@wral/studio.mods.auth 1.0.0 → 2.0.0

package/dist/lib.cjs.js

@@ -1 +1 @@
-"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});function o(e){return new Promise((t,n)=>{(!e||!e.dispatchEvent)&&n(new Error("getToken must be called with a DOM element")),e.dispatchEvent(new CustomEvent("harness:action",{detail:{type:"auth:requestToken",detail:{callback:t}},bubbles:!0,composed:!0,cancelable:!0}))})}exports.getToken=o;
+"use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});function o(e){return new Promise((t,n)=>{e!=null&&e.dispatchEvent||n(new Error("getToken must be called with an eventTarget or DOM element")),e.dispatchEvent(new CustomEvent("harness:action",{detail:{type:"auth:requestToken",detail:{callback:t}},bubbles:!0,composed:!0,cancelable:!0}))})}exports.getToken=o;

package/dist/lib.es.js

@@ -1,11 +1,9 @@
-function a(e) {
+function o(e) {
   return new Promise((t, n) => {
-    (!e || !e.dispatchEvent) && n(new Error("getToken must be called with a DOM element")), e.dispatchEvent(new CustomEvent("harness:action", {
+    e != null && e.dispatchEvent || n(new Error("getToken must be called with an eventTarget or DOM element")), e.dispatchEvent(new CustomEvent("harness:action", {
       detail: {
         type: "auth:requestToken",
-        detail: {
-          callback: t
-        }
+        detail: { callback: t }
       },
       bubbles: !0,
       composed: !0,
@@ -14,5 +12,5 @@ function a(e) {
   });
 }
 export {
-  a as getToken
+  o as getToken
 };

package/example-app.mjs

@@ -0,0 +1,34 @@
+import { html } from 'lit';
+
+export async function init(toolkit, mod) {
+
+	let token = null;
+
+	const content = html`
+		<div slot="main" id="example-app">
+			<h1>Example</h1>
+			<p>This is an example app.</p>
+			<pre><code>${JSON.stringify(mod, null, 2)}</code></pre>
+		</div>
+	`;
+
+	toolkit.dispatchAction({
+		type: 'app:register',
+		detail: {
+			id: 'example',
+			name: 'Example App',
+			content: () => content,
+		},
+	});
+
+	toolkit.dispatchAction({
+		type: 'auth:requestToken',
+		detail: {
+			callback: (t) => {
+				token = t;
+				console.log("got a token!", token);
+			},
+		}
+	});
+
+}

package/index.html

@@ -4,82 +4,29 @@
   <head>
     <meta charset="UTF-8">
     <meta name="viewport" content="width=device-width, initial-scale=1.0">
-    <title>WRAL.studio</title>
-    <script type="module" src="/vellum-fixture.mjs"></script>
+    <title>Auth Mod Fixture App</title>
+		<link rel="stylesheet" href="./vellum/themes/default/index.css">
 		<meta name="robots" content="noindex, nofollow">
+		<script type="module" src="./vellum/index.mjs"></script>
   </head>
-  <body>
-		<style>
-		/*
-			TODO: move these styles into a theme
-		 */
-		html {
-			--spacing-sm: 0.5rem;
-			--spacing-md: 1rem;
-			--spacing-lg: 2rem;
-			--spacing-xl: 3rem;
-
-			--radius-sm: 5px;
-			--radius-md: 8px;
-			--radius-lg: 10px;
-			--radius-full: 50%;
-			--radius-dynamic: clamp(var(--radius-sm), 1vw, var(--radius-lg));
-
-			--color-primary: #001D68;
-			--color-primary-light: #193377;
-			--color-primary-dark: #00144A;
-			--color-secondary: #2594E3;
-			--color-secondary-light: #46A4E7;
-			--color-secondary-light-1: #c3d6e3;
-			--color-secondary-dark: #1D76B5;
-			--color-error: var(--color-red-dark);
-			--color-red: #D1232A;
-			--color-red-light: #FF2B32;
-			--color-red-dark: #D1232A;
-			--color-yellow: #FFEC19;
-			--color-yellow-light: #FFF15E;
-			--color-yellow-dark: #E5D416;
-			--color-green: #72B509;
-			--color-green-light: #8EC33A;
-			--color-green-dark: #66A208;
-			--color-purple: #33109C;
-			--color-purple-light: #4727A5;
-			--color-purple-dark: #280C7C;
-			--color-orange: #FF9505;
-			--color-orange-light: #FFA21F;
-			--color-orange-dark: #F58F00;
-			--color-white: #FFFFFF;
-			--color-black: #030711;
-			--color-gray-1: #F7F5F4;
-			--color-gray-2: #E7E5E4;
-			--color-gray-3: #D7D4D2;
-			--color-gray-4: #7C7C7C;
-			--color-gray-5: #6C6C6C;
-			--color-gray-6: #565454;
-			--color-gray-7: #424242;
-			--color-gray-8: #263238;
-			--color-gray-9: #1C2321;
+	<wral-studio mod-tag="studio-mod">
+		<studio-mod
+			name="setup"
+			src="/vellum/index.mjs"></studio-mod>
 
