Pass required params to Session constructor. Allow undefined in AuthScopes

[thecodepixi]

WHY are these changes introduced?

The parameters required by Session were previously not being passed to the constructor, and we were instantiating instances of Session with just their id. This caused some issues due to potentially missing required params.

An issue with scopes potentially being undefined and causing errors in the AuthScopes class is also fixed in this PR. This initially seemed like a Session issue but was able to be resolved in the AuthScope class itself by allowing undefined scopes in the constructor, which then translates to an empty array of scopes.

The change to AuthScopes should potentially fix #159 and similar issues.

WHAT is this pull request doing?

• Moves all required Session params into the constructor.
  • this is a potentially breaking change, depending on how directly users interact with Session
• Updates all testing where we call new Session to pass the required params.
• Updates AuthScopes to allow for undefined in the constructor, and then check for the presence of scope.

important to note that a large portion of this PR is updates to test files

Type of change

• Patch: Bug (non-breaking change which fixes an issue)
• Minor: New feature (non-breaking change which adds functionality)
• Major: Breaking change (fix or feature that would cause existing functionality to not work as expected)

Checklist

• I have added a changelog entry, prefixed by the type of change noted above
• I have added/updated tests for this change
• I have documented new APIs/updated the documentation for modified APIs (for public APIs)

[paulomarg]

Looks great, just had a couple of nits!

[paulomarg]

Should we be extra sure that we only process accepted types?

Suggested change

	} else if (scopes) {
	} else if (scopes !== undefined) {

[thecodepixi]

That's a good point. Should there be an exception/error at that point if scopes is not a string, array or undefined?

[paulomarg]

Technically, typescript would fail in that case, but javascript wouldn't. Then again, we don't check for that sort of thing in a lot of other places (and is that an excuse for not doing it here? 😅 ).

[thecodepixi]

Yeah I'm unsure what the right move is here 😅

[thecodepixi]

This needs a good rebase and probably a bit of refactoring since we've merged #153. I'll get that taken care of so this should be in a good place soon.

[paulomarg]

I'm a little confused - is this part of v1.2.1?

Also, I think this might be a breaking change, right? It will essentially break any apps that build sessions (which might be the case for custom session storages made prior to the change to allow objects).
Update: I actually don't think it's breaking! It's OK to not get those values in the constructor (if we make the params optional), and since the properties are all public, they can continue to be set as they were.

[thecodepixi]

Ope, sorry. My changelog got all weird after I rebased. Will fix.

[thecodepixi]

Also yes, this would be breaking. I don't think these values can be optional? They need to be there for other parts of the code that handle the Session to work, right?

[paulomarg]

Yes, but if you call the constructor and then set the fields, that's OK too, as long as the right fields continue to be set - i.e. apps that did it 'the old way' would continue to work if the constructor doesn't break because of missing params.

[sagar-ranglani]

Any updates on this one?

[mariomx3]

Any update or a workaround for now?

[hgezim]

@thecodepixi Any chance you can resolve those conflicts?

[mariomx3]

Will this be merged in soon? Really critical

[paulomarg]

Hi folks! Sorry for the delay on this one.

We're currently working on a few breaking changes that are going to make up v2 of the library. Since this is also a breaking change (because of the isOnline default), we'll make sure to include it in the new release.

Stay tuned, and thanks for your patience!