tweaks

retailcoder · retailcoder · commit 1453dde2f2e5 · 2025-02-07T04:54:17.000-05:00
diff --git a/rubberduckvba.Server/Api/Auth/AuthController.cs b/rubberduckvba.Server/Api/Auth/AuthController.cs
@@ -43,8 +43,8 @@ public IActionResult Index()
             var model = new UserViewModel
             {
                 Name = name,
-                IsAuthenticated = isAuthenticated,
-                IsAdmin = isAuthenticated && role == configuration.Value.OwnerOrg
+                IsAuthenticated = true,
+                IsAdmin = role == configuration.Value.OwnerOrg
             };
 
             return Ok(model);
diff --git a/rubberduckvba.Server/GitHubAuthenticationHandler.cs b/rubberduckvba.Server/GitHubAuthenticationHandler.cs
@@ -23,15 +23,20 @@ protected async override Task<AuthenticateResult> HandleAuthenticateAsync()
         try
         {
             var token = Context.Request.Headers["X-ACCESS-TOKEN"].SingleOrDefault();
-            if (token is null)
+            if (string.IsNullOrWhiteSpace(token))
             {
                 return AuthenticateResult.NoResult();
             }
 
             var principal = await _github.ValidateTokenAsync(token);
-            return principal is ClaimsPrincipal
-                ? AuthenticateResult.Success(new AuthenticationTicket(principal, "github"))
-                : AuthenticateResult.NoResult();
+            if (principal is ClaimsPrincipal)
+            {
+                Context.User = principal;
+                Thread.CurrentPrincipal = principal;
+                return AuthenticateResult.Success(new AuthenticationTicket(principal, "github"));
+            }
+
+            return AuthenticateResult.NoResult();
         }
         catch (InvalidOperationException e)
         {
diff --git a/rubberduckvba.Server/Program.cs b/rubberduckvba.Server/Program.cs
@@ -45,9 +45,7 @@ public static void Main(string[] args)
         builder.Services.AddAuthentication(options =>
         {
             options.RequireAuthenticatedSignIn = false;
-
             options.DefaultAuthenticateScheme = "github";
-            options.DefaultScheme = "anonymous";
 
             options.AddScheme("github", builder =>
             {
@@ -99,7 +97,11 @@ public static void Main(string[] args)
 
         app.UseCors(policy =>
         {
-            policy.SetIsOriginAllowed(origin => true).AllowAnyHeader();
+            policy
+                .AllowAnyMethod()
+                .AllowAnyHeader()
+                .AllowCredentials()
+                .SetIsOriginAllowed(origin => true);
         });
 
         StartHangfire(app);
diff --git a/rubberduckvba.Server/Services/GitHubClientService.cs b/rubberduckvba.Server/Services/GitHubClientService.cs
@@ -44,11 +44,11 @@ public class GitHubClientService(IOptions<GitHubSettings> configuration, ILogger
         var user = await client.User.Current();
         var identity = new ClaimsIdentity(new[]
         {
-            new Claim(ClaimTypes.Name, user.Name),
-            new Claim(ClaimTypes.Email, user.Email),
+            new Claim(ClaimTypes.Name, user.Login),
             new Claim(ClaimTypes.Role, config.OwnerOrg),
+            new Claim(ClaimTypes.Authentication, token),
             new Claim("access_token", token)
-        });
+        }, "github");
         return new ClaimsPrincipal(identity);
     }
 
diff --git a/rubberduckvba.client/src/app/components/auth-menu/auth-menu.component.html b/rubberduckvba.client/src/app/components/auth-menu/auth-menu.component.html
@@ -1,23 +1,27 @@
 
 <div *ngIf="!user || !user.isAuthenticated">
     <button type="button" role="button" class="nav-link text-dark btn-link" title="Sign in with GitHub" (click)="confirm()">
-        <fa-icon class="mx-1" [icon]="['fab', 'github']"></fa-icon>Sign in
+        <fa-icon class="mx-1" [icon]="['fab', 'github']"></fa-icon> Sign in
     </button>
 </div>
 
