a/package-lock.json b/package-lock.json
index a8b0bd1..e72eedb 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,15 +1,15 @@
 {
 	"name": "@dopry/svelte-oidc",
-	"version": "0.3.1",
+	"version": "1.0.0",
 	"lockfileVersion": 2,
 	"requires": true,
 	"packages": {
 		"": {
 			"name": "@dopry/svelte-oidc",
-			"version": "0.3.1",
+			"version": "1.0.0",
 			"license": "MIT",
 			"dependencies": {
-				"oidc-client": "github:dopry/oidc-client-js#merge-settings"
+				"oidc-client": "1.11.5"
 			},
 			"devDependencies": {
 				"@rollup/plugin-node-resolve": "11.2.0",
@@ -603,7 +603,6 @@
 			"version": "7.4.1",
 			"resolved": "https://registry.npmjs.org/acorn/-/acorn-7.4.1.tgz",
 			"integrity": "sha512-nQyp0o1/mNdbTO1PO6kHkwSrmgZ0MT/jCCpNiwbUjGoRN4dlBhqJtoQuCnEOKzgTVwg0ZWiCoQy6SxMebQVh8A==",
-			"dev": true,
 			"bin": {
 				"acorn": "bin/acorn"
 			},
@@ -891,9 +890,23 @@
 			"dev": true
 		},
 		"node_modules/base64-js": {
-			"version": "1.3.1",
-			"resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.3.1.tgz",
-			"integrity": "sha512-mLQ4i2QO1ytvGWFWmcngKO//JXAQueZvwEKtjgQFM4jIK0kU+ytMfplL8j+n5mspOfjHwoAg+9yhb7BwAHm36g=="
+			"version": "1.5.1",
+			"resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.5.1.tgz",
+			"integrity": "sha512-AKpaYlHn8t4SVbOHCy+b5+KKgvR4vrsD8vbvrbiQJps7fKDTkjkDry6ji0rUJjC0kzbNePLwzxq8iypo41qeWA==",
+			"funding": [
+				{
+					"type": "github",
+					"url": "https://github.com/sponsors/feross"
+				},
+				{
+					"type": "patreon",
+					"url": "https://www.patreon.com/feross"
+				},
+				{
+					"type": "consulting",
+					"url": "https://feross.org/support"
+				}
+			]
 		},
 		"node_modules/bcrypt-pbkdf": {
 			"version": "1.0.2",
@@ -1293,9 +1306,14 @@
 			}
 		},
 		"node_modules/core-js": {
-			"version": "2.6.11",
-			"resolved": "https://registry.npmjs.org/core-js/-/core-js-2.6.11.tgz",
-			"integrity": "sha512-5wjnpaT/3dV+XB4borEsnAYQchn00XSgTAWKDkEqv+K8KevjbzmofK6hfJ9TZIlpj2N0xQpazy7PiRQiWHqzWg=="
+			"version": "3.9.1",
+			"resolved": "https://registry.npmjs.org/core-js/-/core-js-3.9.1.tgz",
+			"integrity": "sha512-gSjRvzkxQc1zjM/5paAmL4idJBFzuJoo+jDjF1tStYFMV2ERfD02HhahhCGXUyHxQRG4yFKVSdO6g62eoRMcDg==",
+			"hasInstallScript": true,
+			"funding": {
+				"type": "opencollective",
+				"url": "https://opencollective.com/core-js"
+			}
 		},
 		"node_modules/core-js-pure": {
 			"version": "3.6.5",
@@ -1342,9 +1360,9 @@
 			}
 		},
 		"node_modules/crypto-js": {
-			"version": "3.3.0",
-			"resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.3.0.tgz",
-			"integrity": "sha512-DIT51nX0dCfKltpRiXV+/TVZq+Qq2NgF4644+K7Ttnla7zEzqc+kjJyiB96BHNyUTBxyjzRcZYpUdZa+QAqi6Q=="
+			"version": "4.0.0",
+			"resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.0.0.tgz",
+			"integrity": "sha512-bzHZN8Pn+gS7DQA6n+iUmBfl0hO5DJq++QP3U6uTucDtk/0iGpXd/Gg7CGR0p8tJhofJyaKoWBuJI4eAO00BBg=="
