X-Git-Url: https://git.arvados.org/arvados-workbench2.git/blobdiff_plain/e13e7dd672160e4ab5569c24133f4f6032db4a9a..07086d1ce2f74956fd3a498f184fcc0274f3e38d:/src/services/auth-service/auth-service.ts diff --git a/src/services/auth-service/auth-service.ts b/src/services/auth-service/auth-service.ts index 57915f70..bd4bc196 100644 --- a/src/services/auth-service/auth-service.ts +++ b/src/services/auth-service/auth-service.ts @@ -2,15 +2,26 @@ // // SPDX-License-Identifier: AGPL-3.0 -import { User } from "~/models/user"; +import { User, UserPrefs, getUserDisplayName } from '~/models/user'; import { AxiosInstance } from "axios"; +import { ApiActions } from "~/services/api/api-actions"; +import * as uuid from "uuid/v4"; +import { Session, SessionStatus } from "~/models/session"; +import { Config } from "~/common/config"; +import { uniqBy } from "lodash"; +export const TARGET_URL = 'targetURL'; export const API_TOKEN_KEY = 'apiToken'; export const USER_EMAIL_KEY = 'userEmail'; export const USER_FIRST_NAME_KEY = 'userFirstName'; export const USER_LAST_NAME_KEY = 'userLastName'; export const USER_UUID_KEY = 'userUuid'; export const USER_OWNER_UUID_KEY = 'userOwnerUuid'; +export const USER_IS_ADMIN = 'isAdmin'; +export const USER_IS_ACTIVE = 'isActive'; +export const USER_USERNAME = 'username'; +export const USER_PREFS = 'prefs'; +export const HOME_CLUSTER = 'homeCluster'; export interface UserDetailsResponse { email: string; @@ -19,87 +30,172 @@ export interface UserDetailsResponse { uuid: string; owner_uuid: string; is_admin: boolean; + is_active: boolean; + username: string; + prefs: UserPrefs; } export class AuthService { constructor( protected apiClient: AxiosInstance, - protected baseUrl: string) { } + protected baseUrl: string, + protected actions: ApiActions, + protected useSessionStorage: boolean = false) { } + + private getStorage() { + if (this.useSessionStorage) { + return sessionStorage; + } + return localStorage; + } public saveApiToken(token: string) { - localStorage.setItem(API_TOKEN_KEY, token); + this.getStorage().setItem(API_TOKEN_KEY, token); + const sp = token.split('/'); + if (sp.length === 3) { + this.getStorage().setItem(HOME_CLUSTER, sp[1].substr(0, 5)); + } } - public removeApiToken() { - localStorage.removeItem(API_TOKEN_KEY); + public removeTargetURL() { + this.getStorage().removeItem(TARGET_URL); } - public getApiToken() { - return localStorage.getItem(API_TOKEN_KEY) || undefined; + public getTargetURL() { + return this.getStorage().getItem(TARGET_URL); } - public getUuid() { - return localStorage.getItem(USER_UUID_KEY) || undefined; + public removeApiToken() { + this.getStorage().removeItem(API_TOKEN_KEY); } - public getOwnerUuid() { - return localStorage.getItem(USER_OWNER_UUID_KEY) || undefined; + public getApiToken() { + return this.getStorage().getItem(API_TOKEN_KEY) || undefined; } - public getUser(): User | undefined { - const email = localStorage.getItem(USER_EMAIL_KEY); - const firstName = localStorage.getItem(USER_FIRST_NAME_KEY); - const lastName = localStorage.getItem(USER_LAST_NAME_KEY); - const uuid = localStorage.getItem(USER_UUID_KEY); - const ownerUuid = localStorage.getItem(USER_OWNER_UUID_KEY); - - return email && firstName && lastName && uuid && ownerUuid - ? { email, firstName, lastName, uuid, ownerUuid } - : undefined; + public getHomeCluster() { + return this.getStorage().getItem(HOME_CLUSTER) || undefined; } - public saveUser(user: User) { - localStorage.setItem(USER_EMAIL_KEY, user.email); - localStorage.setItem(USER_FIRST_NAME_KEY, user.firstName); - localStorage.setItem(USER_LAST_NAME_KEY, user.lastName); - localStorage.setItem(USER_UUID_KEY, user.uuid); - localStorage.setItem(USER_OWNER_UUID_KEY, user.ownerUuid); + public getApiClient() { + return this.apiClient; } public