OpenDTU-old/webapp/src/utils/authentication.ts

import type { Emitter, EventType } from 'mitt';
import type { Router } from 'vue-router';

export function authHeader(): Headers {
    // return authorization header with basic auth credentials
    let user = null;
    try {
        user = JSON.parse(localStorage.getItem('user') || '');
    } catch {
        // continue regardless of error
    }

    const headers = new Headers();
    headers.append('X-Requested-With', 'XMLHttpRequest');
    if (user && user.authdata) {
        headers.append('Authorization', 'Basic ' + user.authdata);
    }
    return new Headers(headers);
}

export function authUrl(): string {
    let user = null;
    try {
        user = JSON.parse(localStorage.getItem('user') || '');
    } catch {
        // continue regardless of error
    }

    if (user && user.authdata) {
        return encodeURIComponent(atob(user.authdata)).replace('%3A', ':') + '@';
    }
    return '';
}

export function logout() {
    // remove user from local storage to log user out
    localStorage.removeItem('user');
}

export function isLoggedIn(): boolean {
    return localStorage.getItem('user') != null;
}

export function login(username: string, password: string) {
    const requestOptions = {
        method: 'GET',
        headers: {
            'X-Requested-With': 'XMLHttpRequest',
            Authorization: 'Basic ' + btoa(unescape(encodeURIComponent(username + ':' + password))),
        },
    };

    return fetch('/api/security/authenticate', requestOptions)
        .then(handleAuthResponse)
        .then((retVal) => {
            // login successful if there's a user in the response
            if (retVal) {
                // store user details and basic auth credentials in local storage
                // to keep user logged in between page refreshes
                retVal.authdata = btoa(unescape(encodeURIComponent(username + ':' + password)));
                localStorage.setItem('user', JSON.stringify(retVal));
            }

            return retVal;
        });
}

export function handleResponse(
    response: Response,
    emitter: Emitter<Record<EventType, unknown>>,
    router: Router,
    ignore_error: boolean = false
) {
    return response.text().then((text) => {
        const data = text && JSON.parse(text);
        if (!response.ok) {
            if (response.status === 401) {
                // auto logout if 401 response returned from api
                logout();
                emitter.emit('logged-out');
                router.push({
                    path: '/login',
                    query: { returnUrl: router.currentRoute.value.fullPath },
                });
                return Promise.reject();
            }

            const error = {
                message: (data && data.message) || response.statusText,
                status: response.status || 0,
            };
            if (!ignore_error) {
                router.push({ name: 'Error', params: error });
            }
            return Promise.reject(error);
        }

        return data;
    });
}

function handleAuthResponse(response: Response) {
    return response.text().then((text) => {
        const data = text && JSON.parse(text);
        if (!response.ok) {
            if (response.status === 401) {
                // auto logout if 401 response returned from api
                logout();
            }

            const error = 'Invalid credentials';
            return Promise.reject(error);
        }

        return data;
    });
}