libre.sh/keycloak-scim
2
0
Fork 0
Code Issues 14 Pull requests Releases Packages Activity Actions
keycloak-scim/integration/js/src/main/resources/keycloak.js

820 lines
30 KiB
JavaScript
Raw Normal View History

Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
(function( window, undefined ) {
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var Keycloak = function (config) {
if (!(this instanceof Keycloak)) {
return new Keycloak(config);
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var kc = this;
var adapter;
KEYCLOAK-668 Make sure keycloak.js doesn't send multiple concurrent requests to refresh the token
2014-09-09 11:45:55 +00:00
var refreshQueue = [];
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var loginIframe = {
enable: true,
callbackMap: [],
interval: 5
};
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.init = function (initOptions) {
kc.authenticated = false;
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (window.Cordova) {
adapter = loadAdapter('cordova');
} else {
adapter = loadAdapter();
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
}
Redirect to login form automatically in keycloak.js if login-required is set
2014-05-22 15:59:38 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (initOptions) {
if (typeof initOptions.checkLoginIframe !== 'undefined') {
loginIframe.enable = initOptions.checkLoginIframe;
}
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (initOptions.checkLoginIframeInterval) {
loginIframe.interval = initOptions.checkLoginIframeInterval;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (initOptions.onLoad === 'login-required') {
kc.loginRequired = true;
}
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var promise = createPromise();
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var initPromise = createPromise();
initPromise.promise.success(function() {
kc.onReady && kc.onReady(kc.authenticated);
promise.setSuccess(kc.authenticated);
}).error(function() {
promise.setError();
});
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var configPromise = loadConfig(config);
function processInit() {
Changed window.location.href to search.
2014-06-30 15:56:53 +00:00
var callback = parseCallback(window.location.search);
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (callback) {
window.history.replaceState({}, null, location.protocol + '//' + location.host + location.pathname + (callback.fragment ? '#' + callback.fragment : ''));
processCallback(callback, initPromise);
return;
} else if (initOptions) {
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
var doLogin = function(prompt) {
if (!prompt) {
options.prompt = 'none';
}
kc.login(options).success(function () {
initPromise.setSuccess();
}).error(function () {
initPromise.setError();
});
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (initOptions.token || initOptions.refreshToken) {
setToken(initOptions.token, initOptions.refreshToken);
initPromise.setSuccess();
} else if (initOptions.onLoad) {
var options = {};
switch (initOptions.onLoad) {
case 'check-sso':
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
if (loginIframe.enable) {
setupCheckLoginIframe().success(function() {
checkLoginIframe().success(function () {
doLogin(false);
}).error(function () {
initPromise.setSuccess();
});
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
});
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
} else {
doLogin(false);
}
break;
case 'login-required':
doLogin(true);
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
break;
default:
throw 'Invalid value for onLoad';
}
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
} else {
initPromise.setSuccess();
iframe check login
2014-05-10 15:23:44 +00:00
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
configPromise.success(processInit);
configPromise.error(function() {
promise.setError();
});
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return promise.promise;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.login = function (options) {
return adapter.login(options);
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.createLoginUrl = function(options) {
var state = createUUID();
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var redirectUri = adapter.redirectUri(options);
if (options && options.prompt) {
if (redirectUri.indexOf('?') == -1) {
redirectUri += '?prompt=' + options.prompt;
} else {
redirectUri += '&prompt=' + options.prompt;
}
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
sessionStorage.oauthState = state;
var url = getRealmUrl()
+ '/tokens/login'
+ '?client_id=' + encodeURIComponent(kc.clientId)
+ '&redirect_uri=' + encodeURIComponent(redirectUri)
+ '&state=' + encodeURIComponent(state)
+ '&response_type=code';
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (options && options.prompt) {
url += '&prompt=' + options.prompt;
}
iframe check login
2014-05-10 15:23:44 +00:00
Added login_hint to keycloak.js
2014-07-30 13:27:14 +00:00
if (options && options.loginHint) {
url += '&login_hint=' + options.loginHint;
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return url;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.logout = function(options) {
return adapter.logout(options);
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.createLogoutUrl = function(options) {
var url = getRealmUrl()
+ '/tokens/logout'
