ref: Refactoring

2025-07-18 20:59:44 +02:00 · 2023-10-19 16:05:34 +02:00 · 2023-10-19 16:05:34 +02:00 · 0fab6075bd
commit 0fab6075bd
parent 9011ee61da
23 changed files with 96 additions and 91 deletions
--- a/client/src/actions/login.js
+++ b/client/src/actions/login.js
@ -28,20 +28,20 @@ authenticate.failure = (error) => ({
  },
 });

-const authenticateWithOidc = () => ({
-  type: ActionTypes.WITH_OIDC_AUTHENTICATE,
+const authenticateUsingOidc = () => ({
+  type: ActionTypes.USING_OIDC_AUTHENTICATE,
  payload: {},
 });

-authenticateWithOidc.success = (accessToken) => ({
-  type: ActionTypes.WITH_OIDC_AUTHENTICATE__SUCCESS,
+authenticateUsingOidc.success = (accessToken) => ({
+  type: ActionTypes.USING_OIDC_AUTHENTICATE__SUCCESS,
  payload: {
    accessToken,
  },
 });

-authenticateWithOidc.failure = (error) => ({
-  type: ActionTypes.WITH_OIDC_AUTHENTICATE__FAILURE,
+authenticateUsingOidc.failure = (error) => ({
+  type: ActionTypes.USING_OIDC_AUTHENTICATE__FAILURE,
  payload: {
    error,
  },
@ -55,6 +55,6 @@ const clearAuthenticateError = () => ({
 export default {
  initializeLogin,
  authenticate,
-  authenticateWithOidc,
+  authenticateUsingOidc,
  clearAuthenticateError,
 };
--- a/client/src/api/access-tokens.js
+++ b/client/src/api/access-tokens.js
@ -5,14 +5,14 @@ import socket from './socket';

 const createAccessToken = (data, headers) => http.post('/access-tokens', data, headers);

-const exchangeToAccessToken = (data, headers) =>
-  http.post('/access-tokens/exchange', data, headers);
+const exchangeForAccessTokenUsingOidc = (data, headers) =>
+  http.post('/access-tokens/exchange-using-oidc', data, headers);

 const deleteCurrentAccessToken = (headers) =>
  socket.delete('/access-tokens/me', undefined, headers);

 export default {
  createAccessToken,
-  exchangeToAccessToken,
+  exchangeForAccessTokenUsingOidc,
  deleteCurrentAccessToken,
 };
--- a/client/src/components/Login/Login.jsx
+++ b/client/src/components/Login/Login.jsx
@ -65,11 +65,11 @@ const Login = React.memo(
  ({
    defaultData,
    isSubmitting,
-    isSubmittingWithOidc,
+    isSubmittingUsingOidc,
    error,
    withOidc,
    onAuthenticate,
-    onAuthenticateWithOidc,
+    onAuthenticateUsingOidc,
    onMessageDismiss,
  }) => {
    const [t] = useTranslation();
@ -192,15 +192,15 @@ const Login = React.memo(
                        content={t('action.logIn')}
                        floated="right"
                        loading={isSubmitting}
-                        disabled={isSubmitting || isSubmittingWithOidc}
+                        disabled={isSubmitting || isSubmittingUsingOidc}
                      />
                    </Form>
                    {withOidc && (
                      <Button
                        type="button"
-                        loading={isSubmittingWithOidc}
-                        disabled={isSubmitting || isSubmittingWithOidc}
-                        onClick={onAuthenticateWithOidc}
+                        loading={isSubmittingUsingOidc}
+                        disabled={isSubmitting || isSubmittingUsingOidc}
+                        onClick={onAuthenticateUsingOidc}
                      >
                        {t('action.logInWithSSO')}
                      </Button>
@ -239,11 +239,11 @@ Login.propTypes = {
  defaultData: PropTypes.object.isRequired,
  /* eslint-enable react/forbid-prop-types */
  isSubmitting: PropTypes.bool.isRequired,
-  isSubmittingWithOidc: PropTypes.bool.isRequired,
+  isSubmittingUsingOidc: PropTypes.bool.isRequired,
  error: PropTypes.object, // eslint-disable-line react/forbid-prop-types
  withOidc: PropTypes.bool.isRequired,
  onAuthenticate: PropTypes.func.isRequired,
-  onAuthenticateWithOidc: PropTypes.func.isRequired,
+  onAuthenticateUsingOidc: PropTypes.func.isRequired,
  onMessageDismiss: PropTypes.func.isRequired,
 };

