[ES-1375] Implemented the /resume endpoint and handled the redirectio…

…n upon the success of ekyc. (#824) Signed-off-by: GurukiranP <talk2gurukiran@gmail.com>
mosip · Jul 24, 2024 · ef7e9f6 · ef7e9f6
1 parent 7b65d29
commit ef7e9f6
Showing 3 changed files with 111 additions and 2 deletions.
diff --git a/oidc-ui/src/constants/routes.js b/oidc-ui/src/constants/routes.js
@@ -7,6 +7,7 @@ export const AUTHCODE = "/authorization/auth-code";
 export const CSRF = "/csrf/token";
 export const CLAIM_DETAILS = "/authorization/claim-details";
 export const PREPARE_SIGNUP_REDIRECT = "/authorization/prepare-signup-redirect";
+export const RESUME = "/authorization/resume";
 
 // Config endpoint
 export const CONFIG = "/theme/config.json";

diff --git a/oidc-ui/src/pages/Consent.js b/oidc-ui/src/pages/Consent.js
@@ -5,6 +5,8 @@ import { Buffer } from "buffer";
 import { useLocation, useSearchParams } from "react-router-dom";
 import openIDConnectService from "../services/openIDConnectService";
 import DefaultError from "../components/DefaultError";
+import sha256 from "crypto-js/sha256";
+import Base64 from "crypto-js/enc-base64";
 
 export default function ConsentPage() {
   const [searchParams, setSearchParams] = useSearchParams();
@@ -16,11 +18,91 @@ export default function ConsentPage() {
   let state = searchParams.get("state");
   const consentAction = searchParams.get("consentAction");
   const authTime = searchParams.get("authenticationTime");
+  const key = searchParams.get("key");
+  const urlInfo = localStorage.getItem(key);
 
+  // Create a URL object using the URL info
+  const urlInfoObj = new URL(
+    `${window.location.origin}${window.location.pathname}?${urlInfo}`
+  );
+
+  // Initialize URLSearchParams with the search part of the URL object
+  const urlInfoParams = new URLSearchParams(urlInfoObj.search);
+
+  // Initialize URLSearchParams with the search part of the current window location
+  const params = new URLSearchParams(window.location.search);
+
+  // Function to get the hash of OAuth details
+  const getOauthDetailsHash = async (value) => {
+    let sha256Hash = sha256(JSON.stringify(value));
+    let hashB64 = Base64.stringify(sha256Hash)
+      .replace(/=+$/, "")
+      .replace(/\+/g, "-")
+      .replace(/\//g, "_");
+    return hashB64;
+  };
+
+  if (key && urlInfo) {
+    // Parse the hash from the URL info
+    const hash = JSON.parse(atob(urlInfo.split("#")[1]));
+
+    // Destructure the transactionId from the hash
+    const { transactionId } = hash;
+
+    const resume = async (hash) => {
+      // Get the OAuth details hash
+      const oAuthDetailsHash = await getOauthDetailsHash(hash);
+
+      // Initialize the openIDConnectService
+      const oidcService = new openIDConnectService(
+        hash,
+        urlInfoParams.get("nonce"),
+        urlInfoParams.get("state")
+      );
+
+      // Get the redirect URI from the openIDConnectService
+      const redirect_uri = oidcService.getRedirectUri();
+
+      // Initialize the authService with the openIDConnectService
+      const authServices = new authService(oidcService);
+
+      const { response, errors } = await authServices.resume(
+        transactionId,
+        params.has("error"),
+        oAuthDetailsHash
+      );
+
+      window.onbeforeunload = null;
+
+      // log to check the response for the dev testing
+      console.log(response);
+
+      if (!errors.length) {
+        // Set the authenticationTime parameter
+        urlInfoParams.set("authenticationTime", Math.floor(Date.now() / 1000));
+
+        // Update the search part of the URL object
+        urlInfoObj.search = urlInfoParams.toString();
+
+        // Redirect to the updated URL (load the consent screen)
+        window.location.replace(urlInfoObj.toString());
+      } else {
+        urlInfoParams.set("error_description", errors[0].errorCode);
+        urlInfoParams.set("error", errors[0].errorCode);
+
+        // Redirect to the redirect URI with the error parameters (load the relying party screen)
+        window.location.replace(`${redirect_uri}?${urlInfoParams}`);
+      }
+    };
+
+    resume(hash);
+  }
 
   let parsedOauth = null;
   try {
-    parsedOauth = JSON.parse(decodeOAuth);
+    if (urlInfo === null) {
+      parsedOauth = JSON.parse(decodeOAuth);
+    }
   } catch (error) {
     return (
       <DefaultError

diff --git a/oidc-ui/src/services/authService.js b/oidc-ui/src/services/authService.js
@@ -11,6 +11,7 @@ import {
   CSRF,
   CLAIM_DETAILS,
   PREPARE_SIGNUP_REDIRECT,
+  RESUME,
 } from "./../constants/routes";
 
 const authorizeQueryParam = "authorize_query_param";
@@ -26,7 +27,7 @@ class authService {
    * Triggers /authenticate API on Esignet service
    * @param {string} transactionId same as Esignet transactionId
    * @param {String} individualId UIN/VIN of the individual
-   * @param {List<AuthChallenge>} challengeList challenge list based on the auth type(ie. BIO, PIN, INJI)   
+   * @param {List<AuthChallenge>} challengeList challenge list based on the auth type(ie. BIO, PIN, INJI)
    * @param {string} captchaToken captcha token detail
    * @returns /authenticate API response
    */
@@ -275,6 +276,31 @@ class authService {
     });
     return response.data;
   };
+
+  resume = async (transactionId, withError, oAuthDetailsHash) => {
+    const requestTime = new Date().toISOString();
+    const request = {
+      requestTime,
+      request: { transactionId, withError },
+    };
+
+    const oauthDetailsHash =
+      oAuthDetailsHash ||
+      (await this.openIDConnectService.getOauthDetailsHash());
+    const oauthDetailsKey =
+      transactionId || (await this.openIDConnectService.getTransactionId());
+
+    const headers = {
+      "Content-Type": "application/json",
+      "X-XSRF-TOKEN": getCookie("XSRF-TOKEN"),
+      "oauth-details-hash": oauthDetailsHash,
+      "oauth-details-key": oauthDetailsKey,
+    };
+
+    const response = await ApiService.post(RESUME, request, { headers });
+
+    return response.data;
+  };
 }
 
 export default authService;