77d6adb73b
* feat: Add tracking of signup query params * fix: Headers already sent to client * fix: OAuth error wipes previously written query params cookie
54 lines
1.7 KiB
JavaScript
54 lines
1.7 KiB
JavaScript
// @flow
|
|
import passport from "@outlinewiki/koa-passport";
|
|
import { type Context } from "koa";
|
|
import type { AccountProvisionerResult } from "../commands/accountProvisioner";
|
|
import { signIn } from "../utils/authentication";
|
|
|
|
export default function createMiddleware(providerName: string) {
|
|
return function passportMiddleware(ctx: Context) {
|
|
return passport.authorize(
|
|
providerName,
|
|
{ session: false },
|
|
async (err, _, result: AccountProvisionerResult) => {
|
|
if (err) {
|
|
console.error(err);
|
|
|
|
if (err.id) {
|
|
const notice = err.id.replace(/_/g, "-");
|
|
return ctx.redirect(`${err.redirectUrl || "/"}?notice=${notice}`);
|
|
}
|
|
|
|
if (process.env.NODE_ENV === "development") {
|
|
throw err;
|
|
}
|
|
return ctx.redirect(`/?notice=auth-error`);
|
|
}
|
|
|
|
// Handle errors from Azure which come in the format: message, Trace ID,
|
|
// Correlation ID, Timestamp in these two query string parameters.
|
|
const { error, error_description } = ctx.request.query;
|
|
if (error && error_description) {
|
|
console.error(error_description);
|
|
|
|
// Display only the descriptive message to the user, log the rest
|
|
const description = error_description.split("Trace ID")[0];
|
|
return ctx.redirect(`/?notice=auth-error&description=${description}`);
|
|
}
|
|
|
|
if (result.user.isSuspended) {
|
|
return ctx.redirect("/?notice=suspended");
|
|
}
|
|
|
|
await signIn(
|
|
ctx,
|
|
result.user,
|
|
result.team,
|
|
providerName,
|
|
result.isNewUser,
|
|
result.isNewTeam
|
|
);
|
|
}
|
|
)(ctx);
|
|
};
|
|
}
|