richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2136 Commits
3 Branches
121 Tags
48 MiB
Tree: f0da041c2a
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f0da041c2a'
${ noResults }
wiki/server/modules/authentication/keycloak/authentication.js

68 lines
2.1 KiB
Raw Normal View History

feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
fix: handle multi social auth strategies
3 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
feat: social login providers with dynamic instances
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
feat: social login providers with dynamic instances
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
feat: social login providers with dynamic instances
4 years ago
fix(auth): keycloak authentication post logout redirect for Keycloak 18+ (#5878)
1 year ago
fix: use fullname from keycloak profile info with username as fallback (#1888)
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
feat: social login providers with dynamic instances
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
fix: use fullname from keycloak profile info with username as fallback (#1888)
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
feat: social login providers with dynamic instances
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
fix(auth): keycloak authentication post logout redirect for Keycloak 18+ (#5878)
1 year ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
feat: logout by auth strategy + keycloak implementation
4 years ago
fix(auth): keycloak authentication post logout redirect for Keycloak 18+ (#5878)
1 year ago
feat: logout by auth strategy + keycloak implementation
4 years ago
fix(auth): keycloak authentication post logout redirect for Keycloak 18+ (#5878)
1 year ago
feat: logout by auth strategy + keycloak implementation
4 years ago
feat: add keycloak auth provider (#1004) * added custom keycloak authentication. * update readme. * updated readme. * reverted README for PR. * fix: use async/await * changed callback parameter name from done to cb. * fix: keycloak description + website * fix: keycloak logo
5 years ago
  1. const _ = require('lodash')
  3. /* global WIKI */
  5. // ------------------------------------
  6. // Keycloak Account
  7. // ------------------------------------
  9. const KeycloakStrategy = require('@exlinc/keycloak-passport')
  11. module.exports = {
  12. init (passport, conf) {
  13. passport.use(conf.key,
  14. new KeycloakStrategy({
  15. authorizationURL: conf.authorizationURL,
  16. userInfoURL: conf.userInfoURL,
  17. tokenURL: conf.tokenURL,
  18. host: conf.host,
  19. realm: conf.realm,
  20. clientID: conf.clientId,
  21. clientSecret: conf.clientSecret,
  22. callbackURL: conf.callbackURL,
  23. passReqToCallback: true
  24. }, async (req, accessToken, refreshToken, results, profile, cb) => {
  25. let displayName = profile.username
  26. if (_.isString(profile.fullName) && profile.fullName.length > 0) {
  27. displayName = profile.fullName
  28. }
  29. try {
  30. const user = await WIKI.models.users.processProfile({
  31. providerKey: req.params.strategy,
  32. profile: {
  33. id: profile.keycloakId,
  34. email: profile.email,
  35. name: displayName,
  36. picture: ''
  37. }
  38. })
  39. req.session.keycloak_id_token = results.id_token
  40. cb(null, user)
  41. } catch (err) {
  42. cb(err, null)
  43. }
  44. })
  45. )
  46. },
  47. logout (conf, context) {
  48. if (!conf.logoutUpstream) {
  49. return '/'
  50. } else if (conf.logoutURL && conf.logoutURL.length > 5) {
  51. const idToken = context.req.session.keycloak_id_token
  52. const redirURL = encodeURIComponent(WIKI.config.host)
  53. if (conf.logoutUpstreamRedirectLegacy) {
  54. // keycloak < 18
  55. return `${conf.logoutURL}?redirect_uri=${redirURL}`
  56. } else if (idToken) {
  57. // keycloak 18+
  58. return `${conf.logoutURL}?post_logout_redirect_uri=${redirURL}&id_token_hint=${idToken}`
  59. } else {
  60. // fall back to no redirect if keycloak_id_token isn't available
  61. return conf.logoutURL
  62. }
  63. } else {
  64. WIKI.logger.warn('Keycloak logout URL is not configured!')
  65. return '/'
  66. }
  67. }
  68. }