npm - @backstage/plugin-auth-backend-module-onelogin-provider - Versions diffs - 0.0.0-nightly-20240611021715 - Mend

@backstage/plugin-auth-backend-module-onelogin-provider 0.0.0-nightly-20240611021715

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/CHANGELOG.md ADDED Viewed

@@ -0,0 +1,13 @@
+# @backstage/plugin-auth-backend-module-onelogin-provider
+## 0.0.0-nightly-20240611021715
+### Minor Changes
+- 566d7cb: Separate out the OneLogin provider into its own module
+### Patch Changes
+- Updated dependencies
+  - @backstage/backend-plugin-api@0.0.0-nightly-20240611021715
+  - @backstage/plugin-auth-node@0.0.0-nightly-20240611021715

package/README.md ADDED Viewed

@@ -0,0 +1,8 @@
+# Auth Module: OneLogin Provider
+This module provides an OneLogin auth provider implementation for `@backstage/plugin-auth-backend`.
+## Links
+- [Repository](https://github.com/backstage/backstage/tree/master/plugins/auth-backend-module-onelogin-provider)
+- [Backstage Project Homepage](https://backstage.io)

package/config.d.ts ADDED Viewed

@@ -0,0 +1,34 @@
+/*
+ * Copyright 2020 The Backstage Authors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+export interface Config {
+  auth?: {
+    providers?: {
+      /** @visibility frontend */
+      onelogin?: {
+        [authEnv: string]: {
+          clientId: string;
+          /**
+           * @visibility secret
+           */
+          clientSecret: string;
+          issuer: string;
+          callbackUrl?: string;
+        };
+      };
+    };
+  };
+}

package/dist/index.cjs.js ADDED Viewed

@@ -0,0 +1,92 @@
+'use strict';
+Object.defineProperty(exports, '__esModule', { value: true });
+var passportOneloginOauth = require('passport-onelogin-oauth');
+var pluginAuthNode = require('@backstage/plugin-auth-node');
+var backendPluginApi = require('@backstage/backend-plugin-api');
+const oneLoginAuthenticator = pluginAuthNode.createOAuthAuthenticator({
+  defaultProfileTransform: pluginAuthNode.PassportOAuthAuthenticatorHelper.defaultProfileTransform,
+  initialize({ callbackUrl, config }) {
+    const clientId = config.getString("clientId");
+    const clientSecret = config.getString("clientSecret");
+    const issuer = config.getString("issuer");
+    return pluginAuthNode.PassportOAuthAuthenticatorHelper.from(
+      new passportOneloginOauth.Strategy(
+        {
+          clientID: clientId,
+          clientSecret,
+          callbackURL: callbackUrl,
+          issuer,
+          passReqToCallback: false
+        },
+        (accessToken, refreshToken, params, fullProfile, done) => {
+          done(
+            void 0,
+            { fullProfile, params, accessToken },
+            { refreshToken }
+          );
+        }
+      )
+    );
+  },
+  async start(input, helper) {
+    input.scope = "openid";
+    return helper.start(input, {
+      accessType: "offline",
+      prompt: "consent"
+    });
+  },
+  async authenticate(input, helper) {
+    return helper.authenticate(input);
+  },
+  async refresh(input, helper) {
+    input.scope = "openid";
+    return helper.refresh(input);
+  }
+});
+exports.oneLoginSignInResolvers = void 0;
+((oneLoginSignInResolvers2) => {
+  oneLoginSignInResolvers2.usernameMatchingUserEntityName = pluginAuthNode.createSignInResolverFactory({
+    create() {
+      return async (info, ctx) => {
+        const { result } = info;
+        const id = result.fullProfile.username;
+        if (!id) {
+          throw new Error(`OneLogin user profile does not contain a username`);
+        }
+        return ctx.signInWithCatalogUser({ entityRef: { name: id } });
+      };
+    }
+  });
+})(exports.oneLoginSignInResolvers || (exports.oneLoginSignInResolvers = {}));
+const authModuleOneLoginProvider = backendPluginApi.createBackendModule({
+  pluginId: "auth",
+  moduleId: "onelogin-provider",
+  register(reg) {
+    reg.registerInit({
+      deps: {
+        providers: pluginAuthNode.authProvidersExtensionPoint
+      },
+      async init({ providers }) {
+        providers.registerProvider({
+          providerId: "onelogin",
+          factory: pluginAuthNode.createOAuthProviderFactory({
+            authenticator: oneLoginAuthenticator,
+            signInResolverFactories: {
+              ...exports.oneLoginSignInResolvers,
+              ...pluginAuthNode.commonSignInResolvers
+            }
+          })
+        });
+      }
+    });
+  }
+});
+exports.default = authModuleOneLoginProvider;
+exports.oneLoginAuthenticator = oneLoginAuthenticator;
+//# sourceMappingURL=index.cjs.js.map

