scratch-www/src/lib/jar.js

var cookie = require('cookie');
var defaults = require('lodash.defaults');
var xhr = require('xhr');
var pako = require('pako');

/**
 * Module that handles coookie interactions.
 *     (Cookies?!?! Jar?!?! Get it?!?! WE'RE AMAZING!!!!)
 *
 * get(name, callback) – can be sync or async, as callback is optional
 * set(name, value) – synchronously sets the cookie
 * use(name, uri, callback) – can by sync or async, gets cookie from the uri if not there.
 */
var Jar = {
    unsign: function (value, callback) {
        // Return the usable content portion of a signed, compressed cookie generated by
        // Django's signing module
        // https://github.com/django/django/blob/stable/1.8.x/django/core/signing.py
        if (typeof value === 'undefined') return callback(null, value);
        
        try {
            var b64Data = value.split(':')[0];
            var decompress = false;
            if (b64Data[0] === '.') {
                decompress = true;
                b64Data = b64Data.substring(1);
            }

            // Django makes its base64 strings url safe by replacing + and / with - and _ respectively
            // using base64.urlsafe_b64encode
            // https://docs.python.org/2/library/base64.html#base64.b64encode
            b64Data = b64Data.replace(/[-_]/g, function (c) {return {'-':'+', '_':'/'}[c]; });
            var strData = atob(b64Data);

            if (decompress) {
                var charData = strData.split('').map(function (c) { return c.charCodeAt(0); });
                var binData = new Uint8Array(charData);
                var data = pako.inflate(binData);
                strData = String.fromCharCode.apply(null, new Uint16Array(data));
            }

            return callback(null, strData);
        } catch (e) {
            return callback(e);
        }
    },
    get: function (name, callback) {
        // Get cookie by name
        var obj = cookie.parse(document.cookie) || {};

        // Handle optional callback
        if (typeof callback === 'function') {
            if (typeof obj === 'undefined') return callback('Cookie not found.');
            return callback(null, obj[name]);
        }

        return obj[name];
    },
    use: function (name, uri, callback) {
        // Attempt to get cookie
        Jar.get(name, function (err, obj) {
            if (typeof obj !== 'undefined') return callback(null, obj);

            // Make XHR request to cookie setter uri
            xhr({
                uri: uri
            }, function (err) {
                if (err) return callback(err);
                Jar.get(name, callback);
            });
        });
    },
    set: function (name, value, opts) {
        opts = opts || {};
        defaults(opts, {
            expires: new Date(new Date().setYear(new Date().getFullYear() + 1))
        });
        opts.path = '/';
        var obj = cookie.serialize(name, value, opts);
        document.cookie = obj;
    },
    getUnsignedValue: function (cookieName, signedValue, callback) {
        // Get a value from a signed object
        Jar.get(cookieName, function (err, value) {
            if (err) return callback(err);
            if (typeof value === 'undefined') return callback(null, value);
            
            Jar.unsign(value, function (err, contents) {
                if (err) return callback(err);
                
                try {
                    var data = JSON.parse(contents);
                } catch (err) {
                    return callback(err);
                }
                return callback(null, data[signedValue]);
            });
        });
    }
};

module.exports = Jar;
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								var cookie = require('cookie');
 								var defaults = require('lodash.defaults');
 								var xhr = require('xhr');
 								var pako = require('pako');
-												refactor cookieMixinFactory

isolate cookie business logic from react mixin logic so that they are more modular. And use the cookie business logic to set translation objects on the window

											
										
										
											2015-10-15 23:05:57 -04:00
-												Added some more documentation

											
										
										
											2016-01-14 10:25:03 -05:00
+								/**
 								 * Module that handles coookie interactions.
 								 *     (Cookies?!?! Jar?!?! Get it?!?! WE'RE AMAZING!!!!)
 								 *
 								 * get(name, callback) – can be sync or async, as callback is optional
 								 * set(name, value) – synchronously sets the cookie
 								 * use(name, uri, callback) – can by sync or async, gets cookie from the uri if not there.
 								 */
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								var Jar = {
 								    unsign: function (value, callback) {
-												Add some sources to the unsign method

											
										
										
											2016-03-23 10:02:20 -04:00
+								        // Return the usable content portion of a signed, compressed cookie generated by
 								        // Django's signing module
 								        // https://github.com/django/django/blob/stable/1.8.x/django/core/signing.py
-												Set null contents to null instead of error throw

Before, if a cookie didn't exist, it would throw an error, not causing permissions/tokens to change to empty values. This fixes that (and #626) by setting the value to undefined instead.

