UNPKG

oidc-provider

Version:

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

github.com/panva/node-oidc-provider

panva/node-oidc-provider

60 lines (49 loc) 2.2 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
import * as crypto from 'node:crypto'; import debug from 'debug'; import instance from '../helpers/weak_cache.js'; import * as formHtml from '../helpers/user_code_form.js'; import { ReRenderError } from '../helpers/re_render_errors.js'; import errOut from '../helpers/err_out.js'; const debugError = debug('oidc-provider:error'); const serverError = debug('oidc-provider:server_error'); const serverErrorTrace = debug('oidc-provider:server_error:trace'); const userInputRoutes = new Set(['code_verification', 'device_resume']); export default function getErrorHandler(provider, eventName) { return async function errorHandler(ctx, next) { const { features: { deviceFlow: { charset, userCodeInputSource } }, } = instance(provider).configuration; try { await next(); } catch (err) { const out = errOut(err); ctx.status = err.statusCode || 500; if (err.expose && !(err instanceof ReRenderError)) { debugError('path=%s method=%s error=%o detail=%s', ctx.path, ctx.method, out, err.error_detail); } else if (!(err instanceof ReRenderError)) { serverError('path=%s method=%s error=%o', ctx.path, ctx.method, err); serverErrorTrace(err); } if (ctx.oidc?.session && userInputRoutes.has(ctx.oidc.route)) { const secret = crypto.randomBytes(24).toString('hex'); ctx.oidc.session.state = { secret }; await userCodeInputSource(ctx, formHtml.input(ctx.oidc.urlFor('code_verification'), secret, err.userCode, charset), out, err); if (err instanceof ReRenderError) { // render without emit return; } } else if (ctx.accepts('json', 'html') === 'html') { // this ^^ makes */* requests respond with json (curl, xhr, request libraries), while in // browser requests end up rendering the html error instead const { renderError } = instance(provider).configuration; await renderError(ctx, out, err); } else { ctx.body = out; } if (out.error === 'server_error') { provider.emit('server_error', ctx, err); } else if (eventName) { provider.emit(eventName, ctx, err); } } }; }