UNPKG

@salesforce/core/lib/deviceOauthService.js

Version:

7.29 kBJavaScriptView Raw

1"use strict";
2/*
* Copyright (c) 2020, salesforce.com, inc.
* All rights reserved.
* Licensed under the BSD 3-Clause license.
* For full license text, see LICENSE.txt file in the repo root or https://opensource.org/licenses/BSD-3-Clause
*/
8/* eslint-disable camelcase */
9/* eslint-disable @typescript-eslint/ban-types */
10Object.defineProperty(exports, "__esModule", { value: true });
11exports.DeviceOauthService = void 0;
12const transport_1 = require("jsforce/lib/transport");
13const kit_1 = require("@salesforce/kit");
14const ts_types_1 = require("@salesforce/ts-types");
15const FormData = require("form-data");
16const logger_1 = require("./logger");
17const org_1 = require("./org");
18const sfError_1 = require("./sfError");
19const messages_1 = require("./messages");
20messages_1.Messages.importMessagesDirectory(__dirname);
21const messages = messages_1.Messages.load('@salesforce/core', 'auth', ['pollingTimeout']);
22async function wait(ms = 1000) {
  return new Promise((resolve) => {
      setTimeout(resolve, ms);
  });
26}
27async function makeRequest(options) {
  const rawResponse = await new transport_1.default().httpRequest(options);
  const response = (0, kit_1.parseJsonMap)(rawResponse.body);
  if (response.error) {
      const err = new sfError_1.SfError('Request Failed.');
      err.data = Object.assign(response, { status: rawResponse.statusCode });
      throw err;
  }
  else {
      return response;
  }
38}
39/**
* Handles device based login flows
*
* Usage:
* ```
* const oauthConfig = {
*   loginUrl: this.flags.instanceurl,
*   clientId: this.flags.clientid,
* };
* const deviceOauthService = await DeviceOauthService.create(oauthConfig);
* const loginData = await deviceOauthService.requestDeviceLogin();
* console.log(loginData);
* const approval = await deviceOauthService.awaitDeviceApproval(loginData);
* const authInfo = await deviceOauthService.authorizeAndSave(approval);
* ```
*/
55class DeviceOauthService extends kit_1.AsyncCreatable {
  constructor(options) {
      super(options);
      this.pollingCount = 0;
      this.options = options;
      if (!this.options.clientId)
          this.options.clientId = org_1.DEFAULT_CONNECTED_APP_INFO.clientId;
      if (!this.options.loginUrl)
          this.options.loginUrl = org_1.AuthInfo.getDefaultInstanceUrl();
  }
  /**
   * Begin the authorization flow by requesting the login
   *
   * @returns {Promise<DeviceCodeResponse>}
   */
  async requestDeviceLogin() {
      const deviceFlowRequestUrl = this.getDeviceFlowRequestUrl();
      const loginOptions = this.getLoginOptions(deviceFlowRequestUrl);
      return makeRequest(loginOptions);
  }
  /**
   * Polls the server until successful response OR max attempts have been made
   *
   * @returns {Promise<Nullable<DeviceCodePollingResponse>>}
   */
  async awaitDeviceApproval(loginData) {
      const deviceFlowRequestUrl = this.getDeviceFlowRequestUrl();
      const pollingOptions = this.getPollingOptions(deviceFlowRequestUrl, loginData.device_code);
      const interval = kit_1.Duration.seconds(loginData.interval).milliseconds;
      return await this.pollForDeviceApproval(pollingOptions, interval);
  }
  /**
   * Creates and saves new AuthInfo
   *
   * @returns {Promise<AuthInfo>}
   */
  async authorizeAndSave(approval) {
      const authInfo = await org_1.AuthInfo.create({
          oauth2Options: {
              loginUrl: approval.instance_url,
              refreshToken: approval.refresh_token,
