Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

zitadel #15

Open
wants to merge 15 commits into
base: main
Choose a base branch
from
Open

zitadel #15

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
0cb1e46
added zitadel auth
Palabola May 23, 2024
84a5d2e
login url restoration
Palabola May 23, 2024
c548ce5
Merge branch 'main' into DEV-149
daroczig May 24, 2024
07611fe
missing file
Palabola May 27, 2024
edf3efb
Merge branch 'main' into DEV-149
Palabola May 28, 2024
2640805
added auth guard and /dashboard route
Palabola May 28, 2024
16c2825
lint
Palabola May 28, 2024
e622ec9
added userDatabase API service, with localStorage as mock DB
Palabola May 29, 2024
3d9d5af
implementes my-spare-cores features
Palabola May 29, 2024
783e9ae
custom HTTP now support Bearer token
Palabola May 29, 2024
bc9c32c
added watchlist buttons
Palabola May 29, 2024
223acc6
save usage and settings data to userDB
Palabola May 29, 2024
4c4eb27
lint
Palabola May 30, 2024
0d20e1b
review
Palabola May 30, 2024
382ca64
restore guarded routes
Palabola May 30, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 10 additions & 1 deletion README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,12 +19,21 @@ You also need to provide your own Terms of Service and Privacy Policy
documents as a markdown file at the `src/assets/TOS.md` path.

Optionally, you can also link a Posthog project to anonymously track
page visits, clicks etc via the following environment variables:
page visits, clicks etc. via the following environment variables:

- NG_APP_POSTHOG_KEY: The Posthog project token
- NG_APP_POSTHOG_HOST: The Posthog tracking API endpoint,
e.g. https://us.i.posthog.com

You can use your OIDC provider of choice to authenticate users.
By default, the project uses the ZITADEL OIDC provider
Set the following environment variables to configure the OIDC provider:

- NG_APP_ZITADEL_CLIENT_ID: The client ID of the OIDC provider e.g. 123456789123456@sc-www
- NG_APP_ZITADEL_DOMAIN: The domain of the OIDC provider e.g. https://YOUR-PROJECT.zitadel.cloud
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Avoid using bare URLs in markdown files.

- - NG_APP_ZITADEL_DOMAIN: The domain of the OIDC provider e.g. https://YOUR-PROJECT.zitadel.cloud
- - NG_APP_ZITADEL_USERINFO_ENDPOINT: The OIDC provider userinfo endpoint e.g. https://YOUR-PROJECT.zitadel.cloud/oidc/v1/userinfo
+ - NG_APP_ZITADEL_DOMAIN: The domain of the OIDC provider, for example, [YOUR-PROJECT ZITADEL](https://YOUR-PROJECT.zitadel.cloud)
+ - NG_APP_ZITADEL_USERINFO_ENDPOINT: The OIDC provider userinfo endpoint, for example, [ZITADEL Userinfo](https://YOUR-PROJECT.zitadel.cloud/oidc/v1/userinfo)

Also applies to: 34-34, 35-35

Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change
- NG_APP_ZITADEL_DOMAIN: The domain of the OIDC provider e.g. https://YOUR-PROJECT.zitadel.cloud
- NG_APP_ZITADEL_DOMAIN: The domain of the OIDC provider, for example, [YOUR-PROJECT ZITADEL](https://YOUR-PROJECT.zitadel.cloud)
- NG_APP_ZITADEL_USERINFO_ENDPOINT: The OIDC provider userinfo endpoint, for example, [ZITADEL Userinfo](https://YOUR-PROJECT.zitadel.cloud/oidc/v1/userinfo)

- NG_APP_ZITADEL_USERINFO_ENDPOINT: The OIDC provider userinfo endpoint e.g. https://YOUR-PROJECT.zitadel.cloud/oidc/v1/userinfo
- NG_APP_DOMAIN_BASE_URL: The base URL of your Domain with a closing '/' e.g. http://localhost:4200/

