UNPKG

@youngshand/payload-auth-plugin

Version:

A temporary fork for testing of Authentication plugin for Payload CMS, use @payload-auth-plugin

github.com/chrisAlwinYS/payload-auth-plugin

chrisAlwinYS/payload-auth-plugin

137 lines (122 loc) 2.85 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
import type { AuthorizationServer } from "oauth4webapi" export enum ErrorKind { NotFound = "NotFound", InternalServer = "InternalServer", BadRequest = "BadRequest", NotAuthorized = "NotAuthorized", NotAuthenticated = "NotAuthenticated", Conflict = "Conflict", } export enum SuccessKind { Created = "Created", Updated = "Updated", Retrieved = "Retrieved", Deleted = "Deleted", } export interface AuthPluginOutput { message: string kind: ErrorKind | SuccessKind data: any isSuccess: boolean isError: boolean } /** * Generic OAuth provider callback output * * @interface OAuthProviderOutput * @internal */ interface OAuthProviderOutput { /** * OAuth Provider ID. Usually the slugified provider name * * @type {string} */ id: string /** * OAuth provider name. For example Google, Apple * * @type {string} */ name: string /** * Scope of account attributes to request from the provider * * @type {string} */ scope: string /** * Profile callback that returns account information requried to link with users * * @type {( * profile: Record<string, string | number | boolean | object>, * ) => AccountInfo} */ profile: ( profile: Record<string, string | number | boolean | object>, ) => AccountInfo } export interface OAuthBaseProviderConfig { client_id: string client_secret?: string /* * Oauth provider Client Type */ client_auth_type?: "client_secret_basic" | "client_secret_post" /* * Additional parameters you would like to add to query for the provider */ params?: Record<string, string> } export interface OIDCProviderConfig extends OAuthProviderOutput, OAuthBaseProviderConfig { issuer: string algorithm: "oidc" kind: "oauth" } export interface OAuth2ProviderConfig extends OAuthProviderOutput, OAuthBaseProviderConfig { authorization_server: AuthorizationServer algorithm: "oauth2" kind: "oauth" } export type OAuthProviderConfig = OIDCProviderConfig | OAuth2ProviderConfig export interface AccountInfo { sub: string name: string picture: string email: string passKey?: { credentialId: string publicKey?: Uint8Array counter: number transports?: string[] deviceType: string backedUp: boolean } } export type PasswordProviderConfig = { id: string kind: "password" // name: string // verfiyEmail?: boolean // passwordless?: boolean // mfa?: "OTP" | "TOTP" | "None" // signinCallback?: () => void // signupCallback?: () => void } export interface CredentialsAccountInfo { name: string email: string } export type PasskeyProviderConfig = { id: string kind: "passkey" } export type ProvidersConfig = | OAuthProviderConfig | PasskeyProviderConfig | PasswordProviderConfig export type AuthenticationStrategy = "Cookie"