feat: Validate Google, Azure, OIDC SSO access (#3590)
* chore: Store expiresAt on UserAuthentications. This represents the time that the accessToken is no longer valid and should be exchanged using the refreshToken * feat: Check and expire Google SSO * fix: Better handling of multiple auth methods Added more docs * fix: Retry access validation with network errors * Small refactor, add Azure token validation support * doc * test * lint * OIDC refresh support * CheckSSOAccessTask -> ValidateSSOAccessTask Added lastValidatedAt column Skip checks if validated within 5min Some edge cases around encrypted columns
This commit is contained in:
Tom Moor
GitHub
9
server/utils/google.ts
Normal file
9
server/utils/google.ts
Normal file
@@ -0,0 +1,9 @@
|
||||
import OAuthClient from "./oauth";
|
||||
|
||||
export default class GoogleClient extends OAuthClient {
|
||||
endpoints = {
|
||||
authorize: "https://accounts.google.com/o/oauth2/auth",
|
||||
token: "https://accounts.google.com/o/oauth2/token",
|
||||
userinfo: "https://www.googleapis.com/oauth2/v3/userinfo",
|
||||
};
|
||||
}
|
||||
Reference in New Issue
Block a user