UNPKG

oracle-nosqldb

Version:

Node.js driver for Oracle NoSQL Database

133 lines (114 loc) 4.06 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
/*- * Copyright (c) 2018, 2025 Oracle and/or its affiliates. All rights reserved. * * Licensed under the Universal Permissive License v 1.0 as shown at * https://oss.oracle.com/licenses/upl/ */ 'use strict'; const assert = require('assert'); const isPosInt = require('../../utils').isPosInt; const HttpConstants = require('../../constants').HttpConstants; const NoSQLArgumentError = require('../../error').NoSQLArgumentError; const NoSQLTimeoutError = require('../../error').NoSQLTimeoutError; const NoSQLServiceError = require('../../error').NoSQLServiceError; const AuthError = require('../../error').NoSQLAuthorizationError; const HttpClient = require('../http_client'); const BASE_PATH = `/${HttpConstants.NOSQL_VERSION}/nosql/security`; const LOGIN_ENDPOINT = '/login'; const RENEW_ENDPOINT = '/renew'; const LOGOUT_ENDPOINT = '/logout'; class KVStoreTokenProvider { constructor(provider, cfg) { if (cfg.url == null) { throw new NoSQLArgumentError('Missing service endpoint', cfg); } assert(cfg.url instanceof URL); if (!cfg.url.protocol.startsWith('https')) { throw new NoSQLArgumentError(`Invalid protocol for \ authorization: ${cfg.url.protocol}, https is required`, cfg); } this._loginUrl = new URL(BASE_PATH + LOGIN_ENDPOINT, cfg.url); this._renewUrl = new URL(BASE_PATH + RENEW_ENDPOINT, cfg.url); this._logoutUrl = new URL(BASE_PATH + LOGOUT_ENDPOINT, cfg.url); this._timeout = provider._timeout; this._httpClient = new HttpClient(cfg.httpOpt); } async _doGet(req) { try { return await this._httpClient.request( Object.assign(req, { method: HttpConstants.GET, timeout: this._timeout })); } finally { this._httpClient.shutdown(); } } _parse(res) { try { res = JSON.parse(res); } catch(err) { throw AuthError.badProto('Failed to parse kvstore authentication \ token result', err); } if (typeof res.token !== 'string' || !res.token.length) { throw AuthError.badProto(`Token missing or invalid in \ kvstore authentication token result: ${res.token}`); } if (!isPosInt(res.expireAt)) { throw AuthError.badProto(`Expiration time missing or invalid in \ kvstore authentication token result: ${res.expireAt}`); } return res; } _handleError(err, action) { if (err instanceof NoSQLTimeoutError) { throw AuthError.timeout(`Failed to ${action}. Operation timed \ out, see the cause`, err); } if (err instanceof NoSQLServiceError) { throw AuthError.service(`Failed to ${action}, unexpected HTTP \ response. Status code: ${err.statusCode}. Error response: ${err.response}`, err); } throw AuthError.network(`Failed to ${action}, see the cause`, err); } async login(user, pwd) { try { const res = await this._doGet({ url: this._loginUrl, clientId: user, secret: Buffer.isBuffer(pwd) ? pwd : Buffer.from(pwd) }); return this._parse(res); } catch (err) { return this._handleError(err, 'login to kvstore'); } } async renew(auth) { try { const res = await this._doGet({ url: this._renewUrl, auth, }); return this._parse(res); } catch (err) { return this._handleError(err, 'renew kvstore authentication token'); } } async logout(auth) { try { return await this._doGet({ url: this._logoutUrl, auth }); } catch (err) { return this._handleError(err, 'logout from kvstore'); } } } module.exports = KVStoreTokenProvider;