TeamCodeStream
diff --git a/‎api_server/bin/api_server.js‎
Lines changed: 4 additions & 0 deletions b/‎api_server/bin/api_server.js‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎api_server/config/api.js‎
Lines changed: 2 additions & 0 deletions b/‎api_server/config/api.js‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎api_server/config/github_enterprise.js‎
Lines changed: 5 additions & 0 deletions b/‎api_server/config/github_enterprise.js‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎api_server/config/jiraserver.js‎
Lines changed: 21 additions & 0 deletions b/‎api_server/config/jiraserver.js‎
Lines changed: 21 additions & 0 deletions
diff --git a/‎api_server/lib/oauth2/oauth2_module.js‎ ‎api_server/lib/oauth/oauth_module.js‎api_server/lib/oauth2/oauth2_module.js renamed to api_server/lib/oauth/oauth_module.js
Lines changed: 84 additions & 20 deletions b/‎api_server/lib/oauth2/oauth2_module.js‎ ‎api_server/lib/oauth/oauth_module.js‎api_server/lib/oauth2/oauth2_module.js renamed to api_server/lib/oauth/oauth_module.js
Lines changed: 84 additions & 20 deletions
diff --git a/‎api_server/modules/asana_auth/asana_auth.js‎
Lines changed: 2 additions & 2 deletions b/‎api_server/modules/asana_auth/asana_auth.js‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎api_server/modules/azure_devops_auth/azure_devops_auth.js‎
Lines changed: 2 additions & 2 deletions b/‎api_server/modules/azure_devops_auth/azure_devops_auth.js‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎api_server/modules/bitbucket_auth/bitbucket_auth.js‎
Lines changed: 2 additions & 2 deletions b/‎api_server/modules/bitbucket_auth/bitbucket_auth.js‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎api_server/modules/github_auth/github_auth.js‎
Lines changed: 2 additions & 2 deletions b/‎api_server/modules/github_auth/github_auth.js‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎api_server/modules/github_enterprise_auth.js/github_enterprise_auth.js‎
Lines changed: 27 additions & 0 deletions b/‎api_server/modules/github_enterprise_auth.js/github_enterprise_auth.js‎
Lines changed: 27 additions & 0 deletions
@@ -21,9 +21,11 @@ const SlackConfig = require(ConfigDirectory + '/slack');
 const MSTeamsConfig = require(ConfigDirectory + '/msteams');
 const GlipConfig = require(ConfigDirectory + '/glip');
 const GithubConfig = require(ConfigDirectory + '/github');
+const GithubEnterpriseConfig = require(ConfigDirectory + '/github_enterprise');
 const AsanaConfig = require(ConfigDirectory + '/asana');
 const TrelloConfig = require(ConfigDirectory + '/trello');
 const JiraConfig = require(ConfigDirectory + '/jira');
+const JiraServerConfig = require(ConfigDirectory + '/jiraserver');
 const BitbucketConfig = require(ConfigDirectory + '/bitbucket');
 const GitlabConfig = require(ConfigDirectory + '/gitlab');
 const YouTrackConfig = require(ConfigDirectory + '/youtrack');
@@ -91,9 +93,11 @@ const MyAPICluster = new ClusterWrapper(
 		msteams: MSTeamsConfig,
 		glip: GlipConfig,
 		github: GithubConfig,
+		github_enterprise: GithubEnterpriseConfig,
 		asana: AsanaConfig,
 		trello: TrelloConfig,
 		jira: JiraConfig,
+		jiraserver: JiraServerConfig,
 		bitbucket: BitbucketConfig,
 		gitlab: GitlabConfig,
 		youtrack: YouTrackConfig,
 
@@ -66,8 +66,10 @@ ApiCfg.thirdPartyProviders = [
 	'azuredevops',
 	'bitbucket',
 	'github',
+	'github_enterprise',
 	'gitlab',
 	'jira',
+	'jiraserver',
 	'slack',
 	'trello',
 	'youtrack'
 
