sso_auth

Author: gdauber1

src/client.ts

@@ -85,7 +85,7 @@ export function createClient(config: {
   const serviceRoleModules = {
     entities: createEntitiesModule(serviceRoleAxiosClient, appId),
     integrations: createIntegrationsModule(serviceRoleAxiosClient, appId),
-    sso: createSsoModule(serviceRoleAxiosClient, appId),
+    sso: createSsoModule(serviceRoleAxiosClient, appId, token),
     functions: createFunctionsModule(serviceRoleFunctionsAxiosClient, appId),
   };
 

src/modules/sso.ts

@@ -4,11 +4,14 @@ import { AxiosInstance } from "axios";
  * Creates the SSO module for the Base44 SDK
  * @param {import('axios').AxiosInstance} axios - Axios instance
  * @param {string} appId - Application ID
+ * @param {string} [userToken] - User authentication token
+ * @param {string} [serviceToken] - Service role authentication token
  * @returns {Object} SSO module with SSO authentication methods
  */
 export function createSsoModule(
   axios: AxiosInstance,
-  appId: string
+  appId: string,
+  userToken?: string
 ) {
   return {
     /**
@@ -18,7 +21,16 @@ export function createSsoModule(
      */
     async getAccessToken(userid: string) {
       const url = `/apps/${appId}/auth/sso/accesstoken/${userid}`;
-      return axios.get(url);
+      
+      // Prepare headers with both tokens if available
+      const headers: Record<string, string> = {};
+      
+    
+      if (userToken) {
+        headers['on-behalf-of'] = `Bearer ${userToken}`;
+      }
+      
+      return axios.get(url, { headers });
     },
   };
 }