osr-plastic/osr-discourse-src
Archived
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
This repository has been archived on 2023-03-18. You can view files and clone it, but cannot push or open issues or pull requests.
a06d310855
osr-discourse-src/app/assets/javascripts/discourse/controllers/preferences/account.js.es6
David Taylor c7c56af397
FEATURE: Allow connecting associated accounts when two-factor is enabled (#6754) 
Previously the 'reconnect' process was a bit magic - IF you were already logged into discourse, and followed the auth flow, your account would be reconnected and you would be 'logged in again'.

Now, we explicitly check for a reconnect=true parameter when the flow is started, store it in the session, and then only follow the reconnect logic if that variable is present. Setting this parameter also skips the 'logged in again' step, which means reconnect now works with 2fa enabled.
2018-12-11 13:19:00 +00:00

251 lines
6.7 KiB
JavaScript
Raw Blame History

import { iconHTML } from "discourse-common/lib/icon-library";
import CanCheckEmails from "discourse/mixins/can-check-emails";
import { default as computed } from "ember-addons/ember-computed-decorators";
import PreferencesTabController from "discourse/mixins/preferences-tab-controller";
import { setting } from "discourse/lib/computed";
import { popupAjaxError } from "discourse/lib/ajax-error";
import showModal from "discourse/lib/show-modal";
import { findAll } from "discourse/models/login-method";
import { ajax } from "discourse/lib/ajax";
import { userPath } from "discourse/lib/url";
// Number of tokens shown by default.
const DEFAULT_AUTH_TOKENS_COUNT = 2;
export default Ember.Controller.extend(
CanCheckEmails,
PreferencesTabController,
{
saveAttrNames: ["name", "title"],
canEditName: setting("enable_names"),
canSaveUser: true,
newNameInput: null,
newTitleInput: null,
passwordProgress: null,
showAllAuthTokens: false,
cannotDeleteAccount: Em.computed.not("currentUser.can_delete_account"),
deleteDisabled: Em.computed.or(
"model.isSaving",
"deleting",
"cannotDeleteAccount"
),
reset() {
this.setProperties({
passwordProgress: null
});
},
@computed()
nameInstructions() {
return I18n.t(
this.siteSettings.full_name_required
? "user.name.instructions_required"
: "user.name.instructions"
);
},
@computed("model.availableTitles")
canSelectTitle(availableTitles) {
return availableTitles.length > 0;
},
@computed()
canChangePassword() {
return (
!this.siteSettings.enable_sso && this.siteSettings.enable_local_logins
);
},
@computed("model.associated_accounts")
associatedAccountsLoaded(associatedAccounts) {
return typeof associatedAccounts !== "undefined";
},
@computed("model.associated_accounts.[]")
authProviders(accounts) {
const allMethods = findAll(
this.siteSettings,
this.capabilities,
this.site.isMobileDevice
);
const result = allMethods.map(method => {
return {
method,
account: accounts.find(account => account.name === method.name) // Will be undefined if no account
};
});
return result.filter(value => {
return value.account || value.method.get("can_connect");
});
},
@computed("model.id")
disableConnectButtons(userId) {
return userId !== this.get("currentUser.id");
},
@computed("model.second_factor_enabled")
canUpdateAssociatedAccounts(secondFactorEnabled) {
if (secondFactorEnabled) {
return false;
}
return (
findAll(this.siteSettings, this.capabilities, this.site.isMobileDevice)
.length > 0
);
},
@computed("showAllAuthTokens", "model.user_auth_tokens")
authTokens(showAllAuthTokens, tokens) {
tokens.sort(
(a, b) =>
a.is_active
? -1
: b.is_active
? 1
: b.seen_at.localeCompare(a.seen_at)
);
return showAllAuthTokens
? tokens
: tokens.slice(0, DEFAULT_AUTH_TOKENS_COUNT);
},
@computed("model.user_auth_tokens")
canShowAllAuthTokens(tokens) {
return tokens.length > DEFAULT_AUTH_TOKENS_COUNT;
},
actions: {
save() {
this.set("saved", false);
const model = this.get("model");
model.set("name", this.get("newNameInput"));
model.set("title", this.get("newTitleInput"));
return model
.save(this.get("saveAttrNames"))
.then(() => {
this.set("saved", true);
})
.catch(popupAjaxError);
},
changePassword() {
if (!this.get("passwordProgress")) {
this.set(
"passwordProgress",
I18n.t("user.change_password.in_progress")
);
return this.get("model")
.changePassword()
.then(() => {
// password changed
this.setProperties({
changePasswordProgress: false,
passwordProgress: I18n.t("user.change_password.success")
});
})
.catch(() => {
// password failed to change
this.setProperties({
changePasswordProgress: false,
passwordProgress: I18n.t("user.change_password.error")
});
});
}
},
delete() {
this.set("deleting", true);
const self = this,
message = I18n.t("user.delete_account_confirm"),
model = this.get("model"),
buttons = [
{
label: I18n.t("cancel"),
class: "d-modal-cancel",
link: true,
callback: () => {
this.set("deleting", false);
}
},
{
label:
iconHTML("exclamation-triangle") +
I18n.t("user.delete_account"),
class: "btn btn-danger",
callback() {
model.delete().then(
function() {
bootbox.alert(I18n.t("user.deleted_yourself"), function() {
window.location.pathname = Discourse.getURL("/");
});
},
function() {
bootbox.alert(I18n.t("user.delete_yourself_not_allowed"));
self.set("deleting", false);
}
);
}
}
];
bootbox.dialog(message, buttons, { classes: "delete-account" });
},
revokeAccount(account) {
const model = this.get("model");
this.set("revoking", true);
model
.revokeAssociatedAccount(account.name)
.then(result => {
if (result.success) {
model.get("associated_accounts").removeObject(account);
} else {
bootbox.alert(result.message);
}
})
.catch(popupAjaxError)
.finally(() => {
this.set("revoking", false);
});
},
toggleShowAllAuthTokens() {
this.set("showAllAuthTokens", !this.get("showAllAuthTokens"));
},
revokeAuthToken(token) {
ajax(
userPath(
`${this.get("model.username_lower")}/preferences/revoke-auth-token`
),
{
type: "POST",
data: token ? { token_id: token.id } : {}
}
);
},
showToken(token) {
showModal("auth-token", { model: token });
},
connectAccount(method) {
method.doLogin(true);
}
}
}
);
Reference in New Issue View Git Blame Copy Permalink