mirror of
https://github.com/advplyr/audiobookshelf.git
synced 2025-06-10 01:16:55 +02:00
Add button to populate openid URLs using the issuer URL
This commit is contained in:
advplyr
parent
c17540e191
commit
f840aa80f8
@ -15,7 +15,17 @@
|
|||||||
<div class="overflow-hidden">
|
<div class="overflow-hidden">
|
||||||
<transition name="slide">
|
<transition name="slide">
|
||||||
<div v-if="enableOpenIDAuth" class="flex flex-wrap pt-4">
|
<div v-if="enableOpenIDAuth" class="flex flex-wrap pt-4">
|
||||||
<ui-text-input-with-label ref="issuerUrl" v-model="newAuthSettings.authOpenIDIssuerURL" :disabled="savingSettings" :label="'Issuer URL'" class="mb-2" />
|
<div class="w-full flex items-center mb-2">
|
||||||
|
<div class="flex-grow">
|
||||||
|
<ui-text-input-with-label ref="issuerUrl" v-model="newAuthSettings.authOpenIDIssuerURL" :disabled="savingSettings" :label="'Issuer URL'" />
|
||||||
|
</div>
|
||||||
|
<div class="w-36 mx-1 mt-[1.375rem]">
|
||||||
|
<ui-btn class="h-[2.375rem] text-sm inline-flex items-center justify-center w-full" type="button" :padding-y="0" :padding-x="4" @click.stop="autoPopulateOIDCClick">
|
||||||
|
<span class="material-icons text-base">auto_fix_high</span>
|
||||||
|
<span class="whitespace-nowrap break-keep pl-1">Auto-populate</span></ui-btn
|
||||||
|
>
|
||||||
|
</div>
|
||||||
|
</div>
|
||||||
|
|
||||||
<ui-text-input-with-label ref="authorizationUrl" v-model="newAuthSettings.authOpenIDAuthorizationURL" :disabled="savingSettings" :label="'Authorize URL'" class="mb-2" />
|
<ui-text-input-with-label ref="authorizationUrl" v-model="newAuthSettings.authOpenIDAuthorizationURL" :disabled="savingSettings" :label="'Authorize URL'" class="mb-2" />
|
||||||
|
|
||||||
@ -83,6 +93,37 @@ export default {
|
|||||||
}
|
}
|
||||||
},
|
},
|
||||||
methods: {
|
methods: {
|
||||||
|
autoPopulateOIDCClick() {
|
||||||
|
if (!this.newAuthSettings.authOpenIDIssuerURL) {
|
||||||
|
this.$toast.error('Issuer URL required')
|
||||||
|
return
|
||||||
|
}
|
||||||
|
// Remove trailing slash
|
||||||
|
let issuerUrl = this.newAuthSettings.authOpenIDIssuerURL
|
||||||
|
if (issuerUrl.endsWith('/')) issuerUrl = issuerUrl.slice(0, -1)
|
||||||
|
|
||||||
|
// If the full config path is on the issuer url then remove it
|
||||||
|
if (issuerUrl.endsWith('/.well-known/openid-configuration')) {
|
||||||
|
issuerUrl = issuerUrl.replace('/.well-known/openid-configuration', '')
|
||||||
|
this.newAuthSettings.authOpenIDIssuerURL = this.newAuthSettings.authOpenIDIssuerURL.replace('/.well-known/openid-configuration', '')
|
||||||
|
}
|
||||||
|
|
||||||
|
this.$axios
|
||||||
|
.$get(`/auth/openid/config?issuer=${issuerUrl}`)
|
||||||
|
.then((data) => {
|
||||||
|
if (data.issuer) this.newAuthSettings.authOpenIDIssuerURL = data.issuer
|
||||||
|
if (data.authorization_endpoint) this.newAuthSettings.authOpenIDAuthorizationURL = data.authorization_endpoint
|
||||||
|
if (data.token_endpoint) this.newAuthSettings.authOpenIDTokenURL = data.token_endpoint
|
||||||
|
if (data.userinfo_endpoint) this.newAuthSettings.authOpenIDUserInfoURL = data.userinfo_endpoint
|
||||||
|
if (data.end_session_endpoint) this.newAuthSettings.authOpenIDLogoutURL = data.end_session_endpoint
|
||||||
|
if (data.jwks_uri) this.newAuthSettings.authOpenIDJwksURL = data.jwks_uri
|
||||||
|
})
|
||||||
|
.catch((error) => {
|
||||||
|
console.error('Failed to receive data', error)
|
||||||
|
const errorMsg = error.response?.data || 'Unknown error'
|
||||||
|
this.$toast.error(errorMsg)
|
||||||
|
})
|
||||||
|
},
|
||||||
validateOpenID() {
|
validateOpenID() {
|
||||||
let isValid = true
|
let isValid = true
|
||||||
if (!this.newAuthSettings.authOpenIDIssuerURL) {
|
if (!this.newAuthSettings.authOpenIDIssuerURL) {
|
||||||
|
|||||||
@ -1,3 +1,4 @@
|
|||||||
|
const axios = require('axios')
|
||||||
const passport = require('passport')
|
const passport = require('passport')
|
||||||
const bcrypt = require('./libs/bcryptjs')
|
const bcrypt = require('./libs/bcryptjs')
|
||||||
const jwt = require('./libs/jsonwebtoken')
|
const jwt = require('./libs/jsonwebtoken')
|
||||||
@ -309,6 +310,32 @@ class Auth {
|
|||||||
// on a successfull login: read the cookies and react like the client requested (callback or json)
|
// on a successfull login: read the cookies and react like the client requested (callback or json)
|
||||||
this.handleLoginSuccessBasedOnCookie.bind(this))
|
this.handleLoginSuccessBasedOnCookie.bind(this))
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Used to auto-populate the openid URLs in config/authentication
|
||||||
|
*/
|
||||||
|
router.get('/auth/openid/config', async (req, res) => {
|
||||||
|
if (!req.query.issuer) {
|
||||||
|
return res.status(400).send('Invalid request. Query param \'issuer\' is required')
|
||||||
|
}
|
||||||
|
let issuerUrl = req.query.issuer
|
||||||
|
if (issuerUrl.endsWith('/')) issuerUrl = issuerUrl.slice(0, -1)
|
||||||
|
|
||||||
|
const configUrl = `${issuerUrl}/.well-known/openid-configuration`
|
||||||
|
axios.get(configUrl).then(({ data }) => {
|
||||||
|
res.json({
|
||||||
|
issuer: data.issuer,
|
||||||
|
authorization_endpoint: data.authorization_endpoint,
|
||||||
|
token_endpoint: data.token_endpoint,
|
||||||
|
userinfo_endpoint: data.userinfo_endpoint,
|
||||||
|
end_session_endpoint: data.end_session_endpoint,
|
||||||
|
jwks_uri: data.jwks_uri
|
||||||
|
})
|
||||||
|
}).catch((error) => {
|
||||||
|
Logger.error(`[Auth] Failed to get openid configuration at "${configUrl}"`, error)
|
||||||
|
res.status(error.statusCode || 400).send(`${error.code || 'UNKNOWN'}: Failed to get openid configuration`)
|
||||||
|
})
|
||||||
|
})
|
||||||
|
|
||||||
// Logout route
|
// Logout route
|
||||||
router.post('/logout', (req, res) => {
|
router.post('/logout', (req, res) => {
|
||||||
// TODO: invalidate possible JWTs
|
// TODO: invalidate possible JWTs
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user