## Development server

Run `ng serve` for a dev server, which listens on `http://localhost:4200/` by default.
Expand Down
13 changes: 13 additions & 0 deletions package-lock.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

1 change: 1 addition & 0 deletions package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -25,6 +25,7 @@
"@angular/router": "^17.2.0",
"@angular/ssr": "^17.2.3",
"@netlify/functions": "^2.6.0",
"angular-oauth2-oidc": "^17.0.2",
"buffer": "^6.0.3",
"chart.js": "^4.3.0",
"express": "^4.19.2",
Expand Down
2 changes: 2 additions & 0 deletions src/app/app.component.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -7,6 +7,7 @@ import { register } from 'swiper/element/bundle';
import { HeaderComponent } from './layout/header/header.component';
import { FooterComponent } from './layout/footer/footer.component';
import { AnalyticsService } from './services/analytics.service';
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Tip

Codebase Verification

The codebase includes checks for isPlatformBrowser(this.platformId) in both src/app/app.component.ts and src/app/pages/landingpage/landingpage.component.ts. However, there is no clear indication of environment-specific configurations for analytics initialization.

  • src/app/app.component.ts initializes tracking in ngAfterViewInit if the platform is a browser.
  • src/app/pages/landingpage/landingpage.component.ts fetches articles if the platform is a browser.

There is no explicit differentiation between production and other environments in the provided context.

  • src/app/app.component.ts
  • src/app/pages/landingpage/landingpage.component.ts
Analysis chain

The integration of AnalyticsService for tracking page views is implemented correctly. Ensure that the tracking is configured appropriately for different environments.

Also applies to: 24-24, 38-38, 58-60

Scripts Executed

The following scripts were executed for the analysis:

Script:

#!/bin/bash
# Description: Verify that the analytics initialization is configured for production environments.

# Test: Search for environment-specific configurations in the codebase. Expect: Configurations that differentiate between production and other environments.
rg --type typescript $'if \(isPlatformBrowser\(this.platformId\)\) \{'

Length of output: 106

Script:

#!/bin/bash
# Description: Verify that the analytics initialization is configured for production environments.

# Test: Search for environment-specific configurations in the codebase. Expect: Configurations that differentiate between production and other environments.
rg --type ts 'if \(isPlatformBrowser\(this.platformId\)\) \{'

Length of output: 302

Script:

#!/bin/bash
# Description: Review the relevant lines in the identified files to check for environment-specific configurations.

# Display the relevant lines in `src/app/app.component.ts`
rg --type ts --context 5 'if \(isPlatformBrowser\(this.platformId\)\) \{' src/app/app.component.ts

# Display the relevant lines in `src/app/pages/landingpage/landingpage.component.ts`
rg --type ts --context 5 'if \(isPlatformBrowser\(this.platformId\)\) \{' src/app/pages/landingpage/landingpage.component.ts

Length of output: 974

import { AuthenticationService } from './services/authentication.service';

@Component({
selector: 'app-root',
Expand All @@ -20,6 +21,7 @@ export class AppComponent implements OnInit, AfterViewInit {

constructor(@Inject(PLATFORM_ID) private platformId: object,
@Inject(DOCUMENT) private document: Document,
private auth: AuthenticationService,
private router: Router,
private analytics: AnalyticsService,
private metaTagService: Meta) {
Expand Down
14 changes: 14 additions & 0 deletions src/app/app.config.browser.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,14 @@
import { mergeApplicationConfig, ApplicationConfig } from '@angular/core';
import { appConfig } from './app.config';
import { OAuthStorage } from 'angular-oauth2-oidc';

const browserConfig: ApplicationConfig = {
providers: [
{
provide: OAuthStorage,
useValue: localStorage,
}
]
};