-			--font-heading: Inter, sans-serif;
-			--font-body: Arial, sans-serif;
-			--font-size-base: 16px;
-			--color-text: var(--color-gray-9);
+		<studio-mod
+			name="example"
+			require="setup"
+			src="/vellum/example-app.mjs"></studio-mod>
 
-			--drop-shadow-md: 0 0 10px var(--color-gray-3);
-		}
-		html, body {
-			margin: 0;
-			padding: 0;
-			box-sizing: border-box;
-		}
-		</style>
-    <studio-app>
-			<vellum-mod name="setup" src="/vellum-fixture.mjs"></vellum-mod>
+		<studio-mod
+			name="auth"
+			require="setup"
+			api="https://api.wral.com/auth"
+			force-login
+			src="/src/index.mjs"></studio-mod>
 
-			<vellum-mod name="auth" src="/src/index.mjs"
-				api="https://api.wral.com/auth"
-				force-login></vellum-mod>
-
-    </studio-app>
+	</wral-studio>
+  <body>
   </body>
 </html>

package/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@wral/studio.mods.auth",
-	"version": "1.0.0",
+	"version": "2.0.0",
 	"description": "Auth mod for Studio/Vellum",
 	"main": "dist/auth.cjs.js",
 	"module": "dist/auth.es.js",
@@ -21,7 +21,8 @@
 		"lit": "^3.2.1"
 	},
 	"devDependencies": {
-		"@thefarce/vellum": "^0.4.2",
+		"@thefarce/vellum": "^1.0.4",
+		"@thefarce/vellum.mods.managers.layouts.simple-web-component": "^0.2.0",
 		"eslint": "^9.22.0",
 		"eslint-plugin-jest": "^28.11.0",
 		"jest": "^29.7.0",

package/src/{components/forgot-password-form.mjs → forgot-password-form.mjs}

@@ -1,5 +1,4 @@
 import { html, css, LitElement } from 'lit';
-import login from '../login.mjs';
 import { createClient } from '@wral/sdk-auth';
 
 const stages = Object.freeze({
@@ -8,20 +7,25 @@ const stages = Object.freeze({
 	FINISHED: 'finished',
 });
 
-export class ForgotPasswordForm extends LitElement {
+class AuthForgotPasswordForm extends LitElement {
 
 	static get properties() {
 		return {
-			api: { type: String, attribute: 'api' },
-			confirmation: { type: 'String', attribute: 'confirmation' },
+			api: { type: String },
 		};
 	}
 
 	static get styles() {
 		return css`
 			:host {
-				display: block;
-				font-family: Arial, sans-serif;
+				display: flex;
+				flex-direction: column;
+				justify-content: center;
+				align-items: center;
+			}
+			form {
+				display: flex;
+				flex-direction: column;
 			}
 			form input[type="text"],
 			form input[type="password"] {
@@ -29,14 +33,14 @@ export class ForgotPasswordForm extends LitElement {
 				margin: 5px 0 15px 0;
 				padding: var(--spacing-sm, 0.5rem) var(--spacing-md, 1rem);
 				box-sizing: border-box;
-				border: 1px solid var(--color-gray-300, #ccc);
-				border-radius: var(--radius-sm, 5px);
-				color: var(--color-gray-9, #333);
-				background-color: var(--color-gray-0, transparent);
+				border: 1px solid var(--color-gray-300, #CCC);
+				border-radius: var(--radius-sm, 3px);
+				color: var(--color-gray-700, #333);
+				background-color: var(--color-gray-50, #FFF);
 			}
 			form input[type="submit"] {
-				background-color:var(--color-primary, inherit);
-				color: var(--color-gray-0, #fff);
+				background-color: var(--color-primary, inherit);
+				color: var(--color-gray-50, #fff);
 				border: none;
 				padding: var(--spacing-sm, 0.5rem) var(--spacing-md, 1rem);
 				border-radius: var(--radius-dynamic, 5px);
@@ -47,17 +51,16 @@ export class ForgotPasswordForm extends LitElement {
 			}
 			form label {
 				font-size: 14px;
-				color: var(--color-gray-9, #333);
+				color: var(--color-gray-700, #333);
 				font-weight: bold;
 				margin-bottom: var(--spacing-sm, 0.5rem);
 			}
 			.error {
 				color: var(--color-danger, red);
-				font-size: 12px;
+				font-size: 14px;
 			}
 		`;
 	}
-
 	constructor() {
 		super();
 		this.errors = {};
@@ -65,37 +68,35 @@ export class ForgotPasswordForm extends LitElement {
 	}
 
