Ailur-Archives
/
burgerauth
Archived
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 1 Wiki Activity
This repository has been archived on 2024-09-28. You can view files and clone it, but cannot push or open issues or pull requests.
burgerauth/static/js/dashboard.js

315 lines
14 KiB
JavaScript
Raw Permalink Normal View History

Open source and release to the public
2024-04-26 21:12:56 +01:00
if (localStorage.getItem("DONOTSHARE-secretkey") === null) {
window.location.replace("/login")
document.body.innerHTML = "Redirecting..."
throw new Error();
}
function attempt() {
Added example configuration, updated README.md, updated background image to Public Domain image, updated styles to be in accordance with the New Burgerware Design, fixed pages displaying poorly on phones, fixed server panics being caused by incorrect JSON, made it clear AESKeyShare is not in working order, made the application not hard-code the URL, made the application not hard-code the app name, updated the CAPTCHA module to the newest version and URL, removed crypto-js, removed unneeded broken code left over from Burgernotes, removed unneeded CSS left over from Burgernotes, made page titles consistant, changed some formatting to be using camel instead of snake case, fixed various JS bad-practices, used a really long commit message.
2024-07-10 18:43:17 +01:00
if (document.getElementById("appidbox").value !== "") {
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
let openid = false;
if (document.getElementById("openidbox").checked) {
openid = true
}
let scopes = []
if (openid) {
scopes.push("openid")
}
if (document.getElementById("aeskeysharebox").value !== "") {
scopes.push("aeskeyshare")
}
Open source and release to the public
2024-04-26 21:12:56 +01:00
fetch(origin + "/api/newauth", {
method: "POST",
headers: {
"Content-Type": "application/json"
},
body: JSON.stringify({
BETA: Add name support instead of relying on the appId
2024-05-06 12:53:04 +01:00
name: document.getElementById("appidbox").value,
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
redirectUri: document.getElementById("rdiruribox").value,
secretKey: localStorage.getItem("DONOTSHARE-secretkey"),
scopes: JSON.stringify(scopes),
keyShareUri: document.getElementById("aeskeysharebox").value
Open source and release to the public
2024-04-26 21:12:56 +01:00
})
})
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
.then(async response => {
let code = await response.json()
document.getElementById("appidbox").value = ""
document.getElementById("rdiruribox").value = ""
document.getElementById("aeskeysharebox").value = ""
document.getElementById("openidbox").checked = false
if (response.status === 200) {
document.getElementById("status").innerText = "Your secret key is: " + code["key"] + " and your client id is: " + code["appId"] + ". This will only be shown once!"
getauths();
} else if (response.status === 500) {
document.getElementById("status").innerText = code["error"]
} else if (response.status === 401) {
document.getElementById("status").innerText = "AppID already taken. (Error Code: " + code["error"] + ")"
} else {
document.getElementById("status").innerText = "Unknown error encountered. (Error Code:" + code["error"] + ")"
Open source and release to the public
2024-04-26 21:12:56 +01:00
}
})
}
}
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
function getSessions() {
fetch(origin + "/api/sessions/list", {
method: "POST",
body: JSON.stringify({
secretKey: localStorage.getItem("DONOTSHARE-secretkey")
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
.then(async (response) => {
let responseData = await response.json()
if (response.status === 200) {
if (responseData === null || responseData.length === 0) {
let statusText = document.createElement("p")
statusText.classList.add("sessionInfo")
statusText.innerText = "Hi there! You don't have any sessions logged in, somehow. Congratulations on breaking the laws of physics!"