--- a/client/src/constants/ActionTypes.js
+++ b/client/src/constants/ActionTypes.js
@ -16,9 +16,9 @@ export default {
  AUTHENTICATE: 'AUTHENTICATE',
  AUTHENTICATE__SUCCESS: 'AUTHENTICATE__SUCCESS',
  AUTHENTICATE__FAILURE: 'AUTHENTICATE__FAILURE',
-  WITH_OIDC_AUTHENTICATE: 'WITH_OIDC_AUTHENTICATE',
-  WITH_OIDC_AUTHENTICATE__SUCCESS: 'WITH_OIDC_AUTHENTICATE__SUCCESS',
-  WITH_OIDC_AUTHENTICATE__FAILURE: 'WITH_OIDC_AUTHENTICATE__FAILURE',
+  USING_OIDC_AUTHENTICATE: 'USING_OIDC_AUTHENTICATE',
+  USING_OIDC_AUTHENTICATE__SUCCESS: 'USING_OIDC_AUTHENTICATE__SUCCESS',
+  USING_OIDC_AUTHENTICATE__FAILURE: 'USING_OIDC_AUTHENTICATE__FAILURE',
  AUTHENTICATE_ERROR_CLEAR: 'AUTHENTICATE_ERROR_CLEAR',

  /* Core */
--- a/client/src/constants/EntryActionTypes.js
+++ b/client/src/constants/EntryActionTypes.js
@ -11,7 +11,7 @@ export default {
  /* Login */

  AUTHENTICATE: `${PREFIX}/AUTHENTICATE`,
-  WITH_OIDC_AUTHENTICATE: `${PREFIX}/WITH_OIDC_AUTHENTICATE`,
+  USING_OIDC_AUTHENTICATE: `${PREFIX}/USING_OIDC_AUTHENTICATE`,
  AUTHENTICATE_ERROR_CLEAR: `${PREFIX}/AUTHENTICATE_ERROR_CLEAR`,

  /* Core */
--- a/client/src/containers/LoginContainer.js
+++ b/client/src/containers/LoginContainer.js
@ -10,14 +10,14 @@ const mapStateToProps = (state) => {

  const {
    ui: {
-      authenticateForm: { data: defaultData, isSubmitting, isSubmittingWithOidc, error },
+      authenticateForm: { data: defaultData, isSubmitting, isSubmittingUsingOidc, error },
    },
  } = state;

  return {
    defaultData,
    isSubmitting,
-    isSubmittingWithOidc,
+    isSubmittingUsingOidc,
    error,
    withOidc: !!oidcConfig,
  };
@ -27,7 +27,7 @@ const mapDispatchToProps = (dispatch) =>
  bindActionCreators(
    {
      onAuthenticate: entryActions.authenticate,
-      onAuthenticateWithOidc: entryActions.authenticateWithOidc,
+      onAuthenticateUsingOidc: entryActions.authenticateUsingOidc,
      onMessageDismiss: entryActions.clearAuthenticateError,
    },
    dispatch,
--- a/client/src/entry-actions/login.js
+++ b/client/src/entry-actions/login.js
@ -7,8 +7,8 @@ const authenticate = (data) => ({
  },
 });

-const authenticateWithOidc = () => ({
-  type: EntryActionTypes.WITH_OIDC_AUTHENTICATE,
+const authenticateUsingOidc = () => ({
+  type: EntryActionTypes.USING_OIDC_AUTHENTICATE,
  payload: {},
 });

@ -19,6 +19,6 @@ const clearAuthenticateError = () => ({

 export default {
  authenticate,
-  authenticateWithOidc,
+  authenticateUsingOidc,
  clearAuthenticateError,
 };
--- a/client/src/reducers/auth.js
+++ b/client/src/reducers/auth.js
@ -10,7 +10,7 @@ const initialState = {
 export default (state = initialState, { type, payload }) => {
  switch (type) {
    case ActionTypes.AUTHENTICATE__SUCCESS:
-    case ActionTypes.WITH_OIDC_AUTHENTICATE__SUCCESS:
+    case ActionTypes.USING_OIDC_AUTHENTICATE__SUCCESS:
      return {
        ...state,
        accessToken: payload.accessToken,
--- a/client/src/reducers/root.js
+++ b/client/src/reducers/root.js
@ -15,7 +15,7 @@ export default (state = initialState, { type, payload }) => {
        config: payload.config,
      };
    case ActionTypes.AUTHENTICATE__SUCCESS:
-    case ActionTypes.WITH_OIDC_AUTHENTICATE__SUCCESS:
+    case ActionTypes.USING_OIDC_AUTHENTICATE__SUCCESS:
      return {
        ...state,
        isInitializing: true,
--- a/client/src/reducers/ui/authenticate-form.js
+++ b/client/src/reducers/ui/authenticate-form.js
@ -9,7 +9,7 @@ const initialState = {
    password: '',
  },
  isSubmitting: false,
-  isSubmittingWithOidc: false,
+  isSubmittingUsingOidc: false,
  error: null,
 };

