embarklabs
/
embark
mirror of https://github.com/embarklabs/embark.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity

authorize each request through header

This commit is contained in:
Jonathan Rainville 2018-09-06 16:06:07 -04:00 committed by Pascal Precht
parent f1f258b8f9
commit 3495f9fbb8
No known key found for this signature in database
GPG Key ID: 0EE28D8D6FD85D7D
5 changed files with 47 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
embark-ui/src/containers/AppContainer.js
View File

@ -22,8 +22,7 @@ class AppContainer extends Component {
this.state = {
authenticateError: null
};
}
componentDidMount() {
let token;
if (this.props.location.search) {
token = queryString.parse(this.props.location.search).token;
@ -37,6 +36,8 @@ class AppContainer extends Component {
}
this.setState({authenticateError: null});
});
}
componentDidMount() {
this.props.initBlockHeader();
this.props.fetchProcesses();
this.props.fetchVersions();

2
embark-ui/src/sagas/index.js
View File

@ -39,7 +39,7 @@ export const fetchFile = doRequest.bind(null, actions.file, api.fetchFile);
export const postFile = doRequest.bind(null, actions.saveFile, api.postFile);
export const deleteFile = doRequest.bind(null, actions.removeFile, api.deleteFile);
export const fetchEthGas = doRequest.bind(null, actions.gasOracle, api.getEthGasAPI);
export const authenticate = doRequest.bind(null, actions.authenticate, api.authenticate);
export const authenticate = doRequest.bind(null, actions.authenticate, api.authorize);
export const fetchCurrentFile = doRequest.bind(null, actions.currentFile, storage.fetchCurrentFile);
export const postCurrentFile = doRequest.bind(null, actions.saveCurrentFile, storage.postCurrentFile);

8
embark-ui/src/services/api.js
View File

@ -1,7 +1,9 @@
import axios from "axios";
import constants from '../constants';
import {get as cacheGet} from '../services/cache';
function get(path, params = {}, endpoint) {
axios.defaults.headers.common['Authorization'] = cacheGet('token');
const callback = params.callback || function(){};
return axios.get((endpoint || constants.httpEndpoint) + path, params)
.then((response) => {
@ -16,6 +18,7 @@ function get(path, params = {}, endpoint) {
}
function post(path, params = {}) {
axios.defaults.headers.common['Authorization'] = cacheGet('token');
const callback = params.callback || function(){};
delete params.callback;
return axios.post(constants.httpEndpoint + path, params)
@ -32,6 +35,7 @@ function post(path, params = {}) {
}
function destroy(path, params = {}) {
axios.defaults.headers.common['Authorization'] = cacheGet('token');
const callback = params.callback || function(){};
return axios.delete(constants.httpEndpoint + path, params)
.then((response) => {
@ -154,8 +158,8 @@ export function deleteFile(payload) {
return destroy('/file', {params: payload});
}
export function authenticate(payload) {
return post('/authenticate', payload);
export function authorize(payload) {
return post('/authorize', payload);
}
export function listenToChannel(channel) {

29
lib/modules/authenticator/index.js
View File

@ -1,29 +1,28 @@
const uuid = require('uuid/v1');
class Authenticator {
const ERROR_OBJ = {error: __('Wrong authentication token. Get your token from the Embark console by typing `token`')};
class Authenticator {
constructor(embark, _options) {
this.authToken = uuid();
this.embark = embark;
this.logger = embark.logger;
this.events = embark.events;
this.registerCalls();
embark.events.once('outputDone', () => {
embark.logger.info(__('Access the web backend with the following url: %s',
('http://localhost:8000/embark?token=' + this.authToken).underline));
});
this.registerEvents();
}
registerCalls() {
this.embark.registerAPICall(
'post',
'/embark-api/authenticate',
'/embark-api/authorize',
(req, res) => {
if (req.body.token !== this.authToken) {
this.logger.warn(__('Someone tried and failed to authenticate to the backend'));
this.logger.warn(__('Someone tried and failed to authorize to the backend'));
this.logger.warn(__('- User-Agent: %s', req.headers['user-agent']));
this.logger.warn(__('- Referer: %s', req.headers.referer));
return res.send({error: __('Wrong authentication token. Get your token from the Embark console by typing `token`')});
return res.send(ERROR_OBJ);
}
res.send();
}
@ -38,6 +37,20 @@ class Authenticator {
};
});
}
registerEvents() {
this.events.once('outputDone', () => {
this.logger.info(__('Access the web backend with the following url: %s',
('http://localhost:8000/embark?token=' + this.authToken).underline));
});
this.events.setCommandHandler('api:authorize', (token, cb) => {
if (token !== this.authToken) {
return cb(ERROR_OBJ);
}
cb();
});
}
}
module.exports = Authenticator;

17
lib/modules/webserver/server.js
View File

@ -97,7 +97,7 @@ class Server {
for (let apiCall of apiCalls) {
console.dir("adding " + apiCall.method + " " + apiCall.endpoint);
app[apiCall.method].apply(app, [apiCall.endpoint, apiCall.cb]);
app[apiCall.method].apply(app, [apiCall.endpoint, this.applyAPIFunction.bind(this, apiCall.cb)]);
}
}
@ -114,6 +114,11 @@ class Server {
});
});
this.events.on('plugins:register:api', (apiCall) => {
console.dir("adding " + apiCall.method + " " + apiCall.endpoint);
self.app[apiCall.method].apply(self.app, [apiCall.endpoint, this.applyAPIFunction.bind(this, apiCall.cb)]);
});
this.app.get('/embark/*', function (req, res) {
self.logger.trace('webserver> GET ' + req.path);
res.sendFile(path.join(__dirname, '../../../embark-ui/build', 'index.html'));
@ -161,6 +166,16 @@ class Server {
('http://' + canonicalHost(this.hostname) + ':' + this.port).bold.underline.green;
}
applyAPIFunction (cb, req, res) {
this.events.request('api:authorize', req.headers.authorization, (err) => {
if (err) {
const send = res.send ? res.send.bind(res) : req.send.bind(req); // WS only has the first params
return send(err);
}
cb(req, res);
});
}
stop(callback) {
callback = callback || function () {};
if (!this.server || !this.server.listening) {