Home Explore Help
Register Sign In
ice-static
/
Eve-Project
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c456fbb563
Branches Tags
Eve-Project
/
app-node
/
case-psql
/
node_modules
/
mongodb
/
lib
/
cmap
/
auth
/
mongodb_oidc.js

mongodb_oidc.js 2.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. "use strict";
    2. 

  2. Object.defineProperty(exports, "__esModule", { value: true });
    3. 

  3. exports.MongoDBOIDC = exports.OIDC_WORKFLOWS = void 0;
    4. 

  4. const error_1 = require("../../error");
    5. 

  5. const auth_provider_1 = require("./auth_provider");
    6. 

  6. const aws_service_workflow_1 = require("./mongodb_oidc/aws_service_workflow");
    7. 

  7. const azure_service_workflow_1 = require("./mongodb_oidc/azure_service_workflow");
    8. 

  8. const callback_workflow_1 = require("./mongodb_oidc/callback_workflow");
    9. 

  9. /** Error when credentials are missing. */
    10. 

  10. const MISSING_CREDENTIALS_ERROR = 'AuthContext must provide credentials.';
    11. 

  11. /** @internal */
    12. 

  12. exports.OIDC_WORKFLOWS = new Map();
    13. 

  13. exports.OIDC_WORKFLOWS.set('callback', new callback_workflow_1.CallbackWorkflow());
    14. 

  14. exports.OIDC_WORKFLOWS.set('aws', new aws_service_workflow_1.AwsServiceWorkflow());
    15. 

  15. exports.OIDC_WORKFLOWS.set('azure', new azure_service_workflow_1.AzureServiceWorkflow());
    16. 

  16. /**
    17. 

  17.  * OIDC auth provider.
    18. 

  18.  * @experimental
    19. 

  19.  */
    20. 

  20. class MongoDBOIDC extends auth_provider_1.AuthProvider {
    21. 

  21.     /**
    22. 

  22.      * Instantiate the auth provider.
    23. 

  23.      */
    24. 

  24.     constructor() {
    25. 

  25.         super();
    26. 

  26.     }
    27. 

  27.     /**
    28. 

  28.      * Authenticate using OIDC
    29. 

  29.      */
    30. 

  30.     async auth(authContext) {
    31. 

  31.         const { connection, reauthenticating, response } = authContext;
    32. 

  32.         const credentials = getCredentials(authContext);
    33. 

  33.         const workflow = getWorkflow(credentials);
    34. 

  34.         await workflow.execute(connection, credentials, reauthenticating, response);
    35. 

  35.     }
    36. 

  36.     /**
    37. 

  37.      * Add the speculative auth for the initial handshake.
    38. 

  38.      */
    39. 

  39.     async prepare(handshakeDoc, authContext) {
    40. 

  40.         const credentials = getCredentials(authContext);
    41. 

  41.         const workflow = getWorkflow(credentials);
    42. 

  42.         const result = await workflow.speculativeAuth(credentials);
    43. 

  43.         return { ...handshakeDoc, ...result };
    44. 

  44.     }
    45. 

  45. }
    46. 

  46. exports.MongoDBOIDC = MongoDBOIDC;
    47. 

  47. /**
    48. 

  48.  * Get credentials from the auth context, throwing if they do not exist.
    49. 

  49.  */
    50. 

  50. function getCredentials(authContext) {
    51. 

  51.     const { credentials } = authContext;
    52. 

  52.     if (!credentials) {
    53. 

  53.         throw new error_1.MongoMissingCredentialsError(MISSING_CREDENTIALS_ERROR);
    54. 

  54.     }
    55. 

  55.     return credentials;
    56. 

  56. }
    57. 

  57. /**
    58. 

  58.  * Gets either a device workflow or callback workflow.
    59. 

  59.  */
    60. 

  60. function getWorkflow(credentials) {
    61. 

  61.     const providerName = credentials.mechanismProperties.PROVIDER_NAME;
    62. 

  62.     const workflow = exports.OIDC_WORKFLOWS.get(providerName || 'callback');
    63. 

  63.     if (!workflow) {
    64. 

  64.         throw new error_1.MongoInvalidArgumentError(`Could not load workflow for provider ${credentials.mechanismProperties.PROVIDER_NAME}`);
    65. 

  65.     }
    66. 

  66.     return workflow;
    67. 

  67. }
    68. 

  68. //# sourceMappingURL=mongodb_oidc.js.map
    69.