authConfig persistence bug, session vars bug

2025-07-19 13:19:43 +02:00 · 2017-04-13 16:22:19 +01:00 · 2017-04-13 16:22:19 +01:00 · 6f98db5c29
commit 6f98db5c29
parent 585c4468c1
8 changed files with 693 additions and 660 deletions
--- a/app/app/pods/customize/auth/route.js
+++ b/app/app/pods/customize/auth/route.js
@ -30,16 +30,20 @@ export default Ember.Route.extend(AuthenticatedRouteMixin, {
 			authConfig: null,
 		};

+		return new Ember.RSVP.Promise((resolve) => {
+			this.get('global').getAuthConfig().then((config) => {
 				switch (data.authProvider) {
 					case constants.AuthProvider.Keycloak:
-				data.authConfig = this.get('appMeta.authConfig');
+						data.authConfig = config;
 						break;
 					case constants.AuthProvider.Documize:
 						data.authConfig = '';
 						break;
 				}

-		return data;
+				resolve(data);
+			});
+		});
 	},

 	activate() {
--- a/app/app/services/global.js
+++ b/app/app/services/global.js
@ -65,6 +65,17 @@ export default Ember.Service.extend({
 		}
 	},

+	// Returns auth config for Documize instance.
+	getAuthConfig() {
+		if(this.get('sessionService.isGlobalAdmin')) {
+			return this.get('ajax').request(`global/auth`, {
+				method: 'GET'
+			}).then((response) => {
+				return response;
+			});
+		}
+	},	
+
 	// Saves auth config for Documize instance.
 	saveAuthConfig(config) {
 		if(this.get('sessionService.isGlobalAdmin')) {
--- a/app/app/services/session.js
+++ b/app/app/services/session.js
@ -26,20 +26,25 @@ export default SimpleAuthSession.extend({
 	currentFolder: null,
 	isMac: false,
 	isMobile: false,
-	authenticated: computed('user.id', function () {
-		return this.get('user.id') !== '0';
+
+	user: computed('isAuthenticated', 'session.content.authenticated.user', function () {
+		if (this.get('isAuthenticated')) {
+			let user = this.get('session.content.authenticated.user') || { id: '' };
+			let data = this.get('store').normalize('user', user);
+			return this.get('store').push(data);
+		}
 	}),
-	isAdmin: computed('user', function () {
-		let data = this.get('user');
-		return data.get('admin');
+	authenticated: computed('session.content.authenticated.user', function () {
+		return this.get('session.content.authenticated.user.id') !== '0';
 	}),
-	isEditor: computed('user', function () {
-		let data = this.get('user');
-		return data.get('editor');
+	isAdmin: computed('session.content.authenticated.user', function () {
+		return this.get('session.content.authenticated.user.admin') === true;
 	}),
-	isGlobalAdmin: computed('user', function () {
-		let data = this.get('user');
-		return data.get('global');
+	isEditor: computed('session.content.authenticated.user', function () {
+		return this.get('session.content.authenticated.user.editor') === true;
+	}),
+	isGlobalAdmin: computed('session.content.authenticated.user', function () {
+		return this.get('session.content.authenticated.user.global') === true;
 	}),

 	init() {
@ -49,14 +54,6 @@ export default SimpleAuthSession.extend({
 		this.set('isMobile', is.mobile());
 	},

-	user: computed('isAuthenticated', 'session.content.authenticated.user', function () {
-		if (this.get('isAuthenticated')) {
-			let user = this.get('session.content.authenticated.user') || { id: '' };
-			let data = this.get('store').normalize('user', user);
-			return this.get('store').push(data);
-		}
-	}),
-
 	logout() {
 		this.get('localStorage').clearAll();
 	}
--- a/app/package.json
+++ b/app/package.json
@ -40,7 +40,7 @@
    "ember-export-application-global": "^1.0.5",
    "ember-load-initializers": "^0.6.0",
    "ember-resolver": "^2.0.3",
-    "ember-simple-auth": "1.2.0",
+    "ember-simple-auth": "1.2.2",
    "ember-source": "~2.12.0",
    "loader.js": "^4.2.3"
  },
--- a/core/api/endpoint/global_endpoint.go
+++ b/core/api/endpoint/global_endpoint.go
@ -233,3 +233,21 @@ type authData struct {
 	AuthProvider string `json:"authProvider"`
 	AuthConfig   string `json:"authConfig"`
 }
+
+// GetAuthConfig returns installation-wide auth configuration
+func GetAuthConfig(w http.ResponseWriter, r *http.Request) {
+	p := request.GetPersister(r)
+
+	if !p.Context.Global {
+		writeForbiddenError(w)
+		return
+	}
+
+	org, err := p.GetOrganization(p.Context.OrgID)
+	if err != nil {
+		writeForbiddenError(w)
+		return
+	}
+
+	util.WriteJSON(w, org.AuthConfig)
+}
--- a/core/api/endpoint/router.go
+++ b/core/api/endpoint/router.go
@ -236,6 +236,7 @@ func init() {
 	log.IfErr(Add(RoutePrefixPrivate, "global/smtp", []string{"PUT", "OPTIONS"}, nil, SaveSMTPConfig))
 	log.IfErr(Add(RoutePrefixPrivate, "global/license", []string{"GET", "OPTIONS"}, nil, GetLicense))
 	log.IfErr(Add(RoutePrefixPrivate, "global/license", []string{"PUT", "OPTIONS"}, nil, SaveLicense))
+	log.IfErr(Add(RoutePrefixPrivate, "global/auth", []string{"GET", "OPTIONS"}, nil, GetAuthConfig))
 	log.IfErr(Add(RoutePrefixPrivate, "global/auth", []string{"PUT", "OPTIONS"}, nil, SaveAuthConfig))

 	// Pinned items
--- a/core/api/endpoint/server.go
+++ b/core/api/endpoint/server.go
@ -165,6 +165,9 @@ func cors(w http.ResponseWriter, r *http.Request, next http.HandlerFunc) {
 	w.Header().Set("Access-Control-Expose-Headers", "x-documize-version")

 	if r.Method == "OPTIONS" {
+		w.Header().Add("X-Documize-Version", Product.Version)
+		w.Header().Add("Cache-Control", "no-cache")
+
 		if _, err := w.Write([]byte("")); err != nil {
 			log.Error("cors", err)
 		}
@ -177,7 +180,6 @@ func cors(w http.ResponseWriter, r *http.Request, next http.HandlerFunc) {
 func metrics(w http.ResponseWriter, r *http.Request, next http.HandlerFunc) {
 	w.Header().Add("X-Documize-Version", Product.Version)
 	w.Header().Add("Cache-Control", "no-cache")
-
 	// Prevent page from being displayed in an iframe
 	w.Header().Add("X-Frame-Options", "DENY")

--- a/embed/bindata_assetfs.go
+++ b/embed/bindata_assetfs.go