accounts-frontend/src/services/authFlow/AuthFlow.js

import { routeActions } from 'react-router-redux';

import RegisterState from './RegisterState';
import LoginState from './LoginState';
import OAuthState from './OAuthState';
import ForgotPasswordState from './ForgotPasswordState';
import RecoverPasswordState from './RecoverPasswordState';
import ActivationState from './ActivationState';
import CompleteState from './CompleteState';
import ResendActivationState from './ResendActivationState';

export default class AuthFlow {
    constructor(actions) {
        if (typeof actions !== 'object') {
            throw new Error('AuthFlow requires an actions object');
        }

        this.actions = actions;

        if (Object.freeze) {
            Object.freeze(this.actions);
        }
    }

    setStore(store) {
        /**
         * @param {string} route
         * @param {object} options
         * @param {object} options.replace
         */
        this.navigate = (route, options = {}) => {
            if (this.getRequest().path !== route) {
                this.currentRequest = {
                    path: route
                };

                if (this.replace) {
                    this.replace(route);
                }
                store.dispatch(routeActions[options.replace ? 'replace' : 'push'](route));
            }

            this.replace = null;
        };

        this.getState = store.getState.bind(store);
        this.dispatch = store.dispatch.bind(store);
    }

    resolve(payload = {}) {
        this.state.resolve(this, payload);
    }

    reject(payload = {}) {
        this.state.reject(this, payload);
    }

    goBack() {
        this.state.goBack(this);
    }

    run(actionId, payload) {
        if (actionId === 'redirect') {
            location.href = payload;
            return;
        }

        if (!this.actions[actionId]) {
            throw new Error(`Action ${actionId} does not exists`);
        }

        return this.dispatch(this.actions[actionId](payload));
    }

    setState(state) {
        if (!state) {
            throw new Error('State is required');
        }

        this.state && this.state.leave(this);
        this.prevState = this.state;
        this.state = state;
        const resp = this.state.enter(this);

        if (resp && resp.then) {
            // this is a state with an async enter phase
            // block route components from mounting, till promise will be resolved
            if (this.onReady) {
                const callback = this.onReady;
                this.onReady = () => {};
                return resp.then(callback);
            }

            return resp;
        }
    }

    /**
     * @return {object} - current request object
     */
    getRequest() {
        return {
            path: '',
            query: {},
            params: {},
            ...this.currentRequest
        };
    }

    /**
     * This should be called from onEnter prop of react-router Route component
     *
     * @param {object} request
     * @param {string} request.path
     * @param {object} request.params
     * @param {object} request.query
     * @param {function} replace
     * @param {function} [callback = function() {}] - an optional callback function to be called, when state will be stabilized
     *                                                (state's enter function's promise resolved)
     */
    handleRequest(request, replace, callback = function() {}) {
        const {path, params = {}, query = {}} = request;
        this.replace = replace;
        this.onReady = callback;

        if (!path) {
            throw new Error('The request.path is required');
        }

        if (this.getRequest().path === path) {
            // we are already handling this path
            this.onReady();
            return;
        }

        this.currentRequest = request;

        if (this.restoreOAuthState()) {
            return;
        }

        switch (path) {
            case '/register':
                this.setState(new RegisterState());
                break;

            case '/forgot-password':
                this.setState(new ForgotPasswordState());
                break;

            case '/resend-activation':
                this.setState(new ResendActivationState());
                break;

            case '/':
            case '/login':
            case '/password':
            case '/accept-rules':
            case '/oauth/permissions':
            case '/oauth/finish':
            case '/oauth/choose-account':
                this.setState(new LoginState());
                break;

            default:
                switch (path.replace(/(.)\/.+/, '$1')) { // use only first part of an url
                    case '/oauth2':
                        this.setState(new OAuthState());
                        break;
                    case '/activation':
                        this.setState(new ActivationState());
                        break;
                    case '/recover-password':
                        this.setState(new RecoverPasswordState());
                        break;

                    default:
                        console.log('Unsupported request', {path, query, params});
                        replace('/404');
                        break;
                }
        }

        this.onReady();
    }

    /**
     * Tries to restore last oauth request, if it was stored in localStorage
     * in last 2 hours
     * @api private
     *
     * @return {bool} - whether oauth state is being restored
     */
    restoreOAuthState() {
        if (/^\/(register|oauth2)/.test(this.getRequest().path)) {
            // allow register or the new oauth requests
            return;
        }

        try {
            const data = JSON.parse(localStorage.getItem('oauthData'));
            const expirationTime = 2 * 60 * 60 * 1000; // 2h

            if (Date.now() - data.timestamp < expirationTime) {
                this.run('oAuthValidate', data.payload)
                    .then(() => this.setState(new CompleteState()))
                    .then(() => this.onReady());

                return true;
            }
        } catch (err) {/* bad luck :( */}

        return false;
    }
}
Auth flow. The next 2016-03-02 02:06:14 +05:30			`import { routeActions } from 'react-router-redux';`