package/dist/index.cjs.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.cjs.js","sources":["../src/authenticator.ts","../src/resolvers.ts","../src/module.ts"],"sourcesContent":["/*\n * Copyright 2023 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport { Strategy as OneLoginStrategy } from 'passport-onelogin-oauth';\nimport {\n createOAuthAuthenticator,\n PassportOAuthAuthenticatorHelper,\n PassportOAuthDoneCallback,\n PassportProfile,\n} from '@backstage/plugin-auth-node';\n\n/** @public */\nexport const oneLoginAuthenticator = createOAuthAuthenticator({\n defaultProfileTransform:\n PassportOAuthAuthenticatorHelper.defaultProfileTransform,\n initialize({ callbackUrl, config }) {\n const clientId = config.getString('clientId');\n const clientSecret = config.getString('clientSecret');\n const issuer = config.getString('issuer');\n\n return PassportOAuthAuthenticatorHelper.from(\n new OneLoginStrategy(\n {\n clientID: clientId,\n clientSecret: clientSecret,\n callbackURL: callbackUrl,\n issuer,\n passReqToCallback: false,\n },\n (\n accessToken: string,\n refreshToken: string,\n params: any,\n fullProfile: PassportProfile,\n done: PassportOAuthDoneCallback,\n ) => {\n done(\n undefined,\n { fullProfile, params, accessToken },\n { refreshToken },\n );\n },\n ),\n );\n },\n\n async start(input, helper) {\n input.scope = 'openid';\n return helper.start(input, {\n accessType: 'offline',\n prompt: 'consent',\n });\n },\n\n async authenticate(input, helper) {\n return helper.authenticate(input);\n },\n\n async refresh(input, helper) {\n input.scope = 'openid';\n return helper.refresh(input);\n },\n});\n","/*\n * Copyright 2023 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport {\n createSignInResolverFactory,\n OAuthAuthenticatorResult,\n PassportProfile,\n SignInInfo,\n} from '@backstage/plugin-auth-node';\n\n/**\n * Available sign-in resolvers for the OneLogin auth provider.\n *\n * @public\n */\nexport namespace oneLoginSignInResolvers {\n /**\n * Looks up the user by matching their OneLogin username to the entity name.\n */\n export const usernameMatchingUserEntityName = createSignInResolverFactory({\n create() {\n return async (\n info: SignInInfo<OAuthAuthenticatorResult<PassportProfile>>,\n ctx,\n ) => {\n const { result } = info;\n\n const id = result.fullProfile.username;\n if (!id) {\n throw new Error(`OneLogin user profile does not contain a username`);\n }\n\n return ctx.signInWithCatalogUser({ entityRef: { name: id } });\n };\n },\n });\n}\n","/*\n * Copyright 2023 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n * http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { createBackendModule } from '@backstage/backend-plugin-api';\nimport {\n authProvidersExtensionPoint,\n commonSignInResolvers,\n createOAuthProviderFactory,\n} from '@backstage/plugin-auth-node';\nimport { oneLoginAuthenticator } from './authenticator';\nimport { oneLoginSignInResolvers } from './resolvers';\n\n/** @public */\nexport