@backstage/plugin-auth-backend-module-bitbucket-server-provider 0.0.0-nightly-20240910023018

package/CHANGELOG.md

@@ -0,0 +1,13 @@
+# @backstage/plugin-auth-backend-module-bitbucket-server-provider
+
+## 0.0.0-nightly-20240910023018
+
+### Minor Changes
+
+- 527d973: New module for `@backstage/plugin-auth-backend` that adds a `Bitbucket Server` auth provider.
+
+### Patch Changes
+
+- Updated dependencies
+  - @backstage/backend-plugin-api@0.0.0-nightly-20240910023018
+  - @backstage/plugin-auth-node@0.0.0-nightly-20240910023018

package/README.md

@@ -0,0 +1,8 @@
+# Auth Module: Bitbucket Server Provider
+
+This module provides an Bitbucket Server auth provider implementation for `@backstage/plugin-auth-backend`.
+
+## Links
+
+- [Repository](https://gitlab.com/backstage/backstage/tree/master/plugins/auth-backend-module-bitbucket-server-provider)
+- [Backstage Project Homepage](https://backstage.io)

package/config.d.ts

@@ -0,0 +1,34 @@
+/*
+ * Copyright 2024 The Backstage Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+export interface Config {
+  auth?: {
+    providers?: {
+      /** @visibility frontend */
+      bitbucketServer?: {
+        [authEnv: string]: {
+          clientId: string;
+          /**
+           * @visibility secret
+           */
+          clientSecret: string;
+          host: string;
+          callbackUrl?: string;
+        };
+      };
+    };
+  };
+}

