UNPKG

@okta/okta-auth-js

Version:

The Okta Auth SDK

github.com/okta/okta-auth-js

okta/okta-auth-js

79 lines (75 loc) 3.03 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
/*! * Copyright (c) 2015-present, Okta, Inc. and/or its affiliates. All rights reserved. * The Okta software accompanied by this notice is provided pursuant to the Apache License, Version 2.0 (the "License.") * * You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0. * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * * See the License for the specific language governing permissions and limitations under the License. */ import '../errors/WWWAuthError.js'; import { getDefaultTokenParams } from './util/defaultTokenParams.js'; import { getOAuthUrls } from './util/oauth.js'; import { clone } from '../util/object.js'; import '../http/request.js'; import 'tiny-emitter'; import 'js-cookie'; import 'cross-fetch'; import './types/Token.js'; import { postToTokenEndpoint } from './endpoints/token.js'; import { handleOAuthResponse } from './handleOAuthResponse.js'; import { findKeyPair, createDPoPKeyPair } from './dpop.js'; async function exchangeCodeForTokens(sdk, tokenParams, urls) { urls = urls || getOAuthUrls(sdk, tokenParams); tokenParams = Object.assign({}, getDefaultTokenParams(sdk), clone(tokenParams)); const { authorizationCode, interactionCode, codeVerifier, clientId, redirectUri, scopes, ignoreSignature, state, acrValues, dpop, dpopPairId, extraParams } = tokenParams; const getTokenOptions = { clientId, redirectUri, authorizationCode, interactionCode, codeVerifier, dpop, }; const responseType = ['token']; if (scopes.indexOf('openid') !== -1) { responseType.push('id_token'); } const handleResponseOptions = { clientId, redirectUri, scopes, responseType, ignoreSignature, acrValues, extraParams }; try { if (dpop) { if (dpopPairId) { const keyPair = await findKeyPair(dpopPairId); getTokenOptions.dpopKeyPair = keyPair; handleResponseOptions.dpop = dpop; handleResponseOptions.dpopPairId = dpopPairId; } else { const { keyPair, keyPairId } = await createDPoPKeyPair(); getTokenOptions.dpopKeyPair = keyPair; handleResponseOptions.dpop = dpop; handleResponseOptions.dpopPairId = keyPairId; } } const oauthResponse = await postToTokenEndpoint(sdk, getTokenOptions, urls); const tokenResponse = await handleOAuthResponse(sdk, handleResponseOptions, oauthResponse, urls); tokenResponse.code = authorizationCode; tokenResponse.state = state; return tokenResponse; } finally { sdk.transactionManager.clear(); } } export { exchangeCodeForTokens }; //# sourceMappingURL=exchangeCodeForTokens.js.map