50 lines
1.6 KiB
TypeScript
50 lines
1.6 KiB
TypeScript
import { find } from "lodash";
|
|
import env from "@server/env";
|
|
import Team from "@server/models/Team";
|
|
import providerConfigs from "../../routes/auth/providers";
|
|
|
|
export default class AuthenticationHelper {
|
|
/**
|
|
* Returns the enabled authentication provider configurations for a team,
|
|
* if given otherwise all enabled providers are returned.
|
|
*
|
|
* @param team The team to get enabled providers for
|
|
* @returns A list of authentication providers
|
|
*/
|
|
static providersForTeam(team?: Team) {
|
|
const isCloudHosted = env.isCloudHosted();
|
|
|
|
return providerConfigs
|
|
.sort((config) => (config.id === "email" ? 1 : -1))
|
|
.filter((config) => {
|
|
// Don't return authentication methods that are not enabled.
|
|
if (!config.enabled) {
|
|
return false;
|
|
}
|
|
|
|
// If no team return all possible authentication providers.
|
|
if (!team) {
|
|
return true;
|
|
}
|
|
|
|
// Guest sign-in is an exception as it does not have an authentication
|
|
// provider using passport, instead it exists as a boolean option.
|
|
if (config.id === "email") {
|
|
return team?.emailSigninEnabled;
|
|
}
|
|
|
|
const authProvider = find(team.authenticationProviders, {
|
|
name: config.id,
|
|
});
|
|
|
|
// If cloud hosted then the auth provider must be enabled for the team,
|
|
// If self-hosted then it must not be actively disabled, otherwise all
|
|
// providers are considered.
|
|
return (
|
|
(!isCloudHosted && authProvider?.enabled !== false) ||
|
|
(isCloudHosted && authProvider?.enabled)
|
|
);
|
|
});
|
|
}
|
|
}
|