2016-05-06 15:19:56 +02:00
|
|
|
/*
|
|
|
|
Copyright 2016 OpenMarket Ltd
|
2019-07-09 19:51:56 +02:00
|
|
|
Copyright 2019 The Matrix.org Foundation C.I.C.
|
2016-05-06 15:19:56 +02:00
|
|
|
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
you may not use this file except in compliance with the License.
|
|
|
|
You may obtain a copy of the License at
|
|
|
|
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
See the License for the specific language governing permissions and
|
|
|
|
limitations under the License.
|
|
|
|
*/
|
|
|
|
|
2019-07-22 19:54:04 +02:00
|
|
|
import url from 'url';
|
2017-12-17 04:13:27 +01:00
|
|
|
import SettingsStore from "./settings/SettingsStore";
|
2019-07-23 16:11:38 +02:00
|
|
|
import { Service, startTermsFlow, TermsNotSignedError } from './Terms';
|
2019-12-20 22:13:46 +01:00
|
|
|
import {MatrixClientPeg} from "./MatrixClientPeg";
|
2019-12-20 22:41:07 +01:00
|
|
|
import request from "browser-request";
|
2016-05-06 15:19:56 +02:00
|
|
|
|
2019-07-09 19:51:56 +02:00
|
|
|
import * as Matrix from 'matrix-js-sdk';
|
2019-12-12 22:37:32 +01:00
|
|
|
import SdkConfig from "./SdkConfig";
|
2020-04-22 00:01:10 +02:00
|
|
|
import {WidgetType} from "./widgets/WidgetType";
|
2019-07-09 19:51:56 +02:00
|
|
|
|
2019-03-13 11:16:44 +01:00
|
|
|
// The version of the integration manager API we're intending to work with
|
|
|
|
const imApiVersion = "1.1";
|
|
|
|
|
2020-04-22 08:34:08 +02:00
|
|
|
// TODO: Generify the name of this class and all components within - it's not just for Scalar.
|
|
|
|
|
2019-08-10 00:05:05 +02:00
|
|
|
export default class ScalarAuthClient {
|
|
|
|
constructor(apiUrl, uiUrl) {
|
|
|
|
this.apiUrl = apiUrl;
|
|
|
|
this.uiUrl = uiUrl;
|
2016-09-02 17:03:24 +02:00
|
|
|
this.scalarToken = null;
|
2019-07-23 16:11:38 +02:00
|
|
|
// `undefined` to allow `startTermsFlow` to fallback to a default
|
|
|
|
// callback if this is unset.
|
|
|
|
this.termsInteractionCallback = undefined;
|
2019-08-10 00:05:05 +02:00
|
|
|
|
|
|
|
// We try and store the token on a per-manager basis, but need a fallback
|
|
|
|
// for the default manager.
|
|
|
|
const configApiUrl = SdkConfig.get()['integrations_rest_url'];
|
|
|
|
const configUiUrl = SdkConfig.get()['integrations_ui_url'];
|
|
|
|
this.isDefaultManager = apiUrl === configApiUrl && configUiUrl === uiUrl;
|
2016-09-02 17:03:24 +02:00
|
|
|
}
|
|
|
|
|
2019-08-10 00:05:05 +02:00
|
|
|
_writeTokenToStore() {
|
|
|
|
window.localStorage.setItem("mx_scalar_token_at_" + this.apiUrl, this.scalarToken);
|
|
|
|
if (this.isDefaultManager) {
|
|
|
|
// We remove the old token from storage to migrate upwards. This is safe
|
|
|
|
// to do because even if the user switches to /app when this is on /develop
|
|
|
|
// they'll at worst register for a new token.
