Trang chủ Khám phá Trợ giúp
Đăng nhập
xusl
/
pfr
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: 3a409ce79c
Branches Tags
pfr
/
ui
/
node
/
node_modules
/
npm
/
lib
/
auth
/
sso.js

sso.js 2.4 KB
Lịch sử Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. // XXX: To date, npm Enterprise Legacy is the only system that ever
    2. 

  2. // implemented support for this type of login.  A better way to do
    3. 

  3. // SSO is to use the WebLogin type of login supported by the npm-login
    4. 

  4. // module.  This more forward-looking login style is, ironically,
    5. 

  5. // supported by the '--auth-type=legacy' type of login.
    6. 

  6. // When and if npm Enterprise Legacy is no longer supported by the npm
    7. 

  7. // CLI, we can remove this, and fold the lib/auth/legacy.js back into
    8. 

  8. // lib/adduser.js
    9. 

  9. 

  10. const log = require('npmlog')
    11. 

  11. const profile = require('npm-profile')
    12. 

  12. const npmFetch = require('npm-registry-fetch')
    13. 

  13. 

  14. const openUrl = require('../utils/open-url.js')
    15. 

  15. const otplease = require('../utils/otplease.js')
    16. 

  16. 

  17. const pollForSession = ({ registry, token, opts }) => {
    18. 

  18.   log.info('adduser', 'Polling for validated SSO session')
    19. 

  19.   return npmFetch.json(
    20. 

  20.     '/-/whoami', { ...opts, registry, forceAuth: { token } }
    21. 

  21.   ).then(
    22. 

  22.     ({ username }) => username,
    23. 

  23.     err => {
    24. 

  24.       if (err.code === 'E401') {
    25. 

  25.         return sleep(opts.ssoPollFrequency).then(() => {
    26. 

  26.           return pollForSession({ registry, token, opts })
    27. 

  27.         })
    28. 

  28.       } else
    29. 

  29.         throw err
    30. 

  30.     }
    31. 

  31.   )
    32. 

  32. }
    33. 

  33. 

  34. function sleep (time) {
    35. 

  35.   return new Promise((resolve) => setTimeout(resolve, time))
    36. 

  36. }
    37. 

  37. 

  38. const login = async (npm, { creds, registry, scope }) => {
    39. 

  39.   log.warn('deprecated', 'SSO --auth-type is deprecated')
    40. 

  40. 

  41.   const opts = { ...npm.flatOptions, creds, registry, scope }
    42. 

  42.   const { ssoType } = opts
    43. 

  43. 

  44.   if (!ssoType)
    45. 

  45.     throw new Error('Missing option: sso-type')
    46. 

  46. 

  47.   // We're reusing the legacy login endpoint, so we need some dummy
    48. 

  48.   // stuff here to pass validation. They're never used.
    49. 

  49.   const auth = {
    50. 

  50.     username: 'npm_' + ssoType + '_auth_dummy_user',
    51. 

  51.     password: 'placeholder',
    52. 

  52.     email: 'support@npmjs.com',
    53. 

  53.     authType: ssoType,
    54. 

  54.   }
    55. 

  55. 

  56.   const { token, sso } = await otplease(opts,
    57. 

  57.     opts => profile.loginCouch(auth.username, auth.password, opts)
    58. 

  58.   )
    59. 

  59. 

  60.   if (!token)
    61. 

  61.     throw new Error('no SSO token returned')
    62. 

  62.   if (!sso)
    63. 

  63.     throw new Error('no SSO URL returned by services')
    64. 

  64. 

  65.   await openUrl(npm, sso, 'to complete your login please visit')
    66. 

  66. 

  67.   const username = await pollForSession({ registry, token, opts })
    68. 

  68. 

  69.   log.info('adduser', `Authorized user ${username}`)
    70. 

  70. 

  71.   const scopeMessage = scope ? ' to scope ' + scope : ''
    72. 

  72.   const message = `Logged in as ${username}${scopeMessage} on ${registry}.`
    73. 

  73. 

  74.   return {
    75. 

  75.     message,
    76. 

  76.     newCreds: { token },
    77. 

  77.   }
    78. 

  78. }
    79. 

  79. 

  80. module.exports = login
    81.