UNPKG

passport-azure-ad

Version:

OIDC and Bearer Passport strategies for Azure Active Directory

github.com/AzureAD/passport-azure-ad

AzureAD/passport-azure-ad

118 lines (101 loc) 3.84 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
/** * Copyright (c) Microsoft Corporation * All Rights Reserved * MIT License * * Permission is hereby granted, free of charge, to any person obtaining a copy of this * software and associated documentation files (the 'Software'), to deal in the Software * without restriction, including without limitation the rights to use, copy, modify, * merge, publish, distribute, sublicense, and/or sell copies of the Software, and to * permit persons to whom the Software is furnished to do so, subject to the following * conditions: * * The above copyright notice and this permission notice shall be * included in all copies or substantial portions of the Software. * * THE SOFTWARE IS PROVIDED 'AS IS', WITHOUT WARRANTY OF ANY KIND, * EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS * OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, * WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT * OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. */ 'use strict'; var users = []; var access_token = null; module.exports = function(strategyOptions, authenicateOptions) { var express = require('express'); var cookieParser = require('cookie-parser'); var expressSession = require('express-session'); var bodyParser = require('body-parser'); var methodOverride = require('method-override'); var passport = require('passport'); var request = require('request'); var enableGracefulShutdown = require('server-graceful-shutdown'); var OIDCStrategy = require('../../../lib/index').OIDCStrategy; users = []; access_token = null; var findByOid = function(oid, fn) { for (var i = 0, len = users.length; i < len; i++) { var user = users[i]; if (user.oid === oid) return fn(null, user); } return fn(null, null); }; var strategy = new OIDCStrategy(strategyOptions, function(iss, sub, profile, accessToken, refreshToken, done) { access_token = accessToken; findByOid(profile.oid, function(err, user) { if (!user) { users.push(profile); return done(null, profile); } return done(null, user); }); } ); passport.use(strategy); passport.serializeUser(function(user, done) { done(null, user.oid); }); passport.deserializeUser(function(oid, done) { findByOid(oid, function (err, user) { done(err, user); }); }); var app = express(); app.set('views', __dirname + '/views'); app.set('view engine', 'ejs'); app.use(express.logger()); app.use(methodOverride()); app.use(cookieParser()); app.use(expressSession({ secret: 'keyboard cat', resave: true, saveUninitialized: false })); app.use(bodyParser.urlencoded({ extended : true })); app.use(passport.initialize()); app.use(passport.session()); app.use(app.router); app.get('/', function(req, res) { if (strategyOptions.isB2C) res.render('index_b2c', { user: null }); else res.render('index', { user: null }); }); app.get('/login', passport.authenticate('azuread-openidconnect', authenicateOptions)); app.post('/auth/openid/return', passport.authenticate('azuread-openidconnect'), function(req, res) { res.send(200); } ); app.get('/callApi', function(req, res) { request({ url: 'http://localhost:4000/api', auth: { 'bearer': access_token } }, function(err, resp) { res.render('apiResult', { result: resp.body }); }) }); var server = app.listen(3000); enableGracefulShutdown(server); return server; };