|
|
|
|
window.localStorage.removeItem("mx_scalar_token"); // no-op when not present
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
_readTokenFromStore() {
|
|
|
|
let token = window.localStorage.getItem("mx_scalar_token_at_" + this.apiUrl);
|
|
|
|
if (!token && this.isDefaultManager) {
|
|
|
|
token = window.localStorage.getItem("mx_scalar_token");
|
|
|
|
}
|
|
|
|
return token;
|
|
|
|
}
|
|
|
|
|
|
|
|
_readToken() {
|
|
|
|
if (this.scalarToken) return this.scalarToken;
|
|
|
|
return this._readTokenFromStore();
|
2019-06-17 23:29:19 +02:00
|
|
|
}
|
|
|
|
|
2019-07-23 16:11:38 +02:00
|
|
|
setTermsInteractionCallback(callback) {
|
|
|
|
this.termsInteractionCallback = callback;
|
|
|
|
}
|
|
|
|
|
2016-09-02 17:03:24 +02:00
|
|
|
connect() {
|
|
|
|
return this.getScalarToken().then((tok) => {
|
|
|
|
this.scalarToken = tok;
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
|
|
|
hasCredentials() {
|
|
|
|
return this.scalarToken != null; // undef or null
|
|
|
|
}
|
|
|
|
|
2019-07-11 17:00:24 +02:00
|
|
|
// Returns a promise that resolves to a scalar_token string
|
2016-09-02 17:03:24 +02:00
|
|
|
getScalarToken() {
|
2019-08-10 00:05:05 +02:00
|
|
|
const token = this._readToken();
|
2016-09-02 17:03:24 +02:00
|
|
|
|
2017-12-17 04:04:32 +01:00
|
|
|
if (!token) {
|
|
|
|
return this.registerForToken();
|
|
|
|
} else {
|
2019-07-15 15:05:39 +02:00
|
|
|
return this._checkToken(token).catch((e) => {
|
|
|
|
if (e instanceof TermsNotSignedError) {
|
|
|
|
// retrying won't help this
|
|
|
|
throw e;
|
|
|
|
}
|
2019-07-11 17:00:24 +02:00
|
|
|
return this.registerForToken();
|
|
|
|
});
|
2017-12-17 04:04:32 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2019-07-09 19:51:56 +02:00
|
|
|
_getAccountName(token) {
|
2019-08-10 00:05:05 +02:00
|
|
|
const url = this.apiUrl + "/account";
|
2017-12-17 04:04:32 +01:00
|
|
|
|
2018-10-02 02:57:27 +02:00
|
|
|
return new Promise(function(resolve, reject) {
|
|
|
|
request({
|
|
|
|
method: "GET",
|
|
|
|
uri: url,
|
2019-03-13 11:16:44 +01:00
|
|
|
qs: {scalar_token: token, v: imApiVersion},
|
2018-10-02 02:57:27 +02:00
|
|
|
json: true,
|
|
|
|
}, (err, response, body) => {
|
|
|
|
if (err) {
|
|
|
|
reject(err);
|
2019-07-09 19:51:56 +02:00
|
|
|
} else if (body && body.errcode === 'M_TERMS_NOT_SIGNED') {
|
|
|
|
reject(new TermsNotSignedError());
|
2018-10-02 02:57:27 +02:00
|
|
|
} else if (response.statusCode / 100 !== 2) {
|
2019-07-09 19:51:56 +02:00
|
|
|
reject(body);
|
2018-10-02 02:57:27 +02:00
|
|
|
} else if (!body || !body.user_id) {
|
|
|
|
reject(new Error("Missing user_id in response"));
|
|
|
|
} else {
|
|
|
|
resolve(body.user_id);
|
|
|
|
}
|
|
|
|
});
|
2018-10-12 04:54:53 +02:00
|
|
|
});
|
2017-12-17 04:04:32 +01:00
|
|
|
}
|
2016-09-02 17:03:24 +02:00
|
|
|
|
2019-07-09 19:51:56 +02:00
|
|
|
_checkToken(token) {
|
|
|
|
return this._getAccountName(token).then(userId => {
|
|
|
|
const me = MatrixClientPeg.get().getUserId();
|
|
|
|
if (userId !== me) {
|
|
|
|
throw new Error("Scalar token is owned by someone else: " + me);
|
|
|
|
}
|
|
|
|
return token;
|
|
|
|
}).catch((e) => {
|
|
|
|
if (e instanceof TermsNotSignedError) {
|
2019-08-10 00:05:05 +02:00
|
|
|
console.log("Integration manager requires new terms to be agreed to");
|
2019-07-22 19:54:04 +02:00
|
|
|
// The terms endpoints are new and so live on standard _matrix prefixes,
|
|
|
|
// but IM rest urls are currently configured with paths, so remove the
|
|
|
|
// path from the base URL before passing it to the js-sdk
|
2019-07-23 11:09:16 +02:00
|
|
|
|
|
|
|
// We continue to use the full URL for the calls done by
|
|
|
|
// matrix-react-sdk, but the standard terms API called
|
|
|
|
// by the js-sdk lives on the standard _matrix path. This means we
|
|
|
|
// don't support running IMs on a non-root path, but it's the only
|
|
|
|
// realistic way of transitioning to _matrix paths since configs in
|
|
|
|
// the wild contain bits of the API path.
|
|
|
|
|
|
|
|
// Once we've fully transitioned to _matrix URLs, we can give people
|
|
|
|
// a grace period to update their configs, then use the rest url as
|
|
|
|
// a regular base url.
