lukechilds
/
umbrel-samourai-dojo
mirror of https://github.com/lukechilds/umbrel-samourai-dojo.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Merge pull request #33 from Samourai-Wallet/feat_maintool_check_profile 

Check authentication with admin key
umbrel
kenshin samourai 6 years ago
committed by GitHub
parent
7dd4af98af 1379a70c31
commit
bb8d4adb2e
No known key found for this signature in database GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 45 additions and 8 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 6
      static/admin/index.js
  2. 33
      static/admin/lib/auth-utils.js

6
static/admin/index.js
View File

@ -9,7 +9,7 @@ function login() {
// Checks input fields
if (!apiKey) {
lib_msg.displayErrors('API key is mandatory');
lib_msg.displayErrors('Admin key is mandatory');
return;
}
@ -20,6 +20,7 @@ function login() {
function (result) {
const auth = result['authorizations'];
const accessToken = auth['access_token'];
if (lib_auth.isAdmin(accessToken)) {
lib_auth.setAccessToken(accessToken);
const refreshToken = auth['refresh_token'];
lib_auth.setRefreshToken(refreshToken);
@ -27,6 +28,9 @@ function login() {
lib_msg.displayInfo('Successfully connected to your backend');
// Redirection to default page
lib_cmn.goToDefaultPage();
} else {
lib_msg.displayErrors('You must sign in with the admin key');
}
},
function (jqxhr) {
let msg = lib_msg.extractJqxhrErrorMsg(jqxhr);

33
static/admin/lib/auth-utils.js
View File

@ -12,6 +12,9 @@ var lib_auth = {
/* JWT Scheme */
JWT_SCHEME: 'Bearer',
/* Admin profile */
TOKEN_PROFILE_ADMIN: 'admin',
/*
* Retrieves access token from session storage
@ -87,6 +90,36 @@ var lib_auth = {
return (token && (token != 'null')) ? true : false;
},
/*
* Extract the payload of an access token
* in json format
*/
getPayloadAccessToken: function(token) {
if (!token)
token = this.getAccessToken();
if (!token)
return null;
try {
const payloadBase64 = token.split('.')[1];
const payloadUtf8 = atob(payloadBase64);
return JSON.parse(payloadUtf8);
} catch {
return null;
}
},
/*
* Check if user has admin profile
*/
isAdmin: function(token) {
const payload = this.getPayloadAccessToken(token);
if (!payload)
return false;
return (('prf' in payload) && (payload['prf'] == this.TOKEN_PROFILE_ADMIN));
},
/*
* Local logout
*/

Write Preview
Loading…
Cancel
Save