											
										
										
											2016-06-30 11:27:46 -04:00
+								        if (typeof value === 'undefined') return callback(null, value);
-												Add method for reading session cookie

Assumes the session cookie is stored as JSON which may or may not have been compressed via zlib (indicated by a leading `.`), which is then base64-encoded, and made URL-safe by replacing all `+` and `/` characters with `-` and `_` respectively.

											
										
										
											2015-12-08 15:14:16 -05:00
+								        try {
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								            var b64Data = value.split(':')[0];
 								            var decompress = false;
-												Add method for reading session cookie

Assumes the session cookie is stored as JSON which may or may not have been compressed via zlib (indicated by a leading `.`), which is then base64-encoded, and made URL-safe by replacing all `+` and `/` characters with `-` and `_` respectively.

											
										
										
											2015-12-08 15:14:16 -05:00
+								            if (b64Data[0] === '.') {
 								                decompress = true;
 								                b64Data = b64Data.substring(1);
 								            }
 								            // Django makes its base64 strings url safe by replacing + and / with - and _ respectively
-												Add some sources to the unsign method

											
										
										
											2016-03-23 10:02:20 -04:00
+								            // using base64.urlsafe_b64encode
 								            // https://docs.python.org/2/library/base64.html#base64.b64encode
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								            b64Data = b64Data.replace(/[-_]/g, function (c) {return {'-':'+', '_':'/'}[c]; });
 								            var strData = atob(b64Data);
-												Add method for reading session cookie

Assumes the session cookie is stored as JSON which may or may not have been compressed via zlib (indicated by a leading `.`), which is then base64-encoded, and made URL-safe by replacing all `+` and `/` characters with `-` and `_` respectively.

											
										
										
											2015-12-08 15:14:16 -05:00
 								            if (decompress) {
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								                var charData = strData.split('').map(function (c) { return c.charCodeAt(0); });
 								                var binData = new Uint8Array(charData);
 								                var data = pako.inflate(binData);
-												Add method for reading session cookie

Assumes the session cookie is stored as JSON which may or may not have been compressed via zlib (indicated by a leading `.`), which is then base64-encoded, and made URL-safe by replacing all `+` and `/` characters with `-` and `_` respectively.

											
										
										
											2015-12-08 15:14:16 -05:00
+								                strData = String.fromCharCode.apply(null, new Uint16Array(data));
 								            }
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
-												Add method for reading session cookie

Assumes the session cookie is stored as JSON which may or may not have been compressed via zlib (indicated by a leading `.`), which is then base64-encoded, and made URL-safe by replacing all `+` and `/` characters with `-` and `_` respectively.

											
										
										
											2015-12-08 15:14:16 -05:00
+								            return callback(null, strData);
 								        } catch (e) {
 								            return callback(e);
 								        }
 								    },
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								    get: function (name, callback) {
-												Fix indentation

											
										
										
											2016-03-23 09:50:41 -04:00
+								        // Get cookie by name
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								        var obj = cookie.parse(document.cookie) || {};
-												refactor cookieMixinFactory

isolate cookie business logic from react mixin logic so that they are more modular. And use the cookie business logic to set translation objects on the window

											
										
										
											2015-10-15 23:05:57 -04:00
-												Make Jar formatting consistent with everything else

											
										
										
											2015-12-07 17:43:04 -05:00
+								        // Handle optional callback
 								        if (typeof callback === 'function') {
 								            if (typeof obj === 'undefined') return callback('Cookie not found.');
 								            return callback(null, obj[name]);
 								        }
 								        return obj[name];
 								    },
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								    use: function (name, uri, callback) {
-												Make Jar formatting consistent with everything else

											
										
										
											2015-12-07 17:43:04 -05:00
+								        // Attempt to get cookie
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								        Jar.get(name, function (err, obj) {
-												Make Jar formatting consistent with everything else

											
										
										
											2015-12-07 17:43:04 -05:00
+								            if (typeof obj !== 'undefined') return callback(null, obj);
 								            // Make XHR request to cookie setter uri
 								            xhr({
 								                uri: uri
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								            }, function (err) {
 								                if (err) return callback(err);
-												Make Jar formatting consistent with everything else

											
										
										
											2015-12-07 17:43:04 -05:00
+								                Jar.get(name, callback);
 								            });
-												refactor cookieMixinFactory

isolate cookie business logic from react mixin logic so that they are more modular. And use the cookie business logic to set translation objects on the window

											
										
										
											2015-10-15 23:05:57 -04:00
+								        });
-												Make Jar formatting consistent with everything else

											
										
										
											2015-12-07 17:43:04 -05:00
+								    },
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								    set: function (name, value, opts) {
-												provide a default `opts` if it’s undefined

											
										
										
											2017-09-18 14:40:52 -04:00
+								        opts = opts || {};
-												Move permissions storage to client-side cookie

Instead of retrieving the permission from the session cookie, store permission data from /session/, and cache it in a cookie.  On subsequent page loads, the permission information will be retrieved from the cookie more quickly than the /session/ endpoint returns. When the session changes, the cookie and permissions state is updated to reflect the new state.

