37 lines
977 B
TypeScript
37 lines
977 B
TypeScript
import JWT from "jsonwebtoken";
|
|
import env from "@server/env";
|
|
import OAuthClient from "./oauth";
|
|
|
|
type AzurePayload = {
|
|
/** A GUID that represents the Azure AD tenant that the user is from */
|
|
tid: string;
|
|
};
|
|
|
|
export default class AzureClient extends OAuthClient {
|
|
endpoints = {
|
|
authorize: "https://login.microsoftonline.com/common/oauth2/v2.0/authorize",
|
|
token: "https://login.microsoftonline.com/common/oauth2/v2.0/token",
|
|
userinfo: "https://graph.microsoft.com/v1.0/me",
|
|
};
|
|
|
|
async rotateToken(
|
|
accessToken: string,
|
|
refreshToken: string
|
|
): Promise<{
|
|
accessToken: string;
|
|
refreshToken?: string;
|
|
expiresAt: Date;
|
|
}> {
|
|
if (env.isCloudHosted) {
|
|
return super.rotateToken(accessToken, refreshToken);
|
|
}
|
|
|
|
const payload = JWT.decode(accessToken) as AzurePayload;
|
|
return super.rotateToken(
|
|
accessToken,
|
|
refreshToken,
|
|
`https://login.microsoftonline.com/${payload.tid}/oauth2/v2.0/token`
|
|
);
|
|
}
|
|
}
|