UNPKG

@youngshand/payload-auth-plugin

Version:

A temporary fork for testing of Authentication plugin for Payload CMS, use @payload-auth-plugin

github.com/chrisAlwinYS/payload-auth-plugin

chrisAlwinYS/payload-auth-plugin

118 lines (101 loc) 2.95 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
import type { BasePayload, Config, Endpoint, PayloadRequest, Plugin, } from "payload" import { EndpointsFactory, OAuthEndpointStrategy, PasskeyEndpointStrategy, } from "../core/endpoints.js" import type { AccountInfo, ProvidersConfig } from "../types.js" import { PayloadSession } from "../core/session/payload.js" import { InvalidServerURL } from "../core/errors/consoleErrors.js" import { getOAuthProviders, getPasskeyProvider } from "../providers/utils.js" import { preflightCollectionCheck } from "../core/preflights/collections.js" interface PluginOptions { /* Enable or disable plugin * @default true */ enabled?: boolean /* * OAuth Providers */ providers: ProvidersConfig[] /* * Accounts collections config */ accountsCollectionSlug: string /* Enable or disable user creation. WARNING: If applied to your admin users collection it will allow ANYONE to sign up as an admin. * @default false */ allowSignUp?: boolean } export const adminAuthPlugin = (pluginOptions: PluginOptions): Plugin => (incomingConfig: Config): Config => { const config = { ...incomingConfig } if (pluginOptions.enabled === false) { return config } if (!config.serverURL) { throw new InvalidServerURL() } const { accountsCollectionSlug, providers, allowSignUp } = pluginOptions preflightCollectionCheck( [config.admin?.user!, accountsCollectionSlug], config.collections, ) config.admin = { ...(config.admin ?? {}), } const session = new PayloadSession( { accountsCollectionSlug: accountsCollectionSlug, usersCollectionSlug: config.admin.user!, }, allowSignUp, ) const oauthProviders = getOAuthProviders(providers) const passkeyProvider = getPasskeyProvider(providers) const endpointsFactory = new EndpointsFactory("admin") let oauthEndpoints: Endpoint[] = [] let passkeyEndpoints: Endpoint[] = [] if (Object.keys(oauthProviders).length > 0) { endpointsFactory.registerStrategy( "oauth", new OAuthEndpointStrategy(oauthProviders), ) oauthEndpoints = endpointsFactory.createEndpoints("oauth", { sessionCallback: ( oauthAccountInfo: AccountInfo, scope: string, issuerName: string, request: PayloadRequest, clientOrigin: string, ) => session.createSession( oauthAccountInfo, scope, issuerName, request, clientOrigin, ), }) } if (passkeyProvider) { endpointsFactory.registerStrategy( "passkey", new PasskeyEndpointStrategy(), ) passkeyEndpoints = endpointsFactory.createEndpoints("passkey") } config.endpoints = [ ...(config.endpoints ?? []), ...oauthEndpoints, ...passkeyEndpoints, ] return config }