export const config = mergeApplicationConfig(appConfig, browserConfig);
41 changes: 39 additions & 2 deletions src/app/app.config.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,10 +4,29 @@ import { provideRouter } from '@angular/router';
import { routes } from './app.routes';
import { provideClientHydration } from '@angular/platform-browser';
import { provideHttpClient, withFetch } from '@angular/common/http';
import { ArrowDownNarrowWide, ArrowDownWideNarrow, BookText, Box, Check, ChevronDown, ChevronLeft, ChevronRight, Codesandbox, Cpu, Database, DollarSign, Facebook, Github, Home, Hotel, Linkedin, LucideAngularModule, MemoryStick, PcCase, Search, Server, SquareKanban, Twitter, User, Building2, Heater, CandlestickChart, MapPinned, Scale, Ellipsis, Menu, Leaf, ShoppingCart, ChevronUp, ExternalLink, Info } from 'lucide-angular';
import { ArrowDownNarrowWide, ArrowDownWideNarrow, BookText, Box, Check, ChevronDown, ChevronLeft, ChevronRight, Codesandbox, Cpu, Database, DollarSign, Facebook, Github, Home, Hotel, Linkedin, LucideAngularModule, MemoryStick, PcCase, Search, Server, SquareKanban, Twitter, User, Building2, Heater, CandlestickChart, MapPinned, Scale, Ellipsis, Menu, Leaf, ShoppingCart, ChevronUp, ExternalLink, Info, Settings, Star, Trash2 } from 'lucide-angular';
import { MarkdownModule } from 'ngx-markdown';
import { AuthConfig, OAuthModule } from 'angular-oauth2-oidc';
import { provideCharts, withDefaultRegisterables } from 'ng2-charts';

const ZITADEL_CLIENT_ID = import.meta.env['NG_APP_ZITADEL_CLIENT_ID'];
const ZITADEL_DOMAIN = import.meta.env['NG_APP_ZITADEL_DOMAIN'];
const ZITADEL_USERINFO_ENDPOINT = import.meta.env['NG_APP_ZITADEL_USERINFO_ENDPOINT'];
Palabola marked this conversation as resolved.
Show resolved Hide resolved
const DOMAIN_BASE_URL = import.meta.env['NG_APP_DOMAIN_BASE_URL'];

const authConfig: AuthConfig = {
scope: 'openid profile email offline_access',
responseType: 'code',
oidc: true,
clientId: ZITADEL_CLIENT_ID,
issuer: ZITADEL_DOMAIN,
redirectUri: `${DOMAIN_BASE_URL}auth/callback`,
postLogoutRedirectUri: `${DOMAIN_BASE_URL}`,
requireHttps: false, // required for running locally
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ensure requireHttps is set to true in production to enhance security by enforcing HTTPS.

tokenEndpoint: `${ZITADEL_DOMAIN}/oauth/v2/token`,
userinfoEndpoint: ZITADEL_USERINFO_ENDPOINT,
};
Comment on lines +12 to +28
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Document the OAuth configuration settings in the README.md to ensure they are easily understandable and maintainable.


export const appConfig: ApplicationConfig = {
providers: [
provideRouter(routes),
Expand Down Expand Up @@ -51,10 +70,28 @@ export const appConfig: ApplicationConfig = {
Leaf,
ShoppingCart,
ExternalLink,
Info
Info,
Settings,
Star,
Trash2
}),
),
importProvidersFrom(MarkdownModule.forRoot()),
importProvidersFrom(
OAuthModule.forRoot({
resourceServer: {
allowedUrls: [
`${ZITADEL_DOMAIN}/admin/v1`,
`${ZITADEL_DOMAIN}/management/v1`,
`${ZITADEL_DOMAIN}/auth/v1/`],
sendAccessToken: true,
},
})
),
{
provide: AuthConfig,
useValue: authConfig,
}
],

};
9 changes: 9 additions & 0 deletions src/app/app.routes.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,6 +1,7 @@
import { Routes } from '@angular/router';
import { LandingpageComponent } from './pages/landingpage/landingpage.component';
import { ServerListingComponent } from './pages/server-listing/server-listing.component';
import { authGuard } from './guards/auth.guard';

export const routes: Routes = [
{ path: '', component: LandingpageComponent },
Expand All @@ -11,5 +12,13 @@ export const routes: Routes = [
{ path: 'legal/tos', loadComponent: () => import('./pages/tos/tos.component').then(m => m.TOSComponent)},
{ path: 'datacenters', loadComponent: () => import('./pages/datacenters/datacenters.component').then(m => m.DatacentersComponent)},
{ path: 'vendors', loadComponent: () => import('./pages/vendors/vendors.component').then(m => m.VendorsComponent)},