 <div *ngIf="user && user.isAuthenticated">
     <div ngbDropdown>
-        <button ngbDropdownToggle class="nav-link" id="authMenu" title="Signed in with GitHub">{{user.name}}</button>
+        <button ngbDropdownToggle class="nav-link" id="authMenu" title="Signed in with GitHub"><fa-icon class="mx-1" [icon]="['fab', 'github']"></fa-icon> {{user.name}}</button>
         <div ngbDropdownMenu="authMenu">
             <div ngbDropdownItem>
                 <button type="button" role="button" class="nav-link text-dark btn-link" title="Sign out" (click)="signout()">
-                    <fa-icon class="mx-1" [icon]="['fab', 'github']"></fa-icon>Sign out
+                    <fa-icon class="mx-1" [icon]="['fas', 'sign-out']"></fa-icon> Sign out
                 </button>
-                <div *ngIf="user.isAdmin">
-                    <hr />
+            </div>
+            <div *ngIf="user.isAdmin">
+                <hr />
+                <div ngbDropdownItem>
                     <button type="button" role="button" class="nav-link text-dark btn-link" title="" (click)="confirmUpdateTags()">
                         Update tag metadata
                     </button>
+                </div>
+                <div ngbDropdownItem>
                     <button type="button" role="button" class="nav-link text-dark btn-link" title="" (click)="confirmUpdateXmldocs()">
                         Update xmldoc metadata
                     </button>
@@ -44,7 +48,7 @@ <h6><fa-icon class="mx-1" [icon]="['fas', 'exclamation-triangle']"></fa-icon>Res
                 </p>
             </div>
             <div class="modal-footer">
-                <button id="cancel-login" type="button" class="btn btn-secondary" data-dismiss="modal" aria-label="Close">Close</button>
+                <button id="cancel-login" type="button" class="btn btn-secondary" data-dismiss="modal" aria-label="Close" (click)="modal.dismiss('cancel')">Close</button>
                 <button id="accept-login" type="button" class="btn btn-danger" (click)="signin()">Accept</button>
             </div>
         </div>
@@ -67,7 +71,7 @@ <h6><fa-icon class="mx-1" [icon]="['fas', 'info-circle']"></fa-icon>Confirm</h6>
                 </p>
             </div>
             <div class="modal-footer">
-                <button id="cancel-tags" type="button" class="btn btn-secondary" data-dismiss="modal" aria-label="Close">Close</button>
+                <button id="cancel-tags" type="button" class="btn btn-secondary" data-dismiss="modal" aria-label="Close" (click)="modal.dismiss('cancel')">Close</button>
                 <button id="accept-tags" type="button" class="btn btn-primary" (click)="updateTags()">Proceed</button>
             </div>
         </div>
@@ -90,7 +94,7 @@ <h6><fa-icon class="mx-1" [icon]="['fas', 'info-circle']"></fa-icon>Confirm</h6>
                 </p>
             </div>
             <div class="modal-footer">
-                <button id="cancel-xmldoc" type="button" class="btn btn-secondary" data-dismiss="modal" aria-label="Close">Close</button>
+                <button id="cancel-xmldoc" type="button" class="btn btn-secondary" data-dismiss="modal" aria-label="Close" (click)="modal.dismiss('cancel')">Close</button>
                 <button id="accept-xmldoc" type="button" class="btn btn-primary" (click)="updateXmldocs()">Proceed</button>
             </div>
         </div>
diff --git a/rubberduckvba.client/src/app/components/auth-menu/auth-menu.component.ts b/rubberduckvba.client/src/app/components/auth-menu/auth-menu.component.ts
@@ -1,11 +1,12 @@
+/// <reference path="../../app.module.ts" />
 import { Component, OnInit, TemplateRef, ViewChild, inject } from "@angular/core";
 import { FaIconLibrary } from "@fortawesome/angular-fontawesome";
 import { BehaviorSubject } from "rxjs";
 import { UserViewModel } from "../../model/feature.model";
 import { AuthService } from "src/app/services/auth.service";
 import { fas } from "@fortawesome/free-solid-svg-icons";
 import { fab } from "@fortawesome/free-brands-svg-icons";
-import { NgbModal } from "@ng-bootstrap/ng-bootstrap";
+import { NgbModal, NgbToast } from "@ng-bootstrap/ng-bootstrap";
 import { AdminApiClientService, ApiClientService } from "../../services/api-client.service";
 
