jeans/frontend
jeans/frontend
1
0
Fork 0
mirror of https://github.com/home-assistant/frontend.git synced 2025-07-12 20:06:33 +00:00
Code Issues Packages Projects Releases Wiki Activity

Use IndieAuth for client ID (#1427)

Browse Source 
* Use IndieAuth for client ID

* Lint
This commit is contained in:
Paulus Schoutsen 2018-07-09 18:24:49 +02:00 committed by GitHub
parent 13819937a7
commit 2e4ddebcda
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
6 changed files with 30 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
src/auth/ha-auth-flow.js
View File

@ -35,7 +35,6 @@ class HaAuthFlow extends EventsMixin(PolymerElement) {
return { return {
authProvider: Object, authProvider: Object,
clientId: String, clientId: String,
clientSecret: String,
redirectUri: String, redirectUri: String,
oauth2State: String, oauth2State: String,
_state: { _state: {
@ -54,10 +53,8 @@ class HaAuthFlow extends EventsMixin(PolymerElement) {
fetch('/auth/login_flow', { fetch('/auth/login_flow', {
method: 'POST', method: 'POST',
headers: {
Authorization: `Basic ${btoa(`${this.clientId}:${this.clientSecret}`)}`
},
body: JSON.stringify({ body: JSON.stringify({
client_id: this.clientId,
handler: [this.authProvider.type, this.authProvider.id], handler: [this.authProvider.type, this.authProvider.id],
redirect_uri: this.redirectUri, redirect_uri: this.redirectUri,
}) })
@ -89,12 +86,13 @@ class HaAuthFlow extends EventsMixin(PolymerElement) {
} }
this._state = 'loading'; this._state = 'loading';
const postData = Object.assign({}, this._stepData, {
client_id: this.clientId,
});
fetch(`/auth/login_flow/${this._step.flow_id}`, { fetch(`/auth/login_flow/${this._step.flow_id}`, {
method: 'POST', method: 'POST',
headers: { body: JSON.stringify(postData)
Authorization: `Basic ${btoa(`${this.clientId}:${this.clientSecret}`)}`
},
body: JSON.stringify(this._stepData)
}).then((response) => { }).then((response) => {
if (!response.ok) throw new Error(); if (!response.ok) throw new Error();
return response.json(); return response.json();

7
src/auth/ha-pick-auth-provider.js
View File

@ -45,17 +45,12 @@ class HaPickAuthProvider extends EventsMixin(PolymerElement) {
}, },
authProviders: Array, authProviders: Array,
clientId: String, clientId: String,
clientSecret: String,
}; };
} }
connectedCallback() { connectedCallback() {
super.connectedCallback(); super.connectedCallback();
fetch('/auth/providers', { fetch('/auth/providers').then((response) => {
headers: {
Authorization: `Basic ${btoa(`${this.clientId}:${this.clientSecret}`)}`
}
}).then((response) => {
if (!response.ok) throw new Error(); if (!response.ok) throw new Error();
return response.json(); return response.json();
}).then((authProviders) => { }).then((authProviders) => {

4
src/common/auth/fetch_token.js
View File

@ -1,12 +1,10 @@
export default function fetchToken(clientId, code) { export default function fetchToken(clientId, code) {
const data = new FormData(); const data = new FormData();
data.append('client_id', clientId);
data.append('grant_type', 'authorization_code'); data.append('grant_type', 'authorization_code');
data.append('code', code); data.append('code', code);
return fetch('/auth/token', { return fetch('/auth/token', {
method: 'POST', method: 'POST',
headers: {
authorization: `Basic ${btoa(clientId)}`
},
body: data, body: data,
}).then((resp) => { }).then((resp) => {
if (!resp.ok) throw new Error('Unable to fetch tokens'); if (!resp.ok) throw new Error('Unable to fetch tokens');

4
src/common/auth/refresh_token.js
View File

@ -1,12 +1,10 @@
export default function refreshAccessToken(clientId, refreshToken) { export default function refreshAccessToken(clientId, refreshToken) {
const data = new FormData(); const data = new FormData();
data.append('client_id', clientId);
data.append('grant_type', 'refresh_token'); data.append('grant_type', 'refresh_token');
data.append('refresh_token', refreshToken); data.append('refresh_token', refreshToken);
return fetch('/auth/token', { return fetch('/auth/token', {
method: 'POST', method: 'POST',
headers: {
authorization: `Basic ${btoa(clientId)}`
},
body: data, body: data,
}).then((resp) => { }).then((resp) => {
if (!resp.ok) throw new Error('Unable to fetch tokens'); if (!resp.ok) throw new Error('Unable to fetch tokens');

