sasjs/server
1
0
Fork 0
mirror of https://github.com/sasjs/server.git synced 2026-01-12 08:40:04 +00:00
Code Issues Projects Releases Wiki Activity

feat: authentication with azure all routes are protected

Browse Source
This commit is contained in:
Saad Jutt
2021-10-12 21:48:35 +05:00
parent 686bf2eb11
commit bbd7133f5c
8 changed files with 1212 additions and 79 deletions
Download Patch File Download Diff File Expand all files Collapse all files

48
src/app.ts
View File

@@ -1,10 +1,56 @@
import path from 'path'
import express from 'express'
import session from 'express-session'
// import msalWrapper from 'msal-express-wrapper'
const msalWrapper = require('msal-express-wrapper')
import indexRouter from './routes'
require('dotenv').config()
import { appSettings } from './appSettings'
const app = express()
app.use(express.json({ limit: '50mb' }))
app.use('/', indexRouter)
app.use(express.static(path.join(__dirname, '..', 'public')))
/**
* Using express-session middleware. Be sure to familiarize yourself with available options
* and set them as desired. Visit: https://www.npmjs.com/package/express-session
*/
const sessionConfig = {
secret: appSettings.appCredentials.clientSecret,
resave: false,
saveUninitialized: false,
cookie: {
secure: false // set this to true on production
}
}
if (app.get('env') === 'production') {
app.set('trust proxy', 1) // trust first proxy
sessionConfig.cookie.secure = true // serve secure cookies
}
app.use(session(sessionConfig))
// instantiate the wrapper
const authProvider = new msalWrapper.AuthProvider(appSettings)
// initialize the wrapper
app.use(authProvider.initialize())
// authentication routes
app.get('/signin', authProvider.signIn({ successRedirect: '/' }))
app.get('/signout', authProvider.signOut({ successRedirect: '/' }))
// secure routes
app.get('/', authProvider.isAuthenticated(), indexRouter)
app.get('/error', (req, res) => res.redirect('/500.html'))
app.get('/unauthorized', (req, res) => res.redirect('/401.html'))
app.get('*', (req, res) => res.status(404).redirect('/404.html'))
export default app

12
src/appSettings.ts Normal file
View File

@@ -0,0 +1,12 @@
export const appSettings = {
appCredentials: {
clientId: process.env.CLIENTID as string,
tenantId: process.env.TENANTID as string,
clientSecret: process.env.CLIENTSECRET as string
},
authRoutes: {
redirect: '/redirect',
error: '/error', // the wrapper will redirect to this route in case of any error.
unauthorized: '/unauthorized' // the wrapper will redirect to this route in case of unauthorized access attempt.
}
}