			`import RegisterState from './RegisterState';`
			`import LoginState from './LoginState';`
			`import OAuthState from './OAuthState';`
			`import ForgotPasswordState from './ForgotPasswordState';`
#26: forgot/restore password frontend logic 2016-05-15 02:23:58 +05:30			`import RecoverPasswordState from './RecoverPasswordState';`
#125: make activation page available for all guests and innactive users 2016-06-05 17:36:14 +05:30			`import ActivationState from './ActivationState';`
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30			`import CompleteState from './CompleteState';`
#97: frontend for repeat activation functionality 2016-05-23 00:28:43 +05:30			`import ResendActivationState from './ResendActivationState';`
Auth flow. The next 2016-03-02 02:06:14 +05:30
			`export default class AuthFlow {`
Базовые тесты для authFlow. Осталось покрыть navigate и смену стейтов 2016-04-12 09:19:58 +05:30			`constructor(actions) {`
			`if (typeof actions !== 'object') {`
			`throw new Error('AuthFlow requires an actions object');`
			`}`

			`this.actions = actions;`

			`if (Object.freeze) {`
			`Object.freeze(this.actions);`
			`}`
			`}`

Auth flow. The next 2016-03-02 02:06:14 +05:30			`setStore(store) {`
#195: use replace state, when navigating to permissions from oauth entry point 2016-08-27 20:06:33 +05:30			`/**`
			`* @param {string} route`
			`* @param {object} options`
			`* @param {object} options.replace`
			`*/`
			`this.navigate = (route, options = {}) => {`
Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`if (this.getRequest().path !== route) {`
			`this.currentRequest = {`
			`path: route`
			`};`
Improve AuthFlow request handling logic 2016-06-15 11:31:41 +05:30
Auth flow. The next 2016-03-02 02:06:14 +05:30			`if (this.replace) {`
			`this.replace(route);`
			`}`
#195: use replace state, when navigating to permissions from oauth entry point 2016-08-27 20:06:33 +05:30			`store.dispatch(routeActions[options.replace ? 'replace' : 'push'](route));`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`}`

			`this.replace = null;`
			`};`

			`this.getState = store.getState.bind(store);`
			`this.dispatch = store.dispatch.bind(store);`
			`}`

			`resolve(payload = {}) {`
			`this.state.resolve(this, payload);`
			`}`

			`reject(payload = {}) {`
			`this.state.reject(this, payload);`
			`}`

			`goBack() {`
			`this.state.goBack(this);`
			`}`

			`run(actionId, payload) {`
#122: fix error during redirect 2016-05-30 09:53:27 +05:30			`if (actionId === 'redirect') {`
			`location.href = payload;`
			`return;`
			`}`

Базовые тесты для authFlow. Осталось покрыть navigate и смену стейтов 2016-04-12 09:19:58 +05:30			`if (!this.actions[actionId]) {`
Auth flow. The next 2016-03-02 02:06:14 +05:30			throw new Error(`Action ${actionId} does not exists`);
			`}`

Базовые тесты для authFlow. Осталось покрыть navigate и смену стейтов 2016-04-12 09:19:58 +05:30			`return this.dispatch(this.actions[actionId](payload));`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`}`

			`setState(state) {`
			`if (!state) {`
			`throw new Error('State is required');`
			`}`

			`this.state && this.state.leave(this);`
#125: make activation page available for all guests and innactive users 2016-06-05 17:36:14 +05:30			`this.prevState = this.state;`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`this.state = state;`
#129: do not render app, if we are on oauth request, that resolves to redirect 2016-06-02 23:16:49 +05:30			`const resp = this.state.enter(this);`

			`if (resp && resp.then) {`
			`// this is a state with an async enter phase`
			`// block route components from mounting, till promise will be resolved`
Tests for AuthFlow.handleRequest `callback` arg 2016-06-04 00:40:47 +05:30			`if (this.onReady) {`
			`const callback = this.onReady;`
			`this.onReady = () => {};`
			`return resp.then(callback);`
			`}`
Fix eslint errors. Fixed bug in .eslintrc.json 2016-06-04 14:47:06 +05:30
			`return resp;`
#129: do not render app, if we are on oauth request, that resolves to redirect 2016-06-02 23:16:49 +05:30			`}`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`}`

Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`/**`
			`* @return {object} - current request object`
			`*/`
			`getRequest() {`
#184: support for /oauth2/v1/[clientId] requests 2016-08-07 20:19:26 +05:30			`return {`
			`path: '',`
			`query: {},`
			`params: {},`
			`...this.currentRequest`
			`};`
Decouple auth states from routing redux state 2016-06-15 11:32:12 +05:30			`}`

