UNPKG

@okta/okta-auth-js

Version:

The Okta Auth SDK

github.com/okta/okta-auth-js

okta/okta-auth-js

120 lines (118 loc) 4.31 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
"use strict"; exports.cleanOAuthResponseFromUrl = cleanOAuthResponseFromUrl; exports.getResponseMode = getResponseMode; exports.parseFromUrl = parseFromUrl; exports.parseOAuthResponseFromUrl = parseOAuthResponseFromUrl; var _errors = require("../errors"); var _util = require("./util"); var _util2 = require("../util"); var _handleOAuthResponse = require("./handleOAuthResponse"); /* eslint-disable complexity */ /*! * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved. * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.") * * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0. * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * * See the License for the specific language governing permissions and limitations under the License. * */ function removeHash(sdk) { var nativeHistory = sdk.token.parseFromUrl._getHistory(); var nativeDoc = sdk.token.parseFromUrl._getDocument(); var nativeLoc = sdk.token.parseFromUrl._getLocation(); if (nativeHistory && nativeHistory.replaceState) { nativeHistory.replaceState(null, nativeDoc.title, nativeLoc.pathname + nativeLoc.search); } else { nativeLoc.hash = ''; } } function removeSearch(sdk) { var nativeHistory = sdk.token.parseFromUrl._getHistory(); var nativeDoc = sdk.token.parseFromUrl._getDocument(); var nativeLoc = sdk.token.parseFromUrl._getLocation(); if (nativeHistory && nativeHistory.replaceState) { nativeHistory.replaceState(null, nativeDoc.title, nativeLoc.pathname + nativeLoc.hash); } else { nativeLoc.search = ''; } } function getResponseMode(sdk) { // https://openid.net/specs/openid-connect-core-1_0.html#Authentication var defaultResponseMode = sdk.options.pkce ? 'query' : 'fragment'; var responseMode = sdk.options.responseMode || defaultResponseMode; return responseMode; } function parseOAuthResponseFromUrl(sdk, options) { options = options || {}; if ((0, _util2.isString)(options)) { options = { url: options }; } else { options = options; } var url = options.url; var responseMode = options.responseMode || getResponseMode(sdk); var nativeLoc = sdk.token.parseFromUrl._getLocation(); var paramStr; if (responseMode === 'query') { paramStr = url ? url.substring(url.indexOf('?')) : nativeLoc.search; } else { paramStr = url ? url.substring(url.indexOf('#')) : nativeLoc.hash; } if (!paramStr) { throw new _errors.AuthSdkError('Unable to parse a token from the url'); } return (0, _util.urlParamsToObject)(paramStr); } function cleanOAuthResponseFromUrl(sdk, options) { // Clean hash or search from the url const responseMode = options.responseMode || getResponseMode(sdk); responseMode === 'query' ? removeSearch(sdk) : removeHash(sdk); } async function parseFromUrl(sdk, options) { options = options || {}; if ((0, _util2.isString)(options)) { options = { url: options }; } else { options = options; } const res = parseOAuthResponseFromUrl(sdk, options); const state = res.state; const oauthParams = sdk.transactionManager.load({ state }); if (!oauthParams) { if (sdk.options.pkce) { // eslint-disable-next-line max-len throw new _errors.AuthSdkError('Could not load PKCE codeVerifier from storage. This may indicate the auth flow has already completed or multiple auth flows are executing concurrently.', undefined); } throw new _errors.AuthSdkError('Unable to retrieve OAuth redirect params from storage'); } const urls = oauthParams.urls; delete oauthParams.urls; if (!options.url) { // Clean hash or search from the url cleanOAuthResponseFromUrl(sdk, options); } return (0, _handleOAuthResponse.handleOAuthResponse)(sdk, oauthParams, res, urls).catch(err => { if (!(0, _util.isInteractionRequiredError)(err)) { sdk.transactionManager.clear({ state }); } throw err; }).then(res => { sdk.transactionManager.clear({ state }); return res; }); } //# sourceMappingURL=parseFromUrl.js.map