You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
feat: CTE delegation and impersonation support (#1109)
## Summary
Adds delegation and impersonation support for Custom Token Exchange per
RFC 8693, building on
[auth0-spa-js#1608](auth0/auth0-spa-js#1608).
- Add `customTokenExchange()` to `Auth0ContextInterface` — stateless
token exchange with no session side effects
- Bump `@auth0/auth0-spa-js` to `^2.20.0`
- Re-export `ActClaim` type
## Test plan
- [x] All existing tests pass
- [x] `customTokenExchange()`: returns raw `TokenEndpointResponse`,
correct params forwarded including `actor_token`/`actor_token_type`
- [x] `customTokenExchange()`: no auth state update, `isAuthenticated`
unchanged
- [x] `customTokenExchange()`: errors propagate raw (no try/catch
wrapping)
- [x] `customTokenExchange()`: method is memoized
- [x] 100% coverage maintained
0 commit comments