UNPKG

next-auth

Version:

Authentication for Next.js

authjs.dev

nextauthjs/next-auth

94 lines (84 loc) 2.91 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
import { merge } from "../../utils/merge" import type { InternalProvider, OAuthConfigInternal } from "../types" import type { OAuthConfig, Provider } from "../../providers" import type { InternalUrl } from "../../utils/parse-url" /** * Adds `signinUrl` and `callbackUrl` to each provider * and deep merge user-defined options. */ export default function parseProviders(params: { providers: Provider[] url: InternalUrl providerId?: string }): { providers: InternalProvider[] provider?: InternalProvider } { const { url, providerId } = params const providers = params.providers.map<InternalProvider>( ({ options: userOptions, ...rest }) => { if (rest.type === "oauth") { const normalizedOptions = normalizeOAuthOptions(rest) const normalizedUserOptions = normalizeOAuthOptions(userOptions, true) const id = normalizedUserOptions?.id ?? rest.id return merge(normalizedOptions, { ...normalizedUserOptions, signinUrl: `${url}/signin/${id}`, callbackUrl: `${url}/callback/${id}`, }) } const id = (userOptions?.id as string) ?? rest.id return merge(rest, { ...userOptions, signinUrl: `${url}/signin/${id}`, callbackUrl: `${url}/callback/${id}`, }) } ) return { providers, provider: providers.find(({ id }) => id === providerId), } } /** * Transform OAuth options `authorization`, `token` and `profile` strings to `{ url: string; params: Record<string, string> }` */ function normalizeOAuthOptions( oauthOptions?: Partial<OAuthConfig<any>> | Record<string, unknown>, isUserOptions = false ) { if (!oauthOptions) return const normalized = Object.entries(oauthOptions).reduce< OAuthConfigInternal<Record<string, unknown>> >( (acc, [key, value]) => { if ( ["authorization", "token", "userinfo"].includes(key) && typeof value === "string" ) { const url = new URL(value) acc[key] = { url: `${url.origin}${url.pathname}`, params: Object.fromEntries(url.searchParams ?? []), } } else { acc[key] = value } return acc }, // eslint-disable-next-line @typescript-eslint/prefer-reduce-type-parameter {} as any ) if (!isUserOptions && !normalized.version?.startsWith("1.")) { // If provider has as an "openid-configuration" well-known endpoint // or an "openid" scope request, it will also likely be able to receive an `id_token` // Only do this if this function is not called with user options to avoid overriding in later stage. normalized.idToken = Boolean( normalized.idToken ?? normalized.wellKnown?.includes("openid-configuration") ?? normalized.authorization?.params?.scope?.includes("openid") ) if (!normalized.checks) normalized.checks = ["state"] } return normalized }