 	connectedCallback() {
-		console.log('[auth]','[forgot-password]', { confirmation: this.confirmation });
 		super.connectedCallback();
-		// If there is a confirmation, update stage
-		if (this.confirmation && this.stage !== stages.FINISHED) {
-			this.stage = stages.CONFIRM;
+		if (this.confirmToken && this.stage !== stages.FINISHED) {
+			this.setStage(stages.CONFIRM);
 		}
+	}
+
+	setStage(stage) {
+		if (this.stage === stage) {
+			return;
+		}
+		this.stage = stage;
 		this.requestUpdate();
 	}
 
 	handleSubmitRequest(e) {
 		e.preventDefault();
-		// Check for submission errors (none since username is required)
 		const username = e.target.username.value;
 		this.username = username;
 
 		// Send API Request
-		const authClient = createClient({
-			baseUrl: this.api,
-		});
+		const authClient = createClient({ baseUrl: this.api });
 		authClient.triggerResetPassword({ username }).then(() => {
-			// Update stage
-			console.log('[auth]', 'triggered reset password for ', username);
-			this.stage = stages.CONFIRM;
+			this.setStage(stages.CONFIRM);
 		}).catch((error) => {
-			console.error('[auth] error triggering reset password', error);
 			this.errors['general'] = error.message ||
-			'Unable to send password reset request. Please try again later.';
+				'Unable to send password reset request. Please try again later.';
 		}).finally(() => {
 			this.requestUpdate();
 		});
-		
 	}
 
 	handleSubmitConfirm(e) {
@@ -105,18 +106,18 @@ export class ForgotPasswordForm extends LitElement {
 		const password = e.target.password.value;
 		const confirmPassword = e.target['confirm-password'].value;
 		if (password !== confirmPassword) {
-			this.errors['confirm-password'] = 'Passwords do not match.';
+			this.errors['confirm-password'] = 'Passwords do not match';
 			this.requestUpdate();
 			return;
 		}
-		const confirmationCode = this.confirmation || e.target['confirmation'].value;
+		const confirmationCode = this.confirmToken || e.target['confirmation'].value;
 		if (!confirmationCode) {
-			this.errors['general'] = 'Confirmation code is required.';
+			this.errors['general'] = 'Confirmation code is required';
 			this.requestUpdate();
 			return;
 		}
 
-		// Send API request
+		// Send API Request
 		const authClient = createClient({
 			baseUrl: this.api,
 		});
@@ -125,19 +126,19 @@ export class ForgotPasswordForm extends LitElement {
 			newPassword: password,
 			confirmationCode,
 		}).then(() => {
-			// Login and emit a login event
-			// TODO: DRY this login event
-			return login(this, { username: this.username, password }).then(({token}) => {
-				// emit a success event
-				this.dispatchEvent(new CustomEvent('login-success', {
-					detail: { token },
-					composed: true,
-					bubbles: true,
-				}));
-			});
+			authClient.mintToken({ username: this.username, password: password })
+				.then(({token}) => {
+					this.dispatchEvent(new CustomEvent('login-success', {
+						detail: { token },
+						bubbles: true,
+						composed: true,
+						cancelable: true,
+					}));
+				});
+			// TODO: handle issues here, probably by refreshing the page
 		}).catch((error) => {
-			console.error('[auth][forgot-password-form]',error);
-			this.errors['general'] = 'Unable to reset password. Please try again later.';
+			this.errors['general'] = error.message ||
+				'Unable to send password reset request. Please try again later.';
 		}).finally(() => {
 			this.requestUpdate();
 		});
@@ -145,13 +146,10 @@ export class ForgotPasswordForm extends LitElement {
 
