skrd/musiclist-client
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Auth basico completado

Browse Source
This commit is contained in:
Daniel Cortes
2020-06-23 18:55:42 -04:00
parent 72107bbc91
commit f98ed25ed4
4 changed files with 113 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

76
src/components/Auth.jsx
View File

@@ -1,64 +1,52 @@
import React, {useState} from 'react'; import React from 'react';
import {Redirect} from "react-router-dom"; import {Redirect} from "react-router-dom";
import queryString from "query-string"; import queryString from "query-string";
import {get_auth, obtain_code} from "../services/auth_service"; import {auth, logout} from "../services/auth_service";
import {useStateValue} from "../services/State"; import {useStateValue} from "../services/State";
export const AuthCallback = (props) => {
return null;
}
export const AuthLogin = (props) => { export const AuthLogin = (props) => {
const [response, setResponse] = useState(null);
const [context, dispatch] = useStateValue(); const [context, dispatch] = useStateValue();
if (window.localStorage.getItem('refresh_token')) {
}
if (!response) {
if (context.user.auth) { if (context.user.auth) {
return <Redirect to='/'/> // El usuario ya esta logeado, no hay nada que hacer
props.history.push('/')
} }
if (!window.localStorage.getItem('code_verifier')) { const params = queryString.parse(props.location.search);
const {redirect, code_verifier} = obtain_code(); auth(params).then((response) => {
window.localStorage.setItem('code_verifier', code_verifier); console.debug(response, window.localStorage);
window.location.href = redirect;
if(response.status === 'redirect_to_code'){
// Se va o ya se redirigió hacia la pagina que obtiene el código, no hay nada que hacer.
return null; return null;
} } else if (response.status === 'code_error') {
// Hubo un error al obtener el código
const parsedParams = queryString.parse(props.location.search); props.history.push('/error')
if (parsedParams.error) { } else if (response.status === 'done') {
console.log(parsedParams.error); // Termino gud, refresh_token y expires debería estar en local storage y access_token
window.localStorage.removeItem('code_verifier'); // debió ser retornado con la response
return <Redirect to={'/error'}/> props.history.push('/')
}
const code = parsedParams.code;
const code_verifier = window.localStorage.getItem('code_verifier');
get_auth(code, code_verifier).then((response) => setResponse(response));
return null;
} else {
console.log(response);
window.localStorage.removeItem('code_verifier');
const refresh = response.refresh_token;
const expires = new Date(new Date().getTime() + ((response.expires_in) * 1000))
window.localStorage.setItem('refresh_token', refresh);
window.localStorage.setItem('expires', expires);
dispatch({type: 'login', user:{auth: true, access_token: response.access_token}}); dispatch({type: 'login', user:{auth: true, access_token: response.access_token}});
} else {
return <Redirect to={'/'}/> // Ocurrió un error inesperado al hacer auth :c
props.history.push('/error')
} }
})
return null;
} }
export const AuthLogout = (props) => { export const AuthLogout = (props) => {
const [context, dispatch] = useStateValue(); const [context, dispatch] = useStateValue();
dispatch({action: 'logout', user: {auth: false}}) if (!context.user.auth) {
return <Redirect to='/'/>
}
logout(context.user.access_token).then(result => {
console.log(result);
});
dispatch({type: 'logout', user: {auth: false}})
return <Redirect to='/'/> return <Redirect to='/'/>
} }

1
src/index.jsx
View File

@@ -59,7 +59,6 @@ const App = () => (
<Route exact path='/login' component={AuthLogin}/> <Route exact path='/login' component={AuthLogin}/>
<Route exact path='/logout' component={AuthLogout}/> <Route exact path='/logout' component={AuthLogout}/>
<Route exact path='/auth_callback' component={AuthCallback}/>
<Route exact path='/' component={Main}/> <Route exact path='/' component={Main}/>
<Route path='*' component={NoRoute}/> <Route path='*' component={NoRoute}/>

8
src/services/State.jsx
View File

@@ -11,7 +11,13 @@ const reducer = (state, action) => {
...state, ...state,
user: action.user user: action.user
} }
default: return state; case 'logout':
return {
...state,
user: action.user
}
default:
return state;
} }
}; };

78
src/services/auth_service.js
View File

@@ -12,7 +12,7 @@ const generate_challenge = () => {
} }
} }
export const obtain_code = () => { export const redirect_to_code = () => {
const challenge = generate_challenge() const challenge = generate_challenge()
const params = { const params = {
response_type: 'code', response_type: 'code',
@@ -24,10 +24,10 @@ export const obtain_code = () => {
}; };
const url = `${oauth_url}/authorize/?${new URLSearchParams(params).toString()}`; const url = `${oauth_url}/authorize/?${new URLSearchParams(params).toString()}`;
return { window.localStorage.setItem('code_verifier', challenge.code);
redirect: url, window.location.href = url;
code_verifier: challenge.code
} return null;
} }
export const get_auth = async (code, code_verifier) => { export const get_auth = async (code, code_verifier) => {
@@ -43,3 +43,71 @@ export const get_auth = async (code, code_verifier) => {
return response.data return response.data
} }
export const auth = async (params) => {
// Primera fase, obtener código
// Si es que no se tiene se tiene que redirigir a la pagina de oauth que entregara el código
// a la pagina de redirect como parámetro GET, este trabajo lo hace redirect y se volverá a
// ejecutar este método cuando se entre a esa ruta
if (!window.localStorage.getItem('code_verifier')) {
redirect_to_code();
return {status: 'redirect_to_code'};
}
// Segunda fase, se llama a auth con los parámetros de la ruta.
// Estos parámetros puede contener un error, en ese caso se elimina el code_verifier del storage
// porque no sera util y fallo la request.
if (params.error) {
window.localStorage.clear()
return {status: 'code_error', value: params.error};
}
// Teniendo el código en los parámetros se intenta obtener el código de autorización.
const code = params.code;
const code_verifier = window.localStorage.getItem('code_verifier');
const response = await get_auth(code, code_verifier)
// Puede que la respuesta sea erronea por varias razones
if (response.error) {
return {status: response.error}
}
// Una vez se tiene la respuesta se almacena el refresh_token y el expires_in
// en localstorage para ser utilizado mas tarde para renovar el access_token
window.localStorage.clear()
const refresh = response.refresh_token;
const expires = new Date(new Date().getTime() + ((response.expires_in) * 1000))
window.localStorage.setItem('refresh_token', refresh);
window.localStorage.setItem('expires', expires);
// Finalmente se retorna el access_token para ser utilizado en el estado de la app
return {status: 'done', access_token: response.access_token};
}
export const logout = async (access_token) => {
// Para hacer logout de un usuario es necesario eliminar el refresh token de su localStorage
// y se llama a revocar los tokens en el servidor oauth
const revoke_access_params = {
token: access_token,
client_id: client_id,
token_type_hint: 'access_token'
}
const revoke_refresh_params = {
token: window.localStorage.getItem('refresh_token'),
client_id: client_id,
token_type_hint: 'refresh_token'
}
window.localStorage.clear();
const url = `${oauth_url}/revoke_token/`;
const response_access_revoke = await axios.post(url, new URLSearchParams(revoke_access_params));
const response_refresh_revoke = await axios.post(url, new URLSearchParams(revoke_refresh_params));
return {
access_revoke: response_access_revoke,
refresh_revoke: response_refresh_revoke,
}
}