lbehm/workadventure
1
0
Fork 0
Code Issues Pull requests Releases Activity

Rollback openid connect to use code and nonce

Browse source 
Signed-off-by: Gregoire Parant <g.parant@thecodingmachine.com>
This commit is contained in:
Gregoire Parant 2021-11-09 00:08:01 +01:00
parent 4c028bfcb3
commit 89baafba2f
2 changed files with 17 additions and 9 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
front/src/Connexion/LocalUserStore.ts
View file

@ -165,6 +165,10 @@ class LocalUserStore {
verifyState(value: string): boolean {
const oldValue = localStorage.getItem(state);
if (!oldValue) {
localStorage.setItem(state, value);
return true;
}
return oldValue === value;
}
getState(): string | null {

22
pusher/src/Services/OpenIDClient.ts
View file

@ -23,26 +23,30 @@ class OpenIDClient {
return this.issuerPromise;
}
public authorizationUrl(playUri?: string, redirect?: string) {
public authorizationUrl(state: string, nonce: string, playUri?: string, redirect?: string) {
return this.initClient().then((client) => {
return client.authorizationUrl({
scope: "openid email",
prompt: "login",
state: state,
nonce: nonce,
playUri: playUri,
redirect: redirect,
});
});
}
public getUserInfo(accessToken: string): Promise<{ email: string; sub: string; access_token: string }> {
public getUserInfo(code: string, nonce: string): Promise<{ email: string; sub: string; access_token: string }> {
return this.initClient().then((client) => {
return client.userinfo(accessToken).then((res) => {
return {
...res,
email: res.email as string,
sub: res.sub,
access_token: accessToken as string,
};
return client.callback(OPID_CLIENT_REDIREC_URL, { code }, { nonce }).then((tokenSet) => {
return client.userinfo(tokenSet).then((res) => {
return {
...res,
email: res.email as string,
sub: res.sub,
access_token: tokenSet.access_token as string,
};
});
});
});
}