The auth module handles the OAuth2 authorization of the Welcome app. You first need an Welcome app to use the SDK. If you don't have one already, create one from here.
The module provides the following methods.
parameters:
- redirectFn: (url: string) => void
returns: undefined
Initializes Welcome authorization flow. This method takes a function that takes a url string as a parameter and can redirect the user to the provided url. Here is an example with an express app,
app.get("/oauth", (req, res) => {
function redirect(url) {
res.redirect(url);
}
cmpClient.auth.initiateOAuth(redirect);
});parameters:
- query: object
- tokenGetParam: any (optional)
returns: Promise<ReturnType< onAuthSuccess | onAuthFailure > | void> (onAuthSuccess and onAuthFailure are passed during the initialization of the CmpClient instance)
Handles the redirection callback from Welcome authorization server. This method takes the query object sent by the authorization server as the parameter and gets access token and refresh token by exchanging the code. If authorization server redirects the user without the code parameter in the query param, the function will either call the onAuthFailure function, or throw an error if the function is not provided. If it successfully receives the tokens, then it will call the onAuthSuccess function. Here is an example with an express app,
app.get("/oauth/callback", async (req, res) => {
// you may want to use a try-catch block here
await cmpClient.auth.handleOAuthCallback(req.query);
return res.send("success");
});parameters:
- tokenGetParam: any (optional)
returns: Promise<ReturnType< onAuthSuccess | onAuthFailure >> (onAuthSuccess and onAuthFailure are passed during the initialization of the CmpClient instance)
Initializes Welcome client credentials flow. Use this flow for server-to-server interactions.
app.get("/access-token", async (req, res) => {
await cmpClient.auth.initiateClientFlow();
const accessToken = await cmpClient.auth.getAccessToken();
return res.send({ access_token: accessToken });
});parameters:
- tokenGetParam: any (optional)
returns: Promise<void>
Updates the access token using the refresh token. Here is an example with an express app,
app.get("token-refresh", async (req, res) => {
await cmpClient.auth.rotateTokens();
return res.send("tokens updated");
});parameters:
- tokenGetParam: any (optional)
returns: Promise<void>
Sends a request to the authorization server to revoke the access token. This only makes the token invalid in Welcome, but does not remove it from your application database or memory. Here is an example with an express app,
app.get("revoke-access-token", async (req, res) => {
await cmpClient.auth.revokeAccessToken();
return res.send("access token revoked");
});parameters:
- tokenGetParam: any
returns: Promise<void>
Sends a request to the authorization server to revoke the refresh token. This only makes the token invalid in Welcome, but does not remove it from your application database or memory. Here is an example with an express app,
app.get("revoke-refresh-token", async (req, res) => {
await cmpClient.auth.revokeRefreshToken();
return res.send("refresh token revoked");
});parameters:
- tokenGetParam: any
returns: Promise<string>
Gets the current access token saved in your application or database.
parameters:
- tokenGetParam: any
returns: Promise<string>
Gets the current refresh token saved in your application or database.