cic-staff-client/src/app/_services/auth.service.ts

import { Injectable } from '@angular/core';
import {MutableKeyStore, MutablePgpKeyStore} from '@app/_helpers';
import { hobaParseChallengeHeader } from '@src/assets/js/hoba.js';
import { signChallenge } from '@src/assets/js/hoba-pgp.js';
import {environment} from '@src/environments/environment';
import {HttpClient} from '@angular/common/http';

@Injectable({
  providedIn: 'root'
})
export class AuthService {
  sessionToken: any;
  sessionLoginCount = 0;
  privateKey: any;
  mutableKeyStore: MutableKeyStore = new MutablePgpKeyStore();

  constructor(
    private http: HttpClient
  ) {
    if (sessionStorage.getItem(btoa('CICADA_SESSION_TOKEN'))) {
      this.sessionToken = sessionStorage.getItem(btoa('CICADA_SESSION_TOKEN'));
    }
    if (localStorage.getItem(btoa('CICADA_PRIVATE_KEY'))) {
      this.privateKey = localStorage.getItem(btoa('CICADA_PRIVATE_KEY'));
    }
  }

  setState(s): void {
    (document.getElementById('state') as HTMLInputElement).value = s;
  }

  getWithToken(): void {
    const xhr = new XMLHttpRequest();
    xhr.responseType = 'text';
    xhr.open('GET', environment.cicAuthUrl + window.location.search.substring(1));
    xhr.setRequestHeader('Authorization', 'Bearer ' + this.sessionToken);
    xhr.setRequestHeader('Content-Type', 'application/json');
    xhr.setRequestHeader('x-cic-automerge', 'none');
    xhr.addEventListener('load', (e) => {
      if (xhr.status === 401) {
        throw new Error('login rejected');
      }
      this.sessionLoginCount++;
      this.setState('click to perform login ' + this.sessionLoginCount + ' with token ' + this.sessionToken);
      return;
    });
    xhr.send();
  }

  sendResponse(hobaResponseEncoded): void {
    const xhr = new XMLHttpRequest();
    xhr.responseType = 'text';
    xhr.open('GET', environment.cicAuthUrl + window.location.search.substring(1));
    xhr.setRequestHeader('Authorization', 'HOBA ' + hobaResponseEncoded);
    xhr.setRequestHeader('Content-Type', 'application/json');
    xhr.setRequestHeader('x-cic-automerge', 'none');
    xhr.addEventListener('load', (e) => {
      if (xhr.status === 401) {
        throw new Error('login rejected');
      }
      this.sessionToken = xhr.getResponseHeader('Token');
      sessionStorage.setItem(btoa('CICADA_SESSION_TOKEN'), this.sessionToken);
      this.sessionLoginCount++;
      this.setState('click to perform login ' + this.sessionLoginCount + ' with token ' + this.sessionToken);
      return;
    });
    xhr.send();
  }

  getChallenge(): void {
    const xhr = new XMLHttpRequest();
    xhr.responseType = 'arraybuffer';
    xhr.open('GET', environment.cicAuthUrl + window.location.search.substring(1));
    xhr.onload = (e) => {
      if (xhr.status === 401) {
        const authHeader = xhr.getResponseHeader('WWW-Authenticate');
        const o = hobaParseChallengeHeader(authHeader);
        this.loginResponse(o).then();
      }
    };
    xhr.send();
  }


  login(): boolean {
    if (this.sessionToken !== undefined) {
      try {
        this.getWithToken();
        return true;
      } catch (e) {
        console.error('login token failed', e);
      }
    } else {
      try {
        const o = this.getChallenge();
        return true;
      } catch (e) {
        console.error('login challenge failed', e);
      }
    }
    return false;
  }


  async loginResponse(o): Promise<any> {
    const r = await signChallenge(o.challenge, o.realm, environment.cicAuthUrl, this.mutableKeyStore);
    this.sendResponse(r);
  }

  loginView(): void {
    document.getElementById('one').style.display = 'none';
    document.getElementById('two').style.display = 'block';
    this.setState('click to log in with PGP key ' + this.mutableKeyStore.getPrivateKeyId());
  }

  async setKey(privateKeyArmored): Promise<boolean> {
    try {
      await this.mutableKeyStore.importPrivateKey(privateKeyArmored);
      localStorage.setItem(btoa('CICADA_PRIVATE_KEY'), privateKeyArmored);
    } catch (e) {
      console.error('failed setting key', e);
      return false;
    }
    this.loginView();
    return true;
  }

  logout(): void {
    sessionStorage.removeItem(btoa('CICADA_SESSION_TOKEN'));
    window.location.reload(true);
  }

