UNPKG

openshift-rest-client

Version:

Node.js client for developing with OpenShift

github.com/nodeshift/openshift-rest-client

nodeshift/openshift-rest-client

119 lines (103 loc) 3.9 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
'use strict'; const { Client } = require('undici'); const { getAuthUrlFromOCP } = require('./authorization-server-request'); const buildError = (requestError) => { const err = new Error(requestError.message); err.statusCode = requestError.code; return err; }; // Use this function if a user passes in just an auth token // This will return a User Openshift Object async function getUserFromAuthToken (settings) { return new Promise((resolve, reject) => { const client = new Client(settings.url, { connect: { rejectUnauthorized: 'insecureSkipTlsVerify' in settings ? !settings.insecureSkipTlsVerify : true } }); const requestOptions = { path: '/apis/user.openshift.io/v1/users/~', method: 'GET', headers: { Authorization: `Bearer ${settings.token}` } }; client.request(requestOptions).then(async (responseData) => { if (responseData.statusCode === 401) { return reject(new Error(`401 Unable to authenticate with token ${settings.token}`)); } return resolve(await responseData.body.json()); }).catch((err) => { return reject(buildError(err)); }); }); } async function getTokenFromBasicAuth (settings) { // Get the Auth URL from Openshift endpoint const authUrl = await getAuthUrlFromOCP(settings.url, 'insecureSkipTlsVerify' in settings ? !settings.insecureSkipTlsVerify : true); return new Promise((resolve, reject) => { const credentials = `${settings.user}:${settings.password}`; const auth = `Basic ${Buffer.from(credentials).toString('base64')}`; const parsedAuthURL = new URL(authUrl); const client = new Client(parsedAuthURL.origin, { connect: { rejectUnauthorized: 'insecureSkipTlsVerify' in settings ? !settings.insecureSkipTlsVerify : true } }); const requestOptions = { path: parsedAuthURL.pathname + parsedAuthURL.search, method: 'GET', headers: { Authorization: auth } }; /* const req = { method: 'GET', url: authUrl, headers: { Authorization: auth }, strictSSL: 'insecureSkipTlsVerify' in settings ? !settings.insecureSkipTlsVerify : true }; */ client.request(requestOptions).then(async (responseData) => { if (responseData.statusCode === 401) { return reject(new Error(`401 Unable to authenticate user ${settings.user}`)); } if (responseData.statusCode === 404) { return reject(new Error(`404 authentication url of ${parsedAuthURL.origin} not found`)); } const location = responseData.headers.location; const parsedLocation = new URL(location); const hash = parsedLocation.hash; if (hash) { const startIndex = hash.indexOf('=') + 1; const stopIndex = hash.indexOf('&'); const accessToken = hash.slice(startIndex, stopIndex); return resolve(accessToken); } else { return reject(new Error(`Unable to authenticate user ${settings.user} to ${settings.url}. Cannot obtain access token from response.`)); } }).catch((err) => { return reject(buildError(err)); }); /* request(req, (err, resp, body) => { if (err) return reject(buildError(err)); if (resp.statusCode === 401) { return reject(new Error(`401 Unable to authenticate user ${settings.user}`)); } const hash = resp.request.uri.hash; if (hash) { const startIndex = hash.indexOf('=') + 1; const stopIndex = hash.indexOf('&'); const accessToken = hash.slice(startIndex, stopIndex); return resolve(accessToken); } else { return reject(new Error(`Unable to authenticate user ${settings.user} to ${resp.request.uri.host}. Cannot obtain access token from response.`)); } }); */ }); } module.exports = { getTokenFromBasicAuth, getUserFromAuthToken };