frontend-rw #1

Merged
marcin merged 347 commits from frontend-rw into develop 2024-12-05 15:32:18 -08:00
7 changed files with 165 additions and 155 deletions
Showing only changes of commit 09ef91cfc8 - Show all commits

View file

@ -275,7 +275,7 @@ const logOut = () =>
const params = { const params = {
client_id: state.auth.app?.client_id!, client_id: state.auth.app?.client_id!,
client_secret: state.auth.app?.client_secret!, client_secret: state.auth.app?.client_secret!,
token: state.auth.users.get(account.url)!.access_token, token: state.auth.users[account.url]!.access_token,
}; };
return dispatch(revokeOAuthToken(params)) return dispatch(revokeOAuthToken(params))
@ -312,7 +312,7 @@ const switchAccount = (accountId: string, background = false) =>
const fetchOwnAccounts = () => const fetchOwnAccounts = () =>
(dispatch: AppDispatch, getState: () => RootState) => { (dispatch: AppDispatch, getState: () => RootState) => {
const state = getState(); const state = getState();
return state.auth.users.forEach((user) => { return Object.values(state.auth.users).forEach((user) => {
const account = selectAccount(state, user.id); const account = selectAccount(state, user.id);
if (!account) { if (!account) {
dispatch(verifyCredentials(user.access_token, user.url)) dispatch(verifyCredentials(user.access_token, user.url))

View file

@ -36,7 +36,7 @@ const getMeUrl = (state: RootState) => {
const getMeToken = (state: RootState) => { const getMeToken = (state: RootState) => {
// Fallback for upgrading IDs to URLs // Fallback for upgrading IDs to URLs
const accountUrl = getMeUrl(state) || state.auth.me; const accountUrl = getMeUrl(state) || state.auth.me;
return state.auth.users.get(accountUrl!)?.access_token; return state.auth.users[accountUrl!]?.access_token;
}; };
interface MeFetchSkipAction { interface MeFetchSkipAction {

View file

@ -83,7 +83,7 @@ const AuthTokenList: React.FC = () => {
const intl = useIntl(); const intl = useIntl();
const tokens = useAppSelector(state => state.security.tokens.toReversed()); const tokens = useAppSelector(state => state.security.tokens.toReversed());
const currentTokenId = useAppSelector(state => { const currentTokenId = useAppSelector(state => {
const currentToken = state.auth.tokens.valueSeq().find((token) => token.me === state.auth.me); const currentToken = Object.values(state.auth.tokens).find((token) => token.me === state.auth.me);
return currentToken?.id; return currentToken?.id;
}); });

View file

@ -40,7 +40,7 @@ type IMenuItem = {
const getOtherAccounts = createSelector([ const getOtherAccounts = createSelector([
(state: RootState) => state.auth.users, (state: RootState) => state.auth.users,
(state: RootState) => state.entities[Entities.ACCOUNTS]?.store, (state: RootState) => state.entities[Entities.ACCOUNTS]?.store,
], (signedAccounts, accountEntities) => signedAccounts.toArray().map(([_, { id }]) => accountEntities?.[id] as AccountEntity).filter(account => account)); ], (signedAccounts, accountEntities) => Object.values(signedAccounts).map(({ id }) => accountEntities?.[id] as AccountEntity).filter(account => account));
const ProfileDropdown: React.FC<IProfileDropdown> = ({ account, children }) => { const ProfileDropdown: React.FC<IProfileDropdown> = ({ account, children }) => {
const dispatch = useAppDispatch(); const dispatch = useAppDispatch();

