navidrome/ui/src/authProvider.js

import jwtDecode from 'jwt-decode'
import md5 from 'md5-hex'
import baseUrl from './utils/baseUrl'
import config from './config'

const authProvider = {
  login: ({ username, password }) => {
    let url = baseUrl('/app/login')
    if (config.firstTime) {
      url = baseUrl('/app/createAdmin')
    }
    const request = new Request(url, {
      method: 'POST',
      body: JSON.stringify({ username, password }),
      headers: new Headers({ 'Content-Type': 'application/json' }),
    })
    return fetch(request)
      .then((response) => {
        if (response.status < 200 || response.status >= 300) {
          throw new Error(response.statusText)
        }
        return response.json()
      })
      .then((response) => {
        // Validate token
        jwtDecode(response.token)
        localStorage.setItem('token', response.token)
        localStorage.setItem('name', response.name)
        localStorage.setItem('username', response.username)
        localStorage.setItem('role', response.isAdmin ? 'admin' : 'regular')
        const salt = new Date().getTime().toString()
        localStorage.setItem('subsonic-salt', salt)
        localStorage.setItem(
          'subsonic-token',
          generateSubsonicToken(password, salt)
        )
        // Avoid going to create admin dialog after logout/login without a refresh
        config.firstTime = false
        return response
      })
      .catch((error) => {
        if (
          error.message === 'Failed to fetch' ||
          error.stack === 'TypeError: Failed to fetch'
        ) {
          throw new Error('errors.network_error')
        }

        throw new Error(error)
      })
  },

  logout: () => {
    removeItems()
    return Promise.resolve()
  },

  checkAuth: () =>
    localStorage.getItem('token') ? Promise.resolve() : Promise.reject(),

  checkError: ({ status }) => {
    if (status === 401 || status === 403) {
      removeItems()
      return Promise.reject()
    }
    return Promise.resolve()
  },

  getPermissions: () => {
    const role = localStorage.getItem('role')
    return role ? Promise.resolve(role) : Promise.reject()
  },
}

const removeItems = () => {
  localStorage.removeItem('token')
  localStorage.removeItem('name')
  localStorage.removeItem('username')
  localStorage.removeItem('role')
  localStorage.removeItem('subsonic-salt')
  localStorage.removeItem('subsonic-token')
}

const generateSubsonicToken = (password, salt) => {
  return md5(password + salt)
}

export default authProvider
Authenticate UI 2020-01-20 15:54:29 +01:00			`import jwtDecode from 'jwt-decode'`
fix: create a subsonic token on login, to use for subsonic API calls 2020-02-07 02:37:31 +01:00			`import md5 from 'md5-hex'`
Add BaseURL configuration (fixes #103) 2020-04-03 23:50:42 +02:00			`import baseUrl from './utils/baseUrl'`
Consolidate UI configuration in one place, allowing it to be overridden from the server 2020-04-07 22:58:02 +02:00			`import config from './config'`
Authenticate UI 2020-01-20 15:54:29 +01:00
			`const authProvider = {`
			`login: ({ username, password }) => {`
Add BaseURL configuration (fixes #103) 2020-04-03 23:50:42 +02:00			`let url = baseUrl('/app/login')`
Consolidate UI configuration in one place, allowing it to be overridden from the server 2020-04-07 22:58:02 +02:00			`if (config.firstTime) {`
Add BaseURL configuration (fixes #103) 2020-04-03 23:50:42 +02:00			`url = baseUrl('/app/createAdmin')`
feat: first time admin user creation through the ui 2020-01-25 23:10:16 +01:00			`}`
			`const request = new Request(url, {`
Authenticate UI 2020-01-20 15:54:29 +01:00			`method: 'POST',`
			`body: JSON.stringify({ username, password }),`
Fix formatting 2020-04-26 20:50:44 +02:00			`headers: new Headers({ 'Content-Type': 'application/json' }),`
Authenticate UI 2020-01-20 15:54:29 +01:00			`})`
			`return fetch(request)`
			`.then((response) => {`
			`if (response.status < 200 \|\| response.status >= 300) {`
			`throw new Error(response.statusText)`
			`}`
			`return response.json()`
			`})`
			`.then((response) => {`
			`// Validate token`
			`jwtDecode(response.token)`
			`localStorage.setItem('token', response.token)`
			`localStorage.setItem('name', response.name)`
			`localStorage.setItem('username', response.username)`
feat: allow regular users to login to the UI 2020-02-06 04:22:44 +01:00			`localStorage.setItem('role', response.isAdmin ? 'admin' : 'regular')`
fix: create a subsonic token on login, to use for subsonic API calls 2020-02-07 02:37:31 +01:00			`const salt = new Date().getTime().toString()`
			`localStorage.setItem('subsonic-salt', salt)`
			`localStorage.setItem(`
			`'subsonic-token',`
			`generateSubsonicToken(password, salt)`
			`)`
Remove unused localStorage config 2020-04-08 19:20:02 +02:00			`// Avoid going to create admin dialog after logout/login without a refresh`
			`config.firstTime = false`
Authenticate UI 2020-01-20 15:54:29 +01:00			`return response`
			`})`
			`.catch((error) => {`
			`if (`
			`error.message === 'Failed to fetch' \|\|`
			`error.stack === 'TypeError: Failed to fetch'`
			`) {`
			`throw new Error('errors.network_error')`
			`}`

			`throw new Error(error)`
			`})`
			`},`

			`logout: () => {`
			`removeItems()`
			`return Promise.resolve()`
			`},`

feat: first time admin user creation through the ui 2020-01-25 23:10:16 +01:00			`checkAuth: () =>`
			`localStorage.getItem('token') ? Promise.resolve() : Promise.reject(),`
Authenticate UI 2020-01-20 15:54:29 +01:00
feat: better way to detect initial account creation 2020-02-08 19:43:14 +01:00			`checkError: ({ status }) => {`
Authenticate UI 2020-01-20 15:54:29 +01:00			`if (status === 401 \|\| status === 403) {`
			`removeItems()`
			`return Promise.reject()`
			`}`
			`return Promise.resolve()`
			`},`

feat: allow regular users to login to the UI 2020-02-06 04:22:44 +01:00			`getPermissions: () => {`
			`const role = localStorage.getItem('role')`
			`return role ? Promise.resolve(role) : Promise.reject()`
Fix formatting 2020-04-26 20:50:44 +02:00			`},`
Authenticate UI 2020-01-20 15:54:29 +01:00			`}`

			`const removeItems = () => {`
			`localStorage.removeItem('token')`
			`localStorage.removeItem('name')`
			`localStorage.removeItem('username')`
feat: allow regular users to login to the UI 2020-02-06 04:22:44 +01:00			`localStorage.removeItem('role')`
fix: create a subsonic token on login, to use for subsonic API calls 2020-02-07 02:37:31 +01:00			`localStorage.removeItem('subsonic-salt')`
			`localStorage.removeItem('subsonic-token')`
			`}`

			`const generateSubsonicToken = (password, salt) => {`
			`return md5(password + salt)`
Authenticate UI 2020-01-20 15:54:29 +01:00			`}`

			`export default authProvider`