              clientSecret: this.options.clientSecret,
              clientId: this.options.clientId,
          },
      });
      await authInfo.save();
      return authInfo;
  }
  async init() {
      this.logger = await logger_1.Logger.child(this.constructor.name);
      this.logger.debug(`this.options.clientId: ${this.options.clientId}`);
      this.logger.debug(`this.options.loginUrl: ${this.options.loginUrl}`);
  }
  getLoginOptions(url) {
      const form = new FormData();
      form.append('client_id', (0, ts_types_1.ensureString)(this.options.clientId));
      form.append('response_type', DeviceOauthService.RESPONSE_TYPE);
      form.append('scope', DeviceOauthService.SCOPE);
      return {
          url,
          headers: { ...org_1.SFDX_HTTP_HEADERS, ...form.getHeaders() },
          method: 'POST',
          body: form.getBuffer(),
      };
  }
  getPollingOptions(url, code) {
      const form = new FormData();
      form.append('client_id', (0, ts_types_1.ensureString)(this.options.clientId));
      form.append('grant_type', DeviceOauthService.GRANT_TYPE);
      form.append('code', code);
      return {
          url,
          headers: { ...org_1.SFDX_HTTP_HEADERS, ...form.getHeaders() },
          method: 'POST',
          body: form.getBuffer(),
      };
  }
  getDeviceFlowRequestUrl() {
      return `${(0, ts_types_1.ensureString)(this.options.loginUrl)}/services/oauth2/token`;
  }
  async poll(httpRequest) {
      this.logger.debug(`polling for device approval (attempt ${this.pollingCount} of ${DeviceOauthService.POLLING_COUNT_MAX})`);
      try {
          return await makeRequest(httpRequest);
      }
      catch (e) {
          // eslint-disable-next-line @typescript-eslint/no-explicit-any
          const err = e.data;
          if (err.error && err.status === 400 && err.error === 'authorization_pending') {
              // do nothing because we're still waiting
          }
          else {
              if (err.error && err.error_description) {
                  this.logger.error(`Polling error: ${err.error}: ${err.error_description}`);
              }
              else {
                  this.logger.error('Unknown Polling Error:');
                  this.logger.error(err);
              }
              throw err;
          }
      }
  }
  shouldContinuePolling() {
      return this.pollingCount < DeviceOauthService.POLLING_COUNT_MAX;
  }
  async pollForDeviceApproval(httpRequest, interval) {
      this.logger.debug('BEGIN POLLING FOR DEVICE APPROVAL');
      let result;
      while (this.shouldContinuePolling()) {
          result = await this.poll(httpRequest);
          if (result) {
              this.logger.debug('POLLING FOR DEVICE APPROVAL SUCCESS');
              break;
          }
          else {
              this.logger.debug(`waiting ${interval} ms...`);
              await wait(interval);
              this.pollingCount += 1;
          }
      }
      if (this.pollingCount >= DeviceOauthService.POLLING_COUNT_MAX) {
          // stop polling, the user has likely abandoned the command...
          this.logger.error(`Polling timed out because max polling was hit: ${this.pollingCount}`);
          throw messages.createError('pollingTimeout');
      }
      return result;
  }
183}
184exports.DeviceOauthService = DeviceOauthService;
185DeviceOauthService.RESPONSE_TYPE = 'device_code';
186DeviceOauthService.GRANT_TYPE = 'device';
187DeviceOauthService.SCOPE = 'refresh_token web api';
188DeviceOauthService.POLLING_COUNT_MAX = 100;
189//# sourceMappingURL=deviceOauthService.js.map
