dbgate/packages/web/src/LoginPage.svelte

<script lang="ts">
  import { onMount } from 'svelte';
  import { internalRedirectTo } from './clientAuth';
  import FormPasswordField from './forms/FormPasswordField.svelte';
  import FormSubmit from './forms/FormSubmit.svelte';
  import FormTextField from './forms/FormTextField.svelte';
  import { apiCall, enableApi, strmid } from './utility/api';
  import { useConfig } from './utility/metadataLoaders';
  import ErrorInfo from './elements/ErrorInfo.svelte';
  import FormSelectField from './forms/FormSelectField.svelte';
  import { writable } from 'svelte/store';
  import FormProviderCore from './forms/FormProviderCore.svelte';
  import { openWebLink } from './utility/exportFileTools';
  import FontIcon from './icons/FontIcon.svelte';
  import createRef from './utility/createRef';

  export let isAdminPage;

  const config = useConfig();

  let availableConnections = null;
  let availableProviders = [];
  let isTesting = false;
  const testIdRef = createRef(0);
  let sqlConnectResult;

  let serversLoadedForAmoId = null;

  const values = writable({ amoid: null, databaseServer: null });

  $: selectedConnection = availableConnections?.find(x => x.conid == $values.databaseServer);

  $: selectedProvider = availableProviders?.find(x => x.amoid == $values.amoid);
  $: workflowType = selectedProvider?.workflowType ?? 'credentials';

  async function loadAvailableServers(amoid) {
    if (amoid) {
      availableConnections = await apiCall('storage/get-connections-for-login-page', { amoid });
      if (availableConnections?.length > 0) {
        values.update(x => ({ ...x, databaseServer: availableConnections[0].conid }));
      }
      serversLoadedForAmoId = amoid;
    } else {
      availableConnections = null;
    }
  }

  async function processSingleProvider(provider) {
    if (provider.workflowType == 'redirect') {
      await processRedirectLogin(provider.amoid);
    }
    if (provider.workflowType == 'anonymous') {
      processCredentialsLogin(provider.amoid, {});
    }
  }

  async function loadAvailableAuthProviders() {
    const resp = await apiCall('auth/get-providers');
    availableProviders = resp.providers;
    values.update(x => ({ ...x, amoid: resp.default }));

    if (availableProviders.length == 1) {
      processSingleProvider(availableProviders[0]);
    }
  }

  onMount(() => {
    const removed = document.getElementById('starting_dbgate_zero');
    if (removed) removed.remove();

    if (!isAdminPage) {
      loadAvailableAuthProviders();
    }
  });

  $: if ($values.amoid != serversLoadedForAmoId) {
    loadAvailableServers($values.amoid);
  }

  async function processRedirectLogin(amoid) {
    const state = `dbg-oauth:${strmid}:${amoid}`;

    sessionStorage.setItem('oauthState', state);
    console.log('Redirecting to OAUTH provider');

    const resp = await apiCall('auth/redirect', {
      amoid: amoid,
      state,
      redirectUri: location.origin + location.pathname,
    });

    const { uri } = resp;
    if (uri) {
      location.replace(uri);
    }
  }

  async function processCredentialsLogin(amoid, detail) {
    const resp = await apiCall('auth/login', {
      amoid,
      isAdminPage,
      ...detail,
    });
    if (resp.error) {
      internalRedirectTo(
        `/?page=not-logged&error=${encodeURIComponent(resp.error)}&is-admin=${isAdminPage ? 'true' : ''}`
      );
      return;
    }
    const { accessToken } = resp;
    if (accessToken) {
      localStorage.setItem(isAdminPage ? 'adminAccessToken' : 'accessToken', accessToken);
      if (isAdminPage) {
        internalRedirectTo('/?page=admin');
      } else {
        internalRedirectTo('/');
      }
      return;
    }
    internalRedirectTo(`/?page=not-logged`);
  }
</script>

<div class="root theme-light theme-type-light">
  <div class="text">DbGate</div>
  <div class="wrap">
    <div class="logo">
      <img class="img" src="logo192.png" />
    </div>
    <div class="box">
      <div class="heading">Log In</div>
      <FormProviderCore {values}>
        {#if !isAdminPage && availableProviders?.length >= 2}
          <FormSelectField
            label="Authentization method"
            name="amoid"
            isNative
            options={availableProviders.map(mtd => ({ value: mtd.amoid, label: mtd.name }))}
          />
        {/if}

