mirror of
https://github.com/formbricks/formbricks.git
synced 2026-04-23 05:17:49 -05:00
Tiago
87 lines
2.3 KiB
TypeScript
87 lines
2.3 KiB
TypeScript
import type { IdentityProvider } from "@prisma/client";
|
|
import AzureAD from "next-auth/providers/azure-ad";
|
|
import GitHubProvider from "next-auth/providers/github";
|
|
import GoogleProvider from "next-auth/providers/google";
|
|
import {
|
|
AZUREAD_CLIENT_ID,
|
|
AZUREAD_CLIENT_SECRET,
|
|
AZUREAD_TENANT_ID,
|
|
GITHUB_ID,
|
|
GITHUB_SECRET,
|
|
GOOGLE_CLIENT_ID,
|
|
GOOGLE_CLIENT_SECRET,
|
|
OIDC_CLIENT_ID,
|
|
OIDC_CLIENT_SECRET,
|
|
OIDC_DISPLAY_NAME,
|
|
OIDC_ISSUER,
|
|
OIDC_SIGNING_ALGORITHM,
|
|
WEBAPP_URL,
|
|
} from "@/lib/constants";
|
|
|
|
export const getSSOProviders = () => [
|
|
GitHubProvider({
|
|
clientId: GITHUB_ID || "",
|
|
clientSecret: GITHUB_SECRET || "",
|
|
}),
|
|
GoogleProvider({
|
|
clientId: GOOGLE_CLIENT_ID || "",
|
|
clientSecret: GOOGLE_CLIENT_SECRET || "",
|
|
}),
|
|
AzureAD({
|
|
clientId: AZUREAD_CLIENT_ID || "",
|
|
clientSecret: AZUREAD_CLIENT_SECRET || "",
|
|
tenantId: AZUREAD_TENANT_ID || "",
|
|
}),
|
|
{
|
|
id: "openid",
|
|
name: OIDC_DISPLAY_NAME || "OpenId",
|
|
type: "oauth" as const,
|
|
clientId: OIDC_CLIENT_ID || "",
|
|
clientSecret: OIDC_CLIENT_SECRET || "",
|
|
wellKnown: `${OIDC_ISSUER}/.well-known/openid-configuration`,
|
|
authorization: { params: { scope: "openid email profile" } },
|
|
idToken: true,
|
|
client: {
|
|
id_token_signed_response_alg: OIDC_SIGNING_ALGORITHM || "RS256",
|
|
},
|
|
checks: ["pkce" as const, "state" as const],
|
|
profile: (profile: { sub: string; name: string; email: string }) => {
|
|
return {
|
|
id: profile.sub,
|
|
name: profile.name,
|
|
email: profile.email,
|
|
};
|
|
},
|
|
},
|
|
{
|
|
id: "saml",
|
|
name: "BoxyHQ SAML",
|
|
type: "oauth" as const,
|
|
version: "2.0",
|
|
checks: ["pkce" as const, "state" as const],
|
|
authorization: {
|
|
url: `${WEBAPP_URL}/api/auth/saml/authorize`,
|
|
params: {
|
|
scope: "",
|
|
response_type: "code",
|
|
provider: "saml",
|
|
},
|
|
},
|
|
token: `${WEBAPP_URL}/api/auth/saml/token`,
|
|
userinfo: `${WEBAPP_URL}/api/auth/saml/userinfo`,
|
|
profile(profile: { id: string; email: string; firstName: string; lastName: string }) {
|
|
return {
|
|
id: profile.id,
|
|
email: profile.email,
|
|
name: [profile.firstName, profile.lastName].filter(Boolean).join(" "),
|
|
};
|
|
},
|
|
options: {
|
|
clientId: "dummy",
|
|
clientSecret: "dummy",
|
|
},
|
|
},
|
|
];
|
|
|
|
export type { IdentityProvider };
|