|
2019-08-10 00:05:05 +02:00
|
|
|
const parsedImRestUrl = url.parse(this.apiUrl);
|
2019-07-22 19:54:04 +02:00
|
|
|
parsedImRestUrl.path = '';
|
|
|
|
parsedImRestUrl.pathname = '';
|
2019-07-23 16:11:38 +02:00
|
|
|
return startTermsFlow([new Service(
|
2019-07-10 13:08:26 +02:00
|
|
|
Matrix.SERVICE_TYPES.IM,
|
2019-07-22 19:54:04 +02:00
|
|
|
parsedImRestUrl.format(),
|
2019-07-09 19:51:56 +02:00
|
|
|
token,
|
2019-07-23 16:11:38 +02:00
|
|
|
)], this.termsInteractionCallback).then(() => {
|
2019-07-09 19:51:56 +02:00
|
|
|
return token;
|
|
|
|
});
|
2019-07-11 17:00:24 +02:00
|
|
|
} else {
|
|
|
|
throw e;
|
2019-07-09 19:51:56 +02:00
|
|
|
}
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2017-12-17 04:04:32 +01:00
|
|
|
registerForToken() {
|
|
|
|
// Get openid bearer token from the HS as the first part of our dance
|
2019-07-04 13:59:20 +02:00
|
|
|
return MatrixClientPeg.get().getOpenIdToken().then((tokenObject) => {
|
2016-09-02 17:03:24 +02:00
|
|
|
// Now we can send that to scalar and exchange it for a scalar token
|
2019-07-04 13:59:20 +02:00
|
|
|
return this.exchangeForScalarToken(tokenObject);
|
2019-08-10 00:05:05 +02:00
|
|
|
}).then((token) => {
|
2019-07-09 19:51:56 +02:00
|
|
|
// Validate it (this mostly checks to see if the IM needs us to agree to some terms)
|
2019-08-10 00:05:05 +02:00
|
|
|
return this._checkToken(token);
|
|
|
|
}).then((token) => {
|
|
|
|
this.scalarToken = token;
|
|
|
|
this._writeTokenToStore();
|
|
|
|
return token;
|
2016-09-02 17:03:24 +02:00
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2019-07-04 13:59:20 +02:00
|
|
|
exchangeForScalarToken(openidTokenObject) {
|
2019-08-10 00:05:05 +02:00
|
|
|
const scalarRestUrl = this.apiUrl;
|
2016-05-06 15:19:56 +02:00
|
|
|
|
2018-10-02 02:57:27 +02:00
|
|
|
return new Promise(function(resolve, reject) {
|
|
|
|
request({
|
|
|
|
method: 'POST',
|
2019-07-04 13:59:20 +02:00
|
|
|
uri: scalarRestUrl + '/register',
|
2019-03-13 11:16:44 +01:00
|
|
|
qs: {v: imApiVersion},
|
2019-07-04 13:59:20 +02:00
|
|
|
body: openidTokenObject,
|
2018-10-02 02:57:27 +02:00
|
|
|
json: true,
|
|
|
|
}, (err, response, body) => {
|
|
|
|
if (err) {
|
|
|
|
reject(err);
|
|
|
|
} else if (response.statusCode / 100 !== 2) {
|
|
|
|
reject({statusCode: response.statusCode});
|
|
|
|
} else if (!body || !body.scalar_token) {
|
|
|
|
reject(new Error("Missing scalar_token in response"));
|
|
|
|
} else {
|
|
|
|
resolve(body.scalar_token);
|
|
|
|
}
|
|
|
|
});
|
2018-10-12 04:54:53 +02:00
|
|
|
});
|
2016-05-06 15:19:56 +02:00
|
|
|
}
|
2016-09-02 17:03:24 +02:00
|
|
|
|
2017-12-05 22:41:44 +01:00
|
|
|
getScalarPageTitle(url) {
|
2019-08-10 00:05:05 +02:00
|
|
|
let scalarPageLookupUrl = this.apiUrl + '/widgets/title_lookup';
|
2017-12-05 22:41:44 +01:00
|
|
|
scalarPageLookupUrl = this.getStarterLink(scalarPageLookupUrl);
|
|
|
|
scalarPageLookupUrl += '&curl=' + encodeURIComponent(url);
|
|
|
|
|
2018-10-02 02:57:27 +02:00
|
|
|
return new Promise(function(resolve, reject) {
|
|
|
|
request({
|
|
|
|
method: 'GET',
|
|
|
|
uri: scalarPageLookupUrl,
|
|
|
|
json: true,
|
|
|
|
}, (err, response, body) => {
|
|
|
|
if (err) {
|
|
|
|
reject(err);
|
|
|
|
} else if (response.statusCode / 100 !== 2) {
|
|
|
|
reject({statusCode: response.statusCode});
|
|
|
|
} else if (!body) {
|
|
|
|
reject(new Error("Missing page title in response"));
|
|
|
|
} else {
|
|
|
|
let title = "";
|
|
|
|
if (body.page_title_cache_item && body.page_title_cache_item.cached_title) {
|
|
|
|
title = body.page_title_cache_item.cached_title;
|
|
|
|
}
|
|
|
|
resolve(title);
|
|
|
|
}
|
|
|
|
});
|
2018-10-12 04:54:53 +02:00
|
|
|
});
|
2017-12-05 22:41:44 +01:00
|
|
|
}
|
|
|
|
|
2018-02-26 00:00:46 +01:00
|
|
|
/**
|
|
|
|
* Mark all assets associated with the specified widget as "disabled" in the
|
|
|
|
* integration manager database.