const authModuleOneLoginProvider = createBackendModule({\n pluginId: 'auth',\n moduleId: 'onelogin-provider',\n register(reg) {\n reg.registerInit({\n deps: {\n providers: authProvidersExtensionPoint,\n },\n async init({ providers }) {\n providers.registerProvider({\n providerId: 'onelogin',\n factory: createOAuthProviderFactory({\n authenticator: oneLoginAuthenticator,\n signInResolverFactories: {\n ...oneLoginSignInResolvers,\n ...commonSignInResolvers,\n },\n }),\n });\n },\n });\n },\n});\n"],"names":["createOAuthAuthenticator","PassportOAuthAuthenticatorHelper","OneLoginStrategy","oneLoginSignInResolvers","createSignInResolverFactory","createBackendModule","authProvidersExtensionPoint","createOAuthProviderFactory","commonSignInResolvers"],"mappings":";;;;;;;;AAyBO,MAAM,wBAAwBA,uCAAyB,CAAA;AAAA,EAC5D,yBACEC,+CAAiC,CAAA,uBAAA;AAAA,EACnC,UAAW,CAAA,EAAE,WAAa,EAAA,MAAA,EAAU,EAAA;AAClC,IAAM,MAAA,QAAA,GAAW,MAAO,CAAA,SAAA,CAAU,UAAU,CAAA,CAAA;AAC5C,IAAM,MAAA,YAAA,GAAe,MAAO,CAAA,SAAA,CAAU,cAAc,CAAA,CAAA;AACpD,IAAM,MAAA,MAAA,GAAS,MAAO,CAAA,SAAA,CAAU,QAAQ,CAAA,CAAA;AAExC,IAAA,OAAOA,+CAAiC,CAAA,IAAA;AAAA,MACtC,IAAIC,8BAAA;AAAA,QACF;AAAA,UACE,QAAU,EAAA,QAAA;AAAA,UACV,YAAA;AAAA,UACA,WAAa,EAAA,WAAA;AAAA,UACb,MAAA;AAAA,UACA,iBAAmB,EAAA,KAAA;AAAA,SACrB;AAAA,QACA,CACE,WAAA,EACA,YACA,EAAA,MAAA,EACA,aACA,IACG,KAAA;AACH,UAAA,IAAA;AAAA,YACE,KAAA,CAAA;AAAA,YACA,EAAE,WAAa,EAAA,MAAA,EAAQ,WAAY,EAAA;AAAA,YACnC,EAAE,YAAa,EAAA;AAAA,WACjB,CAAA;AAAA,SACF;AAAA,OACF;AAAA,KACF,CAAA;AAAA,GACF;AAAA,EAEA,MAAM,KAAM,CAAA,KAAA,EAAO,MAAQ,EAAA;AACzB,IAAA,KAAA,CAAM,KAAQ,GAAA,QAAA,CAAA;AACd,IAAO,OAAA,MAAA,CAAO,MAAM,KAAO,EAAA;AAAA,MACzB,UAAY,EAAA,SAAA;AAAA,MACZ,MAAQ,EAAA,SAAA;AAAA,KACT,CAAA,CAAA;AAAA,GACH;AAAA,EAEA,MAAM,YAAa,CAAA,KAAA,EAAO,MAAQ,EAAA;AAChC,IAAO,OAAA,MAAA,CAAO,aAAa,KAAK,CAAA,CAAA;AAAA,GAClC;AAAA,EAEA,MAAM,OAAQ,CAAA,KAAA,EAAO,MAAQ,EAAA;AAC3B,IAAA,KAAA,CAAM,KAAQ,GAAA,QAAA,CAAA;AACd,IAAO,OAAA,MAAA,CAAO,QAAQ,KAAK,CAAA,CAAA;AAAA,GAC7B;AACF,CAAC;;AC/CgBC,yCAAA;AAAA,CAAV,CAAUA,wBAAV,KAAA;AAIE,EAAMA,wBAAAA,CAAA,iCAAiCC,0CAA4B,CAAA;AAAA,IACxE,MAAS,GAAA;AACP,MAAO,OAAA,OACL,MACA,GACG,KAAA;AACH,QAAM,MAAA,EAAE,QAAW,GAAA,IAAA,CAAA;AAEnB,QAAM,MAAA,EAAA,GAAK,OAAO,WAAY,CAAA,QAAA,CAAA;AAC9B,QAAA,IAAI,CAAC,EAAI,EAAA;AACP,UAAM,MAAA,IAAI,MAAM,CAAmD,iDAAA,CAAA,CAAA,CAAA;AAAA,SACrE;AAEA,QAAO,OAAA,GAAA,CAAI,sBAAsB,EAAE,SAAA,EAAW,EAAE,IAAM,EAAA,EAAA,IAAM,CAAA,CAAA;AAAA,OAC9D,CAAA;AAAA,KACF;AAAA,GACD,CAAA,CAAA;AAAA,CApBc,EAAAD,+BAAA,KAAAA,+BAAA,GAAA,EAAA,CAAA,CAAA;;ACHV,MAAM,6BAA6BE,oCAAoB,CAAA;AAAA,EAC5D,QAAU,EAAA,MAAA;AAAA,EACV,QAAU,EAAA,mBAAA;AAAA,EACV,SAAS,GAAK,EAAA;AACZ,IAAA,GAAA,CAAI,YAAa,CAAA;AAAA,MACf,IAAM,EAAA;AAAA,QACJ,SAAW,EAAAC,0CAAA;AAAA,OACb;AAAA,MACA,MAAM,IAAA,CAAK,EAAE,SAAA,EAAa,EAAA;AACxB,QAAA,SAAA,CAAU,gBAAiB,CAAA;AAAA,UACzB,UAAY,EAAA,UAAA;AAAA,UACZ,SAASC,yCAA2B,CAAA;AAAA,YAClC,aAAe,EAAA,qBAAA;AAAA,YACf,uBAAyB,EAAA;AAAA,cACvB,GAAGJ,+BAAA;AAAA,cACH,GAAGK,oCAAA;AAAA,aACL;AAAA,WACD,CAAA;AAAA,SACF,CAAA,CAAA;AAAA,OACH;AAAA,KACD,CAAA,CAAA;AAAA,GACH;AACF,CAAC;;;;;"}

