status-im
/
realm-js
mirror of https://github.com/status-im/realm-js.git
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
realm-js/lib/user-methods.js

669 lines
23 KiB
JavaScript
Raw Normal View History

Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
////////////////////////////////////////////////////////////////////////////
//
// Copyright 2016 Realm Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
//
////////////////////////////////////////////////////////////////////////////
hook up new object store apis
2016-10-20 00:55:46 +00:00
'use strict';
start implementing sync tests
2016-11-08 16:59:30 +00:00
const AuthError = require('./errors').AuthError;
Permissions api (#1244) * Add basic permissions skeleton * ... * Update permissions api * Wait for server to process management realm, add offer api * Fix test of apply and get permissions, add offer test * Accept permission offer * Accept permission offer test * Invalidate permission offer * Add basic docs (still need some links etc) * Refactor tests * Only run permission tests where sync is enabled * Use legal syntax for user name generation * Add changelog entry * Streamline permission tests * Fix casing for access level names etc. * Add basic definitions to index.d.ts * Use settimeout for resolving promise from listener * Complete typescript defs * Improve docs * Allow 'any' as default recipient in getGrantedPermissions * Fix getSpecialPurposeRealm on iOS * Response to PR comments * Respond to PR comments * Fix offer description * Skip permission tests in chrome debugger :-/
2017-08-29 13:23:22 +00:00
const permissionApis = require('./permission-api');
start implementing sync tests
2016-11-08 16:59:30 +00:00
Query-based sync as the default sync mode (#1830)
2018-05-30 10:54:51 +00:00
const merge = require('deepmerge');
Workaround for RN >= 0.49 metro-bundler check for single string literal argument to require() (#1342)
2017-09-26 04:20:28 +00:00
const require_method = require;
Query-based sync as the default sync mode (#1830)
2018-05-30 10:54:51 +00:00
const URL = require('url-parse');
Workaround for RN >= 0.49 metro-bundler check for single string literal argument to require() (#1342)
2017-09-26 04:20:28 +00:00
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
const refreshTimers = {};
Add lower bound when refreshing tokens. (#2116)
2018-11-16 12:58:32 +00:00
const retryInterval = 5 * 1000; // Amount of time between retrying authentication requests, if the first request failed.
const refreshBuffer = 20 * 1000; // A "safe" amount of time before a token expires that allow us to refresh it.
const refreshLowerBound = 10 * 1000; // Lower bound for refreshing tokens.
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
hook up new object store apis
2016-10-20 00:55:46 +00:00
function node_require(module) {
Workaround for RN >= 0.49 metro-bundler check for single string literal argument to require() (#1342)
2017-09-26 04:20:28 +00:00
return require_method(module);
hook up new object store apis
2016-10-20 00:55:46 +00:00
}
Validate user-methods parameters (#924) * Validate user-methods parameters * Switch homemade typeof operator for real one. * Fix array prototype access
2017-03-20 11:52:41 +00:00
function checkTypes(args, types) {
args = Array.prototype.slice.call(args);
for (var i = 0; i < types.length; ++i) {
checkTypes() must only check the shortest array (#1297) * Allow optional arguments when checking types
2017-09-12 13:17:59 +00:00
if (args.length > i && typeof args[i] !== types[i]) {
Validate user-methods parameters (#924) * Validate user-methods parameters * Switch homemade typeof operator for real one. * Fix array prototype access
2017-03-20 11:52:41 +00:00
throw new TypeError('param ' + i + ' must be of type ' + types[i]);
}
}
}
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
function checkObjectTypes(obj, types) {
for (const name of Object.getOwnPropertyNames(types)) {
const actualType = typeof obj[name];
let targetType = types[name];
const isOptional = targetType[targetType.length - 1] === '?';
if (isOptional) {
targetType = targetType.slice(0, -1);
}
if (!isOptional && actualType === 'undefined') {
throw new Error(`${name} is required, but a value was not provided.`);
}
if (actualType !== targetType) {
throw new TypeError(`${name} must be of type '${targetType}' but was of type '${actualType}' instead.`);
}
}
}
Throttle HTTP requests made to the auth server Making thousands of HTTP requests simultaneously inevitably results in some failing or the server being overwhelmed, so limit how many can be made at once (currently to the arbitrary cap of 5) and enqueue any further requests.
2018-03-15 23:08:48 +00:00
// Perform a HTTP request, enqueuing it if too many requests are already in
// progress to avoid hammering the server.