View file

@ -1,5 +1,6 @@
import { List as ImmutableList, Map as ImmutableMap, Record as ImmutableRecord, fromJS } from 'immutable'; import { Map as ImmutableMap, fromJS } from 'immutable';
import trim from 'lodash/trim'; import trim from 'lodash/trim';
import { create, Draft } from 'mutative';
import { applicationSchema, PlApiClient, tokenSchema, type CredentialAccount, type CredentialApplication, type Token } from 'pl-api'; import { applicationSchema, PlApiClient, tokenSchema, type CredentialAccount, type CredentialApplication, type Token } from 'pl-api';
import * as v from 'valibot'; import * as v from 'valibot';
@ -26,22 +27,25 @@ import type { AnyAction } from 'redux';
const backendUrl = (isURL(BuildConfig.BACKEND_URL) ? BuildConfig.BACKEND_URL : ''); const backendUrl = (isURL(BuildConfig.BACKEND_URL) ? BuildConfig.BACKEND_URL : '');
const AuthUserRecord = ImmutableRecord({ const authUserSchema = v.object({
access_token: '', access_token: v.string(),
id: '', id: v.string(),
url: '', url: v.string(),
}); });
const ReducerRecord = ImmutableRecord({ interface AuthUser {
app: null as CredentialApplication | null, access_token: string;
tokens: ImmutableMap<string, Token>(), id: string;
users: ImmutableMap<string, AuthUser>(), url: string;
me: null as string | null, }
client: new PlApiClient(backendUrl),
});
type AuthUser = ReturnType<typeof AuthUserRecord>; interface State {
type State = ReturnType<typeof ReducerRecord>; app: CredentialApplication | null;
tokens: Record<string, Token>;
users: Record<string, AuthUser>;
me: string | null;
client: InstanceType<typeof PlApiClient>;
}
const buildKey = (parts: string[]) => parts.join(':'); const buildKey = (parts: string[]) => parts.join(':');
@ -56,15 +60,15 @@ const getSessionUser = () => {
return validId(id) ? id : undefined; return validId(id) ? id : undefined;
}; };
const getLocalState = () => { const getLocalState = (): State | undefined => {
const state = JSON.parse(localStorage.getItem(STORAGE_KEY)!); const state = JSON.parse(localStorage.getItem(STORAGE_KEY)!);
if (!state) return undefined; if (!state) return undefined;
return ReducerRecord({ return ({
app: state.app && v.parse(applicationSchema, state.app), app: state.app && v.parse(applicationSchema, state.app),
tokens: ImmutableMap(Object.entries(state.tokens).map(([key, value]) => [key, v.parse(tokenSchema, value)])), tokens: Object.fromEntries(Object.entries(state.tokens).map(([key, value]) => [key, v.parse(tokenSchema, value)])),
users: ImmutableMap(Object.entries(state.users).map(([key, value]) => [key, AuthUserRecord(value as any)])), users: Object.fromEntries(Object.entries(state.users).map(([key, value]) => [key, v.parse(authUserSchema, value)])),
me: state.me, me: state.me,
client: new PlApiClient(parseBaseURL(state.me) || backendUrl, state.users[state.me]?.access_token), client: new PlApiClient(parseBaseURL(state.me) || backendUrl, state.users[state.me]?.access_token),
}); });
@ -83,44 +87,45 @@ const validUser = (user?: AuthUser) => {
}; };
// Finds the first valid user in the state // Finds the first valid user in the state
const firstValidUser = (state: State) => state.users.find(validUser); const firstValidUser = (state: State | Draft<State>) => Object.values(state.users).find(validUser);
// For legacy purposes. IDs get upgraded to URLs further down. // For legacy purposes. IDs get upgraded to URLs further down.
const getUrlOrId = (user?: AuthUser): string | null => { const getUrlOrId = (user?: AuthUser): string | null => {
try { try {
const { id, url } = user!.toJS(); if (!user) return null;
return (url || id) as string; const { id, url } = user;
return (url || id);
} catch { } catch {
return null; return null;
} }
}; };
// If `me` doesn't match an existing user, attempt to shift it. // If `me` doesn't match an existing user, attempt to shift it.
const maybeShiftMe = (state: State) => { const maybeShiftMe = (state: State | Draft<State>) => {
const me = state.me!; const me = state.me!;
const user = state.users.get(me); const user = state.users[me];
if (!validUser(user)) { if (!validUser(user)) {
const nextUser = firstValidUser(state); const nextUser = firstValidUser(state);
return state.set('me', getUrlOrId(nextUser)); state.me = getUrlOrId(nextUser);
} else { } else {
return state; return state;
} }
}; };
// Set the user from the session or localStorage, whichever is valid first // Set the user from the session or localStorage, whichever is valid first
const setSessionUser = (state: State) => state.update('me', me => { const setSessionUser = (state: State) => {
const user = ImmutableList<AuthUser>([ const me = getUrlOrId([
state.users.get(sessionUser!)!, state.users[sessionUser!]!,
state.users.get(me!)!, state.users[state.me!]!,
]).find(validUser); ].find(validUser));
return getUrlOrId(user); state.me = me;
}); };
const isUpgradingUrlId = (state: State) => { const isUpgradingUrlId = (state: State) => {
const me = state.me; const me = state.me;
const user = state.users.get(me!); const user = state.users[me!];
return validId(me) && user && !isURL(me); return validId(me) && user && !isURL(me);
}; };
@ -129,24 +134,17 @@ const sanitizeState = (state: State) => {
// Skip sanitation during ID to URL upgrade // Skip sanitation during ID to URL upgrade
if (isUpgradingUrlId(state)) return state; if (isUpgradingUrlId(state)) return state;
return state.withMutations(state => { state.users = Object.fromEntries(Object.entries(state.users).filter(([url, user]) => (
// Remove invalid users, ensure ID match validUser(user) && user.url === url
state.update('users', users => ( )));
users.filter((user, url) => ( // Remove mismatched tokens