 @Component({
@@ -69,11 +70,11 @@ export class AuthMenuComponent implements OnInit {
 
   public updateTags(): void {
     this.modal.dismissAll();
-    this.api.updateTagMetadata();
+    this.api.updateTagMetadata().subscribe(jobId => console.log(`UpdateTagMetadata has scheduled job id ${jobId}`));
   }
 
   public updateXmldocs(): void {
     this.modal.dismissAll();
-    this.api.updateXmldocMetadata();
+    this.api.updateXmldocMetadata().subscribe(jobId => console.log(`UpdateXmldocMetadata has scheduled job id ${jobId}`));
   }
 }
diff --git a/rubberduckvba.client/src/app/routes/auth/auth.component.html b/rubberduckvba.client/src/app/routes/auth/auth.component.html
@@ -1 +1 @@
-<loading-content [show]="true" label="'redirecting...'"></loading-content>
+<loading-content [show]="true" label="redirecting..."></loading-content>
diff --git a/rubberduckvba.client/src/app/services/api-client.service.ts b/rubberduckvba.client/src/app/services/api-client.service.ts
@@ -61,19 +61,13 @@ export class AdminApiClientService {
   constructor(private data: DataService) {
   }
 
-  public updateTagMetadata(): void {
+  public updateTagMetadata(): Observable<number> {
     const url = `${environment.apiBaseUrl}admin/update/tags`;
-    const jwt = sessionStorage.getItem("jwt");
-    if (jwt) {
-      this.data.postWithAccessTokenAsync(jwt, url);
-    }
+    return this.data.postAsync(url);
   }
 
-  public updateXmldocMetadata(): void {
+  public updateXmldocMetadata(): Observable<number> {
     const url = `${environment.apiBaseUrl}admin/update/xmldoc`;
-    const jwt = sessionStorage.getItem("jwt");
-    if (jwt) {
-      this.data.postWithAccessTokenAsync(jwt, url);
-    }
+    return this.data.postAsync(url);
   }
 }
diff --git a/rubberduckvba.client/src/app/services/auth.service.ts b/rubberduckvba.client/src/app/services/auth.service.ts
@@ -10,14 +10,25 @@ export class AuthService {
   private timeout: number = 10000;
   constructor(private data: DataService) { }
 
+  private sleep(ms: number): Promise<void> {
+    return new Promise(resolve => setTimeout(resolve, ms));
+  }
+
+  private writeStorage(key: string, value: string): void {
+    sessionStorage.setItem(key, value);
+    while (sessionStorage.getItem(key) != value) {
+      this.sleep(1000);
+    }
+  }
+
   public getUser(): Observable<UserViewModel> {
     const url = `${environment.apiBaseUrl}auth`;
-    return this.data.getWithAccessTokenAsync<UserViewModel>(url);
+    return this.data.getAsync<UserViewModel>(url);
   }
 
   public signin(): void {
     const vm = AuthViewModel.withRandomState();
-    sessionStorage.setItem('xsrf:state', vm.state);
+    this.writeStorage('xsrf:state', vm.state);
 
     const url = `${environment.apiBaseUrl}auth/signin`;
     this.data.postAsync<AuthViewModel, string>(url, vm)
@@ -28,30 +39,30 @@ export class AuthService {
     sessionStorage.clear();
   }
 
-    public onGithubCallback(): void {
-      const urlParams = new URLSearchParams(location.search);
-      const code: string = urlParams.get('code')!;
-      const state: string = urlParams.get('state')!;
+  public onGithubCallback(): void {
+    const urlParams = new URLSearchParams(location.search);
+    const code: string = urlParams.get('code')!;
+    const state: string = urlParams.get('state')!;
       
