1 line
10 KiB
JavaScript
1 line
10 KiB
JavaScript
(()=>{var e={};e.id=9841,e.ids=[9841],e.modules={3295:e=>{"use strict";e.exports=require("next/dist/server/app-render/after-task-async-storage.external.js")},10846:e=>{"use strict";e.exports=require("next/dist/compiled/next-server/app-page.runtime.prod.js")},11723:e=>{"use strict";e.exports=require("querystring")},12269:(e,r)=>{"use strict";Object.defineProperty(r,"__esModule",{value:!0})},12412:e=>{"use strict";e.exports=require("assert")},19854:(e,r,o)=>{"use strict";Object.defineProperty(r,"__esModule",{value:!0});var s={};Object.defineProperty(r,"default",{enumerable:!0,get:function(){return n.default}});var t=o(12269);Object.keys(t).forEach(function(e){!("default"===e||"__esModule"===e||Object.prototype.hasOwnProperty.call(s,e))&&(e in r&&r[e]===t[e]||Object.defineProperty(r,e,{enumerable:!0,get:function(){return t[e]}}))});var n=function(e,r){if(e&&e.__esModule)return e;if(null===e||"object"!=typeof e&&"function"!=typeof e)return{default:e};var o=i(r);if(o&&o.has(e))return o.get(e);var s={__proto__:null},t=Object.defineProperty&&Object.getOwnPropertyDescriptor;for(var n in e)if("default"!==n&&({}).hasOwnProperty.call(e,n)){var a=t?Object.getOwnPropertyDescriptor(e,n):null;a&&(a.get||a.set)?Object.defineProperty(s,n,a):s[n]=e[n]}return s.default=e,o&&o.set(e,s),s}(o(35426));function i(e){if("function"!=typeof WeakMap)return null;var r=new WeakMap,o=new WeakMap;return(i=function(e){return e?o:r})(e)}Object.keys(n).forEach(function(e){!("default"===e||"__esModule"===e||Object.prototype.hasOwnProperty.call(s,e))&&(e in r&&r[e]===n[e]||Object.defineProperty(r,e,{enumerable:!0,get:function(){return n[e]}}))})},21820:e=>{"use strict";e.exports=require("os")},26690:(e,r,o)=>{"use strict";o.d(r,{N:()=>a});var s=o(1926),t=o(10591);function n(e){let r=process.env[e];if(!r)throw Error(`Missing required environment variable: ${e}`);return r}async function i(e){try{let r=await fetch(`${process.env.KEYCLOAK_ISSUER}/protocol/openid-connect/token`,{headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({client_id:process.env.KEYCLOAK_CLIENT_ID,client_secret:process.env.KEYCLOAK_CLIENT_SECRET,grant_type:"refresh_token",refresh_token:e.refreshToken||""}),method:"POST"}),o=await r.json();if(!r.ok){if("invalid_grant"===o.error||o.error_description?.includes("Session not active")||o.error_description?.includes("Token is not active"))return console.log("Keycloak session invalidated (likely logged out from iframe), marking token for removal"),{...e,error:"SessionNotActive"};throw o}return{...e,accessToken:o.access_token,refreshToken:o.refresh_token??e.refreshToken,idToken:e.idToken,accessTokenExpires:Date.now()+1e3*o.expires_in}}catch(r){if(console.error("Error refreshing access token:",r),r?.error==="invalid_grant"||r?.error_description?.includes("Session not active")||r?.error_description?.includes("Token is not active"))return{...e,error:"SessionNotActive"};return{...e,error:"RefreshAccessTokenError"}}}let a={providers:[(0,s.A)({clientId:n("KEYCLOAK_CLIENT_ID"),clientSecret:n("KEYCLOAK_CLIENT_SECRET"),issuer:n("KEYCLOAK_ISSUER"),authorization:{params:{scope:"openid profile email roles"}},profile(e){console.log("Keycloak profile callback:",{rawProfile:e,rawRoles:e.roles,realmAccess:e.realm_access,groups:e.groups});let r=e.realm_access?.roles||[];console.log("Profile callback raw roles:",r);let o=r.map(e=>e.replace(/^ROLE_/,"").toLowerCase());return console.log("Profile