ArcGISIdentityManager

Returns 

clientId

password

portal

provider

redirectUri

server

1
2
3
4
5
{
  server: "https://sampleserver6.arcgisonline.com/arcgis",
  token: "SOSlV3v..",
  tokenExpires: new Date(1545415669763)
}

ssl

tokenDuration

canRefresh

Returns true if these credentials can be refreshed and false if it cannot.

Returns 

refreshToken

The current token to ArcGIS Online or ArcGIS Enterprise.

Returns 

refreshTokenExpires

The expiration time of the current refreshToken.

Returns 

token

The current ArcGIS Online or ArcGIS Enterprise token.

Returns 

tokenExpires

The expiration time of the current token.

Returns 

username

The currently authenticated user.

Returns 

disablePostMessageAuth

For a "Host" app that has embedded other platform apps via iframes, when the host needs to transition routes, it should call ArcGISIdentityManager.disablePostMessageAuth() to remove the event listener and prevent memory leaks

Returns 

enablePostMessageAuth

For a "Host" app that embeds other platform apps via iframes, after authenticating the user and creating a ArcGISIdentityManager, the app can then enable "post message" style authentication by calling this method.

Internally this adds an event listener on window for the message event

Returns 

exchangeRefreshToken

Exchanges an unexpired refreshToken for a new one, also updates token andtokenExpires.

Returns 

getDomainCredentials

Returns the proper credentials option for fetch for a given domain. See trusted server. Used internally by underlying request methods to add support for specific security considerations.

Returns 

"include" or "same-origin"

getPortal

Returns information about the currently logged in user's portal. Subsequent calls will not result in additional web traffic.

1
2
3
4
manager.getPortal()
  .then(response => {
    console.log(portal.name); // "City of ..."
  })

Returns 

A Promise that will resolve with the data from the response.

getServerRootUrl

Determines the root of the ArcGIS Server or Portal for a given URL.

Returns 

getToken

Gets an appropriate token for the given URL. If portal is ArcGIS Online and the request is to an ArcGIS Online domain token will be used. If the request is to the current portal the current token will also be used. However if the request is to an unknown server we will validate the server with a request to our current portal.

Returns 

getUser

Returns information about the currently logged in user. Subsequent calls will not result in additional web traffic.

1
2
3
4
manager.getUser()
  .then(response => {
    console.log(response.role); // "org_admin"
  })

Returns 

A Promise that will resolve with the data from the response.

getUsername

Returns the username for the currently logged in user. Subsequent calls will not result in additional web traffic. This is also used internally when a username is required for some requests but is not present in the options.

1
2
3
4
manager.getUsername()
  .then(response => {
    console.log(response); // "casey_jones"
  })

Returns 

refreshCredentials

Manually refreshes the current token and tokenExpires.

Returns 

serialize

Returns 

signOut

Convenience method for ArcGISIdentityManager.destroy for this instance of ArcGISIdentityManager

Returns 

toCredential

Returns authentication in a format useable in the IdentityManager.registerToken() method in the ArcGIS API for JavaScript.

This method can be used with ArcGISIdentityManager.fromCredential to interop with the ArcGIS API for JavaScript.

1
2
3
require(["esri/id"], (esriId) => {
  esriId.registerToken(manager.toCredential());
})

Returns 

ICredential

toJSON

Returns 

updateToken

Update the stored ArcGISIdentityManager.token and ArcGISIdentityManager.tokenExpires properties. This method is used internally when refreshing tokens. You may need to call this if you want update the token with a new token from an external source.

Returns 

validateAppAccess

Get application access information for the current user see validateAppAccess function for details

Returns 

authorize static

Begins a new server-based OAuth 2.0 sign in. This will redirect the user to the ArcGIS Online or ArcGIS Enterprise authorization page.

Returns 

beginOAuth2 static

Begins a new browser-based OAuth 2.0 sign in. If options.popup is true the authentication window will open in a new tab/window. Otherwise, the user will be redirected to the authorization page in their current tab/window and the function will return undefined.

If popup is true (the default) this method will return a Promise that resolves to an ArcGISIdentityManager instance and you must call ArcGISIdentityManager.completeOAuth2 on the page defined in the redirectUri. Otherwise it will return undefined and the ArcGISIdentityManager.completeOAuth2 method will return a Promise that resolves to an ArcGISIdentityManager instance.

A ArcGISAccessDeniedError error will be thrown if the user denies the request on the authorization screen.

Returns 

completeOAuth2 static

Completes a browser-based OAuth 2.0 sign in. If options.popup is true the user will be returned to the previous window and the popup will close. Otherwise a new ArcGISIdentityManager will be returned. You must pass the same values for clientId, popup, portal, and pkce as you used in beginOAuth2().

A ArcGISAccessDeniedError error will be thrown if the user denies the request on the authorization screen.

Returns 

deserialize static

Returns 

destroy static

Revokes all active tokens for a provided ArcGISIdentityManager. The can be considered the equivalent to signing the user out of your application.

Returns 

exchangeAuthorizationCode static

Completes the server-based OAuth 2.0 sign in process by exchanging the authorizationCodefor a access_token.

Returns 

fromCredential static

Translates authentication from the format used in the IdentityManager class in the ArcGIS API for JavaScript.

You will need to call both IdentityManger.findCredential and IdentityManger.findServerInfo to obtain both parameters for this method.

This method can be used with ArcGISIdentityManager.toCredential to interop with the ArcGIS API for JavaScript.

1
2
3
4
5
6
require(["esri/id"], (esriId) => {
  const credential = esriId.findCredential("https://www.arcgis.com/sharing/rest");
  const serverInfo = esriId.findServerInfo("https://www.arcgis.com/sharing/rest");

  const manager = ArcGISIdentityManager.fromCredential(credential, serverInfo);
});

Returns 

ArcGISIdentityManager

fromParent static

Request credentials information from the parent application

When an application is embedded into another application via an IFrame, the embedded app can use window.postMessage to request credentials from the host application. This function wraps that behavior.

The ArcGIS API for Javascript has this built into the Identity Manager as of the 4.19 release.

Note: The parent application will not respond if the embedded app's origin is not:

• the same origin as the parent or *.arcgis.com (JSAPI)
• in the list of valid child origins (REST-JS)

Returns 

fromToken static

Create a ArcGISIdentityManager from an existing token. Useful for when you have a users token from a different authentication system and want to get a ArcGISIdentityManager.

Returns 

signIn static

Initialize a ArcGISIdentityManager with a users username and password. This method is intended ONLY for applications without a user interface such as CLI tools..

If possible you should use ArcGISIdentityManager.beginOAuth2 to authenticate users in a browser or ArcGISIdentityManager.authorize for authenticating users with a web server.

Returns