Add initial changes for Code+PKCE flow

jeroenheijmans · jeroenheijmans · commit 9798cae0172b · 2019-08-11T14:42:54.000+02:00
diff --git a/src/app/app.component.ts b/src/app/app.component.ts
@@ -33,6 +33,7 @@ import { AuthService } from './core/auth.service';
         <tr><th>IsDoneLoading</th><td><code>{{isDoneLoading | async}}</code></td></tr>
         <tr><th>CanActivateProtectedRoutes</th><td><code>{{canActivateProtectedRoutes | async}}</code></td></tr>
         <tr><th>IdentityClaims</th><td class="pre"><code>{{identityClaims | json}}</code></td></tr>
+        <tr><th>RefreshToken</th><td><code class="break-all">{{refreshToken}}</code></td></tr>
         <tr><th>AccessToken</th><td><code class="break-all">{{accessToken}}</code></td></tr>
         <tr><th>IdToken</th><td><code class="break-all">{{idToken}}</code></td></tr>
       </table>
@@ -66,6 +67,7 @@ export class AppComponent {
 
   get hasValidToken() { return this.authService.hasValidToken(); }
   get accessToken() { return this.authService.accessToken; }
+  get refreshToken() { return this.authService.refreshToken; }
   get identityClaims() { return this.authService.identityClaims; }
   get idToken() { return this.authService.idToken; }
 }
diff --git a/src/app/core/auth-config.ts b/src/app/core/auth-config.ts
@@ -2,10 +2,11 @@ import { AuthConfig } from 'angular-oauth2-oidc';
 
 export const authConfig: AuthConfig = {
   issuer: 'https://demo.identityserver.io',
-  clientId: 'implicit',
+  clientId: 'spa', // The "Auth Code + PKCE" client
+  responseType: 'code',
   redirectUri: window.location.origin + '/index.html',
   silentRefreshRedirectUri: window.location.origin + '/silent-refresh.html',
-  scope: 'openid profile email api',
+  scope: 'openid profile email offline_access api',
   silentRefreshTimeout: 5000, // For faster testing
   timeoutFactor: 0.25, // For faster testing
   sessionChecksEnabled: true,
diff --git a/src/app/core/auth.service.ts b/src/app/core/auth.service.ts
@@ -168,6 +168,7 @@ export class AuthService {
   // These normally won't be exposed from a service like this, but
   // for debugging it makes sense.
   public get accessToken() { return this.oauthService.getAccessToken(); }
+  public get refreshToken() { return this.oauthService.getRefreshToken(); }
   public get identityClaims() { return this.oauthService.getIdentityClaims(); }
   public get idToken() { return this.oauthService.getIdToken(); }
   public get logoutUrl() { return this.oauthService.logoutUrl; }