 		},
 		"node_modules/cypress": {
 			"version": "4.12.1",
@@ -4292,12 +4310,15 @@
 			}
 		},
 		"node_modules/oidc-client": {
-			"resolved": "git+ssh://git@github.com/dopry/oidc-client-js.git#6abfa9850a830a7f5633d559f0cce449128ceec2",
+			"version": "1.11.5",
+			"resolved": "https://registry.npmjs.org/oidc-client/-/oidc-client-1.11.5.tgz",
+			"integrity": "sha512-LcKrKC8Av0m/KD/4EFmo9Sg8fSQ+WFJWBrmtWd+tZkNn3WT/sQG3REmPANE9tzzhbjW6VkTNy4xhAXCfPApAOg==",
 			"dependencies": {
-				"base64-js": "^1.3.0",
-				"core-js": "^2.6.4",
-				"crypto-js": "^3.1.9-1",
-				"uuid": "^3.3.2"
+				"acorn": "^7.4.1",
+				"base64-js": "^1.5.1",
+				"core-js": "^3.8.3",
+				"crypto-js": "^4.0.0",
+				"serialize-javascript": "^4.0.0"
 			}
 		},
 		"node_modules/once": {
@@ -4836,7 +4857,6 @@
 			"version": "2.1.0",
 			"resolved": "https://registry.npmjs.org/randombytes/-/randombytes-2.1.0.tgz",
 			"integrity": "sha512-vYl3iOX+4CKUWuxGi9Ukhie6fsqXqS9FE2Zaic4tNFD2N2QQaXOMFbuKK4QmDHC0JO6B1Zp41J0LpT0oR68amQ==",
-			"dev": true,
 			"dependencies": {
 				"safe-buffer": "^5.1.0"
 			}
@@ -5123,8 +5143,7 @@
 		"node_modules/safe-buffer": {
 			"version": "5.1.2",
 			"resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz",
-			"integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g==",
-			"dev": true
+			"integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="
 		},
 		"node_modules/safer-buffer": {
 			"version": "2.1.2",
@@ -5160,7 +5179,6 @@
 			"version": "4.0.0",
 			"resolved": "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-4.0.0.tgz",
 			"integrity": "sha512-GaNA54380uFefWghODBWEGisLZFj00nS5ACs6yHa9nLqlLpVLO8ChDGeKRjZnV4Nh4n0Qi7nhYZD/9fCPzEqkw==",
-			"dev": true,
 			"dependencies": {
 				"randombytes": "^2.1.0"
 			}
@@ -6075,6 +6093,7 @@
 			"version": "3.3.2",
 			"resolved": "https://registry.npmjs.org/uuid/-/uuid-3.3.2.tgz",
 			"integrity": "sha512-yXJmeNaw3DnnKAOKJE51sL/ZaYfWJRl1pK9dr19YFCu0ObS231AB1/LbqTKRAQ5kw8A90rA6fr4riOUpTZvQZA==",
+			"dev": true,
 			"bin": {
 				"uuid": "bin/uuid"
 			}
@@ -6738,8 +6757,7 @@
 		"acorn": {
 			"version": "7.4.1",
 			"resolved": "https://registry.npmjs.org/acorn/-/acorn-7.4.1.tgz",
-			"integrity": "sha512-nQyp0o1/mNdbTO1PO6kHkwSrmgZ0MT/jCCpNiwbUjGoRN4dlBhqJtoQuCnEOKzgTVwg0ZWiCoQy6SxMebQVh8A==",
-			"dev": true
+			"integrity": "sha512-nQyp0o1/mNdbTO1PO6kHkwSrmgZ0MT/jCCpNiwbUjGoRN4dlBhqJtoQuCnEOKzgTVwg0ZWiCoQy6SxMebQVh8A=="
 		},
 		"acorn-jsx": {
 			"version": "5.3.1",
@@ -6968,9 +6986,9 @@
 			"dev": true
 		},
 		"base64-js": {
-			"version": "1.3.1",
-			"resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.3.1.tgz",
-			"integrity": "sha512-mLQ4i2QO1ytvGWFWmcngKO//JXAQueZvwEKtjgQFM4jIK0kU+ytMfplL8j+n5mspOfjHwoAg+9yhb7BwAHm36g=="
+			"version": "1.5.1",
