Merge pull request #391 from NDLANO/custom-login-domain

Use custom domain for login

Author: gunnarvelle

src/config.js

@@ -40,13 +40,11 @@ const apiDomain = activatedForEnvironment(
 const ltiActivated = activatedForEnvironment({ test: true, local: true }, false);
 const pinterestActivated = activatedForEnvironment({ test: true, local: true }, false);
 
-const getAuth0Hostname = () => {
-  switch (environment) {
-    case "prod":
-      return "ndla.eu.auth0.com";
-    default:
-      return `ndla-${environment}.eu.auth0.com`;
+const getAuth0Hostname = (prettyUrl = false) => {
+  if (prettyUrl) {
+    return `login.${environment}.ndla.no`.replace(".prod", "");
   }
+  return `ndla-${environment}.eu.auth0.com`.replace("-prod", "");
 };
 
 const editorialFrontendDomain = () => {
@@ -79,6 +77,10 @@ const config = {
   ltiActivated: getEnvironmentVariable("LTI_ACTIVATED", ltiActivated),
   ndlaPersonalClientId: getEnvironmentVariable("NDLA_PERSONAL_CLIENT_ID", ""),
   auth0Domain: getEnvironmentVariable("AUTH0_DOMAIN", getAuth0Hostname()),
+  auth0BrowserDomain: getEnvironmentVariable(
+    "AUTH0_CUSTOM_DOMAIN",
+    getAuth0Hostname(getEnvironmentVariable("AUTH0_CUSTOM_DOMAIN_ENABLED", false)),
+  ),
   disableSSR: getEnvironmentVariable("DISABLE_SSR", false),
   zendeskWidgetKey: getEnvironmentVariable("NDLA_ZENDESK_WIDGET_KEY"),
   app: {

src/server/helpers/Auth0SilentCallback.js

@@ -15,7 +15,7 @@ const Auth0SilentCallback = `
       <script src="https://cdn.auth0.com/js/auth0/9.10.0/auth0.min.js"></script>
       <script type="text/javascript">
         var webAuth = new auth0.WebAuth({
-          domain: '${config.auth0Domain}',
+          domain: '${config.auth0BrowserDomain}',
           clientID: '${config.ndlaPersonalClientId}'
         });
         var result = webAuth.parseHash({ hash: window.location.hash }, function(err, data) {

src/server/server.js

@@ -173,7 +173,7 @@ app.get(
       jwksUri: `https://${config.auth0Domain}/.well-known/jwks.json`,
     }),
     audience: "ndla_system",
-    issuer: `https://${config.auth0Domain}/`,
+    issuer: `https://${config.auth0BrowserDomain}/`,
     algorithms: ["RS256"],
   }),
   async (req, res) => {

src/sources/apiConstants.js

@@ -10,7 +10,7 @@ import defined from "defined";
 import config from "../config";
 
 const NDLA_API_URL = config.ndlaApiUrl;
-const AUTH0_DOMAIN = config.auth0Domain;
+const AUTH0_DOMAIN = config.auth0BrowserDomain;
 const NDLA_PERSONAL_CLIENT_ID = config.ndlaPersonalClientId;
 
 /* if (process.env.NODE_ENV === 'unittest') {