+ '?redirect_uri=' + encodeURIComponent(adapter.redirectUri(options));
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return url;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.createAccountUrl = function(options) {
var url = getRealmUrl()
+ '/account'
+ '?referrer=' + encodeURIComponent(kc.clientId)
+ '&referrer_uri=' + encodeURIComponent(adapter.redirectUri(options));
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return url;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.accountManagement = function() {
return adapter.accountManagement();
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.hasRealmRole = function (role) {
var access = kc.realmAccess;
return !!access && access.roles.indexOf(role) >= 0;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.hasResourceRole = function(role, resource) {
if (!kc.resourceAccess) {
return false;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var access = kc.resourceAccess[resource || kc.clientId];
return !!access && access.roles.indexOf(role) >= 0;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.loadUserProfile = function() {
var url = getRealmUrl() + '/account';
var req = new XMLHttpRequest();
req.open('GET', url, true);
req.setRequestHeader('Accept', 'application/json');
req.setRequestHeader('Authorization', 'bearer ' + kc.token);
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var promise = createPromise();
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
req.onreadystatechange = function () {
if (req.readyState == 4) {
if (req.status == 200) {
kc.profile = JSON.parse(req.responseText);
promise.setSuccess(kc.profile);
} else {
promise.setError();
}
iframe check login
2014-05-10 15:23:44 +00:00
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
req.send();
return promise.promise;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.isTokenExpired = function(minValidity) {
if (!kc.tokenParsed || !kc.refreshToken) {
throw 'Not authenticated';
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var expiresIn = kc.tokenParsed['exp'] - (new Date().getTime() / 1000);
if (minValidity) {
expiresIn -= minValidity;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return expiresIn < 0;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.updateToken = function(minValidity) {
var promise = createPromise();
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (!kc.tokenParsed || !kc.refreshToken) {
promise.setError();
return promise.promise;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
minValidity = minValidity || 5;
var exec = function() {
if (!kc.isTokenExpired(minValidity)) {
promise.setSuccess(false);
} else {
var params = 'grant_type=refresh_token&' + 'refresh_token=' + kc.refreshToken;
var url = getRealmUrl() + '/tokens/refresh';
KEYCLOAK-668 Make sure keycloak.js doesn't send multiple concurrent requests to refresh the token
2014-09-09 11:45:55 +00:00
refreshQueue.push(promise);
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
KEYCLOAK-668 Make sure keycloak.js doesn't send multiple concurrent requests to refresh the token
2014-09-09 11:45:55 +00:00
if (refreshQueue.length == 1) {
var req = new XMLHttpRequest();
req.open('POST', url, true);
req.setRequestHeader('Content-type', 'application/x-www-form-urlencoded');
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
KEYCLOAK-668 Make sure keycloak.js doesn't send multiple concurrent requests to refresh the token
2014-09-09 11:45:55 +00:00
if (kc.clientId && kc.clientSecret) {
req.setRequestHeader('Authorization', 'Basic ' + btoa(kc.clientId + ':' + kc.clientSecret));
} else {
params += '&client_id=' + encodeURIComponent(kc.clientId);
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
KEYCLOAK-668 Make sure keycloak.js doesn't send multiple concurrent requests to refresh the token
2014-09-09 11:45:55 +00:00
req.onreadystatechange = function () {
if (req.readyState == 4) {
if (req.status == 200) {
var tokenResponse = JSON.parse(req.responseText);
setToken(tokenResponse['access_token'], tokenResponse['refresh_token']);
kc.onAuthRefreshSuccess && kc.onAuthRefreshSuccess();
for (var p = refreshQueue.pop(); p != null; p = refreshQueue.pop()) {
p.setSuccess(true);
}
} else {
kc.onAuthRefreshError && kc.onAuthRefreshError();
for (var p = refreshQueue.pop(); p != null; p = refreshQueue.pop()) {
p.setError(true);
}
}
}
};
req.send(params);
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
}
if (loginIframe.enable) {
var iframePromise = checkLoginIframe();
iframePromise.success(function() {
exec();
}).error(function() {
promise.setError();
});
} else {
exec();
}
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
return promise.promise;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function getRealmUrl() {
return kc.authServerUrl + '/realms/' + encodeURIComponent(kc.realm);
}
KEYCLOAK-588 retrieve window.location.origin in InternetExplorer-compatible way
2014-07-30 10:47:52 +00:00
function getOrigin() {
if (!window.location.origin) {
return window.location.protocol + "//" + window.location.hostname + (window.location.port ? ':' + window.location.port: '');
} else {
return window.location.origin;
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function processCallback(oauth, promise) {
var code = oauth.code;
var error = oauth.error;
var prompt = oauth.prompt;
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (code) {
var params = 'code=' + code;