@ -20,7 +20,7 @@ export default (state = initialState, { type, payload }) => {
      if (payload.location.pathname === Paths.OIDC_CALLBACK) {
        return {
          ...state,
-          isSubmittingWithOidc: true,
+          isSubmittingUsingOidc: true,
        };
      }

@ -35,7 +35,7 @@ export default (state = initialState, { type, payload }) => {
        isSubmitting: true,
      };
    case ActionTypes.AUTHENTICATE__SUCCESS:
-    case ActionTypes.WITH_OIDC_AUTHENTICATE__SUCCESS:
+    case ActionTypes.USING_OIDC_AUTHENTICATE__SUCCESS:
      return initialState;
    case ActionTypes.AUTHENTICATE__FAILURE:
      return {
@ -43,10 +43,10 @@ export default (state = initialState, { type, payload }) => {
        isSubmitting: false,
        error: payload.error,
      };
-    case ActionTypes.WITH_OIDC_AUTHENTICATE__FAILURE:
+    case ActionTypes.USING_OIDC_AUTHENTICATE__FAILURE:
      return {
        ...state,
-        isSubmittingWithOidc: false,
+        isSubmittingUsingOidc: false,
        error: payload.error,
      };
    case ActionTypes.AUTHENTICATE_ERROR_CLEAR:
--- a/client/src/sagas/core/index.js
+++ b/client/src/sagas/core/index.js
@ -1,7 +1,8 @@
-import { all, apply, fork, take } from 'redux-saga/effects';
+import { all, apply, fork, select, take } from 'redux-saga/effects';

 import watchers from './watchers';
 import services from './services';
+import selectors from '../../selectors';
 import { socket } from '../../api';
 import ActionTypes from '../../constants/ActionTypes';
 import Paths from '../../constants/Paths';
@ -14,5 +15,12 @@ export default function* coreSaga() {

  yield take(ActionTypes.LOGOUT);

-  window.location.href = Paths.LOGIN;
+  const oidcConfig = yield select(selectors.selectOidcConfig);
+
+  if (oidcConfig && oidcConfig.endSessionUrl !== null) {
+    // Redirect the user to the IDP to log out.
+    window.location.href = oidcConfig.endSessionUrl;
+  } else {
+    window.location.href = Paths.LOGIN;
+  }
 }
--- a/client/src/sagas/core/services/core.js
+++ b/client/src/sagas/core/services/core.js
@ -83,15 +83,7 @@ export function* logout(invalidateAccessToken = true) {
    } catch (error) {} // eslint-disable-line no-empty
  }

-  const oidcConfig = yield select(selectors.selectOidcConfig);
-
  yield put(actions.logout());
-
-  if (oidcConfig && oidcConfig.endSessionUrl !== null) {
-    // Redirect the user to the IDP to log out.
-    window.location.replace(oidcConfig.endSessionUrl);
-  }
-
  yield take();
 }

--- a/client/src/sagas/login/index.js
+++ b/client/src/sagas/login/index.js
@ -9,7 +9,7 @@ export default function* loginSaga() {

  yield fork(services.initializeLogin);

-  yield take([ActionTypes.AUTHENTICATE__SUCCESS, ActionTypes.WITH_OIDC_AUTHENTICATE__SUCCESS]);
+  yield take([ActionTypes.AUTHENTICATE__SUCCESS, ActionTypes.USING_OIDC_AUTHENTICATE__SUCCESS]);

  yield cancel(watcherTasks);
  yield call(services.goToRoot);
--- a/client/src/sagas/login/services/login.js
+++ b/client/src/sagas/login/services/login.js
@ -29,19 +29,22 @@ export function* authenticate(data) {
  yield put(actions.authenticate.success(accessToken));
 }