validUser(user) && user.get('url') === url state.tokens = Object.fromEntries(Object.entries(state.tokens).filter(([id, token]) => (
)) validId(id) && token.access_token === id
)); )));
// Remove mismatched tokens
state.update('tokens', tokens => (
tokens.filter((token, id) => (
validId(id) && token.access_token === id
))
));
});
}; };
const persistAuth = (state: State) => { const persistAuth = (state: State) => {
const { client, ...data } = state.toJS(); const { client, ...data } = state;
localStorage.setItem(STORAGE_KEY, JSON.stringify(data)); localStorage.setItem(STORAGE_KEY, JSON.stringify(data));
}; };
@ -162,103 +160,102 @@ const persistState = (state: State) => {
persistSession(state); persistSession(state);
}; };
const initialize = (state: State) => const initialize = (state: State) => {
state.withMutations(state => { maybeShiftMe(state);
maybeShiftMe(state); setSessionUser(state);
setSessionUser(state); sanitizeState(state);
sanitizeState(state); persistState(state);
persistState(state);
});
const initialState = initialize(ReducerRecord().merge(localState as any)); return state;
};
const importToken = (state: State, token: Token) => const initialState: State = initialize({
state.setIn(['tokens', token.access_token], token); app: null,
tokens: {},
users: {},
me: null,
client: new PlApiClient(backendUrl),
...localState,
});
const importToken = (state: State | Draft<State>, token: Token) => {
state.tokens[token.access_token] = token;
};
// Users are now stored by their ActivityPub ID instead of their // Users are now stored by their ActivityPub ID instead of their
// primary key to support auth against multiple hosts. // primary key to support auth against multiple hosts.
const upgradeNonUrlId = (state: State, account: CredentialAccount) => { const upgradeNonUrlId = (state: State | Draft<State>, account: CredentialAccount) => {
const me = state.me; const me = state.me;
if (isURL(me)) return state; if (isURL(me)) return state;
return state.withMutations(state => { state.me = state.me === account.id ? account.url : state.me;
state.update('me', me => me === account.id ? account.url : me); delete state.users[account.id];
state.deleteIn(['users', account.id]);
});
}; };
// Returns a predicate function for filtering a mismatched user/token // Returns a predicate function for filtering a mismatched user/token
const userMismatch = (token: string, account: CredentialAccount) => const userMismatch = (token: string, account: CredentialAccount) =>
(user: AuthUser, url: string) => { (user: AuthUser, url: string) => {
const sameToken = user.get('access_token') === token; const sameToken = user.access_token === token;
const differentUrl = url !== account.url || user.get('url') !== account.url; const differentUrl = url !== account.url || user.url !== account.url;
const differentId = user.get('id') !== account.id; const differentId = user.id !== account.id;
return sameToken && (differentUrl || differentId); return sameToken && (differentUrl || differentId);
}; };
const importCredentials = (state: State, token: string, account: CredentialAccount) => const importCredentials = (state: State | Draft<State>, token: string, account: CredentialAccount) => {
state.withMutations(state => { state.users[account.url] = v.parse(authUserSchema, {
state.setIn(['users', account.url], AuthUserRecord({ id: account.id,
id: account.id, access_token: token,
access_token: token, url: account.url,
url: account.url,
}));
state.setIn(['tokens', token, 'account'], account.id);
state.setIn(['tokens', token, 'me'], account.url);
state.update('users', users => users.filterNot(userMismatch(token, account)));
state.update('client', client =>
state.me
? client
: client.baseURL === parseBaseURL(account.url)
? (client.accessToken = token, client)
: new PlApiClient(parseBaseURL(account.url) || backendUrl, token),
);
state.update('me', me => me || account.url);
upgradeNonUrlId(state, account);
});
const deleteToken = (state: State, token: string) =>
state.withMutations(state => {
state.update('tokens', tokens => tokens.delete(token));
state.update('users', users => users.filterNot(user => user.get('access_token') === token));
maybeShiftMe(state);
});
const deleteUser = (state: State, account: Pick<AccountEntity, 'url'>) => {
const accountUrl = account.url;
return state.withMutations(state => {
state.update('users', users => users.delete(accountUrl));
state.update('tokens', tokens => tokens.filterNot(token => token.me === accountUrl));
maybeShiftMe(state);
}); });
// state.tokens[token].account = account.id;
state.tokens[token].me = account.url;
state.users = Object.fromEntries(Object.entries(state.users).filter(([url, user]) => userMismatch(token, account)(user, url)));
if (!state.me) {
if (state.client.baseURL === parseBaseURL(account.url)) state.client.accessToken = token;
else state.client = new PlApiClient(parseBaseURL(account.url) || backendUrl, token);
}
state.me = state.me || account.url;
upgradeNonUrlId(state, account);
}; };
const importMastodonPreload = (state: State, data: ImmutableMap<string, any>) => const deleteToken = (state: State | Draft<State>, token: string) => {
state.withMutations(state => { delete state.tokens[token];
const accountId = data.getIn(['meta', 'me']) as string; state.users = Object.fromEntries(Object.entries(state.users).filter(([_, user]) => user.access_token !== token));
const accountUrl = data.getIn(['accounts', accountId, 'url']) as string; maybeShiftMe(state);
const accessToken = data.getIn(['meta', 'access_token']) as string; };
if (validId(accessToken) && validId(accountId) && isURL(accountUrl)) { const deleteUser = (state: State | Draft<State>, account: Pick<AccountEntity, 'url'>) => {