package/dist/index.cjs.js

@@ -0,0 +1,165 @@
+'use strict';
+
+Object.defineProperty(exports, '__esModule', { value: true });
+
+var passportOauth2 = require('passport-oauth2');
+var pluginAuthNode = require('@backstage/plugin-auth-node');
+var fetch = require('node-fetch');
+var backendPluginApi = require('@backstage/backend-plugin-api');
+
+function _interopDefaultCompat (e) { return e && typeof e === 'object' && 'default' in e ? e : { default: e }; }
+
+var fetch__default = /*#__PURE__*/_interopDefaultCompat(fetch);
+
+async function fetchProfile(options) {
+  const { host, accessToken } = options;
+  let whoAmIResponse;
+  try {
+    whoAmIResponse = await fetch__default.default(
+      `https://${host}/plugins/servlet/applinks/whoami`,
+      {
+        headers: {
+          Authorization: `Bearer ${accessToken}`
+        }
+      }
+    );
+  } catch (e) {
+    throw new Error(`Failed to retrieve the username of the logged in user`);
+  }
+  const username = whoAmIResponse.headers.get("X-Ausername");
+  if (!username) {
+    throw new Error(`Failed to retrieve the username of the logged in user`);
+  }
+  let userResponse;
+  try {
+    userResponse = await fetch__default.default(
+      `https://${host}/rest/api/latest/users/${username}?avatarSize=256`,
+      {
+        headers: {
+          Authorization: `Bearer ${accessToken}`
+        }
+      }
+    );
+  } catch (e) {
+    throw new Error(`Failed to retrieve the user '${username}'`);
+  }
+  if (!userResponse.ok) {
+    throw new Error(`Failed to retrieve the user '${username}'`);
+  }
+  const user = await userResponse.json();
+  const passportProfile = {
+    provider: "bitbucketServer",
+    id: user.id.toString(),
+    displayName: user.displayName,
+    username: user.name,
+    emails: [
+      {
+        value: user.emailAddress
+      }
+    ]
+  };
+  if (user.avatarUrl) {
+    passportProfile.photos = [{ value: `https://${host}${user.avatarUrl}` }];
+  }
+  return passportProfile;
+}
+
+const bitbucketServerAuthenticator = pluginAuthNode.createOAuthAuthenticator({
+  defaultProfileTransform: pluginAuthNode.PassportOAuthAuthenticatorHelper.defaultProfileTransform,
+  initialize({ callbackUrl, config }) {
+    const clientID = config.getString("clientId");
+    const clientSecret = config.getString("clientSecret");
+    const host = config.getString("host");
+    const callbackURL = config.getOptionalString("callbackUrl") ?? callbackUrl;
+    const helper = pluginAuthNode.PassportOAuthAuthenticatorHelper.from(
+      new passportOauth2.Strategy(
+        {
+          clientID,
+          clientSecret,
+          callbackURL,
+          authorizationURL: `https://${host}/rest/oauth2/latest/authorize`,
+          tokenURL: `https://${host}/rest/oauth2/latest/token`
+        },
+        (accessToken, refreshToken, params, fullProfile, done) => {
+          done(
+            void 0,
+            { fullProfile, params, accessToken },
+            { refreshToken }
+          );
+        }
+      )
+    );
+    return { helper, host };
+  },
+  async start(input, { helper }) {
+    return helper.start(input, {
+      accessType: "offline",
+      prompt: "consent"
+    });
+  },
+  async authenticate(input, { helper, host }) {
+    const result = await helper.authenticate(input);
+    const fullProfile = await fetchProfile({
+      host,
+      accessToken: result.session.accessToken
+    });
+    return { ...result, fullProfile };
+  },
+  async refresh(input, { helper, host }) {
+    const result = await helper.refresh(input);
+    const fullProfile = await fetchProfile({
+      host,
+      accessToken: result.session.accessToken
+    });
+    return { ...result, fullProfile };
+  }
+});
+
+exports.bitbucketServerSignInResolvers = void 0;
+((bitbucketServerSignInResolvers2) => {
+  bitbucketServerSignInResolvers2.emailMatchingUserEntityProfileEmail = pluginAuthNode.createSignInResolverFactory({
+    create() {
+      return async (info, ctx) => {
+        const { profile } = info;
+        if (!profile.email) {
+          throw new Error(
+            "Login failed, user profile does not contain an email"
+          );
+        }
+        return ctx.signInWithCatalogUser({
+          filter: {
+            "spec.profile.email": profile.email
+          }
+        });
+      };
+    }
+  });
+})(exports.bitbucketServerSignInResolvers || (exports.bitbucketServerSignInResolvers = {}));
+
+const authModuleBitbucketServerProvider = backendPluginApi.createBackendModule({
+  pluginId: "auth",
+  moduleId: "bitbucket-server-provider",
+  register(reg) {
+    reg.registerInit({
+      deps: {
+        providers: pluginAuthNode.authProvidersExtensionPoint
+      },
+      async init({ providers }) {
+        providers.registerProvider({
+          providerId: "bitbucketServer",
+          factory: pluginAuthNode.createOAuthProviderFactory({
+            authenticator: bitbucketServerAuthenticator,
+            signInResolverFactories: {
+              ...exports.bitbucketServerSignInResolvers,
+              ...pluginAuthNode.commonSignInResolvers
+            }
+          })
+        });
+      }
+    });
+  }
+});
+
+exports.bitbucketServerAuthenticator = bitbucketServerAuthenticator;
+exports.default = authModuleBitbucketServerProvider;
+//# sourceMappingURL=index.cjs.js.map

