session-sync-auth-site 0.2.0 → 0.3.0

package/README.md

@@ -65,9 +65,18 @@ app.use(authenticate({
 ```js
 setUpSessionSyncAuthRoutes({
   app,  // required
-  siteId,  // required
-  authDomain,  // required
-  jwtSecret,  // required
+  siteId,  // required (unless getSetupInfo provided)
+  authDomain,  // required (unless getSetupInfo provided)
+  jwtSecret,  // required (unless getSetupInfo provided)
+  getSetupInfo: req => {  // useful for multi-tenancy setups
+    // fetch the needed values based upon req
+    return {
+      siteId,
+      authDomain,
+      jwtSecret,
+      extraUserTableValues,  // optional
+    }
+  },
   protocol: 'https',
   paths: {
     getUser: '/get-user',
@@ -93,15 +102,25 @@ setUpSessionSyncAuthRoutes({
         callbacks: {
           canceledLogin: ({ origin }) => {},
           successfulLogin: ({ origin, accessToken }) => {},
+          canceledAccountUpdate: ({ origin }) => {},
+          successfulAccountUpdate: ({ origin }) => {},
           successfulLogout: ({ origin }) => {},
           unnecessaryLogout: ({ origin }) => {},
           error: ({ errorMessage }) => {},
         },
+        // enabledSSR: true,  // Include this if you use server-side-rendering
       })
 
       // To change the default origin...
       // window.sessionSyncAuth.setDefaultOrigin('https://my-backend-domain.com')
 
+      // When getting data from your backend via AJAX, add in a x-access-token header...
+      // const response = await fetch(url, {
+      //   headers: {
+      //     'x-access-token': window.sessionSyncAuth.getAccessToken(),
+      //   },
+      // })
+
     </script>
   <head>
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "session-sync-auth-site",
-  "version": "0.2.0",
+  "version": "0.3.0",
   "main": "src/index.js",
   "repository": {
     "type": "git",

package/src/authenticate.js

@@ -26,7 +26,25 @@ const authenticate = ({
       console.log('...DB connection established for session-sync-auth-site.')
     }
 
-    const accessToken = req.headers['x-access-token'] || req.query.accessToken
+    let accessToken = req.headers['x-access-token']
+
+    if(!accessToken && req.query.accessToken) {
+      accessToken = req.query.accessToken
+
+      // set cookie in case they have enableSSR=true
+      let cookieObj = {}
+      try {
+        cookieObj = JSON.parse(req.cookies.sessionSyncAuthAccessTokenByOrigin)
+      } catch(e) {}
+      cookieObj[`${req.protocol}://${req.headers.host}`] = accessToken
+      res.cookie('sessionSyncAuthAccessTokenByOrigin', JSON.stringify(cookieObj))
+    }
+
+    if(!accessToken) {
+      try {
+        accessToken = JSON.parse(req.cookies.sessionSyncAuthAccessTokenByOrigin)[`${req.protocol}://${req.headers.host}`]
+      } catch(err) {}
+    }
 
     if(!accessToken) return next()
 

package/src/createDBTables.js

@@ -55,7 +55,7 @@ const setUpConnection = require('./setUpConnection')
     console.log(``)
     console.log(`Tables ${userTableName} and ${sessionTableName} created.`)
     console.log(``)
-    console.log(`Note: The user table may be extended with other columns so long as they are nullable.`)
+    console.log(`Note: The user table may be extended with other columns so long as they are nullable or provided via extraUserTableValues.`)
     console.log(``)
 
   } catch(err) {

package/src/sessionSyncAuthFrontend.js

@@ -1,12 +1,36 @@
 ;(() => {
 
+  let enableSSR = false
   let defaultOrigin
   const setDefaultOrigin = origin => {
     defaultOrigin = origin
   }
 
+  const getLocalStorageOrCookieItem = item => {
+    if(enableSSR) {
+      const desiredCookieNameAndValue = (
+        document.cookie.split(/; ?/g)
+          .map(cookieNameAndValue => cookieNameAndValue.split(/=/g))
+          .find(([ cookieName ]) => cookieName === item)
+      )
+      if(!desiredCookieNameAndValue) return undefined
+      return decodeURIComponent(desiredCookieNameAndValue[1])
+    } else {
+      return localStorage.getItem(item)
+    }
+  }
+
+  const setLocalStorageOrCookieItem = (item, value) => {
+    if(enableSSR) {
