Implement loading user credentials from storage #9
Conversation
dmitrizagidulin
force-pushed
the
load-current-user
branch
from
e21bf49
to
b973517
Compare
dmitrizagidulin
force-pushed
the
load-current-user
branch
from
b973517
to
3f955a2
Compare
|
cc @dan-f for review. |
| describe('login()', () => { | ||
| it('should return the current webId if one is already present', () => { |
There was a problem hiding this comment.
I would have expected login() to log you in no matter what, especially if the provider uri does not match the provider for the current session.
| */ | ||
| constructor (options = {}) { | ||
| this.window = options.window || global.window | ||
| this.store = options.store || global.localStorage | ||
|
|
||
| this.debug = options.debug || console.error.bind(console) |
There was a problem hiding this comment.
Perhaps console.info or just console.log would be more appropriate. I think console.error is more for actual runtime errors.
There was a problem hiding this comment.
Sure, I'll change it to log.
| * @returns {ClientAuthOIDC} | ||
| */ | ||
| static from (options) { | ||
| let store = options.store || global.localStorage |
There was a problem hiding this comment.
window.localStorage is what you want. global throws a ReferenceError in the browser.
There was a problem hiding this comment.
global gets changed to window by Webpack.
There was a problem hiding this comment.
Cool! I didn't know that. I still think it'd be best not to write code that piggy-backs on a specific webpack feature.
There was a problem hiding this comment.
No prob, I'll remove global usage.
| * (typically loaded from storage) | ||
| * @param [options.redirectUri] {string} This app's callback redirect uri, | ||
| * defaults to the current window's uri. | ||
| * @param [options.debug] {Function} | ||
| */ | ||
| constructor (options = {}) { | ||
| this.window = options.window || global.window |
There was a problem hiding this comment.
I'm confused becauseglobal isn't defined in the browser, and calling global.window in the console throws a ReferencError. Did this work when you tested it in the browser?
| this.loadCurrentCredentials() | ||
| if (this.webId) { | ||
| return Promise.resolve(this.webId) | ||
| } |
There was a problem hiding this comment.
These same three lines exist right above...?
There was a problem hiding this comment.
I was debating on what the best way to do this was. The idea is - it first checks this.webId, and only then tries to loadCurrentCredentials() (which potentially initializes this.webId) and retries checking it. I suppose it doesn't hurt to drop the first check, and just to always try and load the current credentials from storage. I'll change it.
| // Lastly, kick off a Select Provider popup window workflow | ||
| return this.providerFromUI() | ||
| // If not available, kick off a Select Provider popup window workflow | ||
| this.selectProviderUI() |
There was a problem hiding this comment.
Shouldn't the return value of this be handed back to the caller?
There was a problem hiding this comment.
That was my initial thought too, when I thought there was a way that this function can actually return the provider uri. Currently, though, the selectProviderUI() function just opens the Select Provider popup window, and sets up the event listeners on it.
What would you like to see as a return value - the handle to the opened popup window?
| this.redirectUri = options.redirectUri | ||
| this.webId = options.webId | ||
| this.idToken = options.idToken | ||
| this.accessToken = options.accessToken | ||
| this.method = REDIRECT // only redirect is currently supported |
| @@ -337,6 +493,7 @@ class ClientAuthOIDC { | |||
|
|
|||
| /** | |||
| * Redirects the current window to the given uri. | |||
| * | |||
There was a problem hiding this comment.
The return false below will never get executed.
There was a problem hiding this comment.
Yeah, it looks strange, doesn't it :( It has to do with some horrible browser quirk - on some browsers, the window.location.href redirect only works if you return false from that function. (See https://stackoverflow.com/a/6109823/525338 for an example)
| .then(webId => { | ||
| credentials.webId = webId | ||
|
|
||
| this.saveCurrentCredentials(credentials) |
| .catch(error => { | ||
| this.clearAuthResponseFromUrl() | ||
| if (error.message === 'Cannot resolve signing key for ID Token.') { | ||
| console.log('ID Token found, but could not validate. Provider likely has changed their public keys. Please retry login.') | ||
| this.debug('ID Token found, but could not validate. Provider likely has changed their public keys. Please retry login.') |
There was a problem hiding this comment.
"retry login" is a noop currently if this.webId is stored.
|
@dan-f thank you, great feedback. |
Addresses issue #8.
Implements
ClientAuthOIDC.from(options)factory method, which loadspreviously selected provider uri and user credentials from storage.
(
.for()wasn't used as it was a reserved word).Usage: