accounts-frontend/src/components/user/actions.js

import { routeActions } from 'react-router-redux';

import request from 'services/request';
import accounts from 'services/api/accounts';
import authentication from 'services/api/authentication';
import { setLocale } from 'components/i18n/actions';

export const UPDATE = 'USER_UPDATE';
/**
 * @param  {string|Object} payload jwt token or user object
 * @return {Object} action definition
 */
export function updateUser(payload) {
    return {
        type: UPDATE,
        payload
    };
}

export const CHANGE_LANG = 'USER_CHANGE_LANG';
export function changeLang(lang) {
    return (dispatch, getState) => dispatch(setLocale(lang))
        .then((lang) => {
            const {user: {isGuest, lang: oldLang}} = getState();

            if (!isGuest && oldLang !== lang) {
                accounts.changeLang(lang);
            }

            dispatch({
                type: CHANGE_LANG,
                payload: {
                    lang
                }
            });
        });
}

export const SET = 'USER_SET';
export function setUser(payload) {
    return {
        type: SET,
        payload
    };
}

export function logout() {
    return (dispatch, getState) => {
        authentication.logout();
        dispatch(setUser({
            lang: getState().user.lang,
            isGuest: true
        }));
        dispatch(routeActions.push('/login'));
    };
}

export function fetchUserData() {
    return (dispatch) =>
        accounts.current()
            .then((resp) => {
                dispatch(updateUser(resp));

                return dispatch(changeLang(resp.lang));
            });
}

export function changePassword({
    password = '',
    newPassword = '',
    newRePassword = '',
    logoutAll = true,
}) {
    return (dispatch) =>
        accounts.changePassword(
            {password, newPassword, newRePassword, logoutAll}
        )
        .then((resp) => {
            dispatch(updateUser({
                shouldChangePassword: false
            }));

            return resp;
        })
        ;
}

let middlewareAdded = false;
export function authenticate(token, refreshToken) { // TODO: this action, probably, belongs to components/auth
    return (dispatch, getState) => {
        if (!middlewareAdded) {
            request.addMiddleware(tokenCheckMiddleware(dispatch, getState));
            request.addMiddleware(tokenApplyMiddleware(dispatch, getState));
            middlewareAdded = true;
        }

        refreshToken = refreshToken || getState().user.refreshToken;
        dispatch(updateUser({
            token,
            refreshToken
        }));

        return dispatch(fetchUserData()).then((resp) => {
            dispatch(updateUser({
                isGuest: false
            }));
            return resp;
        });
    };
}

function requestAccessToken(refreshToken, dispatch) {
    let promise;
    if (refreshToken) {
        promise = authentication.refreshToken(refreshToken);
    } else {
        promise = Promise.reject();
    }

    return promise
        .then((resp) => dispatch(updateUser({
            token: resp.access_token
        })))
        .catch(() => dispatch(logout()));
}

/**
 * Ensures, that all user's requests have fresh access token
 *
 * @param  {Function} dispatch
 * @param  {Function} getState
 *
 * @return {Object} middleware
 */
function tokenCheckMiddleware(dispatch, getState) {
    return {
        before(data) {
            const {isGuest, refreshToken, token} = getState().user;
            const isRefreshTokenRequest = data.url.includes('refresh-token');

            if (isGuest || isRefreshTokenRequest || !token) {
                return data;
            }

            const SAFETY_FACTOR = 60; // ask new token earlier to overcome time dissynchronization problem
            const jwt = getJWTPayload(token);

            if (jwt.exp - SAFETY_FACTOR < Date.now() / 1000) {
                return requestAccessToken(refreshToken, dispatch).then(() => data);
            }

            return data;
        },

        catch(resp, restart) {
            /*
                {
                    "name": "Unauthorized",
                    "message": "You are requesting with an invalid credential.",
                    "code": 0,
                    "status": 401,
                    "type": "yii\\web\\UnauthorizedHttpException"
                }
                {
                    "name": "Unauthorized",
                    "message": "Token expired",
                    "code": 0,
                    "status": 401,
                    "type": "yii\\web\\UnauthorizedHttpException"
                }
            */
            if (resp && resp.status === 401) {
                const {refreshToken} = getState().user;
                if (resp.message === 'Token expired' && refreshToken) {
                    // request token and retry
                    return requestAccessToken(refreshToken, dispatch).then(restart);
                }

                dispatch(logout());
            }

            return Promise.reject(resp);
        }
    };
}

/**
 * Applies Bearer header for all requests
 *
 * @param  {Function} dispatch
 * @param  {Function} getState
 *
 * @return {Object} middleware
 */
function tokenApplyMiddleware(dispatch, getState) {
    return {
        before(data) {
            const {token} = getState().user;

            if (token) {
                data.options.headers.Authorization = `Bearer ${token}`;
            }

            return data;
        }
    };
}

function getJWTPayload(jwt) {
    const parts = (jwt || '').split('.');

    if (parts.length !== 3) {
        throw new Error('Invalid jwt token');
    }

    try {
        return JSON.parse(atob(parts[1]));
    } catch (err) {
        throw new Error('Can not decode jwt token');
    }
}
Do not expose logout action to route 2016-05-01 16:01:40 +05:30			`import { routeActions } from 'react-router-redux';`