\No newline at end of file

1	`"use strict";`
2	`/*`
3	`* Copyright (c) 2020, salesforce.com, inc.`
4	`* All rights reserved.`
5	`* Licensed under the BSD 3-Clause license.`
6	`* For full license text, see LICENSE.txt file in the repo root or https://opensource.org/licenses/BSD-3-Clause`
7	`*/`
8	`/* eslint-disable camelcase */`
9	`/* eslint-disable @typescript-eslint/ban-types */`
10	`Object.defineProperty(exports, "__esModule", { value: true });`
11	`exports.DeviceOauthService = void 0;`
12	`const transport_1 = require("jsforce/lib/transport");`
13	`const kit_1 = require("@salesforce/kit");`
14	`const ts_types_1 = require("@salesforce/ts-types");`
15	`const FormData = require("form-data");`
16	`const logger_1 = require("./logger");`
17	`const org_1 = require("./org");`
18	`const sfError_1 = require("./sfError");`
19	`const messages_1 = require("./messages");`
20	`messages_1.Messages.importMessagesDirectory(__dirname);`
21	`const messages = messages_1.Messages.load('@salesforce/core', 'auth', ['pollingTimeout']);`
22	`async function wait(ms = 1000) {`
23	`return new Promise((resolve) => {`
24	`setTimeout(resolve, ms);`
25	`});`
26	`}`
27	`async function makeRequest(options) {`
28	`const rawResponse = await new transport_1.default().httpRequest(options);`
29	`const response = (0, kit_1.parseJsonMap)(rawResponse.body);`
30	`if (response.error) {`
31	`const err = new sfError_1.SfError('Request Failed.');`
32	`err.data = Object.assign(response, { status: rawResponse.statusCode });`
33	`throw err;`
34	`}`
35	`else {`
36	`return response;`
37	`}`
38	`}`
39	`/**`
40	`* Handles device based login flows`
41	`*`
42	`* Usage:`
43	* ```
44	`* const oauthConfig = {`
45	`* loginUrl: this.flags.instanceurl,`
46	`* clientId: this.flags.clientid,`
47	`* };`
48	`* const deviceOauthService = await DeviceOauthService.create(oauthConfig);`
49	`* const loginData = await deviceOauthService.requestDeviceLogin();`
50	`* console.log(loginData);`
51	`* const approval = await deviceOauthService.awaitDeviceApproval(loginData);`
52	`* const authInfo = await deviceOauthService.authorizeAndSave(approval);`
53	* ```
54	`*/`
55	`class DeviceOauthService extends kit_1.AsyncCreatable {`
56	`constructor(options) {`
57	`super(options);`
58	`this.pollingCount = 0;`
59	`this.options = options;`
60	`if (!this.options.clientId)`
61	`this.options.clientId = org_1.DEFAULT_CONNECTED_APP_INFO.clientId;`
62	`if (!this.options.loginUrl)`
63	`this.options.loginUrl = org_1.AuthInfo.getDefaultInstanceUrl();`
64	`}`
65	`/**`
66	`* Begin the authorization flow by requesting the login`
67	`*`
68	`* @returns {Promise<DeviceCodeResponse>}`
69	`*/`
70	`async requestDeviceLogin() {`
71	`const deviceFlowRequestUrl = this.getDeviceFlowRequestUrl();`
72	`const loginOptions = this.getLoginOptions(deviceFlowRequestUrl);`
73	`return makeRequest(loginOptions);`
74	`}`
75	`/**`
76	`* Polls the server until successful response OR max attempts have been made`
77	`*`
78	`* @returns {Promise<Nullable<DeviceCodePollingResponse>>}`
79	`*/`
80	`async awaitDeviceApproval(loginData) {`
81	`const deviceFlowRequestUrl = this.getDeviceFlowRequestUrl();`
82	`const pollingOptions = this.getPollingOptions(deviceFlowRequestUrl, loginData.device_code);`
83	`const interval = kit_1.Duration.seconds(loginData.interval).milliseconds;`
84	`return await this.pollForDeviceApproval(pollingOptions, interval);`
85	`}`
86	`/**`
87	`* Creates and saves new AuthInfo`
88	`*`
89	`* @returns {Promise<AuthInfo>}`
90	`*/`
91	`async authorizeAndSave(approval) {`
