wieerwill/platform
1
0
Fork 0
mirror of https://github.com/hcengineering/platform.git synced 2025-05-29 11:31:32 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
255e03169c
platform/pods/authProviders/src/utils.ts
Alexey Zinoviev 690dd788e9
Qfix idp signup (#8455) 
Signed-off-by: Alexey Zinoviev <alexey.zinoviev@xored.com>
2025-04-03 18:29:01 +05:00

134 lines
3.9 KiB
TypeScript
Raw Blame History

//
// Copyright © 2024 Hardcore Engineering, Inc.
//
// Licensed under the Eclipse Public License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License. You may
// obtain a copy of the License at https://www.eclipse.org/legal/epl-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
//
// See the License for the specific language governing permissions and
// limitations under the License.
//
import { AccountDB, joinWithProvider, LoginInfo, loginOrSignUpWithProvider } from '@hcengineering/account'
import { BrandingMap, concatLink, getBranding, MeasureContext, SocialKey } from '@hcengineering/core'
import { IncomingHttpHeaders } from 'http'
import qs from 'querystringify'
export function getHost (headers: IncomingHttpHeaders): string | undefined {
let host: string | undefined
const origin = headers.origin ?? headers.referer
if (origin !== undefined) {
host = new URL(origin).host
}
return host
}
export interface AuthState {
inviteId?: string
branding?: string
autoJoin?: boolean
navigateUrl?: string
}
export function safeParseAuthState (rawState: string | undefined): AuthState {
if (rawState == null) {
return {}
}
try {
return JSON.parse(decodeURIComponent(rawState))
} catch {
return {}
}
}
export function encodeState (ctx: any, brandings: BrandingMap): string {
const host = getHost(ctx.request.headers)
const branding = host !== undefined ? brandings[host]?.key ?? undefined : undefined
const state: AuthState = {
inviteId: ctx.query?.inviteId,
branding,
autoJoin: ctx.query?.autoJoin !== undefined,
navigateUrl: ctx.query?.navigateUrl
}
return encodeURIComponent(JSON.stringify(state))
}
export async function handleProviderAuth (
measureCtx: MeasureContext,
db: AccountDB,
brandings: BrandingMap,
frontUrl: string,
providerType: string,
rawState: string | undefined,
user: any,
email: string,
first: string,
last: string,
socialKey: SocialKey,
signUpDisabled: boolean | undefined
): Promise<string> {
try {
measureCtx.info('Provider auth handler', { email, type: providerType })
let loginInfo: LoginInfo | null
const state = safeParseAuthState(rawState)
const branding = getBranding(brandings, state?.branding)
if (state.inviteId != null && state.inviteId !== '' && state.autoJoin !== true) {
loginInfo = await joinWithProvider(
measureCtx,
db,
null,
email,
first,
last,
state.inviteId as any,
socialKey,
signUpDisabled
)
} else {
loginInfo = await loginOrSignUpWithProvider(
measureCtx,
db,
null,
email,
first,
last,
socialKey,
signUpDisabled === true || state.autoJoin === true
)
}
if (loginInfo === null) {
measureCtx.info('Failed to auth: no associated account found', {
email,
type: providerType,
user
})
return concatLink(branding?.front ?? frontUrl, '/login')
} else {
const origin = concatLink(branding?.front ?? frontUrl, '/login/auth')
const queryObj: any = { token: loginInfo.token }
if (state.autoJoin === true) {
queryObj.autoJoin = state.autoJoin
queryObj.inviteId = state.inviteId
queryObj.navigateUrl = state.navigateUrl
}
const query = encodeURIComponent(qs.stringify(queryObj))
// Successful authentication, redirect to your application
measureCtx.info('Success auth, redirect', { email, type: providerType, target: origin })
return `${origin}?${query}`
}
} catch (err: any) {
measureCtx.error('failed to auth', { err, type: providerType, user })
return ''
}
}
Reference in New Issue View Git Blame Copy Permalink