UNPKG

svelte-session-manager

Version:

Session store for svelte (currently only for JWT)

github.com/arlac77/svelte-session-manager

arlac77/svelte-session-manager

104 lines (94 loc) 2.67 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
import { JSONContentTypeHeader } from "./constants.mjs"; import { Session } from "./session.mjs"; const defaultTokenMap = Object.fromEntries( ["access_token", "refresh_token", "token_type"].map(k => [k, k]) ); /** * Bring session into the valid state by calling the authorization endpoint * and asking for a access_token. * Executes a POST on the endpoint url expecting username, and password as json * @param {Session} session to be opened * @param {string} endpoint authorization url * @param {string} username id of the user * @param {string} password user credentials * @param {Object} tokenmap token names in response to internal known values * @param {string} tokenmap.access_token * @return {Promise<string|undefined>} error message in case of failure or undefined on success */ export async function login( session, endpoint, username, password, tokenmap = defaultTokenMap ) { try { const response = await fetch(endpoint, { method: "POST", headers: JSONContentTypeHeader, body: JSON.stringify({ username, password }) }); if (response.ok) { const data = await response.json(); if (!data[tokenmap.access_token]) { return data.error || "missing access_token"; } session.update({ endpoint, username, ...Object.fromEntries( Object.entries(tokenmap).map(([k1, k2]) => [k1, data[k2]]) ) }); } else { session.update({ username }); return handleFailedResponse(response); } } catch (e) { session.update({ username }); throw e; } } /** * Extract error description from response. * @param {Response} response * @return {Promise<string>} */ export async function handleFailedResponse(response) { const wa = response.headers.get("WWW-Authenticate"); if (wa) { const o = Object.fromEntries( wa.split(/\s*,\s*/).map(entry => entry.split(/=/)) ); if (o.error_description) { return o.error_description; } } let message = response.statusText; let ct = response.headers.get("Content-Type"); if (ct) { ct = ct.replace(/;.*/, ""); } switch (ct) { case undefined: case "text/plain": message += "\n" + (await response.text()); break; case "text/html": const root = document.createElement("html"); root.innerHTML = await response.text(); for (const tag of ["title", "h1", "h2"]) { for (const item of root.getElementsByTagName(tag)) { const text = item.innerText; if (text) { return text; } } } break; } return message; }