Token based auth (codesandbox#29)

* Remove sockjs-client

* Move to token based authorization

* Remove postinstall task

Author: CompuIves

package.json

@@ -113,7 +113,6 @@
     "redbox-react": "^1.4.2",
     "redux": "^3.7.0",
     "reselect": "^3.0.0",
-    "sockjs-client": "^1.1.4",
     "store": "^2.0.4",
     "styled-components": "^2.1.0",
     "tern": "^0.21.0"

src/app/containers/Navigation/index.js

@@ -40,6 +40,7 @@ const Action = styled.div`
   transition: 0.3s ease all;
   margin: 0 2rem;
   cursor: pointer;
+  color: white;
 
   &:hover {
     color: white;
@@ -79,7 +80,9 @@ class Navigation extends React.PureComponent {
             <LogoWithBorder height={40} width={40} />
           </a>
           <Border width={1} size={500} />
-          <Title>{title}</Title>
+          <Title>
+            {title}
+          </Title>
         </Row>
         <Row>
           <Action>
@@ -91,9 +94,8 @@ class Navigation extends React.PureComponent {
             ? <User signOut={userActions.signOut} user={user} />
             : <Button small onClick={userActions.signIn}>
                 <Row>
-                  <GithubIcon style={{ marginRight: '0.5rem' }} />
-                  {' '}
-                  Sign in with GitHub
+                  <GithubIcon style={{ marginRight: '0.5rem' }} /> Sign in with
+                  GitHub
                 </Row>
               </Button>}
         </Row>

src/app/pages/CLI/Prompt.js

@@ -0,0 +1,101 @@
+import React from 'react';
+import styled from 'styled-components';
+
+import Title from 'app/components/text/Title';
+import SubTitle from 'app/components/text/SubTitle';
+import Button from 'app/components/buttons/Button';
+
+const Container = styled.div`
+  height: 100%;
+  width: 100%;
+  margin-top: 10%;
+  text-align: center;
+`;
+
+const Buttons = styled.div`
+  display: flex;
+  justify-content: center;
+
+  > button {
+    margin: 1rem;
+  }
+`;
+
+const TokenContainer = styled.input`
+  color: white;
+
+  width: 100%;
+  max-width: 20em;
+  border: none;
+  outline: none;
+  padding: 1rem;
+  font-size: 1.5rem;
+  text-align: center;
+  margin: auto;
+
+  border-radius: 2px;
+  box-shadow: inset 0 0 3px rgba(0, 0, 0, 0.5);
+
+  background-color: rgba(0, 0, 0, 0.5);
+`;
+
+type Props = {
+  error: ?string,
+  token: ?string,
+  loading: boolean,
+  username: ?string,
+  signIn: () => void,
+};
+
+const select = event => event.target.select();
+
+export default ({ error, token, loading, username, signIn }: Props) => {
+  if (error) {
+    return (
+      <Container>
+        <Title>An error occured:</Title>
+        <SubTitle>
+          {error}
+        </SubTitle>
+        <Buttons>
+          <Button href="/">Go to homepage</Button>
+        </Buttons>
+      </Container>
+    );
+  }
+
+  if (!username) {
+    return (
+      <Container>
+        <Title>Welcome to CodeSandbox!</Title>
+        <SubTitle>
+          You need to sign in with your GitHub account to use the CLI.
+        </SubTitle>
+        <Buttons>
+          <Button onClick={signIn}>Sign in with Github</Button>
+        </Buttons>
+      </Container>
+    );
+  }
+
+  if (loading) {
+    return (
+      <Container>
+        <Title>Fetching authorization key...</Title>
+      </Container>
+    );
+  }
+
+  return (
+    <Container>
+      <Title>
+        Hello {username}!
+      </Title>
+      <SubTitle>
+        The CLI needs authorization to work.
+        <br />Please paste the following code in the CLI:
+      </SubTitle>
+      <TokenContainer onClick={select} value={token} />
+    </Container>
+  );
+};

src/app/pages/CLI/index.js

@@ -3,114 +3,61 @@ import React from 'react';
 import styled from 'styled-components';
 import { connect } from 'react-redux';
 import { bindActionCreators } from 'redux';
-import SockJS from 'sockjs-client';
 
 import type { CurrentUser } from 'common/types';
 
-import Centered from 'app/components/flex/Centered';
-import Title from 'app/components/text/Title';
-import SubTitle from 'app/components/text/SubTitle';
-import Button from '../../components/buttons/Button';
+import Navigation from 'app/containers/Navigation';
+
 import { currentUserSelector } from '../../store/user/selectors';
 import userActionCreators from '../../store/user/actions';
 
-const Buttons = styled.div`
-  display: flex;
+import Prompt from './Prompt';
 
-  > button {
-    margin: 1rem;
-  }
+const Container = styled.div`
+  height: 100%;
+  width: 100%;
+  margin: 1rem;
 `;
 
 type State = {
-  success: boolean,
   loading: boolean,
   error: ?string,
+  token: string,
 };
 
 type Props = {
   user: CurrentUser,
   signIn: typeof userActionCreators.signIn,
+  getAuthToken: typeof userActionCreators.getAuthToken,
 };
 
 const mapStateToProps = state => ({
   user: currentUserSelector(state),
 });
 const mapDispatchToProps = dispatch => ({
   signIn: bindActionCreators(userActionCreators.signIn, dispatch),
+  getAuthToken: bindActionCreators(userActionCreators.getAuthToken, dispatch),
 });
 class CLI extends React.PureComponent {
   props: Props;
   state: State = {
-    success: false,
-    loading: false,
+    loading: true,
+    token: '',
     error: null,
   };
 
