tsai
/
squidex
mirror of https://github.com/Squidex/squidex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Headless CMS and Content Managment Hub
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
3715 Commits
10 Branches
150 Tags
122 MiB
 
 
 
 
 
Tree: 59429c2a77
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '59429c2a77'
${ noResults }
squidex/frontend/app/shared/services/auth.service.ts

193 lines
5.5 KiB
Raw Blame History

/*
* Squidex Headless CMS
*
* @license
* Copyright (c) Squidex UG (haftungsbeschränkt). All rights reserved.
*/
import { Injectable } from '@angular/core';
import { Observable, Observer, of, ReplaySubject, throwError, TimeoutError } from 'rxjs';
import { concat, delay, mergeMap, retryWhen, take, timeout } from 'rxjs/operators';
import {
Log,
User,
UserManager,
WebStorageStateStore
} from 'oidc-client';
import { ApiUrlConfig, Types } from '@app/framework';
export class Profile {
public get id(): string {
return this.user.profile['sub'];
}
public get email(): string {
return this.user.profile['email'];
}
public get displayName(): string {
return this.user.profile['urn:squidex:name'];
}
public get pictureUrl(): string {
return this.user.profile['urn:squidex:picture'];
}
public get isExpired(): boolean {
return this.user.expired || false;
}
public get authToken(): string {
return `${this.user!.token_type} ${this.user.access_token}`;
}
public get token(): string {
return `subject:${this.id}`;
}
constructor(
public readonly user: User
) {
}
}
@Injectable()
export class AuthService {
private readonly userManager: UserManager;
private readonly user$ = new ReplaySubject<Profile | null>(1);
private currentUser: Profile | null = null;
public get user(): Profile | null {
return this.currentUser;
}
public get userChanges(): Observable<Profile | null> {
return this.user$;
}
constructor(apiUrl: ApiUrlConfig) {
if (!apiUrl) {
return;
}
Log.logger = console;
this.userManager = new UserManager({
client_id: 'squidex-frontend',
scope: 'squidex-api openid profile email squidex-profile role permissions',
response_type: 'id_token token',
redirect_uri: apiUrl.buildUrl('login;'),
post_logout_redirect_uri: apiUrl.buildUrl('logout'),
silent_redirect_uri: apiUrl.buildUrl('client-callback-silent'),
popup_redirect_uri: apiUrl.buildUrl('client-callback-popup'),
authority: apiUrl.buildUrl('identity-server/'),
userStore: new WebStorageStateStore({ store: window.localStorage || window.sessionStorage }),
automaticSilentRenew: true
});
this.userManager.events.addUserLoaded(user => {
this.user$.next(new Profile(user));
});
this.userManager.events.addUserUnloaded(() => {
this.user$.next(null);
});
this.user$.subscribe(user => {
this.currentUser = user;
});
this.checkState(this.userManager.getUser());
}
public logoutRedirect() {
this.userManager.signoutRedirect();
}
public loginRedirect() {
this.userManager.signinRedirect();
}
public logoutRedirectComplete(): Observable<any> {
return Observable.create((observer: Observer<any>) => {
this.userManager.signoutRedirectCallback()
.then(x => {
observer.next(x);
observer.complete();
}, err => {
observer.error(err);
observer.complete();
});
});
}
public loginPopup(): Observable<Profile> {
return Observable.create((observer: Observer<Profile>) => {
this.userManager.signinPopup()
.then(x => {
observer.next(this.createProfile(x));
observer.complete();
}, err => {
observer.error(err);
observer.complete();
});
});
}
public loginRedirectComplete(): Observable<Profile> {
return Observable.create((observer: Observer<Profile>) => {
this.userManager.signinRedirectCallback()
.then(x => {
observer.next(this.createProfile(x));
observer.complete();
}, err => {
observer.error(err);
observer.complete();
});
});
}
public loginSilent(): Observable<Profile> {
const observable: Observable<Profile> =
Observable.create((observer: Observer<Profile | null>) => {
this.userManager.signinSilent()
.then(x => {
observer.next(this.createProfile(x));
observer.complete();
}, err => {
observer.error(err);
observer.complete();
});
});
return observable.pipe(
timeout(2000),
retryWhen(errors => errors.pipe(
mergeMap(e => Types.is(e, TimeoutError) ? of(e) : throwError(e)),
delay(500),
take(5),
concat(throwError(new Error('Retry limit exceeded.'))))));
}
private createProfile(user: User): Profile {
return new Profile(user);
}
private checkState(promise: Promise<User | null>) {
promise.then(user => {
if (user) {
this.user$.next(this.createProfile(user));
} else {
this.user$.next(null);
}
return true;
}, error => {
this.user$.next(null);
return false;
});
}
}