selfhosted
/
jackson
mirror of https://github.com/boxyhq/jackson.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
jackson/pages/api/setup/[token]/sso-connection/index.ts

157 lines
4.4 KiB
TypeScript
Raw Blame History

import type { NextApiRequest, NextApiResponse } from 'next';
import jackson from '@lib/jackson';
import { oidcMetadataParse, strategyChecker } from '@lib/utils';
import type { SetupLink } from '@boxyhq/saml-jackson';
const handler = async (req: NextApiRequest, res: NextApiResponse) => {
const { setupLinkController } = await jackson();
const { method } = req;
const { token } = req.query as { token: string };
try {
const setupLink = await setupLinkController.getByToken(token);
switch (method) {
case 'GET':
return await handleGET(req, res, setupLink);
case 'POST':
return await handlePOST(req, res, setupLink);
case 'PATCH':
return await handlePATCH(req, res);
case 'DELETE':
return await handleDELETE(req, res);
default:
res.setHeader('Allow', 'GET, POST, PATCH, DELETE');
res.status(405).json({ error: { message: `Method ${method} Not Allowed` } });
}
} catch (error: any) {
const { message, statusCode = 500 } = error;
return res.status(statusCode).json({ error: { message } });
}
};
const handleGET = async (req: NextApiRequest, res: NextApiResponse, setupLink: SetupLink) => {
const { connectionAPIController } = await jackson();
const connections = await connectionAPIController.getConnections({
tenant: setupLink.tenant,
product: setupLink.product,
});
const _connections = connections.map((connection) => {
return {
clientID: connection.clientID,
name: connection.name,
deactivated: connection.deactivated,
...('forceAuthn' in connection ? { forceAuthn: connection.forceAuthn } : undefined),
...('idpMetadata' in connection
? {
idpMetadata: {
provider: connection.idpMetadata.provider,
friendlyProviderName: connection.idpMetadata.friendlyProviderName,
},
}
: undefined),
...('oidcProvider' in connection
? {
oidcProvider: {
provider: connection.oidcProvider.provider,
friendlyProviderName: connection.oidcProvider.friendlyProviderName,
},
}
: undefined),
};
});
res.json(_connections);
};
const handlePOST = async (req: NextApiRequest, res: NextApiResponse, setupLink: SetupLink) => {
const { connectionAPIController } = await jackson();
const body = {
...req.body,
...setupLink,
};
const { isSAML, isOIDC } = strategyChecker(req);
if (isSAML) {
await connectionAPIController.createSAMLConnection(body);
} else if (isOIDC) {
await connectionAPIController.createOIDCConnection(oidcMetadataParse(body));
} else {
throw { message: 'Missing SSO connection params', statusCode: 400 };
}
res.status(201).json({ data: null });
};
const handleDELETE = async (req: NextApiRequest, res: NextApiResponse) => {
const { connectionAPIController } = await jackson();
const { clientID, clientSecret } = req.query as { clientID: string; clientSecret: string };
await connectionAPIController.deleteConnections({ clientID, clientSecret });
res.json({ data: null });
};
const handlePATCH = async (req: NextApiRequest, res: NextApiResponse) => {
const { connectionAPIController } = await jackson();
const {
deactivated,
clientID,
metadataUrl,
encodedRawMetadata,
forceAuthn,
oidcClientId,
oidcClientSecret,
oidcDiscoveryUrl,
oidcMetadata,
} = req.body;
const connections = await connectionAPIController.getConnections({
clientID,
});
if (!connections || connections.length === 0) {
throw { message: 'Connection not found', statusCode: 404 };
}
const { isSAML, isOIDC } = strategyChecker(req);
const { tenant, product, clientSecret } = connections[0];
const body = {
tenant,
product,
clientID,
clientSecret,
...('deactivated' in req.body ? { deactivated } : undefined),
...(isSAML ? { metadataUrl, encodedRawMetadata, forceAuthn } : undefined),
...(isOIDC
? {
oidcClientId,
oidcClientSecret,
oidcDiscoveryUrl,
oidcMetadata,
}
: undefined),
};
if (isSAML) {
await connectionAPIController.updateSAMLConnection(body as any);
} else if (isOIDC) {
await connectionAPIController.updateOIDCConnection(oidcMetadataParse(body as any));
} else {
throw { message: 'Missing SSO connection params', statusCode: 400 };
}
res.status(204).end();
};
export default handler;
Reference in New Issue View Git Blame Copy Permalink