2.0.1 • Published 4 years ago
hapi-oidc v2.0.1
Hapi-OIDC
OpenID-Connect authentication plugin for hapi.
Configuration
This plugin needs some configuration to discover and connect to the OIDC server:
discoverUrl
: The discovery URL of your OIDC serverclientId
: Client ID given by your OIDC serverclientSecret
: Client secret given by your OIDC servercallbackUrl
: The full URL that the server will call after the authorization processcookie
: Name of the cookie that will held the authentication. Defaults tohapi-oidc
Alternatively, you can manually setup your OIDC client by replacing the discover URL by:
issuer
: URL of the issuerauthorization
: Authorization endpointtoken
: Token generation endpointuserinfo
: User infos endpointjwks
: JWKS endpoint
When registering the oidc
scheme, you'll need to configure the cookie settings if defaults do not suits you:
password
=uuid4(),path
='/'ttl
= 3600 * 1000encoding
='iron'isSecure
=true,clearInvalid
=true
Example
const Hapi = require('hapi');
const uuid4 = require('uuid/v4');
const OIDC = require('hapi-oidc');
const routes = require('./routes');
const server = Hapi.server({
port: 3000,
});
const init = async () => {
await server.register([
{
plugin: OIDC,
options: {
discoverUrl: 'https://oidc-server.com/oauth2/default',
clientId: 'XXXXXXXXXXXXXXX',
clientSecret: 'XXXXXXXXXXXXXXXXXXXXXX',
callbackUrl: 'https://my-server:3000/login_callback',
},
}
]);
server.auth.strategy('oidc', 'oidc', {
password: uuid4(),
});
server.route(routes);
await server.start();
server.log(['info'], `Server running at: ${server.info.uri}`);
};
init();
module.exports = server;