-
Notifications
You must be signed in to change notification settings - Fork 499
/
SSOAuthenticationService.swift
95 lines (73 loc) · 3.18 KB
/
SSOAuthenticationService.swift
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
//
// Copyright 2020 New Vector Ltd
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
import Foundation
enum SSOAuthenticationServiceError: Error {
case tokenNotFound
case userCanceled
case unknown
}
@objcMembers
final class SSOAuthenticationService: NSObject {
// MARK: - Constants
// MARK: - Properties
private let homeserverStringURL: String
let callBackURLScheme: String?
// MARK: - Setup
init(homeserverStringURL: String) {
self.homeserverStringURL = homeserverStringURL
self.callBackURLScheme = BuildSettings.applicationURLScheme
super.init()
}
// MARK: - Public
func authenticationURL(for identityProvider: String?, transactionId: String) -> URL? {
guard var authenticationComponent = URLComponents(string: self.homeserverStringURL) else {
return nil
}
let ssoRedirectPath: String
if let identityProvider = identityProvider {
ssoRedirectPath = SSOURLConstants.Paths.unstableRedirect + identityProvider
} else {
ssoRedirectPath = SSOURLConstants.Paths.redirect
}
authenticationComponent.path = ssoRedirectPath
var queryItems: [URLQueryItem] = []
if let callBackURLScheme = self.buildCallBackURL(with: transactionId) {
queryItems.append(URLQueryItem(name: SSOURLConstants.Parameters.redirectURL, value: callBackURLScheme))
}
authenticationComponent.queryItems = queryItems
return authenticationComponent.url
}
func loginToken(from url: URL) -> String? {
// If needed convert URL string from HTML entities into correct character representations using UTF8 (like '&' with '&')
guard let sanitizedStringURL = url.absoluteString.replacingHTMLEntities(),
let components = URLComponents(string: sanitizedStringURL) else {
return nil
}
return components.vc_getQueryItemValue(for: SSOURLConstants.Parameters.callbackLoginToken)
}
// MARK: - Private
private func buildCallBackURL(with transactionId: String) -> String? {
guard let callBackURLScheme = self.callBackURLScheme else {
return nil
}
var urlComponents = URLComponents()
urlComponents.scheme = callBackURLScheme
urlComponents.host = CustomSchemeURLConstants.Hosts.connect
// Transaction id is used to indentify the request
urlComponents.queryItems = [URLQueryItem(name: CustomSchemeURLConstants.Parameters.transactionId, value: transactionId)]
return urlComponents.string
}
}