        {#if !isAdminPage && availableConnections && workflowType == 'database'}
          <FormSelectField
            label="Database server"
            name="databaseServer"
            isNative
            options={availableConnections.map(conn => ({ value: conn.conid, label: conn.label }))}
          />
        {/if}

        {#if selectedConnection}
          {#if selectedConnection.passwordMode == 'askUser'}
            <FormTextField label="Username" name="login" autocomplete="username" saveOnInput />
          {/if}
          {#if selectedConnection.passwordMode == 'askUser' || selectedConnection.passwordMode == 'askPassword'}
            <FormPasswordField label="Password" name="password" autocomplete="current-password" saveOnInput />
          {/if}
        {:else}
          {#if !isAdminPage && workflowType == 'credentials'}
            <FormTextField label="Username" name="login" autocomplete="username" saveOnInput />
          {/if}
          {#if workflowType == 'credentials'}
            <FormPasswordField label="Password" name="password" autocomplete="current-password" saveOnInput />
          {/if}
        {/if}

        {#if isAdminPage && $config && !$config.isAdminLoginForm}
          <ErrorInfo message="Admin login is not configured. Please set ADMIN_PASSWORD environment variable" />
        {/if}

        {#if isTesting}
          <div class="ml-5">
            <FontIcon icon="icon loading" /> Testing connection
          </div>
        {/if}

        {#if !isTesting && sqlConnectResult && sqlConnectResult.msgtype == 'error'}
          <div class="error-result ml-5">
            Connect failed: <FontIcon icon="img error" />
            {sqlConnectResult.error}
          </div>
        {/if}

        <div class="submit">
          {#if selectedConnection?.useRedirectDbLogin}
            <FormSubmit
              value="Open database login page"
              on:click={async e => {
                const state = `dbg-dblogin:${strmid}:${selectedConnection?.conid}:${$values.amoid}`;
                sessionStorage.setItem('dbloginAuthState', state);
                // openWebLink(
                //   `connections/dblogin?conid=${selectedConnection?.conid}&state=${encodeURIComponent(state)}&redirectUri=${
                //     location.origin + location.pathname
                //   }`
                // );
                internalRedirectTo(
                  `/connections/dblogin-web?conid=${selectedConnection?.conid}&state=${encodeURIComponent(state)}&redirectUri=${
                    location.origin + location.pathname
                  }`
                );
              }}
            />
          {:else if selectedConnection}
            <FormSubmit
              value="Log In"
              on:click={async e => {
                if (selectedConnection.passwordMode == 'askUser' || selectedConnection.passwordMode == 'askPassword') {
                  enableApi();
                  isTesting = true;
                  testIdRef.update(x => x + 1);
                  const testid = testIdRef.get();
                  const resp = await apiCall('connections/dblogin-auth', {
                    amoid: $values.amoid,
                    conid: selectedConnection.conid,
                    user: $values['login'],
                    password: $values['password'],
                  });
                  if (testIdRef.get() != testid) return;
                  isTesting = false;
                  if (resp.accessToken) {
                    localStorage.setItem('accessToken', resp.accessToken);
                    internalRedirectTo('/');
                  } else {
                    sqlConnectResult = resp;
                  }
                } else {
                  enableApi();
                  const resp = await apiCall('connections/dblogin-auth', {
                    amoid: $values.amoid,
                    conid: selectedConnection.conid,
                  });
                  localStorage.setItem('accessToken', resp.accessToken);
                  internalRedirectTo('/');
                }
              }}
            />
          {:else}
            <FormSubmit
              value={isAdminPage
                ? 'Log In as Administrator'
                : workflowType == 'redirect'
                  ? 'Redirect to login page'
                  : 'Log In'}
              on:click={async e => {
                enableApi();

                if (isAdminPage || workflowType == 'credentials' || workflowType == 'anonymous') {
                  await processCredentialsLogin($values.amoid, e.detail);
                } else if (workflowType == 'redirect') {
                  await processRedirectLogin($values.amoid);
                }
              }}
            />
          {/if}
        </div>
      </FormProviderCore>
    </div>
  </div>
</div>

