UNPKG

cbp-js

Version:

Compiled Libraries for cbp

132 lines (94 loc) 4.68 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
# Introduction [![NPM](https://img.shields.io/npm/v/cbp-js.svg)](https://www.npmjs.com/package/cbp-js) [![JavaScript Style Guide](https://img.shields.io/badge/code_style-standard-brightgreen.svg)](https://standardjs.com) cbp-js is a Javascript library for cbp. It provides support of OIDC and Oauth 2.0 protocol and other useful functions. The ```AuthenticationClient``` class provides a higher level api for signing in, signing out, monitoring session, event for access token expiring and access token expired. # Install ``` npm install i cbp-js ``` # Getting Started ## AuthenticationClient ## Configuration The ``AuthenticationClient`` constructor requires a settings object. These settings are these: ### Required Settings * <b>authorization_server</b> - The URL of the authorization server. * <b>authentication_endpoint</b> - The URL for authentication. * <b>token_endpoint</b> - The URL for getting token. * <b>client_id</b> - The client identifier of the application. * <b>redirect_uri</b> - The redirect url of the application. This URL must be registered when registering the application. * <b>storage</b> - The storage. use WebStorage. * <b>response_type</b> - The response type. Currently supported response_type ``code``. ### Optional Settings * <b>check_session_iframe</b> - The URL of authorization server for checking session. * <b>userinfo_endpoint</b> - The URL of userinfo for getting the user information. * <b>end_session_endpoint</b> - The URL of authorization for ending the session. * <b>post_logout_redirect_uri</b> - The redirect url of the application. This URL must be registered when registering the application. * <b>monitor_session</b> - Enable session monitoring. * <b>silent_renew</b> - Set to true to enable silent renew * <b>silent_redirect_uri</b> Set the silent redirect uri * <b>state</b> - Add state parameter. * <b>nonce</b> - Add nonce parameter. * <b>scope</b> - Add a scope. Default ```openid```. * <b>prompt</b> - Add prompt parameter. Default ```login```. Available options ```login``` and ```consent```. ### Properties * <b>options</b> Returns the options provided. * <b>event</b> Returns various events raised by AuthenticationClient. * <b>oidc</b> Returns various methods for authorization/authentication. ### Oidc These are the available methods under ``oidc``: * <b>signInCallback</b> - This method redirects the user to authorization server authentication endpoint. * <b>signInRedirectCallback</b> - This method handle the redirection if successful exchange the code for token and store it. * <b>logoutCallback</b> - This method redirects the user to the end session endpoint. * <b>getUser</b> - This method get the user information. * <b>silentRenew</b> - This method create a hidden iframe for renewing of token. * <b>signinSilentCallback</b> This method handle the new token. ### Event These are the available methods under ``event``: * <b>signOutEvent</b> - Raised when the user logout from the OP. * <b>accessTokenExpiringEvent</b> - Raised when access token is expiring. * <b>accessTokenExpiredEvent</b> - Raised when access token is expired. ### Other classes * <b>Util</b> - Helper class. * <b>TokenManager</b> - Class for token management. * <b>WebStorage</b> - Specify storage. ### Usage Example usage: Initialization ``` import { AuthenticationClient , WebStorage } from 'cbp-js/cbp-lib.es'; export const auth = new AuthenticationClient({ storage: new WebStorage({ store: window.localStorage }), authorization_server: 'https://AUTH_DOMAIN', authentication_endpoint: 'https://AUTH_DOMAIN/oauth/v1/authorize', token_endpoint: 'https://AUTH_DOMAIN/oauth/v1/token', client_id: 'YOUR_CLIENTID', response_type: "code", redirect_uri: 'https://REDIRECT_URI', scope: "openid user:read", monitor_session: true, check_session_iframe: 'https://AUTH_DOMAINT/oauth/v1/checkSession" }); ``` Calling the method ``` // Signing user auth.oidc.signInCallback().catch(error => console.log(error)); // Handling callback auth.oidc.signInRedirectCallback().then(token => {}) .catch(error => console.log(error)); // Logging out auth.oidc.logoutCallback().catch(error => console.log(error)); // Checking user signout auth.oidc.event.signOutEvent.subscribe(session => {}) .catch(error => console.log(error)); // Checking access token expiring auth.oidc.event.accessTokenExpiringEvent.subscribe(expiring => {}) .catch(error => console.log(error)); // Checking access token expired auth.oidc.event.accessTokenExpiredEvent.subscribe(expired => {}) .catch(error => console.log(error)); ``` # License MIT