forked from vzakharchenko/keycloak-radius-plugin
-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathserver.js
More file actions
84 lines (66 loc) · 2.16 KB
/
server.js
File metadata and controls
84 lines (66 loc) · 2.16 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
const express = require('express');
const jwt = require('jsonwebtoken');
const handlebars = require('express-handlebars');
const Client = require('node-radius-client');
const session = require('express-session');
const path = require('path');
const {dictionaries} = require('node-radius-utils');
const bodyParser = require('body-parser');
const Keycloak = require('keycloak-connect');
const fs = require("fs");
const app = express();
const memoryStore = new session.MemoryStore();
app.use(session({
secret: 'mySecret',
resave: false,
saveUninitialized: true,
store: memoryStore,
}));
const keycloak = new Keycloak({
store: memoryStore,
});
app.use(keycloak.middleware());
app.use(bodyParser.urlencoded({extended: true}));
app.engine('handlebars', handlebars.engine());
app.set('view engine', 'handlebars');
app.set('main', './views');
app.set('view engine', '.hbs');
app.set('views', path.join(__dirname, 'views'));
function renderUI(request, response, status) {
response.render('home', {
status,
})
}
const radiusClient = new Client({
host: 'localhost',
retries:1,
dictionaries: [
dictionaries.rfc2865.file,
dictionaries.mikrotik.file
],
});
function readKeycloakJSON(){
return JSON.parse(fs.readFileSync('keycloak.json','UTF-8'));
}
app.post('/serviceAccount', keycloak.protect(), async (request, response) => {
const keycloakJson = readKeycloakJSON();
radiusClient.accessRequest({
secret: request.body.secret,
attributes: [
[dictionaries.rfc2865.attributes.USER_NAME, `${keycloakJson.resource}@${keycloakJson.realm}`],
[dictionaries.rfc2865.attributes.USER_PASSWORD, keycloakJson.credentials.secret]
// [],
],
}).then((result) => {
console.log('result', result.code);
renderUI(request, response, 'SUCCESS');
}).catch((error) => {
console.log('error', error);
renderUI(request, response,
error.response && error.response.code === 'Access-Reject' ? 'REJECT' : error);
});
});
app.get('/', keycloak.protect(), (request, response) => {
renderUI(request, response, "<<==");
});
app.listen(3001);