src/authDataManager/google.js

// Helper functions for accessing the google API.
var https = require('https');
var Parse = require('parse/node').Parse;

function validateIdToken(id, token) {
  return request("tokeninfo?id_token="+token)
    .then((response) => {
      if (response && (response.sub == id || response.user_id == id)) {
        return;
      }
      throw new Parse.Error(
        Parse.Error.OBJECT_NOT_FOUND,
        'Google auth is invalid for this user.');
    });
}

function validateAuthToken(id, token) {
  return request("tokeninfo?access_token="+token)
    .then((response) => {
      if (response &&  (response.sub == id || response.user_id == id)) {
        return;
      }
      throw new Parse.Error(
        Parse.Error.OBJECT_NOT_FOUND,
        'Google auth is invalid for this user.');
    });
}

// Returns a promise that fulfills if this user id is valid.
function validateAuthData(authData) {
  if (authData.id_token) {
    return validateIdToken(authData.id, authData.id_token); 
  } else {
    return validateAuthToken(authData.id, authData.access_token).then(() => {
      // Validation with auth token worked
      return;
    }, () => {
      // Try with the id_token param
      return validateIdToken(authData.id, authData.access_token);
    });
  }
}

// Returns a promise that fulfills if this app id is valid.
function validateAppId() {
  return Promise.resolve();
}

// A promisey wrapper for api requests
function request(path) {
  return new Promise(function(resolve, reject) {
    https.get("https://www.googleapis.com/oauth2/v3/" + path, function(res) {
      var data = '';
      res.on('data', function(chunk) {
        data += chunk;
      });
      res.on('end', function() {
        data = JSON.parse(data);
        resolve(data);
      });
    }).on('error', function() {
      reject('Failed to validate this access token with Google.');
    });
  });
}

module.exports = {
  validateAppId: validateAppId,
  validateAuthData: validateAuthData
};
Generic OAuth provider support Refactors facebook login into oauth generic login Adds additional oauth2 providers adds ability to pass an oAuth validator in the config Adds Twitter validation support + OAuth 1 client Support auth_token instead of access_token for twitter Improves code coverage of OAuth Adds validation of oauth provider structures Better coverage of the OAuth spec 100% coverage of OAuth1.js Adds passing auth_token_secret for Twitter auth. Refactors auth validation methods to include authData parameter - Adds ability to extens oauth validator through configuration - Adds ability to extend oauth validator through external module (file or package) - Adds more tests - Adds tests to login with custom auth provider Adds more tests for REST API fixes twitter auth_token f 2016-02-04 14:03:39 -05:00			`// Helper functions for accessing the google API.`
			`var https = require('https');`
			`var Parse = require('parse/node').Parse;`

Adds validation for id_token and access_token (#2878) * ADds validation for id_token and access_token * nit 2016-10-17 12:44:24 -04:00			`function validateIdToken(id, token) {`
			`return request("tokeninfo?id_token="+token)`
			`.then((response) => {`
Google auth: try to validate on both sub or user_id (#2922) 2016-10-26 11:44:56 -04:00			`if (response && (response.sub == id \|\| response.user_id == id)) {`
Adds validation for id_token and access_token (#2878) * ADds validation for id_token and access_token * nit 2016-10-17 12:44:24 -04:00			`return;`
			`}`
			`throw new Parse.Error(`
			`Parse.Error.OBJECT_NOT_FOUND,`
			`'Google auth is invalid for this user.');`
			`});`
			`}`

			`function validateAuthToken(id, token) {`
			`return request("tokeninfo?access_token="+token)`
Generic OAuth provider support Refactors facebook login into oauth generic login Adds additional oauth2 providers adds ability to pass an oAuth validator in the config Adds Twitter validation support + OAuth 1 client Support auth_token instead of access_token for twitter Improves code coverage of OAuth Adds validation of oauth provider structures Better coverage of the OAuth spec 100% coverage of OAuth1.js Adds passing auth_token_secret for Twitter auth. Refactors auth validation methods to include authData parameter - Adds ability to extens oauth validator through configuration - Adds ability to extend oauth validator through external module (file or package) - Adds more tests - Adds tests to login with custom auth provider Adds more tests for REST API fixes twitter auth_token f 2016-02-04 14:03:39 -05:00			`.then((response) => {`
Google auth: try to validate on both sub or user_id (#2922) 2016-10-26 11:44:56 -04:00			`if (response && (response.sub == id \|\| response.user_id == id)) {`
Generic OAuth provider support Refactors facebook login into oauth generic login Adds additional oauth2 providers adds ability to pass an oAuth validator in the config Adds Twitter validation support + OAuth 1 client Support auth_token instead of access_token for twitter Improves code coverage of OAuth Adds validation of oauth provider structures Better coverage of the OAuth spec 100% coverage of OAuth1.js Adds passing auth_token_secret for Twitter auth. Refactors auth validation methods to include authData parameter - Adds ability to extens oauth validator through configuration - Adds ability to extend oauth validator through external module (file or package) - Adds more tests - Adds tests to login with custom auth provider Adds more tests for REST API fixes twitter auth_token f 2016-02-04 14:03:39 -05:00			`return;`
			`}`
			`throw new Parse.Error(`
			`Parse.Error.OBJECT_NOT_FOUND,`
			`'Google auth is invalid for this user.');`
			`});`
			`}`

