disasters-docs/auth-check.js at main · Disasters-Learning-Portal/disasters-docs · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
// Authentication check for all pages
(function() {
    const SESSION_KEY = 'disasters_docs_auth';

    // Get the base path for the current page
    function getBasePath() {
        const path = window.location.pathname;
        // Extract base directory from current path
        const parts = path.split('/').filter(p => p);
        // Find the index.html or last segment
        const fileIndex = parts.findIndex(p => p.endsWith('.html'));
        if (fileIndex > 0) {
            return '/' + parts.slice(0, fileIndex).join('/') + '/';
        }
        // Default: go to root of disasters-docs
        return '/disasters-docs/';
    }

    function getLoginPage() {
        const basePath = getBasePath();
        return basePath + 'password-protect.html';
    }

    function checkAuth() {
        // Skip authentication on localhost (for development)
        if (window.location.hostname === 'localhost' ||
            window.location.hostname === '127.0.0.1') {
            console.log('Running on localhost - skipping authentication');
            return;
        }

        // Skip check if we're on the login page
        if (window.location.pathname.endsWith('password-protect.html') ||
            window.location.pathname.endsWith('login.html')) {
            return;
        }

        const auth = localStorage.getItem(SESSION_KEY);

        if (!auth) {
            // No authentication, redirect to login
            window.location.href = getLoginPage();
            return;
        }

        try {
            const authData = JSON.parse(auth);
            const now = new Date().getTime();

            if (authData.expires <= now || !authData.authenticated) {
                // Expired or invalid session
                localStorage.removeItem(SESSION_KEY);
                window.location.href = getLoginPage();
                return;
            }

            // Valid session - allow page to load
        } catch (e) {
            // Invalid auth data
            localStorage.removeItem(SESSION_KEY);
            window.location.href = getLoginPage();
        }
    }

    // Run check immediately
    checkAuth();

    // Add logout functionality
    window.addEventListener('DOMContentLoaded', function() {
        // Add logout button to page if it doesn't exist
        const existingLogout = document.getElementById('logout-btn');
        if (!existingLogout) {
            const logoutBtn = document.createElement('button');
            logoutBtn.id = 'logout-btn';
            logoutBtn.textContent = 'Logout';
            logoutBtn.style.cssText = 'position: fixed; top: 10px; right: 10px; padding: 8px 16px; background: #e74c3c; color: white; border: none; border-radius: 5px; cursor: pointer; z-index: 9999; font-size: 14px;';
            logoutBtn.onclick = function() {
                localStorage.removeItem(SESSION_KEY);
                window.location.href = getLoginPage();
            };
            document.body.appendChild(logoutBtn);
        }
    });
})();