UNPKG

node-nlp

Version:

Library for NLU (Natural Language Understanding) done in Node.js

github.com/axa-group/nlp.js

axa-group/nlp.js

109 lines (90 loc) 4.18 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
/** * @module botbuilder */ /** * Copyright (c) Microsoft Corporation. All rights reserved. * Licensed under the MIT License. */ import { Activity } from 'botframework-schema'; import { ChannelValidation } from './channelValidation'; import { ClaimsIdentity } from './claimsIdentity'; import { ICredentialProvider } from './credentialProvider'; import { EmulatorValidation } from './emulatorValidation'; import { EnterpriseChannelValidation } from './enterpriseChannelValidation'; import { GovernmentChannelValidation } from './governmentChannelValidation'; import { GovernmentConstants } from './governmentConstants'; import { MicrosoftAppCredentials } from './microsoftAppCredentials'; export module JwtTokenValidation { /** * Authenticates the request and sets the service url in the set of trusted urls. * @param {Activity} activity The incoming Activity from the Bot Framework or the Emulator * @param {string} authHeader The Bearer token included as part of the request * @param {ICredentialProvider} credentials The set of valid credentials, such as the Bot Application ID * @returns {Promise<ClaimsIdentity>} Promise with ClaimsIdentity for the request. */ export async function authenticateRequest( activity: Activity, authHeader: string, credentials: ICredentialProvider, channelService: string ): Promise<ClaimsIdentity> { if (!authHeader.trim()) { const isAuthDisabled: boolean = await credentials.isAuthenticationDisabled(); if (isAuthDisabled) { return new ClaimsIdentity([], true); } throw new Error('Unauthorized Access. Request is not authorized'); } const claimsIdentity: ClaimsIdentity = await validateAuthHeader(authHeader, credentials, channelService, activity.channelId, activity.serviceUrl); MicrosoftAppCredentials.trustServiceUrl(activity.serviceUrl); return claimsIdentity; } export async function validateAuthHeader( authHeader: string, credentials: ICredentialProvider, channelService: string, channelId: string, serviceUrl: string = '' ): Promise<ClaimsIdentity> { if (!authHeader.trim()) { throw new Error('\'authHeader\' required.'); } const usingEmulator: boolean = EmulatorValidation.isTokenFromEmulator(authHeader); if (usingEmulator) { return await EmulatorValidation.authenticateEmulatorToken(authHeader, credentials, channelId); } if (isPublicAzure(channelService)) { if (serviceUrl.trim()) { return await ChannelValidation.authenticateChannelTokenWithServiceUrl(authHeader, credentials, serviceUrl, channelId); } return await ChannelValidation.authenticateChannelToken(authHeader, credentials, channelId); } if (isGovernment(channelService)) { if (serviceUrl.trim()) { return await GovernmentChannelValidation.authenticateChannelTokenWithServiceUrl( authHeader, credentials, serviceUrl, channelId ); } return await GovernmentChannelValidation.authenticateChannelToken(authHeader, credentials, channelId); } // Otherwise use Enterprise Channel Validation if (serviceUrl.trim()) { return await EnterpriseChannelValidation.authenticateChannelTokenWithServiceUrl( authHeader, credentials, serviceUrl, channelId, channelService ); } return await EnterpriseChannelValidation.authenticateChannelToken(authHeader, credentials, channelId, channelService); } function isPublicAzure(channelService: string): boolean { return !channelService || channelService.length === 0; } export function isGovernment(channelService: string): boolean { return channelService && channelService.toLowerCase() === GovernmentConstants.ChannelService; } }