[github/Chocobozzz/PeerTube.git] / client / src / app / shared / auth / auth.service.ts

import { Injectable } from '@angular/core';
import { Headers, Http, Response, URLSearchParams } from '@angular/http';
import { Observable } from 'rxjs/Observable';
import { Subject } from 'rxjs/Subject';

import { AuthStatus } from './auth-status.model';
import { AuthUser } from './auth-user.model';

@Injectable()
export class AuthService {
  private static BASE_CLIENT_URL = '/api/v1/clients/local';
  private static BASE_TOKEN_URL = '/api/v1/users/token';
  private static BASE_USER_INFORMATIONS_URL = '/api/v1/users/me';

  loginChangedSource: Observable<AuthStatus>;

  private clientId: string;
  private clientSecret: string;
  private loginChanged: Subject<AuthStatus>;
  private user: AuthUser = null;

  constructor(private http: Http) {
    this.loginChanged = new Subject<AuthStatus>();
    this.loginChangedSource = this.loginChanged.asObservable();

    // Fetch the client_id/client_secret
    // FIXME: save in local storage?
    this.http.get(AuthService.BASE_CLIENT_URL)
      .map(res => res.json())
      .catch(this.handleError)
      .subscribe(
        result => {
          this.clientId = result.client_id;
          this.clientSecret = result.client_secret;
          console.log('Client credentials loaded.');
        },
        error => {
          alert(error);
        }
      );

    // Return null if there is nothing to load
    this.user = AuthUser.load();
  }

  getRefreshToken() {
    if (this.user === null) return null;

    return this.user.getRefreshToken();
  }

  getRequestHeaderValue() {
    return `${this.getTokenType()} ${this.getAccessToken()}`;
  }

  getAccessToken() {
    if (this.user === null) return null;

    return this.user.getAccessToken();
  }

  getTokenType() {
    if (this.user === null) return null;

    return this.user.getTokenType();
  }

  getUser(): AuthUser {
    return this.user;
  }

  isAdmin() {
    if (this.user === null) return false;

    return this.user.isAdmin();
  }

  isLoggedIn() {
    if (this.getAccessToken()) {
      return true;
    } else {
      return false;
    }
  }

  login(username: string, password: string) {
    let body = new URLSearchParams();
    body.set('client_id', this.clientId);
    body.set('client_secret', this.clientSecret);
    body.set('response_type', 'code');
    body.set('grant_type', 'password');
    body.set('scope', 'upload');
    body.set('username', username);
    body.set('password', password);

    let headers = new Headers();
    headers.append('Content-Type', 'application/x-www-form-urlencoded');

    let options = {
      headers: headers
    };

    return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
                    .map(res => res.json())
                    .map(res => {
                      res.username = username;
                      return res;
                    })
                    .flatMap(res => this.fetchUserInformations(res))
                    .map(res => this.handleLogin(res))
                    .catch(this.handleError);
  }

  logout() {
    // TODO: make an HTTP request to revoke the tokens
    this.user = null;
    AuthUser.flush();

    this.setStatus(AuthStatus.LoggedOut);
  }

  refreshAccessToken() {
    console.log('Refreshing token...');

    const refreshToken = this.getRefreshToken();

    let body = new URLSearchParams();
    body.set('refresh_token', refreshToken);
    body.set('client_id', this.clientId);
    body.set('client_secret', this.clientSecret);
    body.set('response_type', 'code');
    body.set('grant_type', 'refresh_token');

    let headers = new Headers();
    headers.append('Content-Type', 'application/x-www-form-urlencoded');

    let options = {
      headers: headers
    };

    return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
                    .map(res => res.json())
                    .map(res => this.handleRefreshToken(res))
                    .catch(this.handleError);
  }

  private fetchUserInformations (obj: any) {
    // Do not call authHttp here to avoid circular dependencies headaches

    const headers = new Headers();
    headers.set('Authorization', `Bearer ${obj.access_token}`);

    return this.http.get(AuthService.BASE_USER_INFORMATIONS_URL, { headers })
             .map(res => res.json())
             .map(res => {
               obj.id = res.id;
               obj.role = res.role;
               return obj;
             }
    );
  }

