rabbitmq-server/deps/rabbitmq_management/priv/www/js/oidc-oauth/helper.js


//import {UserManager} from "./scripts/oidc-client-ts/oidc-client-ts.js"
// import {axios} from "./scripts/axios/axios.min.js"


var mgr;

function initializeOAuthIfRequired() {
    rabbit_port = window.location.port ? ":" +  window.location.port : ""
    rabbit_base_uri = window.location.protocol + "//" + window.location.hostname + rabbit_port

    var request = new XMLHttpRequest();
    request.open('GET', rabbit_base_uri + '/api/auth', false);
    request.send(null);
    if (request.status === 200) {
        return initializeOAuth(JSON.parse(request.responseText));
    }else {
        return { "enable" : false };
    }

}


function initializeOAuth(authSettings) {
    oauth = {
      "logged_in": false,
      "enable" : authSettings.oauth_enable
    }

    if (!oauth.enable) return oauth;

    oidcSettings = {
        //userStore: new WebStorageStateStore({ store: window.localStorage }),
        authority: authSettings.oauth_provider_url,
        client_id: authSettings.oauth_client_id,
        client_secret: authSettings.oauth_client_secret,
        response_type: "code",
        scope: "openid profile rabbitmq.*",
        resource: authSettings.oauth_resource_id,
        redirect_uri: rabbit_base_uri + "/js/oidc-oauth/login-callback.html",
        post_logout_redirect_uri: rabbit_base_uri + "/js/oidc-oauth/logout-callback.html",

        response_type: "code",
        filterProtocolClaims: true,
        revokeAccessTokenOnSignout: true,
    };
    if (authSettings.oauth_metadata_url != "") oidcSettings.metadataUrl = authSettings.oauth_metadata_url

    if (authSettings.enable_uaa) {
      // This is required for old versions of UAA because the newer ones do expose
      // the end_session_endpoint on the oidc discovery endpoint, .a.k.a. metadataUrl
      oidcSettings.metadataSeed = {
        end_session_endpoint: authSettings.oauth_provider_url + '/logout.do'
      }
    }

    mgr = new oidc.UserManager(oidcSettings);
    oauth.readiness_url = mgr.settings.metadataUrl

    oidc.Log.setLogger(console);
    oidc.Log.setLevel(oidc.Log.INFO);

    return oauth;
}

function log() {
    message = ""
    Array.prototype.forEach.call(arguments, function(msg) {
        if (msg instanceof Error) {
            msg = "Error: " + msg.message;
        }
        else if (typeof msg !== "string") {
            msg = JSON.stringify(msg, null, 2);
        }
        message += msg
    });
    console.log(message)
}


function registerCallbacks() {
  mgr.events.addUserLoaded(function (user) {
      console.log("addUserLoaded=> ", user);
      mgr.getUser().then(function() {
          console.log("getUser loaded user after userLoaded event fired");
      });
  });
  mgr.events.addUserUnloaded(function (e) {
      console.log("addUserUnloaded=> ", e);
  });

  mgr.events.addUserSignedIn(function (e) {
      log("addUserSignedIn=> " , e);
  });
  mgr.events.addUserSignedOut(function (e) {
      log("addUserSignedOut=> ", e);
  });

}
function isLoggedIn() {
    return mgr.getUser().then(user => {
        if (!user) {
            return { "loggedIn": false };
        }
        return { "user": user, "loggedIn": !user.expired };
    });
}


function initiateLogin() {
    mgr.signinRedirect({ state: { foo: "bar" } /*, useReplaceToNavigate: true*/ }).then(function() {
        log("signinRedirect done");
    }).catch(function(err) {
        console.error(err);
        log(err);
    });
}
function redirectToHome() {
  location.href = "/"
}
function redirectToLogin() {
  location.href = "/"
}
function completeLogin() {
    mgr.signinRedirectCallback().then(user => redirectToHome()).catch(function(err) {
        console.error(err);
        log(err);
    });
}

function initiateLogout() {
    mgr.signoutRedirect();
}
function completeLogout() {
    mgr.signoutRedirectCallback().then(_ => redirectToLogin());
}
Replace singular with oidc-client-ts library Right now only login and logout flows are supported To be added refresh token And test all possible failure scenarios 2022-05-05 21:08:48 +08:00
			`//import {UserManager} from "./scripts/oidc-client-ts/oidc-client-ts.js"`
			`// import {axios} from "./scripts/axios/axios.min.js"`