											
										
										
											2016-09-08 12:52:22 -04:00
+								        defaults(opts, {
-												apply path explicitly rather than in `defaults`

This should fix #1455 by preventing the path from being changes via opts passed in, even though we don’t pass in a `path` anywhere.

											
										
										
											2017-09-18 11:44:06 -04:00
+								            expires: new Date(new Date().setYear(new Date().getFullYear() + 1))
-												Move permissions storage to client-side cookie

Instead of retrieving the permission from the session cookie, store permission data from /session/, and cache it in a cookie.  On subsequent page loads, the permission information will be retrieved from the cookie more quickly than the /session/ endpoint returns. When the session changes, the cookie and permissions state is updated to reflect the new state.

											
										
										
											2016-09-08 12:52:22 -04:00
+								        });
-												apply path explicitly rather than in `defaults`

This should fix #1455 by preventing the path from being changes via opts passed in, even though we don’t pass in a `path` anywhere.

											
										
										
											2017-09-18 11:44:06 -04:00
+								        opts.path = '/';
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								        var obj = cookie.serialize(name, value, opts);
-												Move permissions storage to client-side cookie

Instead of retrieving the permission from the session cookie, store permission data from /session/, and cache it in a cookie.  On subsequent page loads, the permission information will be retrieved from the cookie more quickly than the /session/ endpoint returns. When the session changes, the cookie and permissions state is updated to reflect the new state.

											
										
										
											2016-09-08 12:52:22 -04:00
+								        document.cookie = obj;
-												Add teacher banner to splash page

This only shows if the logged in user is a teacher, and persists for teachers.

											
										
										
											2016-06-08 13:47:11 -04:00
+								    },
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								    getUnsignedValue: function (cookieName, signedValue, callback) {
-												Add teacher banner to splash page

This only shows if the logged in user is a teacher, and persists for teachers.

											
										
										
											2016-06-08 13:47:11 -04:00
+								        // Get a value from a signed object
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								        Jar.get(cookieName, function (err, value) {
-												Add teacher banner to splash page

This only shows if the logged in user is a teacher, and persists for teachers.

											
										
										
											2016-06-08 13:47:11 -04:00
+								            if (err) return callback(err);
-												check for the null value in `get`

thanks @rschamp!

											
										
										
											2016-06-30 11:40:05 -04:00
+								            if (typeof value === 'undefined') return callback(null, value);
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								            Jar.unsign(value, function (err, contents) {
 								                if (err) return callback(err);
-												Set null contents to null instead of error throw

Before, if a cookie didn't exist, it would throw an error, not causing permissions/tokens to change to empty values. This fixes that (and #626) by setting the value to undefined instead.

											
										
										
											2016-06-30 11:27:46 -04:00
-												Add teacher banner to splash page

This only shows if the logged in user is a teacher, and persists for teachers.

											
										
										
											2016-06-08 13:47:11 -04:00
+								                try {
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								                    var data = JSON.parse(contents);
 								                } catch (err) {
 								                    return callback(err);
-												Add teacher banner to splash page

This only shows if the logged in user is a teacher, and persists for teachers.

											
										
										
											2016-06-08 13:47:11 -04:00
+								                }
-												Revert "[Develop] Upgrade to ES6"

											
										
										
											2018-01-30 09:54:45 -05:00
+								                return callback(null, data[signedValue]);
-												Add teacher banner to splash page

This only shows if the logged in user is a teacher, and persists for teachers.

											
										
										
											2016-06-08 13:47:11 -04:00
+								            });
 								        });
-												Make Jar formatting consistent with everything else

											
										
										
											2015-12-07 17:43:04 -05:00
+								    }
-												Add cookie setter to jar

											
										
										
											2015-10-16 10:59:55 -04:00
+								};
-												Give name to the exported module

											
										
										
											2015-10-16 15:10:17 -04:00
 								module.exports = Jar;