UNPKG

@okta-dfuhriman/okta-auth-js

Version:
55 lines (49 loc) 2.02 kB
/*! * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved. * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.") * * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0. * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * * See the License for the specific language governing permissions and limitations under the License. */ import { AuthSdkError, OAuthError } from '../errors'; import { IdxTransactionMeta } from './types/meta'; import { OktaAuthIdxInterface } from './types'; export async function handleInteractionCodeRedirect( authClient: OktaAuthIdxInterface, url: string ): Promise<void> { const meta = authClient.transactionManager.load() as IdxTransactionMeta; if (!meta) { throw new AuthSdkError('No transaction data was found in storage'); } const { codeVerifier, state: savedState } = meta; const { searchParams // URL API has been added to the polyfill // eslint-disable-next-line compat/compat } = new URL(url); const state = searchParams.get('state'); const interactionCode = searchParams.get('interaction_code'); // Error handling const error = searchParams.get('error'); if (error) { // eslint-disable-next-line @typescript-eslint/no-non-null-assertion throw new OAuthError(error, searchParams.get('error_description')!); } if (state !== savedState) { throw new AuthSdkError('State in redirect uri does not match with transaction state'); } if (!interactionCode) { throw new AuthSdkError('Unable to parse interaction_code from the url'); } // Save tokens to storage const { tokens } = await authClient.token.exchangeCodeForTokens({ interactionCode, codeVerifier }); authClient.tokenManager.setTokens(tokens); }