feat: add exchangeAuthCode method

DanielRivers · DanielRivers · commit eb514ce8f375 · 2024-10-28T22:41:35.000Z
diff --git a/lib/main.test.ts b/lib/main.test.ts
@@ -39,6 +39,7 @@ describe("index exports", () => {
       "generateRandomString",
       "mapLoginMethodParamsForUrl",
       "sanatizeURL",
+      "exchangeAuthCode",
 
       // session manager
       "MemoryStorage",
diff --git a/lib/utils/exchangeAuthCode.test.ts b/lib/utils/exchangeAuthCode.test.ts
@@ -0,0 +1,129 @@
+import { describe, expect, it, vi, beforeEach, afterEach } from "vitest";
+import { exchangeAuthCode } from ".";
+import { MemoryStorage, StorageKeys } from "../sessionManager";
+import { setActiveStorage } from "./token";
+import createFetchMock from 'vitest-fetch-mock';
+
+const fetchMock = createFetchMock(vi);
+
+describe.only("exhangeAuthCode",  () => {
+  beforeEach(() => {
+    fetchMock.enableMocks();
+  });
+  
+  afterEach(() => {
+    fetchMock.resetMocks(); 
+  });
+
+  it.only("missing state param", async () => {
+    const urlParams = new URLSearchParams();
+    urlParams.append("code", "test");
+    
+    const result = await exchangeAuthCode({
+      urlParams,
+      domain: "http://test.kinde.com",
+      clientId: "test",
+      redirectURL: "http://test.kinde.com",
+    });
+
+    expect(result).toStrictEqual({
+      success: false,
+      error: "Invalid state or code",
+    });
+  });
+
+  it.only("missing code param", async () => {
+    const urlParams = new URLSearchParams();
+    urlParams.append("state", "test");
+    
+    const result = await exchangeAuthCode({
+      urlParams,
+      domain: "http://test.kinde.com",
+      clientId: "test",
+      redirectURL: "http://test.kinde.com",
+    });
+
+    expect(result).toStrictEqual({
+      success: false,
+      error: "Invalid state or code",
+    });
+  });
+
+  it.only("missing active storage", async () => {
+    const urlParams = new URLSearchParams();
+    urlParams.append("state", "test");
+    urlParams.append("code", "test");
+    
+    expect(exchangeAuthCode({
+      urlParams,
+      domain: "http://test.kinde.com",
+      clientId: "test",
+      redirectURL: "http://test.kinde.com",
+    })).rejects.toThrowError("No active storage found");
+  });
+
+  it.only("state mismatch", async () => {
+    const store = new MemoryStorage();
+    setActiveStorage(store);
+
+    await store.setItems({
+      [StorageKeys.state]: "storedState",
+    });
+
+    const urlParams = new URLSearchParams();
+    urlParams.append("state", "test");
+    urlParams.append("code", "test");
+    
+   const result = await exchangeAuthCode({
+      urlParams,
+      domain: "http://test.kinde.com",
+      clientId: "test",
+      redirectURL: "http://test.kinde.com",
+    })
+
+    expect(result).toStrictEqual({
+      success: false,
+      error: "Invalid state; supplied test, expected storedState",
+    });
+  });
+
+
+  it("should encode a simple string", async () => {
+    const store = new MemoryStorage();
+    setActiveStorage(store);
+
+    const state = "state";
+
+    await store.setItems({
+      [StorageKeys.state]: state,
+    });
+
+    const input = "hello";
+
+    const urlParams = new URLSearchParams();
+    urlParams.append("code", input);
+    urlParams.append("state", state);
+    urlParams.append("client_id", "test");
+    
+    fetchMock.mockResponseOnce(JSON.stringify({ access_token: "access_token", refresh_token: "refresh_token", id_token: "id_token" })); 
+
+    const result = await exchangeAuthCode({
+      urlParams,
+      domain: "http://test.kinde.com",
+      clientId: "test",
+      redirectURL: "http://test.kinde.com",
+    });
+    expect(result).toStrictEqual({
+      accessToken: "access_token",
