slawek/sk-az-tools
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Add file cache plugin for token caching fallback in createPca function

Browse Source
This commit is contained in:
Sławek Koszewski
2026-02-07 13:27:10 +01:00
parent 5b9074a1af
commit 752c6c797c
1 changed files with 32 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

41
src/azure/pca-auth.js
View File

@@ -1,5 +1,6 @@
import open, { apps } from "open";
import fs from "node:fs";
import path from "node:path";
import { PublicClientApplication } from "@azure/msal-node";
@@ -10,20 +11,42 @@ import {
PersistenceCreator,
} from "@azure/msal-node-extensions";
function fileCachePlugin(cachePath) {
return {
beforeCacheAccess: async (ctx) => {
if (fs.existsSync(cachePath)) {
ctx.tokenCache.deserialize(fs.readFileSync(cachePath, "utf8"));
}
},
afterCacheAccess: async (ctx) => {
if (!ctx.cacheHasChanged) return;
fs.mkdirSync(path.dirname(cachePath), { recursive: true });
fs.writeFileSync(cachePath, ctx.tokenCache.serialize());
fs.chmodSync(cachePath, 0o600);
},
};
}
async function createPca({ tenantId, clientId }) {
const cacheRoot = Environment.isWindowsPlatform()
? path.join(Environment.getUserRootDirectory(), "sk-az-tools")
: path.join(Environment.getUserRootDirectory(), ".config", "sk-az-tools");
const cachePath = path.join(cacheRoot, `${clientId}-msal.cache`);
const persistence = await PersistenceCreator.createPersistence({
cachePath,
dataProtectionScope: DataProtectionScope.CurrentUser,
serviceName: "sk-az-tools",
accountName: "msal-cache",
usePlaintextFileOnLinux: true,
});
let cachePlugin;
try {
const persistence = await PersistenceCreator.createPersistence({
cachePath,
dataProtectionScope: DataProtectionScope.CurrentUser,
serviceName: "sk-az-tools",
accountName: "msal-cache",
usePlaintextFileOnLinux: true,
});
cachePlugin = new PersistenceCachePlugin(persistence);
} catch (err) {
// Fallback for Linux environments where libsecret integration is unavailable.
cachePlugin = fileCachePlugin(cachePath);
}
return new PublicClientApplication({
auth: {
@@ -31,7 +54,7 @@ async function createPca({ tenantId, clientId }) {
authority: `https://login.microsoftonline.com/${tenantId}`,
},
cache: {
cachePlugin: new PersistenceCachePlugin(persistence),
cachePlugin,
},
});
}