package/dist/index.cjs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.cjs.js","sources":["../src/helpers.ts","../src/authenticator.ts","../src/resolvers.ts","../src/module.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport fetch from 'node-fetch';\nimport { PassportProfile } from '@backstage/plugin-auth-node';\n\nexport async function fetchProfile(options: {\n  host: string;\n  accessToken: string;\n}): Promise<PassportProfile> {\n  const { host, accessToken } = options;\n  // Get current user name\n  let whoAmIResponse;\n  try {\n    whoAmIResponse = await fetch(\n      `https://${host}/plugins/servlet/applinks/whoami`,\n      {\n        headers: {\n          Authorization: `Bearer ${accessToken}`,\n        },\n      },\n    );\n  } catch (e) {\n    throw new Error(`Failed to retrieve the username of the logged in user`);\n  }\n\n  // A response.ok check here would be worthless as the Bitbucket API always returns 200 OK for this call\n  const username = whoAmIResponse.headers.get('X-Ausername');\n  if (!username) {\n    throw new Error(`Failed to retrieve the username of the logged in user`);\n  }\n\n  let userResponse;\n  try {\n    userResponse = await fetch(\n      `https://${host}/rest/api/latest/users/${username}?avatarSize=256`,\n      {\n        headers: {\n          Authorization: `Bearer ${accessToken}`,\n        },\n      },\n    );\n  } catch (e) {\n    throw new Error(`Failed to retrieve the user '${username}'`);\n  }\n\n  if (!userResponse.ok) {\n    throw new Error(`Failed to retrieve the user '${username}'`);\n  }\n\n  const user = await userResponse.json();\n\n  const passportProfile = {\n    provider: 'bitbucketServer',\n    id: user.id.toString(),\n    displayName: user.displayName,\n    username: user.name,\n    emails: [\n      {\n        value: user.emailAddress,\n      },\n    ],\n  } as PassportProfile;\n\n  if (user.avatarUrl) {\n    passportProfile.photos = [{ value: `https://${host}${user.avatarUrl}` }];\n  }\n\n  return passportProfile;\n}\n","/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport { Strategy as OAuth2Strategy, VerifyCallback } from 'passport-oauth2';\nimport {\n  createOAuthAuthenticator,\n  PassportOAuthAuthenticatorHelper,\n  PassportProfile,\n} from '@backstage/plugin-auth-node';\nimport { fetchProfile } from './helpers';\n\n/** @public */\nexport const bitbucketServerAuthenticator = createOAuthAuthenticator({\n  defaultProfileTransform:\n    PassportOAuthAuthenticatorHelper.defaultProfileTransform,\n  initialize({ callbackUrl, config }) {\n    const clientID = config.getString('clientId');\n    const clientSecret = config.getString('clientSecret');\n    const host = config.getString('host');\n    const callbackURL = config.getOptionalString('callbackUrl') ?? callbackUrl;\n\n    const helper = PassportOAuthAuthenticatorHelper.from(\n      new OAuth2Strategy(\n        {\n          clientID,\n          clientSecret,\n          callbackURL,\n          authorizationURL: `https://${host}/rest/oauth2/latest/authorize`,\n          tokenURL: `https://${host}/rest/oauth2/latest/token`,\n        },\n        (\n          accessToken: string,\n          refreshToken: string,\n          params: any,\n          fullProfile: PassportProfile,\n          done: VerifyCallback,\n        ) => {\n          done(\n            undefined,\n            { fullProfile, params, accessToken },\n            { refreshToken },\n          );\n        },\n      ),\n    );\n\n    return { helper, host };\n  },\n\n  async start(input, { helper }) {\n    return helper.start(input, {\n      accessType: 'offline',\n      prompt: 'consent',\n    });\n  },\n\n  async authenticate(input, { helper, host }) {\n    const result = await helper.authenticate(input);\n\n    // The OAuth2 strategy does not return a user profile, so we fetch it manually\n    const fullProfile = await fetchProfile({\n      host,\n      accessToken: result.session.accessToken,\n    });\n\n    return { ...result, fullProfile };\n  },\n\n  async refresh(input, { helper, host }) {\n    const result = await helper.refresh(input);\n\n    // The OAuth2 strategy does not return a user profile, so we fetch it manually\n    const fullProfile = await fetchProfile({\n      host,\n      accessToken: result.session.accessToken,\n    });\n\n    return { ...result, fullProfile };\n  },\n});\n","/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport {\n  createSignInResolverFactory,\n  OAuthAuthenticatorResult,\n  PassportProfile,\n  SignInInfo,\n} from '@backstage/plugin-auth-node';\n\n/**\n * Available sign-in resolvers for the Bitbucket Server auth provider.\n *\n * @public\n */\nexport namespace bitbucketServerSignInResolvers {\n  /**\n   * Looks up the user by matching their email to the entity email.\n   */\n  export const emailMatchingUserEntityProfileEmail =\n    createSignInResolverFactory({\n      create() {\n        return async (\n          info: SignInInfo<OAuthAuthenticatorResult<PassportProfile>>,\n          ctx,\n        ) => {\n          const { profile } = info;\n\n          if (!profile.email) {\n            throw new Error(\n              'Login failed, user profile does not contain an email',\n            );\n          }\n\n          return ctx.signInWithCatalogUser({\n            filter: {\n              'spec.profile.email': profile.email,\n            },\n          });\n        };\n      },\n    });\n}\n","/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { createBackendModule } from '@backstage/backend-plugin-api';\nimport {\n  authProvidersExtensionPoint,\n  commonSignInResolvers,\n  createOAuthProviderFactory,\n} from '@backstage/plugin-auth-node';\nimport { bitbucketServerAuthenticator } from './authenticator';\nimport { bitbucketServerSignInResolvers } from './resolvers';\n\n/** @public */\nexport const authModuleBitbucketServerProvider = createBackendModule({\n  pluginId: 'auth',\n  moduleId: 'bitbucket-server-provider',\n  register(reg) {\n    reg.registerInit({\n      deps: {\n        providers: authProvidersExtensionPoint,\n      },\n      async init({ providers }) {\n        providers.registerProvider({\n          providerId: 'bitbucketServer',\n          factory: createOAuthProviderFactory({\n            authenticator: bitbucketServerAuthenticator,\n            signInResolverFactories: {\n              ...bitbucketServerSignInResolvers,\n              ...commonSignInResolvers,\n            },\n          }),\n        });\n      },\n    });\n  },\n});\n"],"names":["fetch","createOAuthAuthenticator","PassportOAuthAuthenticatorHelper","OAuth2Strategy","bitbucketServerSignInResolvers","createSignInResolverFactory","createBackendModule","authProvidersExtensionPoint","createOAuthProviderFactory","commonSignInResolvers"],"mappings":";;;;;;;;;;;;;AAmBA,eAAsB,aAAa,OAGN,EAAA;AAC3B,EAAM,MAAA,EAAE,IAAM,EAAA,WAAA,EAAgB,GAAA,OAAA,CAAA;AAE9B,EAAI,IAAA,cAAA,CAAA;AACJ,EAAI,IAAA;AACF,IAAA,cAAA,GAAiB,MAAMA,sBAAA;AAAA,MACrB,WAAW,IAAI,CAAA,gCAAA,CAAA;AAAA,MACf;AAAA,QACE,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,UAAU,WAAW,CAAA,CAAA;AAAA,SACtC;AAAA,OACF;AAAA,KACF,CAAA;AAAA,WACO,CAAG,EAAA;AACV,IAAM,MAAA,IAAI,MAAM,CAAuD,qDAAA,CAAA,CAAA,CAAA;AAAA,GACzE;AAGA,EAAA,MAAM,QAAW,GAAA,cAAA,CAAe,OAAQ,CAAA,GAAA,CAAI,aAAa,CAAA,CAAA;AACzD,EAAA,IAAI,CAAC,QAAU,EAAA;AACb,IAAM,MAAA,IAAI,MAAM,CAAuD,qDAAA,CAAA,CAAA,CAAA;AAAA,GACzE;AAEA,EAAI,IAAA,YAAA,CAAA;AACJ,EAAI,IAAA;AACF,IAAA,YAAA,GAAe,MAAMA,sBAAA;AAAA,MACnB,CAAA,QAAA,EAAW,IAAI,CAAA,uBAAA,EAA0B,QAAQ,CAAA,eAAA,CAAA;AAAA,MACjD;AAAA,QACE,OAAS,EAAA;AAAA,UACP,aAAA,EAAe,UAAU,WAAW,CAAA,CAAA;AAAA,SACtC;AAAA,OACF;AAAA,KACF,CAAA;AAAA,WACO,CAAG,EAAA;AACV,IAAA,MAAM,IAAI,KAAA,CAAM,CAAgC,6BAAA,EAAA,QAAQ,CAAG,CAAA,CAAA,CAAA,CAAA;AAAA,GAC7D;AAEA,EAAI,IAAA,CAAC,aAAa,EAAI,EAAA;AACpB,IAAA,MAAM,IAAI,KAAA,CAAM,CAAgC,6BAAA,EAAA,QAAQ,CAAG,CAAA,CAAA,CAAA,CAAA;AAAA,GAC7D;AAEA,EAAM,MAAA,IAAA,GAAO,MAAM,YAAA,CAAa,IAAK,EAAA,CAAA;AAErC,EAAA,MAAM,eAAkB,GAAA;AAAA,IACtB,QAAU,EAAA,iBAAA;AAAA,IACV,EAAA,EAAI,IAAK,CAAA,EAAA,CAAG,QAAS,EAAA;AAAA,IACrB,aAAa,IAAK,CAAA,WAAA;AAAA,IAClB,UAAU,IAAK,CAAA,IAAA;AAAA,IACf,MAAQ,EAAA;AAAA,MACN;AAAA,QACE,OAAO,IAAK,CAAA,YAAA;AAAA,OACd;AAAA,KACF;AAAA,GACF,CAAA;AAEA,EAAA,IAAI,KAAK,SAAW,EAAA;AAClB,IAAgB,eAAA,CAAA,MAAA,GAAS,CAAC,EAAE,KAAO,EAAA,CAAA,QAAA,EAAW,IAAI,CAAG,EAAA,IAAA,