const performFetch = (function() {
const doFetch = typeof fetch === 'undefined' ? node_require('node-fetch') : fetch;
const queue = [];
let count = 0;
const maxCount = 5;
const next = () => {
if (count >= maxCount) {
return;
}
const req = queue.shift();
if (!req) {
return;
}
const [url, options, resolve, reject] = req;
++count;
// node doesn't support Promise.prototype.finally until 10
doFetch(url, options)
.then(response => {
--count;
next();
resolve(response);
})
.catch(error => {
--count;
next();
reject(error);
});
};
return (url, options) => {
return new Promise((resolve, reject) => {
queue.push([url, options, resolve, reject]);
next();
});
};
})();
hook up new object store apis
2016-10-20 00:55:46 +00:00
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
const url_parse = require('url-parse');
hook up new object store apis
2016-10-20 00:55:46 +00:00
Add tests for retrieveAccount method fix admin-user-helper wait for admin to correctly wait
2017-07-06 09:27:01 +00:00
const postHeaders = {
hook up new object store apis
2016-10-20 00:55:46 +00:00
'content-type': 'application/json;charset=utf-8',
'accept': 'application/json'
};
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
function append_url(server, path) {
return server + (server.charAt(server.length - 1) != '/' ? '/' : '') + path;
start implementing sync tests
2016-11-08 16:59:30 +00:00
}
Implement proactive access token refresh (#842) Closes #840
2017-02-03 15:40:13 +00:00
function scheduleAccessTokenRefresh(user, localRealmPath, realmUrl, expirationDate) {
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
let userTimers = refreshTimers[user.identity];
if (!userTimers) {
refreshTimers[user.identity] = userTimers = {};
}
// We assume that access tokens have ~ the same expiration time, so if someone already
// scheduled a refresh, it's likely to complete before the one we would have scheduled
if (!userTimers[localRealmPath]) {
Add lower bound when refreshing tokens. (#2116)
2018-11-16 12:58:32 +00:00
const timeout = Math.max(expirationDate - Date.now() - refreshBuffer, refreshLowerBound);
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
userTimers[localRealmPath] = setTimeout(() => {
delete userTimers[localRealmPath];
refreshAccessToken(user, localRealmPath, realmUrl);
}, timeout);
}
Implement proactive access token refresh (#842) Closes #840
2017-02-03 15:40:13 +00:00
}
Expose admin users to JS (#1100) The JS binding used to conflate `SyncUser::is_admin()` with the user being created by calling `Realm.Sync.User.adminToken()`, but now that we expose a user’s role on the server under `is_admin()` this supposition is no longer correct. #1097 attempted to fix one such case, but fixing it only uncovered another: in `UserClass<T>::all_users()`. I’ve gone through all the callsites of `SyncUser::is_admin()` to make sure they don’t assume an admin token user.
2017-06-27 18:32:34 +00:00
function print_error() {
(console.error || console.log).apply(console, arguments);
}
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
function validateRefresh(user, localRealmPath, response, json) {
let session = user._sessionForOnDiskPath(localRealmPath);
if (!session) {
return;
}
const errorHandler = session.config.error;
if (response.status != 200) {
let error = new AuthError(json);
if (errorHandler) {
errorHandler(session, error);
} else {
Testing against ROS 3.0.0. (#1712) * Testing against ROS 3.0.0. * Adding Realm.Sync.Subscription.removeAllListeners. Refactor partial sync tests. * Refactoring partial sync tests.
2018-03-21 17:18:37 +00:00
print_error(`Unhandled session token refresh error for user ${user.identity} at path ${localRealmPath}`, error);
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
}
return;
}
if (session.state === 'invalid') {
return;
}
return session;
}
function refreshAdminToken(user, localRealmPath, realmUrl) {
const token = user.token;
const server = user.server;
// We don't need to actually refresh the token, but we need to let ROS know
// we're accessing the file and get the sync label for multiplexing
let parsedRealmUrl = url_parse(realmUrl);
const url = append_url(user.server, 'realms/files/' + encodeURIComponent(parsedRealmUrl.pathname));
performFetch(url, {method: 'GET', timeout: 10000.0, headers: {Authorization: user.token}})
Support opening Realms with an admin token without a working ROS directory service (#1615) * Support opening Realms with an admin token without a working ROS directory service
2018-01-13 09:02:08 +00:00
.then((response) => {
// There may not be a Realm Directory Service running on the server
// we're talking to. If we're talking directly to the sync service
// we'll get a 404, and if we're running inside ROS we'll get a 503 if
// the directory service hasn't started yet (perhaps because we got
// called due to the directory service itself opening some Realms).
//
// In both of these cases we can just pretend we got a valid response.
if (response.status === 404 || response.status === 503) {
return {response: {status: 200}, json: {path: parsedRealmUrl.pathname, syncLabel: '_direct'}};
}
else {
return response.json().then((json) => { return { response, json }; });
}
})
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
.then((responseAndJson) => {
const response = responseAndJson.response;
const json = responseAndJson.json;
Auth fixes (#2050) * Auth fixes - Typescript definitions for User.login - Exception thrown from registerWithProvider when a userInfo is not specified * Ensure we don't use adminUser internally
2018-10-08 13:01:12 +00:00
const credentials = credentialsMethods.adminToken(token)
const newUser = user.constructor.login(server, credentials);
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
const session = validateRefresh(newUser, localRealmPath, response, json);
if (session) {
parsedRealmUrl.set('pathname', json.path);
session._refreshAccessToken(user.token, parsedRealmUrl.href, json.syncLabel);
}
Adding catch to refreshAdminToken. (#1631)
2018-01-18 12:26:14 +00:00
})
.catch((e) => {
print_error(e);
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
setTimeout(() => refreshAccessToken(user, localRealmPath, realmUrl), retryInterval);
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
});
}
Implement proactive access token refresh (#842) Closes #840
2017-02-03 15:40:13 +00:00
function refreshAccessToken(user, localRealmPath, realmUrl) {
Don't refresh tokens for sessions that have been closed (#2119) * Don't refresh tokens for sessions that have been closed * Changelog entry
2018-11-19 11:05:59 +00:00
if (!user._sessionForOnDiskPath(localRealmPath)) {
// We're trying to refresh the token for a session that's closed. This could happen, for example,
// when the server is not reachable and we periodically try to refresh the token, but the user has
// already closed the Realm file.