var url = getRealmUrl() + '/tokens/access/codes';
iframe check login
2014-05-10 15:23:44 +00:00
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
var req = new XMLHttpRequest();
req.open('POST', url, true);
req.setRequestHeader('Content-type', 'application/x-www-form-urlencoded');
iframe check login
2014-05-10 15:23:44 +00:00
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
if (kc.clientId && kc.clientSecret) {
req.setRequestHeader('Authorization', 'Basic ' + btoa(kc.clientId + ':' + kc.clientSecret));
} else {
params += '&client_id=' + encodeURIComponent(kc.clientId);
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
req.withCredentials = true;
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
req.onreadystatechange = function() {
if (req.readyState == 4) {
if (req.status == 200) {
var tokenResponse = JSON.parse(req.responseText);
setToken(tokenResponse['access_token'], tokenResponse['refresh_token']);
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.onAuthSuccess && kc.onAuthSuccess();
promise && promise.setSuccess();
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
} else {
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.onAuthError && kc.onAuthError();
promise && promise.setError();
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
}
}
};
req.send(params);
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
} else if (error) {
if (prompt != 'none') {
kc.onAuthError && kc.onAuthError();
promise && promise.setError();
} else {
promise && promise.setSuccess();
}
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
}
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function loadConfig(url) {
var promise = createPromise();
var configUrl;
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (!config) {
configUrl = 'keycloak.json';
} else if (typeof config === 'string') {
configUrl = config;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (configUrl) {
var req = new XMLHttpRequest();
req.open('GET', configUrl, true);
req.setRequestHeader('Accept', 'application/json');
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
req.onreadystatechange = function () {
if (req.readyState == 4) {
if (req.status == 200) {
var config = JSON.parse(req.responseText);
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.authServerUrl = config['auth-server-url'];
kc.realm = config['realm'];
kc.clientId = config['resource'];
kc.clientSecret = (config['credentials'] || {})['secret'];
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
promise.setSuccess();
} else {
promise.setError();
}
}
};
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
req.send();
iframe check login
2014-05-10 15:23:44 +00:00
} else {
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (!config['url']) {
var scripts = document.getElementsByTagName('script');
for (var i = 0; i < scripts.length; i++) {
if (scripts[i].src.match(/.*keycloak\.js/)) {
config.url = scripts[i].src.substr(0, scripts[i].src.indexOf('/js/keycloak.js'));
break;
}
iframe check login
2014-05-10 15:23:44 +00:00
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (!config.realm) {
throw 'realm missing';
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (!config.clientId) {
throw 'clientId missing';
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.authServerUrl = config.url;
kc.realm = config.realm;
kc.clientId = config.clientId;
kc.clientSecret = (config.credentials || {}).secret;
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
promise.setSuccess();
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return promise.promise;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function clearToken() {
if (kc.token) {
setToken(null, null);
kc.onAuthLogout && kc.onAuthLogout();
if (kc.loginRequired) {
kc.login();
}
Redirect to login form automatically in keycloak.js if login-required is set
2014-05-22 15:59:38 +00:00
}
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function setToken(token, refreshToken) {
if (token || refreshToken) {
setupCheckLoginIframe();
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (token) {
kc.token = token;
kc.tokenParsed = JSON.parse(decodeURIComponent(escape(window.atob( token.split('.')[1] ))));
var sessionId = kc.realm + '/' + kc.tokenParsed.sub;
if (kc.tokenParsed.session_state) {
sessionId = sessionId + '/' + kc.tokenParsed.session_state;
}
kc.sessionId = sessionId;
kc.authenticated = true;
kc.subject = kc.tokenParsed.sub;
kc.realmAccess = kc.tokenParsed.realm_access;
kc.resourceAccess = kc.tokenParsed.resource_access;
for (var i = 0; i < idTokenProperties.length; i++) {
var n = idTokenProperties[i];
if (kc.tokenParsed[n]) {
if (!kc.idToken) {
kc.idToken = {};
}
kc.idToken[n] = kc.tokenParsed[n];
iframe check login
2014-05-10 15:23:44 +00:00
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
} else {
delete kc.token;
delete kc.tokenParsed;
delete kc.subject;
delete kc.realmAccess;
delete kc.resourceAccess;
delete kc.idToken;
kc.authenticated = false;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (refreshToken) {
kc.refreshToken = refreshToken;
kc.refreshTokenParsed = JSON.parse(atob(refreshToken.split('.')[1]));
} else {
delete kc.refreshToken;
delete kc.refreshTokenParsed;
}
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function createUUID() {
var s = [];
var hexDigits = '0123456789abcdef';
for (var i = 0; i < 36; i++) {
s[i] = hexDigits.substr(Math.floor(Math.random() * 0x10), 1);