<style>
  .logo {
    display: flex;
    margin-bottom: 1rem;
    align-items: center;
    justify-content: center;
  }
  .img {
    width: 80px;
  }
  .text {
    position: fixed;
    top: 1rem;
    left: 1rem;
    font-size: 30pt;
    font-family: monospace;
    color: var(--theme-bg-2);
    text-transform: uppercase;
  }
  .submit {
    margin: var(--dim-large-form-margin);
    display: flex;
  }

  .submit :global(input) {
    flex: 1;
    font-size: larger;
  }

  .root {
    color: var(--theme-font-1);
    display: flex;
    justify-content: center;
    background-color: var(--theme-bg-1);
    align-items: baseline;
    position: fixed;
    top: 0;
    left: 0;
    right: 0;
    bottom: 0;
  }

  .box {
    width: 600px;
    max-width: 80vw;
    /* max-width: 600px;
    width: 40vw; */
    border: 1px solid var(--theme-border);
    border-radius: 4px;
    background-color: var(--theme-bg-0);
  }

  .wrap {
    margin-top: 20vh;
  }

  .heading {
    text-align: center;
    margin: 1em;
    font-size: xx-large;
  }
</style>
login page 2022-11-25 12:36:18 +00:00			`<script lang="ts">`
			`import { onMount } from 'svelte';`
forms login 2022-11-26 10:21:37 +00:00			`import { internalRedirectTo } from './clientAuth';`
login page 2022-11-25 12:36:18 +00:00			`import FormPasswordField from './forms/FormPasswordField.svelte';`
			`import FormSubmit from './forms/FormSubmit.svelte';`
			`import FormTextField from './forms/FormTextField.svelte';`
dblogin auth 2024-08-05 15:00:29 +00:00			`import { apiCall, enableApi, strmid } from './utility/api';`
admin login support 2024-07-27 09:26:03 +00:00			`import { useConfig } from './utility/metadataLoaders';`
			`import ErrorInfo from './elements/ErrorInfo.svelte';`
database login support 2024-08-02 10:25:19 +00:00			`import FormSelectField from './forms/FormSelectField.svelte';`
			`import { writable } from 'svelte/store';`
			`import FormProviderCore from './forms/FormProviderCore.svelte';`
dblogin auth 2024-08-05 15:00:29 +00:00			`import { openWebLink } from './utility/exportFileTools';`
			`import FontIcon from './icons/FontIcon.svelte';`
			`import createRef from './utility/createRef';`
login page 2022-11-25 12:36:18 +00:00
admin page support 2024-07-26 14:30:01 +00:00			`export let isAdminPage;`

admin login support 2024-07-27 09:26:03 +00:00			`const config = useConfig();`

database login support 2024-08-02 10:25:19 +00:00			`let availableConnections = null;`
multiauth WIP 2024-08-07 11:58:44 +00:00			`let availableProviders = [];`
dblogin auth 2024-08-05 15:00:29 +00:00			`let isTesting = false;`
			`const testIdRef = createRef(0);`
			`let sqlConnectResult;`
database login support 2024-08-02 10:25:19 +00:00
multiauth WIP 2024-08-07 11:58:44 +00:00			`let serversLoadedForAmoId = null;`

			`const values = writable({ amoid: null, databaseServer: null });`
dblogin auth 2024-08-05 15:00:29 +00:00
			`$: selectedConnection = availableConnections?.find(x => x.conid == $values.databaseServer);`
database login support 2024-08-02 10:25:19 +00:00
multiauth WIP 2024-08-07 12:47:33 +00:00			`$: selectedProvider = availableProviders?.find(x => x.amoid == $values.amoid);`
			`$: workflowType = selectedProvider?.workflowType ?? 'credentials';`

multiauth WIP 2024-08-07 11:58:44 +00:00			`async function loadAvailableServers(amoid) {`
			`if (amoid) {`
			`availableConnections = await apiCall('storage/get-connections-for-login-page', { amoid });`
			`if (availableConnections?.length > 0) {`
			`values.update(x => ({ ...x, databaseServer: availableConnections[0].conid }));`
			`}`
			`serversLoadedForAmoId = amoid;`
			`} else {`
			`availableConnections = null;`
database login support 2024-08-02 10:25:19 +00:00			`}`
			`}`

