keycloak-lambda-authorizer
Version:
58 lines • 2.5 kB
JavaScript
;
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
return new (P || (P = Promise))(function (resolve, reject) {
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
step((generator = generator.apply(thisArg, _arguments || [])).next());
});
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.DefaultAdapter = void 0;
const Options_1 = require("../Options");
const TokenUtils_1 = require("../utils/TokenUtils");
class DefaultAdapter {
constructor(options) {
this.options = options;
}
refreshToken(tokenJson, enforcer) {
return __awaiter(this, void 0, void 0, function* () {
let refreshContext;
// eslint-disable-next-line @typescript-eslint/ban-ts-comment
// @ts-ignore
if (tokenJson.access_token) {
refreshContext = {
token: tokenJson,
};
}
else {
refreshContext = tokenJson;
}
return yield this.options.clientAuthorization.keycloakRefreshToken(refreshContext, enforcer ? (0, Options_1.updateEnforce)(enforcer) : undefined);
});
}
validate(request, enforcer) {
return __awaiter(this, void 0, void 0, function* () {
let requestContent;
if (request instanceof String || typeof request === 'string') {
const tokenString = request;
const token = (0, TokenUtils_1.decodeToken)(tokenString);
requestContent = {
tokenString,
token,
};
}
else {
requestContent = request;
}
yield (0, TokenUtils_1.verifyToken)(requestContent, this.options);
if (enforcer) {
yield this.options.enforcer.enforce(requestContent, (0, Options_1.updateEnforce)(enforcer));
}
return requestContent;
});
}
}
exports.DefaultAdapter = DefaultAdapter;
//# sourceMappingURL=DefaultAdapter.js.map