|
|
|
|
* This can be useful to temporarily prevent purchased assets from being displayed.
|
2020-04-22 00:01:10 +02:00
|
|
|
* @param {WidgetType} widgetType The Widget Type to disable assets for
|
|
|
|
* @param {string} widgetId The widget ID to disable assets for
|
2018-02-26 00:00:46 +01:00
|
|
|
* @return {Promise} Resolves on completion
|
|
|
|
*/
|
2020-04-22 00:01:10 +02:00
|
|
|
disableWidgetAssets(widgetType: WidgetType, widgetId) {
|
2019-08-10 00:05:05 +02:00
|
|
|
let url = this.apiUrl + '/widgets/set_assets_state';
|
2018-02-24 01:10:28 +01:00
|
|
|
url = this.getStarterLink(url);
|
|
|
|
return new Promise((resolve, reject) => {
|
|
|
|
request({
|
2020-04-22 00:01:10 +02:00
|
|
|
method: 'GET', // XXX: Actions shouldn't be GET requests
|
2018-02-24 01:10:28 +01:00
|
|
|
uri: url,
|
|
|
|
json: true,
|
|
|
|
qs: {
|
2020-04-22 00:01:10 +02:00
|
|
|
'widget_type': widgetType.preferred,
|
2018-02-24 01:10:28 +01:00
|
|
|
'widget_id': widgetId,
|
|
|
|
'state': 'disable',
|
|
|
|
},
|
|
|
|
}, (err, response, body) => {
|
|
|
|
if (err) {
|
|
|
|
reject(err);
|
|
|
|
} else if (response.statusCode / 100 !== 2) {
|
|
|
|
reject({statusCode: response.statusCode});
|
|
|
|
} else if (!body) {
|
|
|
|
reject(new Error("Failed to set widget assets state"));
|
|
|
|
} else {
|
|
|
|
resolve();
|
|
|
|
}
|
|
|
|
});
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2018-02-09 12:44:27 +01:00
|
|
|
getScalarInterfaceUrlForRoom(room, screen, id) {
|
|
|
|
const roomId = room.roomId;
|
|
|
|
const roomName = room.name;
|
2019-08-10 00:05:05 +02:00
|
|
|
let url = this.uiUrl;
|
2016-09-02 17:03:24 +02:00
|
|
|
url += "?scalar_token=" + encodeURIComponent(this.scalarToken);
|
|
|
|
url += "&room_id=" + encodeURIComponent(roomId);
|
2018-02-09 12:44:27 +01:00
|
|
|
url += "&room_name=" + encodeURIComponent(roomName);
|
2017-12-17 04:13:27 +01:00
|
|
|
url += "&theme=" + encodeURIComponent(SettingsStore.getValue("theme"));
|
2017-08-18 19:40:00 +02:00
|
|
|
if (id) {
|
2017-08-22 10:59:27 +02:00
|
|
|
url += '&integ_id=' + encodeURIComponent(id);
|
2017-08-18 19:40:00 +02:00
|
|
|
}
|
2017-07-06 16:59:59 +02:00
|
|
|
if (screen) {
|
|
|
|
url += '&screen=' + encodeURIComponent(screen);
|
|
|
|
}
|
2016-09-02 17:03:24 +02:00
|
|
|
return url;
|
|
|
|
}
|
2016-09-02 17:36:43 +02:00
|
|
|
|
|
|
|
getStarterLink(starterLinkUrl) {
|
|
|
|
return starterLinkUrl + "?scalar_token=" + encodeURIComponent(this.scalarToken);
|
|
|
|
}
|
2016-05-06 15:19:56 +02:00
|
|
|
}
|