UNPKG

@cocalc/server

Version:

CoCalc server functionality: functions used by either the hub and the next.js server

github.com/sagemathinc/cocalc/tree/master/src/packages/server

sagemathinc/cocalc

48 lines (41 loc) 1.56 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
/* * This file is part of CoCalc: Copyright © 2022 Sagemath, Inc. * License: AGPLv3 s.t. "Commons Clause" – see LICENSE.md for details */ import { Strategy } from "@cocalc/util/types/sso"; /** * If the domain of a given email address belongs to an SSO strategy, * which is configured to be an "exclusive" domain, then return the Strategy. * This also matches subdomains, i.e. "foo@bar.baz.edu" is goverend by "baz.edu". */ interface Opts { email: string | undefined; strategies: Strategy[] | undefined; specificStrategy?: string; } export function checkRequiredSSO(opts: Opts): Strategy | undefined { const { email, strategies, specificStrategy } = opts; // if the domain of email is contained in any of the strategie's exclusiveDomain array, return that strategy's name if (email == null) return; if (strategies == null || strategies.length === 0) return; if (email.indexOf("@") === -1) return; const emailDomain = getEmailDomain(email); if (!emailDomain) return; for (const strategy of strategies) { if (specificStrategy && specificStrategy !== strategy.name) continue; for (const ssoDomain of strategy.exclusiveDomains) { if (emailBelongsToDomain(emailDomain, ssoDomain)) { return strategy; } } } } export function getEmailDomain(email: string): string { return email.trim().toLowerCase().split("@")[1]; } export function emailBelongsToDomain( emailDomain: string, ssoDomain: string ): boolean { return emailDomain === ssoDomain || emailDomain.endsWith(`.${ssoDomain}`); }