[github/Chocobozzz/PeerTube.git] / client / src / app / shared / auth / auth.service.ts

import { Injectable } from '@angular/core';
import { Headers, Http, Response, URLSearchParams } from '@angular/http';
import { Observable } from 'rxjs/Observable';
import { Subject } from 'rxjs/Subject';

import { AuthStatus } from './auth-status.model';
import { User } from './user.model';

@Injectable()
export class AuthService {
  private static BASE_CLIENT_URL = '/api/v1/users/client';
  private static BASE_TOKEN_URL = '/api/v1/users/token';

  loginChangedSource: Observable<AuthStatus>;

  private clientId: string;
  private clientSecret: string;
  private loginChanged: Subject<AuthStatus>;
  private user: User = null;

  constructor(private http: Http) {
    this.loginChanged = new Subject<AuthStatus>();
    this.loginChangedSource = this.loginChanged.asObservable();

    // Fetch the client_id/client_secret
    // FIXME: save in local storage?
    this.http.get(AuthService.BASE_CLIENT_URL)
      .map(res => res.json())
      .catch(this.handleError)
      .subscribe(
        result => {
          this.clientId = result.client_id;
          this.clientSecret = result.client_secret;
          console.log('Client credentials loaded.');
        },
        error => {
          alert(error);
        }
      );

    // Return null if there is nothing to load
    this.user = User.load();
  }

  getRefreshToken() {
    if (this.user === null) return null;

    return this.user.getRefreshToken();
  }

  getRequestHeaderValue() {
    return `${this.getTokenType()} ${this.getAccessToken()}`;
  }

  getAccessToken() {
    if (this.user === null) return null;

    return this.user.getAccessToken();
  }

  getTokenType() {
    if (this.user === null) return null;

    return this.user.getTokenType();
  }

  getUser(): User {
    return this.user;
  }

  isLoggedIn() {
    if (this.getAccessToken()) {
      return true;
    } else {
      return false;
    }
  }

  login(username: string, password: string) {
    let body = new URLSearchParams();
    body.set('client_id', this.clientId);
    body.set('client_secret', this.clientSecret);
    body.set('response_type', 'code');
    body.set('grant_type', 'password');
    body.set('scope', 'upload');
    body.set('username', username);
    body.set('password', password);

    let headers = new Headers();
    headers.append('Content-Type', 'application/x-www-form-urlencoded');

    let options = {
      headers: headers
    };

    return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
                    .map(res => res.json())
                    .map(res => {
                      res.username = username;
                      return res;
                    })
                    .map(res => this.handleLogin(res))
                    .catch(this.handleError);
  }

  logout() {
    // TODO: make an HTTP request to revoke the tokens
    this.user = null;
    User.flush();

    this.setStatus(AuthStatus.LoggedOut);
  }

  refreshAccessToken() {
    console.log('Refreshing token...');

    const refreshToken = this.getRefreshToken();

    let body = new URLSearchParams();
    body.set('refresh_token', refreshToken);
    body.set('client_id', this.clientId);
    body.set('client_secret', this.clientSecret);
    body.set('response_type', 'code');
    body.set('grant_type', 'refresh_token');

    let headers = new Headers();
    headers.append('Content-Type', 'application/x-www-form-urlencoded');

    let options = {
      headers: headers
    };

    return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
                    .map(res => res.json())
                    .map(res => this.handleRefreshToken(res))
                    .catch(this.handleError);
  }

  private setStatus(status: AuthStatus) {
    this.loginChanged.next(status);
  }

  private handleLogin (obj: any) {
    const username = obj.username;
    const hash_tokens = {
      access_token: obj.access_token,
      token_type: obj.token_type,
      refresh_token: obj.refresh_token
    };

    this.user = new User(username, hash_tokens);
    this.user.save();

    this.setStatus(AuthStatus.LoggedIn);
  }

  private handleError (error: Response) {
    console.error(error);
    return Observable.throw(error.json() || { error: 'Server error' });
  }