auto login for single provider 2024-08-08 07:16:50 +00:00			`async function processSingleProvider(provider) {`
			`if (provider.workflowType == 'redirect') {`
			`await processRedirectLogin(provider.amoid);`
			`}`
			`if (provider.workflowType == 'anonymous') {`
			`processCredentialsLogin(provider.amoid, {});`
			`}`
			`}`

multiauth WIP 2024-08-07 11:58:44 +00:00			`async function loadAvailableAuthProviders() {`
			`const resp = await apiCall('auth/get-providers');`
			`availableProviders = resp.providers;`
			`values.update(x => ({ ...x, amoid: resp.default }));`
auto login for single provider 2024-08-08 07:16:50 +00:00
			`if (availableProviders.length == 1) {`
			`processSingleProvider(availableProviders[0]);`
			`}`
multiauth WIP 2024-08-07 11:58:44 +00:00			`}`

login page 2022-11-25 12:36:18 +00:00			`onMount(() => {`
			`const removed = document.getElementById('starting_dbgate_zero');`
			`if (removed) removed.remove();`
database login support 2024-08-02 10:25:19 +00:00
			`if (!isAdminPage) {`
multiauth WIP 2024-08-07 11:58:44 +00:00			`loadAvailableAuthProviders();`
database login support 2024-08-02 10:25:19 +00:00			`}`
login page 2022-11-25 12:36:18 +00:00			`});`
multiauth WIP 2024-08-07 11:58:44 +00:00
			`$: if ($values.amoid != serversLoadedForAmoId) {`
			`loadAvailableServers($values.amoid);`
			`}`
auto login for single provider 2024-08-08 07:16:50 +00:00
			`async function processRedirectLogin(amoid) {`
			const state = `dbg-oauth:${strmid}:${amoid}`;

			`sessionStorage.setItem('oauthState', state);`
			`console.log('Redirecting to OAUTH provider');`

			`const resp = await apiCall('auth/redirect', {`
			`amoid: amoid,`
			`state,`
			`redirectUri: location.origin + location.pathname,`
			`});`

			`const { uri } = resp;`
			`if (uri) {`
			`location.replace(uri);`
			`}`
			`}`

			`async function processCredentialsLogin(amoid, detail) {`
			`const resp = await apiCall('auth/login', {`
			`amoid,`
			`isAdminPage,`
			`...detail,`
			`});`
			`if (resp.error) {`
			`internalRedirectTo(`
			`/?page=not-logged&error=${encodeURIComponent(resp.error)}&is-admin=${isAdminPage ? 'true' : ''}`
			`);`
			`return;`
			`}`
			`const { accessToken } = resp;`
			`if (accessToken) {`
			`localStorage.setItem(isAdminPage ? 'adminAccessToken' : 'accessToken', accessToken);`
			`if (isAdminPage) {`
			`internalRedirectTo('/?page=admin');`
			`} else {`
			`internalRedirectTo('/');`
			`}`
			`return;`
			`}`
			internalRedirectTo(`/?page=not-logged`);
			`}`
login page 2022-11-25 12:36:18 +00:00			`</script>`

			`<div class="root theme-light theme-type-light">`
			`<div class="text">DbGate</div>`
			`<div class="wrap">`
			`<div class="logo">`
			`<img class="img" src="logo192.png" />`
			`</div>`
			`<div class="box">`
			`<div class="heading">Log In</div>`
database login support 2024-08-02 10:25:19 +00:00			`<FormProviderCore {values}>`
auto login for single provider 2024-08-08 07:16:50 +00:00			`{#if !isAdminPage && availableProviders?.length >= 2}`
multiauth WIP 2024-08-07 11:58:44 +00:00			`<FormSelectField`
			`label="Authentization method"`
			`name="amoid"`
			`isNative`
			`options={availableProviders.map(mtd => ({ value: mtd.amoid, label: mtd.name }))}`
			`/>`
			`{/if}`

multiauth WIP 2024-08-07 12:47:33 +00:00			`{#if !isAdminPage && availableConnections && workflowType == 'database'}`
database login support 2024-08-02 10:25:19 +00:00			`<FormSelectField`
			`label="Database server"`
			`name="databaseServer"`
			`isNative`
dblogin auth 2024-08-05 15:00:29 +00:00			`options={availableConnections.map(conn => ({ value: conn.conid, label: conn.label }))}`
database login support 2024-08-02 10:25:19 +00:00			`/>`
			`{/if}`

