msb-public
/
wiki
mirror of https://github.com/requarks/wiki
1
0
Code Issues Projects Releases Wiki Activity

added better AzureAD Support

Browse Source
pull/5729/head
Talstra Ruben SRSNL 2 years ago
parent cf7abeaa94
commit e3ce96e906
2 changed files with 46 additions and 3 deletions
Show Stats Download Patch File Download Diff File

14
server/models/users.js
Unescape View File

@ -225,6 +225,18 @@ module.exports = class User extends Model {
}) })
} }
// Parse jobTitle
let jobTitle = "";
if (_.isString(profile.jobTitle) && profile.jobTitle.length > 0) {
jobTitle = profile.jobTitle;
}
// Parse location
let location = "";
if (_.isString(profile.location) && profile.location.length > 0) {
location = profile.location;
}
// Update existing user // Update existing user
if (user) { if (user) {
if (!user.isActive) { if (!user.isActive) {
@ -264,6 +276,8 @@ module.exports = class User extends Model {
email: primaryEmail, email: primaryEmail,
name: displayName, name: displayName,
pictureUrl: pictureUrl, pictureUrl: pictureUrl,
jobTitle: jobTitle,
location: location,
localeCode: WIKI.config.lang.code, localeCode: WIKI.config.lang.code,
defaultEditor: 'markdown', defaultEditor: 'markdown',
tfaIsActive: false, tfaIsActive: false,

35
server/modules/authentication/azure/authentication.js
Unescape View File

@ -28,23 +28,32 @@ module.exports = {
identityMetadata: conf.entryPoint, identityMetadata: conf.entryPoint,
clientID: conf.clientId, clientID: conf.clientId,
redirectUrl: conf.callbackURL, redirectUrl: conf.callbackURL,
responseType: 'id_token', responseType: 'id_token code',
responseMode: 'form_post', responseMode: 'form_post',
scope: ['profile', 'email', 'openid'], scope: ['profile', 'email', 'openid'],
allowHttpForRedirectUrl: WIKI.IS_DEBUG, allowHttpForRedirectUrl: WIKI.IS_DEBUG,
clientSecret: 'clientSecret', // needs to be in the config of the Azure.
passReqToCallback: true, passReqToCallback: true,
cookieSameSite: keyArray.length > 0, cookieSameSite: keyArray.length > 0,
useCookieInsteadOfSession: keyArray.length > 0, useCookieInsteadOfSession: keyArray.length > 0,
cookieEncryptionKeys: keyArray cookieEncryptionKeys: keyArray
}, async (req, iss, sub, profile, cb) => { }, async (req, iss, sub, profile, access_token, refresh_token, cb) => {
const usrEmail = _.get(profile, '_json.email', null) || _.get(profile, '_json.preferred_username') const usrEmail = _.get(profile, '_json.email', null) || _.get(profile, '_json.preferred_username')
try { try {
const fullProfile = await callAPI(
"https://graph.microsoft.com/beta/me",
access_token
);
const user = await WIKI.models.users.processProfile({ const user = await WIKI.models.users.processProfile({
providerKey: req.params.strategy, providerKey: req.params.strategy,
profile: { profile: {
id: profile.oid, id: profile.oid,
displayName: profile.displayName, displayName: profile.displayName,
email: usrEmail, email: usrEmail,
jobTitle: fullProfile.jobTitle,
location: fullProfile.department,
picture: '' picture: ''
} }
}) })
@ -53,6 +62,26 @@ module.exports = {
cb(err, null) cb(err, null)
} }
}) })
) );
async function callAPI(endpoint, accessToken) {
if (!accessToken || accessToken === "") {
throw new Error("No tokens found");
}
const options = {
headers: {
Authorization: `Bearer ${accessToken}`,
},
};
try {
const response = await axios.default.get(endpoint, options);
return response.data;
} catch (error) {
console.log(error);
return error;
}
}
} }
} }

Write Preview
Loading…
Cancel
Save