}
s[14] = '4';
s[19] = hexDigits.substr((s[19] & 0x3) | 0x8, 1);
s[8] = s[13] = s[18] = s[23] = '-';
var uuid = s.join('');
return uuid;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
kc.callback_id = 0;
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function createCallbackId() {
var id = '<id: ' + (kc.callback_id++) + (Math.random()) + '>';
return id;
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function parseCallback(url) {
if (url.indexOf('?') != -1) {
var oauth = {};
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var params = url.split('?')[1].split('&');
for (var i = 0; i < params.length; i++) {
var p = params[i].split('=');
switch (decodeURIComponent(p[0])) {
case 'code':
oauth.code = p[1];
break;
case 'error':
oauth.error = p[1];
break;
case 'state':
oauth.state = decodeURIComponent(p[1]);
break;
case 'redirect_fragment':
oauth.fragment = decodeURIComponent(p[1]);
break;
case 'prompt':
oauth.prompt = p[1];
break;
}
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if ((oauth.code || oauth.error) && oauth.state && oauth.state == sessionStorage.oauthState) {
delete sessionStorage.oauthState;
return oauth;
}
iframe check login
2014-05-10 15:23:44 +00:00
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function createPromise() {
var p = {
setSuccess: function(result) {
p.success = true;
p.result = result;
if (p.successCallback) {
p.successCallback(result);
}
},
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
setError: function(result) {
p.error = true;
p.result = result;
if (p.errorCallback) {
p.errorCallback(result);
iframe check login
2014-05-10 15:23:44 +00:00
}
},
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
promise: {
success: function(callback) {
if (p.success) {
callback(p.result);
} else if (!p.error) {
p.successCallback = callback;
}
return p.promise;
},
error: function(callback) {
if (p.error) {
callback(p.result);
} else if (!p.success) {
p.errorCallback = callback;
}
return p.promise;
iframe check login
2014-05-10 15:23:44 +00:00
}
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return p;
iframe check login
2014-05-10 15:23:44 +00:00
}
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function setupCheckLoginIframe() {
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
var promise = createPromise();
if (!loginIframe.enable) {
return;
}
if (loginIframe.iframe) {
promise.setSuccess();
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
return;
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var iframe = document.createElement('iframe');
Updated session status iframe for JavaScript adapter to be created automatically, and to invoke onAuthLogout callback if user is logged out
2014-05-14 16:46:19 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
iframe.onload = function() {
var realmUrl = getRealmUrl();
if (realmUrl.charAt(0) === '/') {
KEYCLOAK-588 retrieve window.location.origin in InternetExplorer-compatible way
2014-07-30 10:47:52 +00:00
loginIframe.iframeOrigin = getOrigin();
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
} else {
loginIframe.iframeOrigin = realmUrl.substring(0, realmUrl.indexOf('/', 8));
}
loginIframe.iframe = iframe;
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
promise.setSuccess();
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
iframe check login
2014-05-10 15:23:44 +00:00
move pre-auth
2014-10-01 18:57:52 +00:00
var src = getRealmUrl() + '/protocol/openid-connect/login-status-iframe.html?client_id=' + encodeURIComponent(kc.clientId) + '&origin=' + getOrigin();
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
iframe.setAttribute('src', src );
iframe.style.display = 'none';
document.body.appendChild(iframe);
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var messageCallback = function(event) {
if (event.origin !== loginIframe.iframeOrigin) {
return;
}
var data = event.data;
var promise = loginIframe.callbackMap[data.callbackId];
delete loginIframe.callbackMap[data.callbackId];
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
if ((!kc.sessionId || kc.sessionId == data.session) && data.loggedIn) {
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
promise.setSuccess();
} else {
clearToken();
promise.setError();
iframe check login
2014-05-10 15:23:44 +00:00
}
};
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
window.addEventListener('message', messageCallback, false);
Disable session iframe in Corodova
2014-05-28 16:29:13 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var check = function() {
checkLoginIframe();
if (kc.token) {
setTimeout(check, loginIframe.interval * 1000);
}
};
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
setTimeout(check, loginIframe.interval * 1000);
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
return promise.promise;
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function checkLoginIframe() {
var promise = createPromise();
iframe check login
2014-05-10 15:23:44 +00:00
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
if (loginIframe.iframe && loginIframe.iframeOrigin) {
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var msg = {};
msg.callbackId = createCallbackId();
loginIframe.callbackMap[msg.callbackId] = promise;
var origin = loginIframe.iframeOrigin;
loginIframe.iframe.contentWindow.postMessage(msg, origin);
} else {
Fix redirect-loop in keycloak.js
2014-07-16 16:38:56 +00:00