@@ -0,0 +1,5 @@
+// github enterprise integration configuration
+
+'use strict';
+
+module.exports = {};
@@ -0,0 +1,21 @@
+module.exports = {
+	appConsumerKey: 'OauthKey',
+	appClientSecret: `
+-----BEGIN PRIVATE KEY-----
+MIICdwIBADANBgkqhkiG9w0BAQEFAASCAmEwggJdAgEAAoGBANrGdJ4wo3DPRL7B
+hmWZmUBXox3X4Lt8MElcnPj7/IZmg242chWASt4+caSnru21M/Ok7qvWYOo9BgW0
+cNCGdAkbjuBvoo1aqkvVVxtTz3vaYPdUNmmz/tVHdcbZcQ2y/aNHVUhdVsLY6Gjg
+7dqlP+U8JMw2GfPRR9TANZLp2L4xAgMBAAECgYAWS7lg0cYmXgk8g46F1jSHGSdX
+iEOv98UYBOc+fLfMnq/wUH4p8MwwgB6m0CwEr73eq8VjH9L6rENr22rP5ZP3lWfx
+N4UfK65PjwutasfWvUzeT+vFuxO65AtHay+uYQfQAd6d/6tOvA/xNRGs15KF6oWn
+8CcgvKBHBaqz5BMQAQJBAPC2BccBX6XinlzfzBE92VUaoaJ0jtxAuak1feop0BMj
+hwGRMkDjPUx3B67Y/VZ9Q/YPoTFyin3C/bpew1zQcTECQQDoq8FYArMZVkp9vxUP
+FUZ8tD01zDeRC81b285+ZTFBUzqaX2ahLFQ+Q5DqOA3Sov1geDFZjORVb0/91sBE
+Id0BAkEA6eAxZNYU1NyG+b4ITIhHbcTeXzXYyG+q9Jkgqi/OF4phVkh5B0rC+FR+
+hogWPb6gFafB+oVLwj1+wWHpd3ifQQJAHcTD4v/NbGN2+mm1Rw3Ay/m/jx+GyH8L
+EkKoQ9GsoKAGcnPcTKjASosYgm8Tjaye4HXgUoXNPQUV5fNQ/CadAQJBALVnjYOP
+Gi5McQmiqEAHKViyRxaWSp8Z+s/HSS+2N0FPDWIGPxIP5r/q+OpBrxkgPrkZIB04
+f32eMhXFO3YroZE=
+-----END PRIVATE KEY-----
+	`
+};
@@ -1,13 +1,14 @@
-// provide service to handle OAuth2 based authorization
+// provide service to handle OAuth based authorization (either 1.0 or 2.0)
 
 'use strict';
 
 const APIServerModule = require(process.env.CS_API_TOP + '/lib/api_server/api_server_module.js');
 const fetch = require('node-fetch');
 const FormData = require('form-data');
 const Base64 = require('base-64');
+const OAuth = require('oauth').OAuth;
 
-class OAuth2Module extends APIServerModule {
+class OAuthModule extends APIServerModule {
 
 	services () {
 		const { provider } = this.oauthConfig;
@@ -79,10 +80,21 @@ class OAuth2Module extends APIServerModule {
 		return {
 			host: host || this.oauthConfig.host,
 			clientId: clientInfo.appClientId,
-			clientSecret: clientInfo.appClientSecret
+			clientSecret: clientInfo.appClientSecret,
+			clientConsumerKey: clientInfo.appConsumerKey
 		};
 	}
 
+	// does this module use OAuth 1.0 (OAuth 2.0 is the default) 
+	usesOauth1 () {
+		return this.oauthConfig.usesOauth1;
+	}
+	
+	// return the path to use for the authorize step of OAuth 1.0
+	getAuthorizePath () {
+		return this.oauthConfig.authorizePath;
+	}
+
 	// is an auth code for access token exchange required for this provider?
 	exchangeRequired () {
 		return !this.oauthConfig.noExchange;
@@ -369,42 +381,39 @@ class OAuth2Module extends APIServerModule {
 
 	// get standard and enterprise instances linked to this third-party provider
 	getInstances () {
-		// get the standard instance, if configured
-		const standardInstances = [];
-		const standardInstance = this.getStandardInstance(this.teams);
-		if (standardInstance) {
-			standardInstances.push(standardInstance);
-		}
+		// get the standard instances, if configured
+		const standardInstance = this.getStandardInstance();
 
 		// get any instances of enterprise hosts given by configuration
-		const enterpriseInstances = this.addInstancesByConfig(this.enterpriseConfig);
+		const instances = this.addInstancesByConfig(this.enterpriseConfig);
 
-		return [...standardInstances, ...enterpriseInstances];
+		if (standardInstance) {
+			instances.push(standardInstance);
+		}
+		return instances;
 	}
 
