UNPKG

@camunda8/sdk

Version:

[![NPM](https://nodei.co/npm/@camunda8/sdk.png)](https://www.npmjs.com/package/@camunda8/sdk)

github.com/camunda/camunda-8-js-sdk

camunda/camunda-8-js-sdk

61 lines 3.24 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
"use strict"; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); exports.constructOAuthProvider = constructOAuthProvider; const debug_1 = __importDefault(require("debug")); const oauth_1 = require("../oauth"); const BasicAuthProvider_1 = require("../oauth/lib/BasicAuthProvider"); const BearerAuthProvider_1 = require("../oauth/lib/BearerAuthProvider"); const trace = (0, debug_1.default)('camunda:oauth'); function constructOAuthProvider(config, options) { // Record the original (possibly defaulted) strategy let effectiveStrategy = config.CAMUNDA_AUTH_STRATEGY; // Legacy override: if CAMUNDA_OAUTH_DISABLED=true we hard-force NONE, even if user explicitly set another strategy. // This preserves backward compatibility with historical semantics while making the precedence explicit. if (config.CAMUNDA_OAUTH_DISABLED) { trace('CAMUNDA_OAUTH_DISABLED is true; forcing CAMUNDA_AUTH_STRATEGY=NONE and skipping any auto-selection'); effectiveStrategy = 'NONE'; config.CAMUNDA_AUTH_STRATEGY = 'NONE'; } const explicitFromEnv = process.env.CAMUNDA_AUTH_STRATEGY !== undefined; const explicitFromConstructor = !!options?.explicitFromConstructor; // Determine if we can safely auto-promote to OAuth const hasAppCreds = !!config.ZEEBE_CLIENT_ID && !!config.ZEEBE_CLIENT_SECRET; const hasConsoleCreds = !!config.CAMUNDA_CONSOLE_CLIENT_ID && !!config.CAMUNDA_CONSOLE_CLIENT_SECRET; const oauthUrlPresent = !!config.CAMUNDA_OAUTH_URL; const oauthNotDisabled = !config.CAMUNDA_OAUTH_DISABLED; const canAutoSelectOAuth = oauthUrlPresent && oauthNotDisabled && (hasAppCreds || hasConsoleCreds); // Auto-select logic: only when strategy is the default 'NONE' *and* user did not explicitly set it in the environment if (effectiveStrategy === 'NONE' && !explicitFromEnv && !explicitFromConstructor && canAutoSelectOAuth) { trace('Auth strategy auto-selected as OAUTH (implicit) based on presence of CAMUNDA_OAUTH_URL and credentials'); effectiveStrategy = 'OAUTH'; // Reflect the promotion so downstream logging / diagnostics see the final choice config.CAMUNDA_AUTH_STRATEGY = 'OAUTH'; } trace(`Auth strategy (effective) is ${effectiveStrategy}`); trace(`OAuth disabled is ${config.CAMUNDA_OAUTH_DISABLED}`); if (config.CAMUNDA_OAUTH_DISABLED || effectiveStrategy === 'NONE') { trace('Disabling Auth'); return new oauth_1.NullAuthProvider(); } if (effectiveStrategy === 'BASIC') { trace('Using Basic Auth'); return new BasicAuthProvider_1.BasicAuthProvider({ config }); } if (effectiveStrategy === 'BEARER') { trace('Using Bearer Token'); return new BearerAuthProvider_1.BearerAuthProvider({ config }); } if (effectiveStrategy === 'COOKIE') { trace('Using Cookie Auth'); return new oauth_1.CookieAuthProvider({ config }); } trace('Using OAuth'); return new oauth_1.OAuthProvider({ config }); } //# sourceMappingURL=ConstructOAuthProvider.js.map