-export function* authenticateWithOidc() {
+export function* authenticateUsingOidc() {
  const oidcConfig = yield select(selectors.selectOidcConfig);

  const nonce = nanoid();
  window.sessionStorage.setItem('oidc-nonce', nonce);
-  window.location.replace(`${oidcConfig.authorizationUrl}&nonce=${encodeURIComponent(nonce)}`);
+  window.location.href = `${oidcConfig.authorizationUrl}&nonce=${encodeURIComponent(nonce)}`;
 }

-export function* authenticateWithOidcCallback() {
+export function* authenticateUsingOidcCallback() {
  const params = new URLSearchParams(window.location.hash.substring(1));
+
+  yield put(replace(Paths.LOGIN));
+
  if (params.get('error') !== null) {
    yield put(
-      actions.authenticateWithOidc.failure(
+      actions.authenticateUsingOidc.failure(
        new Error(
          `OIDC Authorization error: ${params.get('error')}: ${params.get('error_description')}`,
        ),
@ -53,7 +56,7 @@ export function* authenticateWithOidcCallback() {
  const nonce = window.sessionStorage.getItem('oidc-nonce');
  if (nonce === null) {
    yield put(
-      actions.authenticateWithOidc.failure(
+      actions.authenticateUsingOidc.failure(
        new Error('Unable to process OIDC response: no nonce issued'),
      ),
    );
@ -63,29 +66,27 @@ export function* authenticateWithOidcCallback() {
  const code = params.get('code');
  if (code === null) {
    yield put(
-      actions.authenticateWithOidc.failure(new Error('Invalid OIDC response: no code parameter')),
+      actions.authenticateUsingOidc.failure(new Error('Invalid OIDC response: no code parameter')),
    );
    return;
  }

  window.sessionStorage.removeItem('oidc-nonce');

-  yield put(replace(Paths.LOGIN));
-
  if (code !== null) {
    let accessToken;
    try {
-      ({ item: accessToken } = yield call(api.exchangeToAccessToken, {
+      ({ item: accessToken } = yield call(api.exchangeForAccessTokenUsingOidc, {
        code,
        nonce,
      }));
    } catch (error) {
-      yield put(actions.authenticateWithOidc.failure(error));
+      yield put(actions.authenticateUsingOidc.failure(error));
      return;
    }

    yield call(setAccessToken, accessToken);
-    yield put(actions.authenticateWithOidc.success(accessToken));
+    yield put(actions.authenticateUsingOidc.success(accessToken));
  }
 }

@ -96,7 +97,7 @@ export function* clearAuthenticateError() {
 export default {
  initializeLogin,
  authenticate,
-  authenticateWithOidc,
-  authenticateWithOidcCallback,
+  authenticateUsingOidc,
+  authenticateUsingOidcCallback,
  clearAuthenticateError,
 };
--- a/client/src/sagas/login/services/router.js
+++ b/client/src/sagas/login/services/router.js
@ -1,7 +1,7 @@
 import { call, put, select, take } from 'redux-saga/effects';
 import { push } from '../../../lib/redux-router';

-import { authenticateWithOidcCallback } from './login';
+import { authenticateUsingOidcCallback } from './login';
 import selectors from '../../../selectors';
 import ActionTypes from '../../../constants/ActionTypes';
 import Paths from '../../../constants/Paths';
@ -36,9 +36,7 @@ export function* handleLocationChange() {
        yield take(ActionTypes.LOGIN_INITIALIZE);
      }

-      // TODO: check if OIDC is enabled
-
-      yield call(authenticateWithOidcCallback);
+      yield call(authenticateUsingOidcCallback);

      break;
    }
--- a/client/src/sagas/login/watchers/login.js
+++ b/client/src/sagas/login/watchers/login.js
@ -8,7 +8,7 @@ export default function* loginWatchers() {
    takeEvery(EntryActionTypes.AUTHENTICATE, ({ payload: { data } }) =>
      services.authenticate(data),
    ),
-    takeEvery(EntryActionTypes.WITH_OIDC_AUTHENTICATE, () => services.authenticateWithOidc()),
+    takeEvery(EntryActionTypes.USING_OIDC_AUTHENTICATE, () => services.authenticateUsingOidc()),
    takeEvery(EntryActionTypes.AUTHENTICATE_ERROR_CLEAR, () => services.clearAuthenticateError()),
  ]);
 }