  private handleRefreshToken (obj: any) {
    this.user.refreshTokens(obj.access_token, obj.refresh_token);
    this.user.save();
  }
}
Commit	Line	Data
230809ef	1	import { Injectable } from '@angular/core';
0f3a78e7	2	import { Headers, Http, Response, URLSearchParams } from '@angular/http';
5555f886 C	3	import { Observable } from 'rxjs/Observable';
5555f886 C	4	import { Subject } from 'rxjs/Subject';
b1794c53	5
41a2aee3 C	6	import { AuthStatus } from './auth-status.model';
41a2aee3 C	7	import { User } from './user.model';
b1794c53 C	8
	9	@Injectable()
	10	export class AuthService {
ccf6ed16	11	private static BASE_CLIENT_URL = '/api/v1/users/client';
bd5c83a8	12	private static BASE_TOKEN_URL = '/api/v1/users/token';
b1794c53	13
ccf6ed16	14	loginChangedSource: Observable<AuthStatus>;
b1794c53	15
ccf6ed16 C	16	private clientId: string;
ccf6ed16 C	17	private clientSecret: string;
4fd8aa32	18	private loginChanged: Subject<AuthStatus>;
bd5c83a8	19	private user: User = null;
ccf6ed16 C	20
	21	constructor(private http: Http) {
	22	this.loginChanged = new Subject<AuthStatus>();
	23	this.loginChangedSource = this.loginChanged.asObservable();
23a5a916 C	24
	25	// Fetch the client_id/client_secret
	26	// FIXME: save in local storage?
ccf6ed16	27	this.http.get(AuthService.BASE_CLIENT_URL)
23a5a916 C	28	.map(res => res.json())
	29	.catch(this.handleError)
	30	.subscribe(
	31	result => {
ccf6ed16 C	32	this.clientId = result.client_id;
ccf6ed16 C	33	this.clientSecret = result.client_secret;
23a5a916 C	34	console.log('Client credentials loaded.');
	35	},
	36	error => {
	37	alert(error);
	38	}
ad10a70b	39	);
bd5c83a8 C	40
	41	// Return null if there is nothing to load
	42	this.user = User.load();
1553e15d	43	}
b1794c53	44
bd5c83a8 C	45	getRefreshToken() {
	46	if (this.user === null) return null;
	47
	48	return this.user.getRefreshToken();
	49	}
	50
e822fdae	51	getRequestHeaderValue() {
0f3a78e7	52	return `${this.getTokenType()} ${this.getAccessToken()}`;
1553e15d C	53	}
1553e15d C	54
0f3a78e7	55	getAccessToken() {
bd5c83a8 C	56	if (this.user === null) return null;
	57
	58	return this.user.getAccessToken();
1553e15d C	59	}
1553e15d C	60
ccf6ed16	61	getTokenType() {
bd5c83a8 C	62	if (this.user === null) return null;
	63
	64	return this.user.getTokenType();
1553e15d C	65	}
	66
	67	getUser(): User {
bd5c83a8	68	return this.user;
1553e15d C	69	}
1553e15d C	70
ccf6ed16	71	isLoggedIn() {
0f3a78e7	72	if (this.getAccessToken()) {
1553e15d C	73	return true;
	74	} else {
	75	return false;
	76	}
	77	}
	78
4fd8aa32 C	79	login(username: string, password: string) {
	80	let body = new URLSearchParams();
	81	body.set('client_id', this.clientId);
	82	body.set('client_secret', this.clientSecret);
	83	body.set('response_type', 'code');
	84	body.set('grant_type', 'password');
	85	body.set('scope', 'upload');
	86	body.set('username', username);
	87	body.set('password', password);
	88
	89	let headers = new Headers();
	90	headers.append('Content-Type', 'application/x-www-form-urlencoded');
	91
	92	let options = {
	93	headers: headers
	94	};
	95
bd5c83a8	96	return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
4fd8aa32	97	.map(res => res.json())
bd5c83a8 C	98	.map(res => {
	99	res.username = username;
	100	return res;
	101	})
	102	.map(res => this.handleLogin(res))
4fd8aa32 C	103	.catch(this.handleError);
	104	}
	105
	106	logout() {
bd5c83a8 C	107	// TODO: make an HTTP request to revoke the tokens
	108	this.user = null;
	109	User.flush();
e62f6ef7 C	110
e62f6ef7 C	111	this.setStatus(AuthStatus.LoggedOut);
bd5c83a8 C	112	}
	113
	114	refreshAccessToken() {
	115	console.log('Refreshing token...');
	116
	117	const refreshToken = this.getRefreshToken();
	118
	119	let body = new URLSearchParams();
	120	body.set('refresh_token', refreshToken);
	121	body.set('client_id', this.clientId);
	122	body.set('client_secret', this.clientSecret);
	123	body.set('response_type', 'code');
	124	body.set('grant_type', 'refresh_token');
	125
	126	let headers = new Headers();
	127	headers.append('Content-Type', 'application/x-www-form-urlencoded');
	128
	129	let options = {
	130	headers: headers
	131	};
	132
	133	return this.http.post(AuthService.BASE_TOKEN_URL, body.toString(), options)
	134	.map(res => res.json())
	135	.map(res => this.handleRefreshToken(res))
	136	.catch(this.handleError);
4fd8aa32 C	137	}
4fd8aa32 C	138
0f3a78e7	139	private setStatus(status: AuthStatus) {
ccf6ed16	140	this.loginChanged.next(status);
b1794c53 C	141	}
b1794c53 C	142
bd5c83a8 C	143	private handleLogin (obj: any) {
	144	const username = obj.username;
	145	const hash_tokens = {
	146	access_token: obj.access_token,
	147	token_type: obj.token_type,
	148	refresh_token: obj.refresh_token
	149	};
	150
	151	this.user = new User(username, hash_tokens);
	152	this.user.save();
	153
	154	this.setStatus(AuthStatus.LoggedIn);
	155	}
	156
b1794c53 C	157	private handleError (error: Response) {
b1794c53 C	158	console.error(error);
1553e15d	159	return Observable.throw(error.json() \|\| { error: 'Server error' });
b1794c53	160	}
bd5c83a8 C	161
	162	private handleRefreshToken (obj: any) {
	163	this.user.refreshTokens(obj.access_token, obj.refresh_token);
	164	this.user.save();
	165	}
b1794c53	166	}