[DT-400-npm]: Bump oidc-client-ts from 2.4.1 to 3.1.0

[dependabot]

Bumps oidc-client-ts from 2.4.1 to 3.1.0.

Release notes

Sourced from oidc-client-ts's releases.

v3.1.0

oidc-client-ts v3.1.0 is a minor release.

No longer using crypto-js package, but built-in browser crypto.subtle module. Crypto.subtle is available only in secure contexts (HTTPS). Also have a look into the migration info.

Changelog:

• Fixes:
  • #1666: fix link in docs to issue
  • #1600: updated docs about logger
  • #1589: fix compiler error for target=ES2022
  • #1539: fix small typo in signinCallback doc in UserManager.ts
  • #1504: typo in sample app config
  • #1490: fix the return type of signinCallback
  • #1443: fixes typos in docs
• Features:
  • #1672: make signoutCallback return signout response if request_type is so:r
  • #1626: add popupSignal property to signinPopup and signoutPop
  • #1580: add dpop docs
  • #1569: add dpop nonce support
  • #1457: add extra headers
  • #1461: add demonstrating proof of possession
  • #1430: add global requestTimeoutInSeconds setting
  • #1405: allow using default scopes from authorization server

thanks to @​klues, @​smujmaiku, @​mftruso, @​peetck, @​dbfr3qs, @​mottykohn, @​noshiro-pf, @​dbfr3qs, @​grjan7 and @​natergj

v3.1.0-rc.1

oidc-client-ts v3.1.0-rc.1 is a bug fix release.

No longer using crypto-js package, but built-in browser crypto.subtle module. Crypto.subtle is available only in secure contexts (HTTPS). Also have a look into the migration info.

Changelog:

• Fixes:
  • #1589: fix compiler error for target=ES2022
• Features:
  • #1580: add dpop docs
  • #1569: add dpop nonce support

thanks to @​dbfr3qs

v3.1.0-rc.0

oidc-client-ts v3.1.0-rc.0 is a minor release.

No longer using crypto-js package, but built-in browser crypto.subtle module. Crypto.subtle is available only in secure contexts (HTTPS). Also have a look into the migration info.

Changelog:

• Fixes:
  • #1539: fix small typo in signinCallback doc in UserManager.ts
  • #1504: typo in sample app config
  • #1490: fix the return type of signinCallback

... (truncated)

Commits

• 9ccae8f v3.1.0
• d815d52 Merge pull request #1683 from authts/dependabot/npm_and_yarn/types/node-22.7.4
• 841225a build(deps-dev): bump @​types/node from 22.7.3 to 22.7.4
• d789499 Merge pull request #1680 from authts/dependabot/npm_and_yarn/types/node-22.7.3
• db345bf build(deps-dev): bump @​types/node from 22.5.5 to 22.7.3
• ef0d8e7 Merge pull request #1674 from authts/dependabot/npm_and_yarn/jose-5.9.3
• c975f83 Merge pull request #1673 from authts/dependabot/npm_and_yarn/esbuild-0.24.0
• cb8190a build(deps-dev): bump jose from 5.9.2 to 5.9.3
• 06d569a build(deps-dev): bump esbuild from 0.23.1 to 0.24.0
• e04c828 Merge pull request #1672 from peetck/main
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[snf2ye]

@dependabot rebase

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

[cypress]

jade-data-repo-ui    Run #4037

Run Properties:   Passed #4037  •  43d78c9def ℹ️: Merge 29190871c4bff0b63549cac1aacb37440717ddaf into e0d0ad50d37c45c518ba13564f07...

Project	jade-data-repo-ui
Branch Review	dependabot/npm_and_yarn/oidc-client-ts-3.1.0
Run status	Passed #4037
Run duration	02m 51s
Commit	43d78c9def ℹ️: Merge 29190871c4bff0b63549cac1aacb37440717ddaf into e0d0ad50d37c45c518ba13564f07...
Committer	dependabot[bot]
View all properties for this run ↗︎

---

Test results
Failures	0
Flaky	0
Pending	0
Skipped	0
Passing	17
View all changes introduced in this branch ↗︎

[snf2ye]

I was able to log in with these changes.

Major upgrade version seems reasonable:

• https://github.com/authts/oidc-client-ts/blob/main/docs/migration.md#oidc-client-ts-v240--oidc-client-ts-v300
• https://github.com/authts/react-oidc-context/releases

[fboulnois]

thank you!