{ path: 'auth/callback', loadComponent: () => import('./auth/callback/callback.component').then(m => m.CallbackComponent)},

{ path: 'dashboard',
loadComponent: () => import('./pages/my-spare-cores/my-spare-cores.component').then(m => m.MySpareCoresComponent),
canActivate: [authGuard]
},

{ path: '**', redirectTo: '' }
];
4 changes: 4 additions & 0 deletions src/app/auth/callback/callback.component.html
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,4 @@
<div class="w-full">
<div class="content_section">
</div>
</div>
7 changes: 7 additions & 0 deletions src/app/auth/callback/callback.component.scss
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
.content_section {
@apply bg-primary;
@apply text-white;

padding: 4rem 2rem;
height: 100vh;
}
23 changes: 23 additions & 0 deletions src/app/auth/callback/callback.component.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,23 @@
import { ComponentFixture, TestBed } from '@angular/core/testing';

import { CallbackComponent } from './callback.component';

describe('CallbackComponent', () => {
let component: CallbackComponent;
let fixture: ComponentFixture<CallbackComponent>;

beforeEach(async () => {
await TestBed.configureTestingModule({
imports: [CallbackComponent]
})
.compileComponents();

fixture = TestBed.createComponent(CallbackComponent);
component = fixture.componentInstance;
fixture.detectChanges();
});

it('should create', () => {
expect(component).toBeTruthy();
});
Palabola marked this conversation as resolved.
Show resolved Hide resolved
});
33 changes: 33 additions & 0 deletions src/app/auth/callback/callback.component.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
import { Component, Inject, OnInit, PLATFORM_ID } from '@angular/core';
import { AuthenticationService } from '../../services/authentication.service';
import { Router, RouterModule } from '@angular/router';
import { isPlatformBrowser } from '@angular/common';

@Component({
selector: 'app-callback',
standalone: true,
imports: [RouterModule],
templateUrl: './callback.component.html',
styleUrl: './callback.component.scss'
})
export class CallbackComponent implements OnInit{

constructor(
@Inject(PLATFORM_ID) private platformId: object,
private authService: AuthenticationService,
private router: Router
) { }

ngOnInit() {

if(isPlatformBrowser(this.platformId)) {
this.authService.loginCodeFlow().then(() => {
const url = sessionStorage.getItem('prelogin_url') || '/';
sessionStorage.removeItem('prelogin_url');
this.router.navigateByUrl(url);
});
}

}

}
17 changes: 17 additions & 0 deletions src/app/guards/auth.guard.spec.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
import { TestBed } from '@angular/core/testing';
import { CanActivateFn } from '@angular/router';

import { authGuard } from './auth.guard';

describe('authGuard', () => {
const executeGuard: CanActivateFn = (...guardParameters) =>
TestBed.runInInjectionContext(() => authGuard(...guardParameters));

beforeEach(() => {
TestBed.configureTestingModule({});
});

it('should be created', () => {
expect(executeGuard).toBeTruthy();
});
});
22 changes: 22 additions & 0 deletions src/app/guards/auth.guard.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,22 @@
import { CanActivateFn } from '@angular/router';
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Convert imports to type-only imports to clarify their usage.

- import { CanActivateFn } from '@angular/router';
- import { AuthenticationService } from '../services/authentication.service';
+ import type { CanActivateFn } from '@angular/router';
+ import type { AuthenticationService } from '../services/authentication.service';

Committable suggestion was skipped due low confidence.

import { AuthenticationService } from '../services/authentication.service';
import { inject } from '@angular/core';
import { map, take } from 'rxjs';

export const authGuard: CanActivateFn = (route) => {

const authService = inject(AuthenticationService);

return authService.authedState.pipe(
take(1),
map((isAuthenticated) => {
if (isAuthenticated) {
return true
} else {
authService.authenticate('/' + route.url.join('/'));
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Use template literals for path concatenation.

