UNPKG

msal

Version:

Microsoft Authentication Library for js

github.com/AzureAD/microsoft-authentication-library-for-js

AzureAD/microsoft-authentication-library-for-js

94 lines 4.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
/* * Copyright (c) Microsoft Corporation. All rights reserved. * Licensed under the MIT License. */ import { __awaiter, __generator } from "tslib"; import { XhrClient } from "../XHRClient"; import { AAD_INSTANCE_DISCOVERY_ENDPOINT, NetworkRequestType } from "../utils/Constants"; import { UrlUtils } from "../utils/UrlUtils"; var TrustedAuthority = /** @class */ (function () { function TrustedAuthority() { } /** * * @param validateAuthority * @param knownAuthorities */ TrustedAuthority.setTrustedAuthoritiesFromConfig = function (validateAuthority, knownAuthorities) { if (validateAuthority && !this.getTrustedHostList().length) { knownAuthorities.forEach(function (authority) { TrustedAuthority.TrustedHostList.push(authority.toLowerCase()); }); } }; /** * * @param telemetryManager * @param correlationId */ TrustedAuthority.getAliases = function (authorityToVerify, telemetryManager, correlationId) { return __awaiter(this, void 0, void 0, function () { var client, httpMethod, instanceDiscoveryEndpoint, httpEvent; return __generator(this, function (_a) { client = new XhrClient(); httpMethod = NetworkRequestType.GET; instanceDiscoveryEndpoint = "" + AAD_INSTANCE_DISCOVERY_ENDPOINT + authorityToVerify + "oauth2/v2.0/authorize"; httpEvent = telemetryManager.createAndStartHttpEvent(correlationId, httpMethod, instanceDiscoveryEndpoint, "getAliases"); return [2 /*return*/, client.sendRequestAsync(instanceDiscoveryEndpoint, httpMethod, true) .then(function (response) { httpEvent.httpResponseStatus = response.statusCode; telemetryManager.stopEvent(httpEvent); return response.body["metadata"]; }) .catch(function (err) { httpEvent.serverErrorCode = err; telemetryManager.stopEvent(httpEvent); throw err; })]; }); }); }; /** * * @param telemetryManager * @param correlationId */ TrustedAuthority.setTrustedAuthoritiesFromNetwork = function (authorityToVerify, telemetryManager, correlationId) { return __awaiter(this, void 0, void 0, function () { var metadata, host; return __generator(this, function (_a) { switch (_a.label) { case 0: return [4 /*yield*/, this.getAliases(authorityToVerify, telemetryManager, correlationId)]; case 1: metadata = _a.sent(); metadata.forEach(function (entry) { var authorities = entry["aliases"]; authorities.forEach(function (authority) { TrustedAuthority.TrustedHostList.push(authority.toLowerCase()); }); }); host = UrlUtils.GetUrlComponents(authorityToVerify).HostNameAndPort; if (TrustedAuthority.getTrustedHostList().length && !TrustedAuthority.IsInTrustedHostList(host)) { // Custom Domain scenario, host is trusted because Instance Discovery call succeeded TrustedAuthority.TrustedHostList.push(host.toLowerCase()); } return [2 /*return*/]; } }); }); }; TrustedAuthority.getTrustedHostList = function () { return this.TrustedHostList; }; /** * Checks to see if the host is in a list of trusted hosts * @param host */ TrustedAuthority.IsInTrustedHostList = function (host) { return this.TrustedHostList.indexOf(host.toLowerCase()) > -1; }; TrustedAuthority.TrustedHostList = []; return TrustedAuthority; }()); export { TrustedAuthority }; //# sourceMappingURL=TrustedAuthority.js.map