refactor: refactor webui

2025-04-26 01:43:23 +08:00
parent b20f7cd1ad
commit ee1b1ae5e6
104 changed files with 934 additions and 827 deletions
--- a/apps/webui/src/infra/auth/oidc/config.ts
+++ b/apps/webui/src/infra/auth/oidc/config.ts
@@ -0,0 +1,35 @@
+import { LogLevel, type OpenIdConfiguration } from 'oidc-client-rx';
+
+export function buildOidcConfig(): OpenIdConfiguration {
+  const origin = window.location.origin;
+
+  const resource = process.env.OIDC_AUDIENCE!;
+
+  return {
+    authority: process.env.OIDC_ISSUER!,
+    redirectUrl: `${origin}/auth/oidc/callback`,
+    postLogoutRedirectUri: `${origin}/`,
+    clientId: process.env.OIDC_CLIENT_ID!,
+    clientSecret: process.env.OIDC_CLIENT_SECRET,
+    scope: process.env.OIDC_EXTRA_SCOPES
+      ? `openid profile email offline_access ${process.env.OIDC_EXTRA_SCOPES}`
+      : 'openid profile email offline_access',
+    triggerAuthorizationResultEvent: true,
+    responseType: 'code',
+    silentRenew: true,
+    useRefreshToken: true,
+    logLevel: LogLevel.None,
+    autoUserInfo: !resource,
+    renewUserInfoAfterTokenRenew: !resource,
+    customParamsAuthRequest: {
+      prompt: 'consent',
+      resource,
+    },
+    customParamsRefreshTokenRequest: {
+      resource,
+    },
+    customParamsCodeRequest: {
+      resource,
+    },
+  };
+}