Merge pull request #89 from RoundingWell/feature/ch21061-access-token

Switch to auth0 access token
RoundingWell · Sep 30, 2019 · b542116 · b542116
2 parents 8f9952c + d0e6117
commit b542116
Show file tree

Hide file tree

Showing 15 changed files with 178 additions and 201 deletions.
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
@@ -108,13 +108,13 @@
     "yaml-loader": "^0.5.0"
   },
   "dependencies": {
+    "@auth0/auth0-spa-js": "^1.2.4",
     "@fortawesome/fontawesome-svg-core": "^1.2.22",
     "@fortawesome/pro-light-svg-icons": "^5.10.2",
     "@fortawesome/pro-regular-svg-icons": "^5.10.2",
     "@fortawesome/pro-solid-svg-icons": "^5.10.2",
     "@roundingwellos/libphonenumber-js": "^0.4.14",
     "animejs": "^3.1.0",
-    "auth0-js": "^9.11.3",
     "backbone": "^1.4.0",
     "backbone.eventrouter": "^1.0.0",
     "backbone.marionette": "^4.1.0",

diff --git a/src/assets/config.json b/src/assets/config.json
@@ -1,6 +1,6 @@
 {
   "domain": "roundingwell-care-team.auth0.com",
-  "clientID": "zmfrKoBuMKsm5H4ZekNHeA4FRzIS44cz",
+  "client_id": "zmfrKoBuMKsm5H4ZekNHeA4FRzIS44cz",
   "connection": "google-oauth2",
   "name": "Salvation Clinic"
 }
diff --git a/src/js/app.js b/src/js/app.js
@@ -19,7 +19,7 @@ import Tooltip from 'js/components/tooltip';
 import 'js/entities-service';
 
 import AlertService from 'js/services/alert';
-import AuthService from 'js/services/auth';
+import BootstrapService from 'js/services/bootstrap';
 import HistoryService from 'js/services/history';
 import LastestListService from 'js/services/latest-list';
 import ModalService from 'js/services/modal';
@@ -39,8 +39,8 @@ const Application = App.extend({
   // Before the application starts make sure:
   // - A root layout is attached
   // - Global services are started
-  onBeforeStart({ token }) {
-    new AuthService({ token });
+  onBeforeStart({ name }) {
+    new BootstrapService({ name });
     this.setView(new RootView());
     this.getView().appView.getRegion('content').startPreloader();
     this.configComponents();
@@ -93,13 +93,10 @@ const Application = App.extend({
   },
 
   beforeStart() {
-    return Radio.request('auth', 'bootstrap');
+    return Radio.request('bootstrap', 'fetch');
   },
 
-  onStart({ name }) {
-    const currentOrg = Radio.request('auth', 'currentOrg');
-    currentOrg.set({ name });
-
+  onStart() {
     // Ensure Error is the first app initialized
     new ErrorApp({ region: this.getRegion('error') });
 

diff --git a/src/js/apps/globals/app-frame_app.js b/src/js/apps/globals/app-frame_app.js
@@ -83,8 +83,8 @@ export default App.extend({
   },
   showAppNav() {
     const appNav = new AppNavView({
-      model: Radio.request('auth', 'currentUser'),
-      currentOrg: Radio.request('auth', 'currentOrg'),
+      model: Radio.request('bootstrap', 'currentUser'),
+      currentOrg: Radio.request('bootstrap', 'currentOrg'),
     });
 
     const patientsCollectionView = new AppNavCollectionView({ collection: patientsNav });

diff --git a/src/js/apps/patients/list/patients-all_app.js b/src/js/apps/patients/list/patients-all_app.js
@@ -37,7 +37,7 @@ export default App.extend({
     this.showChildView('filters', groupsSelect);
   },
   _getGroups() {
-    const currentClinician = Radio.request('auth', 'currentUser');
+    const currentClinician = Radio.request('bootstrap', 'currentUser');
     return currentClinician.getGroups();
   },
 });
diff --git a/src/js/apps/patients/patient/action/action_app.js b/src/js/apps/patients/patient/action/action_app.js
@@ -7,8 +7,8 @@ import App from 'js/base/app';
 export default App.extend({
   beforeStart({ actionId, patientId }) {
     if (!actionId) {
-      const currentUser = Radio.request('auth', 'currentUser');
-      const currentOrg = Radio.request('auth', 'currentOrg');
+      const currentUser = Radio.request('bootstrap', 'currentUser');
+      const currentOrg = Radio.request('bootstrap', 'currentOrg');
       const states = currentOrg.getStates();
 
       return Radio.request('entities', 'actions:model', {

diff --git a/src/js/apps/patients/view/view_app.js b/src/js/apps/patients/view/view_app.js
@@ -15,7 +15,7 @@ export default App.extend({
     if (this.isRestarting()) return;
     this.viewId = viewId;
 
