UNPKG

@loopback/authentication-passport

Version:

A package creating adapters between the passport module and @loopback/authentication

loopbackio/loopback-next

93 lines (82 loc) 3.54 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
// Copyright IBM Corp. and LoopBack contributors 2019,2020. All Rights Reserved. // Node module: @loopback/authentication-passport // This file is licensed under the MIT License. // License text available at https://opensource.org/licenses/MIT import { AuthenticationStrategy, UserProfileFactory, } from '@loopback/authentication'; import {HttpErrors, RedirectRoute, Request} from '@loopback/rest'; import {UserProfile} from '@loopback/security'; import {AuthenticateOptions, Strategy} from 'passport'; const passportRequestMixin = require('passport/lib/http/request'); /** * Adapter class to invoke passport-strategy * 1. provides express dependencies to the passport strategies * 2. provides shimming of requests for passport authentication * 3. provides life-cycle similar to express to the passport-strategy * 4. provides state methods to the strategy instance * see: https://github.com/jaredhanson/passport */ export class StrategyAdapter<U> implements AuthenticationStrategy { /** * @param strategy instance of a class which implements a * {@link http://passportjs.org/ | passport-strategy}. */ constructor( private readonly strategy: Strategy, readonly name: string, // The default user profile factory that takes in a user and returns a user profile private userProfileFactory: UserProfileFactory<U> = (u: unknown) => { return u as UserProfile; }, ) {} /** * The function to invoke the contained passport strategy. * 1. Create an instance of the strategy * 2. add success and failure state handlers * 3. authenticate using the strategy * @param request The incoming request. * @param options Options passed through to strategy.authenticate. */ authenticate( request: Request, options?: AuthenticateOptions, ): Promise<UserProfile | RedirectRoute> { const userProfileFactory = this.userProfileFactory; return new Promise<UserProfile | RedirectRoute>((resolve, reject) => { // mix-in passport additions like req.logIn and req.logOut for (const key in passportRequestMixin) { // eslint-disable-next-line @typescript-eslint/no-explicit-any (request as any)[key] = passportRequestMixin[key]; } // create a prototype chain of an instance of a passport strategy const strategy = Object.create(this.strategy); // add success state handler to strategy instance. // as a generic adapter, it is agnostic of the type of // the custom user, so loosen the type restriction here // to be `unknown` strategy.success = function (user: unknown) { const userProfile = userProfileFactory(user as U); resolve(userProfile); }; // add failure state handler to strategy instance strategy.fail = function (challenge: string) { reject(new HttpErrors.Unauthorized(challenge)); }; // add error state handler to strategy instance strategy.error = function (error: string) { reject(new HttpErrors.InternalServerError(error)); }; // handle redirection for oauth2 authorization flows strategy.redirect = function (url: string, status: number) { // resolve with redirect options // the controller configured with the oauth2 strategy will have to handle actual redirection const redirectOptions = new RedirectRoute('', url, status); resolve(redirectOptions); }; // authenticate strategy.authenticate(request, options); }); } }