 	render() {
 		switch (this.stage) {
-		case stages.CONFIRM:
-			return this.renderConfirmForm();
 		case stages.FINISHED:
 			return html`<p>Your password has been reset.</p>`;
-		case stages.REQUEST_SENT:
-			return html`<p>A email has been sent with instructions to finish
-				resetting your password.</p>`;
+		case stages.CONFIRM:
+			return this.renderConfirmForm();
 		case stages.REQUEST:
 		default:
 			return this.renderRequestForm();
@@ -159,7 +157,8 @@ export class ForgotPasswordForm extends LitElement {
 	}
 
 	renderRequestForm() {
-		return html`<form @submit=${this.handleSubmitRequest}>
+		return html`<form @submit="${this.handleSubmitRequest}">
+		<p>Enter your username or email address to request a password reset.</p>
 			<label for="username">Username/Email</label>
 			<input
 				type="text"
@@ -168,22 +167,23 @@ export class ForgotPasswordForm extends LitElement {
 				required
 			/>
 			<p class="error">${this.errors['general']}</p>
-			<input type="submit" value="Request password reset" />
+			<input type="submit" value="Request Password Reset" />
 		</form>`;
 	}
 
+
 	renderConfirmForm() {
-		return html`<form @submit=${this.handleSubmitConfirm}>
-			<p>You should have received a confirmation code to reset your password</p>
+		return html`<form @submit="${this.handleSubmitConfirm}">
+		<p>You should have received a confirmation code to reset your password.</p>
 
-			${this.confirmation ? ''
+		${this.confirmToken ? ''
 		: html`<label for="confirmation">Confirmation Code</label>
-			<input
-				type="text"
-				name="confirmation"
-				placeholder="Confirmation Code"
-				required
-			/>`}
+				<input
+					type="text"
+					name="confirmation"
+					placeholder="Confirmation Code"
+					required
+				/>`}
 
 			<label for="password">New Password</label>
 			<input
@@ -192,10 +192,6 @@ export class ForgotPasswordForm extends LitElement {
 				placeholder="Password"
 				required
 			/>
-			${this.errors['password']
-		? html`<p class="error">${this.errors['password']}</p>`
-		: ''}
-			
 			<label for="confirm-password">Confirm Password</label>
 			<input
 				type="password"
@@ -204,14 +200,18 @@ export class ForgotPasswordForm extends LitElement {
 				required
 			/>
 			${this.errors['confirm-password']
-		? html`<p class="error">${this.errors['confirm-password']}</p>`
-		: ''}
+		? html`<p class="error">${this.errors['confirm-password']}</p>` : ''}
 
 			${this.errors['general']
-		? html`<p class="error">${this.errors['general']}</p>`
-		: ''}
+		? html`<p class="error">${this.errors['general']}</p>` : ''}
+
 			<input type="submit" value="Reset Password" />
 		</form>`;
 	}
 
+
+}
+
+if (!customElements.get('auth-forgot-password-form')) {
+	window.customElements.define('auth-forgot-password-form', AuthForgotPasswordForm);
 }

package/src/helper.mjs

@@ -1,27 +1,16 @@
 /**
- * This is a helper for consumers of the Auth mod to get
- * an API token.
- * @example <code>
- * async () => {
- * 	 const myElem = document.querySelector('my-element');
- *   const token = await getToken(myElem);
- *	 someApiCall({ token, ... });
- * }
- * </code>
- * @param {Element} eventTarget - a DOM element that will trigger the event
- * @returns {Promise} - a promise that resolves with the token
+ * These are helper functions for consumption by other modules.
  */
+
 export function getToken(eventTarget) {
 	return new Promise((resolve, reject) => {
-		if (!eventTarget || !eventTarget.dispatchEvent) {
-			reject(new Error('getToken must be called with a DOM element'));
+		if (!eventTarget?.dispatchEvent) {
+			reject(new Error('getToken must be called with an eventTarget or DOM element'));
 		}
 		eventTarget.dispatchEvent(new CustomEvent('harness:action', {
 			detail: {
 				type: 'auth:requestToken',
-				detail: {
-					callback: resolve,
-				},
+				detail: { callback: resolve },
 			},
 			bubbles: true,
 			composed: true,