CAAK,SAAS,CAAA,CAAA,EAAI,CAAA,CAAA;AAAA,GACzE;AAEA,EAAO,OAAA,eAAA,CAAA;AACT;;ACzDO,MAAM,+BAA+BC,uCAAyB,CAAA;AAAA,EACnE,yBACEC,+CAAiC,CAAA,uBAAA;AAAA,EACnC,UAAW,CAAA,EAAE,WAAa,EAAA,MAAA,EAAU,EAAA;AAClC,IAAM,MAAA,QAAA,GAAW,MAAO,CAAA,SAAA,CAAU,UAAU,CAAA,CAAA;AAC5C,IAAM,MAAA,YAAA,GAAe,MAAO,CAAA,SAAA,CAAU,cAAc,CAAA,CAAA;AACpD,IAAM,MAAA,IAAA,GAAO,MAAO,CAAA,SAAA,CAAU,MAAM,CAAA,CAAA;AACpC,IAAA,MAAM,WAAc,GAAA,MAAA,CAAO,iBAAkB,CAAA,aAAa,CAAK,IAAA,WAAA,CAAA;AAE/D,IAAA,MAAM,SAASA,+CAAiC,CAAA,IAAA;AAAA,MAC9C,IAAIC,uBAAA;AAAA,QACF;AAAA,UACE,QAAA;AAAA,UACA,YAAA;AAAA,UACA,WAAA;AAAA,UACA,gBAAA,EAAkB,WAAW,IAAI,CAAA,6BAAA,CAAA;AAAA,UACjC,QAAA,EAAU,WAAW,IAAI,CAAA,yBAAA,CAAA;AAAA,SAC3B;AAAA,QACA,CACE,WAAA,EACA,YACA,EAAA,MAAA,EACA,aACA,IACG,KAAA;AACH,UAAA,IAAA;AAAA,YACE,KAAA,CAAA;AAAA,YACA,EAAE,WAAa,EAAA,MAAA,EAAQ,WAAY,EAAA;AAAA,YACnC,EAAE,YAAa,EAAA;AAAA,WACjB,CAAA;AAAA,SACF;AAAA,OACF;AAAA,KACF,CAAA;AAEA,IAAO,OAAA,EAAE,QAAQ,IAAK,EAAA,CAAA;AAAA,GACxB;AAAA,EAEA,MAAM,KAAA,CAAM,KAAO,EAAA,EAAE,QAAU,EAAA;AAC7B,IAAO,OAAA,MAAA,CAAO,MAAM,KAAO,EAAA;AAAA,MACzB,UAAY,EAAA,SAAA;AAAA,MACZ,MAAQ,EAAA,SAAA;AAAA,KACT,CAAA,CAAA;AAAA,GACH;AAAA,EAEA,MAAM,YAAa,CAAA,KAAA,EAAO,EAAE,MAAA,EAAQ,MAAQ,EAAA;AAC1C,IAAA,MAAM,MAAS,GAAA,MAAM,MAAO,CAAA,YAAA,CAAa,KAAK,CAAA,CAAA;AAG9C,IAAM,MAAA,WAAA,GAAc,MAAM,YAAa,CAAA;AAAA,MACrC,IAAA;AAAA,MACA,WAAA,EAAa,OAAO,OAAQ,CAAA,WAAA;AAAA,KAC7B,CAAA,CAAA;AAED,IAAO,OAAA,EAAE,GAAG,MAAA,EAAQ,WAAY,EAAA,CAAA;AAAA,GAClC;AAAA,EAEA,MAAM,OAAQ,CAAA,KAAA,EAAO,EAAE,MAAA,EAAQ,MAAQ,EAAA;AACrC,IAAA,MAAM,MAAS,GAAA,MAAM,MAAO,CAAA,OAAA,CAAQ,KAAK,CAAA,CAAA;AAGzC,IAAM,MAAA,WAAA,GAAc,MAAM,YAAa,CAAA;AAAA,MACrC,IAAA;AAAA,MACA,WAAA,EAAa,OAAO,OAAQ,CAAA,WAAA;AAAA,KAC7B,CAAA,CAAA;AAED,IAAO,OAAA,EAAE,GAAG,MAAA,EAAQ,WAAY,EAAA,CAAA;AAAA,GAClC;AACF,CAAC;;ACjEgBC,gDAAA;AAAA,CAAV,CAAUA,+BAAV,KAAA;AAIE,EAAMA,+BAAAA,CAAA,sCACXC,0CAA4B,CAAA;AAAA,IAC1B,MAAS,GAAA;AACP,MAAO,OAAA,OACL,MACA,GACG,KAAA;AACH,QAAM,MAAA,EAAE,SAAY,GAAA,IAAA,CAAA;AAEpB,QAAI,IAAA,CAAC,QAAQ,KAAO,EAAA;AAClB,UAAA,MAAM,IAAI,KAAA;AAAA,YACR,sDAAA;AAAA,WACF,CAAA;AAAA,SACF;AAEA,QAAA,OAAO,IAAI,qBAAsB,CAAA;AAAA,UAC/B,MAAQ,EAAA;AAAA,YACN,sBAAsB,OAAQ,CAAA,KAAA;AAAA,WAChC;AAAA,SACD,CAAA,CAAA;AAAA,OACH,CAAA;AAAA,KACF;AAAA,GACD,CAAA,CAAA;AAAA,CA1BY,EAAAD,sCAAA,KAAAA,sCAAA,GAAA,EAAA,CAAA,CAAA;;ACFV,MAAM,oCAAoCE,oCAAoB,CAAA;AAAA,EACnE,QAAU,EAAA,MAAA;AAAA,EACV,QAAU,EAAA,2BAAA;AAAA,EACV,SAAS,GAAK,EAAA;AACZ,IAAA,GAAA,CAAI,YAAa,CAAA;AAAA,MACf,IAAM,EAAA;AAAA,QACJ,SAAW,EAAAC,0CAAA;AAAA,OACb;AAAA,MACA,MAAM,IAAA,CAAK,EAAE,SAAA,EAAa,EAAA;AACxB,QAAA,SAAA,CAAU,gBAAiB,CAAA;AAAA,UACzB,UAAY,EAAA,iBAAA;AAAA,UACZ,SAASC,yCAA2B,CAAA;AAAA,YAClC,aAAe,EAAA,4BAAA;AAAA,YACf,uBAAyB,EAAA;AAAA,cACvB,GAAGJ,sCAAA;AAAA,cACH,GAAGK,oCAAA;AAAA,aACL;AAAA,WACD,CAAA;AAAA,SACF,CAAA,CAAA;AAAA,OACH;AAAA,KACD,CAAA,CAAA;AAAA,GACH;AACF,CAAC;;;;;"}