return;
}
Fix creating admin token users
2017-08-31 19:38:10 +00:00
if (!user.server) {
throw new Error("Server for user must be specified");
}
Throw a meaningful error when refreshing a token for an invalid Realm path (#2084) * Throw a meaningful error when refreshing a token for an invalid Realm path * Changelog * Fix a typo * Fix a test
2018-10-23 22:33:34 +00:00
const parsedRealmUrl = url_parse(realmUrl);
const path = parsedRealmUrl.pathname;
if (!path) {
throw new Error(`Unexpected Realm path inferred from url '${realmUrl}'. The path section of the url should be a non-empty string.`);
}
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
if (user.isAdminToken) {
return refreshAdminToken(user, localRealmPath, realmUrl);
}
const url = append_url(user.server, 'auth');
Sync Session API (#825) * Add Session class and expose it to JS * Add error property on the sync config object for the event handler * tests * refactor access token refresh * chrome debugging
2017-02-01 13:18:59 +00:00
const options = {
Add missing chrome debugging apis for Sync.User (#801) * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Replace needle with node-fetch * Make AuthError work in the browser * Allow for persistent callbacks * Expose _authenticateRealm to native * Use clear_test_state in roc * Streamline test inclusion * Fix login tests * Promisify testLogin() * Disable AsyncTests for now * Mode jasmine timeout to spec/unit_tests.js * Avoid use of global for fetch module * Only include user-tests is sync is enabled * Skip ROS for android tests * Add some comments about persistent callbacks * Fix results-test * Run async-tests in node * Add a comment about (user object) * Cache all users in User.current and return promises in fetch * node_require async-tests so RN doesn't try and package them * Add missing parenthesis
2017-01-31 13:07:29 +00:00
method: 'POST',
body: JSON.stringify({
data: user.token,
Throw a meaningful error when refreshing a token for an invalid Realm path (#2084) * Throw a meaningful error when refreshing a token for an invalid Realm path * Changelog * Fix a typo * Fix a test
2018-10-23 22:33:34 +00:00
path,
Add missing chrome debugging apis for Sync.User (#801) * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Replace needle with node-fetch * Make AuthError work in the browser * Allow for persistent callbacks * Expose _authenticateRealm to native * Use clear_test_state in roc * Streamline test inclusion * Fix login tests * Promisify testLogin() * Disable AsyncTests for now * Mode jasmine timeout to spec/unit_tests.js * Avoid use of global for fetch module * Only include user-tests is sync is enabled * Skip ROS for android tests * Add some comments about persistent callbacks * Fix results-test * Run async-tests in node * Add a comment about (user object) * Cache all users in User.current and return promises in fetch * node_require async-tests so RN doesn't try and package them * Add missing parenthesis
2017-01-31 13:07:29 +00:00
provider: 'realm',
app_id: ''
}),
Specify a timeout when making the HTTP request to refresh access tokens. (#1356) * Specify a timeout when making the HTTP request to refresh access tokens. Without the timeout, some requests are silently never made. Fixes realm/realm-js-private#338. * Add a changelog entry.
2017-09-27 20:52:14 +00:00
headers: postHeaders,
// FIXME: This timeout appears to be necessary in order for some requests to be sent at all.
// See https://github.com/realm/realm-js-private/issues/338 for details.
Increase the token refresh timeout to 10 sec (#1584)
2017-12-21 13:14:07 +00:00
timeout: 10000.0
Add missing chrome debugging apis for Sync.User (#801) * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Replace needle with node-fetch * Make AuthError work in the browser * Allow for persistent callbacks * Expose _authenticateRealm to native * Use clear_test_state in roc * Streamline test inclusion * Fix login tests * Promisify testLogin() * Disable AsyncTests for now * Mode jasmine timeout to spec/unit_tests.js * Avoid use of global for fetch module * Only include user-tests is sync is enabled * Skip ROS for android tests * Add some comments about persistent callbacks * Fix results-test * Run async-tests in node * Add a comment about (user object) * Cache all users in User.current and return promises in fetch * node_require async-tests so RN doesn't try and package them * Add missing parenthesis
2017-01-31 13:07:29 +00:00
};
Sync Session API (#825) * Add Session class and expose it to JS * Add error property on the sync config object for the event handler * tests * refactor access token refresh * chrome debugging
2017-02-01 13:18:59 +00:00
performFetch(url, options)
Implement proactive access token refresh (#842) Closes #840
2017-02-03 15:40:13 +00:00
.then((response) => response.json().then((json) => { return { response, json }; }))
.then((responseAndJson) => {
const response = responseAndJson.response;
const json = responseAndJson.json;
Propagate token refresh errors to the session error handler (#843) * Get a session’s error handler * Change the signature of all methods to add the callee * Deserialize rpc callbacks * Expose the session error handle on its config property * When a token refresh error occurs and there is a session error handler propagate the error to the handler
2017-02-07 10:01:26 +00:00
// Look up a fresh instance of the user.
// We do this because in React Native Remote Debugging
// `Realm.clearTestState()` will have invalidated the user object
When refreshing the token, look up the user in a way that doesn't suffer from #1586 (#1587) * When refreshing the token, look up the user in a way that doesn't suffer from #1586 Expose a means of looking up a user by identity and server to avoid problems if the same user identity exists for multiple servers, which can happen when connecting to the same server via different hostnames. * Return undefined if the user doesn't exist rather than returning an object wrapping a null SyncUser.
