Add an OAuth2 auth provider.

2025-10-04 10:19:30 +02:00 · 2014-10-30 19:03:17 +09:00 · 2014-10-30 19:03:17 +09:00 · af09fc084a
commit af09fc084a
parent 2ff16baf7a
3 changed files with 175 additions and 0 deletions
--- a/lib/cli.js
+++ b/lib/cli.js
@ -329,6 +329,98 @@ program
    })
  })

+program
+  .command('auth-oauth2')
+  .description('start OAuth 2.0 auth client')
+  .option('-p, --port <port>'
+    , 'port (or $PORT)'
+    , Number
+    , process.env.PORT || 7120)
+  .option('-s, --secret <secret>'
+    , 'secret (or $SECRET)'
+    , String
+    , process.env.SECRET)
+  .option('-i, --ssid <ssid>'
+    , 'session SSID (or $SSID)'
+    , String
+    , process.env.SSID || 'ssid')
+  .option('-a, --app-url <url>'
+    , 'URL to app'
+    , String)
+  .option('--oauth-authorization-url <url>'
+    , 'OAuth 2.0 authorization URL (or $OAUTH_AUTHORIZATION_URL)'
+    , String
+    , process.env.OAUTH_AUTHORIZATION_URL)
+  .option('--oauth-token-url <url>'
+    , 'OAuth 2.0 token URL (or $OAUTH_TOKEN_URL)'
+    , String
+    , process.env.OAUTH_TOKEN_URL)
+  .option('--oauth-userinfo-url <url>'
+    , 'OAuth 2.0 token URL (or $OAUTH_USERINFO_URL)'
+    , String
+    , process.env.OAUTH_USERINFO_URL)
+  .option('--oauth-client-id <id>'
+    , 'OAuth 2.0 client ID (or $OAUTH_CLIENT_ID)'
+    , String
+    , process.env.OAUTH_CLIENT_ID)
+  .option('--oauth-client-secret <value>'
+    , 'OAuth 2.0 client secret (or $OAUTH_CLIENT_SECRET)'
+    , String
+    , process.env.OAUTH_CLIENT_SECRET)
+  .option('--oauth-callback-url <url>'
+    , 'OAuth 2.0 callback URL (or $OAUTH_CALLBACK_URL)'
+    , String
+    , process.env.OAUTH_CALLBACK_URL)
+  .option('--oauth-scope <scope>'
+    , 'Space-separated OAuth 2.0 scope (or $OAUTH_SCOPE)'
+    , String
+    , process.env.OAUTH_SCOPE)
+  .action(function(options) {
+    if (!options.secret) {
+      this.missingArgument('--secret')
+    }
+    if (!options.appUrl) {
+      this.missingArgument('--app-url')
+    }
+    if (!options.oauthAuthorizationUrl) {
+      this.missingArgument('--oauth-authorization-url')
+    }
+    if (!options.oauthTokenUrl) {
+      this.missingArgument('--oauth-token-url')
+    }
+    if (!options.oauthUserinfoUrl) {
+      this.missingArgument('--oauth-userinfo-url')
+    }
+    if (!options.oauthClientId) {
+      this.missingArgument('--oauth-client-id')
+    }
+    if (!options.oauthClientSecret) {
+      this.missingArgument('--oauth-client-secret')
+    }
+    if (!options.oauthCallbackUrl) {
+      this.missingArgument('--oauth-callback-url')
+    }
+    if (!options.oauthScope) {
+      this.missingArgument('--oauth-scope')
+    }
+
+    require('./units/auth/oauth2')({
+      port: options.port
+    , secret: options.secret
+    , ssid: options.ssid
+    , appUrl: options.appUrl
+    , oauth: {
+        authorizationURL: options.oauthAuthorizationUrl
+      , tokenURL: options.oauthTokenUrl
+      , userinfoURL: options.oauthUserinfoUrl
+      , clientID: options.oauthClientId
+      , clientSecret: options.oauthClientSecret
+      , callbackURL: options.oauthCallbackUrl
+      , scope: options.oauthScope.split(/\s+/)
+      }
+    })
+  })
+
 program
  .command('auth-mock')
  .description('start mock auth client')