static-cms/src/backends/git-gateway/implementation.js

import GoTrue from "gotrue-js";
import jwtDecode from 'jwt-decode';
import {List} from 'immutable';
import { get, pick, intersection } from "lodash";
import GitHubBackend from "../github/implementation";
import API from "./API";
import AuthenticationPage from "./AuthenticationPage";

const localHosts = {
  localhost: true,
  '127.0.0.1': true,
  '0.0.0.0': true
}
const defaults = {
  identity: '/.netlify/identity',
  gateway: '/.netlify/git/github'
}

function getEndpoint(endpoint, netlifySiteURL) {
  if (localHosts[document.location.host.split(":").shift()] && netlifySiteURL && endpoint.match(/^\/\.netlify\//)) {
    const parts = [];
    if (netlifySiteURL) {
      parts.push(netlifySiteURL);
      if (!netlifySiteURL.match(/\/$/)) { parts.push("/"); }
    }
    parts.push(endpoint.replace(/^\//, ''));
    return parts.join("");
  }
  return endpoint;
}

export default class GitGateway extends GitHubBackend {
  constructor(config) {
    super(config, true);

    this.accept_roles = (config.getIn(["backend", "accept_roles"]) || List()).toArray();

    const netlifySiteURL = localStorage.getItem("netlifySiteURL");
    const APIUrl = getEndpoint(config.getIn(["backend", "identity_url"], defaults.identity), netlifySiteURL);
    this.github_proxy_url = getEndpoint(config.getIn(["backend", "gateway_url"], defaults.gateway), netlifySiteURL);
    this.authClient = window.netlifyIdentity ? window.netlifyIdentity.gotrue : new GoTrue({APIUrl});

    AuthenticationPage.authClient = this.authClient;
  }

  restoreUser() {
    const user = this.authClient && this.authClient.currentUser();
    if (!user) return Promise.reject();
    return this.authenticate(user);
  }

  authenticate(user) {
    this.tokenPromise = user.jwt.bind(user);
    return this.tokenPromise()
    .then((token) => {
      let validRole = true;
      if (this.accept_roles && this.accept_roles.length > 0) {
        validRole = intersection(userRoles, this.accept_roles).length > 0;
      }
      const userRoles = get(jwtDecode(token), 'app_metadata.roles', []);
      if (validRole) {
        const userData = {
          name: user.user_metadata.name || user.email.split('@').shift(),
          email: user.email,
          avatar_url: user.user_metadata.avatar_url,
          metadata: user.user_metadata,
        };
        this.api = new API({
          api_root: this.github_proxy_url,
          branch: this.branch,
          tokenPromise: this.tokenPromise,
          commitAuthor: pick(userData, ["name", "email"]),
        });
        return userData;
      } else {
        throw new Error("You don't have sufficient permissions to access Netlify CMS");
      }
    });
  }

  logout() {
    if (window.netlifyIdentity) {
      return window.netlifyIdentity.logout();
    }
    const user = this.authClient.currentUser();
    return user && user.logout();
  }

  getToken() {
    return this.tokenPromise();
  }

  authComponent() {
    return AuthenticationPage;
  }

}
Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00			`import GoTrue from "gotrue-js";`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`import jwtDecode from 'jwt-decode';`
Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00			`import {List} from 'immutable';`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`import { get, pick, intersection } from "lodash";`
Netlify auth (#194) 2016-12-23 16:59:48 -02:00			`import GitHubBackend from "../github/implementation";`
			`import API from "./API";`
			`import AuthenticationPage from "./AuthenticationPage";`

Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00			`const localHosts = {`
			`localhost: true,`
			`'127.0.0.1': true,`
			`'0.0.0.0': true`
			`}`
Make Neltify CMS work with Netlify Identity Widget When Netlify CMS uses the git-gateway backend, it will check for a window.netlifyIdentity object and use that to handle the whole auth flow. This also sets defaults for the git-gateway endpoint, that means it can be used in templates with zero configuration and fit with a one-click deploy to Netlify approach. Netlify Identity itself is based on our open-source GoTrue microservice, and Netlify's Git Gateway project is completely open-source as well. The git-gateway backend will work with Netlify without any setup, but can also be configured to work with any selfhosted GoTrue and Git Gateway instances. 2017-09-05 19:30:03 -07:00			`const defaults = {`
			`identity: '/.netlify/identity',`
			`gateway: '/.netlify/git/github'`
			`}`
Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00
			`function getEndpoint(endpoint, netlifySiteURL) {`
Make Neltify CMS work with Netlify Identity Widget When Netlify CMS uses the git-gateway backend, it will check for a window.netlifyIdentity object and use that to handle the whole auth flow. This also sets defaults for the git-gateway endpoint, that means it can be used in templates with zero configuration and fit with a one-click deploy to Netlify approach. Netlify Identity itself is based on our open-source GoTrue microservice, and Netlify's Git Gateway project is completely open-source as well. The git-gateway backend will work with Netlify without any setup, but can also be configured to work with any selfhosted GoTrue and Git Gateway instances. 2017-09-05 19:30:03 -07:00			`if (localHosts[document.location.host.split(":").shift()] && netlifySiteURL && endpoint.match(/^\/\.netlify\//)) {`
			`const parts = [];`
			`if (netlifySiteURL) {`
			`parts.push(netlifySiteURL);`
			`if (!netlifySiteURL.match(/\/$/)) { parts.push("/"); }`
			`}`
			`parts.push(endpoint.replace(/^\//, ''));`
Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00			`return parts.join("");`
			`}`
			`return endpoint;`
			`}`

Make Neltify CMS work with Netlify Identity Widget When Netlify CMS uses the git-gateway backend, it will check for a window.netlifyIdentity object and use that to handle the whole auth flow. This also sets defaults for the git-gateway endpoint, that means it can be used in templates with zero configuration and fit with a one-click deploy to Netlify approach. Netlify Identity itself is based on our open-source GoTrue microservice, and Netlify's Git Gateway project is completely open-source as well. The git-gateway backend will work with Netlify without any setup, but can also be configured to work with any selfhosted GoTrue and Git Gateway instances. 2017-09-05 19:30:03 -07:00			`export default class GitGateway extends GitHubBackend {`
Netlify auth (#194) 2016-12-23 16:59:48 -02:00			`constructor(config) {`
			`super(config, true);`

git gateway implementation tweaks 2017-09-06 18:28:20 -07:00			`this.accept_roles = (config.getIn(["backend", "accept_roles"]) \|\| List()).toArray();`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00
Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00			`const netlifySiteURL = localStorage.getItem("netlifySiteURL");`
Make Neltify CMS work with Netlify Identity Widget When Netlify CMS uses the git-gateway backend, it will check for a window.netlifyIdentity object and use that to handle the whole auth flow. This also sets defaults for the git-gateway endpoint, that means it can be used in templates with zero configuration and fit with a one-click deploy to Netlify approach. Netlify Identity itself is based on our open-source GoTrue microservice, and Netlify's Git Gateway project is completely open-source as well. The git-gateway backend will work with Netlify without any setup, but can also be configured to work with any selfhosted GoTrue and Git Gateway instances. 2017-09-05 19:30:03 -07:00			`const APIUrl = getEndpoint(config.getIn(["backend", "identity_url"], defaults.identity), netlifySiteURL);`
			`this.github_proxy_url = getEndpoint(config.getIn(["backend", "gateway_url"], defaults.gateway), netlifySiteURL);`
			`this.authClient = window.netlifyIdentity ? window.netlifyIdentity.gotrue : new GoTrue({APIUrl});`
Netlify auth (#194) 2016-12-23 16:59:48 -02:00
			`AuthenticationPage.authClient = this.authClient;`
			`}`