2018-01-11 15:00:31 +00:00
let newUser = user.constructor._getExistingUser(user.server, user.identity);
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
if (!newUser) {
return;
}
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
const session = validateRefresh(newUser, localRealmPath, response, json);
if (!session) {
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
return;
Sync Session API (#825) * Add Session class and expose it to JS * Add error property on the sync config object for the event handler * tests * refactor access token refresh * chrome debugging
2017-02-01 13:18:59 +00:00
}
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
const tokenData = json.access_token.token_data;
parsedRealmUrl.set('pathname', tokenData.path);
session._refreshAccessToken(json.access_token.token, parsedRealmUrl.href, tokenData.sync_label);
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
const errorHandler = session.config.error;
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
if (errorHandler && errorHandler._notifyOnAccessTokenRefreshed) {
errorHandler(session, errorHandler._notifyOnAccessTokenRefreshed)
}
const tokenExpirationDate = new Date(tokenData.expires * 1000);
scheduleAccessTokenRefresh(newUser, localRealmPath, realmUrl, tokenExpirationDate);
Fix unhandled promise rejection warnings when access token refreshing fails
2017-08-31 17:39:48 +00:00
})
Report what went wrong when refreshAccessToken fails
2017-08-31 17:50:23 +00:00
.catch((e) => {
print_error(e);
Don't refresh tokens for sessions that have been closed (#2119) * Don't refresh tokens for sessions that have been closed * Changelog entry
2018-11-19 11:05:59 +00:00
// in case something lower in the HTTP stack breaks, try again in `retryInterval` seconds
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
setTimeout(() => refreshAccessToken(user, localRealmPath, realmUrl), retryInterval);
Report what went wrong when refreshAccessToken fails
2017-08-31 17:50:23 +00:00
})
Add missing chrome debugging apis for Sync.User (#801) * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Replace needle with node-fetch * Make AuthError work in the browser * Allow for persistent callbacks * Expose _authenticateRealm to native * Use clear_test_state in roc * Streamline test inclusion * Fix login tests * Promisify testLogin() * Disable AsyncTests for now * Mode jasmine timeout to spec/unit_tests.js * Avoid use of global for fetch module * Only include user-tests is sync is enabled * Skip ROS for android tests * Add some comments about persistent callbacks * Fix results-test * Run async-tests in node * Add a comment about (user object) * Cache all users in User.current and return promises in fetch * node_require async-tests so RN doesn't try and package them * Add missing parenthesis
2017-01-31 13:07:29 +00:00
}
adding promisified apis
2017-08-24 18:01:12 +00:00
/**
* The base authentication method. It fires a JSON POST to the server parameter plus the auth url
* For example, if the server parameter is `http://myapp.com`, this url will post to `http://myapp.com/auth`
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
* @param {object} userConstructor
* @param {string} server the http or https server url
adding promisified apis
2017-08-24 18:01:12 +00:00
* @param {object} json the json to post to the auth endpoint
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
* @param {Function} callback an optional callback with an error and user parameter
adding promisified apis
2017-08-24 18:01:12 +00:00
* @returns {Promise} only returns a promise if the callback parameter was omitted
*/
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
function _authenticate(userConstructor, server, json) {
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
json.app_id = '';
Perform a pseudo-refresh for admin token users (#1599) * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Perform a pseudo-refresh for admin token users Although we don't need to actually refresh the token, when multiplexing is enabled we do still need to hit ROS to let it know we're accessing a Realm and get the sync label. * Adding brief JSdoc and TS definition for isAdminToken. * Make the timeout consistent * Add basic docs for multiprocess notifications (#1594) * Add basic docs for multiprocess notifications * Adopt core's query parser and update to core v5.1.2 (#1563) * Adopt core's query parser. * Realm Core 5.1.2 * Realm Sync 2.2.9 * Remove tar.xz (#1585) * remove tar.xz decompression and lzma deps * Fixing merge * Updating object store
2018-01-11 13:47:54 +00:00
const url = append_url(server, 'auth');
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
const options = {
method: 'POST',
body: JSON.stringify(json),
headers: postHeaders,
open_timeout: 5000
};
Fix _authenticate method to use promises only
2017-09-12 20:04:20 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return performFetch(url, options)
Add tests for retrieveAccount method fix admin-user-helper wait for admin to correctly wait
2017-07-06 09:27:01 +00:00
.then((response) => {
Checking the content-type of authentication responses (#1556) * Checking the content-type of authentication responses * Adding a changelog entry * Fixing changelog typos and line endings
2017-12-07 09:36:24 +00:00
const contentType = response.headers.get('Content-Type');
if (contentType.indexOf('application/json') === -1) {
return response.text().then((body) => {
throw new AuthError({
title: `Could not authenticate: Realm Object Server didn't respond with valid JSON`,
body,
});
});
} else if (!response.ok) {
Fix _authenticate method to use promises only
2017-09-12 20:04:20 +00:00
return response.json().then((body) => Promise.reject(new AuthError(body)));
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
} else {
return response.json().then(function (body) {
// TODO: validate JSON
const token = body.refresh_token.token;
const identity = body.refresh_token.token_data.identity;
Extract admin status from the refresh token (#1078) * Extract admin status from the refresh token Fixes #1063 * wire up rpc
2017-06-17 14:59:15 +00:00
const isAdmin = body.refresh_token.token_data.is_admin;
Fix _authenticate method to use promises only
2017-09-12 20:04:20 +00:00
return userConstructor.createUser(server, identity, token, false, isAdmin);
});
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
}
adding promisified apis
2017-08-24 18:01:12 +00:00
});
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
}
hook up new object store apis
2016-10-20 00:55:46 +00:00
Add password reset wrappers (#1699). (#1757) * Add password reset wrappers (#1699).
