Merge pull request #848 from solid/feature/logout-button

Add logout button to access denied page

Author: RubenVerborgh

common/js/auth-buttons.js

@@ -0,0 +1,48 @@
+/* Provide functionality for authentication buttons */
+
+(({ auth }) => {
+  // Wire up DOM elements
+  const [loginButton, logoutButton, registerButton, accountSettings] =
+    ['login', 'logout', 'register', 'accountSettings'].map(id =>
+      document.getElementById(id) || document.createElement('a'))
+  loginButton.addEventListener('click', login)
+  logoutButton.addEventListener('click', logout)
+  registerButton.addEventListener('click', register)
+
+  // Track authentication status and update UI
+  auth.trackSession(session => {
+    const loggedIn = !!session
+    const isOwner = loggedIn && new URL(session.webId).origin === location.origin
+    loginButton.classList.toggle('hidden', loggedIn)
+    logoutButton.classList.toggle('hidden', !loggedIn)
+    accountSettings.classList.toggle('hidden', !isOwner)
+  })
+
+  // Log the user in on the client and the server
+  async function login () {
+    const session = await auth.popupLogin()
+    if (session) {
+      // Make authenticated request to the server to establish a session cookie
+      const {status} = await auth.fetch(location, { method: 'HEAD' })
+      if (status === 401) {
+        alert(`Invalid login.\n\nDid you set ${session.idp} as your OIDC provider in your profile ${session.webId}?`)
+        await auth.logout()
+      }
+      // Now that we have a cookie, reload to display the authenticated page
+      location.reload()
+    }
+  }
+
+  // Log the user out from the client and the server
+  async function logout () {
+    await auth.logout()
+    location.reload()
+  }
+
+  // Redirect to the registration page
+  function register () {
+    const registration = new URL('/register', location)
+    registration.searchParams.set('returnToUrl', location)
+    location.href = registration
+  }
+})(solid)

default-templates/new-account/index.html

@@ -15,7 +15,8 @@
         <a href="/" class="navbar-brand">{{#if name}}{{name}} &ndash; {{/if}}Solid Home</a>
       </div>
       <div class="nav navbar-right navbar-form">
-        <button id="session-action" type="button" class="session-action btn btn-default">Loading...</button>
+        <button id="login"  type="button" class="hidden btn btn-default btn-success">Log in</button>
+        <button id="logout" type="button" class="hidden btn btn-danger">Log out</button>
       </div>
     </div>
   </nav>
@@ -69,41 +70,6 @@ <h1>Account settings</h1>
 </div>
 
 <script src="/common/js/solid-auth-client.bundle.js"></script>
-<script type="text/javascript">
-  (function () {
-    'use strict';
-    var button = document.getElementById('session-action');
-    var loggedIn = false;
-    var accountSettings = document.getElementById('account-settings');
-
-    solid.auth.trackSession(function(session) {
-      loggedIn = !!session;
-      button.innerText = loggedIn ? 'Log out' : 'Log in';
-      button.classList.remove('btn-default');
-      button.classList.remove('btn-danger');
-      button.classList.remove('btn-primary');
-      button.classList.add(loggedIn ? 'btn-danger' : 'btn-primary');
-      if (loggedIn) {
-        var sessionOrigin = getOriginFromWebId(session.webId);
-        var isOwner = sessionOrigin === location.origin;
-        accountSettings.classList.toggle('hidden', !isOwner);
-      } else {
-        accountSettings.classList.toggle('hidden', true);
-      }
-    });
-
-    button.addEventListener('click', function () {
-      loggedIn ? solid.auth.logout() : solid.auth.popupLogin();
-    });
-
-    function getOriginFromWebId(webId) {
-      if (window.URL.prototype) {
-        return new URL(webId).origin;
-      }
-      var uriParts = webId.split('/');
-      return uriParts[0] + '//' + uriParts[2];
-    }
-  })();
-</script>
+<script src="/common/js/auth-buttons.js"></script>
 </body>
 </html>

default-templates/server/index.html

@@ -11,9 +11,9 @@
 <div class="container">
   <div class="page-header">
     <div class="pull-right">
-      <a href="/register" class="btn btn-primary">Register</a>
-
-      <button id="session-action" type="button" class="session-action btn btn-default">Loading...</button>
+      <button id="register" type="button" class="btn btn-primary">Register</button>
+      <button id="login"    type="button" class="hidden btn btn-default btn-success">Log in</button>
+      <button id="logout"   type="button" class="hidden btn btn-danger">Log out</button>
     </div>
 