document.getElementById("sessionsList").append(statusText)
} else {
document.querySelectorAll(".sessionInfo").forEach(e => e.remove())
document.querySelectorAll(".sessionentry").forEach(e => e.remove())
for (let i in responseData) {
let sessionElement = document.createElement("div")
let sessionDevice = document.createElement("p")
let sessionRemoveButton = document.createElement("button")
let sessionImage = document.createElement("img")
if (responseData[i]["thisSession"]) {
sessionDevice.innerText = "(current) " + responseData[i]["device"]
} else {
sessionDevice.innerText = responseData[i]["device"]
}
if (responseData[i]["device"].includes("NT") || responseData[i]["device"].includes("Linux") || responseData[i]["device"].includes("Macintosh")) {
sessionImage.src = "/static/svg/device_computer.svg"
} else if (responseData[i]["device"].includes("iPhone" || responseData[i]["device"].includes("Android") || responseData[i]["device"].includes("iPod"))) {
sessionImage.src = "/static/svg/device_smartphone.svg"
} else if (responseData[i]["device"].includes("curl")) {
sessionImage.src = "/static/svg/device_terminal.svg"
} else {
sessionImage.src = "/static/svg/device_other.svg"
}
sessionRemoveButton.innerText = "Remove session"
sessionRemoveButton.addEventListener("click", () => {
fetch(origin + "/api/deleteauth", {
method: "POST",
body: JSON.stringify({
secretKey: localStorage.getItem("DONOTSHARE-secretkey"),
appId: responseData[i]["appId"]
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
sessionElement.remove()
if (responseData[i]["thisSession"]) {
window.location.replace("/logout")
}
});
sessionElement.append(sessionImage)
sessionElement.append(sessionDevice)
sessionElement.append(sessionRemoveButton)
sessionElement.classList.add("sessionentry")
document.getElementById("sessionsList").append(sessionElement)
}
}
} else if (response.status === 500) {
let statusText = document.createElement("p")
statusText.classList.add("sessionInfo")
statusText.innerText = responseData["error"]
document.getElementById("sessionsList").append(statusText)
} else {
let statusText = document.createElement("p")
statusText.classList.add("sessionInfo")
statusText.innerText = "Something went wrong! (error code: " + responseData["error"] + ")"
document.getElementById("sessionsList").append(statusText)
}
});
}
Open source and release to the public
2024-04-26 21:12:56 +01:00
function getauths() {
fetch(origin + "/api/listauth", {
method: "POST",
body: JSON.stringify({
secretKey: localStorage.getItem("DONOTSHARE-secretkey")
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
.then(async (response) => {
let responseData = await response.json()
if (response.status === 200) {
if (responseData === null || responseData.length === 0) {
let statusText = document.createElement("p")
statusText.classList.add("authInfo")
statusText.innerText = "Hi there! You don't have any OAuth2 clients yet. Create one above!"
document.getElementById("oauthlist").append(statusText)
} else {
document.querySelectorAll(".authInfo").forEach(e => e.remove())
document.querySelectorAll(".oauthentry").forEach(e => e.remove())
for (let i in responseData) {
let oauthElement = document.createElement("div")
let oauthText = document.createElement("p")
let oauthName = document.createElement("p")
let oauthUrl = document.createElement("p")
let oauthRemoveButton = document.createElement("button")
oauthText.innerText = "Client ID: " + responseData[i]["appId"]
oauthName.innerText = "App name: " + responseData[i]["name"]
oauthUrl.innerText = "Redirect Url: " + responseData[i]["redirectUri"]
oauthRemoveButton.innerText = "Delete Permanently"
oauthRemoveButton.addEventListener("click", () => {
if (window.confirm("Are you SURE you would like to delete this FOREVER?") === true) {
fetch(origin + "/api/deleteauth", {
method: "POST",
body: JSON.stringify({
secretKey: localStorage.getItem("DONOTSHARE-secretkey"),
appId: responseData[i]["appId"]
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
oauthElement.remove()
}
});
oauthElement.append(oauthText)
oauthElement.append(oauthName)
oauthElement.append(oauthUrl)
let openid = false
let aesKeyShare = false
let scopes = JSON.parse(responseData[i]["scopes"])
for (let n in scopes) {
console.log(scopes[n])
if (scopes[n] === "openid") {
openid = true
} else if (scopes[n] === "aeskeyshare") {
if (responseData[i]["keyShareUri"] !== "none") {
aesKeyShare = true
let keyShareUri = document.createElement("p")
keyShareUri.innerText = "Key Share URI: " + responseData[i]["keyShareUri"]
oauthElement.append(keyShareUri)
}
}
}
let scopeTxt = document.createElement("p")
if (openid || aesKeyShare) {
scopeTxt.innerText = "Scopes: "
if (openid) {
scopeTxt.innerText += "openid"
}
if (aesKeyShare) {
if (!openid) {
scopeTxt.innerText += "aeskeyshare"
} else {
scopeTxt.innerText += ", aeskeyshare"
Open source and release to the public
2024-04-26 21:12:56 +01:00
}
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
}
} else {
scopeTxt.innerText = "You have not defined any scopes for this client."
