Add SamlSubjectId Support

mt-gdiniz · mt-gdiniz · commit 29bf6a9d2e18 · 2022-11-17T16:35:02.000+09:00
diff --git a/.gitignore b/.gitignore
@@ -61,4 +61,4 @@ typings/
 .env
 
 # next.js build output
-.next
+.next
diff --git a/docs/README.md b/docs/README.md
diff --git a/src/__tests__/helper.test.ts b/src/__tests__/helper.test.ts
@@ -1,6 +1,7 @@
 import { constructScopes, getIsTabValue, mergeConfigs, generateConfigs } from '../helper';
 import packageJson from '../../package.json';
 import { ConfigsOptions } from '../typings';
+import { stringify } from 'qs';
 
 describe('helper', () => {
   test('constuctScopes', () => {
@@ -123,26 +124,37 @@ describe('helper', () => {
         authAction: 'signup',
         showAuthToggle: true,
         showRememberMe: true,
-        authnMethod: 'sso',
-      }
+        authnMethod: 'sso'
+      };
 
-      expect(
-        generateConfigs(configPayload)
-      ).toBe(
+      expect(generateConfigs(configPayload)).toBe(
         `sdk_platform=js&sdk_version=${packageJson.version}&email=email&back_to=backTo&auth_action=signup&show_auth_toggle=true` +
           `&show_remember_me=true&authn_method=sso`
       );
     });
 
     test('with authnMethod parameter as an array', () => {
       const configPayload: ConfigsOptions = {
-        authnMethod: ['sso', 'passwordless'],
-      }
+        authnMethod: ['sso', 'passwordless']
+      };
 
-      expect(
-        generateConfigs(configPayload)
-      ).toBe(
-        `sdk_platform=js&sdk_version=${packageJson.version}&authn_method[]=sso&authn_method[]=passwordless`
+      expect(generateConfigs(configPayload)).toBe(
+        `sdk_platform=js&sdk_version=${packageJson.version}&authn_method%5B%5D=sso&authn_method%5B%5D=passwordless`
+      );
+    });
+
+    test('query encoding should make sure config params are also encoded', () => {
+      const configPayload: ConfigsOptions = {
+        email: 'email&!@#(*)-304should be_encoded',
+        backTo: 'backTo #!@with []special= chars',
+        authAction: 'signup',
+        showAuthToggle: true,
+        showRememberMe: true,
+        authnMethod: ['sso', 'passwordless']
+      };
+
+      expect(generateConfigs(configPayload)).toBe(
+        `sdk_platform=js&sdk_version=${packageJson.version}&email=email%26%21%40%23%28%2A%29-304should%20be_encoded&back_to=backTo%20%23%21%40with%20%5B%5Dspecial%3D%20chars&auth_action=signup&show_auth_toggle=true&show_remember_me=true&authn_method%5B%5D=sso&authn_method%5B%5D=passwordless`
       );
     });
 
diff --git a/src/__tests__/index.test.ts b/src/__tests__/index.test.ts
@@ -23,7 +23,8 @@ describe('index', () => {
 
     instance.init('clientId', {
       redirectUri: 'redirectUri',
-      authnMethod: 'sso'
+      authnMethod: 'sso',
+      samlSubjectId: 'samlSubjectId'
     });
 
     const options = instance.storedOptions;
@@ -32,7 +33,8 @@ describe('index', () => {
       mode: options.mode,
       redirectUri: options.redirectUri,
       state: options.state,
-      authnMethod: options.authnMethod
+      authnMethod: options.authnMethod,
+      samlSubjectId: options.samlSubjectId
     };
 
     const result1 = instance.authorize({ scopes: 'scopes' });
@@ -96,4 +98,19 @@ describe('index', () => {
 
     expect(mtLinkSdk.storedOptions.mode).toBe('production');
   });
+
+  test('sets the samlSubjectId when calling setSamlSubjectId', () => {
+    const samlSubjectId = 'samlSubjectId';
+    mtLinkSdk.init('clientId', {
+      samlSubjectId
+    });
+
+    expect(mtLinkSdk.storedOptions.samlSubjectId).toBe(samlSubjectId);
+
+    const newSamlSubjectId = 'newSamlSubjectId';
+
+    mtLinkSdk.setSamlSubjectId(newSamlSubjectId);
+
+    expect(mtLinkSdk.storedOptions.samlSubjectId).toBe(newSamlSubjectId);
+  });
 });
diff --git a/src/api/__tests__/authorize.test.ts b/src/api/__tests__/authorize.test.ts
@@ -43,13 +43,15 @@ describe('api', () => {
       const scopes = 'points_read';
       const cobrandClientId = 'cobrandClientId';
       const locale = 'locale';
+      const samlSubjectId = 'mySubject';
 