     <h1>Welcome to the Solid Prototype</h1>
@@ -50,36 +50,6 @@ <h2>Server info</h2>
   </section>
 </div>
 <script src="/common/js/solid-auth-client.bundle.js"></script>
-<script>
-  (function () {
-    const elements = {};
-    ['loggedIn', 'profileLink'].forEach(id => {
-      elements[id] = document.getElementById(id)
-    })
-    var button = document.getElementById('session-action')
-    var loggedIn = false
-
-    solid.auth.trackSession(async session => {
-      loggedIn = !!session;
-      button.innerText = loggedIn ? 'Log out' : 'Log in';
-      button.classList.remove('btn-default');
-      button.classList.remove('btn-danger');
-      button.classList.remove('btn-success');
-      button.classList.add(loggedIn ? 'btn-danger' : 'btn-success');
-      if (!session) {
-        elements.loggedIn.classList.add('hidden')
-      }
-      else {
-        elements.loggedIn.classList.remove('hidden')
-        elements.profileLink.innerText = session.webId
-        elements.profileLink.href = session.webId
-      }
-    })
-
-    button.addEventListener('click', function () {
-      loggedIn ? solid.auth.logout() : solid.auth.popupLogin()
-    })
-  })();
-</script>
+<script src="/common/js/auth-buttons.js"></script>
 </body>
 </html>

default-views/auth/login-required.hbs

@@ -11,8 +11,8 @@
 <div class="container">
   <div class="page-header">
     <div class="pull-right">
-      <button class="btn btn-primary" onclick="register()">Register</button>
-      <button class="btn btn-success" onclick="login()">Log in</button>
+      <button id="register" type="button" class="btn btn-primary">Register</button>
+      <button id="login"    type="button" class="btn btn-success">Log in</button>
     </div>
     <h1>Log in to access this resource</h1>
   </div>
@@ -28,26 +28,6 @@
 </div>
 </div>
 <script src="/common/js/solid-auth-client.bundle.js"></script>
-<script>
-  async function login () {
-    const session = await solid.auth.popupLogin()
-    if (session) {
-      // Make authenticated request to the server to establish a session cookie
-      const {status} = await solid.auth.fetch(location, { method: 'HEAD' })
-      if (status === 401) {
-        alert(`Invalid login.\n\nDid you set ${session.idp} as your OIDC provider in your profile ${session.webId}?`)
-        await solid.auth.logout()
-      }
-      // Now that we have a cookie, reload to display the authenticated page
-      location.reload()
-    }
-  }
-
-  function register () {
-    const registration = new URL('/register', location)
-    registration.searchParams.set('returnToUrl', location)
-    location.href = registration
-  }
-</script>
+<script src="/common/js/auth-buttons.js"></script>
 </body>
 </html>

default-views/auth/no-permission.hbs

@@ -17,8 +17,13 @@
       You are currently logged in as <code>{{webId}}</code>,
       but do not have permission to access <code>{{currentUrl}}</code>.
     </p>
+    <p>
+      <button id="logout" type="button" class="btn btn-danger">Log out</button>
+    </p>
   </div>
 </div>
 </div>
+<script src="/common/js/solid-auth-client.bundle.js"></script>
+<script src="/common/js/auth-buttons.js"></script>
 </body>
 </html>

package-lock.json

@@ -73,7 +73,7 @@
     "rdflib": "^0.17.1",
     "recursive-readdir": "^2.1.0",
     "rimraf": "^2.5.0",
-    "solid-auth-client": "^2.2.9",
+    "solid-auth-client": "^2.2.12",
     "solid-namespace": "^0.1.0",
     "solid-permissions": "^0.6.0",
     "solid-ws": "^0.2.3",