-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
0 parents
commit 3606ce6
Showing
7 changed files
with
116 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
name: Deploy to cloudflare worker | ||
"on": | ||
push: | ||
branches: | ||
- main | ||
workflow_dispatch: | ||
|
||
jobs: | ||
deploy: | ||
runs-on: ubuntu-latest | ||
name: Deploy | ||
steps: | ||
- uses: actions/checkout@v3 | ||
- name: Publish | ||
uses: cloudflare/wrangler-action@v3 | ||
with: | ||
apiToken: ${{ secrets.CF_API_TOKEN }} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
.dev.vars | ||
.wrangler | ||
|
||
/node_modules |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,3 @@ | ||
# decap-cms-github-oauth-api-cloudflare-worker | ||
|
||
A github oauth authentication gateway for Decap CMS login, runnable as a cloudflare worker |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,23 @@ | ||
// Original version – https://github.com/vencax/netlify-cms-github-oauth-provider/blob/master/login_script.js | ||
export default function (token) { | ||
return `<script> | ||
(function() { | ||
function receiveMessage(e) { | ||
console.log("receiveMessage %o", e) | ||
// send message to the main window | ||
window.opener.postMessage( | ||
'authorization:github:success:${JSON.stringify({ | ||
provider: 'github', | ||
token, | ||
})}', | ||
e.origin | ||
) | ||
} | ||
window.addEventListener("message", receiveMessage, false) | ||
// Start handshake with parent | ||
console.log("Sending message: %o", "github") | ||
window.opener.postMessage("authorizing:github", "*") | ||
})() | ||
</script>`; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,53 @@ | ||
import decapCMSLoginScript from './decap-cms-login-script'; | ||
|
||
addEventListener('fetch', (event: any) => { | ||
event.respondWith(handle(event.request)); | ||
}); | ||
|
||
// Inserted as secrets to the worker | ||
// @ts-ignore | ||
const client_id = CLIENT_ID; | ||
// @ts-ignore | ||
const client_secret = CLIENT_SECRET; | ||
|
||
async function handle(request: Request) { | ||
const { pathname, searchParams: params } = new URL(request.url); | ||
|
||
switch (pathname) { | ||
case '/auth': | ||
return redirectToAuthFlow(); | ||
|
||
case '/callback': | ||
return await fetchAccessToken(params); | ||
} | ||
} | ||
|
||
async function fetchAccessToken(requestParams: URLSearchParams) { | ||
const code = requestParams.get('code'); | ||
|
||
const response = await fetch('https://github.com/login/oauth/access_token', { | ||
method: 'POST', | ||
headers: { | ||
'content-type': 'application/json', | ||
'user-agent': 'decap-cms-github-oauth-api-cloudflare', | ||
accept: 'application/json', | ||
}, | ||
body: JSON.stringify({ client_id, client_secret, code }), | ||
}).then((res) => res.json()); | ||
|
||
const loginResponse = decapCMSLoginScript(response.access_token); | ||
|
||
return new Response(loginResponse, { | ||
status: 201, | ||
headers: { | ||
'Content-Type': 'text/html;charset=UTF-8', | ||
}, | ||
}); | ||
} | ||
|
||
function redirectToAuthFlow() { | ||
return Response.redirect( | ||
`https://github.com/login/oauth/authorize?client_id=${client_id}`, | ||
302 | ||
); | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
{ | ||
"name": "decap-cms-github-oauth-api-cloudflare-worker", | ||
"version": "1.0.0", | ||
"private": true, | ||
"description": "Github login gateway for use with Decap CMS, configured for Cloudflare Worker environment", | ||
"main": "index.ts", | ||
"author": "Ott Martens", | ||
"repository": "github:ottmartens/decap-cms-github-oauth-api-cloudflare" | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
name = "decap-cms-github-oauth-api" | ||
main = "index.ts" | ||
|
||
compatibility_date = "2023-11-11" | ||
|
||
account_id = "c192ee4c911d964935f8f53ac8399ae9" | ||
workers_dev = true |