UNPKG

insomnia-plugin-auth0

Version:

Seamless store and refresh Auth0 tokens that can be automatically injected into requests, depending on configured urls/methods.

github.com/maatthc/insomnia-plugin-auth0

121 lines (85 loc) 4.37 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
# Auth0 plugin for Insomnia Seamless store and refresh Auth0 tokens that can be automatically injected into requests, depending on configured urls/methods. It will add a **Authorization** header to the requests that match your configuration. The value of the header is the options set for *auth0AuthType* (e.g Bearer) follow by the existing Auth0 token for that url. How long the tokens will be valid depends on the [Refresh Token Expiration](https://auth0.com/docs/secure/tokens/refresh-tokens/configure-refresh-token-rotation) defined for each application, but it is usually 30 days. ## Installation Get if from the [Insomnia plugin store](https://insomnia.rest/plugins) or install it manually: 1. Clone the repository: ```bash git clone https://github.com/maatthc/insomnia-plugin-auth0 2. Install dependencies: ```bash yarn ``` 3. Build the plugin: ```bash yarn build ``` 4. Install: ```bash yarn local ``` ## Auth0 The domain, clientId, audience and scope defined for your application on [Auth0](https://auth0.com/docs/get-started/applications/application-settings) are required: these are usually publicly available . Callback and Logout Urls settings on Auth0 are required to include *localhost* on some port. ### SDK The *cacheLocation* is set to 'localstorage' and *useRefreshTokens* is set to true: these are not configurable at the moment. For login, the method *loginWithRedirect()* is used and for *logout()* for logout. Both methods *isAuthenticated()* and *getTokenSilently()* are used to confirm if the user is logged in. ### Embeded webserver Callback and Logout Urls are supported by a **HTTP server** running within Insomnia. The server runs on **port 3000** by default and is important for the authentication flow. The port is configurable and most match your application configuration on Auth0. You can safely shut down the server after login/logout in case the port is required by other service - for this use the "Auth0 Server Shutdown" option on the [Workspace Actions](#workspace-actions). ## Ignored Requests For the requests that match the following cases, the Authorization Header will not include: - The request Body includes 'IntrospectionQuery'. - The request Header 'Authorization' already exists. ## Configuration You should define one or more Auth0 *instances* and what URLs and methods the instance's token should be used. The configuration should be set as a environment variable called *auth0Instances* in your [Insomnia environment](https://docs.insomnia.rest/insomnia/environment-variables). - **auth0HttpServerPort**: The tcp port to be used by the internal HTTP server. Default: 3000. - **urlRegexs**: Array of [Regex](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Reference/Global_Objects/RegExp) used to match the Auth0 instance with the request's URL. - **auth0AuthType**: The string that prefix the authentication token (e.g Basic). Default: Bearer. - **domain, clientId, audience and scope**: As defined in your application setting on Auth0. ### Configuration changes If the plugin identifies changes in the configuration during a session, it will re-initializing the Auth0 instances to avoid unexpected behaviour. That means that all authenticated instances will be logged out. To avoid this, restart Insomnia as soon as you make changes. ### Example ```json { "auth0Instances": [ { "urlRegexs": ["dev.test.com"], "urlMethods": ["POST"], "auth0AuthType": "Bearer", "domain": "https://auth-dev.test.com", "clientId": "clientIdDev", "authorizationParams": { "audience": "https://api.dev.test.com/gateway/graphql", "scope": "openid profile email offline_access" } }, { "urlRegexs": ["nonprod.test.com"], "urlMethods": ["GET"], "auth0AuthType": "Bearer", "domain": "https://auth-nonprod.test.com", "clientId": "clientIdNonProd", "authorizationParams": { "audience": "https://api.nonprod.test.com/gateway/graphql", "scope": "openid profile email offline_access" } } ], "auth0HttpServerPort": 3000 } ``` ## Screenshots ### Workspace Actions ![Workspace Actions](screenshots/workspace-actions.png) ### Session Control ![Session Control](screenshots/auth0-control.png) ## TODO - [ ] Set up Github Actions