Adds validation for id_token and access_token (#2878) * ADds validation for id_token and access_token * nit 2016-10-17 12:44:24 -04:00			`// Returns a promise that fulfills if this user id is valid.`
			`function validateAuthData(authData) {`
			`if (authData.id_token) {`
			`return validateIdToken(authData.id, authData.id_token);`
			`} else {`
			`return validateAuthToken(authData.id, authData.access_token).then(() => {`
			`// Validation with auth token worked`
			`return;`
			`}, () => {`
			`// Try with the id_token param`
			`return validateIdToken(authData.id, authData.access_token);`
			`});`
			`}`
			`}`

			`// Returns a promise that fulfills if this app id is valid.`
Generic OAuth provider support Refactors facebook login into oauth generic login Adds additional oauth2 providers adds ability to pass an oAuth validator in the config Adds Twitter validation support + OAuth 1 client Support auth_token instead of access_token for twitter Improves code coverage of OAuth Adds validation of oauth provider structures Better coverage of the OAuth spec 100% coverage of OAuth1.js Adds passing auth_token_secret for Twitter auth. Refactors auth validation methods to include authData parameter - Adds ability to extens oauth validator through configuration - Adds ability to extend oauth validator through external module (file or package) - Adds more tests - Adds tests to login with custom auth provider Adds more tests for REST API fixes twitter auth_token f 2016-02-04 14:03:39 -05:00			`function validateAppId() {`
			`return Promise.resolve();`
			`}`

			`// A promisey wrapper for api requests`
			`function request(path) {`
			`return new Promise(function(resolve, reject) {`
Update google.js (#2023) Updated the authentication method of Google Sign-in (from v1 to v3) 2016-06-11 07:25:25 +08:00			`https.get("https://www.googleapis.com/oauth2/v3/" + path, function(res) {`
Generic OAuth provider support Refactors facebook login into oauth generic login Adds additional oauth2 providers adds ability to pass an oAuth validator in the config Adds Twitter validation support + OAuth 1 client Support auth_token instead of access_token for twitter Improves code coverage of OAuth Adds validation of oauth provider structures Better coverage of the OAuth spec 100% coverage of OAuth1.js Adds passing auth_token_secret for Twitter auth. Refactors auth validation methods to include authData parameter - Adds ability to extens oauth validator through configuration - Adds ability to extend oauth validator through external module (file or package) - Adds more tests - Adds tests to login with custom auth provider Adds more tests for REST API fixes twitter auth_token f 2016-02-04 14:03:39 -05:00			`var data = '';`
			`res.on('data', function(chunk) {`
			`data += chunk;`
			`});`
			`res.on('end', function() {`
			`data = JSON.parse(data);`
			`resolve(data);`
			`});`
Adds liniting into the workflow (#3082) * initial linting of src * fix indent to 2 spaces * Removes unnecessary rules * ignore spec folder for now * Spec linting * Fix spec indent * nits * nits * no no-empty rule 2016-11-24 15:47:41 -05:00			`}).on('error', function() {`
Generic OAuth provider support Refactors facebook login into oauth generic login Adds additional oauth2 providers adds ability to pass an oAuth validator in the config Adds Twitter validation support + OAuth 1 client Support auth_token instead of access_token for twitter Improves code coverage of OAuth Adds validation of oauth provider structures Better coverage of the OAuth spec 100% coverage of OAuth1.js Adds passing auth_token_secret for Twitter auth. Refactors auth validation methods to include authData parameter - Adds ability to extens oauth validator through configuration - Adds ability to extend oauth validator through external module (file or package) - Adds more tests - Adds tests to login with custom auth provider Adds more tests for REST API fixes twitter auth_token f 2016-02-04 14:03:39 -05:00			`reject('Failed to validate this access token with Google.');`
			`});`
			`});`
			`}`

			`module.exports = {`
			`validateAppId: validateAppId,`
			`validateAuthData: validateAuthData`
			`};`