-      if (state === sessionStorage.getItem('xsrf:state')) {
-        try {
-          const vm: AuthViewModel = { state, code };
-          const url = `${environment.apiBaseUrl}auth/github`;
-
-          this.data.postAsync<AuthViewModel, AuthViewModel>(url, vm)
-            .subscribe(result => {
-              sessionStorage.setItem('github:access_token', result.token!);
-              location.href = '/';
-            });
-        }
-        catch (error) {
-          console.log(error);
-          location.href = '/';
-        }
+    if (state === sessionStorage.getItem('xsrf:state')) {
+      try {
+        const vm: AuthViewModel = { state, code };
+        const url = `${environment.apiBaseUrl}auth/github`;
+
+        this.data.postAsync<AuthViewModel, AuthViewModel>(url, vm)
+          .subscribe(result => {
+            this.writeStorage('github:access_token', result.token!);
+            location.href = '/';
+          });
       }
-      else {
-        console.log('xsrf:state mismatched!');
+      catch (error) {
+        console.log(error);
         location.href = '/';
       }
     }
+    else {
+      console.log('xsrf:state mismatched!');
+      location.href = '/';
+    }
+  }
 }
diff --git a/rubberduckvba.client/src/app/services/data.service.ts b/rubberduckvba.client/src/app/services/data.service.ts
@@ -12,43 +12,13 @@ export class DataService {
   }
 
   public getAsync<TResult>(url: string): Observable<TResult> {
-    const headers = new HttpHeaders()
-      .append('accept', 'application/json');
-
-    return this.http.get(url, { headers })
-      .pipe(
-        map(result => <TResult>result),
-        timeout(this.timeout),
-        catchError((err: Response) => {
-          console.log(err);
-          return throwError(() => err.text);
-        })
-      );
-  }
-
-  public postAsync<TContent, TResult>(url: string, content?: TContent): Observable<TResult> {
-    const headers = new HttpHeaders()
-      .append('accept', 'application/json')
-      .append('Content-Type', 'application/json; charset=utf-8');
-
-    return (content
-      ? this.http.post(url, content, { headers })
-      : this.http.post(url, { headers }))
-      .pipe(
-        map(result => <TResult>result),
-        timeout(this.timeout),
-        catchError((err: Response) => throwError(() => err.text))
-      );
-  }
-
-  
-  public getWithAccessTokenAsync<TResult>(url: string): Observable<TResult> {
-    const headers = new HttpHeaders()
+    let headers = new HttpHeaders()
       .append('accept', 'application/json');
 
     const token = sessionStorage.getItem('github:access_token');
     if (token) {
-      headers.append('X-ACCESS-TOKEN', token);
+      headers = headers.append('X-ACCESS-TOKEN', token)
+        .append('Access-Control-Allow-Origin', '*');
     }
 
     return this.http.get(url, { headers })
@@ -62,14 +32,14 @@ export class DataService {
       );
   }
 
-  public postWithAccessTokenAsync<TContent, TResult>(url: string, content?: TContent): Observable<TResult> {
-    const headers = new HttpHeaders()
+  public postAsync<TContent, TResult>(url: string, content?: TContent): Observable<TResult> {
+    let headers = new HttpHeaders()
       .append('accept', 'application/json')
       .append('Content-Type', 'application/json; charset=utf-8');
 
     const token = sessionStorage.getItem('github:access_token');
     if (token) {
-      headers.append('X-ACCESS-TOKEN', token);
+      headers = headers.append('X-ACCESS-TOKEN', token);
     }
 