+			"resolved": "https://registry.npmjs.org/base64-js/-/base64-js-1.5.1.tgz",
+			"integrity": "sha512-AKpaYlHn8t4SVbOHCy+b5+KKgvR4vrsD8vbvrbiQJps7fKDTkjkDry6ji0rUJjC0kzbNePLwzxq8iypo41qeWA=="
 		},
 		"bcrypt-pbkdf": {
 			"version": "1.0.2",
@@ -7288,9 +7306,9 @@
 			"dev": true
 		},
 		"core-js": {
-			"version": "2.6.11",
-			"resolved": "https://registry.npmjs.org/core-js/-/core-js-2.6.11.tgz",
-			"integrity": "sha512-5wjnpaT/3dV+XB4borEsnAYQchn00XSgTAWKDkEqv+K8KevjbzmofK6hfJ9TZIlpj2N0xQpazy7PiRQiWHqzWg=="
+			"version": "3.9.1",
+			"resolved": "https://registry.npmjs.org/core-js/-/core-js-3.9.1.tgz",
+			"integrity": "sha512-gSjRvzkxQc1zjM/5paAmL4idJBFzuJoo+jDjF1tStYFMV2ERfD02HhahhCGXUyHxQRG4yFKVSdO6g62eoRMcDg=="
 		},
 		"core-js-pure": {
 			"version": "3.6.5",
@@ -7331,9 +7349,9 @@
 			}
 		},
 		"crypto-js": {
-			"version": "3.3.0",
-			"resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-3.3.0.tgz",
-			"integrity": "sha512-DIT51nX0dCfKltpRiXV+/TVZq+Qq2NgF4644+K7Ttnla7zEzqc+kjJyiB96BHNyUTBxyjzRcZYpUdZa+QAqi6Q=="
+			"version": "4.0.0",
+			"resolved": "https://registry.npmjs.org/crypto-js/-/crypto-js-4.0.0.tgz",
+			"integrity": "sha512-bzHZN8Pn+gS7DQA6n+iUmBfl0hO5DJq++QP3U6uTucDtk/0iGpXd/Gg7CGR0p8tJhofJyaKoWBuJI4eAO00BBg=="
 		},
 		"cypress": {
 			"version": "4.12.1",
@@ -9639,13 +9657,15 @@
 			"dev": true
 		},
 		"oidc-client": {
-			"version": "git+ssh://git@github.com/dopry/oidc-client-js.git#6abfa9850a830a7f5633d559f0cce449128ceec2",
-			"from": "oidc-client@github:dopry/oidc-client-js#merge-settings",
+			"version": "1.11.5",
+			"resolved": "https://registry.npmjs.org/oidc-client/-/oidc-client-1.11.5.tgz",
+			"integrity": "sha512-LcKrKC8Av0m/KD/4EFmo9Sg8fSQ+WFJWBrmtWd+tZkNn3WT/sQG3REmPANE9tzzhbjW6VkTNy4xhAXCfPApAOg==",
 			"requires": {
-				"base64-js": "^1.3.0",
-				"core-js": "^2.6.4",
-				"crypto-js": "^3.1.9-1",
-				"uuid": "^3.3.2"
+				"acorn": "^7.4.1",
+				"base64-js": "^1.5.1",
+				"core-js": "^3.8.3",
+				"crypto-js": "^4.0.0",
+				"serialize-javascript": "^4.0.0"
 			}
 		},
 		"once": {
@@ -10067,7 +10087,6 @@
 			"version": "2.1.0",
 			"resolved": "https://registry.npmjs.org/randombytes/-/randombytes-2.1.0.tgz",
 			"integrity": "sha512-vYl3iOX+4CKUWuxGi9Ukhie6fsqXqS9FE2Zaic4tNFD2N2QQaXOMFbuKK4QmDHC0JO6B1Zp41J0LpT0oR68amQ==",
-			"dev": true,
 			"requires": {
 				"safe-buffer": "^5.1.0"
 			}
@@ -10304,8 +10323,7 @@
 		"safe-buffer": {
 			"version": "5.1.2",
 			"resolved": "https://registry.npmjs.org/safe-buffer/-/safe-buffer-5.1.2.tgz",
-			"integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g==",
-			"dev": true
+			"integrity": "sha512-Gd2UZBJDkXlY7GbJxfsE8/nvKkUEU1G38c1siN6QP6a9PT9MmHB8GnpscSmMJSoF8LOIrt8ud/wPtojys4G6+g=="
 		},
 		"safer-buffer": {
 			"version": "2.1.2",
@@ -10335,7 +10353,6 @@