+      const expireStr = new Date(Date.now() + (365 * 1000 * 60 * 60 * 24)).toUTCString()  // one year
+      document.cookie = item + "=" + encodeURIComponent(value) + ";expires=" + expireStr + ";path=/";
+    } else {
+      localStorage.setItem(item, value)
+    }
+  }
+
   const getAccessToken = ({ origin=defaultOrigin }={}) => (
-    JSON.parse(localStorage.getItem('sessionSyncAuthAccessTokenByOrigin') || `{}`)[origin]
+    JSON.parse(getLocalStorageOrCookieItem('sessionSyncAuthAccessTokenByOrigin') || `{}`)[origin]
   )
 
   const getQueryStringAddOn = extraQueryParamsForCallbacks => {
@@ -19,15 +43,24 @@
     return queryStringAddOn
   }
 
-  const logIn = async ({ origin=defaultOrigin, extraQueryParamsForCallbacks }={}) => {
-    const cancelRedirectUrl = `${location.href.replace(/\?.*$/, '')}?action=canceledLogin&origin=${encodeURIComponent(origin)}${getQueryStringAddOn(extraQueryParamsForCallbacks)}`
-    const loggedInRedirectUrl = `${location.href.replace(/\?.*$/, '')}?action=successfulLogin&origin=${encodeURIComponent(origin)}&accessToken=ACCESS_TOKEN${getQueryStringAddOn(extraQueryParamsForCallbacks)}`
+  const logIn = async ({ origin=defaultOrigin, extraQueryParamsForCallbacks, redirectHref }={}) => {
+    const cancelRedirectUrl = `${redirectHref || location.href.replace(/\?.*$/, '')}?action=canceledLogin&origin=${encodeURIComponent(origin)}${getQueryStringAddOn(extraQueryParamsForCallbacks)}`
+    const loggedInRedirectUrl = `${redirectHref || location.href.replace(/\?.*$/, '')}?action=successfulLogin&origin=${encodeURIComponent(origin)}&accessToken=ACCESS_TOKEN${getQueryStringAddOn(extraQueryParamsForCallbacks)}`
 
     const queryString = `cancelRedirectUrl=${encodeURIComponent(cancelRedirectUrl)}&loggedInRedirectUrl=${encodeURIComponent(loggedInRedirectUrl)}`
 
     window.location = `${origin}/log-in?${queryString}`
   }
 
+  const updateAccount = async ({ origin=defaultOrigin, extraQueryParamsForCallbacks, redirectHref }={}) => {
+    const cancelRedirectUrl = `${redirectHref || location.href.replace(/\?.*$/, '')}?action=canceledAccountUpdate&origin=${encodeURIComponent(origin)}${getQueryStringAddOn(extraQueryParamsForCallbacks)}`
+    const updatedRedirectUrl = `${redirectHref || location.href.replace(/\?.*$/, '')}?action=successfulAccountUpdate&origin=${encodeURIComponent(origin)}${getQueryStringAddOn(extraQueryParamsForCallbacks)}`
+
+    const queryString = `cancelRedirectUrl=${encodeURIComponent(cancelRedirectUrl)}&updatedRedirectUrl=${encodeURIComponent(updatedRedirectUrl)}`
+
+    window.location = `${origin}/update-account?${queryString}`
+  }
+
   const getUser = async ({ origin=defaultOrigin }={}) => {
     const response = await fetch(`${origin}/get-user`, {
       headers: {
@@ -48,10 +81,14 @@
     window.location = `${origin}/log-out?${queryString}`
   }
 
-  const init = ({ defaultOrigin, callbacks }) => {
+  const init = ({ defaultOrigin, callbacks, enableSSR: newEnableSSRValue }) => {
 
     if(defaultOrigin) setDefaultOrigin(defaultOrigin)
 
+    if(typeof newEnableSSRValue === 'boolean') {
+      enableSSR = newEnableSSRValue
+    }
+
     const getParam = regex => decodeURIComponent((window.location.search.match(regex) || [])[1] || '') || null
 
     const origin = getParam(/[?&]origin=([^&]*)/)
@@ -60,13 +97,19 @@
     const errorMessage = getParam(/[?&]errorMessage=([^&]*)/)
 
     if(origin) {
-      const sessionSyncAuthAccessTokenByOrigin = JSON.parse(localStorage.getItem('sessionSyncAuthAccessTokenByOrigin') || `{}`)
+      const sessionSyncAuthAccessTokenByOrigin = JSON.parse(getLocalStorageOrCookieItem('sessionSyncAuthAccessTokenByOrigin') || `{}`)
       if(accessToken) {
         sessionSyncAuthAccessTokenByOrigin[origin] = accessToken
       } else if([ 'successfulLogout', 'unnecessaryLogout' ].includes(action)) {
         delete sessionSyncAuthAccessTokenByOrigin[origin]
       }
-      localStorage.setItem('sessionSyncAuthAccessTokenByOrigin', JSON.stringify(sessionSyncAuthAccessTokenByOrigin))
+      setLocalStorageOrCookieItem('sessionSyncAuthAccessTokenByOrigin', JSON.stringify(sessionSyncAuthAccessTokenByOrigin))
+