callback cleaned roles:",o),{id:e.sub,name:e.name??e.preferred_username,email:e.email,first_name:e.given_name??"",last_name:e.family_name??"",username:e.preferred_username??e.email?.split("@")[0]??"",role:o}}})],session:{strategy:"jwt",maxAge:2592e3},callbacks:{async jwt({token:e,account:r,profile:o}){if(r&&o){let s=(o.realm_access?.roles||[]).map(e=>e.replace(/^ROLE_/,"").toLowerCase());e.accessToken=r.access_token??"",e.refreshToken=r.refresh_token??"",e.idToken=r.id_token??"",e.accessTokenExpires=r.expires_at??0,e.sub=o.sub,e.role=s,e.username=o.preferred_username??"",e.first_name=o.given_name??"",e.last_name=o.family_name??""}else if(e.accessToken)try{let r=(0,t.s)(e.accessToken);r.realm_access?.roles&&(e.role=r.realm_access.roles.map(e=>e.replace(/^ROLE_/,"").toLowerCase()))}catch(e){console.error("Error decoding token:",e)}let s=e.accessTokenExpires;if(s&&Date.now()<s)return e;if(!e.refreshToken)return console.log("No refresh token available, cannot refresh"),{...e,accessToken:void 0,refreshToken:void 0,idToken:void 0,error:"NoRefreshToken"};let n=await i(e);return"SessionNotActive"===n.error?(console.log("Keycloak session invalidated, clearing token to force re-authentication"),{...n,accessToken:void 0,refreshToken:void 0,idToken:void 0}):"RefreshAccessTokenError"!==n.error||n.accessToken?n:(console.log("Refresh token invalid, clearing session to force re-authentication"),{...n,accessToken:void 0,refreshToken:void 0,idToken:void 0})},async session({session:e,token:r}){if("SessionNotActive"===r.error||"NoRefreshToken"===r.error||!r.accessToken||!r.refreshToken)return console.log("Session invalidated or tokens missing, user will be signed out",{error:r.error,hasAccessToken:!!r.accessToken,hasRefreshToken:!!r.refreshToken}),null;if(r.error)throw Error(r.error);let o=Array.isArray(r.role)?r.role:[];return e.user={id:r.sub??"",email:r.email??null,name:r.name??null,image:null,username:r.username??"",first_name:r.first_name??"",last_name:r.last_name??"",role:o,nextcloudInitialized:!1},e.accessToken=r.accessToken,e.idToken=r.idToken,e.refreshToken=r.refreshToken,e}},pages:{signIn:"/signin",error:"/signin"},debug:!1}},27910:e=>{"use strict";e.exports=require("stream")},28354:e=>{"use strict";e.exports=require("util")},29021:e=>{"use strict";e.exports=require("fs")},29294:e=>{"use strict";e.exports=require("next/dist/server/app-render/work-async-storage.external.js")},33873:e=>{"use strict";e.exports=require("path")},42268:(e,r,o)=>{"use strict";o.r(r),o.d(r,{patchFetch:()=>h,routeModule:()=>d,serverHooks:()=>_,workAsyncStorage:()=>f,workUnitAsyncStorage:()=>k});var s={};o.r(s),o.d(s,{GET:()=>p});var t=o(96559),n=o(48088),i=o(37719),a=o(32190),c=o(19854),l=o(26690),u=o(42873);async function p(e){try{let e=await (0,c.getServerSession)(l.N);if(!e?.user?.id)return a.NextResponse.json({error:"Unauthorized"},{status:401});let r=Buffer.from(JSON.stringify({userId:e.user.id,timestamp:Date.now()})).toString("base64"),o=(0,u.GW)(r);return a.NextResponse.json({authUrl:o,state:r})}catch(e){return console.error("Error initiating Microsoft OAuth flow:",e),a.NextResponse.json({error:"Failed to initiate Microsoft OAuth flow",details:e instanceof Error?e.message:"Unknown error"},{status:500})}}let d=new t.AppRouteRouteModule({definition:{kind:n.RouteKind.APP_ROUTE,page:"/api/courrier/microsoft/route",pathname:"/api/courrier/microsoft",filename:"route",bundlePath:"app/api/courrier/microsoft/route"},resolvedPagePath:"/Users/alma/Documents/NeahNew/app/api/courrier/microsoft/route.ts",nextConfigOutput:"",userland:s}),{workAsyncStorage:f,workUnitAsyncStorage:k,serverHooks:_}=d;function