gmatte/EvalueTonSavoir
1
0
Fork 0
mirror of https://github.com/ets-cfuhrman-pfe/EvalueTonSavoir.git synced 2025-08-11 21:23:54 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions
EvalueTonSavoir/server/auth/modules/passport-providers/oidc.js

69 lines
2.5 KiB
JavaScript
Raw Normal View History

added openidconnect provider
2024-09-28 14:03:15 -04:00
var OpenIDConnectStrategy = require('passport-openidconnect')
class PassportOpenIDConnect {
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
async getConfigFromConfigURL(name,provider){
try{
const config = await fetch(provider.OIDC_CONFIG_URL)
return await config.json()
} catch (error) {
console.error(`Les informations de connexions de la connexion OIDC ${name} n'ont pu être chargées.`)
}
}
async register(app, passport,endpoint, name, provider) {
const config = await this.getConfigFromConfigURL(name,provider)
continued oidc
2024-09-29 18:39:24 -04:00
const cb_url =`${process.env['BACKEND_URL']}${endpoint}/${name}/callback`
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
added openidconnect provider
2024-09-28 14:03:15 -04:00
passport.use(name, new OpenIDConnectStrategy({
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
issuer: config.issuer,
authorizationURL: config.authorization_endpoint,
tokenURL: config.token_endpoint,
userInfoURL: config.userinfo_endpoint,
clientID: provider.OIDC_CLIENT_ID,
clientSecret: provider.OIDC_CLIENT_SECRET,
continued oidc
2024-09-29 18:39:24 -04:00
callbackURL: cb_url,
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
passReqToCallback: true,
scope: 'openid profile email ' + `${provider.OIDC_ADD_SCOPE}`,
added openidconnect provider
2024-09-28 14:03:15 -04:00
},
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
// patch pour la librairie permet d'obtenir les groupes, PR en cours mais "morte" : https://github.com/jaredhanson/passport-openidconnect/pull/101
async function(req, issuer, profile, times, tok, done) {
added openidconnect provider
2024-09-28 14:03:15 -04:00
try {
const user = {
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
id: profile.id,
email: profile.emails[0].value,
name: profile.name.givenName,
added groups in oidc response
2024-09-30 20:40:37 -04:00
groups: profile.groups[0].value ?? []
added openidconnect provider
2024-09-28 14:03:15 -04:00
};
continued oidc
2024-09-29 18:39:24 -04:00
return done(null, user);
added openidconnect provider
2024-09-28 14:03:15 -04:00
} catch (error) {
continued oidc
2024-09-29 18:39:24 -04:00
added openidconnect provider
2024-09-28 14:03:15 -04:00
}
}));
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
app.get(`${endpoint}/${name}`, (req, res, next) => {
added openidconnect provider
2024-09-28 14:03:15 -04:00
passport.authenticate(name, {
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
scope: 'openid profile email offline_access'+ ` ${provider.OAUTH_ADD_SCOPE}`,
added openidconnect provider
2024-09-28 14:03:15 -04:00
prompt: 'consent'
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
})(req, res, next);
added openidconnect provider
2024-09-28 14:03:15 -04:00
});
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
app.get(`${endpoint}/${name}/callback`,
(req, res, next) => {
passport.authenticate(name, { failureRedirect: '/login' })(req, res, next);
added openidconnect provider
2024-09-28 14:03:15 -04:00
},
(req, res) => {
if (req.user) {
added rest of oidc (kind of)
2024-09-28 20:16:29 -04:00
res.json(req.user)
console.info(`L'utilisateur '${req.user.name}' vient de se connecter`)
} else {
res.status(401).json({ error: "L'authentification a échoué" });
added openidconnect provider
2024-09-28 14:03:15 -04:00
}
}
);
}
}
module.exports = PassportOpenIDConnect;
Reference in a new issue Copy permalink