forked from guacsec/trustify-ui
-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathoidc.ts
More file actions
28 lines (24 loc) · 1012 Bytes
/
oidc.ts
File metadata and controls
28 lines (24 loc) · 1012 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
import type { OidcClientSettings } from "oidc-client-ts";
import { isAuthServerEmbedded } from "./Constants";
import { ENV } from "./env";
export const OIDC_SERVER_URL = isAuthServerEmbedded
? ENV.OIDC_SERVER_EMBEDDED_PATH || "/auth/realms/trustify"
: ENV.OIDC_SERVER_URL || "http://localhost:8090/realms/trustify";
export const OIDC_CLIENT_ID = ENV.OIDC_CLIENT_ID || "frontend";
// Cognito requires client_id + logout_uri.
// Keycloak ignores both (uses id_token_hint + post_logout_redirect_uri added by oidc-client-ts instead) and follows the OIDC RP-Initiated Logout spec.
export const oidcSignoutArgs = {
extraQueryParams: {
client_id: OIDC_CLIENT_ID,
logout_uri: window.location.origin,
},
};
export const oidcClientSettings: OidcClientSettings = {
authority: OIDC_SERVER_URL,
client_id: OIDC_CLIENT_ID,
redirect_uri: window.location.origin,
post_logout_redirect_uri: window.location.origin,
response_type: "code",
loadUserInfo: true,
scope: ENV.OIDC_SCOPE || "openid",
};