UNPKG

gapitoken

Version:

Node.js module for Google API service account authorization (Server to Server flow)

github.com/bsphere/node-gapitoken

bsphere/node-gapitoken

103 lines (89 loc) 2.55 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
'use strict'; var jws = require('jws'); var fs = require('fs'); var request = require('request'); var GAPI = function(options, callback) { this.token = null; this.token_expires = null; this.iss = options.iss; this.scope = options.scope; this.sub = options.sub; this.prn = options.prn; if (options.keyFile) { var self = this; process.nextTick(function() { fs.readFile(options.keyFile, function(err, res) { if (err) { return callback(err); } self.key = res; callback(); }); }); } else if (options.key) { this.key = options.key; process.nextTick(callback); } else { callback(new Error("Missing key, key or keyFile option must be provided!")); } }; GAPI.prototype.getToken = function(callback) { if (this.token && this.token_expires && (new Date()).getTime() < this.token_expires * 1000) { callback(null, this.token); } else { this.getAccessToken(callback); } }; GAPI.prototype.getAccessToken = function(callback) { var self = this; var iat = Math.floor(new Date().getTime() / 1000); var payload = { iss: this.iss, scope: this.scope, aud: 'https://accounts.google.com/o/oauth2/token', exp: iat + 3600, iat: iat }; if(this.sub) payload.sub = this.sub; if(this.prn) payload.prn = this.prn; var signedJWT = jws.sign({ header: {alg: 'RS256', typ: 'JWT'}, payload: payload, secret: this.key }); var post_options = { url: 'https://accounts.google.com/o/oauth2/token', method: 'POST', strictSSL: false, form: { 'grant_type': 'urn:ietf:params:oauth:grant-type:jwt-bearer', 'assertion': signedJWT }, headers: { 'Content-Type': 'application/x-www-form-urlencoded' } }; request(post_options, function(error, response, body) { if(error){ self.token = null; self.token_expires = null; callback(error, null); } else { try { var d = JSON.parse(body); if (d.error) { self.token = null; self.token_expires = null; callback(d.error, null); } else { self.token = d.access_token; self.token_expires = iat + 3600; callback(null, self.token); } } catch (e) { callback(e, null); } } }); }; module.exports = GAPI;