-    this.currentClinician = Radio.request('auth', 'currentUser');
+    this.currentClinician = Radio.request('bootstrap', 'currentUser');
     this.groups = this.currentClinician.getGroups();
 
     this.showView(new LayoutView({ viewId }));

diff --git a/src/js/auth.js b/src/js/auth.js
@@ -1,39 +1,19 @@
-import auth0 from 'auth0-js';
+import $ from 'jquery';
+import createAuth0Client from '@auth0/auth0-spa-js';
 
-const AUTHD_PATH = '/authenticated';
-
-let webAuth;
-
-function authorize(connection, prompt = 'none') {
-  webAuth.authorize({
-    responseType: 'id_token',
-    responseMode: 'fragment',
-    redirectUri: window.location.origin + AUTHD_PATH,
-    connection,
-    prompt,
-  });
-}
+let auth0;
 
 /*
  * authenticate parses the implicit flow hash to determine the token
  * if there is an error it forces a new authorization with a new login
  * If successful, redirects to the initial path and sends the app
  * the token and config org name
  */
-function authenticate(success, { name, connection }) {
-  webAuth.parseHash({}, (authErr, authResult) => {
-    if (authErr) {
-      authorize(connection, 'login');
-      return;
-    }
-
-    window.history.replaceState({}, document.title, localStorage.getItem('redirectPath') || '/');
-    localStorage.removeItem('redirectPath');
-
-    success({
-      token: authResult.idToken,
-      name,
-    });
+function authenticate(success, { name }) {
+  return auth0.handleRedirectCallback().then(({ appState }) => {
+    ajaxSetup();
+    window.history.replaceState({}, document.title, appState);
+    success({ name });
   });
 }
 
@@ -43,26 +23,86 @@ function authenticate(success, { name, connection }) {
  * And authenticating authorization if auth0 redirected to AUTHD_PATH
  */
 function login(success, config) {
-  webAuth = new auth0.WebAuth(config);
+  const AUTHD_PATH = '/authenticated';
+  config.redirect_uri = location.origin + AUTHD_PATH;
+
+  createAuth0Client(config).then(auth0Client => {
+    auth0 = auth0Client;
 
-  if (window.location.pathname === AUTHD_PATH) {
-    return authenticate(success, config);
-  }
+    if (location.pathname === '/logout') {
+      logout();
+      return;
+    }
+
+    // RWell specific login
+    if (location.pathname === '/rw') {
+      rwellLogin();
+      return;
+    }
 
-  localStorage.setItem('redirectPath', window.location.pathname);
+    if (location.pathname === AUTHD_PATH) {
+      authenticate(success, config).catch(forceLogin);
+      return;
+    }
 
-  authorize(config.connection);
+    auth0.loginWithRedirect({
+      appState: location.pathname,
+      prompt: 'none',
+    });
+  });
 }
 
 function logout() {
-  localStorage.removeItem('config');
-  webAuth.logout({
-    returnTo: window.location.origin,
+  auth0.logout();
+}
+
+function rwellLogin() {
+  auth0.loginWithRedirect({
+    appState: '/',
+    connection: 'google-oauth2',
+    prompt: 'login',
+  });
+}
+
+function forceLogin() {
+  auth0.loginWithRedirect({
+    appState: '/',
+    prompt: 'login',
+  });
+}
+
+function ajaxSetup() {
+  $(document).ajaxSend((event, jqxhr, settings) => {
+    const origXhr = settings.xhr;
+    settings.xhr = function() {
+      const xhr = origXhr();
+      const origSend = xhr.send;
+      xhr.send = function() {
+        const args = arguments;
+        auth0
+          .getTokenSilently()
+          .then(token => {
+            if (xhr.readyState === 1) {
+              xhr.setRequestHeader('Authorization', `Bearer ${ token }`);
+              origSend.apply(xhr, args);
+            }
+          })
+          .catch(forceLogin);
+      };
+      return xhr;
+    };
+  });
+
+  $.ajaxSetup({
+    contentType: 'application/vnd.api+json',
+    statusCode: {
+      401: logout,
+      403: logout,
+    },
   });
 }
 
 export {
   login,
   logout,
 };
-
diff --git a/src/js/config.js b/src/js/config.js
@@ -1,8 +1,8 @@
 import $ from 'jquery';
 
-function fetchConfig(success) {
+function fetchConfig(success, configVersion) {
   $.getJSON('/config.json').then(config => {
-    localStorage.setItem('config', JSON.stringify(config));
+    localStorage.setItem(`config${ configVersion }`, JSON.stringify(config));
     success(config);
   });
 }

diff --git a/src/js/index.js b/src/js/index.js
@@ -1,6 +1,9 @@
 import _ from 'underscore';
+import Radio from 'backbone.radio';
 import 'js/utils/formatting';
 
+const configVersion = '2';
+
 function start(opts) {
   const isForm = _.startsWith(window.location.pathname, '/formapp/');
 
