1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
| <!doctype html>
| <html lang="en-US">
| <body onload="run()">
| </body>
| </html>
| <script>
| 'use strict';
| function run () {
| var oauth2 = window.opener.swaggerUIRedirectOauth2;
| var sentState = oauth2.state;
| var isValid, qp, arr;
|
| qp = (window.location.hash || location.search).substring(1);
|
| arr = qp.split("&")
| arr.forEach(function (v,i,_arr) { _arr[i] = '"' + v.replace('=', '":"') + '"';})
| qp = qp ? JSON.parse('{' + arr.join() + '}',
| function (key, value) {
| return key === "" ? value : decodeURIComponent(value)
| }
| ) : {}
|
| isValid = qp.state === sentState
|
| if (oauth2.auth.schema.get("flow") === "accessCode" && !oauth2.auth.code) {
| if (!isValid) {
| oauth2.errCb({
| authId: oauth2.auth.name,
| source: "auth",
| level: "warning",
| message: "Authorization may be unsafe, passed state was changed in server Passed state wasn't returned from auth server"
| });
| }
|
| if (qp.code) {
| delete oauth2.state;
| oauth2.auth.code = qp.code;
| oauth2.callback(oauth2.auth);
| } else {
| oauth2.errCb({
| authId: oauth2.auth.name,
| source: "auth",
| level: "error",
| message: "Authorization failed: no accessCode received from the server"
| });
| }
| } else {
| oauth2.callback({auth: oauth2.auth, token: qp, isValid: isValid});
| }
| window.close();
| }
|
| </script>
|
|