  private handleError (error: Response) {
    console.error(error);
    return Observable.throw(error.json() || { error: 'Server error' });
  }

  private handleLogin (obj: any) {
    const id = obj.id;
    const username = obj.username;
    const role = obj.role;
    const hashTokens = {
      access_token: obj.access_token,
      token_type: obj.token_type,
      refresh_token: obj.refresh_token
    };

    this.user = new AuthUser({ id, username, role }, hashTokens);
    this.user.save();

    this.setStatus(AuthStatus.LoggedIn);
  }

  private handleRefreshToken (obj: any) {
    this.user.refreshTokens(obj.access_token, obj.refresh_token);
    this.user.save();
  }

  private setStatus(status: AuthStatus) {
    this.loginChanged.next(status);
  }

}
Commit	Line	Data
230809ef	1	import { Injectable } from '@angular/core';
0f3a78e7	2	import { Headers, Http, Response, URLSearchParams } from '@angular/http';
5555f886 C	3	import { Observable } from 'rxjs/Observable';
5555f886 C	4	import { Subject } from 'rxjs/Subject';
b1794c53	5
41a2aee3	6	import { AuthStatus } from './auth-status.model';
7da18e44	7	import { AuthUser } from './auth-user.model';
b1794c53 C	8
	9	@Injectable()
	10	export class AuthService {
6606150c	11	private static BASE_CLIENT_URL = '/api/v1/clients/local';
bd5c83a8	12	private static BASE_TOKEN_URL = '/api/v1/users/token';
629d8d6f	13	private static BASE_USER_INFORMATIONS_URL = '/api/v1/users/me';
b1794c53	14
ccf6ed16	15	loginChangedSource: Observable<AuthStatus>;
b1794c53	16
ccf6ed16 C	17	private clientId: string;
ccf6ed16 C	18	private clientSecret: string;
4fd8aa32	19	private loginChanged: Subject<AuthStatus>;
7da18e44	20	private user: AuthUser = null;
ccf6ed16 C	21
	22	constructor(private http: Http) {
	23	this.loginChanged = new Subject<AuthStatus>();
	24	this.loginChangedSource = this.loginChanged.asObservable();
23a5a916 C	25
	26	// Fetch the client_id/client_secret
	27	// FIXME: save in local storage?
ccf6ed16	28	this.http.get(AuthService.BASE_CLIENT_URL)
23a5a916 C	29	.map(res => res.json())
	30	.catch(this.handleError)
	31	.subscribe(
	32	result => {
ccf6ed16 C	33	this.clientId = result.client_id;
ccf6ed16 C	34	this.clientSecret = result.client_secret;
23a5a916 C	35	console.log('Client credentials loaded.');
	36	},
	37	error => {
	38	alert(error);
	39	}
ad10a70b	40	);
bd5c83a8 C	41
bd5c83a8 C	42	// Return null if there is nothing to load
7da18e44	43	this.user = AuthUser.load();
1553e15d	44	}
b1794c53	45
bd5c83a8 C	46	getRefreshToken() {
	47	if (this.user === null) return null;
	48
	49	return this.user.getRefreshToken();
	50	}
	51
e822fdae	52	getRequestHeaderValue() {
0f3a78e7	53	return `${this.getTokenType()} ${this.getAccessToken()}`;
1553e15d C	54	}
1553e15d C	55
0f3a78e7	56	getAccessToken() {
bd5c83a8 C	57	if (this.user === null) return null;
	58
	59	return this.user.getAccessToken();
1553e15d C	60	}
1553e15d C	61
ccf6ed16	62	getTokenType() {
bd5c83a8 C	63	if (this.user === null) return null;
	64
	65	return this.user.getTokenType();
1553e15d C	66	}
1553e15d C	67
7da18e44	68	getUser(): AuthUser {
bd5c83a8	69	return this.user;
1553e15d C	70	}
1553e15d C	71
7da18e44 C	72	isAdmin() {
	73	if (this.user === null) return false;
	74
	75	return this.user.isAdmin();
	76	}
	77
ccf6ed16	78	isLoggedIn() {
0f3a78e7	79	if (this.getAccessToken()) {
1553e15d C	80	return true;