package/src/index.mjs

@@ -1,17 +1,113 @@
-import { getToken as getTokenHelper } from './helper.mjs';
-import { getConfig } from './config.mjs';
-import { makeAuth } from './auth.mjs';
+import { getToken as dispatchTokenRequest } from './helper.mjs';
+import authLayout from './layout.mjs';
+import loginForm from './login-form.mjs';
+import {
+	setToken,
+	getFreshToken,
+	destroyToken,
+} from './token.mjs';
 
 export function init(toolkit, mod) {
-	const config = getConfig(toolkit, mod);
-	const auth = makeAuth(config);
-	auth.mount();
-	auth.requestRender(); // initial render
-
-	/* If we'd like to force a login immediately, request the token. */
-	if (config.forceLogin) {
-		getTokenHelper(toolkit.element).then((token) => {
-			auth.log('You have logged in successfully!', token);
+
+	const modName = 'mod-auth';
+	const debug = mod?.element?.attributes?.debug?.value || false;
+	const forceLogin = mod?.element?.attributes?.['force-login']?.value || false;
+
+	const state = {
+		modName,
+		toolkit,
+		apiBaseUrl: mod?.element?.attributes?.api?.value || 'https://api.wral.com/auth',
+		debug: debug ? (...args) => console.log('[auth]',...args) : () => {},
+		tokenKey: `${modName}::token`,
+		callbacks: [],
+		isLoginPresent: false,
+	};
+
+	// Actions
+	Object.entries({
+		'auth:requestToken': requestToken,
+		'auth:destroy': destroy,
+	}).forEach(([actionType, fn]) => {
+		const debug = (...args) => state.debug('[action]', actionType, ...args);
+		toolkit.dispatchAction({
+			type: 'action:register',
+			detail: {
+				actionType,
+				modName,
+				handler: (...args) => {
+					debug('handler', ...args);
+					fn(state, ...args);
+				},
+			},
 		});
+	});
+
+	// Auth Layout - secure layout containing only the auth forms
+	toolkit.dispatchAction({
+		type: 'layout:register',
+		detail: {
+			name: `${modName}::auth-layout`,
+			templateFn: authLayout,
+		},
+	});
+
+	if (forceLogin) {
+		dispatchTokenRequest(mod.element);
+	}
+
+}
+
+/**
+ * Handler for the `auth:requestToken` action
+ */
+async function requestToken(state, eventDetail) {
+	const { callback } = eventDetail;
+	let token;
+	try {
+		token = await getFreshToken(state);
+		callback(token);
+	} catch (err) {
+		console.log('Presenting login form to get a fresh token', err);
+		state.callbacks.push(callback);
+		if (!state.isLoginPresent) {
+			presentLoginForm(state);
+		}
 	}
+
+};
+
+
+function destroy(state) {
+	destroyToken(state);
+	// TODO: destroy the layouts and present a low-security layout
+}
+
+function presentLoginForm(state) {
+	state.isLoginPresent = true;
+	state.toolkit.dispatchAction({
+		type: 'layout:push',
+		detail: {
+			name: `${state.modName}::auth-layout`,
+		},
+	});
+	state.toolkit.dispatchAction({
+		type: 'layout:content:append',
+		detail: {
+			content: loginForm(state, loginSuccessHandler(state)),
+		},
+	});
 }
+
+function loginSuccessHandler(state) {
+	return (event) => {
+		const { token } = event.detail;
+		setToken(state, token);
+		state.callbacks.forEach(callback => callback(token));
+		state.callbacks = [];
+		state.isLoginPresent = false;
+		state.toolkit.dispatchAction({
+			type: 'layout:pop',
+		});
+	};
+}
+

package/src/layout.mjs

@@ -0,0 +1,38 @@
+import { LitElement, html, css } from 'lit';
+
+export class ModAuthLayout extends LitElement {
+	static get styles() {
+		return css`
+			.login-layout {
+				display: flex;
+				flex-direction: column;
+				gap: 1rem;
+				justify-content: center;
+				align-items: center;
+				min-height: 100vh;
+				background-color: var(--color-gray-100);
+			}
+			.login-layout > * {
+				max-width: 400px;
+			}
+		`;
+	}
+
+	render() {
+		return html`
+			<div class="login-layout">
+				<slot name="main"></slot>
+			</div>
+		`;
+	}
+}
+
+if (customElements.get('mod-auth-layout') === undefined) {
+	customElements.define('mod-auth-layout', ModAuthLayout);
+}
+
+export function templateFn() {
+	return html`<mod-auth-layout></mod-auth-layout>`;
+}
+
+export default templateFn;