icynet-auth-server/src/modules/oauth2/adapter/code.adapter.ts

import { OAuth2CodeAdapter, OAuth2Code } from '@icynet/oauth2-provider';
import { OAuth2TokenType } from 'src/modules/objects/oauth2-token/oauth2-token.entity';
import { TokenService } from 'src/modules/utility/services/token.service';
import { OAuth2ClientService } from 'src/modules/objects/oauth2-client/oauth2-client.service';
import { UserService } from 'src/modules/objects/user/user.service';
import { OAuth2TokenService } from 'src/modules/objects/oauth2-token/oauth2-token.service';
import { FormUtilityService } from 'src/modules/utility/services/form-utility.service';
import { Injectable } from '@nestjs/common';

@Injectable()
export class CodeAdapter implements OAuth2CodeAdapter {
  constructor(
    private readonly token: TokenService,
    private readonly tokenService: OAuth2TokenService,
    private readonly clientService: OAuth2ClientService,
    private readonly userService: UserService,
    private readonly form: FormUtilityService,
  ) {}

  ttl = 3600;
  challengeMethods = ['plain', 'S256'];

  async create(
    userId: number,
    clientId: string,
    scope: string | string[],
    ttl: number,
    nonce?: string,
    codeChallenge?: string,
    codeChallengeMethod?: 'plain' | 'S256',
  ): Promise<string> {
    const client = await this.clientService.getById(clientId);
    const user = await this.userService.getById(userId);
    const accessToken = this.token.generateString(64);

    // Standardize scope value
    const scopes = (
      !Array.isArray(scope) ? this.form.splitScope(scope) : scope
    ).join(' ');

    const expiresAt = new Date(Date.now() + ttl * 1000);
    const pcke =
      codeChallenge && codeChallengeMethod
        ? `${this.challengeMethods.indexOf(
            codeChallengeMethod,
          )}:${codeChallenge}`
        : null;

    this.tokenService.insertToken(
      accessToken,
      OAuth2TokenType.CODE,
      client,
      scopes,
      expiresAt,
      user,
      nonce,
      pcke,
    );

    return accessToken;
  }

  async fetchByCode(code: string | OAuth2Code): Promise<OAuth2Code> {
    const findBy = typeof code === 'string' ? code : code.code;
    const find = await this.tokenService.fetchByToken(
      findBy,
      OAuth2TokenType.CODE,
    );

    if (!find) {
      return null;
    }

    let codeChallenge: string;
    let codeChallengeMethod: 'plain' | 'S256';
    if (find.pcke) {
      codeChallengeMethod = this.challengeMethods[
        Number(find.pcke.substring(0, 1))
      ] as 'plain' | 'S256';
      codeChallenge = find.pcke.substring(2);
    }

    return {
      ...find,
      code: find.token,
      client_id: find.client.client_id,
      user_id: find.user.id,
      code_challenge: codeChallenge,
      code_challenge_method: codeChallengeMethod,
    };
  }

  async removeByCode(code: string | OAuth2Code): Promise<boolean> {
    const findBy = typeof code === 'string' ? code : code.code;
    const find = await this.tokenService.fetchByToken(
      findBy,
      OAuth2TokenType.CODE,
    );
    this.tokenService.remove(find);
    return true;
  }

  getUserId(code: OAuth2Code): string {
    return code.user_id as string;
  }

  getClientId(code: OAuth2Code): string {
    return code.client_id as string;
  }

  getScope(code: OAuth2Code): string {
    return code.scope;
  }

  checkTTL(code: OAuth2Code): boolean {
    return code.expires_at.getTime() > Date.now();
  }

  getCodeChallenge(code: OAuth2Code) {
    return {
      method: code.code_challenge_method,
      challenge: code.code_challenge,
    };
  }
}
Initial service setup 2022-03-09 18:37:04 +00:00			`import { OAuth2CodeAdapter, OAuth2Code } from '@icynet/oauth2-provider';`
			`import { OAuth2TokenType } from 'src/modules/objects/oauth2-token/oauth2-token.entity';`
updates 2024-03-12 15:49:06 +00:00			`import { TokenService } from 'src/modules/utility/services/token.service';`
			`import { OAuth2ClientService } from 'src/modules/objects/oauth2-client/oauth2-client.service';`
			`import { UserService } from 'src/modules/objects/user/user.service';`
			`import { OAuth2TokenService } from 'src/modules/objects/oauth2-token/oauth2-token.service';`
			`import { FormUtilityService } from 'src/modules/utility/services/form-utility.service';`
			`import { Injectable } from '@nestjs/common';`

