Resubida app de ejemplo, la anterior no logueaba.

2021-01-20 10:38:04 +01:00
parent 88949dbadf
commit a70f652221
35 changed files with 1762 additions and 1163 deletions
--- a/src/app/app.component.ts
+++ b/src/app/app.component.ts
@@ -1,32 +1,39 @@
+import { noDiscoveryAuthConfig } from './auth-no-discovery.config';
+import { authConfig } from './auth.config';
 import { Component } from '@angular/core';
-import { OAuthService } from 'angular-oauth2-oidc';
+import { OAuthService, NullValidationHandler } from 'angular-oauth2-oidc';
 import { Router } from '@angular/router';
 import { filter } from 'rxjs/operators';
 import { authCodeFlowConfig } from './auth-code-flow.config';
+import { JwksValidationHandler } from 'angular-oauth2-oidc-jwks';
 import { useHash } from '../flags';

@Component({
  // tslint:disable-next-line:component-selector
-  selector: 'app-root',
-  templateUrl: './app.component.html',
+  selector: 'flight-app',
+  templateUrl: './app.component.html'
 })
 export class AppComponent {
  constructor(private router: Router, private oauthService: OAuthService) {
-    this.configureCodeFlow();
+    // Remember the selected configuration
+    if (sessionStorage.getItem('flow') === 'code') {
+      this.configureCodeFlow();
+    } else {
+      this.configureImplicitFlow();
+    }

    // Automatically load user profile
    this.oauthService.events
-      .pipe(filter((e) => e.type === 'token_received'))
-      .subscribe((_) => {
-        console.log('state', this.oauthService.state);
+      .pipe(filter(e => e.type === 'token_received'))
+      .subscribe(_ => {
+        console.debug('state', this.oauthService.state);
        this.oauthService.loadUserProfile();
      });
  }

-  private configureCodeFlow(): void {
+  private configureCodeFlow() {
    this.oauthService.configure(authCodeFlowConfig);
-    this.oauthService.loadDiscoveryDocumentAndTryLogin().then((success) => {
-      console.error('LOGIN success=' + success);
+    this.oauthService.loadDiscoveryDocumentAndTryLogin().then(_ => {
      if (useHash) {
        this.router.navigate(['/']);
      }
@@ -35,4 +42,95 @@ export class AppComponent {
    // Optional
    this.oauthService.setupAutomaticSilentRefresh();
  }
+
+  private configureImplicitFlow() {
+    this.oauthService.configure(authConfig);
+    this.oauthService.setStorage(localStorage);
+    // this.oauthService.tokenValidationHandler = new JwksValidationHandler();
+
+    this.oauthService.loadDiscoveryDocumentAndTryLogin().then(_ => {
+      if (useHash) {
+        this.router.navigate(['/']);
+      }
+    });
+
+    // Optional
+    this.oauthService.setupAutomaticSilentRefresh();
+
+    // Display all events
+    this.oauthService.events.subscribe(e => {
+      // tslint:disable-next-line:no-console
+      console.debug('oauth/oidc event', e);
+    });
+
+    this.oauthService.events
+      .pipe(filter(e => e.type === 'session_terminated'))
+      .subscribe(e => {
+        // tslint:disable-next-line:no-console
+        console.debug('Your session has been terminated!');
+      });
+  }
+
+  //
+  // Below you find further examples for configuration functions
+  //
+
+  private configureWithoutDiscovery() {
+    this.oauthService.configure(noDiscoveryAuthConfig);
+    this.oauthService.tokenValidationHandler = new NullValidationHandler();
+    this.oauthService.tryLogin();
+  }
+
+  private configureAuth() {
+    //
+    // This method demonstrated the old API; see configureWithNewConfigApi for new one
+    //
+
+    // URL of the SPA to redirect the user to after login
+    this.oauthService.redirectUri = window.location.origin + '/index.html';
+
+    // URL of the SPA to redirect the user after silent refresh
+    this.oauthService.silentRefreshRedirectUri =
+      window.location.origin + '/silent-refresh.html';
+
+    // The SPA's id. The SPA is registerd with this id at the auth-server
+    this.oauthService.clientId = 'spa-demo';
+
+    // set the scope for the permissions the client should request
+    // The first three are defined by OIDC. The 4th is a usecase-specific one
+    this.oauthService.scope = 'openid profile email voucher';
+
+    // Url of the Identity Provider
+    this.oauthService.issuer =
+      'https://steyer-identity-server.azurewebsites.net/identity';
+
+    this.oauthService.tokenValidationHandler = new NullValidationHandler();
+
+    this.oauthService.events.subscribe(e => {
+      // tslint:disable-next-line:no-console
+      console.debug('oauth/oidc event', e);
+    });
+
+    // Load Discovery Document and then try to login the user
+    this.oauthService.loadDiscoveryDocument().then(doc => {
+      this.oauthService.tryLogin();
+    });
+
+    this.oauthService.events
+      .pipe(filter(e => e.type === 'token_expires'))
+      .subscribe(e => {
+        // tslint:disable-next-line:no-console
+        console.debug('received token_expires event', e);
+        this.oauthService.silentRefresh();
+      });
+  }
+
+  private configurePasswordFlow() {
+    // Set a dummy secret
+    // Please note that the auth-server used here demand the client to transmit a client secret, although
+    // the standard explicitly cites that the password flow can also be used without it. Using a client secret
+    // does not make sense for a SPA that runs in the browser. That's why the property is called dummyClientSecret
+    // Using such a dummy secreat is as safe as using no secret.
+    this.oauthService.dummyClientSecret = 'geheim';
+  }
 }