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,23 @@
+import * as _backstage_plugin_auth_node from '@backstage/plugin-auth-node';
+import { PassportOAuthAuthenticatorHelper, PassportProfile, OAuthAuthenticatorResult } from '@backstage/plugin-auth-node';
+import * as _backstage_backend_plugin_api from '@backstage/backend-plugin-api';
+/** @public */
+declare const oneLoginAuthenticator: _backstage_plugin_auth_node.OAuthAuthenticator<PassportOAuthAuthenticatorHelper, PassportProfile>;
+/** @public */
+declare const authModuleOneLoginProvider: () => _backstage_backend_plugin_api.BackendFeature;
+/**
+ * Available sign-in resolvers for the OneLogin auth provider.
+ *
+ * @public
+ */
+declare namespace oneLoginSignInResolvers {
+    /**
+     * Looks up the user by matching their OneLogin username to the entity name.
+     */
+    const usernameMatchingUserEntityName: _backstage_plugin_auth_node.SignInResolverFactory<OAuthAuthenticatorResult<PassportProfile>, unknown>;
+}
+export { authModuleOneLoginProvider as default, oneLoginAuthenticator, oneLoginSignInResolvers };

package/package.json ADDED Viewed

@@ -0,0 +1,49 @@
+{
+  "name": "@backstage/plugin-auth-backend-module-onelogin-provider",
+  "version": "0.0.0-nightly-20240611021715",
+  "description": "The onelogin-provider backend module for the auth plugin.",
+  "backstage": {
+    "role": "backend-plugin-module"
+  },
+  "publishConfig": {
+    "access": "public",
+    "main": "dist/index.cjs.js",
+    "types": "dist/index.d.ts"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/backstage/backstage",
+    "directory": "plugins/auth-backend-module-onelogin-provider"
+  },
+  "license": "Apache-2.0",
+  "main": "dist/index.cjs.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist",
+    "config.d.ts"
+  ],
+  "scripts": {
+    "build": "backstage-cli package build",
+    "clean": "backstage-cli package clean",
+    "lint": "backstage-cli package lint",
+    "prepack": "backstage-cli package prepack",
+    "postpack": "backstage-cli package postpack",
+    "start": "backstage-cli package start",
+    "test": "backstage-cli package test"
+  },
+  "dependencies": {
+    "@backstage/backend-plugin-api": "^0.0.0-nightly-20240611021715",
+    "@backstage/plugin-auth-node": "^0.0.0-nightly-20240611021715",
+    "express": "^4.18.2",
+    "passport": "^0.7.0",
+    "passport-onelogin-oauth": "^0.0.1"
+  },
+  "devDependencies": {
+    "@backstage/backend-defaults": "^0.0.0-nightly-20240611021715",
+    "@backstage/backend-test-utils": "^0.0.0-nightly-20240611021715",
+    "@backstage/cli": "^0.0.0-nightly-20240611021715",
+    "@backstage/plugin-auth-backend": "^0.0.0-nightly-20240611021715",
+    "supertest": "^6.3.3"
+  },
+  "configSchema": "config.d.ts"
+}