UNPKG

@okta/okta-auth-js

Version:

The Okta Auth SDK

github.com/okta/okta-auth-js

okta/okta-auth-js

67 lines (52 loc) 2.3 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
"use strict"; var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault"); exports.revokeToken = revokeToken; var _http = require("../http"); var _util = require("../util"); var _oauth = require("./util/oauth"); var _crypto = require("../crypto"); var _AuthSdkError = _interopRequireDefault(require("../errors/AuthSdkError")); /*! * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved. * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.") * * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0. * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * * See the License for the specific language governing permissions and limitations under the License. * */ /* eslint complexity:[0,8] */ // refresh tokens have precedence to be revoked if no token is specified async function revokeToken(sdk, token) { let accessToken = ''; let refreshToken = ''; if (token) { accessToken = token.accessToken; refreshToken = token.refreshToken; } if (!accessToken && !refreshToken) { throw new _AuthSdkError.default('A valid access or refresh token object is required'); } var clientId = sdk.options.clientId; var clientSecret = sdk.options.clientSecret; if (!clientId) { throw new _AuthSdkError.default('A clientId must be specified in the OktaAuth constructor to revoke a token'); } // eslint-disable-next-line @typescript-eslint/no-non-null-assertion var revokeUrl = (0, _oauth.getOAuthUrls)(sdk).revokeUrl; var args = (0, _util.toQueryString)({ // eslint-disable-next-line camelcase token_type_hint: refreshToken ? 'refresh_token' : 'access_token', token: refreshToken || accessToken }).slice(1); var creds = clientSecret ? (0, _crypto.btoa)(`${clientId}:${clientSecret}`) : (0, _crypto.btoa)(clientId); return (0, _http.post)(sdk, revokeUrl, args, { headers: { 'Content-Type': 'application/x-www-form-urlencoded', 'Authorization': 'Basic ' + creds } }); } //# sourceMappingURL=revokeToken.js.map