@@ -28,13 +31,19 @@ function startApp({ token, name }) {
 
 function startAuth(config) {
   import(/* webpackPrefetch: true, webpackChunkName: "auth" */ './auth')
-    .then(({ login }) => {
+    .then(({ login, logout }) => {
       login(start, config);
+      Radio.reply('auth', {
+        logout() {
+          localStorage.removeItem(`config${ configVersion }`);
+          logout();
+        },
+      });
     });
 }
 
 function getConfig() {
-  const config = localStorage.getItem('config');
+  const config = localStorage.getItem(`config${ configVersion }`);
 
   if (config) {
     startAuth(JSON.parse(config));
@@ -43,16 +52,13 @@ function getConfig() {
 
   import(/* webpackChunkName: "config" */'./config')
     .then(({ fetchConfig }) => {
-      fetchConfig(startAuth);
+      fetchConfig(startAuth, configVersion);
     });
 }
 
 document.addEventListener('DOMContentLoaded', () => {
   if (_DEVELOP_ && sessionStorage.getItem('cypress')) {
-    start({
-      token: sessionStorage.getItem('cypress'),
-      name: 'Cypress Clinic',
-    });
+    start({ name: 'Cypress Clinic' });
     return;
   }
 

diff --git a/src/js/services/auth.js → src/js/services/bootstrap.js b/src/js/services/auth.js → src/js/services/bootstrap.js
@@ -3,43 +3,31 @@ import Radio from 'backbone.radio';
 
 import App from 'js/base/app';
 
-import { logout } from 'js/auth';
-
 export default App.extend({
-  channelName: 'auth',
+  channelName: 'bootstrap',
   radioRequests: {
     'currentUser': 'getCurrentUser',
     'currentOrg': 'getCurrentOrg',
-    'logout': logout,
-    'bootstrap': 'initBootstrap',
+    'fetch': 'fetchBootstrap',
   },
-  initialize({ token }) {
-    $.ajaxSetup({
-      contentType: 'application/vnd.api+json',
-      statusCode: {
-        401: logout,
-        403: logout,
-      },
-      beforeSend(request) {
-        request.setRequestHeader('Authorization', `Bearer ${ token }`);
-      },
-    });
+  initialize({ name }) {
+    this.currentOrg = Radio.request('entities', 'organizations:model', { name });
   },
   getCurrentUser() {
     return this.currentUser;
   },
   getCurrentOrg() {
     return this.currentOrg;
   },
-  initBootstrap() {
+  fetchBootstrap() {
     const d = $.Deferred();
     const fetchCurrentUser = Radio.request('entities', 'fetch:clinicians:current');
     const fetchGroups = Radio.request('entities', 'fetch:groups:collection');
     const fetchRoles = Radio.request('entities', 'fetch:roles:collection');
     const fetchStates = Radio.request('entities', 'fetch:states:collection');
     $.when(fetchCurrentUser, fetchRoles, fetchStates, fetchGroups).done((currentUser, roles, states) => {
       this.currentUser = currentUser;
-      this.currentOrg = Radio.request('entities', 'organizations:model', {
+      this.currentOrg.set({
         states: states[0],
         roles: roles[0],
       });

diff --git a/src/js/views/globals/app-nav/app-nav_views.js b/src/js/views/globals/app-nav/app-nav_views.js
@@ -89,7 +89,7 @@ const NavItemView = View.extend({
   },
   templateContext: {
     role() {
-      const clinician = Radio.request('auth', 'currentUser');
+      const clinician = Radio.request('bootstrap', 'currentUser');
       return clinician.getRole().get('name');
     },
   },

diff --git a/src/js/views/patients/actions/actions_views.js b/src/js/views/patients/actions/actions_views.js
@@ -30,7 +30,7 @@ const StateTemplate = hbs`<span class="action--{{ statusClass }}">{{fas statusIc
 const StateComponent = Droplist.extend({
   isCompact: false,
   initialize({ model }) {
-    const currentOrg = Radio.request('auth', 'currentOrg');
+    const currentOrg = Radio.request('bootstrap', 'currentOrg');
     this.collection = currentOrg.getStates();
     this.setState({ selected: this.collection.get(model.get('_state')) });
   },
@@ -109,9 +109,9 @@ const OwnerComponent = Droplist.extend({
     };
   },
   initialize({ model }) {
-    const currentOrg = Radio.request('auth', 'currentOrg');
+    const currentOrg = Radio.request('bootstrap', 'currentOrg');
     const roles = currentOrg.getRoles();
-    const currentUser = Radio.request('auth', 'currentUser');
+    const currentUser = Radio.request('bootstrap', 'currentUser');
     const groups = currentUser.getGroups();
 
     this.lists = groups.map(group => {

diff --git a/src/js/views/patients/view/view_views.js b/src/js/views/patients/view/view_views.js
@@ -110,7 +110,7 @@ const LayoutView = View.extend({
     <div class="flex-region list-page__list js-list" data-list-region></div>
   `,
   templateContext() {
-    const currentClinician = Radio.request('auth', 'currentUser');
+    const currentClinician = Radio.request('bootstrap', 'currentUser');
 
     return {
       role: currentClinician.getRole().get('name'),