fix: redirect url

annahassel · annahassel · commit 57a0a0c57d59 · 2022-06-09T17:10:14.000+03:00
diff --git a/schemas/config.json b/schemas/config.json
@@ -530,9 +530,6 @@
               },
               "profileHandler": {
                 "type": "object"
-              },
-              "redirectUrl": {
-                "type": "string"
               }
             }
           }
diff --git a/src/actions/oauth/upgrade.js b/src/actions/oauth/upgrade.js
@@ -42,7 +42,8 @@ async function upgrade(request) {
 
   if (provider === 'apple') {
     try {
-      const tokenResponse = await validateGrantCode(providerSettings, token);
+      const redirectUrl = transportRequest.url.href.replace(/\/upgrade$/, '/apple');
+      const tokenResponse = await validateGrantCode(providerSettings, token, redirectUrl);
       credentials = await profile(providerSettings, tokenResponse);
       credentials.query = query;
     } catch (error) {
diff --git a/src/auth/oauth/strategies/apple.js b/src/auth/oauth/strategies/apple.js
@@ -85,8 +85,8 @@ async function getProfile(credentials, params) {
   return credentials;
 }
 
-async function validateGrantCode(providerSettings, code) {
-  const { provider, redirectUrl, clientId, clientSecret } = providerSettings;
+async function validateGrantCode(providerSettings, code, redirectUrl) {
+  const { provider, clientId, clientSecret } = providerSettings;
   const response = await httpRequest.post(provider.token, {
     form: {
       code,
@@ -110,7 +110,6 @@ function getProvider(options, server) {
     password,
     isSameSite,
     cookie,
-    redirectUrl,
   } = options;
 
   // adds the "code" parameter to the query string for bell to work correctly
@@ -121,7 +120,6 @@ function getProvider(options, server) {
     clientId,
     isSameSite,
     cookie,
-    redirectUrl,
     clientSecret: () => getSecretKey(teamId, clientId, keyId, privateKey),
     forceHttps: true,
     providerParams: {
diff --git a/src/configs/oauth.js b/src/configs/oauth.js
@@ -54,7 +54,6 @@ exports.oauth = {
       password: 'very-long-encryption-password-that-needs-to-be-changed',
       cookie: 'mf_bapp',
       isSameSite: 'Lax',
-      redirectUrl: 'https://ms-users.local/users/oauth/upgrade', // used for upgrade token only!
     },
   },
 };
diff --git a/test/suites/actions/oauth/upgrade.apple.js b/test/suites/actions/oauth/upgrade.apple.js
@@ -3,7 +3,7 @@ const request = require('request-promise');
 const Users = require('../../../../src');
 
 // @TODO stub
-describe.skip('oauth.upgrade action', function suite() {
+describe('oauth.upgrade action', function suite() {
   const service = new Users({ oauth: { providers: { apple: { enabled: true } } } });
 
   before(() => service.connect());

Original file line number	Diff line number	Diff line change
`@@ -530,9 +530,6 @@`
`530`	`530`	`},`
`531`	`531`	`"profileHandler": {`
`532`	`532`	`"type": "object"`
`533`		`- },`
`534`		`- "redirectUrl": {`
`535`		`- "type": "string"`
`536`	`533`	`}`
`537`	`534`	`}`
`538`	`535`	`}`