Суппорт jwt на фронте 2016-02-26 11:55:47 +05:30			`import request from 'services/request';`
Decouple api/accounts into a separate module 2016-05-01 15:58:54 +05:30			`import accounts from 'services/api/accounts';`
#151: notify an api about user being logged out 2016-06-28 15:43:27 +05:30			`import authentication from 'services/api/authentication';`
#84: language switching on frontend 2016-05-20 01:11:43 +05:30			`import { setLocale } from 'components/i18n/actions';`
Суппорт jwt на фронте 2016-02-26 11:55:47 +05:30
В первом приближении заинтегрировался с беком 2016-02-13 20:58:47 +05:30			`export const UPDATE = 'USER_UPDATE';`
			`/**`
			`* @param {string\|Object} payload jwt token or user object`
			`* @return {Object} action definition`
			`*/`
			`export function updateUser(payload) {`
			`return {`
			`type: UPDATE,`
			`payload`
			`};`
			`}`

#84: language switching on frontend 2016-05-20 01:11:43 +05:30			`export const CHANGE_LANG = 'USER_CHANGE_LANG';`
			`export function changeLang(lang) {`
			`return (dispatch, getState) => dispatch(setLocale(lang))`
			`.then((lang) => {`
			`const {user: {isGuest, lang: oldLang}} = getState();`

			`if (!isGuest && oldLang !== lang) {`
			`accounts.changeLang(lang);`
			`}`

			`dispatch({`
			`type: CHANGE_LANG,`
			`payload: {`
			`lang`
			`}`
			`});`
			`});`
			`}`

В первом приближении заинтегрировался с беком 2016-02-13 20:58:47 +05:30			`export const SET = 'USER_SET';`
			`export function setUser(payload) {`
			`return {`
			`type: SET,`
			`payload`
			`};`
			`}`

			`export function logout() {`
#107: preserve user language after logout. Preserve user guest language after page refresh 2016-05-29 00:53:34 +05:30			`return (dispatch, getState) => {`
#151: notify an api about user being logged out 2016-06-28 15:43:27 +05:30			`authentication.logout();`
#107: preserve user language after logout. Preserve user guest language after page refresh 2016-05-29 00:53:34 +05:30			`dispatch(setUser({`
			`lang: getState().user.lang,`
			`isGuest: true`
			`}));`
Do not expose logout action to route 2016-05-01 16:01:40 +05:30			`dispatch(routeActions.push('/login'));`
			`};`
В первом приближении заинтегрировался с беком 2016-02-13 20:58:47 +05:30			`}`
Суппорт jwt на фронте 2016-02-26 11:55:47 +05:30
			`export function fetchUserData() {`
#126: middleware feature for request service. Created middlewares for token headers and token refreshing 2016-06-04 22:24:42 +05:30			`return (dispatch) =>`
Decouple api/accounts into a separate module 2016-05-01 15:58:54 +05:30			`accounts.current()`
#126: added refresh token support on frontend 2016-06-04 20:28:29 +05:30			`.then((resp) => {`
			`dispatch(updateUser(resp));`
#84: language switching on frontend 2016-05-20 01:11:43 +05:30
#126: added refresh token support on frontend 2016-06-04 20:28:29 +05:30			`return dispatch(changeLang(resp.lang));`
			`});`
Суппорт jwt на фронте 2016-02-26 11:55:47 +05:30			`}`
Маленьки рефакторинг. Добавил сохранение целевой страницы юзера в том случае, если он не авторизирован 2016-02-26 23:43:41 +05:30
Интеграция бека с формой смены пароля 2016-03-16 11:24:42 +05:30			`export function changePassword({`
			`password = '',`
			`newPassword = '',`
Добавлено поле для разлогивания всех авторизованных устройств при смене пароля (пока без имплементации) 2016-04-25 03:00:10 +05:30			`newRePassword = '',`
			`logoutAll = true,`
Интеграция бека с формой смены пароля 2016-03-16 11:24:42 +05:30			`}) {`
			`return (dispatch) =>`
Decouple api/accounts into a separate module 2016-05-01 15:58:54 +05:30			`accounts.changePassword(`
Добавлено поле для разлогивания всех авторизованных устройств при смене пароля (пока без имплементации) 2016-04-25 03:00:10 +05:30			`{password, newPassword, newRePassword, logoutAll}`
Интеграция бека с формой смены пароля 2016-03-16 11:24:42 +05:30			`)`
			`.then((resp) => {`
			`dispatch(updateUser({`
			`shouldChangePassword: false`
			`}));`

