In case the login process takes some time we would show a "login"
button which makes the user try to click it. There is a good chance
that aroudn that time we get logged in, so the click will log the user
out.

Avoid that by not showing anything during logging in.

They were hardcoded in more places

Add a scope so we don't have to care about naming conflicts
and set the verison to 0.1.0 since we don't have a stable API yet.

not supported in firefox 68

The keycloak library currently only sends us an event in case the token
is about to expire, which is problematic because there is a time window
where we don't have a new token yet and on mobile the timers used
might be suspended and come too late.

To avoid this we check every 10 seconds that the token is valid for 30
and to work around suspended timers we also check on "visibilitychange"
which should trigger then the website gets visible again after the browser
sleeps.

idpHint is only a login option, not an init one

While this shouldn't make a difference because the callback should
only be called when the token is about to be expiring there
is no reason to keep the old token around.

Just force a refresh always

This makes sure the library version works with the server version.

Ideally we'd also want to check the version so we can error out if a too
old keycloak server is on the other side, but I don't see any public API changes
that would allow us to know if the library is too old.

Fixes #32

it's unused atm

lit-html no longer allows merging them in literals.

Now that we have a separate component for keyclaok we can move those
keycloak specific settings into their own attributes.

This should make it more clear what the components are used for

vpu-auth listens to login/logout events which the button emits
and the button shows data from the auth-update event.

Same hover effect, padding and cleanup the CSS etc.

It should only span the whole width in mobile mode

This should make it work in all (LTR at least) cases.

We don't want it to make the page scroll when the display is really small

By setting a max-width on the element it will use ellipsis to shorten the
user name

This reverts commit 1416d0ac942c8bf6f6d52efc03f9f59e6087b2fe.

Neuber, Eugen Ramon authored 4 years ago and Reiter, Christoph committed 4 years ago

See issue #9

If the page prevents the default handler in beforeunload the logout
never occurs and we end up in an endless transient "logging-out" state.

Prevent this by reverting the login status back in that case.

We don't want to depend on harcoded values in the build

In some cases we want to set the path via a html attribute where we can't easily
compute a URL relative to the bundle or page. Convert a path to an URL
if parsing it as an URL doesn't work instead.

No longer needed

These scopes get used for the keycloak login and in case they are registered
as optional scopes for that client get added to the access token.

See #7

This makes it easier to test actual requests and to debug the token content

With keycloak 9.0 the kcLocale option is gone and the locale selection has been reworked.
If I understand things correctly using the "locale" option should start working with 9.0,
so pass both for now.

See https://www.keycloak.org/docs/latest/server_admin/#_user_locale_selection

Fixes #8

See https://gitlab.tugraz.at/VPU/Apps/Library/issues/41

Not sure if this helps, but worth a try.