UNPKG

alp-node-auth

Version:

authentication with alp

github.com/christophehurpeau/alp

christophehurpeau/alp

115 lines (104 loc) 3.73 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
import type { AlpRouteRef, Context } from "alp-node"; import type MongoUsersManager from "./MongoUsersManager"; import type { AccessResponseHooks, AuthenticationService, } from "./services/authentification/AuthenticationService"; import type { AllowedMapParamsStrategy, AllowedStrategyKeys, } from "./services/authentification/types"; import type { User, UserSanitized } from "./types"; export interface CreateAuthControllerParams< StrategyKeys extends AllowedStrategyKeys, U extends User = User, USanitized extends UserSanitized = UserSanitized, > { authenticationService: AuthenticationService<StrategyKeys, U, UserSanitized>; homeRouterKey?: string; usersManager: MongoUsersManager<U, USanitized>; defaultStrategy?: StrategyKeys; authHooks?: AuthHooks<StrategyKeys>; } export interface AuthController { login: AlpRouteRef; addScope: AlpRouteRef; response: AlpRouteRef; logout: AlpRouteRef; } type OptionalRecord<K extends keyof any, T> = Partial<Record<K, T>>; export interface AuthHooks<StrategyKeys extends AllowedStrategyKeys> extends AccessResponseHooks<StrategyKeys> { paramsForLogin?: <StrategyKey extends StrategyKeys>( strategy: StrategyKey, ctx: Context, ) => | OptionalRecord<AllowedMapParamsStrategy[StrategyKey], any> | Promise<OptionalRecord<AllowedMapParamsStrategy[StrategyKey], any>> | Promise<void> // eslint-disable-next-line @typescript-eslint/no-invalid-void-type | void; } export function createAuthController< StrategyKeys extends AllowedStrategyKeys, U extends User = User, USanitized extends UserSanitized = UserSanitized, >({ usersManager, authenticationService, homeRouterKey = "/", defaultStrategy, authHooks = {}, }: CreateAuthControllerParams<StrategyKeys, U, USanitized>): AuthController { return { async login(ctx: Context): Promise<void> { const strategy: StrategyKeys = (ctx.namedRouteParam("strategy") || defaultStrategy) as StrategyKeys; if (!strategy) throw new Error("Strategy missing"); const params = (authHooks.paramsForLogin && (await authHooks.paramsForLogin(strategy, ctx))) || {}; await authenticationService.redirectAuthUrl(ctx, strategy, {}, params); }, /** * Add scope in existing * The user must already be connected */ async addScope(ctx: Context): Promise<void> { if (!ctx.state.loggedInUser) { ctx.redirectTo(homeRouterKey); return; } const strategy: StrategyKeys = (ctx.namedRouteParam("strategy") || defaultStrategy) as StrategyKeys; if (!strategy) throw new Error("Strategy missing"); const scopeKey = ctx.namedRouteParam("scopeKey"); if (!scopeKey) throw new Error("Scope missing"); await authenticationService.redirectAuthUrl(ctx, strategy, { scopeKey }); }, async response(ctx: Context): Promise<void> { const strategy: StrategyKeys = ctx.namedRouteParam( "strategy", ) as StrategyKeys; ctx.assert(strategy); const loggedInUser = await authenticationService.accessResponse( ctx, strategy, !!ctx.state.loggedInUser, { afterLoginSuccess: authHooks.afterLoginSuccess, afterScopeUpdate: authHooks.afterScopeUpdate, }, ); const keyPath = usersManager.store.keyPath; await ctx.setLoggedIn(loggedInUser[keyPath], loggedInUser); ctx.redirectTo(homeRouterKey); }, // eslint-disable-next-line @typescript-eslint/require-await -- keep async in case i later need await in this method async logout(ctx: Context): Promise<void> { ctx.logout(); ctx.redirectTo(homeRouterKey); }, }; }