UNPKG

oauth-token-automation

Version:

Zero-setup OAuth authorization code flow automation with browser automation

github.com/xuanan/oauth-token-automation

xuanan/oauth-token-automation

243 lines (193 loc) 7.46 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
# OAuth Token Generator A minimal OAuth authorization code flow automation tool that handles the complete flow from user authentication to token retrieval in one click. ## Features - ✅ **Zero-setup deployment** - Automatically installs Playwright and browser dependencies if missing - ✅ **Automatic clipboard copy** - Access token is automatically copied to clipboard for instant use - ✅ **Environment-based configuration** - Support multiple environments with JSON config files - ✅ **Environment-specific selectors** - Handles different login HTML structures per environment - ✅ **Detailed logging** - Step-by-step logging for debugging and monitoring - ✅ **Browser automation** - Automated login using Playwright - ✅ **Direct URL parsing** - Extracts authorization code directly from callback URL - ✅ **One-click execution** - Complete flow with a single command - ✅ **Cross-platform compatibility** - Works on Windows, macOS, and Linux - ✅ **Robust error handling** - Comprehensive error reporting and recovery ## Quick Start 1. **Configure your environment**: ```bash # Copy and edit the config file for your environment cp config.dev.json config.myenv.json ``` 2. **Update configuration** in `config.myenv.json`: ```json { "authentication_url": "https://your-auth-server.com/oauth/authorize", "username": "your-username", "password": "your-password", "client_id": "your-client-id", "scope": "read write", "state": "random-state-string", "response_type": "code", "redirect_uri": "http://localhost:3000/callback", "token_url": "https://your-auth-server.com/oauth/token", "client_secret": "your-client-secret", "timeout": 30000, "headless": true, "port": 3000 } ``` 3. **Run the automation**: ```bash # Using npx (automatically installs dependencies) npx playwright install chromium node oauth-automation.js --env=myenv ``` ## Installation & Dependencies ### Zero-Setup Usage (Recommended) The tool automatically handles all dependencies for you: ```bash # Just run directly - it will auto-install everything needed node oauth-standalone.js --env=myenv ``` The first run will: 1. ✅ Detect if Playwright is installed 2. ✅ Auto-install Playwright if missing 3. ✅ Auto-install Chromium browser if missing 4. ✅ Continue with OAuth automation ### Manual Installation (Optional) If you prefer to install dependencies manually: ```bash # Install Playwright npm install playwright # Install browser (required for automation) npx playwright install chromium ``` ## Usage ### Basic Usage ```bash # Run with default dev environment node oauth-automation.js --env=dev # Run with production environment node oauth-automation.js --env=prod # Run with custom environment node oauth-automation.js --env=staging ``` ### Using npm scripts ```bash # Install dependencies first npm setup # Run with predefined scripts npm run dev # Uses dev environment npm run prod # Uses prod environment ``` ## Configuration ### Environment Files Create `config.{environment}.json` files for each environment: - `config.dev.json` - Development environment - `config.prod.json` - Production environment - `config.staging.json` - Staging environment ### Configuration Parameters | Parameter | Description | Required | |-----------|-------------|----------| | `authentication_url` | OAuth authorization endpoint | ✅ | | `username` | User credentials for login | ✅ | | `password` | User credentials for login | ✅ | | `client_id` | OAuth client identifier | ✅ | | `client_secret` | OAuth client secret for token exchange | ✅ | | `token_url` | Token exchange endpoint | ✅ | | `scope` | Requested permissions | ✅ | | `state` | CSRF protection token | ✅ | | `response_type` | OAuth response type (usually "code") | ✅ | | `redirect_uri` | Callback URL for OAuth redirect | ✅ | | `timeout` | Browser timeout in milliseconds | ❌ | | `headless` | Run browser in headless mode | ❌ | ### Configurable Selectors Different OAuth providers may have different HTML structures for their login pages. You can configure custom selectors for each environment: ```json { // ...other config... "selectors": { "username": [ "input[name=\"j_username\"]", "input[id=\"j_username\"]", "#username", "input[name=\"username\"]", "input[type=\"email\"]" ], "password": [ "input[name=\"j_password\"]", "input[id=\"j_password\"]", "#password", "input[name=\"password\"]", "input[type=\"password\"]" ], "submit": [ "input[type=\"submit\"]", "button[type=\"submit\"]", "#submit", ".submit-btn", "button:has-text(\"Sign In\")", "button:has-text(\"Login\")" ] } } ``` **How it works:** - The tool tries each selector in order until it finds a matching element - If no custom selectors are provided, it uses default common selectors - Logs show which selector was successfully used for debugging **Common selector patterns:** - **Standard OAuth**: `input[name="username"]`, `input[type="password"]` - **JSF/Java**: `input[name="j_username"]`, `input[name="j_password"]` - **Custom forms**: Use specific IDs, classes, or text content ## Output The tool provides: 1. **Console logs** - Detailed step-by-step progress 2. **Token response** - Complete OAuth token response in JSON format 3. **File output** - Tokens saved to `tokens.{environment}.json` Example output: ```json { "access_token": "eyJhbGciOiJSUzI1NiIs...", "refresh_token": "def50200f3a5c8b7e...", "token_type": "Bearer", "expires_in": 3600, "scope": "read write" } ``` ## Troubleshooting ### Common Issues 1. **Browser automation fails**: - Check if login form selectors match your OAuth provider - Try running in non-headless mode (`"headless": false`) - Increase timeout value 2. **Callback not received**: - Ensure redirect_uri matches exactly in OAuth app settings - Verify the redirect URL is accessible - Check OAuth provider documentation for correct redirect format 3. **Token exchange fails**: - Verify client_secret is correct - Check token_url endpoint - Review OAuth provider documentation ### Debug Mode Set `"headless": false` in your config to see the browser automation in action. ## Security Notes - Never commit real credentials to version control - Use environment variables for sensitive data in production - Rotate client secrets regularly - Consider using OAuth PKCE flow for enhanced security ## Automatic Clipboard Integration The tool automatically copies the access token to your system clipboard after successful OAuth completion: - ✅ **Cross-platform compatibility** - Works on Windows, macOS, and Linux - ✅ **Instant availability** - Token is ready to paste immediately after completion - ✅ **Fallback handling** - If clipboard fails, token is still displayed in output - ✅ **Zero configuration** - No additional setup required After running the tool, you can immediately paste (`Ctrl+V` / `Cmd+V`) the access token into: - API testing tools (Postman, Insomnia) - Terminal commands (`curl -H "Authorization: Bearer <paste-here>"`) - Browser dev tools for testing - Any application requiring the OAuth token ## Dependencies - **playwright** - Browser automation for OAuth flow - **Node.js** - Runtime (requires Node.js 16+ for fetch API) ## License MIT