Consent screen data properly saves

Author: jaxoncreed

default-views/auth/consent.hbs

@@ -19,19 +19,19 @@
 
   <form method="post" action="/consent">
 
-    <input id="read" type="checkbox" name="access_mode" value="read" checked>
+    <input id="read" type="checkbox" name="access_mode" value="Read" checked>
     <label for="read">Read your data</label>
     <br>
 
-    <input id="write" type="checkbox" name="access_mode" value="write" checked>
+    <input id="write" type="checkbox" name="access_mode" value="Write" checked>
     <label for="write">Write new data</label>
     <br>
 
-    <input id="append" type="checkbox" name="access_mode" value="append" checked>
+    <input id="append" type="checkbox" name="access_mode" value="Append" checked>
     <label for="append">Add to existing data</label>
     <br>
 
-    <input id="control" type="checkbox" name="access_mode" value="control">
+    <input id="control" type="checkbox" name="access_mode" value="Control">
     <label for="control">Control who can access your data</label>
     <br>
     <br>

lib/requests/consent-request.js

@@ -5,6 +5,10 @@ const debug = require('./../debug').authentication
 const AuthRequest = require('./auth-request')
 
 const url = require('url')
+const intoStream = require('into-stream')
+
+const $rdf = require('rdflib')
+const ACL = $rdf.Namespace('http://www.w3.org/ns/auth/acl#')
 
 /**
  * Models a local Login request
@@ -65,7 +69,7 @@ class ConsentRequest extends AuthRequest {
     // Check if is already registered or is data browser
     if (
       appOrigin === req.app.locals.ldp.serverUri ||
-      await request.isAppRegistered(appOrigin, request.authQueryParams.web_id)
+      await request.isAppRegistered(req.app.locals.ldp, appOrigin, request.authQueryParams.web_id)
     ) {
       request.redirectPostConsent()
     } else {
@@ -95,9 +99,10 @@ class ConsentRequest extends AuthRequest {
     debug('Providing consent for app sharing')
 
     if (consented) {
-      await request.registerApp(appOrigin, accessModes, request.authQueryParams.web_id)
+      await request.registerApp(req.app.locals.ldp, appOrigin, accessModes, request.authQueryParams.web_id)
     }
 
+    console.log('oh no didnt update')
     // Redirect once that's all done
     return request.authenticator.findValidUser()
       .then(validUser => {
@@ -113,12 +118,51 @@ class ConsentRequest extends AuthRequest {
     return `${parsed.protocol}//${parsed.host}`
   }
 
-  async isAppRegistered (appOrigin, webId) {
-    return false
+  async getProfileGraph (ldp, webId) {
+    return await new Promise(async (resolve, reject) => {
+      const store = $rdf.graph()
+      const profileText = await ldp.readResource(webId)
+      $rdf.parse(profileText.toString(), store, 'https://localhost:8443/profile/card', 'text/turtle', (error, kb) => {
+        if (error) {
+          reject(error)
+        } else {
+          resolve(kb)
+        }
+      })
+    })
+  }
+
+  async saveProfileGraph (ldp, store, webId) {
+    const text = $rdf.serialize(undefined, store, webId, 'text/turtle')
+    console.log(text)
+    await ldp.put(webId, intoStream(text), 'text/turtle')
+  }
+
+  async isAppRegistered (ldp, appOrigin, webId) {
+    const store = await this.getProfileGraph(ldp, webId)
+    return store.each($rdf.sym(webId), ACL('trustedApp')).find((app) => {
+      return store.each(app, ACL('origin')).find(rdfAppOrigin => rdfAppOrigin.value === appOrigin)
+    })
   }
 
-  async registerApp (appOrigin, accessModes, webId) {
-    return
+  async registerApp (ldp, appOrigin, accessModes, webId) {
+    const store = await this.getProfileGraph(ldp, webId)
+    const origin = $rdf.sym(appOrigin)
+    // remove existing statements on same origin - if it exists
+    store.statementsMatching(null, ACL('origin'), origin).forEach(st => {
+      store.removeStatements([...store.statementsMatching(null, ACL('trustedApp'), st.subject)])
+      store.removeStatements([...store.statementsMatching(st.subject)])
+    })
+
+    // add new triples
+    const application = new $rdf.BlankNode()
+    store.add($rdf.sym(webId), ACL('trustedApp'), application, webId)
+    store.add(application, ACL('origin'), origin, webId)
+    accessModes.forEach(mode => {
+      store.add(application, ACL('mode'), ACL(mode))
+    })
+    console.log(store)
+    await this.saveProfileGraph(ldp, store, webId)
   }
 
   /**