2018-04-25 09:23:47 +00:00
function _updateAccount(userConstructor, server, json) {
const url = append_url(server, 'auth/password/updateAccount');
const options = {
method: 'POST',
body: JSON.stringify(json),
headers: postHeaders,
open_timeout: 5000
};
return performFetch(url, options)
.then((response) => {
const contentType = response.headers.get('Content-Type');
if (contentType.indexOf('application/json') === -1) {
return response.text().then((body) => {
throw new AuthError({
title: `Could not update user account: Realm Object Server didn't respond with valid JSON`,
body,
});
});
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
}
Add password reset wrappers (#1699). (#1757) * Add password reset wrappers (#1699).
2018-04-25 09:23:47 +00:00
if (!response.ok) {
return response.json().then((body) => Promise.reject(new AuthError(body)));
}
});
}
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
const credentialsMethods = {
usernamePassword(username, password, createUser) {
checkTypes(arguments, ['string', 'string', 'boolean']);
return new Credentials('password', username, { register: createUser, password });
},
facebook(token) {
checkTypes(arguments, ['string']);
return new Credentials('facebook', token);
},
google(token) {
checkTypes(arguments, ['string']);
return new Credentials('google', token);
},
anonymous() {
return new Credentials('anonymous');
},
nickname(value, isAdmin) {
checkTypes(arguments, ['string', 'boolean']);
return new Credentials('nickname', value, { is_admin: isAdmin || false });
},
azureAD(token) {
checkTypes(arguments, ['string']);
return new Credentials('azuread', token)
},
jwt(token, providerName) {
checkTypes(arguments, ['string', 'string']);
return new Credentials(providerName || 'jwt', token);
},
adminToken(token) {
checkTypes(arguments, ['string']);
return new Credentials('adminToken', token);
},
custom(providerName, token, userInfo) {
Auth fixes (#2050) * Auth fixes - Typescript definitions for User.login - Exception thrown from registerWithProvider when a userInfo is not specified * Ensure we don't use adminUser internally
2018-10-08 13:01:12 +00:00
if (userInfo) {
checkTypes(arguments, ['string', 'string', 'object']);
} else {
checkTypes(arguments, ['string', 'string']);
}
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return new Credentials(providerName, token, userInfo);
}
}
Permissions api (#1244) * Add basic permissions skeleton * ... * Update permissions api * Wait for server to process management realm, add offer api * Fix test of apply and get permissions, add offer test * Accept permission offer * Accept permission offer test * Invalidate permission offer * Add basic docs (still need some links etc) * Refactor tests * Only run permission tests where sync is enabled * Use legal syntax for user name generation * Add changelog entry * Streamline permission tests * Fix casing for access level names etc. * Add basic definitions to index.d.ts * Use settimeout for resolving promise from listener * Complete typescript defs * Improve docs * Allow 'any' as default recipient in getGrantedPermissions * Fix getSpecialPurposeRealm on iOS * Response to PR comments * Respond to PR comments * Fix offer description * Skip permission tests in chrome debugger :-/
2017-08-29 13:23:22 +00:00
const staticMethods = {
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
get current() {
const allUsers = this.all;
const keys = Object.keys(allUsers);
if (keys.length === 0) {
return undefined;
} else if (keys.length > 1) {
throw new Error("Multiple users are logged in");
}
Add missing chrome debugging apis for Sync.User (#801) * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Replace needle with node-fetch * Make AuthError work in the browser * Allow for persistent callbacks * Expose _authenticateRealm to native * Use clear_test_state in roc * Streamline test inclusion * Fix login tests * Promisify testLogin() * Disable AsyncTests for now * Mode jasmine timeout to spec/unit_tests.js * Avoid use of global for fetch module * Only include user-tests is sync is enabled * Skip ROS for android tests * Add some comments about persistent callbacks * Fix results-test * Run async-tests in node * Add a comment about (user object) * Cache all users in User.current and return promises in fetch * node_require async-tests so RN doesn't try and package them * Add missing parenthesis
2017-01-31 13:07:29 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return allUsers[keys[0]];
},
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
login(server, credentials) {
if (arguments.length === 3) {
// Deprecated legacy signature.