state.setIn(['tokens', accessToken], v.parse(tokenSchema, { const accountUrl = account.url;
access_token: accessToken,
account: accountId,
me: accountUrl,
scope: 'read write follow push',
token_type: 'Bearer',
}));
state.setIn(['users', accountUrl], AuthUserRecord({ delete state.users[accountUrl];
id: accountId, state.tokens = Object.fromEntries(Object.entries(state.tokens).filter(([_, token]) => token.me !== accountUrl));
access_token: accessToken, maybeShiftMe(state);
url: accountUrl, };
}));
}
maybeShiftMe(state); const importMastodonPreload = (state: State | Draft<State>, data: ImmutableMap<string, any>) => {
}); const accountId = data.getIn(['meta', 'me']) as string;
const accountUrl = data.getIn(['accounts', accountId, 'url']) as string;
const accessToken = data.getIn(['meta', 'access_token']) as string;
if (validId(accessToken) && validId(accountId) && isURL(accountUrl)) {
state.tokens[accessToken] = v.parse(tokenSchema, {
access_token: accessToken,
account: accountId,
me: accountUrl,
scope: 'read write follow push',
token_type: 'Bearer',
});
state.users[accountUrl] = v.parse(authUserSchema, {
id: accountId,
access_token: accessToken,
url: accountUrl,
});
}
maybeShiftMe(state);
};
const persistAuthAccount = (account: CredentialAccount) => { const persistAuthAccount = (account: CredentialAccount) => {
const persistedAccount = { ...account }; const persistedAccount = { ...account };
@ -276,7 +273,7 @@ const persistAuthAccount = (account: CredentialAccount) => {
return persistedAccount; return persistedAccount;
}; };
const deleteForbiddenToken = (state: State, error: { response: PlfeResponse }, token: string) => { const deleteForbiddenToken = (state: State | Draft<State>, error: { response: PlfeResponse }, token: string) => {
if ([401, 403].includes(error.response?.status!)) { if ([401, 403].includes(error.response?.status!)) {
return deleteToken(state, token); return deleteToken(state, token);
} else { } else {
@ -284,32 +281,49 @@ const deleteForbiddenToken = (state: State, error: { response: PlfeResponse }, t
} }
}; };
const reducer = (state: State, action: AnyAction | AuthAction | MeAction | PreloadAction) => { const reducer = (state: State, action: AnyAction | AuthAction | MeAction | PreloadAction): State => {
switch (action.type) { switch (action.type) {
case AUTH_APP_CREATED: case AUTH_APP_CREATED:
return state.set('app', action.app); return create(state, (draft) => {
draft.app = action.app;
});
case AUTH_APP_AUTHORIZED: case AUTH_APP_AUTHORIZED:
return state.update('app', app => ({ ...app, ...action.token })); return create(state, (draft) => {
draft.app = ({ ...draft.app, ...action.token });
});
case AUTH_LOGGED_IN: case AUTH_LOGGED_IN:
return importToken(state, action.token); return create(state, (draft) => {
importToken(draft, action.token);
});
case AUTH_LOGGED_OUT: case AUTH_LOGGED_OUT:
return deleteUser(state, action.account); return create(state, (draft) => {
deleteUser(draft, action.account);
});
case VERIFY_CREDENTIALS_SUCCESS: case VERIFY_CREDENTIALS_SUCCESS:
return importCredentials(state, action.token, persistAuthAccount(action.account)); return create(state, (draft) => {
importCredentials(draft, action.token, persistAuthAccount(action.account));
});
case VERIFY_CREDENTIALS_FAIL: case VERIFY_CREDENTIALS_FAIL:
return deleteForbiddenToken(state, action.error, action.token); return create(state, (draft) => {
deleteForbiddenToken(draft, action.error, action.token);
});
case SWITCH_ACCOUNT: case SWITCH_ACCOUNT:
return state return create(state, (draft) => {
.set('me', action.account.url) draft.me = action.account.url;
.update('client', client => if (draft.client.baseURL === parseBaseURL(action.account.url)) {
client.baseURL === parseBaseURL(action.account.url) draft.client.accessToken = action.account.access_token;
? (client.accessToken = action.account.access_token, client) } else {
: new PlApiClient(parseBaseURL(action.account.url) || backendUrl, action.account.access_token), draft.client = new PlApiClient(parseBaseURL(action.account.url) || backendUrl, action.account.access_token);
); }
});
case ME_FETCH_SKIP: case ME_FETCH_SKIP:
return state.set('me', null); return create(state, (draft) => {
draft.me = null;
});
case MASTODON_PRELOAD_IMPORT: case MASTODON_PRELOAD_IMPORT:
return importMastodonPreload(state, fromJS(action.data) as ImmutableMap<string, any>); return create(state, (draft) => {
importMastodonPreload(draft, fromJS<ImmutableMap<string, any>>(action.data));
});
default: default:
return state; return state;
} }
@ -330,7 +344,7 @@ const userSwitched = (oldState: State, state: State) => {
const stillValid = validMe(oldState) && validMe(state); const stillValid = validMe(oldState) && validMe(state);
const didChange = oldMe !== me; const didChange = oldMe !== me;
const userUpgradedUrl = state.users.get(me!)?.id === oldMe; const userUpgradedUrl = state.users[me!]?.id === oldMe;
return stillValid && didChange && !userUpgradedUrl; return stillValid && didChange && !userUpgradedUrl;
}; };
@ -344,10 +358,10 @@ const maybeReload = (oldState: State, state: State, action: AnyAction) => {
} }
}; };
const auth = (oldState: State = initialState, action: AnyAction) => { const auth = (oldState: State = initialState, action: AnyAction): State => {
const state = reducer(oldState, action); const state = reducer(oldState, action);
if (!state.equals(oldState)) { if (state !== oldState) {
// Persist the state in localStorage // Persist the state in localStorage
persistAuth(state); persistAuth(state);
@ -367,8 +381,4 @@ const auth = (oldState: State = initialState, action: AnyAction) => {
return state; return state;
}; };
export { export { auth as default };
AuthUserRecord,
ReducerRecord,
auth as default,
};