dblogin auth 2024-08-05 15:00:29 +00:00			`{#if selectedConnection}`
			`{#if selectedConnection.passwordMode == 'askUser'}`
			`<FormTextField label="Username" name="login" autocomplete="username" saveOnInput />`
			`{/if}`
			`{#if selectedConnection.passwordMode == 'askUser' \|\| selectedConnection.passwordMode == 'askPassword'}`
			`<FormPasswordField label="Password" name="password" autocomplete="current-password" saveOnInput />`
			`{/if}`
			`{:else}`
multiauth WIP 2024-08-07 12:47:33 +00:00			`{#if !isAdminPage && workflowType == 'credentials'}`
dblogin auth 2024-08-05 15:00:29 +00:00			`<FormTextField label="Username" name="login" autocomplete="username" saveOnInput />`
			`{/if}`
multiauth WIP 2024-08-07 12:47:33 +00:00			`{#if workflowType == 'credentials'}`
			`<FormPasswordField label="Password" name="password" autocomplete="current-password" saveOnInput />`
			`{/if}`
admin page support 2024-07-26 14:30:01 +00:00			`{/if}`
login page 2022-11-25 12:36:18 +00:00
admin login support 2024-07-27 09:26:03 +00:00			`{#if isAdminPage && $config && !$config.isAdminLoginForm}`
			`<ErrorInfo message="Admin login is not configured. Please set ADMIN_PASSWORD environment variable" />`
			`{/if}`

dblogin auth 2024-08-05 15:00:29 +00:00			`{#if isTesting}`
			`<div class="ml-5">`
			`<FontIcon icon="icon loading" /> Testing connection`
			`</div>`
			`{/if}`

			`{#if !isTesting && sqlConnectResult && sqlConnectResult.msgtype == 'error'}`
			`<div class="error-result ml-5">`
			`Connect failed: <FontIcon icon="img error" />`
			`{sqlConnectResult.error}`
			`</div>`
			`{/if}`

