NodeJS 获取TypeError:client_secret_basic客户端身份验证方法需要client_secret

axkjgtzd  于 2023-08-04  发布在  Node.js
关注(0)|答案(1)|浏览(125)

我在使用客户端身份验证方法时遇到错误消息。我收到的错误消息是:
“TypeError:client_secret_basic客户端身份验证方法需要client_secret。”
我不知道如何解决这个问题,因为它似乎与身份验证过程有关。下面是相关的代码片段:

const express = require('express');
const session = require('express-session');
const { Issuer, generators } = require('openid-client');
const axios = require('axios');

const app = express();
const port = 3000;

app.use(session({
  secret: 'f06549ea-282a-4096-a3b4-d123bc881a00',
  resave: false,
  saveUninitialized: true,
}));

// Load environment variables
require('dotenv').config();

// OpenID Connect configuration
const azureTenantId = process.env.AZURE_TENANT_ID;
const clientId = process.env.CLIENT_ID;
const redirectUri = process.env.REDIRECT_URI;

const openIdConfigUrl = `https://login.microsoftonline.com/${azureTenantId}/v2.0/.well-known/openid-configuration`;

app.get('/auth/callback', async (req, res) => {
  try {
    const issuer = await Issuer.discover(openIdConfigUrl);
    const client = new issuer.Client({
      client_id: clientId,
      redirect_uris: [redirectUri],
    });

    if (!req.query.code) {
      // Generate and store PKCE code_verifier and code_challenge
      const codeVerifier = generators.codeVerifier();
      req.session.codeVerifier = codeVerifier;
      const codeChallenge = generators.codeChallenge(codeVerifier);

      // Initial authorization request with PKCE parameters
      const authorizationUrl = client.authorizationUrl({
        scope: 'openid',
        response_type: 'code',
        code_challenge: codeChallenge,
        code_challenge_method: 'S256',
        nonce: generators.nonce(),
      });

      res.redirect(authorizationUrl);
    } else {
      // Token exchange request with PKCE parameters
      const params = client.callbackParams(req);
      const tokenSet = await client.callback(redirectUri, params, {
        code_verifier: req.session.codeVerifier,
        response_type: 'code',
        token_endpoint_auth_method: 'none',
      });

      // Store the access token in the session or use it as needed
      const accessToken = tokenSet.access_token;
      console.log('Access token:', accessToken);

      // Call the API using the access token
      const apiUrl = 'https://api.example.com/data';
      const headers = {
        Authorization: `Bearer ${accessToken}`,
      };

      axios.get(apiUrl, { headers })
        .then(response => {
          // Process the API response and send it back to the client
          res.json(response.data);
        })
        .catch(error => {
          console.error('API request error:', error);
          res.status(500).send('API request error');
        });
    }
  } catch (error) {
    console.error('Authentication error:', error);
    res.status(500).send('Authentication error');
  }
});

app.listen(port, () => {
  console.log(`Server running on port ${port}`);
});

字符串
我将感谢任何关于如何修复此错误的见解或建议。提前感谢您的帮助!

node.js

1条答案

按热度按时间
bjp0bcyl

bjp0bcyl1#

我在尝试使用authorization_code流时遇到了同样的错误,其中没有涉及client_secret参数。为了解决这个问题,我在客户端创建中使用了参数token_endpoint_auth_method设置为'none':

const authServer = await Issuer.discover(AUTH_SERVER_BASE_URL);
  const client = new authServer.Client({
    client_id: CLIENT_ID,
    response_types: ["code"],
    redirect_uris: [REDIRECT_URI],
    token_endpoint_auth_method: "none"
  });

字符串

赞(0)分享  回复(0)举报  2023-08-04
我来回答

相关问题

    查看更多

    热门标签

    更多
    JavaquerypythonNode开发语言requestUtil数据库Table后端算法LoggerMessageElementParser

    最新问答

    更多
    • 蜀ICP备2022004421号-2 NULL123 https://www.null123.com © All rights reserved
    • 本站内容来源互联网,如果侵犯您的权益请联系我们删除, 联系方式:448109455@qq.com