-  constructor(props) {
-    super(props);
-
-    const port = this.getPort();
-    if (port === null) {
-      document.location.href = '/';
-      return;
+  componentDidMount() {
+    if (this.props.user.jwt) {
+      this.authorize();
     }
-
-    this.port = port;
   }
 
-  port: number;
-
-  getPort = () => {
-    const match = document.location.search.match(/\?port=(.*)/);
-    if (match) {
-      const portString = match[1];
-      return +portString;
-    }
-    return null;
-  };
-
-  $authorizeCLI = (user: CurrentUser) =>
-    new Promise((resolve, reject) => {
-      try {
-        this.setState({ loading: true });
-
-        const sock = new SockJS(
-          `${location.protocol}//localhost:${this.port}/login`,
-        );
-        let signedIn = false;
-
-        sock.onopen = () => {
-          signedIn = true;
-          sock.send(JSON.stringify(user));
-          resolve();
-        };
-
-        sock.onmessage = () => {
-          sock.close();
-        };
-
-        sock.onclose = () => {
-          if (!signedIn) {
-            reject(
-              new Error(
-                'Could not connect with the CLI, please send a message to @Ives13.',
-              ),
-            );
-          }
-        };
-      } catch (e) {
-        reject(e);
-      }
-    });
-
   authorize = async () => {
+    const { getAuthToken } = this.props;
     try {
-      await this.$authorizeCLI(this.props.user);
+      const token = await getAuthToken();
 
-      // Close window after succesfull authorization
-      window.close();
-      this.setState({ success: true });
+      this.setState({ token, loading: false });
     } catch (e) {
       this.setState({ error: e.message });
     }
@@ -127,63 +74,19 @@ class CLI extends React.PureComponent {
 
   render() {
     const { user } = this.props;
-    const { error, loading, success } = this.state;
-
-    if (success) {
-      return (
-        <Centered horizontal vertical>
-          <Title>Succesfully authorized the CLI</Title>
-          <SubTitle>You can now close this window</SubTitle>
-        </Centered>
-      );
-    }
-
-    if (error) {
-      return (
-        <Centered horizontal vertical>
-          <Title>An error occured:</Title>
-          <SubTitle>{error}</SubTitle>
-          <Buttons>
-            <Button href="/">Go to homepage</Button>
-          </Buttons>
-        </Centered>
-      );
-    }
-
-    if (loading) {
-      return (
-        <Centered horizontal vertical>
-          <Title>Authorizing...</Title>
-        </Centered>
-      );
-    }
-
-    if (!user.jwt) {
-      return (
-        <Centered horizontal vertical>
-          <Title>Welcome to CodeSandbox!</Title>
-          <SubTitle>
-            To use the CLI you need to sign in with your GitHub account.
-          </SubTitle>
-          <Buttons>
-            <Button onClick={this.signIn}>Sign in with Github</Button>
-          </Buttons>
-        </Centered>
-      );
-    }
+    const { error, token, loading } = this.state;
 
     return (
-      <Centered horizontal vertical>
-        <Title>Hello {user.username}!</Title>
-        <SubTitle>
-          To make use of the CLI you need to authorize it first,<br /> you can
-          authorize by pressing {"'"}login{"'"}.
-        </SubTitle>
-        <Buttons>
-          <Button red>Cancel</Button>
-          <Button onClick={this.authorize}>Login</Button>
-        </Buttons>
-      </Centered>
+      <Container>
+        <Navigation title="CLI Authorization" />
+        <Prompt
+          error={error}
+          token={token}
+          loading={loading}
+          username={user && user.username}
+          signIn={this.signIn}
+        />
+      </Container>
     );
   }
 }

src/app/store/user/actions.js

@@ -24,6 +24,7 @@ export const LOAD_USER_SANDBOXES = createAPIActions(
   'FETCH_SANDBOXES',
 );
 export const SEND_FEEDBACK_API = createAPIActions('FEEDBACK', 'SEND');
+export const GET_AUTH_TOKEN_API = createAPIActions('AUTH_TOKEN', 'FETCH');
 
 const deleteCookie = (name: string) => {
   document.cookie = `${name}=; Path=/; expires=Thu, 01 Jan 1970 00:00:01 GMT;`;
@@ -81,6 +82,14 @@ const signIn = () => (dispatch: Function) =>
     });
   });
 
+const getAuthToken = () => async (dispatch: Function): string => {
+  const { data } = await dispatch(
+    doRequest(GET_AUTH_TOKEN_API, 'auth/auth-token'),
+  );
+
+  return data.token;
+};
+
 const loadUserSandboxes = () => async (dispatch: Function) => {
   const { data } = await dispatch(doRequest(LOAD_USER_SANDBOXES, `sandboxes`));
 
@@ -109,6 +118,7 @@ const sendFeedback = (message: string) => async (dispatch: Function) => {
 };
 
 export default {
+  getAuthToken,
   signOut,
   signIn,
   getCurrentUser,