@loopback/authentication

Version:

A LoopBack component for authentication support.

github.com/loopbackio/loopback-next

loopbackio/loopback-next

106 lines (105 loc) • 3.91 kB

TypeScript

/// <reference types="express" /> import { Binding, BindingTemplate, Constructor, Context } from '@loopback/core'; import { RedirectRoute, Request } from '@loopback/rest'; import { UserProfile } from '@loopback/security'; /** * Authentication metadata stored via Reflection API */ export interface AuthenticationMetadata { /** * Name of the authentication strategy */ strategy: string; /** * Options for the authentication strategy */ options?: { [name: string]: any; }; /** * A flag to skip authentication */ skip?: boolean; } /** * interface definition of a factory function which * accepts a user definition and returns the user profile */ export interface UserProfileFactory<U> { (user: U): UserProfile; } /** * interface definition of a function which accepts a request * and returns an authenticated user */ export interface AuthenticateFn { (request: Request): Promise<UserProfile | undefined>; } /** * Options for authentication component */ export interface AuthenticationOptions { /** * Default authentication metadata if a method or class is not decorated with * `@authenticate`. If not set, no default authentication will be enforced for * those methods without authentication metadata. */ defaultMetadata?: AuthenticationMetadata[]; /** * This flag allows an authentication strategy to abort the authentication by * throwing an error if `failOnError` is set to `true`. By default, the * authentication process continues to the next one even when a strategy * throws an error. If one of other strategies succeed, the error will be * discarded. */ failOnError?: boolean; } /** * An interface that describes the common authentication strategy. * * An authentication strategy is a class with an * 'authenticate' method that verifies a user's credentials and * returns the corresponding user profile. * */ export interface AuthenticationStrategy { /** * The 'name' property is a unique identifier for the * authentication strategy ( for example : 'basic', 'jwt', etc) */ name: string; /** * The 'authenticate' method takes in a given request and returns a user profile * which is an instance of 'UserProfile'. * (A user profile is a minimal subset of a user object) * If the user credentials are valid, this method should return a 'UserProfile' instance. * If the user credentials are invalid, this method should throw an error * If the user credentials are missing, this method should throw an error, or return 'undefined' * and let the authentication action deal with it. * * @param request - Express request object */ authenticate(request: Request): Promise<UserProfile | RedirectRoute | undefined>; } export declare const AUTHENTICATION_STRATEGY_NOT_FOUND = "AUTHENTICATION_STRATEGY_NOT_FOUND"; export declare const USER_PROFILE_NOT_FOUND = "USER_PROFILE_NOT_FOUND"; /** * Registers an authentication strategy as an extension of the * AuthenticationBindings.AUTHENTICATION_STRATEGY_EXTENSION_POINT_NAME extension * point. * * @param context - Context object * @param strategyClass - Class for the authentication strategy */ export declare function registerAuthenticationStrategy(context: Context, strategyClass: Constructor<AuthenticationStrategy>): Binding<unknown>; /** * A binding template for auth strategy contributor extensions */ export declare const asAuthStrategy: BindingTemplate; /** * Get the authentication metadata object for the specified strategy. * * @param metadata - Array of authentication metadata objects * @param strategyName - Name of the authentication strategy */ export declare function getAuthenticationMetadataForStrategy(metadata: AuthenticationMetadata[], strategyName: string): AuthenticationMetadata | undefined;