checkTypes(arguments, ['string', 'string', 'string']);
console.warn("User.login is deprecated. Please use User.login(server, Credentials.usernamePassword(...)) instead.");
const newCredentials = credentialsMethods.usernamePassword(arguments[1], arguments[2], /* createUser */ false);
return this.login(server, newCredentials);
}
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
checkTypes(arguments, ['string', 'object']);
if (credentials.identityProvider === 'adminToken') {
Logging in using admin token should also return a promise (#2038) * Logging in using admin token should also return a promise * use the node_require trick
2018-09-21 12:24:37 +00:00
let u = this._adminUser(server, credentials.token);
Logging in using an admin token should be synchronous (#2040) * Logging in using an admin token should be synchronous
2018-09-24 10:43:44 +00:00
return u;
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
}
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return _authenticate(this, server, credentials);
},
Fix _authenticate method to use promises only
2017-09-12 20:04:20 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
deserialize(serialized) {
checkObjectTypes(serialized, {
server: 'string',
identity: 'string',
refreshToken: 'string',
isAdmin: 'boolean',
});
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return this.createUser(serialized.server, serialized.identity, serialized.refreshToken, false, serialized.isAdmin || false);
},
Add optional userInfo param to registerWithProvider (#915) * Add optional userInfo param to registerWithProvider * Fixes per PR comments
2017-03-17 13:13:03 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
requestPasswordReset(server, email) {
checkTypes(arguments, ['string', 'string']);
const json = {
provider_id: email,
data: { action: 'reset_password' }
};
Add optional userInfo param to registerWithProvider (#915) * Add optional userInfo param to registerWithProvider * Fixes per PR comments
2017-03-17 13:13:03 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return _updateAccount(this, server, json);
},
Add optional userInfo param to registerWithProvider (#915) * Add optional userInfo param to registerWithProvider * Fixes per PR comments
2017-03-17 13:13:03 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
completePasswordReset(server, resetToken, newPassword) {
checkTypes(arguments, ['string', 'string']);
const json = {
data: {
action: 'complete_reset',
token: resetToken,
new_password: newPassword
Add optional userInfo param to registerWithProvider (#915) * Add optional userInfo param to registerWithProvider * Fixes per PR comments
2017-03-17 13:13:03 +00:00
}
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
};
return _updateAccount(this, server, json);
},
requestEmailConfirmation(server, email) {
checkTypes(arguments, ['string', 'string']);
const json = {
provider_id: email,
data: { action: 'request_email_confirmation' }
};
return _updateAccount(this, server, json);
},
Add optional userInfo param to registerWithProvider (#915) * Add optional userInfo param to registerWithProvider * Fixes per PR comments
2017-03-17 13:13:03 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
confirmEmail(server, confirmationToken) {
checkTypes(arguments, ['string', 'string']);
const json = {
data: {
action: 'confirm_email',
token: confirmationToken
add deprecated warnings
2017-09-12 17:38:43 +00:00
}
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
};
return _updateAccount(this, server, json);
},
_refreshAccessToken: refreshAccessToken,
Use the sync label as the multiplex identifier
2017-11-15 00:09:50 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
// Deprecated...
adminUser(token, server) {
checkTypes(arguments, ['string', 'string']);
console.warn("User.adminUser is deprecated. Please use User.login(server, Credentials.adminToken(token)) instead.");
const credentials = credentialsMethods.adminToken(token);
return this.login(server, credentials);
},
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
register(server, username, password) {
checkTypes(arguments, ['string', 'string', 'string']);
console.warn("User.register is deprecated. Please use User.login(server, Credentials.usernamePassword(...)) instead.");
const credentials = credentialsMethods.usernamePassword(username, password, /* createUser */ true);
return this.login(server, credentials);
},
registerWithProvider(server, options) {
checkTypes(arguments, ['string', 'object']);
console.warn("User.registerWithProvider is deprecated. Please use User.login(server, Credentials.SOME-PROVIDER(...)) instead.");
const credentials = credentialsMethods.custom(options.provider, options.providerToken, options.userInfo);
return this.login(server, credentials);
},
Adding JWT auth (#1564) * Adding method Realm.Sync.User.authenticate() * Adding JWT provider support to Realm.Sync.User.authenticate() * Adding password provider support to Realm.Sync.User.authenticate()
2018-01-05 08:38:53 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
authenticate(server, provider, options) {
checkTypes(arguments, ['string', 'string', 'object'])
console.warn("User.authenticate is deprecated. Please use User.login(server, Credentials.SOME-PROVIDER(...)) instead.");
let credentials;
switch (provider.toLowerCase()) {
Adding JWT auth (#1564) * Adding method Realm.Sync.User.authenticate() * Adding JWT provider support to Realm.Sync.User.authenticate() * Adding password provider support to Realm.Sync.User.authenticate()
2018-01-05 08:38:53 +00:00
case 'jwt':
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
credentials = credentialsMethods.jwt(options.token, 'jwt');
Adding JWT auth (#1564) * Adding method Realm.Sync.User.authenticate() * Adding JWT provider support to Realm.Sync.User.authenticate() * Adding password provider support to Realm.Sync.User.authenticate()
2018-01-05 08:38:53 +00:00
break
case 'password':
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
credentials = credentialsMethods.usernamePassword(options.username, options.password);
Adding JWT auth (#1564) * Adding method Realm.Sync.User.authenticate() * Adding JWT provider support to Realm.Sync.User.authenticate() * Adding password provider support to Realm.Sync.User.authenticate()
2018-01-05 08:38:53 +00:00
break
default:
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
credentials = credentialsMethods.custom(provider, options.data, options.user_info || options.userInfo);
break;
}
Add password reset wrappers (#1699). (#1757) * Add password reset wrappers (#1699).
