lukechilds
/
umbrel-samourai-dojo
mirror of https://github.com/lukechilds/umbrel-samourai-dojo.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Check authentication with admin key

umbrel
kenshin-samourai 6 years ago
parent
7dd4af98af
commit
1379a70c31
2 changed files with 45 additions and 8 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 20
      static/admin/index.js
  2. 33
      static/admin/lib/auth-utils.js

20
static/admin/index.js
View File

@ -9,7 +9,7 @@ function login() {
// Checks input fields
if (!apiKey) {
lib_msg.displayErrors('API key is mandatory');
lib_msg.displayErrors('Admin key is mandatory');
return;
}
@ -20,13 +20,17 @@ function login() {
function (result) {
const auth = result['authorizations'];
const accessToken = auth['access_token'];
lib_auth.setAccessToken(accessToken);
const refreshToken = auth['refresh_token'];
lib_auth.setRefreshToken(refreshToken);
sessionStorage.setItem('activeTab', '');
lib_msg.displayInfo('Successfully connected to your backend');
// Redirection to default page
lib_cmn.goToDefaultPage();
if (lib_auth.isAdmin(accessToken)) {
lib_auth.setAccessToken(accessToken);
const refreshToken = auth['refresh_token'];
lib_auth.setRefreshToken(refreshToken);
sessionStorage.setItem('activeTab', '');
lib_msg.displayInfo('Successfully connected to your backend');
// Redirection to default page
lib_cmn.goToDefaultPage();
} else {
lib_msg.displayErrors('You must sign in with the admin key');
}
},
function (jqxhr) {
let msg = lib_msg.extractJqxhrErrorMsg(jqxhr);

33
static/admin/lib/auth-utils.js
View File

@ -12,6 +12,9 @@ var lib_auth = {
/* JWT Scheme */
JWT_SCHEME: 'Bearer',
/* Admin profile */
TOKEN_PROFILE_ADMIN: 'admin',
/*
* Retrieves access token from session storage
@ -87,6 +90,36 @@ var lib_auth = {
return (token && (token != 'null')) ? true : false;
},
/*
* Extract the payload of an access token
* in json format
*/
getPayloadAccessToken: function(token) {
if (!token)
token = this.getAccessToken();
if (!token)
return null;
try {
const payloadBase64 = token.split('.')[1];
const payloadUtf8 = atob(payloadBase64);
return JSON.parse(payloadUtf8);
} catch {
return null;
}
},
/*
* Check if user has admin profile
*/
isAdmin: function(token) {
const payload = this.getPayloadAccessToken(token);
if (!payload)
return false;
return (('prf' in payload) && (payload['prf'] == this.TOKEN_PROFILE_ADMIN));
},
/*
* Local logout
*/

Write Preview
Loading…
Cancel
Save