UNPKG

@cocalc/server

Version:

CoCalc server functionality: functions used by either the hub and the next.js server

github.com/sagemathinc/cocalc/tree/master/src/packages/server

sagemathinc/cocalc

49 lines (42 loc) 1.34 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
import getPool from "@cocalc/database/pool"; import { parseDomain, ParseResultType } from "parse-domain"; export default async function isDomainExclusiveSSO( email_address: string ): Promise<string | undefined> { if (!email_address) { return; } const raw_domain = email_address.split("@")[1]?.trim().toLowerCase(); if (!raw_domain) { return; } const exclusiveDomains = await getExclusiveDomains(); if (exclusiveDomains.length == 0) { // For most servers, this is the case. return; } const parsed = parseDomain(raw_domain); if (parsed.type != ParseResultType.Listed) { // Domain not in the public suffix list return; } const { domain, topLevelDomains } = parsed; const canonical = [domain ?? "", ...topLevelDomains].join("."); if (exclusiveDomains.includes(canonical)) { return canonical; } } async function getExclusiveDomains(): Promise<string[]> { const pool = getPool("minutes"); // exclusive sso is meant for a on prem settings where config RARELY changes. const { rows } = await pool.query( "SELECT conf#>'{exclusive_domains}' as exclusive_domains FROM passport_settings" ); const v: string[] = []; for (const row of rows) { const { exclusive_domains } = row; if (exclusive_domains) { v.push(...exclusive_domains); } } return v; }