2018-04-25 09:23:47 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
return this.login(server, credentials);
},
Adding JWT auth (#1564) * Adding method Realm.Sync.User.authenticate() * Adding JWT provider support to Realm.Sync.User.authenticate() * Adding password provider support to Realm.Sync.User.authenticate()
2018-01-05 08:38:53 +00:00
};
Permissions api (#1244) * Add basic permissions skeleton * ... * Update permissions api * Wait for server to process management realm, add offer api * Fix test of apply and get permissions, add offer test * Accept permission offer * Accept permission offer test * Invalidate permission offer * Add basic docs (still need some links etc) * Refactor tests * Only run permission tests where sync is enabled * Use legal syntax for user name generation * Add changelog entry * Streamline permission tests * Fix casing for access level names etc. * Add basic definitions to index.d.ts * Use settimeout for resolving promise from listener * Complete typescript defs * Improve docs * Allow 'any' as default recipient in getGrantedPermissions * Fix getSpecialPurposeRealm on iOS * Response to PR comments * Respond to PR comments * Fix offer description * Skip permission tests in chrome debugger :-/
2017-08-29 13:23:22 +00:00
const instanceMethods = {
Revoke refresh token upon logout. (#1696) * Revoke refresh token upon logout. * Always log out
2018-03-09 14:51:45 +00:00
logout() {
this._logout();
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
const userTimers = refreshTimers[this.identity];
if (userTimers) {
Object.keys(userTimers).forEach((key) => {
clearTimeout(userTimers[key]);
});
delete refreshTimers[this.identity];
}
Revoke refresh token upon logout. (#1696) * Revoke refresh token upon logout. * Always log out
2018-03-09 14:51:45 +00:00
const url = url_parse(this.server);
url.set('pathname', '/auth/revoke');
const headers = {
Authorization: this.token
};
Stringify fetch body in logout (#1731) * Stringify fetch body in logout * Update changelog
2018-04-17 13:01:02 +00:00
const body = JSON.stringify({
Revoke refresh token upon logout. (#1696) * Revoke refresh token upon logout. * Always log out
2018-03-09 14:51:45 +00:00
token: this.token
Stringify fetch body in logout (#1731) * Stringify fetch body in logout * Update changelog
2018-04-17 13:01:02 +00:00
});
Revoke refresh token upon logout. (#1696) * Revoke refresh token upon logout. * Always log out
2018-03-09 14:51:45 +00:00
const options = {
method: 'POST',
headers,
body: body,
open_timeout: 5000
};
Don't schedule multiple token refreshes for the same user/realm (#2071) * Don't schedule multiple token refreshes for the same user/realm * Avoid setting a const property
2018-10-15 12:20:19 +00:00
return performFetch(url.href, options)
.catch((e) => print_error('An error occurred while logging out a user', e));
Revoke refresh token upon logout. (#1696) * Revoke refresh token upon logout. * Always log out
2018-03-09 14:51:45 +00:00
},
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
serialize() {
return {
server: this.server,
refreshToken: this.token,
identity: this.identity,
isAdmin: this.isAdmin,
};
},
openManagementRealm() {
let url = url_parse(this.server);
if (url.protocol === 'http:') {
url.set('protocol', 'realm:');
} else if (url.protocol === 'https:') {
url.set('protocol', 'realms:');
} else {
throw new Error(`Unexpected user auth url: ${this.server}`);
}
Add missing chrome debugging apis for Sync.User (#801) * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Add user tests * Add Sync member to Realm * Add a simple test for addListener * Introduce browser User class * Introduce Sync.User proxy * Fix User.all * Add User.logout * Remove some console.log statements * Update rpc.cpp from tests-folder * Use user.current from user-methods, not cpp * remove user.current from two missing places * Start server in realmjs and react tests * Replace needle with node-fetch * Make AuthError work in the browser * Allow for persistent callbacks * Expose _authenticateRealm to native * Use clear_test_state in roc * Streamline test inclusion * Fix login tests * Promisify testLogin() * Disable AsyncTests for now * Mode jasmine timeout to spec/unit_tests.js * Avoid use of global for fetch module * Only include user-tests is sync is enabled * Skip ROS for android tests * Add some comments about persistent callbacks * Fix results-test * Run async-tests in node * Add a comment about (user object) * Cache all users in User.current and return promises in fetch * node_require async-tests so RN doesn't try and package them * Add missing parenthesis
2017-01-31 13:07:29 +00:00
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
url.set('pathname', '/~/__management');
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
return new this.constructor._realmConstructor({
schema: require('./management-schema'),
sync: {
user: this,
url: url.href
}
});
},
retrieveAccount(provider, provider_id) {
checkTypes(arguments, ['string', 'string']);
const url = url_parse(this.server);
url.set('pathname', `/auth/users/${provider}/${provider_id}`);
const headers = {
Authorization: this.token
};
const options = {
method: 'GET',
headers,
open_timeout: 5000
};
return performFetch(url.href, options)
.then((response) => {
if (response.status !== 200) {
return response.json()
.then(body => {
throw new AuthError(body);
});
} else {
return response.json();
Add Permissions models and User Management Realm API (#824) * Add Permissions models and User Management Realm API * docs and changelog * fix bad merge * add test * fix jsdoc annotation * rename permissions to management schema
2017-01-31 21:56:09 +00:00
}
});
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
},
createConfiguration(config) {
Query-based sync as the default sync mode (#1830)
2018-05-30 10:54:51 +00:00
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
if (config && config.sync) {
if (config.sync.user && console.warn !== undefined) {
console.warn(`'user' property will be overridden by ${this.identity}`);
}
if (config.sync.partial !== undefined && config.sync.fullSynchronization !== undefined) {
throw new Error("'partial' and 'fullSynchronization' were both set. 'partial' has been deprecated, use only 'fullSynchronization'");
Query-based sync as the default sync mode (#1830)
2018-05-30 10:54:51 +00:00
}
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
}
Query-based sync as the default sync mode (#1830)
2018-05-30 10:54:51 +00:00
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
// Create default config
let url = new URL(this.server);
let secure = (url.protocol === 'https:')?'s':'';
let port = (url.port === undefined)?'9080':url.port;
let realmUrl = `realm${secure}://${url.hostname}:${port}/default`;
let defaultConfig = {
sync: {
user: this,
url: realmUrl,
},
};
Query-based sync as the default sync mode (#1830)
2018-05-30 10:54:51 +00:00
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
// Set query-based as the default setting if the user doesn't specified any other behaviour.