       const mtLinkSdk = new MtLinkSdk();
       mtLinkSdk.init(clientId, {
         redirectUri,
         scopes,
         locale,
-        cobrandClientId
+        cobrandClientId,
+        samlSubjectId
       });
 
       authorize(mtLinkSdk.storedOptions);
@@ -64,6 +66,7 @@ describe('api', () => {
         redirect_uri: redirectUri,
         country,
         locale,
+        saml_subject_id: samlSubjectId,
         configs: generateConfigs()
       });
       const url = `${MY_ACCOUNT_DOMAINS.production}/oauth/authorize?${query}`;
@@ -77,9 +80,10 @@ describe('api', () => {
       const state = 'state';
       const country = 'JP';
       const scopes = 'points_read';
+      const samlSubjectId = 'mySubject';
 
       const mtLinkSdk = new MtLinkSdk();
-      mtLinkSdk.init(clientId);
+      mtLinkSdk.init(clientId, { samlSubjectId });
 
       authorize(mtLinkSdk.storedOptions, {
         state,
@@ -96,6 +100,7 @@ describe('api', () => {
         redirect_uri: redirectUri,
         state,
         country,
+        saml_subject_id: samlSubjectId,
         configs: generateConfigs()
       });
       const url = `${MY_ACCOUNT_DOMAINS.production}/oauth/authorize?${query}`;
diff --git a/src/api/__tests__/open-service.test.ts b/src/api/__tests__/open-service.test.ts
@@ -197,6 +197,45 @@ describe('api', () => {
       }).toThrow('[mt-link-sdk] Invalid `serviceId` in `openService`, got: invalid');
     });
 
+    test('saml_subject_id is passed when initialized', () => {
+      open.mockClear();
+
+      const instance = new MtLinkSdk();
+      instance.init('clientId', { samlSubjectId: 'samlSubjectId' });
+
+      openService(instance.storedOptions, 'myaccount');
+
+      expect(open).toBeCalledTimes(1);
+
+      const query = qs.stringify({
+        client_id: 'clientId',
+        saml_subject_id: 'samlSubjectId',
+        configs: generateConfigs()
+      });
+      const url = `${MY_ACCOUNT_DOMAINS.production}/?${query}`;
+
+      expect(open).toBeCalledWith(url, '_self', 'noreferrer');
+    });
+
+    test('undefined saml_subject_id should not be passed down', () => {
+      open.mockClear();
+
+      const instance = new MtLinkSdk();
+      instance.init('clientId', { samlSubjectId: undefined });
+
+      openService(instance.storedOptions, 'myaccount');
+
+      expect(open).toBeCalledTimes(1);
+
+      const query = qs.stringify({
+        client_id: 'clientId',
+        configs: generateConfigs()
+      });
+      const url = `${MY_ACCOUNT_DOMAINS.production}/?${query}`;
+
+      expect(open).toBeCalledWith(url, '_self', 'noreferrer');
+    });
+
     test('without window', () => {
       const windowSpy = jest.spyOn(global, 'window', 'get');
       // @ts-ignore: mocking window object to undefined
diff --git a/src/api/authorize.ts b/src/api/authorize.ts
@@ -23,7 +23,8 @@ export default function authorize(storedOptions: StoredOptions, options: Authori
     cobrandClientId,
     locale,
     scopes: defaultScopes,
-    redirectUri: defaultRedirectUri
+    redirectUri: defaultRedirectUri,
+    samlSubjectId
   } = storedOptions;
 
   if (!clientId) {
@@ -61,6 +62,7 @@ export default function authorize(storedOptions: StoredOptions, options: Authori
     state,
     country: 'JP',
     locale,
+    saml_subject_id: samlSubjectId,
     configs: generateConfigs(mergeConfigs(storedOptions, rest))
   });
 
diff --git a/src/api/logout.ts b/src/api/logout.ts
@@ -9,13 +9,14 @@ export default function logout(storedOptions: StoredOptions, options: LogoutOpti
     throw new Error(`[mt-link-sdk] \`logout\` only works in the browser.`);
   }
 
-  const { clientId, mode, cobrandClientId, locale } = storedOptions;
+  const { clientId, mode, cobrandClientId, locale, samlSubjectId } = storedOptions;
   const { isNewTab, ...rest } = options;
 
   const queryString = stringify({
     client_id: clientId,
     cobrand_client_id: cobrandClientId,
     locale,
+    saml_subject_id: samlSubjectId,
     configs: generateConfigs(mergeConfigs(storedOptions, rest))
   });
 
diff --git a/src/api/open-service.ts b/src/api/open-service.ts
@@ -16,6 +16,7 @@ interface QueryData {
   cobrand_client_id?: string;
   locale?: string;
   configs: string;
+  saml_subject_id?: string;
 }
 
 export default function openService(
@@ -27,14 +28,15 @@ export default function openService(
     throw new Error('[mt-link-sdk] `openService` only works in the browser.');
   }
 