	81	} else {
	82	return false;
	83	}
	84	}
	85
4fd8aa32 C	86	login(username: string, password: string) {
	87	let body = new URLSearchParams();
	88	body.set('client_id', this.clientId);
	89	body.set('client_secret', this.clientSecret);
	90	body.set('response_type', 'code');
	91	body.set('grant_type', 'password');
	92	body.set('scope', 'upload');
	93	body.set('username', username);
	94	body.set('password', password);
	95
	96	let headers = new Headers();
	97	headers.append('Content-Type', 'application/x-www-form-urlencoded');
	98
	99	let options = {
	100	headers: headers
	101	};
	102
bd5c83a8	103	return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
4fd8aa32	104	.map(res => res.json())
bd5c83a8 C	105	.map(res => {
	106	res.username = username;
	107	return res;
	108	})
629d8d6f	109	.flatMap(res => this.fetchUserInformations(res))
bd5c83a8	110	.map(res => this.handleLogin(res))
4fd8aa32 C	111	.catch(this.handleError);
	112	}
	113
	114	logout() {
bd5c83a8 C	115	// TODO: make an HTTP request to revoke the tokens
bd5c83a8 C	116	this.user = null;
7da18e44	117	AuthUser.flush();
e62f6ef7 C	118
e62f6ef7 C	119	this.setStatus(AuthStatus.LoggedOut);
bd5c83a8 C	120	}
	121
	122	refreshAccessToken() {
	123	console.log('Refreshing token...');
	124
	125	const refreshToken = this.getRefreshToken();
	126
	127	let body = new URLSearchParams();
	128	body.set('refresh_token', refreshToken);
	129	body.set('client_id', this.clientId);
	130	body.set('client_secret', this.clientSecret);
	131	body.set('response_type', 'code');
	132	body.set('grant_type', 'refresh_token');
	133
	134	let headers = new Headers();
	135	headers.append('Content-Type', 'application/x-www-form-urlencoded');
	136
	137	let options = {
	138	headers: headers
	139	};
	140
	141	return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
	142	.map(res => res.json())
	143	.map(res => this.handleRefreshToken(res))
	144	.catch(this.handleError);
4fd8aa32 C	145	}
4fd8aa32 C	146
629d8d6f C	147	private fetchUserInformations (obj: any) {
	148	// Do not call authHttp here to avoid circular dependencies headaches
	149
	150	const headers = new Headers();
	151	headers.set('Authorization', `Bearer ${obj.access_token}`);
	152
	153	return this.http.get(AuthService.BASE_USER_INFORMATIONS_URL, { headers })
	154	.map(res => res.json())
	155	.map(res => {
	156	obj.id = res.id;
	157	obj.role = res.role;
	158	return obj;
	159	}
	160	);
	161	}
	162
	163	private handleError (error: Response) {
	164	console.error(error);
	165	return Observable.throw(error.json() \|\| { error: 'Server error' });
b1794c53 C	166	}
b1794c53 C	167
bd5c83a8	168	private handleLogin (obj: any) {
629d8d6f	169	const id = obj.id;
bd5c83a8	170	const username = obj.username;
629d8d6f	171	const role = obj.role;
7da18e44	172	const hashTokens = {
bd5c83a8 C	173	access_token: obj.access_token,
	174	token_type: obj.token_type,
	175	refresh_token: obj.refresh_token
	176	};
	177
7da18e44	178	this.user = new AuthUser({ id, username, role }, hashTokens);
bd5c83a8 C	179	this.user.save();
	180
	181	this.setStatus(AuthStatus.LoggedIn);
	182	}
	183
bd5c83a8 C	184	private handleRefreshToken (obj: any) {
	185	this.user.refreshTokens(obj.access_token, obj.refresh_token);
	186	this.user.save();
	187	}
629d8d6f C	188
	189	private setStatus(status: AuthStatus) {
	190	this.loginChanged.next(status);
	191	}
	192
b1794c53	193	}