Skip to content

Commit

Permalink
Enhanced Backend Functionality for Service Authorization (#274)
Browse files Browse the repository at this point in the history
Co-authored-by: Nam Le <hoangnam.le@bentley.com>
  • Loading branch information
franklbh and hl662 authored Nov 21, 2024
1 parent bec9c17 commit ed9fb12
Show file tree
Hide file tree
Showing 5 changed files with 67 additions and 30 deletions.
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
{
"type": "minor",
"comment": "a new backend function that uses the ServiceAuthorizationClient to get an access token",
"packageName": "@itwin/oidc-signin-tool",
"email": "Frank.Li@bentley.com",
"dependentChangeType": "patch"
}
8 changes: 3 additions & 5 deletions package.json
Original file line number Diff line number Diff line change
Expand Up @@ -33,9 +33,7 @@
"url": "https://github.com/iTwin/auth-clients"
},
"devDependencies": {
"beachball": "^2.43.1",
"lage": "^2.7.18",
"path-browserify": "^1.0.0",
"process": "^0.11.10"
"beachball": "^2.49.1",
"lage": "^2.11.13"
}
}
}
18 changes: 17 additions & 1 deletion packages/oidc-signin-tool/src/certa/certaBackend.ts
Original file line number Diff line number Diff line change
Expand Up @@ -7,9 +7,11 @@ import * as fs from "fs";
import * as path from "path";
import type { AccessToken } from "@itwin/core-bentley";
import { registerBackendCallback } from "@itwin/certa/lib/utils/CallbackUtils";
import type { ServiceAuthorizationClientConfiguration } from "@itwin/service-authorization";
import { ServiceAuthorizationClient } from "@itwin/service-authorization";
import type { TestBrowserAuthorizationClientConfiguration, TestUserCredentials } from "../TestUsers";
import { TestUtility } from "../TestUtility";
import { getTokenCallbackName } from "./certaCommon";
import { getServiceAuthTokenCallbackName, getTokenCallbackName } from "./certaCommon";

// A backend to use within Certa's `backendInitModule` to setup OIDC sign-in.

Expand Down Expand Up @@ -59,9 +61,23 @@ async function signin(user: TestUserCredentials, oidcConfig?: TestBrowserAuthori
return token;
}

async function signinWithServiceAuthClient(oidcConfig: ServiceAuthorizationClientConfiguration): Promise<string> {
const serviceAuthClient = new ServiceAuthorizationClient(oidcConfig);
const accessToken = await serviceAuthClient.getAccessToken();
if (!accessToken) {
throw new Error("Failed to retrieve access token from ServiceAuthorizationClient.");
}

return accessToken;
}

registerBackendCallback(
getTokenCallbackName,
async (user: any, oidcConfig?: any): Promise<string> => {
return signin(user, oidcConfig);
},
);

registerBackendCallback(getServiceAuthTokenCallbackName, async (oidcConfig: ServiceAuthorizationClientConfiguration): Promise<string> => {
return signinWithServiceAuthClient(oidcConfig);
});
10 changes: 10 additions & 0 deletions packages/oidc-signin-tool/src/certa/certaCommon.ts
Original file line number Diff line number Diff line change
Expand Up @@ -4,9 +4,11 @@
*--------------------------------------------------------------------------------------------*/
import { executeBackendCallback } from "@itwin/certa/lib/utils/CallbackUtils";
import type { TestBrowserAuthorizationClientConfiguration, TestUserCredentials } from "../TestUsers";
import type { ServiceAuthorizationClientConfiguration } from "@itwin/service-authorization";

// Shared by both the frontend and backend side of the tests
export const getTokenCallbackName = "getToken";
export const getServiceAuthTokenCallbackName = "getServiceAuthToken";

/**
* Retrieves an access token from the backend using the specified user credentials.
Expand All @@ -15,3 +17,11 @@ export async function getAccessTokenFromBackend(user: TestUserCredentials, oidcC
const accessToken = await executeBackendCallback(getTokenCallbackName, user, oidcConfig);
return accessToken;
}

/**
* Retrieves a service authorization token from the backend.
*/
export async function getServiceAuthTokenFromBackend(oidcConfig: ServiceAuthorizationClientConfiguration): Promise<string> {
const accessToken = await executeBackendCallback(getServiceAuthTokenCallbackName, oidcConfig);
return accessToken;
}
54 changes: 30 additions & 24 deletions pnpm-lock.yaml

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit ed9fb12

Please sign in to comment.