UNPKG

@cgignite/ignite-auth

Version:

Auth node allows you to integrate security withing your Ignite APIs and apps

111 lines (108 loc) 3.96 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
module.exports = function(RED) { const { ClientCredentials, ResourceOwnerPassword, AuthorizationCode } = require('simple-oauth2'); function oauth2Client(config) { RED.nodes.createNode(this, config); const node = this; node.outputlocation = config.outputlocation; node.auth2Config = RED.nodes.getNode(config.auth2Config); node.flow = config.flow; node.authorizationMethod = config.authorizationMethod; this.on('input', function (msg) { var authConfig = { client: { id: node.auth2Config.clientId, secret: node.auth2Config.credentials.clientSecret }, auth: { //tokenHost: node.auth2Config.accessTokenUrl, tokenPath : ' ', //authorizeHost : node.auth2Config.authUrl, authorizePath: ' ' }, options: { authorizationMethod: node.authorizationMethod } }; var payloadAttribute = "payload"; if(node.outputlocation && node.outputlocation.length > 0) { payloadAttribute = node.outputlocation; } var output; switch(node.flow) { case "loginurl": authConfig.auth.authorizeHost = node.auth2Config.authUrl; authConfig.auth.tokenHost = node.auth2Config.accessTokenUrl; var client = new AuthorizationCode(authConfig); var authorizationUri = client.authorizeURL({ redirect_uri: node.auth2Config.redirectUrl, scope: node.auth2Config.scope, state: '' }); msg.statusCode = 303; msg.headers = { Location: authorizationUri }; node.send(msg); break; case "gettoken": authConfig.auth.authorizeHost = node.auth2Config.authUrl; authConfig.auth.tokenHost = node.auth2Config.accessTokenUrl; var client = new AuthorizationCode(authConfig); var tokenParams = { code: msg.req.query.code, redirect_uri: node.auth2Config.redirectUrl, scope: node.auth2Config.scope, }; client.getToken(tokenParams).then(function(r) { output = r; }).catch(function(e){ output = e.data.payload; }).finally(function(){ msg[payloadAttribute] = output; node.send(msg); }); break; case "usercredential": var username = node.auth2Config.username; if(msg.override && msg.override.username) { username = msg.override.username; } var password = node.auth2Config.credentials.password; if(msg.override && msg.override.password) { password = msg.override.password; } authConfig.auth.tokenHost = node.auth2Config.accessTokenUrl; var client = new ResourceOwnerPassword(authConfig); var tokenParams = { username: username, password: password, scope: node.auth2Config.scope, }; client.getToken(tokenParams).then(function(r) { output = r; }).catch(function(e){ output = e.data.payload; }).finally(function(){ msg[payloadAttribute] = output; node.send(msg); }); break; default: msg[payloadAttribute] = { "error": "Invalid Adapter", "error_description:":node.flow + " flow is not defined" }; node.send(msg); } }); } RED.nodes.registerType('oauth2', oauth2Client); };