package/dist/index.d.ts

@@ -0,0 +1,26 @@
+import * as _backstage_plugin_auth_node from '@backstage/plugin-auth-node';
+import { PassportOAuthAuthenticatorHelper, PassportProfile, OAuthAuthenticatorResult } from '@backstage/plugin-auth-node';
+import * as _backstage_backend_plugin_api from '@backstage/backend-plugin-api';
+
+/** @public */
+declare const bitbucketServerAuthenticator: _backstage_plugin_auth_node.OAuthAuthenticator<{
+    helper: PassportOAuthAuthenticatorHelper;
+    host: string;
+}, PassportProfile>;
+
+/** @public */
+declare const authModuleBitbucketServerProvider: _backstage_backend_plugin_api.BackendFeature;
+
+/**
+ * Available sign-in resolvers for the Bitbucket Server auth provider.
+ *
+ * @public
+ */
+declare namespace bitbucketServerSignInResolvers {
+    /**
+     * Looks up the user by matching their email to the entity email.
+     */
+    const emailMatchingUserEntityProfileEmail: _backstage_plugin_auth_node.SignInResolverFactory<OAuthAuthenticatorResult<PassportProfile>, unknown>;
+}
+
+export { bitbucketServerAuthenticator, bitbucketServerSignInResolvers, authModuleBitbucketServerProvider as default };

package/package.json

@@ -0,0 +1,52 @@
+{
+  "name": "@backstage/plugin-auth-backend-module-bitbucket-server-provider",
+  "version": "0.0.0-nightly-20240910023018",
+  "description": "The bitbucket-server-provider backend module for the auth plugin.",
+  "backstage": {
+    "role": "backend-plugin-module",
+    "pluginId": "auth",
+    "pluginPackage": "@backstage/plugin-auth-backend"
+  },
+  "publishConfig": {
+    "access": "public",
+    "main": "dist/index.cjs.js",
+    "types": "dist/index.d.ts"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/backstage/backstage",
+    "directory": "plugins/auth-backend-module-bitbucket-server-provider"
+  },
+  "license": "Apache-2.0",
+  "main": "dist/index.cjs.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist",
+    "config.d.ts"
+  ],
+  "scripts": {
+    "build": "backstage-cli package build",
+    "clean": "backstage-cli package clean",
+    "lint": "backstage-cli package lint",
+    "prepack": "backstage-cli package prepack",
+    "postpack": "backstage-cli package postpack",
+    "start": "backstage-cli package start",
+    "test": "backstage-cli package test"
+  },
+  "dependencies": {
+    "@backstage/backend-plugin-api": "^0.0.0-nightly-20240910023018",
+    "@backstage/plugin-auth-node": "^0.0.0-nightly-20240910023018",
+    "node-fetch": "^2.7.0",
+    "passport": "^0.7.0",
+    "passport-oauth2": "^1.6.1"
+  },
+  "devDependencies": {
+    "@backstage/backend-defaults": "^0.0.0-nightly-20240910023018",
+    "@backstage/backend-test-utils": "^0.0.0-nightly-20240910023018",
+    "@backstage/cli": "^0.0.0-nightly-20240910023018",
+    "@backstage/plugin-auth-backend": "^0.0.0-nightly-20240910023018",
+    "@types/passport-oauth2": "^1.4.15",
+    "supertest": "^6.3.3"
+  },
+  "configSchema": "config.d.ts"
+}