Open source and release to the public
2024-04-26 21:12:56 +01:00
}
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
oauthElement.append(scopeTxt)
oauthElement.append(oauthRemoveButton)
oauthElement.classList.add("oauthentry")
Open source and release to the public
2024-04-26 21:12:56 +01:00
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
document.getElementById("oauthlist").append(oauthElement)
}
Open source and release to the public
2024-04-26 21:12:56 +01:00
}
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
} else if (response.status === 500) {
let statusText = document.createElement("p")
statusText.classList.add("authInfo")
statusText.innerText = responseData["error"]
document.getElementById("oauthlist").append(statusText)
} else {
let statusText = document.createElement("p")
statusText.classList.add("authInfo")
statusText.innerText = "Something went wrong! (error code: " + responseData["error"] + ")"
document.getElementById("oauthlist").append(statusText)
Open source and release to the public
2024-04-26 21:12:56 +01:00
}
});
}
a message doesn't cover this one. just read the code. it speaks for itself.
2024-07-26 19:25:41 +01:00
async function checkNetwork() {
let loggedIn = await fetch("/api/secretkeyloggedin", {
method: "POST",
body: JSON.stringify({
secretKey: localStorage.getItem("DONOTSHARE-secretkey")
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
if (loggedIn.status === 200) {
return true
} else {
localStorage.removeItem("DONOTSHARE-secretkey");
localStorage.removeItem("DONOTSHARE-password");
window.location.replace("/login" + window.location.search);
return false
}
}
async function deleteacct() {
if (confirm("Are you SURE you would like to delete your account forever?") === true) {
await fetch("/api/deleteaccount", {
method: "POST",
body: JSON.stringify({
"secretKey": localStorage.getItem("DONOTSHARE-secretkey")
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
.then((response) => response)
.then((response) => {
async function doStuff() {
if (response.status === 200) {
parent.window.location.href = '/logout';
}
}
doStuff()
});
}
}
document.addEventListener("DOMContentLoaded", () => {
checkNetwork().then(async (result) => {
if (result) {
getauths()
getSessions()
let response = await fetch("/api/userinfo", {
method: "POST",
body: JSON.stringify({
"secretKey": localStorage.getItem("DONOTSHARE-secretkey")
}),
headers: {
"Content-Type": "application/json; charset=UTF-8"
}
})
const data = await response.json()
if (response.status === 200) {
document.getElementById("namebox").innerText = "Username: " + data["username"];
document.getElementById("datebox").innerText = "Account created: " + new Date(data["created"] * 1000).toLocaleString();
}
}
})
})
document.getElementById("devAcctSwitcher").addEventListener("click", () => {
document.getElementById("developers").classList.toggle("hidden")
document.getElementById("account").classList.toggle("hidden")
if (document.getElementById("devAcctSwitcher").innerText === "Switch to developer view") {
document.getElementById("devAcctSwitcher").innerText = "Switch to account view"
} else {
document.getElementById("devAcctSwitcher").innerText = "Switch to developer view"
}
})