- authService.authenticate('/' +  route.url.join('/'));
+ authService.authenticate(`/${route.url.join('/')}`);
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change
authService.authenticate('/' + route.url.join('/'));
authService.authenticate(`/${route.url.join('/')}`);

return authService.isLoggedIn();
}
})
);

};
24 changes: 19 additions & 5 deletions src/app/layout/header/header.component.html
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,27 +19,41 @@
Datacenters
</a>
</li>
<li class="hidden lg:flex">
<li *ngIf="!isLoggedIn()" class="hidden lg:flex">
<a class="navbar_link" routerLink="/vendors" >
<lucide-icon class="h-4 w-4" name="home"></lucide-icon>
Vendors
</a>
</li>
<li *ngIf="isLoggedIn()" class="hidden lg:flex">
<a class="navbar_link" routerLink="/dashboard" >
<lucide-icon class="h-4 w-4" name="home"></lucide-icon>
My Spare Cores
</a>
</li>
<li class="lg:hidden">
<lucide-icon
class="navbar_link cursor-pointer h-8 w-8"
data-dropdown-toggle="menu_options"
name="menu" >
</lucide-icon>
</li>
<!--
<li>
<button class="login_button text-sm items-center">
<li *ngIf="!isLoggedIn()">
<button
class="login_button text-sm items-center"
(click)="login()">
<lucide-icon name="user" class="h-4 w-4 mr-1"></lucide-icon>
Log in
</button>
</li>
-->
<li *ngIf="isLoggedIn()">
<button
class="login_button text-sm items-center"
(click)="logout()">
<lucide-icon name="user" class="h-4 w-4 mr-1"></lucide-icon>
Log out
</button>
</li>
</ul>
</div>
</div>
Expand Down
24 changes: 22 additions & 2 deletions src/app/layout/header/header.component.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,14 +1,34 @@
import { Component } from '@angular/core';
import { RouterLink } from '@angular/router';
import { LucideAngularModule } from 'lucide-angular';
import { AuthenticationService } from '../../services/authentication.service';
import { CommonModule } from '@angular/common';
Comment on lines 3 to +5
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Review the import usage as they are only used as types.

Consider using TypeScript's import type to explicitly indicate that these imports are only used for type checking. This can help with clarity and potentially optimize bundling processes.

- import { AuthenticationService } from '../../services/authentication.service';
- import { CommonModule } from '@angular/common';
+ import type { AuthenticationService } from '../../services/authentication.service';
+ import type { CommonModule } from '@angular/common';
Committable suggestion

‼️ IMPORTANT
Carefully review the code before committing. Ensure that it accurately replaces the highlighted code, contains no missing lines, and has no issues with indentation.

Suggested change
import { LucideAngularModule } from 'lucide-angular';
import { AuthenticationService } from '../../services/authentication.service';
import { CommonModule } from '@angular/common';
import { LucideAngularModule } from 'lucide-angular';
import type { AuthenticationService } from '../../services/authentication.service';
import type { CommonModule } from '@angular/common';


@Component({
selector: 'app-header',
standalone: true,
imports: [LucideAngularModule, RouterLink],
imports: [LucideAngularModule, RouterLink, CommonModule],
templateUrl: './header.component.html',
styleUrl: './header.component.scss'
styleUrl: './header.component.scss',
// eslint-disable-next-line @angular-eslint/no-host-metadata-property
host: {ngSkipHydration: 'true'},
})
export class HeaderComponent {

constructor(
private authService: AuthenticationService
) { }

isLoggedIn() {
return this.authService.isLoggedIn();
}

login() {
this.authService.authenticate();
}
Palabola marked this conversation as resolved.
Show resolved Hide resolved

logout() {
this.authService.signout();
}

}
Loading