View file

@ -261,7 +261,7 @@ const makeGetReport = () => {
const getAuthUserIds = createSelector( const getAuthUserIds = createSelector(
[(state: RootState) => state.auth.users], [(state: RootState) => state.auth.users],
authUsers => authUsers.reduce((userIds: Array<string>, authUser) => { authUsers => Object.values(authUsers).reduce((userIds: Array<string>, authUser) => {
const userId = authUser?.id; const userId = authUser?.id;
if (validId(userId)) userIds.push(userId); if (validId(userId)) userIds.push(userId);
return userIds; return userIds;

View file

@ -30,7 +30,7 @@ const getUserToken = (state: RootState, accountId?: string | false | null) => {
if (!accountId) return; if (!accountId) return;
const accountUrl = selectAccount(state, accountId)?.url; const accountUrl = selectAccount(state, accountId)?.url;
if (!accountUrl) return; if (!accountUrl) return;
return state.auth.users.get(accountUrl)?.access_token; return state.auth.users[accountUrl]?.access_token;
}; };
const getAccessToken = (state: RootState) => { const getAccessToken = (state: RootState) => {
@ -42,7 +42,7 @@ const getAuthUserId = (state: RootState) => {
const me = state.auth.me; const me = state.auth.me;
return [ return [
state.auth.users.get(me!)?.id, state.auth.users[me!]?.id,
me, me,
].filter(id => id).find(validId); ].filter(id => id).find(validId);
}; };
@ -51,7 +51,7 @@ const getAuthUserUrl = (state: RootState) => {
const me = state.auth.me; const me = state.auth.me;
return [ return [
state.auth.users.get(me!)?.url, state.auth.users[me!]?.url,
me, me,
].filter(url => url).find(isURL); ].filter(url => url).find(isURL);
}; };