if (!(config && config.sync && config.sync.partial)) {
defaultConfig.sync.fullSynchronization = false;
}
Automatically add schemas for object level permissions. (#1970)
2018-08-17 08:10:20 +00:00
Expose user serialize and deserialize methods (#1996) * Expose serialize and deserialize methods * Changelog and docs * Forgot to save changelog 🤦‍♂️ * Add input validation
2018-08-28 13:01:32 +00:00
// Merge default configuration with user provided config. User defined properties should aways win.
// Doing the naive merge in JS break objects that are backed by native objects, so these needs to
// be merged manually. This is currently only `sync.user`.
let mergedConfig = (config === undefined) ? defaultConfig : merge(defaultConfig, config);
mergedConfig.sync.user = this;
return mergedConfig;
},
};
Permissions api (#1244) * Add basic permissions skeleton * ... * Update permissions api * Wait for server to process management realm, add offer api * Fix test of apply and get permissions, add offer test * Accept permission offer * Accept permission offer test * Invalidate permission offer * Add basic docs (still need some links etc) * Refactor tests * Only run permission tests where sync is enabled * Use legal syntax for user name generation * Add changelog entry * Streamline permission tests * Fix casing for access level names etc. * Add basic definitions to index.d.ts * Use settimeout for resolving promise from listener * Complete typescript defs * Improve docs * Allow 'any' as default recipient in getGrantedPermissions * Fix getSpecialPurposeRealm on iOS * Response to PR comments * Respond to PR comments * Fix offer description * Skip permission tests in chrome debugger :-/
2017-08-29 13:23:22 +00:00
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
class Credentials {
constructor(identityProvider, token, userInfo) {
this.identityProvider = identityProvider;
this.token = token;
Auth fixes (#2050) * Auth fixes - Typescript definitions for User.login - Exception thrown from registerWithProvider when a userInfo is not specified * Ensure we don't use adminUser internally
2018-10-08 13:01:12 +00:00
this.userInfo = userInfo || {};
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
}
toJSON() {
return {
data: this.token,
provider: this.identityProvider,
Auth fixes (#2050) * Auth fixes - Typescript definitions for User.login - Exception thrown from registerWithProvider when a userInfo is not specified * Ensure we don't use adminUser internally
2018-10-08 13:01:12 +00:00
user_info: this.userInfo,
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
};
}
}
Permissions api (#1244) * Add basic permissions skeleton * ... * Update permissions api * Wait for server to process management realm, add offer api * Fix test of apply and get permissions, add offer test * Accept permission offer * Accept permission offer test * Invalidate permission offer * Add basic docs (still need some links etc) * Refactor tests * Only run permission tests where sync is enabled * Use legal syntax for user name generation * Add changelog entry * Streamline permission tests * Fix casing for access level names etc. * Add basic definitions to index.d.ts * Use settimeout for resolving promise from listener * Complete typescript defs * Improve docs * Allow 'any' as default recipient in getGrantedPermissions * Fix getSpecialPurposeRealm on iOS * Response to PR comments * Respond to PR comments * Fix offer description * Skip permission tests in chrome debugger :-/
2017-08-29 13:23:22 +00:00
// Append the permission apis
Object.assign(instanceMethods, permissionApis);
module.exports = {
static: staticMethods,
Redesign user auth (#2002) * Refactor user auth * Allow to override the jwt provider name * Add custom provider and changelog * Remove the callback argument from docs
2018-09-13 06:45:06 +00:00
instance: instanceMethods,
credentials: credentialsMethods,
Permissions api (#1244) * Add basic permissions skeleton * ... * Update permissions api * Wait for server to process management realm, add offer api * Fix test of apply and get permissions, add offer test * Accept permission offer * Accept permission offer test * Invalidate permission offer * Add basic docs (still need some links etc) * Refactor tests * Only run permission tests where sync is enabled * Use legal syntax for user name generation * Add changelog entry * Streamline permission tests * Fix casing for access level names etc. * Add basic definitions to index.d.ts * Use settimeout for resolving promise from listener * Complete typescript defs * Improve docs * Allow 'any' as default recipient in getGrantedPermissions * Fix getSpecialPurposeRealm on iOS * Response to PR comments * Respond to PR comments * Fix offer description * Skip permission tests in chrome debugger :-/
2017-08-29 13:23:22 +00:00
};