19
src/entrypoints/authorize.js
View File

@ -19,11 +19,22 @@ class HaAuthorize extends PolymerElement {
<div class="layout vertical center fit"> <div class="layout vertical center fit">
<img src="/static/icons/favicon-192x192.png" height="192"> <img src="/static/icons/favicon-192x192.png" height="192">
<p>Logging in to <b>[[clientId]]</b>.</p>
<template is="dom-if" if="[[_authProvider]]"> <template is="dom-if" if="[[_authProvider]]">
<ha-auth-flow client-id="[[clientId]]" client-secret="[[clientSecret]]" redirect-uri="[[redirectUri]]" oauth2-state="[[oauth2State]]" auth-provider="[[_authProvider]]" on-reset="_handleReset"> <ha-auth-flow
</ha-auth-flow></template> client-id="[[clientId]]"
redirect-uri="[[redirectUri]]"
oauth2-state="[[oauth2State]]"
auth-provider="[[_authProvider]]"
on-reset="_handleReset"
></ha-auth-flow>
</template>
<template is="dom-if" if="[[!_authProvider]]"> <template is="dom-if" if="[[!_authProvider]]">
<ha-pick-auth-provider client-id="[[clientId]]" client-secret="[[clientSecret]]" on-pick="_handleAuthProviderPick"></ha-pick-auth-provider> <ha-pick-auth-provider
client-id="[[clientId]]"
on-pick="_handleAuthProviderPick"
></ha-pick-auth-provider>
</template> </template>
</div> </div>
`; `;
@ -36,7 +47,6 @@ class HaAuthorize extends PolymerElement {
value: null, value: null,
}, },
clientId: String, clientId: String,
clientSecret: String,
redirectUri: String, redirectUri: String,
oauth2State: String, oauth2State: String,
}; };
@ -53,7 +63,6 @@ class HaAuthorize extends PolymerElement {
} }
const props = {}; const props = {};
if (query.client_id) props.clientId = query.client_id; if (query.client_id) props.clientId = query.client_id;
if (query.client_secret) props.clientSecret = query.client_secret;
if (query.redirect_uri) props.redirectUri = query.redirect_uri; if (query.redirect_uri) props.redirectUri = query.redirect_uri;
if (query.state) props.oauth2State = query.state; if (query.state) props.oauth2State = query.state;
this.setProperties(props); this.setProperties(props);

10
src/entrypoints/core.js
View File

@ -28,19 +28,23 @@ const init = window.createHassConnection = function (password, accessToken) {
}); });
}; };
function clientId() {
return `${location.protocol}//${location.host}/`;
}
function redirectLogin() { function redirectLogin() {
document.location = `${__PUBLIC_PATH__}authorize.html?response_type=code&client_id=${window.clientId}&redirect_uri=/`; document.location = `${__PUBLIC_PATH__}authorize.html?response_type=code&client_id=${encodeURIComponent(clientId())}&redirect_uri=${encodeURIComponent(location.toString())}`;
} }
window.refreshToken = () => window.refreshToken = () =>
refreshToken_(window.clientId, window.tokens.refresh_token).then((accessTokenResp) => { refreshToken_(clientId(), window.tokens.refresh_token).then((accessTokenResp) => {
window.tokens.access_token = accessTokenResp.access_token; window.tokens.access_token = accessTokenResp.access_token;
localStorage.tokens = JSON.stringify(window.tokens); localStorage.tokens = JSON.stringify(window.tokens);
return accessTokenResp.access_token; return accessTokenResp.access_token;
}, () => redirectLogin()); }, () => redirectLogin());
function resolveCode(code) { function resolveCode(code) {
fetchToken(window.clientId, code).then((tokens) => { fetchToken(clientId(), code).then((tokens) => {
localStorage.tokens = JSON.stringify(tokens); localStorage.tokens = JSON.stringify(tokens);
// Refresh the page and have tokens in place. // Refresh the page and have tokens in place.
document.location = location.pathname; document.location = location.pathname;