  async getPublicKeys(): Promise<void> {
    this.http.get(`${environment.publicKeysUrl}/keys.asc`).subscribe(async res => {
      await this.mutableKeyStore.importPublicKey(res);
    }, error => {
      console.error('There was an error!', error);
    });
    if (this.privateKey !== undefined) {
      await this.mutableKeyStore.importPrivateKey(this.privateKey);
    }
  }
}
Add authentication service. 2020-12-28 10:09:11 +01:00			`import { Injectable } from '@angular/core';`
Bug fix. - Remove unsafe keystore. - Refactor functionality from unsafe keystore into mutable keystore. 2021-02-17 12:13:08 +01:00			`import {MutableKeyStore, MutablePgpKeyStore} from '@app/_helpers';`
Add method for loading public keys into keyring. 2021-02-16 08:10:52 +01:00			`import { hobaParseChallengeHeader } from '@src/assets/js/hoba.js';`
			`import { signChallenge } from '@src/assets/js/hoba-pgp.js';`
			`import {environment} from '@src/environments/environment';`
			`import {HttpClient} from '@angular/common/http';`
Add authentication service. 2020-12-28 10:09:11 +01:00
			`@Injectable({`
			`providedIn: 'root'`
			`})`
			`export class AuthService {`
Add session token to session storage. 2021-01-18 14:04:16 +01:00			`sessionToken: any;`
Add authentication service. 2020-12-28 10:09:11 +01:00			`sessionLoginCount = 0;`
Add session token to session storage. 2021-01-18 14:04:16 +01:00			`privateKey: any;`
Refactor MutableKeyStore interface. 2021-02-16 14:18:41 +01:00			`mutableKeyStore: MutableKeyStore = new MutablePgpKeyStore();`
Add authentication service. 2020-12-28 10:09:11 +01:00
Add method for loading public keys into keyring. 2021-02-16 08:10:52 +01:00			`constructor(`
			`private http: HttpClient`
			`) {`
Add session token to session storage. 2021-01-18 14:04:16 +01:00			`if (sessionStorage.getItem(btoa('CICADA_SESSION_TOKEN'))) {`
			`this.sessionToken = sessionStorage.getItem(btoa('CICADA_SESSION_TOKEN'));`
			`}`
			`if (localStorage.getItem(btoa('CICADA_PRIVATE_KEY'))) {`
			`this.privateKey = localStorage.getItem(btoa('CICADA_PRIVATE_KEY'));`
			`}`
			`}`
Add authentication service. 2020-12-28 10:09:11 +01:00
			`setState(s): void {`
			`(document.getElementById('state') as HTMLInputElement).value = s;`
			`}`

			`getWithToken(): void {`
			`const xhr = new XMLHttpRequest();`
			`xhr.responseType = 'text';`
Add auth guard connection for dashboard routes. 2021-02-17 19:22:06 +01:00			`xhr.open('GET', environment.cicAuthUrl + window.location.search.substring(1));`
Add authentication service. 2020-12-28 10:09:11 +01:00			`xhr.setRequestHeader('Authorization', 'Bearer ' + this.sessionToken);`
			`xhr.setRequestHeader('Content-Type', 'application/json');`
			`xhr.setRequestHeader('x-cic-automerge', 'none');`
			`xhr.addEventListener('load', (e) => {`
			`if (xhr.status === 401) {`
			`throw new Error('login rejected');`
			`}`
			`this.sessionLoginCount++;`
			`this.setState('click to perform login ' + this.sessionLoginCount + ' with token ' + this.sessionToken);`
			`return;`
			`});`
			`xhr.send();`
			`}`

			`sendResponse(hobaResponseEncoded): void {`
			`const xhr = new XMLHttpRequest();`
			`xhr.responseType = 'text';`
Add auth guard connection for dashboard routes. 2021-02-17 19:22:06 +01:00			`xhr.open('GET', environment.cicAuthUrl + window.location.search.substring(1));`
Add authentication service. 2020-12-28 10:09:11 +01:00			`xhr.setRequestHeader('Authorization', 'HOBA ' + hobaResponseEncoded);`
			`xhr.setRequestHeader('Content-Type', 'application/json');`
			`xhr.setRequestHeader('x-cic-automerge', 'none');`
			`xhr.addEventListener('load', (e) => {`
			`if (xhr.status === 401) {`
			`throw new Error('login rejected');`
			`}`
			`this.sessionToken = xhr.getResponseHeader('Token');`
Add session token to session storage. 2021-01-18 14:04:16 +01:00			`sessionStorage.setItem(btoa('CICADA_SESSION_TOKEN'), this.sessionToken);`
Add authentication service. 2020-12-28 10:09:11 +01:00			`this.sessionLoginCount++;`
			`this.setState('click to perform login ' + this.sessionLoginCount + ' with token ' + this.sessionToken);`
			`return;`
			`});`
			`xhr.send();`
			`}`