92	`const authInfo = await org_1.AuthInfo.create({`
93	`oauth2Options: {`
94	`loginUrl: approval.instance_url,`
95	`refreshToken: approval.refresh_token,`
96	`clientSecret: this.options.clientSecret,`
97	`clientId: this.options.clientId,`
98	`},`
99	`});`
100	`await authInfo.save();`
101	`return authInfo;`
102	`}`
103	`async init() {`
104	`this.logger = await logger_1.Logger.child(this.constructor.name);`
105	this.logger.debug(`this.options.clientId: ${this.options.clientId}`);
106	this.logger.debug(`this.options.loginUrl: ${this.options.loginUrl}`);
107	`}`
108	`getLoginOptions(url) {`
109	`const form = new FormData();`
110	`form.append('client_id', (0, ts_types_1.ensureString)(this.options.clientId));`
111	`form.append('response_type', DeviceOauthService.RESPONSE_TYPE);`
112	`form.append('scope', DeviceOauthService.SCOPE);`
113	`return {`
114	`url,`
115	`headers: { ...org_1.SFDX_HTTP_HEADERS, ...form.getHeaders() },`
116	`method: 'POST',`
117	`body: form.getBuffer(),`
118	`};`
119	`}`
120	`getPollingOptions(url, code) {`
121	`const form = new FormData();`
122	`form.append('client_id', (0, ts_types_1.ensureString)(this.options.clientId));`
123	`form.append('grant_type', DeviceOauthService.GRANT_TYPE);`
124	`form.append('code', code);`
125	`return {`
126	`url,`
127	`headers: { ...org_1.SFDX_HTTP_HEADERS, ...form.getHeaders() },`
128	`method: 'POST',`
129	`body: form.getBuffer(),`
130	`};`
131	`}`
132	`getDeviceFlowRequestUrl() {`
133	return `${(0, ts_types_1.ensureString)(this.options.loginUrl)}/services/oauth2/token`;
134	`}`
135	`async poll(httpRequest) {`
136	this.logger.debug(`polling for device approval (attempt ${this.pollingCount} of ${DeviceOauthService.POLLING_COUNT_MAX})`);
137	`try {`
138	`return await makeRequest(httpRequest);`
139	`}`
140	`catch (e) {`
141	`// eslint-disable-next-line @typescript-eslint/no-explicit-any`
142	`const err = e.data;`
143	`if (err.error && err.status === 400 && err.error === 'authorization_pending') {`
144	`// do nothing because we're still waiting`
145	`}`
146	`else {`
147	`if (err.error && err.error_description) {`
148	this.logger.error(`Polling error: ${err.error}: ${err.error_description}`);
149	`}`
150	`else {`
151	`this.logger.error('Unknown Polling Error:');`
152	`this.logger.error(err);`
153	`}`
154	`throw err;`
155	`}`
156	`}`
157	`}`
158	`shouldContinuePolling() {`
159	`return this.pollingCount < DeviceOauthService.POLLING_COUNT_MAX;`
160	`}`
161	`async pollForDeviceApproval(httpRequest, interval) {`
162	`this.logger.debug('BEGIN POLLING FOR DEVICE APPROVAL');`
163	`let result;`
164	`while (this.shouldContinuePolling()) {`
165	`result = await this.poll(httpRequest);`
166	`if (result) {`
167	`this.logger.debug('POLLING FOR DEVICE APPROVAL SUCCESS');`
168	`break;`
169	`}`
170	`else {`
171	this.logger.debug(`waiting ${interval} ms...`);
172	`await wait(interval);`
173	`this.pollingCount += 1;`
174	`}`
175	`}`
176	`if (this.pollingCount >= DeviceOauthService.POLLING_COUNT_MAX) {`
177	`// stop polling, the user has likely abandoned the command...`
178	this.logger.error(`Polling timed out because max polling was hit: ${this.pollingCount}`);
179	`throw messages.createError('pollingTimeout');`
180	`}`
181	`return result;`
182	`}`
183	`}`
184	`exports.DeviceOauthService = DeviceOauthService;`
185	`DeviceOauthService.RESPONSE_TYPE = 'device_code';`
186	`DeviceOauthService.GRANT_TYPE = 'device';`
187	`DeviceOauthService.SCOPE = 'refresh_token web api';`
188	`DeviceOauthService.POLLING_COUNT_MAX = 100;`
189	`//# sourceMappingURL=deviceOauthService.js.map`
\	No newline at end of file