From 81506dc7423e664a8b85e03b2e484ba9bbeb7acc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Rapha=C3=ABl=20Dubigny?= Date: Fri, 18 Oct 2024 16:52:59 +0200 Subject: [PATCH] feat: add customizable authorization --- index.js | 48 ++++++++++++++++++++++++++++++++--------------- package-lock.json | 1 + package.json | 1 + views/index.ejs | 14 ++++++++++++++ 4 files changed, 49 insertions(+), 15 deletions(-) diff --git a/index.js b/index.js index 8e53500..5448b93 100644 --- a/index.js +++ b/index.js @@ -4,6 +4,7 @@ import { Issuer } from "openid-client"; import session from "express-session"; import morgan from "morgan"; import * as crypto from "crypto"; +import bodyParser from "body-parser"; const port = parseInt(process.env.PORT, 10) || 3000; const origin = `${process.env.HOST}`; @@ -35,6 +36,24 @@ const getMcpClient = async () => { }); }; +const acr_values = process.env.ACR_VALUES + ? process.env.ACR_VALUES.split(",") + : null; +const login_hint = process.env.LOGIN_HINT || null; +const scope = process.env.MCP_SCOPES; +const AUTHORIZATION_DEFAULT_PARAMS = { + scope, + login_hint, + acr_values, + claims: { + id_token: { + amr: { + essential: true, + }, + }, + }, +}; + app.get("/", async (req, res, next) => { try { res.render("index", { @@ -43,6 +62,7 @@ app.get("/", async (req, res, next) => { userinfo: JSON.stringify(req.session.userinfo, null, 2), idtoken: JSON.stringify(req.session.idtoken, null, 2), oauth2token: JSON.stringify(req.session.oauth2token, null, 2), + defaultParamsValue: JSON.stringify(AUTHORIZATION_DEFAULT_PARAMS, null, 2), }); } catch (e) { next(e); @@ -53,11 +73,6 @@ const getAuthorizationControllerFactory = (extraParams) => { return async (req, res, next) => { try { const client = await getMcpClient(); - const acr_values = process.env.ACR_VALUES - ? process.env.ACR_VALUES.split(",") - : null; - const login_hint = process.env.LOGIN_HINT || null; - const scope = process.env.MCP_SCOPES; const nonce = crypto.randomBytes(16).toString("hex"); const state = crypto.randomBytes(16).toString("hex"); @@ -65,18 +80,9 @@ const getAuthorizationControllerFactory = (extraParams) => { req.session.nonce = nonce; const redirectUrl = client.authorizationUrl({ - scope, - login_hint, - acr_values, nonce, state, - claims: { - id_token: { - amr: { - essential: true, - }, - }, - }, + ...AUTHORIZATION_DEFAULT_PARAMS, ...extraParams, }); @@ -130,6 +136,18 @@ app.post( }), ); +app.post( + "/custom-connection", + bodyParser.urlencoded({ extended: false }), + (req, res, next) => { + console.log(req.body['custom-params']) + const customParams = JSON.parse(req.body['custom-params']) + console.dir(customParams, { depth: null }); + + return getAuthorizationControllerFactory(customParams)(req, res, next); + }, +); + app.get(process.env.CALLBACK_URL, async (req, res, next) => { try { const client = await getMcpClient(); diff --git a/package-lock.json b/package-lock.json index aac59ed..9f77fe8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -9,6 +9,7 @@ "version": "1.0.0", "license": "AGPL-3.0", "dependencies": { + "body-parser": "^1.20.3", "dotenv": "^16.4.5", "ejs": "^3.1.10", "express": "^4.21.1", diff --git a/package.json b/package.json index 144641f..495b051 100644 --- a/package.json +++ b/package.json @@ -19,6 +19,7 @@ "test": "echo \"Error: no test specified\" && exit 1" }, "dependencies": { + "body-parser": "^1.20.3", "dotenv": "^16.4.5", "ejs": "^3.1.10", "express": "^4.21.1", diff --git a/views/index.ejs b/views/index.ejs index 25ed104..b5edf6c 100644 --- a/views/index.ejs +++ b/views/index.ejs @@ -86,6 +86,20 @@
+
+
+ Usage avancé + +
+ +
+ +
+