IcyNet.eu/server/api/oauth2/controller/introspection.js

import { InvalidRequest } from '../error'
import { data as dataResponse } from '../response'
import wrap from '../wrap'

export const introspection = wrap(async function (req, res) {
  let clientId = null
  let clientSecret = null

  if (req.body.client_id && req.body.client_secret) {
    clientId = req.body.client_id
    clientSecret = req.body.client_secret
    console.debug('Client credentials parsed from body parameters ', clientId, clientSecret)
  } else {
    if (!req.headers || !req.headers.authorization) {
      throw new InvalidRequest('No authorization header passed')
    }

    let pieces = req.headers.authorization.split(' ', 2)
    if (!pieces || pieces.length !== 2) {
      throw new InvalidRequest('Authorization header is corrupted')
    }

    if (pieces[0] !== 'Basic') {
      throw new InvalidRequest('Unsupported authorization method:', pieces[0])
    }

    pieces = Buffer.from(pieces[1], 'base64').toString('ascii').split(':', 2)
    if (!pieces || pieces.length !== 2) {
      throw new InvalidRequest('Authorization header has corrupted data')
    }

    clientId = pieces[0]
    clientSecret = pieces[1]
    console.debug('Client credentials parsed from basic auth header: ', clientId, clientSecret)
  }

  if (!req.body.token) {
    throw new InvalidRequest('Token not provided in request body')
  }

  const token = await req.oauth2.model.accessToken.fetchByToken(req.body.token)
  if (!token) {
    throw new InvalidRequest('Token does not exist')
  }

  const ttl = req.oauth2.model.accessToken.getTTL(token)
  const resObj = {
    token_type: 'bearer',
    token: token.token,
    expires_in: Math.floor(ttl / 1000)
  }

  dataResponse(req, res, resObj)
})
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`import { InvalidRequest } from '../error'`
			`import { data as dataResponse } from '../response'`
Clean up OAuth2 provider code, support multiple request types in preparation for OIDC 2020-06-05 15:18:23 +00:00			`import wrap from '../wrap'`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`export const introspection = wrap(async function (req, res) {`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`let clientId = null`
			`let clientSecret = null`

			`if (req.body.client_id && req.body.client_secret) {`
			`clientId = req.body.client_id`
			`clientSecret = req.body.client_secret`
			`console.debug('Client credentials parsed from body parameters ', clientId, clientSecret)`
			`} else {`
			`if (!req.headers \|\| !req.headers.authorization) {`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`throw new InvalidRequest('No authorization header passed')`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`}`

			`let pieces = req.headers.authorization.split(' ', 2)`
			`if (!pieces \|\| pieces.length !== 2) {`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`throw new InvalidRequest('Authorization header is corrupted')`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`}`

			`if (pieces[0] !== 'Basic') {`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`throw new InvalidRequest('Unsupported authorization method:', pieces[0])`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`}`

lint everything using standard 2017-08-24 16:23:03 +00:00			`pieces = Buffer.from(pieces[1], 'base64').toString('ascii').split(':', 2)`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`if (!pieces \|\| pieces.length !== 2) {`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`throw new InvalidRequest('Authorization header has corrupted data')`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`}`

			`clientId = pieces[0]`
			`clientSecret = pieces[1]`
			`console.debug('Client credentials parsed from basic auth header: ', clientId, clientSecret)`
			`}`

			`if (!req.body.token) {`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`throw new InvalidRequest('Token not provided in request body')`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const token = await req.oauth2.model.accessToken.fetchByToken(req.body.token)`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`if (!token) {`
Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`throw new InvalidRequest('Token does not exist')`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`}`

Maintenance commit. 2020-05-28 18:30:21 +00:00			`const ttl = req.oauth2.model.accessToken.getTTL(token)`
			`const resObj = {`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`token_type: 'bearer',`
			`token: token.token,`
			`expires_in: Math.floor(ttl / 1000)`
			`}`

Major refactor and code modernization, vol. 1 2020-12-13 14:36:07 +00:00			`dataResponse(req, res, resObj)`
OAuth2 provider implemented 2017-08-23 20:13:45 +00:00			`})`