step 3 : userToken - init

kaliop · Oct 12, 2019 · d5e06f3 · d5e06f3
1 parent b3889f1
commit d5e06f3
Show file tree

Hide file tree

Showing 2 changed files with 33 additions and 0 deletions.
diff --git a/app.js b/app.js
@@ -15,6 +15,7 @@ const {
 const {
   userAuthorize,
   loginRedirect,
+  userToken,
 } = require('./controllers/oidcProvider');
 
 const app = express();
@@ -49,6 +50,7 @@ app.get('/logout', localLogout);
 /**** OIDC End points ****/
 app.get('/user/authorize', userAuthorize);
 app.get('/user/loginRedirect', loginRedirect);
+app.post('/user/token', userToken);
 
 /**** END OIDC End points ****/
 

diff --git a/controllers/oidcProvider.js b/controllers/oidcProvider.js
@@ -72,7 +72,38 @@ const loginRedirect = (req, res) => {
   }
 }
 
+const userToken = (req, res) => {
+  console.log('USER TOKEN', req.body);
+
+  // check the required parameters
+  for (const field of ['client_id', 'client_secret', 'code']) {
+    if (!req.body[field]) {
+      console.error(`missing "${field}" parameter`);
+      return res.sendStatus(400);
+    }
+  }
+
+  // check client config:
+  const
+    {client_id, client_secret, code} = req.body,
+    client = findClient(client_id);
+  if (! client) {
+    console.error('Client ID not found');
+    return res.sendStatus(400);
+  }
+  if (client_secret !== client.client_secret) {
+    console.error('Client Secret mismatch');
+    return res.sendStatus(400);
+  }
+
+  const tokenData = {}; //@TODO: populate with idToken and AccessToken
+
+  return res.json(tokenData);
+};
+
+
 module.exports = {
   userAuthorize,
   loginRedirect,
+  userToken,
 }