-  const { clientId, mode, cobrandClientId, locale } = storedOptions;
+  const { clientId, mode, cobrandClientId, locale, samlSubjectId } = storedOptions;
   const { isNewTab, view = '', ...rest } = options;
 
   const getQueryValue = (needStringify = true): string | QueryData => {
     const query: QueryData = {
       client_id: clientId,
       cobrand_client_id: cobrandClientId,
       locale,
+      saml_subject_id: samlSubjectId,
       configs: generateConfigs(mergeConfigs(storedOptions, rest))
     };
 
diff --git a/src/helper.ts b/src/helper.ts
@@ -7,7 +7,7 @@ import { encode } from 'url-safe-base64';
 import { v4 as uuid } from 'uuid';
 import storage from './storage';
 
-import { Scopes, InitOptions, ConfigsOptions, AuthAction, AuthNMethod } from './typings';
+import { Scopes, InitOptions, ConfigsOptions, AuthAction, AuthnMethod } from './typings';
 
 export function constructScopes(scopes: Scopes = ''): string | undefined {
   return (Array.isArray(scopes) ? scopes.join(' ') : scopes) || undefined;
@@ -64,7 +64,7 @@ export function mergeConfigs(
 }
 
 export function generateConfigs(configs: ConfigsOptions = {}): string {
-  const snakeCaseConfigs: { [key: string]: string | AuthAction | boolean | AuthNMethod[] | undefined } = {};
+  const snakeCaseConfigs: { [key: string]: string | AuthAction | boolean | AuthnMethod[] | undefined } = {};
 
   const configKeys = [
     'email',
@@ -76,20 +76,23 @@ export function generateConfigs(configs: ConfigsOptions = {}): string {
     'forceLogout',
     'sdkPlatform',
     'sdkVersion',
-    'authnMethod',
+    'authnMethod'
   ];
 
   for (const key in configs) {
     if (configKeys.indexOf(key) !== -1) {
       snakeCaseConfigs[snakeCase(key)] = configs[key as keyof ConfigsOptions];
     }
   }
-  
-  return stringify({
-    sdk_platform: 'js',
-    sdk_version: __VERSION__,
-    ...snakeCaseConfigs
-  }, { indices: false, arrayFormat: 'brackets', encode: false });
+
+  return stringify(
+    {
+      sdk_platform: 'js',
+      sdk_version: __VERSION__,
+      ...snakeCaseConfigs
+    },
+    { indices: false, arrayFormat: 'brackets' }
+  );
 }
 
 export function generateCodeChallenge(): string {
diff --git a/src/index.ts b/src/index.ts
@@ -44,6 +44,10 @@ export class MtLinkSdk {
     };
   }
 
+  public setSamlSubjectId(value: string): void {
+    this.storedOptions.samlSubjectId = value;
+  }
+
   public authorize(options?: AuthorizeOptions): void {
     authorize(this.storedOptions, options);
   }
diff --git a/src/typings.ts b/src/typings.ts
@@ -2,14 +2,15 @@ export type AuthAction = 'login' | 'signup';
 
 export interface PrivateParams {
   cobrandClientId?: string;
+  samlSubjectId?: string;
 }
 
 export interface PrivateConfigsOptions {
   sdkPlatform?: 'ios' | 'android' | 'js';
   sdkVersion?: string; // semver
 }
 
-export type AuthNMethod = 'passwordless' | 'sso' | 'credentials';
+export type AuthnMethod = 'passwordless' | 'sso' | 'credentials';
 export interface ConfigsOptions extends PrivateConfigsOptions {
   email?: string;
   backTo?: string;
@@ -18,7 +19,7 @@ export interface ConfigsOptions extends PrivateConfigsOptions {
   showRememberMe?: boolean;
   isNewTab?: boolean;
   forceLogout?: boolean;
-  authnMethod?: AuthNMethod | AuthNMethod[];
+  authnMethod?: AuthnMethod | AuthnMethod[];
 }
 
 export type ServicesListType = {
@@ -78,11 +79,11 @@ export type InitOptions = Omit<Omit<Omit<AuthorizeOptions, 'forceLogout'>, 'code
     mode?: Mode;
     locale?: string;
   };
+
 export interface StoredOptions extends InitOptions {
   clientId?: string;
   mode: Mode;
 }
-
 export interface ExchangeTokenOptions extends OAuthSharedParams {
   code?: string;
   codeVerifier?: string;

-Original file line number
+Diff line change
 .env
 # next.js build output
 -.next
 +.next