Add session token to session storage. 2021-01-18 14:04:16 +01:00			`getChallenge(): void {`
Add authentication service. 2020-12-28 10:09:11 +01:00			`const xhr = new XMLHttpRequest();`
			`xhr.responseType = 'arraybuffer';`
Add auth guard connection for dashboard routes. 2021-02-17 19:22:06 +01:00			`xhr.open('GET', environment.cicAuthUrl + window.location.search.substring(1));`
Add authentication service. 2020-12-28 10:09:11 +01:00			`xhr.onload = (e) => {`
			`if (xhr.status === 401) {`
			`const authHeader = xhr.getResponseHeader('WWW-Authenticate');`
			`const o = hobaParseChallengeHeader(authHeader);`
Add session token to session storage. 2021-01-18 14:04:16 +01:00			`this.loginResponse(o).then();`
Add authentication service. 2020-12-28 10:09:11 +01:00			`}`
			`};`
			`xhr.send();`
			`}`


			`login(): boolean {`
			`if (this.sessionToken !== undefined) {`
			`try {`
			`this.getWithToken();`
			`return true;`
			`} catch (e) {`
			`console.error('login token failed', e);`
			`}`
			`} else {`
			`try {`
Add session token to session storage. 2021-01-18 14:04:16 +01:00			`const o = this.getChallenge();`
Add authentication service. 2020-12-28 10:09:11 +01:00			`return true;`
			`} catch (e) {`
			`console.error('login challenge failed', e);`
			`}`
			`}`
			`return false;`
			`}`


Add session token to session storage. 2021-01-18 14:04:16 +01:00			`async loginResponse(o): Promise<any> {`
Add auth guard connection for dashboard routes. 2021-02-17 19:22:06 +01:00			`const r = await signChallenge(o.challenge, o.realm, environment.cicAuthUrl, this.mutableKeyStore);`
Add authentication service. 2020-12-28 10:09:11 +01:00			`this.sendResponse(r);`
			`}`

			`loginView(): void {`
			`document.getElementById('one').style.display = 'none';`
			`document.getElementById('two').style.display = 'block';`
Bug fix. - Remove unsafe keystore. - Refactor functionality from unsafe keystore into mutable keystore. 2021-02-17 12:13:08 +01:00			`this.setState('click to log in with PGP key ' + this.mutableKeyStore.getPrivateKeyId());`
Add authentication service. 2020-12-28 10:09:11 +01:00			`}`

			`async setKey(privateKeyArmored): Promise<boolean> {`
			`try {`
Refactor MutableKeyStore interface. 2021-02-16 14:18:41 +01:00			`await this.mutableKeyStore.importPrivateKey(privateKeyArmored);`
Bug fix. - Remove unsafe keystore. - Refactor functionality from unsafe keystore into mutable keystore. 2021-02-17 12:13:08 +01:00			`localStorage.setItem(btoa('CICADA_PRIVATE_KEY'), privateKeyArmored);`
Add authentication service. 2020-12-28 10:09:11 +01:00			`} catch (e) {`
			`console.error('failed setting key', e);`
			`return false;`
			`}`
			`this.loginView();`
			`return true;`
			`}`
Add session token to session storage. 2021-01-18 14:04:16 +01:00
			`logout(): void {`
			`sessionStorage.removeItem(btoa('CICADA_SESSION_TOKEN'));`
			`window.location.reload(true);`
			`}`
Add method for loading public keys into keyring. 2021-02-16 08:10:52 +01:00
			`async getPublicKeys(): Promise<void> {`
			this.http.get(`${environment.publicKeysUrl}/keys.asc`).subscribe(async res => {
Bug fix. - Remove unsafe keystore. - Refactor functionality from unsafe keystore into mutable keystore. 2021-02-17 12:13:08 +01:00			`await this.mutableKeyStore.importPublicKey(res);`
Add method for loading public keys into keyring. 2021-02-16 08:10:52 +01:00			`}, error => {`
			`console.error('There was an error!', error);`
			`});`
Refactor MutableKeyStore interface. 2021-02-16 14:18:41 +01:00			`if (this.privateKey !== undefined) {`
			`await this.mutableKeyStore.importPrivateKey(this.privateKey);`
			`}`
Add method for loading public keys into keyring. 2021-02-16 08:10:52 +01:00			`}`
Add authentication service. 2020-12-28 10:09:11 +01:00			`}`