Merge branch '21128-toolbar-context-menu'

[arvados-workbench2.git] / src / services / auth-service / auth-service.ts

// Copyright (C) The Arvados Authors. All rights reserved.
//
// SPDX-License-Identifier: AGPL-3.0

import { User, UserPrefs, getUserDisplayName } from 'models/user';
import { AxiosInstance } from "axios";
import { ApiActions } from "services/api/api-actions";
import uuid from "uuid/v4";
import { Session, SessionStatus } from "models/session";
import { Config } from "common/config";
import { uniqBy } from "lodash";

export const TARGET_URL = 'targetURL';
export const API_TOKEN_KEY = 'apiToken';
export const USER_EMAIL_KEY = 'userEmail';
export const USER_FIRST_NAME_KEY = 'userFirstName';
export const USER_LAST_NAME_KEY = 'userLastName';
export const USER_UUID_KEY = 'userUuid';
export const USER_OWNER_UUID_KEY = 'userOwnerUuid';
export const USER_IS_ADMIN = 'isAdmin';
export const USER_IS_ACTIVE = 'isActive';
export const USER_USERNAME = 'username';
export const USER_PREFS = 'prefs';
export const HOME_CLUSTER = 'homeCluster';
export const LOCAL_STORAGE = 'localStorage';
export const SESSION_STORAGE = 'sessionStorage';

export interface UserDetailsResponse {
    email: string;
    first_name: string;
    last_name: string;
    uuid: string;
    owner_uuid: string;
    is_admin: boolean;
    is_active: boolean;
    username: string;
    prefs: UserPrefs;
    can_write: boolean;
    can_manage: boolean;
}

export class AuthService {

    constructor(
        protected apiClient: AxiosInstance,
        protected baseUrl: string,
        protected actions: ApiActions,
        protected useSessionStorage: boolean = false) { }

    private getStorage() {
        if (this.useSessionStorage) {
            return sessionStorage;
        }
        return localStorage;
    }

    public getStorageType() {
        if (this.useSessionStorage) {
            return SESSION_STORAGE;
        }
        return LOCAL_STORAGE;
    }

    public saveApiToken(token: string) {
        this.removeApiToken();
        this.getStorage().setItem(API_TOKEN_KEY, token);
        const sp = token.split('/');
        if (sp.length === 3) {
            this.getStorage().setItem(HOME_CLUSTER, sp[1].substring(0, 5));
        }
    }

    public setTargetUrl(url: string) {
        localStorage.setItem(TARGET_URL, url);
    }

    public removeTargetURL() {
        localStorage.removeItem(TARGET_URL);
    }

    public getTargetURL() {
        return localStorage.getItem(TARGET_URL);
    }

    public removeApiToken() {
        localStorage.removeItem(API_TOKEN_KEY);
        sessionStorage.removeItem(API_TOKEN_KEY);
    }

    public getApiToken() {
        return this.getStorage().getItem(API_TOKEN_KEY) || undefined;
    }

    public getHomeCluster() {
        return this.getStorage().getItem(HOME_CLUSTER) || undefined;
    }

    public getApiClient() {
        return this.apiClient;
    }

    public removeUser() {
        [localStorage, sessionStorage].forEach((storage) => {
            storage.removeItem(USER_EMAIL_KEY);
            storage.removeItem(USER_FIRST_NAME_KEY);
            storage.removeItem(USER_LAST_NAME_KEY);
            storage.removeItem(USER_UUID_KEY);
            storage.removeItem(USER_OWNER_UUID_KEY);
            storage.removeItem(USER_IS_ADMIN);
            storage.removeItem(USER_IS_ACTIVE);
            storage.removeItem(USER_USERNAME);
            storage.removeItem(USER_PREFS);
            storage.removeItem(TARGET_URL);
        });
    }

    public login(uuidPrefix: string, homeCluster: string, loginCluster: string, remoteHosts: { [key: string]: string }) {
        const currentUrl = `${window.location.protocol}//${window.location.host}/token`;
        const homeClusterHost = remoteHosts[homeCluster];
        const rd = new URL(window.location.href);
        this.setTargetUrl(rd.pathname + rd.search);
        window.location.assign(`https://${homeClusterHost}/login?${(uuidPrefix !== homeCluster && homeCluster !== loginCluster) ? "remote=" + uuidPrefix + "&" : ""}return_to=${currentUrl}`);
    }

    public logout(expireToken: string, preservePath: boolean) {
        const fullUrl = new URL(window.location.href);
        const wbBase = `${fullUrl.protocol}//${fullUrl.host}`;
        const wbPath = fullUrl.pathname + fullUrl.search;
        const returnTo = `${wbBase}${preservePath ? wbPath : ''}`

        window.location.assign(`${this.baseUrl || ""}/logout?api_token=${expireToken}&return_to=${returnTo}`);
    }

    public getUserDetails = (showErrors?: boolean): Promise<User> => {
        const reqId = uuid();
        this.actions.progressFn(reqId, true);
        return this.apiClient
            .get<UserDetailsResponse>('/users/current')
            .then(resp => {
                this.actions.progressFn(reqId, false);
                const prefs = resp.data.prefs.profile ? resp.data.prefs : { profile: {} };
                return {
                    email: resp.data.email,
                    firstName: resp.data.first_name,
                    lastName: resp.data.last_name,
                    uuid: resp.data.uuid,
                    ownerUuid: resp.data.owner_uuid,
                    isAdmin: resp.data.is_admin,
                    isActive: resp.data.is_active,
                    username: resp.data.username,
                    canWrite: resp.data.can_write,
                    canManage: resp.data.can_manage,
                    prefs
                };
            })
            .catch(e => {
                this.actions.progressFn(reqId, false);
                this.actions.errorFn(reqId, e, showErrors);
                throw e;
            });
    }

    public getSessions(): Session[] {
        try {
            const sessions = JSON.parse(this.getStorage().getItem("sessions") || '');
            return sessions;
        } catch {
            return [];
        }
    }

    public saveSessions(sessions: Session[]) {
        this.removeSessions();
        this.getStorage().setItem("sessions", JSON.stringify(sessions));
    }

    public removeSessions() {
        localStorage.removeItem("sessions");
        sessionStorage.removeItem("sessions");
    }

    public buildSessions(cfg: Config, user?: User) {
        const currentSession = {
            clusterId: cfg.uuidPrefix,
            remoteHost: cfg.rootUrl,
            baseUrl: cfg.baseUrl,
            name: user ? getUserDisplayName(user) : '',
            email: user ? user.email : '',
            userIsActive: user ? user.isActive : false,
            token: this.getApiToken(),
            loggedIn: true,
            active: true,
            uuid: user ? user.uuid : '',
            status: SessionStatus.VALIDATED,
            apiRevision: cfg.apiRevision,
        } as Session;
        const localSessions = this.getSessions().map(s => ({
            ...s,
            active: false,
            status: SessionStatus.INVALIDATED
        }));

        const cfgSessions = Object.keys(cfg.remoteHosts).map(clusterId => {
            const remoteHost = cfg.remoteHosts[clusterId];
            return {
                clusterId,
                remoteHost,
                baseUrl: '',
                name: '',
                email: '',
                token: '',
                loggedIn: false,
                active: false,
                uuid: '',
                status: SessionStatus.INVALIDATED,
                apiRevision: 0,
            } as Session;
        });
        const sessions = [currentSession]
            .concat(cfgSessions)
            .concat(localSessions)
            .filter((r: Session) => r.clusterId !== "*");

        const uniqSessions = uniqBy(sessions, 'clusterId');

        return uniqSessions;
    }
}