			`return resp;`
			`})`
			`;`
			`}`

#126: middleware feature for request service. Created middlewares for token headers and token refreshing 2016-06-04 22:24:42 +05:30			`let middlewareAdded = false;`
#126: added refresh token support on frontend 2016-06-04 20:28:29 +05:30			`export function authenticate(token, refreshToken) { // TODO: this action, probably, belongs to components/auth`
			`return (dispatch, getState) => {`
#126: middleware feature for request service. Created middlewares for token headers and token refreshing 2016-06-04 22:24:42 +05:30			`if (!middlewareAdded) {`
			`request.addMiddleware(tokenCheckMiddleware(dispatch, getState));`
			`request.addMiddleware(tokenApplyMiddleware(dispatch, getState));`
			`middlewareAdded = true;`
#126: added refresh token support on frontend 2016-06-04 20:28:29 +05:30			`}`
#126: slightly refactored login and jwt token logic 2016-06-04 19:16:39 +05:30
#126: middleware feature for request service. Created middlewares for token headers and token refreshing 2016-06-04 22:24:42 +05:30			`refreshToken = refreshToken \|\| getState().user.refreshToken;`
			`dispatch(updateUser({`
			`token,`
			`refreshToken`
			`}));`

#126: slightly refactored login and jwt token logic 2016-06-04 19:16:39 +05:30			`return dispatch(fetchUserData()).then((resp) => {`
			`dispatch(updateUser({`
#126: middleware feature for request service. Created middlewares for token headers and token refreshing 2016-06-04 22:24:42 +05:30			`isGuest: false`
#126: slightly refactored login and jwt token logic 2016-06-04 19:16:39 +05:30			`}));`
			`return resp;`
			`});`
Маленьки рефакторинг. Добавил сохранение целевой страницы юзера в том случае, если он не авторизирован 2016-02-26 23:43:41 +05:30			`};`
			`}`
#126: added refresh token support on frontend 2016-06-04 20:28:29 +05:30
#126: middleware feature for request service. Created middlewares for token headers and token refreshing 2016-06-04 22:24:42 +05:30			`function requestAccessToken(refreshToken, dispatch) {`
			`let promise;`
			`if (refreshToken) {`
			`promise = authentication.refreshToken(refreshToken);`
			`} else {`
			`promise = Promise.reject();`
			`}`

			`return promise`
			`.then((resp) => dispatch(updateUser({`
			`token: resp.access_token`
			`})))`
			`.catch(() => dispatch(logout()));`
			`}`

			`/**`
			`* Ensures, that all user's requests have fresh access token`
			`*`
			`* @param {Function} dispatch`
			`* @param {Function} getState`
			`*`
			`* @return {Object} middleware`
			`*/`
			`function tokenCheckMiddleware(dispatch, getState) {`
			`return {`
			`before(data) {`
			`const {isGuest, refreshToken, token} = getState().user;`
			`const isRefreshTokenRequest = data.url.includes('refresh-token');`

			`if (isGuest \|\| isRefreshTokenRequest \|\| !token) {`
			`return data;`
			`}`

			`const SAFETY_FACTOR = 60; // ask new token earlier to overcome time dissynchronization problem`
			`const jwt = getJWTPayload(token);`

			`if (jwt.exp - SAFETY_FACTOR < Date.now() / 1000) {`
			`return requestAccessToken(refreshToken, dispatch).then(() => data);`
			`}`

			`return data;`
			`},`

			`catch(resp, restart) {`
			`/*`
			`{`
			`"name": "Unauthorized",`
			`"message": "You are requesting with an invalid credential.",`
			`"code": 0,`
			`"status": 401,`
			`"type": "yii\\web\\UnauthorizedHttpException"`
			`}`
			`{`
			`"name": "Unauthorized",`
			`"message": "Token expired",`
			`"code": 0,`
			`"status": 401,`
			`"type": "yii\\web\\UnauthorizedHttpException"`
			`}`
			`*/`
			`if (resp && resp.status === 401) {`
			`const {refreshToken} = getState().user;`
			`if (resp.message === 'Token expired' && refreshToken) {`
			`// request token and retry`
			`return requestAccessToken(refreshToken, dispatch).then(restart);`
			`}`

			`dispatch(logout());`
			`}`

			`return Promise.reject(resp);`
			`}`
			`};`
			`}`

			`/**`
			`* Applies Bearer header for all requests`
			`*`
			`* @param {Function} dispatch`
			`* @param {Function} getState`
			`*`
			`* @return {Object} middleware`
			`*/`
			`function tokenApplyMiddleware(dispatch, getState) {`
			`return {`
			`before(data) {`
			`const {token} = getState().user;`

			`if (token) {`
			data.options.headers.Authorization = `Bearer ${token}`;
			`}`

			`return data;`
			`}`
			`};`
			`}`

#126: added refresh token support on frontend 2016-06-04 20:28:29 +05:30			`function getJWTPayload(jwt) {`
			`const parts = (jwt \|\| '').split('.');`

			`if (parts.length !== 3) {`
			`throw new Error('Invalid jwt token');`
			`}`

			`try {`
			`return JSON.parse(atob(parts[1]));`
			`} catch (err) {`
			`throw new Error('Can not decode jwt token');`
			`}`
			`}`