UNPKG

@argodigital/qq-shared

Version:

Shared code for QQ projects

github.com/Argo-DigitalVentures/qq-shared-packages

Argo-DigitalVentures/qq-shared-packages

132 lines (131 loc) 7.36 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : new P(function (resolve) { resolve(result.value); }).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; var __generator = (this && this.__generator) || function (thisArg, body) { var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g; return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g; function verb(n) { return function (v) { return step([n, v]); }; } function step(op) { if (f) throw new TypeError("Generator is already executing."); while (_) try { if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t; if (y = 0, t) op = [op[0] & 2, t.value]; switch (op[0]) { case 0: case 1: t = op; break; case 4: _.label++; return { value: op[1], done: false }; case 5: _.label++; y = op[1]; op = [0]; continue; case 7: op = _.ops.pop(); _.trys.pop(); continue; default: if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; } if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; } if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; } if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; } if (t[2]) _.ops.pop(); _.trys.pop(); continue; } op = body.call(thisArg, _); } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; } if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true }; } }; Object.defineProperty(exports, "__esModule", { value: true }); var oauth2 = require("simple-oauth2"); var param_helper_1 = require("../param-helper"); var logger_1 = require("../logger"); var AuthService = /** @class */ (function () { function AuthService(oktaOAuth2BaseUrl) { this.oktaOAuth2BaseUrl = oktaOAuth2BaseUrl; } AuthService.prototype.getToken = function (_a) { var scope = _a.scope, clientIdParamName = _a.clientIdParamName, clientSecretParamName = _a.clientSecretParamName; return __awaiter(this, void 0, void 0, function () { return __generator(this, function (_b) { switch (_b.label) { case 0: return [4 /*yield*/, this.getAuth({ scope: scope, clientIdParamName: clientIdParamName, clientSecretParamName: clientSecretParamName })]; case 1: return [2 /*return*/, _b.sent()]; } }); }); }; AuthService.prototype.getAuth = function (_a) { var scope = _a.scope, clientIdParamName = _a.clientIdParamName, clientSecretParamName = _a.clientSecretParamName; return __awaiter(this, void 0, void 0, function () { var auth, tokenObject, accessToken; return __generator(this, function (_b) { switch (_b.label) { case 0: logger_1.log.trace("Creating new auth"); return [4 /*yield*/, this.createAuth(clientIdParamName, clientSecretParamName)]; case 1: auth = _b.sent(); logger_1.log.trace("Getting token object with credentials"); return [4 /*yield*/, auth.clientCredentials.getToken({ scope: scope ? scope : 'direct' })]; case 2: tokenObject = _b.sent(); logger_1.log.trace("Token object created: " + JSON.stringify(tokenObject)); logger_1.log.trace("Creating access token"); accessToken = auth.accessToken.create(tokenObject); logger_1.log.trace("Access token created"); return [2 /*return*/, accessToken.token.access_token]; } }); }); }; AuthService.prototype.createAuth = function (clientIdParamName, clientSecretParamName) { return __awaiter(this, void 0, void 0, function () { var auth, _a, clientId, clientSecret, tokenHost; return __generator(this, function (_b) { switch (_b.label) { case 0: logger_1.log.trace("Getting secure client information for auth"); return [4 /*yield*/, this.getOAuthParameters(clientIdParamName, clientSecretParamName)]; case 1: _a = _b.sent(), clientId = _a[0], clientSecret = _a[1]; logger_1.log.trace("Retrieved secure client information for auth"); tokenHost = this.oktaOAuth2BaseUrl ? this.oktaOAuth2BaseUrl : "https://" + param_helper_1.getParameter('OKTA_ORG') + ".okta.com/oauth2/default"; return [4 /*yield*/, oauth2.create({ client: { id: clientId, secret: clientSecret }, auth: { tokenHost: tokenHost, tokenPath: '/v1/token', revokePath: '/v1/revoke', authorizePath: '/v1/authorize' } })]; case 2: auth = _b.sent(); return [2 /*return*/, auth]; } }); }); }; AuthService.prototype.getOAuthParameters = function (clientIdParamName, clientSecretParamName) { return __awaiter(this, void 0, void 0, function () { var clientId, clientSecret; return __generator(this, function (_a) { switch (_a.label) { case 0: clientId = clientIdParamName ? clientIdParamName : 'CLIENT_ID'; clientSecret = clientSecretParamName ? clientSecretParamName : 'CLIENT_SECRET'; return [4 /*yield*/, Promise.all([param_helper_1.getSecureParameter(clientId), param_helper_1.getSecureParameter(clientSecret)])]; case 1: return [2 /*return*/, _a.sent()]; } }); }); }; return AuthService; }()); exports.AuthService = AuthService;