 			"version": "4.0.0",
 			"resolved": "https://registry.npmjs.org/serialize-javascript/-/serialize-javascript-4.0.0.tgz",
 			"integrity": "sha512-GaNA54380uFefWghODBWEGisLZFj00nS5ACs6yHa9nLqlLpVLO8ChDGeKRjZnV4Nh4n0Qi7nhYZD/9fCPzEqkw==",
-			"dev": true,
 			"requires": {
 				"randombytes": "^2.1.0"
 			}
@@ -11015,7 +11032,8 @@
 		"uuid": {
 			"version": "3.3.2",
 			"resolved": "https://registry.npmjs.org/uuid/-/uuid-3.3.2.tgz",
-			"integrity": "sha512-yXJmeNaw3DnnKAOKJE51sL/ZaYfWJRl1pK9dr19YFCu0ObS231AB1/LbqTKRAQ5kw8A90rA6fr4riOUpTZvQZA=="
+			"integrity": "sha512-yXJmeNaw3DnnKAOKJE51sL/ZaYfWJRl1pK9dr19YFCu0ObS231AB1/LbqTKRAQ5kw8A90rA6fr4riOUpTZvQZA==",
+			"dev": true
 		},
 		"v8-compile-cache": {
 			"version": "2.1.1",
diff --git a/package.json b/package.json
index b3e7795..b7d936e 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
 	"name": "@dopry/svelte-oidc",
-	"version": "1.0.0",
+	"version": "1.0.1",
 	"repository": "https://github.com/dopry/svelte-oidc",
 	"description": "Svelte OIDC Component Library",
 	"keywords": [
@@ -45,7 +45,7 @@
 	},
 	"svelte": "src/components/components.module.js",
 	"dependencies": {
-		"oidc-client": "github:dopry/oidc-client-js#merge-settings"
+		"oidc-client": "1.11.5"
 	},
 	"devDependencies": {
 		"@rollup/plugin-node-resolve": "11.2.0",
diff --git a/src/components/OidcContext.svelte b/src/components/OidcContext.svelte
index 0bd6569..6cc01eb 100644
--- a/src/components/OidcContext.svelte
+++ b/src/components/OidcContext.svelte
@@ -78,6 +78,24 @@
 		const oidc = await oidcPromise;
 		const returnTo = logout_url || window.location.href;
 		oidc.signoutRedirect({ returnTo });
+		try {
+			const response = await oidc.signoutRedirect({ returnTo });
+		} catch (err) {
+			if (err.message !== 'no end session endpoint') throw err;
+			// this is most likely auth0, so let's try their logout endpoint.
+			// @see: https://auth0.com/docs/api/authentication#logout
+			// this is dirty and hack and reaches into guts of the oidc client
+			// in ways I'd prefer not to.. but auth0 has this annoying non-conforming
+			// session termination.
+			const authority = oidc._settings._authority;
+			if (authority.endsWith('auth0.com')) {
+				const clientId = oidc._settings._client_id;
+				const url = `${authority}/v2/logout?client_id=${clientId}&returnTo=${encodeURIComponent(
+					returnTo
+				)}`;
+				window.location = url;
+			} else throw err
+		}
 	}
 </script>
 
@@ -87,7 +105,7 @@
 	export let client_id;
 	export let redirect_uri;
 	export let post_logout_redirect_uri;
-	export let metadata = {};
+
 	export let scope = 'openid profile email';
 
 	setContext(OIDC_CONTEXT_REDIRECT_URI, redirect_uri);
@@ -101,7 +119,6 @@
 		response_type: 'code',
 		scope,
 		automaticSilentRenew: true,
-		metadata,
 	};
 
 	const userManager = new UserManager(settings);