schiwagoa/tianji
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: add custom oidc/oauth provider support

Browse Source
This commit is contained in:
moonrailgun 2024-09-19 23:33:22 +08:00
parent 90953e490c
commit d0afdf5c91
4 changed files with 58 additions and 31 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/client/api/authjs/useAuth.ts
View File

@ -39,7 +39,8 @@ export function useAuth() {
} }
); );
const loginWithOAuth = useEvent(async (provider: BuiltInProviderType) => { const loginWithOAuth = useEvent(
async (provider: BuiltInProviderType | 'custom') => {
let res: SignInResponse | undefined; let res: SignInResponse | undefined;
try { try {
res = await signIn(provider, { res = await signIn(provider, {
@ -63,7 +64,8 @@ export function useAuth() {
} }
return userInfo; return userInfo;
}); }
);
const logout = useEvent(async () => { const logout = useEvent(async () => {
await signOut({ await signOut({

16
src/client/routes/login.tsx
View File

@ -8,7 +8,7 @@ import { Button } from '@/components/ui/button';
import { Input } from '@/components/ui/input'; import { Input } from '@/components/ui/input';
import { useAuth } from '@/api/authjs/useAuth'; import { useAuth } from '@/api/authjs/useAuth';
import { useEventWithLoading } from '@/hooks/useEvent'; import { useEventWithLoading } from '@/hooks/useEvent';
import { LuGithub } from 'react-icons/lu'; import { LuGithub, LuLayers } from 'react-icons/lu';
export const Route = createFileRoute('/login')({ export const Route = createFileRoute('/login')({
validateSearch: z.object({ validateSearch: z.object({
@ -102,7 +102,8 @@ function LoginComponent() {
<> <>
<Divider>{t('Or')}</Divider> <Divider>{t('Or')}</Divider>
<div className="flex justify-center"> <div className="flex justify-center gap-2">
{authProvider.includes('github') && (
<Button <Button
variant="secondary" variant="secondary"
className="h-12 w-12 p-3" className="h-12 w-12 p-3"
@ -110,6 +111,17 @@ function LoginComponent() {
> >
<LuGithub size={24} /> <LuGithub size={24} />
</Button> </Button>
)}
{authProvider.includes('custom') && (
<Button
variant="secondary"
className="h-12 w-12 p-3"
onClick={() => loginWithOAuth('custom')}
>
<LuLayers size={24} />
</Button>
)}
</div> </div>
</> </>
)} )}

4
src/server/model/auth.ts
View File

@ -89,6 +89,10 @@ export const authConfig: Omit<AuthConfig, 'raw'> = {
name: 'Google', name: 'Google',
...env.auth.google, ...env.auth.google,
}), }),
env.auth.provider.includes('custom') && {
id: 'custom',
...env.auth.custom,
},
]), ]),
adapter: TianjiPrismaAdapter(prisma), adapter: TianjiPrismaAdapter(prisma),
secret: env.auth.secret, secret: env.auth.secret,

9
src/server/utils/env.ts
View File

@ -18,6 +18,7 @@ export const env = {
!!process.env.EMAIL_SERVER && 'email', !!process.env.EMAIL_SERVER && 'email',
!!process.env.AUTH_GITHUB_ID && 'github', !!process.env.AUTH_GITHUB_ID && 'github',
!!process.env.AUTH_GOOGLE_ID && 'google', !!process.env.AUTH_GOOGLE_ID && 'google',
!!process.env.AUTH_CUSTOM_ID && 'custom',
]), ]),
restrict: { restrict: {
email: process.env.AUTH_RESTRICT_EMAIL, // for example: @example.com email: process.env.AUTH_RESTRICT_EMAIL, // for example: @example.com
@ -35,6 +36,14 @@ export const env = {
clientId: process.env.AUTH_GOOGLE_ID, clientId: process.env.AUTH_GOOGLE_ID,
clientSecret: process.env.AUTH_GOOGLE_SECRET, clientSecret: process.env.AUTH_GOOGLE_SECRET,
}, },
custom: {
// Reference: https://authjs.dev/guides/configuring-oauth-providers
name: process.env.AUTH_CUSTOM_NAME || 'Custom',
type: process.env.AUTH_CUSTOM_TYPE || 'oidc', // or oauth
issuer: process.env.AUTH_CUSTOM_ISSUR,
clientId: process.env.AUTH_CUSTOM_ID,
clientSecret: process.env.AUTH_CUSTOM_SECRET,
},
}, },
allowRegister: checkEnvTrusty(process.env.ALLOW_REGISTER), allowRegister: checkEnvTrusty(process.env.ALLOW_REGISTER),
allowOpenapi: checkEnvTrusty(process.env.ALLOW_OPENAPI ?? 'true'), allowOpenapi: checkEnvTrusty(process.env.ALLOW_OPENAPI ?? 'true'),