CRISTAL-381: Make the github backend supported #687
Conversation
* Working authentication * Content display * Content edition * Content deletion * Updated navigation tree to use public API * Updated history to use public API
| private readonly accessTokenCookieKeyPrefix = "accessToken"; | ||
|
|
||
| async start(): Promise<void> { | ||
| const authorizationUrl = new URL("http://localhost:15682/device-login"); |
There was a problem hiding this comment.
Shouldn't this URL be defined in the configuration?
| } = await response.json(); | ||
|
|
||
| window.localStorage.setItem( | ||
| "currentConfigName", |
There was a problem hiding this comment.
Why are all the string constants defined in fields but not this one?
| @@ -29,7 +29,7 @@ interface AuthenticationManager { | |||
| /** | |||
| * Starts the authentication process. | |||
| */ | |||
| start(): void; | |||
| start(): Promise<void>; | |||
There was a problem hiding this comment.
the signature changes, we need to update the since for this method
| let expiresIn: number = | ||
| parseInt(window.localStorage.getItem(this.localStorageExpiresIn)!) * 1000; | ||
|
|
||
| const intervalId = setInterval(async () => { |
There was a problem hiding this comment.
This block deserves an explanation, and possible to be isolated in a private method, feels hard to understand without carefully reading the code.
| parseInt(window.localStorage.getItem(this.localStorageExpiresIn)!) * 1000; | ||
|
|
||
| const intervalId = setInterval(async () => { | ||
| fetch(verificationUrl).then(async (response) => { |
There was a problem hiding this comment.
await is preferable over then in async methods
| jsonResponse.token_type!, | ||
| cookiesOptions, | ||
| ); | ||
| window.location.reload(); |
There was a problem hiding this comment.
is this working on electron?
| let expirationSeconds: number = parseInt( | ||
| window.localStorage.getItem(localStorageExpiresIn)!, | ||
| ); | ||
| const intervalId = setInterval(() => { |
There was a problem hiding this comment.
I think this deserves a comment
| </x-btn> | ||
| </template> | ||
| <template #default> | ||
| Step 1: Copy the following code |
| @@ -52,8 +52,8 @@ function logout() { | |||
| <template v-if="!error"> | |||
| <i18n-t keypath="userDescription" tag="span"> | |||
| <a :href="profile"> | |||
| <x-avatar v-if="avatar" :image="avatar" :name="name"></x-avatar> | |||
| {{ name }} | |||
| <x-avatar v-if="avatar" :image="avatar" :name="name"></x-avatar | |||
There was a problem hiding this comment.
This was actually wanted, I forgot to mention it. With the previous version, the underline of the link was applied across the avatar image as well, which was quite disturbing.
| }, | ||
| }).href, | ||
| }; | ||
| jsonResponse.forEach( |
There was a problem hiding this comment.
while not "officially" voted, it seems like using for ... of is preferable over forEach, see https://github.com/github/eslint-plugin-github/blob/main/docs/rules/array-foreach.md
| }); | ||
| const jsonResponse = await response.json(); | ||
| jsonResponse.payload.tree.items.forEach( | ||
| (treeNode: { name: string; path: string; contentType: string }) => { | ||
| console.log(jsonResponse); |
| const config = { | ||
| GITHUB_DEVICE_LOGIN_URL: "https://github.com/login/device/code", | ||
| GITHUB_DEVICE_VERIFY_URL: "https://github.com/login/oauth/access_token", | ||
| GITHUB_APP_CLIENT_ID: "", |
There was a problem hiding this comment.
is it required to update this value and recompile to have a working instance with a Github backend?
There was a problem hiding this comment.
ok, got it, this is specifically for the third party github auth server, ok for now
| if (cristal && contentRoot.value) { | ||
| ContentTools.listenToClicks(contentRoot.value, cristal); | ||
| ContentTools.transformMacros(contentRoot.value, cristal); | ||
| ContentTools.transformImagesInElement(contentRoot.value, cristal); |
There was a problem hiding this comment.
Does not seems related to the PR?
There was a problem hiding this comment.
It was, actually, kind of. We did not catch that image transformation stopped working with the current backends because images are supposed to be handled as attachments, and the GitHub backend is the one right now that actually uses it (to display images stored in the repository).
| "configType": "GitHub", | ||
| "serverRendering": false, | ||
| "offline": false, | ||
| "baseURL": "https://raw.githubusercontent.com/ldubost/test/master/", |
There was a problem hiding this comment.
Just for confirmation, this means that a config entry is currently required for each repo we want to give access to in a given Cristal instance?
There was a problem hiding this comment.
At this point, yes.
There was a problem hiding this comment.
ok, I suggest creating a Jira issue for improving that (and other limitations you know of) so that we have a clear vision of where we are at.
| .get() | ||
| ?.getAuthorizationHeader(); | ||
| const headers: { Accept: string; Authorization?: string } = { | ||
| Accept: "application/json", |
There was a problem hiding this comment.
Missing authentication headers
|
|
Jira URL
https://jira.xwiki.org/browse/CRISTAL-381
Changes
Description
Clarifications
Login operations for the GitHub API have to be done in the backend. As such, a new backend has been implemented in
./github-authentication. It requires to set a Client ID for a GitHub app that hasrepo:readandrepo:writepermissions for the repository the user wants to use. This can be set in./github-authentication/src/config.ts.While working on this issue, I noticed that the transformImage was not working properly (i.e., mutation listeners were in fact not triggered on document change). I don't know since when this happens, but I added a simpler
transformImagesInElements()function that should have, as an added benefit, less performance impact for this purpose.Screenshots & Video
Executed Tests
Each new and changed feature was tested manually, and the current test suite was run manually.
Expected merging strategy