%PDF- %PDF-
Direktori : /var/www/html/shaban/duassis/api/vendor/swagger-api/swagger-ui/src/core/ |
Current File : //var/www/html/shaban/duassis/api/vendor/swagger-api/swagger-ui/src/core/oauth2-authorize.js |
import win from "core/window" import { btoa, sanitizeUrl, generateCodeVerifier, createCodeChallenge } from "core/utils" export default function authorize ( { auth, authActions, errActions, configs, authConfigs={} } ) { let { schema, scopes, name, clientId } = auth let flow = schema.get("flow") let query = [] switch (flow) { case "password": authActions.authorizePassword(auth) return case "application": authActions.authorizeApplication(auth) return case "accessCode": query.push("response_type=code") break case "implicit": query.push("response_type=token") break case "clientCredentials": // OAS3 authActions.authorizeApplication(auth) return case "authorizationCode": // OAS3 query.push("response_type=code") break } if (typeof clientId === "string") { query.push("client_id=" + encodeURIComponent(clientId)) } let redirectUrl = configs.oauth2RedirectUrl // todo move to parser if (typeof redirectUrl === "undefined") { errActions.newAuthErr( { authId: name, source: "validation", level: "error", message: "oauth2RedirectUrl configuration is not passed. Oauth2 authorization cannot be performed." }) return } query.push("redirect_uri=" + encodeURIComponent(redirectUrl)) if (Array.isArray(scopes) && 0 < scopes.length) { let scopeSeparator = authConfigs.scopeSeparator || " " query.push("scope=" + encodeURIComponent(scopes.join(scopeSeparator))) } let state = btoa(new Date()) query.push("state=" + encodeURIComponent(state)) if (typeof authConfigs.realm !== "undefined") { query.push("realm=" + encodeURIComponent(authConfigs.realm)) } if (flow === "authorizationCode" && authConfigs.usePkceWithAuthorizationCodeGrant) { const codeVerifier = generateCodeVerifier() const codeChallenge = createCodeChallenge(codeVerifier) query.push("code_challenge=" + codeChallenge) query.push("code_challenge_method=S256") // storing the Code Verifier so it can be sent to the token endpoint // when exchanging the Authorization Code for an Access Token auth.codeVerifier = codeVerifier } let { additionalQueryStringParams } = authConfigs for (let key in additionalQueryStringParams) { if (typeof additionalQueryStringParams[key] !== "undefined") { query.push([key, additionalQueryStringParams[key]].map(encodeURIComponent).join("=")) } } const authorizationUrl = schema.get("authorizationUrl") const sanitizedAuthorizationUrl = sanitizeUrl(authorizationUrl) let url = [sanitizedAuthorizationUrl, query.join("&")].join(authorizationUrl.indexOf("?") === -1 ? "?" : "&") // pass action authorizeOauth2 and authentication data through window // to authorize with oauth2 let callback if (flow === "implicit") { callback = authActions.preAuthorizeImplicit } else if (authConfigs.useBasicAuthenticationWithAccessCodeGrant) { callback = authActions.authorizeAccessCodeWithBasicAuthentication } else { callback = authActions.authorizeAccessCodeWithFormParams } win.swaggerUIRedirectOauth2 = { auth: auth, state: state, redirectUrl: redirectUrl, callback: callback, errCb: errActions.newAuthErr } win.open(url) }