			`var mgr;`

			`function initializeOAuthIfRequired() {`
			`rabbit_port = window.location.port ? ":" + window.location.port : ""`
			`rabbit_base_uri = window.location.protocol + "//" + window.location.hostname + rabbit_port`

			`var request = new XMLHttpRequest();`
			`request.open('GET', rabbit_base_uri + '/api/auth', false);`
			`request.send(null);`
			`if (request.status === 200) {`
			`return initializeOAuth(JSON.parse(request.responseText));`
			`}else {`
			`return { "enable" : false };`
			`}`

			`}`


			`function initializeOAuth(authSettings) {`
			`oauth = {`
			`"logged_in": false,`
			`"enable" : authSettings.oauth_enable`
			`}`

			`if (!oauth.enable) return oauth;`

			`oidcSettings = {`
			`//userStore: new WebStorageStateStore({ store: window.localStorage }),`
			`authority: authSettings.oauth_provider_url,`
			`client_id: authSettings.oauth_client_id,`
			`client_secret: authSettings.oauth_client_secret,`
			`response_type: "code",`
			`scope: "openid profile rabbitmq.*",`
			`resource: authSettings.oauth_resource_id,`
			`redirect_uri: rabbit_base_uri + "/js/oidc-oauth/login-callback.html",`
			`post_logout_redirect_uri: rabbit_base_uri + "/js/oidc-oauth/logout-callback.html",`

			`response_type: "code",`
			`filterProtocolClaims: true,`
			`revokeAccessTokenOnSignout: true,`
			`};`
			`if (authSettings.oauth_metadata_url != "") oidcSettings.metadataUrl = authSettings.oauth_metadata_url`

			`if (authSettings.enable_uaa) {`
			`// This is required for old versions of UAA because the newer ones do expose`
			`// the end_session_endpoint on the oidc discovery endpoint, .a.k.a. metadataUrl`
			`oidcSettings.metadataSeed = {`
			`end_session_endpoint: authSettings.oauth_provider_url + '/logout.do'`
			`}`
			`}`

			`mgr = new oidc.UserManager(oidcSettings);`
			`oauth.readiness_url = mgr.settings.metadataUrl`

			`oidc.Log.setLogger(console);`
			`oidc.Log.setLevel(oidc.Log.INFO);`

			`return oauth;`
			`}`

			`function log() {`
			`message = ""`
			`Array.prototype.forEach.call(arguments, function(msg) {`
			`if (msg instanceof Error) {`
			`msg = "Error: " + msg.message;`
			`}`
			`else if (typeof msg !== "string") {`
			`msg = JSON.stringify(msg, null, 2);`
			`}`
			`message += msg`
			`});`
			`console.log(message)`
			`}`




			`function registerCallbacks() {`
			`mgr.events.addUserLoaded(function (user) {`
			`console.log("addUserLoaded=> ", user);`
			`mgr.getUser().then(function() {`
			`console.log("getUser loaded user after userLoaded event fired");`
			`});`
			`});`
			`mgr.events.addUserUnloaded(function (e) {`
			`console.log("addUserUnloaded=> ", e);`
			`});`

			`mgr.events.addUserSignedIn(function (e) {`
			`log("addUserSignedIn=> " , e);`
			`});`
			`mgr.events.addUserSignedOut(function (e) {`
			`log("addUserSignedOut=> ", e);`
			`});`

			`}`
			`function isLoggedIn() {`
			`return mgr.getUser().then(user => {`
			`if (!user) {`
			`return { "loggedIn": false };`
			`}`
			`return { "user": user, "loggedIn": !user.expired };`
			`});`
			`}`


			`function initiateLogin() {`
			`mgr.signinRedirect({ state: { foo: "bar" } /, useReplaceToNavigate: true/ }).then(function() {`
			`log("signinRedirect done");`
			`}).catch(function(err) {`
			`console.error(err);`
			`log(err);`
			`});`
			`}`
			`function redirectToHome() {`
			`location.href = "/"`
			`}`
			`function redirectToLogin() {`
			`location.href = "/"`
			`}`
			`function completeLogin() {`
			`mgr.signinRedirectCallback().then(user => redirectToHome()).catch(function(err) {`
			`console.error(err);`
			`log(err);`
			`});`
			`}`

			`function initiateLogout() {`
			`mgr.signoutRedirect();`
			`}`
			`function completeLogout() {`
			`mgr.signoutRedirectCallback().then(_ => redirectToLogin());`
			`}`