Tests for AuthFlow.handleRequest `callback` arg 2016-06-04 00:40:47 +05:30			`/**`
			`* This should be called from onEnter prop of react-router Route component`
			`*`
Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`* @param {object} request`
			`* @param {string} request.path`
			`* @param {object} request.params`
			`* @param {object} request.query`
Tests for AuthFlow.handleRequest `callback` arg 2016-06-04 00:40:47 +05:30			`* @param {function} replace`
			`* @param {function} [callback = function() {}] - an optional callback function to be called, when state will be stabilized`
			`* (state's enter function's promise resolved)`
			`*/`
Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`handleRequest(request, replace, callback = function() {}) {`
			`const {path, params = {}, query = {}} = request;`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`this.replace = replace;`
#129: do not render app, if we are on oauth request, that resolves to redirect 2016-06-02 23:16:49 +05:30			`this.onReady = callback;`
Auth flow. The next 2016-03-02 02:06:14 +05:30
Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`if (!path) {`
			`throw new Error('The request.path is required');`
			`}`

			`if (this.getRequest().path === path) {`
Improve AuthFlow request handling logic 2016-06-15 11:31:41 +05:30			`// we are already handling this path`
			`this.onReady();`
			`return;`
			`}`

Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`this.currentRequest = request;`
Improve AuthFlow request handling logic 2016-06-15 11:31:41 +05:30
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30			`if (this.restoreOAuthState()) {`
			`return;`
			`}`

#21: support /oauth2/v1 on frontend 2016-07-28 01:15:50 +05:30			`switch (path) {`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`case '/register':`
			`this.setState(new RegisterState());`
			`break;`

			`case '/forgot-password':`
			`this.setState(new ForgotPasswordState());`
			`break;`

#97: frontend for repeat activation functionality 2016-05-23 00:28:43 +05:30			`case '/resend-activation':`
			`this.setState(new ResendActivationState());`
			`break;`

Пофиксил баг, когда гость мог попасть на страницу профиля при клике по лого сайта 2016-03-13 14:32:24 +05:30			`case '/':`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`case '/login':`
			`case '/password':`
#104: add AcceptRules auth panel 2016-08-03 00:29:29 +05:30			`case '/accept-rules':`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`case '/oauth/permissions':`
Заимплементил finish state 2016-03-15 12:06:13 +05:30			`case '/oauth/finish':`
#48: account switcher for oauth 2016-11-13 20:17:56 +05:30			`case '/oauth/choose-account':`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`this.setState(new LoginState());`
			`break;`

			`default:`
Fix permissions page 2016-05-28 03:54:22 +05:30			`switch (path.replace(/(.)\/.+/, '$1')) { // use only first part of an url`
#184: support for /oauth2/v1/[clientId] requests 2016-08-07 20:19:26 +05:30			`case '/oauth2':`
			`this.setState(new OAuthState());`
			`break;`
#125: make activation page available for all guests and innactive users 2016-06-05 17:36:14 +05:30			`case '/activation':`
			`this.setState(new ActivationState());`
			`break;`
Fix permissions page 2016-05-28 03:54:22 +05:30			`case '/recover-password':`
			`this.setState(new RecoverPasswordState());`
			`break;`

			`default:`
Show 404 for unknown authFlow requests. Pass {path, query, params} as first argument to authFlow#handleRequest 2016-08-07 19:24:59 +05:30			`console.log('Unsupported request', {path, query, params});`
			`replace('/404');`
			`break;`
Fix permissions page 2016-05-28 03:54:22 +05:30			`}`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`}`
#129: do not render app, if we are on oauth request, that resolves to redirect 2016-06-02 23:16:49 +05:30
			`this.onReady();`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`}`
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30
			`/**`
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30			`* Tries to restore last oauth request, if it was stored in localStorage`
			`* in last 2 hours`
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30			`* @api private`
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30			`*`
			`* @return {bool} - whether oauth state is being restored`
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30			`*/`
			`restoreOAuthState() {`
#48: add support for prompt and login_hint oauth params 2016-11-19 20:11:15 +05:30			`if (/^\/(register\|oauth2)/.test(this.getRequest().path)) {`
			`// allow register or the new oauth requests`
Fix register route blocked by oauth state restoration feature 2016-10-25 11:31:51 +05:30			`return;`
			`}`
Временный фикс для процесса авторизации (Свят, это нужно будет подлатать) 2016-10-25 05:10:05 +05:30
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30			`try {`
			`const data = JSON.parse(localStorage.getItem('oauthData'));`
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30			`const expirationTime = 2 * 60 * 60 * 1000; // 2h`

			`if (Date.now() - data.timestamp < expirationTime) {`
			`this.run('oAuthValidate', data.payload)`
Fix bug with infinite loader, when page refreshed on /login with oauth state restoration active 2016-10-25 12:02:50 +05:30			`.then(() => this.setState(new CompleteState()))`
			`.then(() => this.onReady());`
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30			`return true;`
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30			`}`
			`} catch (err) {/* bad luck :( */}`
Improve oauth state restore logic 2016-08-27 15:49:02 +05:30
			`return false;`
#188: persist oauth data if if user tries to register during oauth 2016-08-12 00:50:14 +05:30			`}`
Auth flow. The next 2016-03-02 02:06:14 +05:30			`}`