lukechilds
/
umbrel-samourai-dojo
mirror of https://github.com/lukechilds/umbrel-samourai-dojo.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
606 Commits
5 Branches
22 Tags
2.1 MiB
 
 
 
 
 
 
Tree: 95169f81bd
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '95169f81bd'
${ noResults }
umbrel-samourai-dojo/static/admin/lib/auth-utils.js

146 lines
3.6 KiB
Raw Blame History

const lib_auth = {
/* SessionStorage Key used for access token */
SESSION_STORE_ACCESS_TOKEN: 'access_token',
/* SessionStorage Key used for the timestamp of the access token */
SESSION_STORE_ACCESS_TOKEN_TS: 'access_token_ts',
/* SessionStorage Key used for refresh token */
SESSION_STORE_REFRESH_TOKEN: 'refresh_token',
/* SessionStorage Key used for the timestamp of the refresh token */
SESSION_STORE_REFRESH_TOKEN_TS: 'refresh_token_ts',
/* JWT Scheme */
JWT_SCHEME: 'Bearer',
/* Admin profile */
TOKEN_PROFILE_ADMIN: 'admin',
/*
* Retrieves access token from session storage
*/
getAccessToken: function() {
return sessionStorage.getItem(this.SESSION_STORE_ACCESS_TOKEN)
},
/*
* Stores access token in session storage
*/
setAccessToken: function(token) {
const now = new Date();
sessionStorage.setItem(this.SESSION_STORE_ACCESS_TOKEN_TS, now.getTime())
sessionStorage.setItem(this.SESSION_STORE_ACCESS_TOKEN, token)
},
/*
* Retrieves refresh token from session storage
*/
getRefreshToken: function() {
return sessionStorage.getItem(this.SESSION_STORE_REFRESH_TOKEN)
},
/*
* Stores refresh token in session storage
*/
setRefreshToken: function(token) {
const now = new Date();
sessionStorage.setItem(this.SESSION_STORE_REFRESH_TOKEN_TS, now.getTime())
sessionStorage.setItem(this.SESSION_STORE_REFRESH_TOKEN, token)
},
/*
* Refreshes the access token
*/
refreshAccessToken: function() {
if (!this.isAuthenticated()) {
return
}
const now = new Date();
const atts = sessionStorage.getItem(this.SESSION_STORE_ACCESS_TOKEN_TS)
let timeElapsed = (now.getTime() - atts) / 1000
// Refresh the access token if more than 5mn
if (timeElapsed > 300) {
// Check if refresh token has expired or is about to expire
const rtts = sessionStorage.getItem(this.SESSION_STORE_REFRESH_TOKEN_TS)
if ((now.getTime() - rtts) / 1000 > 7200 - 60) {
// Force user to sign in again
this.logout()
return
}
let self = this
let deferred = lib_api.refreshToken({
'rt': this.getRefreshToken()
})
deferred.then(
function (result) {
const auth = result['authorizations']
const accessToken = auth['access_token']
self.setAccessToken(accessToken)
},
function (jqxhr) {
// Do nothing
}
);
}
},
/*
* Checks if user is authenticated
*/
isAuthenticated: function() {
// Checks that an access token is stored in session storage
let token = this.getAccessToken()
return (token && (token != 'null')) ? true : false
},
/*
* Extract the payload of an access token
* in json format
*/
getPayloadAccessToken: function(token) {
if (!token)
token = this.getAccessToken()
if (!token)
return null
try {
const payloadBase64 = token.split('.')[1]
const payloadUtf8 = atob(payloadBase64)
return JSON.parse(payloadUtf8)
} catch {
return null
}
},
/*
* Check if user has admin profile
*/
isAdmin: function(token) {
const payload = this.getPayloadAccessToken(token)
if (!payload)
return false
return (('prf' in payload) && (payload['prf'] == this.TOKEN_PROFILE_ADMIN))
},
/*
* Local logout
*/
logout: function() {
// Clears session storage
this.setRefreshToken(null)
this.setAccessToken(null)
sessionStorage.setItem('activeTab', '')
sessionStorage.setItem('indexerType', '')
lib_cmn.goToHomePage()
}
}