Skip to content

Instantly share code, notes, and snippets.

View SumanaMalkapuram's full-sized avatar

SumanaMalkapuram

View GitHub Profile
@SumanaMalkapuram
SumanaMalkapuram / delegated-M2MToken
Last active December 18, 2020 18:37
module.exports = function(client, scope, audience, context, cb) {
const _ = require('lodash');
let access_token = {};
let requested_scopes = context.body.scope;
let jwt = require('jsonwebtoken');
requested_scopes = (requested_scopes && requested_scopes.split(" ")) || [];
access_token.scope = _.intersection(requested_scopes, scope);
if (!context.body.identifier_token) {
return cb('No user identifier');
@SumanaMalkapuram
SumanaMalkapuram / performMFA
Created October 22, 2020 18:09
decouple enrollment with redirect rules and challenge using Auth0 UL
function performMfa(user, context, callback) {
let jwt = require('jsonwebtoken');
let mfaEnrollmentStatus = user.app_metadata.MFAEnrolledStatus || '';
//if(context.connection !== 'your connection name') return callback(null, user, context);
// run only for the specified clients
/* let CLIENTS_WITH_MFA = context.clientMetadata.clientid;
if (CLIENTS_WITH_MFA.indexOf(context.clientID) === -1) {
return callback(null, user, context);
@SumanaMalkapuram
SumanaMalkapuram / tokenFromConfig
Created February 6, 2020 16:59
async function getTokenFromRulesConfig(user, context, callback) {
const m2mClientID = configuration.m2mCID;
const m2mClientSecret = configuration.m2mCSecret;
let auth0Domain = '<<your_tenant>>.auth0.com';
const moment = require('moment-timezone');
let axios = require('axios');
const country = context.request.geoip.country_name;
const data = {
user_app_metadata: user.app_metadata,
email: user.email,
@SumanaMalkapuram
SumanaMalkapuram / tokenFromGlobal
Last active January 29, 2020 23:33
global object
function(user, context, callback) {
// Modules
const request = require('request');
// Options
const requestTokenOptions = {
method: 'POST',
uri: 'https://' + auth0.domain + '/oauth/token',
headers: {
@SumanaMalkapuram
SumanaMalkapuram / ifSilentAuth
Last active January 29, 2020 22:52
Skip rule for silent Auth
function(user, context, callback) {
let timeLimitMs = 1000;
let currentDate = new Date();
let currentTimeMs = currentDate.getTime();
let last_auth_time = new Date(context.authentication.methods.find((method) => method.name === 'pwd').timestamp);
let lastAuthTimeMs = last_auth_time.getTime();
const isSilentAuth = currentTimeMs - lastAuthTimeMs > timeLimitMs ? true : false;
console.log("current time", currentTimeMs);
console.log("lastAuthTime", lastAuthTimeMs);