From bca1e0b33cf3f5cc1f494bd1c3122518b9a6fd36 Mon Sep 17 00:00:00 2001
From: Christoph Reiter <reiter.christoph@gmail.com>
Date: Tue, 14 Apr 2020 16:23:45 +0200
Subject: [PATCH] Extend the demo to show the parsed token and make a userinfo
request
This makes it easier to test actual requests and to debug the token content
---
packages/auth/src/vpu-auth-demo.js | 31 ++++++++++++++++++++++++++++++
packages/auth/src/vpu-auth.js | 7 +++++++
2 files changed, 38 insertions(+)
diff --git a/packages/auth/src/vpu-auth-demo.js b/packages/auth/src/vpu-auth-demo.js
index 070a9c10..615e5976 100644
--- a/packages/auth/src/vpu-auth-demo.js
+++ b/packages/auth/src/vpu-auth-demo.js
@@ -25,6 +25,34 @@ class AuthDemo extends LitElement {
super.update(changedProperties);
}
+ async _onUserInfoClick() {
+ if (!window.VPUAuthToken) {
+ console.error("not logged in");
+ return;
+ }
+ let userInfoURL = commonUtils.setting('keyCloakBaseURL') + '/realms/tugraz/protocol/openid-connect/userinfo';
+
+ // NOTE: the URL and realm need to match the keycloak config above
+ const response = await fetch(
+ userInfoURL, {
+ headers: {
+ 'Content-Type': 'application/json',
+ 'Authorization': 'Bearer ' + window.VPUAuthToken
+ }
+ }
+ );
+ console.log(await response.json());
+ }
+
+ async _onShowToken() {
+ if (!window.VPUAuthToken) {
+ console.error("not logged in");
+ return;
+ }
+
+ console.log(window.VPUAuthTokenParsed);
+ }
+
render() {
commonUtils.initAssetBaseURL('vpu-auth-src');
const silentCheckSsoUri = commonUtils.getAssetURL('silent-check-sso.html');
@@ -53,6 +81,9 @@ class AuthDemo extends LitElement {
<vpu-auth lang="${this.lang}" keycloak-config='{"silentCheckSsoRedirectUri": "${silentCheckSsoUri}"}' load-person try-login></vpu-auth>
</div>
</section>
+
+ <input type="button" value="Fetch userinfo (see console)" @click="${this._onUserInfoClick}">
+ <input type="button" value="Show token (see console)" @click="${this._onShowToken}">
`;
}
}
diff --git a/packages/auth/src/vpu-auth.js b/packages/auth/src/vpu-auth.js
index 1bfeace9..d703e6ec 100644
--- a/packages/auth/src/vpu-auth.js
+++ b/packages/auth/src/vpu-auth.js
@@ -25,6 +25,7 @@ const LoginStatus = Object.freeze({
* Dispatches an event `vpu-auth-init` and sets some global variables:
* window.VPUAuthSubject: Keycloak username
* window.VPUAuthToken: Keycloak token to send with your requests
+ * window.VPUAuthTokenParsed: Keycloak token content
* window.VPUUserFullName: Full name of the user
* window.VPUPersonId: Person identifier of the user
* window.VPUPerson: Person json object of the user (optional, enable by setting the `load-person` attribute,
@@ -38,6 +39,7 @@ class VPUAuth extends VPULitElement {
this.loadPerson = false;
this.showProfile = false;
this.token = "";
+ this.tokenParsed = null;
this.subject = "";
this.name = "";
this.personId = "";
@@ -74,8 +76,10 @@ class VPUAuth extends VPULitElement {
if (kc.authenticated) {
let tokenChanged = (this.token !== kc.token);
+ this.tokenParsed = kc.tokenParsed;
this.name = kc.idTokenParsed.name;
this.token = kc.token;
+
this.subject = kc.subject;
const personId = kc.idTokenParsed.preferred_username;
if (personId !== this.personId) {
@@ -86,6 +90,7 @@ class VPUAuth extends VPULitElement {
window.VPUAuthSubject = this.subject;
window.VPUAuthToken = this.token;
+ window.VPUAuthTokenParsed = this.tokenParsed;
window.VPUUserFullName = this.name;
window.VPUPersonId = this.personId;
window.VPUPerson = this.person;
@@ -97,12 +102,14 @@ class VPUAuth extends VPULitElement {
}
this.name = "";
this.token = "";
+ this.tokenParsed = null;
this.subject = "";
this.personId = "";
this.person = null;
window.VPUAuthSubject = this.subject;
window.VPUAuthToken = this.token;
+ window.VPUAuthTokenParsed = this.tokenParsed;
window.VPUUserFullName = this.name;
window.VPUPersonId = this.personId;
window.VPUPerson = this.person;
--
GitLab