A module for handling generation of OAuth Bearer tokens issued by Auth0 by integrating credential management into request-promise.js.
This is a promise-request port from the original callback request library here
npm i cimpress-auth0-client-request-promise --saveThis module exposes a few methods, but the most important one is:
module.exports = (options) => { return Promise; }This works as a drop-in replacement for request-promise. Adopting this flow is as simple as these two surgical incisions:
//var request = require('request');
var request = require('cimpress-auth0-client-request-promise');// Note the set of 6 possible new options that can be passed in the request.js options.auth object.
// Every other property in the request options object works as normal, and you can call all of the
// convenience methods exposed by request.js.
var options = {
auth: {
clientId: 'see below',
clientSecret: 'see below',
refreshToken: 'see below',
targetId: 'see below',
bearer: 'see below',
},
keyGen: (options) => `${options.uri}-${options.method}-${options.auth.bearer}`,
timesToRetry: 2,
};
return request(options).then(
(response) => {},
(error) => {}
);Here's how you should use those 5 auth parameters + 2 new parameters:
| Property | Description | V1 Required | V2 Required |
|---|---|---|---|
| clientId | The client id you wish to use to request client credential grants (https://auth0.com/docs/api-auth/grant/client-credentials). | N/A | Y |
| clientSecret | The client secret you wish to use to request client credential grants (https://auth0.com/docs/api-auth/grant/client-credentials). | N/A | Y |
| refreshToken | A refresh token for use in delegation flows, retrieved from developer.cimpress.io. | Y | N/A |
| targetId | The client id for which you are trying to retrieve a delegated token. Note, if you don't know this, you can rely on a 401 with a Www-Authenticate to provide the client id. If you don't provide this config, and the service doesn't provide that header, your call will fail with a 401. |
N | N/A |
| bearer | If you've already generated an access token you can specify it here and the library will attempt to use it. If the call fails with a 401 the library will immediately return | N | N |
| authorizationServer | OPTIONAL The server to call to request client credential grants (https://auth0.com/docs/api-auth/grant/client-credentials). This defaults to https://cimpress-dev.auth0.com/oauth/token. | Y | Y |
| audience | The audience to send when requesting client credential grants (https://auth0.com/docs/api-auth/grant/client-credentials). This defaults to https://api.cimpress.io/ | Y | Y |
| keyGen | OPTIONAL A function that returns a string to be used when caching responses. Takes in the options object and must return a promise. If not specified a default function is used | N/A | N/A |
| timesToRetry | OPTIONAL The number of times to retry when receiving a non-2XX response. Otherwise keeps trying forever | N/A | N/A |
Some other exposes methods:
// specify a cache that will be used for the generated auth token as well as responses that have a cache-control header. By default there is no caching.
module.exports.setCredentialCache(altcache);
// specify an alternative logger. By default uses console.log.
// The alternate logger must support: log, warn, error, and debug
module.exports.setLogger(altLogger); Note that the alternative caching method you use must return promises and have the following function definitions:
- get(key)
- set(key, value, ttl)
You might also want to look at our tests to see some examples of usage.
You can run tests via npm test.
# From Root
npm installOR
# From Root
yarnWe use eslint for formatting and mostly follow the airbnb standards
To contribute to this library fork the repo and create a pull-request back to the master branch.
All changes require tests to be added or updated as part of the PR.
Once Travis successfully runs, including running the linter and all tests, your PR will require approval before merging.
Triggering a new version of this library involves 2 manual steps (done in order).
- A pull-request will have to be created that updated the version in package.json.
- A contributor/manager will have to manually create a release via github. When that happens Travis should automatically build and publish a new version of the library.