login page 2022-11-25 12:36:18 +00:00			`<div class="submit">`
dblogin auth 2024-08-05 15:00:29 +00:00			`{#if selectedConnection?.useRedirectDbLogin}`
			`<FormSubmit`
			`value="Open database login page"`
			`on:click={async e => {`
multiauth 2024-08-07 15:02:19 +00:00			const state = `dbg-dblogin:${strmid}:${selectedConnection?.conid}:${$values.amoid}`;
auth db login workflow 2024-08-06 10:45:28 +00:00			`sessionStorage.setItem('dbloginAuthState', state);`
			`// openWebLink(`
dblogin auth 2024-08-05 15:00:29 +00:00			// `connections/dblogin?conid=${selectedConnection?.conid}&state=${encodeURIComponent(state)}&redirectUri=${
			`// location.origin + location.pathname`
			// }`
			`// );`
auth db login workflow 2024-08-06 10:45:28 +00:00			`internalRedirectTo(`
fix 2024-08-14 14:33:30 +00:00			`/connections/dblogin-web?conid=${selectedConnection?.conid}&state=${encodeURIComponent(state)}&redirectUri=${
auth db login workflow 2024-08-06 10:45:28 +00:00			`location.origin + location.pathname`
			}`
			`);`
dblogin auth 2024-08-05 15:00:29 +00:00			`}}`
			`/>`
			`{:else if selectedConnection}`
			`<FormSubmit`
			`value="Log In"`
			`on:click={async e => {`
			`if (selectedConnection.passwordMode == 'askUser' \|\| selectedConnection.passwordMode == 'askPassword') {`
			`enableApi();`
			`isTesting = true;`
			`testIdRef.update(x => x + 1);`
			`const testid = testIdRef.get();`
			`const resp = await apiCall('connections/dblogin-auth', {`
multiauth 2024-08-07 15:02:19 +00:00			`amoid: $values.amoid,`
dblogin auth 2024-08-05 15:00:29 +00:00			`conid: selectedConnection.conid,`
			`user: $values['login'],`
			`password: $values['password'],`
			`});`
			`if (testIdRef.get() != testid) return;`
			`isTesting = false;`
			`if (resp.accessToken) {`
			`localStorage.setItem('accessToken', resp.accessToken);`
error page handling fixes 2024-08-06 12:59:09 +00:00			`internalRedirectTo('/');`
dblogin auth 2024-08-05 15:00:29 +00:00			`} else {`
			`sqlConnectResult = resp;`
			`}`
single connection support 2024-08-06 08:58:18 +00:00			`} else {`
			`enableApi();`
			`const resp = await apiCall('connections/dblogin-auth', {`
multiauth 2024-08-07 15:02:19 +00:00			`amoid: $values.amoid,`
single connection support 2024-08-06 08:58:18 +00:00			`conid: selectedConnection.conid,`
			`});`
			`localStorage.setItem('accessToken', resp.accessToken);`
error page handling fixes 2024-08-06 12:59:09 +00:00			`internalRedirectTo('/');`
admin login support 2024-07-27 09:26:03 +00:00			`}`
dblogin auth 2024-08-05 15:00:29 +00:00			`}}`
			`/>`
			`{:else}`
			`<FormSubmit`
multiauth WIP 2024-08-07 12:47:33 +00:00			`value={isAdminPage`
			`? 'Log In as Administrator'`
			`: workflowType == 'redirect'`
			`? 'Redirect to login page'`
			`: 'Log In'}`
dblogin auth 2024-08-05 15:00:29 +00:00			`on:click={async e => {`
			`enableApi();`
multiauth WIP 2024-08-07 12:47:33 +00:00
			`if (isAdminPage \|\| workflowType == 'credentials' \|\| workflowType == 'anonymous') {`
auto login for single provider 2024-08-08 07:16:50 +00:00			`await processCredentialsLogin($values.amoid, e.detail);`
multiauth refactor 2024-08-07 14:28:24 +00:00			`} else if (workflowType == 'redirect') {`
auto login for single provider 2024-08-08 07:16:50 +00:00			`await processRedirectLogin($values.amoid);`
dblogin auth 2024-08-05 15:00:29 +00:00			`}`
			`}}`
			`/>`
			`{/if}`
login page 2022-11-25 12:36:18 +00:00			`</div>`
database login support 2024-08-02 10:25:19 +00:00			`</FormProviderCore>`
login page 2022-11-25 12:36:18 +00:00			`</div>`
			`</div>`
			`</div>`

			`<style>`
			`.logo {`
			`display: flex;`
			`margin-bottom: 1rem;`
			`align-items: center;`
			`justify-content: center;`
			`}`
			`.img {`
			`width: 80px;`
			`}`
			`.text {`
			`position: fixed;`
			`top: 1rem;`
			`left: 1rem;`
support for acticve directory #261 2022-11-25 15:38:17 +00:00			`font-size: 30pt;`
			`font-family: monospace;`
login page 2022-11-25 12:36:18 +00:00			`color: var(--theme-bg-2);`
support for acticve directory #261 2022-11-25 15:38:17 +00:00			`text-transform: uppercase;`
login page 2022-11-25 12:36:18 +00:00			`}`
			`.submit {`
			`margin: var(--dim-large-form-margin);`
			`display: flex;`
			`}`

			`.submit :global(input) {`
			`flex: 1;`
			`font-size: larger;`
			`}`

			`.root {`
			`color: var(--theme-font-1);`
			`display: flex;`
			`justify-content: center;`
			`background-color: var(--theme-bg-1);`
			`align-items: baseline;`
			`position: fixed;`
			`top: 0;`
			`left: 0;`
			`right: 0;`
			`bottom: 0;`
			`}`

			`.box {`
support for acticve directory #261 2022-11-25 15:38:17 +00:00			`width: 600px;`
			`max-width: 80vw;`
			`/* max-width: 600px;`
			`width: 40vw; */`
login page 2022-11-25 12:36:18 +00:00			`border: 1px solid var(--theme-border);`
			`border-radius: 4px;`
			`background-color: var(--theme-bg-0);`
			`}`

			`.wrap {`
			`margin-top: 20vh;`
			`}`

			`.heading {`
			`text-align: center;`
			`margin: 1em;`
			`font-size: xx-large;`
			`}`
			`</style>`