1
0
mirror of https://github.com/mailcow/mailcow-dockerized.git synced 2024-12-23 02:04:46 +02:00
mailcow-dockerized/data/web/api/oauth2-redirect.html

80 lines
2.7 KiB
HTML
Raw Normal View History

<!doctype html>
<html lang="en-US">
2021-10-18 17:05:56 +02:00
<head>
<title>Swagger UI: OAuth2 Redirect</title>
</head>
<body>
<script>
'use strict';
function run () {
var oauth2 = window.opener.swaggerUIRedirectOauth2;
var sentState = oauth2.state;
var redirectUrl = oauth2.redirectUrl;
var isValid, qp, arr;
if (/code|token|error/.test(window.location.hash)) {
2022-09-26 15:56:24 +02:00
qp = window.location.hash.substring(1).replace('?', '&');
} else {
qp = location.search.substring(1);
}
2021-10-18 17:05:56 +02:00
arr = qp.split("&");
arr.forEach(function (v,i,_arr) { _arr[i] = '"' + v.replace('=', '":"') + '"';});
qp = qp ? JSON.parse('{' + arr.join() + '}',
function (key, value) {
2021-10-18 17:05:56 +02:00
return key === "" ? value : decodeURIComponent(value);
}
2021-10-18 17:05:56 +02:00
) : {};
2021-10-18 17:05:56 +02:00
isValid = qp.state === sentState;
if ((
2021-10-18 17:05:56 +02:00
oauth2.auth.schema.get("flow") === "accessCode" ||
oauth2.auth.schema.get("flow") === "authorizationCode" ||
oauth2.auth.schema.get("flow") === "authorization_code"
) && !oauth2.auth.code) {
if (!isValid) {
oauth2.errCb({
authId: oauth2.auth.name,
source: "auth",
level: "warning",
2022-09-26 15:56:24 +02:00
message: "Authorization may be unsafe, passed state was changed in server. The passed state wasn't returned from auth server."
});
}
if (qp.code) {
delete oauth2.state;
oauth2.auth.code = qp.code;
oauth2.callback({auth: oauth2.auth, redirectUrl: redirectUrl});
} else {
2021-10-18 17:05:56 +02:00
let oauthErrorMsg;
if (qp.error) {
oauthErrorMsg = "["+qp.error+"]: " +
(qp.error_description ? qp.error_description+ ". " : "no accessCode received from the server. ") +
(qp.error_uri ? "More info: "+qp.error_uri : "");
}
oauth2.errCb({
authId: oauth2.auth.name,
source: "auth",
level: "error",
2022-09-26 15:56:24 +02:00
message: oauthErrorMsg || "[Authorization failed]: no accessCode received from the server."
});
}
} else {
oauth2.callback({auth: oauth2.auth, token: qp, isValid: isValid, redirectUrl: redirectUrl});
}
window.close();
}
2021-10-18 17:05:56 +02:00
2022-09-26 15:56:24 +02:00
if (document.readyState !== 'loading') {
run();
} else {
document.addEventListener('DOMContentLoaded', function () {
run();
});
}
</script>
2021-10-18 17:05:56 +02:00
</body>
</html>