+      if(accessToken && enableSSR) {
+        // refresh without the origin query param
+        window.location = `${location.href.replace(/\?.*$/, '')}${window.location.search.replace(/&?(?:origin)=(?:[^&]*)/g, '').replace(/^\?$/, '')}`
+        return
+      }
     }
 
     try {
@@ -84,6 +127,7 @@
   const sessionSyncAuth = {
     getAccessToken,
     logIn,
+    updateAccount,
     getUser,
     logOut,
     init,

package/src/setUpSessionSyncAuthRoutes.js

@@ -7,16 +7,20 @@ const setUpSessionSyncAuthRoutes = ({
   siteId,
   authDomain,
   jwtSecret,
+  getSetupInfo,  // for multi-tenancy setup; sent req and must return the siteId, authDomain, and jwtSecret
   protocol='https',
   paths: {
     getUser='/get-user',
     logIn='/log-in',
+    updateAccount='/update-account',
     logOut='/log-out',
     authSync='/auth-sync',
   }={},
   languageColType='639-3',  // OPTIONS: '639-1', '639-3', 'IETF'
 }) => {
 
+  getSetupInfo = getSetupInfo || (async () => ({ siteId, jwtSecret, authDomain }))
+
   app.get(getUser, (req, res, next) => {
     res.json({
       status: req.user ? 'Logged in' : 'Not logged in',
@@ -24,8 +28,9 @@ const setUpSessionSyncAuthRoutes = ({
     })
   })
 
-  app.get(logIn, (req, res, next) => {
+  app.get(logIn, async (req, res, next) => {
     const { loggedInRedirectUrl, cancelRedirectUrl } = req.query
+    const { siteId, jwtSecret, authDomain } = await getSetupInfo(req)
 
     const jwtData = jwt.sign(
       {
@@ -38,8 +43,24 @@ const setUpSessionSyncAuthRoutes = ({
     res.redirect(`${protocol}://${authDomain}/login?siteId=${encodeURIComponent(siteId)}&jwtData=${encodeURIComponent(jwtData)}`)
   })
 
-  app.get(logOut, (req, res, next) => {
+  app.get(updateAccount, async (req, res, next) => {
+    const { updatedRedirectUrl, cancelRedirectUrl } = req.query
+    const { siteId, jwtSecret, authDomain } = await getSetupInfo(req)
+
+    const jwtData = jwt.sign(
+      {
+        cancelRedirectUrl,
+        updatedRedirectUrl,
+      },
+      jwtSecret,
+    )
+
+    res.redirect(`${protocol}://${authDomain}/account?siteId=${encodeURIComponent(siteId)}&jwtData=${encodeURIComponent(jwtData)}`)
+  })
+
+  app.get(logOut, async (req, res, next) => {
     const { redirectUrl, noLoginRedirectUrl } = req.query
+    const { siteId, jwtSecret, authDomain } = await getSetupInfo(req)
 
     if(!req.user) {
       console.warn(`logout attemped with no login`)
@@ -59,6 +80,7 @@ const setUpSessionSyncAuthRoutes = ({
 
   app.post(authSync, async (req, res, next) => {
     const { payload } = req.body
+    const { jwtSecret, extraUserTableValues } = await getSetupInfo(req)
 
     try {
 
@@ -126,7 +148,7 @@ const setUpSessionSyncAuthRoutes = ({
 
         variables[`user__${id}`] = getSnakeCaseOfKeys(
           user,
-          [ 'id', 'email', 'name', 'image', 'language', 'created_at', 'updated_at' ],
+          [ 'id', 'email', 'name', 'image', 'language', 'gender', 'created_at', 'updated_at' ],
         )
 
         if(languageColType !== 'IETF') {
@@ -137,6 +159,13 @@ const setUpSessionSyncAuthRoutes = ({
           variables[`user__${id}`].language = iso6393To1[variables[`user__${id}`].language] || 'en'
         }
 
+        if(extraUserTableValues) {
+          variables[`user__${id}`] = {
+            ...extraUserTableValues,
+            ...variables[`user__${id}`],
+          }
+        }
+
         mapKeys(variables[`user__${id}`], 'user')
 
         queries.push(`

package/test/app.html

@@ -12,6 +12,8 @@
         callbacks: {
           canceledLogin: ({ origin }) => alert(`Canceled login to ${origin}`),
           successfulLogin: ({ origin }) => alert(`Successful login to ${origin}`),
+          canceledAccountUpdate: ({ origin }) => alert(`Canceled login to ${origin}`),
+          successfulAccountUpdate: ({ origin }) => alert(`Successful login to ${origin}`),
           successfulLogout: ({ origin }) => alert(`Successful logout from ${origin}`),
           unnecessaryLogout: ({ origin }) => alert(`Unnecessary logout from ${origin}`),
           error: ({ errorMessage }) => alert(`ERROR: ${errorMessage}`),