UNPKG

@titanium/authentication-oauth

Version:

⭐ Axway Amplify module for OAuth authentication with Appcelerator Titanium SDK

brenton.house/saying-goodbye-to-axway-amplify-titanium-31a44f3671de

mobilehero-archive/titanium-authentication-oauth

152 lines (127 loc) 5.61 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
const _ = require('lodash'); const querystring = require('querystring'); const Token = require('../Token'); const Please = require('@titanium/please'); const logger = require('@geek/logger').createLogger('@titanium/authentication-oauth', { meta: { filename: __filename } }); class Password { constructor({ baseUrl = '', tokenPath, client_id, client_secret, default_headers, key }) { logger.track('🔒 you are here → oauth.flows.password.constructor'); this.baseUrl = baseUrl; this.endpoint = this.baseUrl + tokenPath; this.client_id = client_id; this.client_secret = client_secret; this.default_headers = default_headers; this.key = key; // console.debug(`params: ${JSON.stringify(params, null, 2)}`); // logger.debug(`OAuth.Password: ${JSON.stringify(this, null, 2)}`); } async authenticate({ username, password }) { logger.track('🔒 you are here → Password.authenticate'); try { const token = await this.getToken({ username, password }); logger.debug(`🦠 token: ${JSON.stringify(token, null, 2)}`); // response.user = { // username: token.username, // first_name: token.given_name, // last_name: token.family_name, // formatted_name: token.name, // email: token.email, // }; // response.token = token; // return response; return token; } catch (error) { console.error(`🛑 error: ${JSON.stringify(error, null, 2)}`); console.error(error); return { authenticated: false, scopes: [], }; } } async getToken(options = {}) { logger.track('🔒 you are here → oauth.flows.password.getToken'); const login_info = { ...options }; const { username, password } = login_info; // console.debug(`options: ${JSON.stringify(options, null, 2)}`); const client_options = Object.assign({}, _.omit(options, [ 'username', 'password' ]), { timeout: 60000, auth: { username: this.client_id, password: this.client_secret, }, validateStatus(status) { return status >= 200 && status <= 503; }, headers: this.default_headers, url: this.endpoint, body: querystring.stringify({ grant_type: 'password', username, password, device: Titanium.Platform.id, client_id: this.client_id, }), }); const please = new Please(client_options); const response = await please.post(); logger.track('🔒 you are here → oauth.password.getToken.response'); const body = response.json; const authError = this.getAuthError(response); if (authError) { logger.track('🔒 you are here → oauth.password.getToken.authError'); return Promise.reject(authError); } const token = new Token(body, { key: this.key }); return token; // }); // .catch(error => { // console.debug('you are here → oauth.password.getToken error'); // console.error(error); // console.debug(`typeof error: ${JSON.stringify(typeof error, null, 2)}`); // console.debug(`error: ${error.toJSON()}`); } getAuthError(response) { const message = ERROR_RESPONSES[response.body.error] || response.body.error_description || response.body.error; if (message) { const authErr = new Error(message); authErr.body = response.body; authErr.code = 'ERROR'; // return authErr; return authErr; } if (response.status === 401) { const statusErr = new Error('access_denied'); statusErr.status = response.status; statusErr.body = response.body; statusErr.code = 'ERROR'; return statusErr; } if (response.status < 200 || (response.status >= 399 && response.status >= 499)) { const statusErr = new Error(`HTTP status ${response.status}`); statusErr.status = response.status; statusErr.body = response.body; statusErr.code = 'ERROR'; return statusErr; } if (response.status >= 500) { const statusErr = new Error('server_error'); statusErr.status = response.status; statusErr.code = 'ERROR'; return statusErr; } } } const ERROR_RESPONSES = { invalid_request: 'The request is missing a required parameter, includes an invalid parameter value, includes a parameter more than once, or is otherwise malformed.', invalid_client: 'Client authentication failed (e.g., unknown client, no client authentication included, or unsupported authentication method).', invalid_grant: 'The provided authorization grant (e.g., authorization code, resource owner credentials) or refresh token is invalid, expired, revoked, does not match the redirection URI used in the authorization request, or was issued to another client.', unauthorized_client: 'The client is not authorized to request an authorization code using this method.', unsupported_grant_type: 'The authorization grant type is not supported by the authorization server.', access_denied: 'The resource owner or authorization server denied the request.', unsupported_response_type: 'The authorization server does not support obtaining an authorization code using this method.', invalid_scope: 'The requested scope is invalid, unknown, or malformed.', server_error: 'The authorization server encountered an unexpected condition that prevented it from fulfilling the request. (This error code is needed because a 500 Internal Server Error HTTP status code cannot be returned to the client via an HTTP redirect.)', temporarily_unavailable: 'The authorization server is currently unable to handle the request due to a temporary overloading or maintenance of the server.', }; module.exports = Password;