h(){return(0,i.patchFetch)({workAsyncStorage:f,workUnitAsyncStorage:k})}},42873:(e,r,o)=>{"use strict";o.d(r,{GW:()=>p,J1:()=>f,oK:()=>d});var s=o(94612);let t=process.env.MICROSOFT_TENANT_ID||"common",n=`https://login.microsoftonline.com/${t}/oauth2/v2.0/authorize`,i=`https://login.microsoftonline.com/${t}/oauth2/v2.0/token`,a=process.env.MICROSOFT_CLIENT_ID,c=process.env.MICROSOFT_CLIENT_SECRET,l=process.env.MICROSOFT_REDIRECT_URI;console.log("Microsoft OAuth Configuration:",{tenantId:t,authorizeUrl:n,tokenUrl:i,clientIdFirstChars:a?a.substring(0,5)+"...":"undefined",redirectUri:l});let u="offline_access https://outlook.office.com/IMAP.AccessAsUser.All https://outlook.office.com/SMTP.Send";function p(e){let r=new URLSearchParams({client_id:a,response_type:"code",redirect_uri:l,scope:u,state:e,response_mode:"query"});return`${n}?${r.toString()}`}async function d(e){let r=new URLSearchParams({client_id:a,client_secret:c,code:e,redirect_uri:l,grant_type:"authorization_code"});try{console.log(`Exchanging code for tokens. URL: ${i}`);let e=await s.A.post(i,r.toString(),{headers:{"Content-Type":"application/x-www-form-urlencoded"}});return console.log("Token exchange successful!"),{access_token:e.data.access_token,refresh_token:e.data.refresh_token,expires_in:e.data.expires_in}}catch(e){if(console.error("Error exchanging code for tokens:",e),e.response){console.error("Response data:",e.response.data),console.error("Response status:",e.response.status),console.error("Response headers:",e.response.headers);let r=e.response.data;if(r&&r.error_description)throw Error(`Token exchange failed: ${r.error_description}`)}throw Error("Failed to exchange authorization code for tokens")}}async function f(e){let r=new URLSearchParams({client_id:a,client_secret:c,refresh_token:e,grant_type:"refresh_token",scope:u});try{console.log(`Refreshing access token. URL: ${i}`);let e=await s.A.post(i,r.toString(),{headers:{"Content-Type":"application/x-www-form-urlencoded"}});return console.log("Token refresh successful!"),{access_token:e.data.access_token,refresh_token:e.data.refresh_token,expires_in:e.data.expires_in}}catch(e){if(console.error("Error refreshing token:",e),e.response){console.error("Response data:",e.response.data),console.error("Response status:",e.response.status),console.error("Response headers:",e.response.headers);let r=e.response.data;if(r&&r.error_description)throw Error(`Token refresh failed: ${r.error_description}`)}throw Error("Failed to refresh access token")}}},44870:e=>{"use strict";e.exports=require("next/dist/compiled/next-server/app-route.runtime.prod.js")},55511:e=>{"use strict";e.exports=require("crypto")},55591:e=>{"use strict";e.exports=require("https")},63033:e=>{"use strict";e.exports=require("next/dist/server/app-render/work-unit-async-storage.external.js")},74075:e=>{"use strict";e.exports=require("zlib")},78335:()=>{},79428:e=>{"use strict";e.exports=require("buffer")},79551:e=>{"use strict";e.exports=require("url")},81630:e=>{"use strict";e.exports=require("http")},83997:e=>{"use strict";e.exports=require("tty")},94735:e=>{"use strict";e.exports=require("events")},96487:()=>{}};var r=require("../../../../webpack-runtime.js");r.C(e);var o=e=>r(r.s=e),s=r.X(0,[4243,5419,580,8794,4612],()=>o(42268));module.exports=s})(); |