feat: Add google authentication package, cleanup old code (#7496)

packages/modules/auth/src/providers/google.ts

@@ -1,224 +0,0 @@
-import { AuthenticationInput, AuthenticationResponse } from "@medusajs/types"
-import { AbstractAuthModuleProvider, MedusaError } from "@medusajs/utils"
-import jwt, { JwtPayload } from "jsonwebtoken"
-
-import { AuthorizationCode } from "simple-oauth2"
-import url from "url"
-
-type InjectedDependencies = {
-  authIdentityService: any
-}
-
-type ProviderConfig = {
-  clientID: string
-  clientSecret: string
-  callbackURL: string
-  successRedirectUrl?: string
-}
-
-class GoogleProvider extends AbstractAuthModuleProvider {
-  protected readonly authIdentityService_: any
-
-  constructor({ authIdentityService }: InjectedDependencies, options: any) {
-    super(arguments[0], {
-      provider: "google",
-      displayName: "Google Authentication",
-    })
-
-    this.authIdentityService_ = authIdentityService
-  }
-
-  async authenticate(
-    req: AuthenticationInput
-  ): Promise<AuthenticationResponse> {
-    if (req.query?.error) {
-      return {
-        success: false,
-        error: `${req.query.error_description}, read more at: ${req.query.error_uri}`,
-      }
-    }
-
-    let config: ProviderConfig
-
-    try {
-      config = await this.getProviderConfig(req)
-    } catch (error) {
-      return { success: false, error: error.message }
-    }
-
-    return this.getRedirect(config)
-  }
-
-  async validateCallback(
-    req: AuthenticationInput
-  ): Promise<AuthenticationResponse> {
-    if (req.query && req.query.error) {
-      return {
-        success: false,
-        error: `${req.query.error_description}, read more at: ${req.query.error_uri}`,
-      }
-    }
-
-    let config: ProviderConfig
-
-    try {
-      config = await this.getProviderConfig(req)
-    } catch (error) {
-      return { success: false, error: error.message }
-    }
-
-    const code = req.query?.code ?? req.body?.code
-    if (!code) {
-      return { success: false, error: "No code provided" }
-    }
-
-    return await this.validateCallbackToken(code, config)
-  }
-
-  // abstractable
-  async verify_(refreshToken: string) {
-    const jwtData = jwt.decode(refreshToken, {
-      complete: true,
-    }) as JwtPayload
-    const entity_id = jwtData.payload.email
-
-    let authIdentity
-
-    try {
-      authIdentity =
-        await this.authIdentityService_.retrieveByProviderAndEntityId(
-          entity_id,
-          this.provider
-        )
-    } catch (error) {
-      if (error.type === MedusaError.Types.NOT_FOUND) {
-        const [createdAuthIdentity] = await this.authIdentityService_.create([
-          {
-            entity_id,
-            provider: this.provider,
-            user_metadata: jwtData!.payload,
-          },
-        ])
-        authIdentity = createdAuthIdentity
-      } else {
-        return { success: false, error: error.message }
-      }
-    }
-
-    return {
-      success: true,
-      authIdentity,
-    }
-  }
-
-  // abstractable
-  private async validateCallbackToken(
-    code: string,
-    { clientID, callbackURL, clientSecret }: ProviderConfig
-  ) {
-    const client = this.getAuthorizationCodeHandler({ clientID, clientSecret })
-
-    const tokenParams = {
-      code,
-      redirect_uri: callbackURL,
-    }
-
-    try {
-      const accessToken = await client.getToken(tokenParams)
-
-      const { authIdentity, success } = await this.verify_(
-        accessToken.token.id_token
-      )
-
-      const { successRedirectUrl } = this.getConfig()
-
-      return {
-        success,
-        authIdentity,
-        successRedirectUrl,
-      }
-    } catch (error) {
-      return { success: false, error: error.message }
-    }
-  }
-
-  private getConfig(): ProviderConfig {
-    // TODO: Fetch this from provider config
-    // const config: Partial<ProviderConfig> = { ...this.scopeConfig_ }
-    const config = {} as any
-
-    if (!config.clientID) {
-      throw new Error("Google clientID is required")
-    }
-
-    if (!config.clientSecret) {
-      throw new Error("Google clientSecret is required")
-    }
-
-    if (!config.callbackURL) {
-      throw new Error("Google callbackUrl is required")
-    }
-
-    return config as ProviderConfig
-  }
-
-  private originalURL(req: AuthenticationInput) {
-    const host = req.headers?.host
-    const protocol = req.protocol
-    const path = req.url || ""
-
-    return protocol + "://" + host + path
-  }
-
-  private async getProviderConfig(
-    req: AuthenticationInput
-  ): Promise<ProviderConfig> {
-    const config = this.getConfig()
-
-    const callbackURL = config.callbackURL
-
-    const parsedCallbackUrl = !url.parse(callbackURL).protocol
-      ? url.resolve(this.originalURL(req), callbackURL)
-      : callbackURL
-
-    return { ...config, callbackURL: parsedCallbackUrl }
-  }
-
-  // Abstractable
-  private getRedirect({ clientID, callbackURL, clientSecret }: ProviderConfig) {
-    const client = this.getAuthorizationCodeHandler({ clientID, clientSecret })
-
-    const location = client.authorizeURL({
-      redirect_uri: callbackURL,
-      scope: "email profile",
-    })
-
-    return { success: true, location }
-  }
-
-  private getAuthorizationCodeHandler({
-    clientID,
-    clientSecret,
-  }: {
-    clientID: string
-    clientSecret: string
-  }) {
-    const config = {
-      client: {
-        id: clientID,
-        secret: clientSecret,
-      },
-      auth: {
-        // TODO: abstract to not be google specific
-        authorizeHost: "https://accounts.google.com",
-        authorizePath: "/o/oauth2/v2/auth",
-        tokenHost: "https://www.googleapis.com",
-        tokenPath: "/oauth2/v4/token",
-      },
-    }
-
-    return new AuthorizationCode(config)
-  }
-}
-
-export default GoogleProvider

packages/modules/auth/src/providers/index.ts

@@ -1 +0,0 @@
-export { default as GoogleProvider } from "./google"