-
-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathserver.js
80 lines (69 loc) · 2.69 KB
/
server.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
/*
* OS.js - JavaScript Cloud/Web Desktop Platform
*
* Copyright (c) 2011-2020, Anders Evenrud <andersevenrud@gmail.com>
* All rights reserved.
*
* Redistribution and use in source and binary forms, with or without
* modification, are permitted provided that the following conditions are met:
*
* 1. Redistributions of source code must retain the above copyright notice, this
* list of conditions and the following disclaimer
* 2. Redistributions in binary form must reproduce the above copyright notice,
* this list of conditions and the following disclaimer in the documentation
* and/or other materials provided with the distribution
*
* THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND
* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
* WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE
* DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE FOR
* ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
* (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
* LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND
* ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS
* SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
*
* @author Anders Evenrud <andersevenrud@gmail.com>
* @licence Simplified BSD License
*/
const jwt = require('express-jwt');
const jwksRsa = require('jwks-rsa');
const jwtAuthz = require('express-jwt-authz');
module.exports = (core, opts) => {
const coreConfig = Object.assign({
audience: 'https://YOUR_AUDIENCE/',
issuer: 'https://YOUR_AUTH0_DOMAIN/',
jwksUri: 'https://YOUR_AUTH0_DOMAIN/.well-known/jwks.json',
}, core.config('auth0', {}));
const options = Object.assign({
jwt: {},
secret: {},
scopes: []
}, coreConfig, opts);
const secret = Object.assign({
cache: true,
rateLimit: true,
jwksRequestsPerMinute: 5,
jwksUri: options.jwksUri,
}, options.secret);
const jwtOptions = {
secret: jwksRsa.expressJwtSecret(secret),
audience: options.audience,
issuer: options.issuer,
algorithms: ['RS256']
};
const checkJwt = jwt(jwtOptions);
return {
init: () => {
const express = core.make('osjs/express');
console.log('Inited Auth0 with', jwtOptions);
express.middleware(true, checkJwt);
if (options.scopes.length > 0) {
express.middleware(true, jwtAuthz(options.scopes));
}
},
logout: () => Promise.resolve(true),
login: (req) => Promise.resolve(req.body)
};
};