WebPlatformDocs/INITIALIZING_SSO.md

## INITIALIZING_SSO.md

      
    Raw
  

              INITIALIZING_SSO.md
            
          
    Initializing SsoHandlerClass

Call JavaScript module


Code is maintained in this repository
Call from this location

http://www.webplatform.org/assets/js/sso.js
or temporarily https://webplatformhome.global.ssl.fastly.net/assets/js/sso.js


Use


init(closure, callbackUri): to initialize and provide a closure to tell whether the current visitor already has a session
doCheck():  To do the async call, if callback returns 200, reload current page.

MediaWiki

Current state: In developer tools console, if we enter those two commands on after the other, it works.


Find where to start initialization
  window.sso.init(mw.user.isAnon, '/test/Special:AccountsHandler/callback');


Find where to launch call
  window.sso.doCall();


Annotator

TODO

  
## ssohandler.js
(function ssoInit(w) {

  var accountsContentServer = 'https://accounts.webplatform.org/',
    callbackUri = '/wiki/Special:AccountsHandler/callback',
    hasSession = null,
    received = null,
    checkedOnce = false,
    recoveryPayload = 'recoveryPayload=',
    isAnonymous = false; // Lets not make checks for no reason, flip it to true if needed

  function iframeLoadedHandler() {
    console.log('Will set timeout because iframe is loaded');
  }

  function postBackendHandler() {
    if (this.readyState === 4) {
      if (this.status === 204) {
        handleCreationSuccess.apply(this);
      }
      /* #TODO else {
        errorHandlerClosure.apply(this);
      } */
    }
  }

  function handleCreationSuccess() {
    console.log('HandleCreation Success', this);
    window.location.reload(true);
  }

  function createTunnel() {
    var authChecker = document.createElement('iframe');
    authChecker.src = accountsContentServer;
    authChecker.frameworder = 0;
    authChecker.width = 0;
    authChecker.height = 0;
    authChecker.id = 'authChecker';
    authChecker.onload = iframeLoadedHandler;

    document.body.appendChild(authChecker);

    return authChecker;
  }

  function messageHandler(input) {
    if ( !! input.data && !! input.data.hasSession && checkedOnce === false) {
      received = input.data;
      // For now, we know that recoveryPayload is HEX 64 chars, but that’ll
      //   change and we will need to url encode it.
      recoveryPayload += received.recoveryPayload;
      hasSession = received.hasSession;
      processReceived();
    }
    checkedOnce = true;
  }

  w.addEventListener("message", messageHandler, false);

  function processReceived() {
    console.log('Should send post to ' + callbackUri);
    postBackend();
  }

  // Maybe improve as described https://gist.github.com/shimondoodkin/4706967

  function postBackend() {
    var xhr;
    if (window.XMLHttpRequest) {
      xhr = new XMLHttpRequest();
      xhr.open("POST", callbackUri, true);
      xhr.setRequestHeader("Content-length", recoveryPayload.length);
      xhr.setRequestHeader("Connection", "close");
      xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
      xhr.onreadystatechange = postBackendHandler.bind(xhr);
      xhr.send(recoveryPayload);
    }
  }

  var SsoHandlerClass = function SsoHandlerClass() {};

  SsoHandlerClass.prototype.doCheck = function doCheck() {
    var self = this;

    if (!self.tunnel) {
      console.log('doCheck called, but we do not have tunnel ready to do check, do we already have a session?');
      return;
    }

    if (isAnonymous === false) {
      console.log('doCheck called, but we already have a session');
      return;
    }
    if (checkedOnce === false) {
      self.tunnel.contentWindow.postMessage('hi', accountsContentServer);
    }
  };

  SsoHandlerClass.prototype.init = function init(isAnonymousCheckClosure, setCallbackUri) {
    var self = this;

    if ( !! setCallbackUri && typeof setCallbackUri == 'string') {
      callbackUri = setCallbackUri;
    }

    isAnonymous = isAnonymousCheckClosure.apply(self);
    console.log('init called, switched property isAnonymous to: ', isAnonymous);

    if (isAnonymous === true) {
      this.tunnel = createTunnel();
    }
  };

  return w.sso = new SsoHandlerClass();

})(window);
	(function ssoInit(w) {

	var accountsContentServer = 'https://accounts.webplatform.org/',
	callbackUri = '/wiki/Special:AccountsHandler/callback',
	hasSession = null,
	received = null,
	checkedOnce = false,
	recoveryPayload = 'recoveryPayload=',
	isAnonymous = false; // Lets not make checks for no reason, flip it to true if needed

	function iframeLoadedHandler() {
	console.log('Will set timeout because iframe is loaded');
	}

	function postBackendHandler() {
	if (this.readyState === 4) {
	if (this.status === 204) {
	handleCreationSuccess.apply(this);
	}
	/* #TODO else {
	errorHandlerClosure.apply(this);
	} */
	}
	}

	function handleCreationSuccess() {
	console.log('HandleCreation Success', this);
	window.location.reload(true);
	}

	function createTunnel() {
	var authChecker = document.createElement('iframe');
	authChecker.src = accountsContentServer;
	authChecker.frameworder = 0;
	authChecker.width = 0;
	authChecker.height = 0;
	authChecker.id = 'authChecker';
	authChecker.onload = iframeLoadedHandler;

	document.body.appendChild(authChecker);

	return authChecker;
	}

	function messageHandler(input) {
	if ( !! input.data && !! input.data.hasSession && checkedOnce === false) {
	received = input.data;
	// For now, we know that recoveryPayload is HEX 64 chars, but that’ll
	// change and we will need to url encode it.
	recoveryPayload += received.recoveryPayload;
	hasSession = received.hasSession;
	processReceived();
	}
	checkedOnce = true;
	}

	w.addEventListener("message", messageHandler, false);

	function processReceived() {
	console.log('Should send post to ' + callbackUri);
	postBackend();
	}

	// Maybe improve as described https://gist.github.com/shimondoodkin/4706967

	function postBackend() {
	var xhr;
	if (window.XMLHttpRequest) {
	xhr = new XMLHttpRequest();
	xhr.open("POST", callbackUri, true);
	xhr.setRequestHeader("Content-length", recoveryPayload.length);
	xhr.setRequestHeader("Connection", "close");
	xhr.setRequestHeader("Content-Type", "application/x-www-form-urlencoded");
	xhr.onreadystatechange = postBackendHandler.bind(xhr);
	xhr.send(recoveryPayload);
	}
	}

	var SsoHandlerClass = function SsoHandlerClass() {};

	SsoHandlerClass.prototype.doCheck = function doCheck() {
	var self = this;

	if (!self.tunnel) {
	console.log('doCheck called, but we do not have tunnel ready to do check, do we already have a session?');
	return;
	}

	if (isAnonymous === false) {
	console.log('doCheck called, but we already have a session');
	return;
	}
	if (checkedOnce === false) {
	self.tunnel.contentWindow.postMessage('hi', accountsContentServer);
	}
	};

	SsoHandlerClass.prototype.init = function init(isAnonymousCheckClosure, setCallbackUri) {
	var self = this;

	if ( !! setCallbackUri && typeof setCallbackUri == 'string') {
	callbackUri = setCallbackUri;
	}

	isAnonymous = isAnonymousCheckClosure.apply(self);
	console.log('init called, switched property isAnonymous to: ', isAnonymous);

	if (isAnonymous === true) {
	this.tunnel = createTunnel();
	}
	};

	return w.sso = new SsoHandlerClass();

	})(window);