promise.setSuccess();
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return promise.promise;
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
function loadAdapter(type) {
if (!type || type == 'default') {
return {
login: function(options) {
window.location.href = kc.createLoginUrl(options);
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
return createPromise().promise;
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
},
logout: function(options) {
window.location.href = kc.createLogoutUrl(options);
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
return createPromise().promise;
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
},
accountManagement : function() {
window.location.href = kc.createAccountUrl();
KEYCLOAK-559 If session iframe is enabled, check this before doing a login if onload is check-sso
2014-07-16 09:47:42 +00:00
return createPromise().promise;
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
},
redirectUri: function(options) {
if (options && options.redirectUri) {
return options.redirectUri;
} else if (kc.redirectUri) {
return kc.redirectUri;
iframe check login
2014-05-10 15:23:44 +00:00
} else {
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var url = (location.protocol + '//' + location.hostname + (location.port && (':' + location.port)) + location.pathname);
if (location.hash) {
url += '?redirect_fragment=' + encodeURIComponent(location.hash.substring(1));
}
return url;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
}
};
}
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
if (type == 'cordova') {
loginIframe.enable = false;
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
return {
login: function(options) {
var promise = createPromise();
iframe check login
2014-05-10 15:23:44 +00:00
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var o = 'location=no';
if (options && options.prompt == 'none') {
o += ',hidden=yes';
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var loginUrl = kc.createLoginUrl(options);
var ref = window.open(loginUrl, '_blank', o);
var callback;
var error;
ref.addEventListener('loadstart', function(event) {
if (event.url.indexOf('http://localhost') == 0) {
callback = parseCallback(event.url);
ref.close();
}
});
ref.addEventListener('loaderror', function(event) {
if (event.url.indexOf('http://localhost') != 0) {
error = true;
ref.close();
}
});
ref.addEventListener('exit', function(event) {
if (error || !callback) {
promise.setError();
} else {
processCallback(callback, promise);
}
});
return promise.promise;
},
logout: function(options) {
var promise = createPromise();
var logoutUrl = kc.createLogoutUrl(options);
var ref = window.open(logoutUrl, '_blank', 'location=no,hidden=yes');
var error;
ref.addEventListener('loadstart', function(event) {
if (event.url.indexOf('http://localhost') == 0) {
ref.close();
}
});
ref.addEventListener('loaderror', function(event) {
if (event.url.indexOf('http://localhost') != 0) {
error = true;
ref.close();
}
});
ref.addEventListener('exit', function(event) {
if (error) {
promise.setError();
} else {
clearToken();
promise.setSuccess();
}
});
return promise.promise;
},
accountManagement : function() {
var accountUrl = kc.createAccountUrl();
var ref = window.open(accountUrl, '_blank', 'location=no');
ref.addEventListener('loadstart', function(event) {
if (event.url.indexOf('http://localhost') == 0) {
ref.close();
}
});
},
redirectUri: function(options) {
return 'http://localhost';
}
iframe check login
2014-05-10 15:23:44 +00:00
}
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
throw 'invalid adapter type: ' + type;
iframe check login
2014-05-10 15:23:44 +00:00
}
Add AMD support to keycloak javascript adapter
2014-06-27 17:24:29 +00:00
var idTokenProperties = [
"name",
"given_name",
"family_name",
"middle_name",
"nickname",
"preferred_username",
"profile",
"picture",
"website",
"email",
"email_verified",
"gender",
"birthdate",
"zoneinfo",
"locale",
"phone_number",
"phone_number_verified",
"address",
"updated_at",
"formatted",
"street_address",
"locality",
"region",
"postal_code",
"country",
"claims_locales"
]
}
if ( typeof module === "object" && module && typeof module.exports === "object" ) {
// Expose KeyCloak as module.exports in loaders that implement the Node
// module pattern (including browserify). Do not create the global, since
// the user will be storing it themselves locally, and globals are frowned
// upon in the Node module world.
module.exports = Keycloak;
} else {
// Otherwise expose KeyCloak to the global object as usual
window.Keycloak = Keycloak;
// Register as a named AMD module, since KeyCloak can be concatenated with other
// files that may use define, but not via a proper concatenation script that
// understands anonymous AMD modules. A named AMD is safest and most robust
// way to register. Lowercase jquery is used because AMD module names are
// derived from file names, and KeyCloak is normally delivered in a lowercase
// file name. Do this after creating the global so that if an AMD module wants
// to call noConflict to hide this version of KeyCloak, it will work.
if ( typeof define === "function" && define.amd ) {
define( "keycloak", [], function () { return Keycloak; } );
}
iframe check login
2014-05-10 15:23:44 +00:00
}
Changed window.location.href to search.
2014-06-30 15:56:53 +00:00
})( window );
Reference in a new issue Copy permalink