			`@Injectable()`
Initial service setup 2022-03-09 18:37:04 +00:00			`export class CodeAdapter implements OAuth2CodeAdapter {`
updates 2024-03-12 15:49:06 +00:00			`constructor(`
			`private readonly token: TokenService,`
			`private readonly tokenService: OAuth2TokenService,`
			`private readonly clientService: OAuth2ClientService,`
			`private readonly userService: UserService,`
			`private readonly form: FormUtilityService,`
			`) {}`
Initial service setup 2022-03-09 18:37:04 +00:00
			`ttl = 3600;`
actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00			`challengeMethods = ['plain', 'S256'];`
Initial service setup 2022-03-09 18:37:04 +00:00
			`async create(`
			`userId: number,`
			`clientId: string,`
			`scope: string \| string[],`
			`ttl: number,`
jwt issuing 2022-09-16 15:11:36 +00:00			`nonce?: string,`
actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00			`codeChallenge?: string,`
			`codeChallengeMethod?: 'plain' \| 'S256',`
Initial service setup 2022-03-09 18:37:04 +00:00			`): Promise<string> {`
updates 2024-03-12 15:49:06 +00:00			`const client = await this.clientService.getById(clientId);`
			`const user = await this.userService.getById(userId);`
			`const accessToken = this.token.generateString(64);`
Initial service setup 2022-03-09 18:37:04 +00:00
			`// Standardize scope value`
			`const scopes = (`
updates 2024-03-12 15:49:06 +00:00			`!Array.isArray(scope) ? this.form.splitScope(scope) : scope`
Initial service setup 2022-03-09 18:37:04 +00:00			`).join(' ');`

			`const expiresAt = new Date(Date.now() + ttl * 1000);`
actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00			`const pcke =`
			`codeChallenge && codeChallengeMethod`
			? `${this.challengeMethods.indexOf(
			`codeChallengeMethod,`
			)}:${codeChallenge}`
			`: null;`
Initial service setup 2022-03-09 18:37:04 +00:00
updates 2024-03-12 15:49:06 +00:00			`this.tokenService.insertToken(`
Initial service setup 2022-03-09 18:37:04 +00:00			`accessToken,`
			`OAuth2TokenType.CODE,`
			`client,`
			`scopes,`
			`expiresAt,`
			`user,`
jwt issuing 2022-09-16 15:11:36 +00:00			`nonce,`
actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00			`pcke,`
Initial service setup 2022-03-09 18:37:04 +00:00			`);`

			`return accessToken;`
			`}`

			`async fetchByCode(code: string \| OAuth2Code): Promise<OAuth2Code> {`
			`const findBy = typeof code === 'string' ? code : code.code;`
updates 2024-03-12 15:49:06 +00:00			`const find = await this.tokenService.fetchByToken(`
Initial service setup 2022-03-09 18:37:04 +00:00			`findBy,`
			`OAuth2TokenType.CODE,`
			`);`

fixes 2022-03-26 07:22:14 +00:00			`if (!find) {`
			`return null;`
			`}`

actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00			`let codeChallenge: string;`
			`let codeChallengeMethod: 'plain' \| 'S256';`
			`if (find.pcke) {`
			`codeChallengeMethod = this.challengeMethods[`
			`Number(find.pcke.substring(0, 1))`
			`] as 'plain' \| 'S256';`
			`codeChallenge = find.pcke.substring(2);`
			`}`

Initial service setup 2022-03-09 18:37:04 +00:00			`return {`
			`...find,`
			`code: find.token,`
			`client_id: find.client.client_id,`
			`user_id: find.user.id,`
actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00			`code_challenge: codeChallenge,`
			`code_challenge_method: codeChallengeMethod,`
Initial service setup 2022-03-09 18:37:04 +00:00			`};`
			`}`

			`async removeByCode(code: string \| OAuth2Code): Promise<boolean> {`
			`const findBy = typeof code === 'string' ? code : code.code;`
updates 2024-03-12 15:49:06 +00:00			`const find = await this.tokenService.fetchByToken(`
Initial service setup 2022-03-09 18:37:04 +00:00			`findBy,`
			`OAuth2TokenType.CODE,`
			`);`
updates 2024-03-12 15:49:06 +00:00			`this.tokenService.remove(find);`
Initial service setup 2022-03-09 18:37:04 +00:00			`return true;`
			`}`

			`getUserId(code: OAuth2Code): string {`
			`return code.user_id as string;`
			`}`

			`getClientId(code: OAuth2Code): string {`
			`return code.client_id as string;`
			`}`

			`getScope(code: OAuth2Code): string {`
			`return code.scope;`
			`}`

			`checkTTL(code: OAuth2Code): boolean {`
			`return code.expires_at.getTime() > Date.now();`
			`}`
actually implement oauth2 pcke, drop image scope 2022-12-03 08:02:58 +00:00
			`getCodeChallenge(code: OAuth2Code) {`
			`return {`
			`method: code.code_challenge_method,`
			`challenge: code.code_challenge,`
			`};`
			`}`
Initial service setup 2022-03-09 18:37:04 +00:00			`}`