NFC-82 Add callback

Signed-off-by: Sander Kondratjev <[email protected]>

Author: SanderKondratjevNortal

example/src/main/java/eu/webeid/example/web/rest/SigningController.java

@@ -78,7 +78,7 @@ public ResponseEntity<MobileInitRequest> mobileInit(WebEidAuthentication authent
 
     @GetMapping("mobile/certificate")
     public ModelAndView mobileCertificateResponse() {
-        return new ModelAndView("welcome");
+        return new ModelAndView("mobile-callback");
     }
 
     @SuppressWarnings("javax.annotation.Tainted")
@@ -89,7 +89,7 @@ public ResponseEntity<MobileInitRequest> mobileCertificate(@RequestBody Certific
 
     @GetMapping("mobile/signature")
     public ModelAndView mobileSignatureResponse() {
-        return new ModelAndView("welcome");
+        return new ModelAndView("mobile-callback");
     }
 
     @PostMapping("mobile/signature")

example/src/main/resources/static/css/main.css

@@ -116,3 +116,25 @@ body {
     background-color: transparent !important;
 }
 
+/* Mobile callback loading styles */
+.loading-page {
+    text-align: center;
+    padding-top: 3rem;
+    font-family: system-ui, sans-serif;
+}
+
+.spinner {
+    width: 40px;
+    height: 40px;
+    border: 4px solid #ccc;
+    border-top-color: #007bff;
+    border-radius: 50%;
+    animation: spin 1s linear infinite;
+    margin: 1rem auto;
+}
+
+@keyframes spin {
+    to {
+        transform: rotate(360deg);
+    }
+}

example/src/main/resources/templates/mobile-callback.html

@@ -0,0 +1,79 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8"/>
+    <meta name="viewport" content="width=device-width, initial-scale=1"/>
+    <meta http-equiv="Cache-Control" content="no-store"/>
+    <meta id="csrftoken" name="csrftoken" th:content="${_csrf.token}"/>
+    <meta id="csrfheadername" name="csrfheadername" th:content="${_csrf.headerName}"/>
+    <title>Completing signing…</title>
+    <link rel="stylesheet" href="/css/main.css"/>
+</head>
+
+<body class="loading-page">
+<h2>Completing signing…</h2>
+<div class="spinner"></div>
+
+<script>
+    (async () => {
+        try {
+            const fragment = window.location.hash.slice(1);
+
+            if (!fragment) {
+              throw new Error("Missing payload fragment");
+            }
+
+            const decoded = atob(fragment);
+            const payload = JSON.parse(decoded);
+
+            const csrfHeaderName = document.querySelector('#csrfheadername').content;
+            const csrfToken = document.querySelector('#csrftoken').content;
+            const path = window.location.pathname;
+
+            let endpoint;
+            if (path.includes("/sign/mobile/certificate")) {
+                endpoint = "/sign/mobile/certificate";
+
+                payload.certificate = payload.certificate || payload.signingCertificate || null;
+                payload.supportedSignatureAlgorithms = payload.supportedSignatureAlgorithms || [];
+
+            } else if (path.includes("/sign/mobile/signature")) {
+                endpoint = "/sign/mobile/signature";
+            } else {
+                throw new Error("Unexpected callback path: " + path);
+            }
+
+            const response = await fetch(endpoint, {
+                method: "POST",
+                headers: {
+                    "Content-Type": "application/json",
+                    [csrfHeaderName]: csrfToken,
+                },
+                credentials: "include",
+                body: JSON.stringify(payload),
+            });
+
+            if (!response.ok) {
+                throw new Error(await response.text());
+            }
+
+            const result = await response.json();
+
+            if (endpoint.endsWith("/certificate")) {
+                const { request_uri } = result;
+                window.location.replace(request_uri);
+                return;
+            }
+
+            window.location.replace(
+                "/welcome?signed=" + encodeURIComponent(result.name)
+            );
+
+        } catch (error) {
+            console.error("Mobile callback failed", error);
+            window.location.replace("/welcome?error=mobile-callback");
+        }
+    })();
+</script>
+</body>
+</html>

example/src/main/resources/templates/welcome.html

@@ -168,64 +168,6 @@ <h2 class="adding-signature">Digital signing</h2>
             document.querySelector("#file-name").textContent = "Signature added: " + signedFile;
         }
     });
-
-    document.addEventListener("DOMContentLoaded", async () => {
-        const path = window.location.pathname;
-        const fragment = window.location.hash.substring(1);
-        if (!fragment) return;
-
-        try {
-            const decoded = atob(fragment);
-            const payload = JSON.parse(decoded);
-
-            const csrfHeaderName = document.querySelector('#csrfheadername').content;
-            const csrfToken = document.querySelector('#csrftoken').content;
-
-            if (path.includes("/sign/mobile/certificate")) {
-                const certificate = payload.certificate || payload.signingCertificate || null;
-                const supportedSignatureAlgorithms = payload.supportedSignatureAlgorithms || [];
-
-                const response = await fetch("/sign/mobile/certificate", {
-                    method: "POST",
-                    credentials: "include",
-                    headers: {
-                        "Content-Type": "application/json",
-                        [csrfHeaderName]: csrfToken,
-                    },
-                    body: JSON.stringify({ certificate, supportedSignatureAlgorithms }),
-                });
-
-               if (!response.ok) throw new Error(await response.text());
-               const { request_uri } = await response.json();
-               window.location.href = request_uri;
-               return;
-            }
-
-            if (path.includes("/sign/mobile/signature")) {
-                const signature = payload.signature;
-                const signatureAlgorithm = payload.signatureAlgorithm;
-                const signingCertificate = payload.signingCertificate || payload.certificate;
-
-                const response = await fetch("/sign/mobile/signature", {
-                    method: "POST",
-                    credentials: "include",
-                    headers: {
-                        "Content-Type": "application/json",
-                        [csrfHeaderName]: csrfToken,
-                    },
-                    body: JSON.stringify({ signature, signatureAlgorithm, signingCertificate }),
-            });
-
-            if (!response.ok) throw new Error(await response.text());
-            const result = await response.json();
-            window.location.href = "/welcome?signed=" + encodeURIComponent(result.name);
-            return;
-            }
-        } catch (e) {
-            console.error("Failed to process mobile callback", e);
-            showErrorMessage({ code: "MOBILE_CALLBACK_ERROR", message: e.message });
-        }
-    });
 </script>
 </body>
 </html>