removeUser() { - localStorage.removeItem(USER_EMAIL_KEY); - localStorage.removeItem(USER_FIRST_NAME_KEY); - localStorage.removeItem(USER_LAST_NAME_KEY); - localStorage.removeItem(USER_UUID_KEY); - localStorage.removeItem(USER_OWNER_UUID_KEY); + this.getStorage().removeItem(USER_EMAIL_KEY); + this.getStorage().removeItem(USER_FIRST_NAME_KEY); + this.getStorage().removeItem(USER_LAST_NAME_KEY); + this.getStorage().removeItem(USER_UUID_KEY); + this.getStorage().removeItem(USER_OWNER_UUID_KEY); + this.getStorage().removeItem(USER_IS_ADMIN); + this.getStorage().removeItem(USER_IS_ACTIVE); + this.getStorage().removeItem(USER_USERNAME); + this.getStorage().removeItem(USER_PREFS); + this.getStorage().removeItem(TARGET_URL); } - public login() { + public login(uuidPrefix: string, homeCluster: string, loginCluster: string, remoteHosts: { [key: string]: string }) { const currentUrl = `${window.location.protocol}//${window.location.host}/token`; - window.location.assign(`${this.baseUrl || ""}/login?return_to=${currentUrl}`); + const homeClusterHost = remoteHosts[homeCluster]; + const rd = new URL(window.location.href); + this.getStorage().setItem(TARGET_URL, rd.pathname + rd.search); + window.location.assign(`https://${homeClusterHost}/login?${(uuidPrefix !== homeCluster && homeCluster !== loginCluster) ? "remote=" + uuidPrefix + "&" : ""}return_to=${currentUrl}`); } - public logout() { + public logout(expireToken: string) { const currentUrl = `${window.location.protocol}//${window.location.host}`; - window.location.assign(`${this.baseUrl || ""}/logout?return_to=${currentUrl}`); + window.location.assign(`${this.baseUrl || ""}/logout?api_token=${expireToken}&return_to=${currentUrl}`); } - public getUserDetails = (): Promise => { + public getUserDetails = (showErrors?: boolean): Promise => { + const reqId = uuid(); + this.actions.progressFn(reqId, true); return this.apiClient .get('/users/current') - .then(resp => ({ - email: resp.data.email, - firstName: resp.data.first_name, - lastName: resp.data.last_name, - uuid: resp.data.uuid, - ownerUuid: resp.data.owner_uuid - })); - } - - public getRootUuid() { - const uuid = this.getOwnerUuid(); - const uuidParts = uuid ? uuid.split('-') : []; - return uuidParts.length > 1 ? `${uuidParts[0]}-${uuidParts[1]}` : undefined; + .then(resp => { + this.actions.progressFn(reqId, false); + const prefs = resp.data.prefs.profile ? resp.data.prefs : { profile: {} }; + return { + email: resp.data.email, + firstName: resp.data.first_name, + lastName: resp.data.last_name, + uuid: resp.data.uuid, + ownerUuid: resp.data.owner_uuid, + isAdmin: resp.data.is_admin, + isActive: resp.data.is_active, + username: resp.data.username, + prefs + }; + }) + .catch(e => { + this.actions.progressFn(reqId, false); + this.actions.errorFn(reqId, e, showErrors); + throw e; + }); + } + + public getSessions(): Session[] { + try { + const sessions = JSON.parse(this.getStorage().getItem("sessions") || ''); + return sessions; + } catch { + return []; + } + } + + public saveSessions(sessions: Session[]) { + this.getStorage().setItem("sessions", JSON.stringify(sessions)); + } + + public removeSessions() { + this.getStorage().removeItem("sessions"); + } + + public buildSessions(cfg: Config, user?: User) { + const currentSession = { + clusterId: cfg.uuidPrefix, + remoteHost: cfg.rootUrl, + baseUrl: cfg.baseUrl, + name: user ? getUserDisplayName(user) : '', + email: user ? user.email : '', + userIsActive: user ? user.isActive : false, + token: this.getApiToken(), + loggedIn: true, + active: true, + uuid: user ? user.uuid : '', + status: SessionStatus.VALIDATED, + apiRevision: cfg.apiRevision, + } as Session; + const localSessions = this.getSessions().map(s => ({ + ...s, + active: false, + status: SessionStatus.INVALIDATED + })); + + const cfgSessions = Object.keys(cfg.remoteHosts).map(clusterId => { + const remoteHost = cfg.remoteHosts[clusterId]; + return { + clusterId, + remoteHost, + baseUrl: '', + name: '', + email: '', + token: '', + loggedIn: false, + active: false, + uuid: '', + status: SessionStatus.INVALIDATED, + apiRevision: 0, + } as Session; + }); + const sessions = [currentSession] + .concat(cfgSessions) + .concat(localSessions) + .filter((r: Session) => r.clusterId !== "*"); + + const uniqSessions = uniqBy(sessions, 'clusterId'); + + return uniqSessions; } }