UNPKG

@youngshand/payload-auth-plugin

Version:

A temporary fork for testing of Authentication plugin for Payload CMS, use @payload-auth-plugin

github.com/chrisAlwinYS/payload-auth-plugin

chrisAlwinYS/payload-auth-plugin

102 lines (100 loc) 2.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
// src/core/session/payload.ts import { hashCode } from "../utils/hash.js"; import { createSessionCookies, invalidateOAuthCookies } from "../utils/cookies.js"; import { sessionResponse } from "../utils/session.js"; import { UserNotFoundAPIError } from "../errors/apiErrors.js"; class PayloadSession { #collections; #allowSignUp; constructor(collections, allowSignUp) { this.#collections = collections; this.#allowSignUp = !!allowSignUp; } async#upsertAccount(accountInfo, scope, issuerName, payload) { let userID; const userQueryResults = await payload.find({ collection: this.#collections.usersCollectionSlug, where: { email: { equals: accountInfo.email } } }); if (userQueryResults.docs.length === 0) { if (!this.#allowSignUp) { return new UserNotFoundAPIError; } const newUser = await payload.create({ collection: this.#collections.usersCollectionSlug, data: { email: accountInfo.email, emailVerified: true, password: hashCode(accountInfo.email + payload.secret).toString() } }); userID = newUser.id; } else { userID = userQueryResults.docs[0].id; } const accounts = await payload.find({ collection: this.#collections.accountsCollectionSlug, where: { sub: { equals: accountInfo.sub } } }); const data = { scope, name: accountInfo.name, picture: accountInfo.picture }; if (issuerName === "Passkey" && accountInfo.passKey) { data["passkey"] = { ...accountInfo.passKey }; } if (accounts.docs.length > 0) { data["sub"] = accountInfo.sub; data["issuerName"] = issuerName; data["user"] = userID; await payload.update({ collection: this.#collections.accountsCollectionSlug, where: { id: { equals: accounts.docs[0].id } }, data }); } else { data["sub"] = accountInfo.sub; data["issuerName"] = issuerName; data["user"] = userID; await payload.create({ collection: this.#collections.accountsCollectionSlug, data }); } return userID; } async createSession(accountInfo, scope, issuerName, request, clientOrigin) { const { payload } = request; const userID = await this.#upsertAccount(accountInfo, scope, issuerName, payload); const fieldsToSign = { id: userID, email: accountInfo.email, collection: this.#collections.usersCollectionSlug }; let cookies = []; cookies = [ ...await createSessionCookies(`${payload.config.cookiePrefix}-token`, payload.secret, fieldsToSign) ]; cookies = invalidateOAuthCookies(cookies); return sessionResponse(cookies, clientOrigin); } } export { PayloadSession };