     return (content

Original file line number	Diff line number	Diff line change
`@@ -23,15 +23,20 @@ protected async override Task<AuthenticateResult> HandleAuthenticateAsync()`
`23`	`23`	`try`
`24`	`24`	`{`
`25`	`25`	`var token = Context.Request.Headers["X-ACCESS-TOKEN"].SingleOrDefault();`
`26`		`- if (token is null)`
	`26`	`+ if (string.IsNullOrWhiteSpace(token))`
`27`	`27`	`{`
`28`	`28`	`return AuthenticateResult.NoResult();`
`29`	`29`	`}`
`30`	`30`
`31`	`31`	`var principal = await _github.ValidateTokenAsync(token);`
`32`		`- return principal is ClaimsPrincipal`
`33`		`- ? AuthenticateResult.Success(new AuthenticationTicket(principal, "github"))`
`34`		`- : AuthenticateResult.NoResult();`
	`32`	`+ if (principal is ClaimsPrincipal)`
	`33`	`+ {`
	`34`	`+ Context.User = principal;`
	`35`	`+ Thread.CurrentPrincipal = principal;`
	`36`	`+ return AuthenticateResult.Success(new AuthenticationTicket(principal, "github"));`
	`37`	`+ }`
	`38`	`+`
	`39`	`+ return AuthenticateResult.NoResult();`
`35`	`40`	`}`
`36`	`41`	`catch (InvalidOperationException e)`
`37`	`42`	`{`
Original file line number	Diff line number	Diff line change
`@@ -45,9 +45,7 @@ public static void Main(string[] args)`
`45`	`45`	`builder.Services.AddAuthentication(options =>`
`46`	`46`	`{`
`47`	`47`	`options.RequireAuthenticatedSignIn = false;`
`48`		`-`
`49`	`48`	`options.DefaultAuthenticateScheme = "github";`
`50`		`- options.DefaultScheme = "anonymous";`
`51`	`49`
`52`	`50`	`options.AddScheme("github", builder =>`
`53`	`51`	`{`
`@@ -99,7 +97,11 @@ public static void Main(string[] args)`
`99`	`97`
`100`	`98`	`app.UseCors(policy =>`
`101`	`99`	`{`
`102`		`- policy.SetIsOriginAllowed(origin => true).AllowAnyHeader();`
	`100`	`+ policy`
	`101`	`+ .AllowAnyMethod()`
	`102`	`+ .AllowAnyHeader()`
	`103`	`+ .AllowCredentials()`
	`104`	`+ .SetIsOriginAllowed(origin => true);`
`103`	`105`	`});`
`104`	`106`
`105`	`107`	`StartHangfire(app);`
Original file line number	Diff line number	Diff line change
`@@ -44,11 +44,11 @@ public class GitHubClientService(IOptions<GitHubSettings> configuration, ILogger`
`44`	`44`	`var user = await client.User.Current();`
`45`	`45`	`var identity = new ClaimsIdentity(new[]`
`46`	`46`	`{`
`47`		`- new Claim(ClaimTypes.Name, user.Name),`
`48`		`- new Claim(ClaimTypes.Email, user.Email),`
	`47`	`+ new Claim(ClaimTypes.Name, user.Login),`
`49`	`48`	`new Claim(ClaimTypes.Role, config.OwnerOrg),`
	`49`	`+ new Claim(ClaimTypes.Authentication, token),`
`50`	`50`	`new Claim("access_token", token)`
`51`		`- });`
	`51`	`+ }, "github");`
`52`	`52`	`return new ClaimsPrincipal(identity);`
`53`	`53`	`}`
`54`	`54`
Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-<loading-content [show]="true" label="'redirecting...'"></loading-content>`
	`1`	`+<loading-content [show]="true" label="redirecting..."></loading-content>`
Original file line number	Diff line number	Diff line change
`@@ -61,19 +61,13 @@ export class AdminApiClientService {`
`61`	`61`	`constructor(private data: DataService) {`
`62`	`62`	`}`
`63`	`63`
`64`		`- public updateTagMetadata(): void {`
	`64`	`+ public updateTagMetadata(): Observable<number> {`
`65`	`65`	const url = `${environment.apiBaseUrl}admin/update/tags`;
`66`		`- const jwt = sessionStorage.getItem("jwt");`
`67`		`- if (jwt) {`
`68`		`- this.data.postWithAccessTokenAsync(jwt, url);`
`69`		`- }`
	`66`	`+ return this.data.postAsync(url);`
`70`	`67`	`}`
`71`	`68`
`72`		`- public updateXmldocMetadata(): void {`
	`69`	`+ public updateXmldocMetadata(): Observable<number> {`
`73`	`70`	const url = `${environment.apiBaseUrl}admin/update/xmldoc`;
`74`		`- const jwt = sessionStorage.getItem("jwt");`
`75`		`- if (jwt) {`
`76`		`- this.data.postWithAccessTokenAsync(jwt, url);`
`77`		`- }`
	`71`	`+ return this.data.postAsync(url);`
`78`	`72`	`}`
`79`	`73`	`}`