+      refreshToken: "refresh_token",
+      idToken: "id_token",
+      success: true,
+    });
+
+    const postStoredState = await store.getSessionItem(StorageKeys.state);
+    expect(postStoredState).toBeNull();
+    const postCodeVerifier = await store.getSessionItem(StorageKeys.codeVerifier);
+    expect(postCodeVerifier).toBeNull();
+  });
+
+});
diff --git a/lib/utils/exchangeAuthCode.ts b/lib/utils/exchangeAuthCode.ts
@@ -0,0 +1,97 @@
+import { getActiveStorage, StorageKeys } from "../main";
+
+// TODO: Set the framework and version
+const _framework = "";
+const _frameworkVersion = "";
+
+export const exchangeAuthCode = async ({
+  urlParams,
+  domain,
+  clientId,
+  redirectURL,
+}: {
+  urlParams: URLSearchParams,
+  domain: string,
+  clientId: string,
+  redirectURL: string,
+}): Promise<unknown> => {
+  const state = urlParams.get("state");
+  const code = urlParams.get("code");
+
+  if (!state || !code) {
+    console.error("Invalid state or code");
+    return {
+      success: false,
+      error: "Invalid state or code",
+    };
+  }
+
+  const activeStorage = getActiveStorage();
+  if (!activeStorage) {
+    throw new Error("No active storage found");
+  }
+  activeStorage.getSessionItem(StorageKeys.state);
+
+  // warn if framework and version has not been set
+  if (!_framework || !_frameworkVersion) {
+    console.warn(
+      "Framework and version not set. Please set the framework and version in the config object",
+    );
+  }
+
+  const storedState = await activeStorage.getSessionItem(StorageKeys.state)
+  if (state !== storedState) {
+    console.error("Invalid state");
+    return {
+      success: false,
+      error: `Invalid state; supplied ${state}, expected ${storedState}`,
+    };
+  }
+
+  const codeVerifier = (await activeStorage.getSessionItem(
+    StorageKeys.codeVerifier,
+  )) as string;
+
+  const response = await fetch(`${domain}/oauth2/token`, {
+    method: "POST",
+    // ...(isUseCookie && {credentials: 'include'}),
+    credentials: "include",
+    headers: new Headers({
+      "Content-type": "application/x-www-form-urlencoded; charset=UTF-8",
+      "Kinde-SDK": `${_framework}/${_frameworkVersion}`,
+    }),
+    body: new URLSearchParams({
+      client_id: clientId,
+      code,
+      code_verifier: codeVerifier,
+      grant_type: "authorization_code",
+      redirect_uri: redirectURL,
+    }),
+  });
+
+  const data: {
+    access_token: string;
+    id_token: string;
+    refresh_token: string;
+  } = await response.json();
+
+  activeStorage.setItems({
+    [StorageKeys.accessToken]: data.access_token,
+    [StorageKeys.idToken]: data.id_token,
+    [StorageKeys.refreshToken]: data.refresh_token,
+  });
+
+  activeStorage.removeItems(StorageKeys.state, StorageKeys.codeVerifier);
+
+  // Clear all url params
+  // const url = new URL(window.location.toString());
+  // url.search = "";
+  // window.history.pushState({}, "", url);
+
+  return {
+    success: true,
+    [StorageKeys.accessToken]: data.access_token,
+    [StorageKeys.idToken]: data.id_token,
+    [StorageKeys.refreshToken]: data.refresh_token,
+  };
+};
diff --git a/lib/utils/exhangeAuthCode._ts b/lib/utils/exhangeAuthCode._ts
diff --git a/lib/utils/index.ts b/lib/utils/index.ts
@@ -5,6 +5,7 @@ import { extractAuthResults } from "./extractAuthResults";
 import { sanatizeURL } from "./sanatizeUrl";
 import { generateAuthUrl } from "./generateAuthUrl";
 import { mapLoginMethodParamsForUrl } from "./mapLoginMethodParamsForUrl";
+import { exchangeAuthCode } from "./exchangeAuthCode";
 
 export {
   base64UrlEncode,
@@ -13,4 +14,5 @@ export {
   sanatizeURL,
   generateAuthUrl,
   mapLoginMethodParamsForUrl,
+  exchangeAuthCode
 };
