4c028bfcb3
- Create admin environment for redirect uri of openID - Add log out redirect when user click on log out button Signed-off-by: Gregoire Parant <g.parant@thecodingmachine.com>
64 lines
2 KiB
TypeScript
64 lines
2 KiB
TypeScript
import { Issuer, Client, IntrospectionResponse } from "openid-client";
|
|
import {
|
|
OPID_CLIENT_ID,
|
|
OPID_CLIENT_SECRET,
|
|
OPID_CLIENT_ISSUER,
|
|
OPID_CLIENT_REDIREC_URL,
|
|
} from "../Enum/EnvironmentVariable";
|
|
|
|
class OpenIDClient {
|
|
private issuerPromise: Promise<Client> | null = null;
|
|
|
|
private initClient(): Promise<Client> {
|
|
if (!this.issuerPromise) {
|
|
this.issuerPromise = Issuer.discover(OPID_CLIENT_ISSUER).then((issuer) => {
|
|
return new issuer.Client({
|
|
client_id: OPID_CLIENT_ID,
|
|
client_secret: OPID_CLIENT_SECRET,
|
|
redirect_uris: [OPID_CLIENT_REDIREC_URL],
|
|
response_types: ["code"],
|
|
});
|
|
});
|
|
}
|
|
return this.issuerPromise;
|
|
}
|
|
|
|
public authorizationUrl(playUri?: string, redirect?: string) {
|
|
return this.initClient().then((client) => {
|
|
return client.authorizationUrl({
|
|
scope: "openid email",
|
|
prompt: "login",
|
|
playUri: playUri,
|
|
redirect: redirect,
|
|
});
|
|
});
|
|
}
|
|
|
|
public getUserInfo(accessToken: string): Promise<{ email: string; sub: string; access_token: string }> {
|
|
return this.initClient().then((client) => {
|
|
return client.userinfo(accessToken).then((res) => {
|
|
return {
|
|
...res,
|
|
email: res.email as string,
|
|
sub: res.sub,
|
|
access_token: accessToken as string,
|
|
};
|
|
});
|
|
});
|
|
}
|
|
|
|
public logoutUser(token: string): Promise<void> {
|
|
return this.initClient().then((client) => {
|
|
return client.revoke(token);
|
|
});
|
|
}
|
|
|
|
public checkTokenAuth(token: string): Promise<IntrospectionResponse> {
|
|
return this.initClient().then((client) => {
|
|
return client.userinfo(token);
|
|
});
|
|
}
|
|
}
|
|
|
|
export const openIDClient = new OpenIDClient();
|