import trim from 'lodash/trim'; import trimEnd from 'lodash/trimEnd'; const NETLIFY_API = 'https://api.netlify.com'; const AUTH_ENDPOINT = 'auth'; class NetlifyError { constructor(err) { this.err = err; } toString() { return this.err && this.err.message; } } const PROVIDERS = { github: { width: 960, height: 600, }, gitlab: { width: 960, height: 600, }, bitbucket: { width: 960, height: 500, }, email: { width: 500, height: 400, }, }; class Authenticator { constructor(config = {}) { this.site_id = config.site_id || null; this.base_url = trimEnd(config.base_url, '/') || NETLIFY_API; this.auth_endpoint = trim(config.auth_endpoint, '/') || AUTH_ENDPOINT; } handshakeCallback(options, cb) { const fn = e => { if (e.data === 'authorizing:' + options.provider && e.origin === this.base_url) { window.removeEventListener('message', fn, false); window.addEventListener('message', this.authorizeCallback(options, cb), false); return this.authWindow.postMessage(e.data, e.origin); } }; return fn; } authorizeCallback(options, cb) { const fn = e => { if (e.origin !== this.base_url) { return; } if (e.data.indexOf('authorization:' + options.provider + ':success:') === 0) { const data = JSON.parse( e.data.match(new RegExp('^authorization:' + options.provider + ':success:(.+)$'))[1], ); window.removeEventListener('message', fn, false); this.authWindow.close(); cb(null, data); } if (e.data.indexOf('authorization:' + options.provider + ':error:') === 0) { const err = JSON.parse( e.data.match(new RegExp('^authorization:' + options.provider + ':error:(.+)$'))[1], ); window.removeEventListener('message', fn, false); this.authWindow.close(); cb(new NetlifyError(err)); } }; return fn; } getSiteID() { if (this.site_id) { return this.site_id; } const host = document.location.host.split(':')[0]; return host === 'localhost' ? 'cms.netlify.com' : host; } authenticate(options, cb) { const { provider } = options; const siteID = this.getSiteID(); if (!provider) { return cb( new NetlifyError({ message: 'You must specify a provider when calling netlify.authenticate', }), ); } if (!siteID) { return cb( new NetlifyError({ message: "You must set a site_id with netlify.configure({site_id: 'your-site-id'}) to make authentication work from localhost", }), ); } const conf = PROVIDERS[provider] || PROVIDERS.github; const left = screen.width / 2 - conf.width / 2; const top = screen.height / 2 - conf.height / 2; window.addEventListener('message', this.handshakeCallback(options, cb), false); let url = `${this.base_url}/${this.auth_endpoint}?provider=${options.provider}&site_id=${siteID}`; if (options.scope) { url += '&scope=' + options.scope; } if (options.login === true) { url += '&login=true'; } if (options.beta_invite) { url += '&beta_invite=' + options.beta_invite; } if (options.invite_code) { url += '&invite_code=' + options.invite_code; } this.authWindow = window.open( url, 'Netlify Authorization', `width=${conf.width}, height=${conf.height}, top=${top}, left=${left}`, ); this.authWindow.focus(); } refresh(options, cb) { const { provider, refresh_token } = options; const siteID = this.getSiteID(); const onError = cb || Promise.reject.bind(Promise); if (!provider || !refresh_token) { return onError( new NetlifyError({ message: 'You must specify a provider and refresh token when calling netlify.refresh', }), ); } if (!siteID) { return onError( new NetlifyError({ message: "You must set a site_id with netlify.configure({site_id: 'your-site-id'}) to make token refresh work from localhost", }), ); } const url = `${this.base_url}/${this.auth_endpoint}/refresh?provider=${provider}&site_id=${siteID}&refresh_token=${refresh_token}`; const refreshPromise = fetch(url, { method: 'POST', body: '' }).then(res => res.json()); // Return a promise if a callback wasn't provided if (!cb) { return refreshPromise; } // Otherwise, use the provided callback. refreshPromise.then(data => cb(null, data)).catch(cb); } } export default Authenticator;