 	// get the standard in-cloud instance of the third-party provider, if configured
-	getStandardInstance (teams) {
+	getStandardInstance () {
 		const { 
 			host,
 			provider,
 			apiHost,
 			hasIssues,
-			enterpriseOnly,
+			forEnterprise,
 			needsConfigure,
 			disabled,
 			acceptsUserDefinedToken
 		} = this.oauthConfig;
-		const integrationDisabled = disabled && !(teams || []).find(team => {
-			return (team.get('allowedDisabledIntegrations') || []).includes(provider);
-		});
-		const { appClientId, apiKey } = this.apiConfig;
-		if (!integrationDisabled && host && (acceptsUserDefinedToken || enterpriseOnly || appClientId || apiKey)) {
+		const { appClientId, appConsumerKey, apiKey } = this.apiConfig;
+		const hasKey = appClientId || appConsumerKey || apiKey;
+		if (!disabled && host && (acceptsUserDefinedToken || forEnterprise || hasKey)) {
 			const starredHost = host.toLowerCase().replace(/\./g, '*');
 			return {
 				id: starredHost,
 				name: provider,
 				isEnterprise: false,
-				enterpriseOnly,
+				forEnterprise,
 				needsConfigure,
 				host: host.toLowerCase(),
 				apiHost: apiHost ? apiHost.toLowerCase() : undefined,
@@ -429,6 +438,61 @@ class OAuth2Module extends APIServerModule {
 		});
 		return instances;
 	}
+
+	// fetch a request token for modules using OAuth 1.0
+	getRequestToken (options) {
+		this.initOauth1AsNeeded(options);
+		return new Promise((resolve, reject) => {
+			this.oauth1Consumer.getOAuthRequestToken(
+				(error, oauthToken, oauthTokenSecret) => {
+					if (error) {
+						reject(error);
+					}
+					else {
+						resolve({ oauthToken, oauthTokenSecret });
+					}
+				}
+			);
+		});
+	}
+
+	// fetch an access token for modules using OAuth 1.0, given an OAuth token obtained
+	// from the provider-auth request
+	async getOauth1AccessToken (options) {
+		this.initOauth1AsNeeded(options);
+		return new Promise((resolve, reject) => {
+			this.oauth1Consumer.getOAuthAccessToken(
+				options.oauthToken,
+				options.oauthTokenSecret,
+				null,
+				(error, accessToken) => {
+					if (error) {
+						reject(error);
+					}
+					else {
+						resolve({ accessToken });
+					}
+				}
+			);
+		});
+	}
+
+	// init an OAuth 1.0 client for the given client options, as needed
+	initOauth1AsNeeded (options) {
+		if (this.oauth1Consumer) { return; }
+		const clientInfo = this.getClientInfo(options);
+		this.oauth1Consumer = new OAuth(
+			`http://${clientInfo.host}/${this.oauthConfig.requestTokenPath}`,
+			`http://${clientInfo.host}/${this.oauthConfig.accessTokenPath}`,
+			clientInfo.clientConsumerKey,
+			clientInfo.clientSecret,
+			'1.0',
+			null,
+			'RSA-SHA1',
+			null,
+			null
+		);
+	}
 }
 
-module.exports = OAuth2Module;
+module.exports = OAuthModule;
@@ -2,7 +2,7 @@
 
 'use strict';
 
-const OAuth2Module = require(process.env.CS_API_TOP + '/lib/oauth2/oauth2_module.js');
+const OAuthModule = require(process.env.CS_API_TOP + '/lib/oauth/oauth_module.js');
 
 const OAUTH_CONFIG = {
 	provider: 'asana',
@@ -16,7 +16,7 @@ const OAUTH_CONFIG = {
 	hasIssues: true
 };
 
-class AsanaAuth extends OAuth2Module {
+class AsanaAuth extends OAuthModule {
 
 	constructor (config) {
 		super(config);
 
@@ -2,7 +2,7 @@
 
 'use strict';
 
-const OAuth2Module = require(process.env.CS_API_TOP + '/lib/oauth2/oauth2_module.js');
+const OAuthModule = require(process.env.CS_API_TOP + '/lib/oauth/oauth_module.js');
 
 const OAUTH_CONFIG = {
 	provider: 'azuredevops',
@@ -31,7 +31,7 @@ const OAUTH_CONFIG = {
 	needsConfigure: true
 };
 
-class AzureDevOpsAuth extends OAuth2Module {
+class AzureDevOpsAuth extends OAuthModule {
 
 	constructor (config) {
 		super(config);
 
@@ -2,7 +2,7 @@
 
 'use strict';
 
-const OAuth2Module = require(process.env.CS_API_TOP + '/lib/oauth2/oauth2_module.js');
+const OAuthModule = require(process.env.CS_API_TOP + '/lib/oauth/oauth_module.js');
 
 const OAUTH_CONFIG = {
 	provider: 'bitbucket',
@@ -18,7 +18,7 @@ const OAUTH_CONFIG = {
 	hasIssues: true
 };
 
-class BitbucketAuth extends OAuth2Module {
+class BitbucketAuth extends OAuthModule {
 
 	constructor (config) {
 		super(config);
 
@@ -2,7 +2,7 @@
 
 'use strict';
 
-const OAuth2Module = require(process.env.CS_API_TOP + '/lib/oauth2/oauth2_module.js');
+const OAuthModule = require(process.env.CS_API_TOP + '/lib/oauth/oauth_module.js');
 
 const OAUTH_CONFIG = {
 	provider: 'github',
@@ -16,7 +16,7 @@ const OAUTH_CONFIG = {
 	hasIssues: true
 };
 
-class GithubAuth extends OAuth2Module {
+class GithubAuth extends OAuthModule {
 
 	constructor (config) {
 		super(config);
 
@@ -0,0 +1,27 @@
+// provide service to handle GitHub Enterprise credential authorization
+
+'use strict';
+
+const OAuthModule = require(process.env.CS_API_TOP + '/lib/oauth/oauth_module.js');
+
+const OAUTH_CONFIG = {
+	provider: 'github_enterprise',
+	host: 'github.com/enterprise',
+	authPath: 'login/oauth/authorize',
+	tokenPath: 'login/oauth/access_token',
+	exchangeFormat: 'query',
+	scopes: 'repo,user',
+	noGrantType: true,
+	hasIssues: true,
+	forEnterprise: true
+};
+
+class GithubEnterpriseAuth extends OAuthModule {
+
+	constructor (config) {
+		super(config);
+		this.oauthConfig = OAUTH_CONFIG;
+	}
+}
+
+module.exports = GithubEnterpriseAuth;