gmgauthier/mocksaml
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Validate email and build SAML response

Browse Source
This commit is contained in:
Aswin V 2022-02-22 13:47:41 +05:30
parent 6f9bab1969
commit 628e760b8b
1 changed files with 40 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

44
pages/api/saml/auth.ts
View File

@ -1,8 +1,44 @@
import type { NextApiRequest, NextApiResponse } from "next"; import type { NextApiRequest, NextApiResponse } from 'next';
import type { User } from 'types';
import {
createResponseForm,
createResponseXML,
fetchPrivateKey,
fetchPublicKey,
signResponseXML,
} from 'utils';
export async function handler(req: NextApiRequest, res: NextApiResponse) { export default async function handler(req: NextApiRequest, res: NextApiResponse) {
if (req.method === "POST") { if (req.method === 'POST') {
res.status(200).json({ name: "John Doe" }); console.log(req.body);
const email = req.body.email;
if (!email.endsWith('@example.com')) {
res.status(403).send(`${email} denied access`);
}
const id = email.replace('@example.com', '');
const user: User = {
id,
email,
firstName: id,
lastName: id,
};
console.log(`🕺🏻`, user);
const xml = await createResponseXML({
idpIdentityId: req.body.audience,
audience: req.body.audience,
acsUrl: req.body.acsUrl,
user: user,
});
const signingKey = await fetchPrivateKey();
const publicKey = await fetchPublicKey();
const xmlSigned = await signResponseXML(xml, signingKey, publicKey);
const encodedSamlResponse = Buffer.from(xmlSigned).toString('base64');
const html = createResponseForm(req.body.relayState, encodedSamlResponse, req.body.acsUrl);
res.send(html);
} else { } else {
res.status(405).send(`Method ${req.method} Not Allowed`); res.status(405).send(`Method ${req.method} Not Allowed`);
} }