Rename `setUser` to `restoreUser`. 2017-08-29 13:45:05 -06:00			`restoreUser() {`
Make Neltify CMS work with Netlify Identity Widget When Netlify CMS uses the git-gateway backend, it will check for a window.netlifyIdentity object and use that to handle the whole auth flow. This also sets defaults for the git-gateway endpoint, that means it can be used in templates with zero configuration and fit with a one-click deploy to Netlify approach. Netlify Identity itself is based on our open-source GoTrue microservice, and Netlify's Git Gateway project is completely open-source as well. The git-gateway backend will work with Netlify without any setup, but can also be configured to work with any selfhosted GoTrue and Git Gateway instances. 2017-09-05 19:30:03 -07:00			`const user = this.authClient && this.authClient.currentUser();`
Netlify auth (#194) 2016-12-23 16:59:48 -02:00			`if (!user) return Promise.reject();`
			`return this.authenticate(user);`
			`}`

			`authenticate(user) {`
Asset API (#204) Asset API 2017-01-10 22:23:22 -02:00			`this.tokenPromise = user.jwt.bind(user);`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`return this.tokenPromise()`
			`.then((token) => {`
Better handling of roles and names 2017-09-05 16:48:51 -07:00			`let validRole = true;`
			`if (this.accept_roles && this.accept_roles.length > 0) {`
			`validRole = intersection(userRoles, this.accept_roles).length > 0;`
			`}`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`const userRoles = get(jwtDecode(token), 'app_metadata.roles', []);`
Better handling of roles and names 2017-09-05 16:48:51 -07:00			`if (validRole) {`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`const userData = {`
Make sure we always set a name on commits 2017-09-06 18:14:59 -07:00			`name: user.user_metadata.name \|\| user.email.split('@').shift(),`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`email: user.email,`
Show user avatar for git-gateway backend as well. 2017-09-08 09:02:48 -06:00			`avatar_url: user.user_metadata.avatar_url,`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`metadata: user.user_metadata,`
			`};`
			`this.api = new API({`
			`api_root: this.github_proxy_url,`
Add branch selection support for git gateway (#618) 2017-09-18 17:56:49 -04:00			`branch: this.branch,`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`tokenPromise: this.tokenPromise,`
			`commitAuthor: pick(userData, ["name", "email"]),`
			`});`
			`return userData;`
			`} else {`
Better handling of roles and names 2017-09-05 16:48:51 -07:00			`throw new Error("You don't have sufficient permissions to access Netlify CMS");`
Role authorization for Netlify-auth (#224) 2017-01-26 19:23:42 -02:00			`}`
Update old netlify-auth-js to gotrue-js 2017-09-05 13:24:16 -07:00			`});`
Asset API (#204) Asset API 2017-01-10 22:23:22 -02:00			`}`

Make Neltify CMS work with Netlify Identity Widget When Netlify CMS uses the git-gateway backend, it will check for a window.netlifyIdentity object and use that to handle the whole auth flow. This also sets defaults for the git-gateway endpoint, that means it can be used in templates with zero configuration and fit with a one-click deploy to Netlify approach. Netlify Identity itself is based on our open-source GoTrue microservice, and Netlify's Git Gateway project is completely open-source as well. The git-gateway backend will work with Netlify without any setup, but can also be configured to work with any selfhosted GoTrue and Git Gateway instances. 2017-09-05 19:30:03 -07:00			`logout() {`
			`if (window.netlifyIdentity) {`
			`return window.netlifyIdentity.logout();`
			`}`
			`const user = this.authClient.currentUser();`
			`return user && user.logout();`
			`}`

Asset API (#204) Asset API 2017-01-10 22:23:22 -02:00			`getToken() {`
			`return this.tokenPromise();`
Netlify auth (#194) 2016-12-23 16:59:48 -02:00			`}`

			`authComponent() {`
			`return AuthenticationPage;`
			`}`

			`}`