Consent screen for allowing apps to access data

jaxoncreed · jaxoncreed · commit c89f6cb3766d · 2019-05-07T18:13:44.000-07:00
diff --git a/default-views/auth/consent.hbs b/default-views/auth/consent.hbs
@@ -11,20 +11,21 @@
 <body>
 <div class="container title">
   <div class="page-title">
-    <h1>Authorize app to use your Web ID?</h1>
+    <h1>Authorize this app to use your data?</h1>
+    <p>You will be authorizing <strong>{{app_origin}}</strong> to have access perform the actions indicated below.</p>
+    <p>NOTE: This screen is TEMPORARY. Eventually more fine-tuned controls will be available.</p>
   </div>
 
-  <form method="post" action="/authorize">
-    <input type="hidden" name="response_type" value="{{response_type}}"/>
-    <input type="hidden" name="display" value="{{display}}"/>
-    <input type="hidden" name="scope" value="{{scope}}"/>
-    <input type="hidden" name="client_id" value="{{client_id}}"/>
-    <input type="hidden" name="redirect_uri" value="{{redirect_uri}}"/>
-    <input type="hidden" name="state" value="{{state}}"/>
-    <input type="hidden" name="nonce" value="{{nonce}}"/>
+  <form method="post" action="/consent">
+
+    <input type="checkbox" name="read" value="access_mode" checked> Read your data<br>
+    <input type="checkbox" name="write" value="access_mode" checked> Write new data<br>
+    <input type="checkbox" name="append" value="access_mode" checked> Add to existing data<br>
+    <input type="checkbox" name="control" value="access_mode"> Control who can access your data<br>
 
     <button type="submit" class="btn btn-primary" name="consent" value="true">Authorize</button>
     <button type="submit" class="btn btn-default" name="cancel" value="true">Cancel</button>
+    {{> auth/auth-hidden-fields}}
   </form>
 </div>
 </body>
diff --git a/lib/api/authn/webid-oidc.js b/lib/api/authn/webid-oidc.js
@@ -8,6 +8,7 @@ const { routeResolvedFile } = require('../../utils')
 const bodyParser = require('body-parser').urlencoded({ extended: false })
 const OidcManager = require('../../models/oidc-manager')
 const { LoginRequest } = require('../../requests/login-request')
+const { ConsentRequest } = require('../../requests/consent-request')
 
 const restrictToTopDomain = require('../../handlers/restrict-to-top-domain')
 
@@ -83,6 +84,9 @@ function middleware (oidc) {
 
   router.post('/login/tls', bodyParser, LoginRequest.loginTls)
 
+  router.get('/consent', ConsentRequest.get)
+  router.post('/consent', ConsentRequest.giveConsent)
+
   router.get('/account/password/reset', restrictToTopDomain, PasswordResetEmailRequest.get)
   router.post('/account/password/reset', restrictToTopDomain, bodyParser, PasswordResetEmailRequest.post)
 
diff --git a/lib/requests/auth-request.js b/lib/requests/auth-request.js
@@ -210,6 +210,15 @@ class AuthRequest {
 
     return url.format(signupUrl)
   }
+
+  consentUrl () {
+    let host = this.accountManager.host
+    let consentUrl = url.parse(url.resolve(host.serverUri, '/consent'))
+
+    consentUrl.query = this.authQueryParams
+
+    return url.format(consentUrl)
+  }
 }
 
 AuthRequest.AUTH_QUERY_PARAMS = AUTH_QUERY_PARAMS
diff --git a/lib/requests/consent-request.js b/lib/requests/consent-request.js
@@ -0,0 +1,137 @@
+'use strict'
+
+const debug = require('./../debug').authentication
+
+const AuthRequest = require('./auth-request')
+
+/**
+ * Models a local Login request
+ */
+class ConsentRequest extends AuthRequest {
+  /**
+   * @constructor
+   * @param options {Object}
+   *
+   * @param [options.response] {ServerResponse} middleware `res` object
+   * @param [options.session] {Session} req.session
+   * @param [options.userStore] {UserStore}
+   * @param [options.accountManager] {AccountManager}
+   * @param [options.returnToUrl] {string}
+   * @param [options.authQueryParams] {Object} Key/value hashmap of parsed query
+   *   parameters that will be passed through to the /authorize endpoint.
+   * @param [options.authenticator] {Authenticator} Auth strategy by which to
+   *   log in
+   */
+  constructor (options) {
+    super(options)
+
+    this.authenticator = options.authenticator
+    this.authMethod = options.authMethod
+  }
+
+  /**
+   * Factory method, returns an initialized instance of LoginRequest
+   * from an incoming http request.
+   *
+   * @param req {IncomingRequest}
+   * @param res {ServerResponse}
+   * @param authMethod {string}
+   *
+   * @return {LoginRequest}
+   */
+  static fromParams (req, res) {
+    let options = AuthRequest.requestOptions(req, res)
+
+    return new ConsentRequest(options)
+  }
+
+  /**
+   * Handles a Login GET request on behalf of a middleware handler, displays
+   * the Login page.
+   * Usage:
+   *
+   *   ```
+   *   app.get('/login', LoginRequest.get)
+   *   ```
+   *
+   * @param req {IncomingRequest}
+   * @param res {ServerResponse}
+   */
+  static get (req, res) {
+    const request = ConsentRequest.fromParams(req, res)
+
+    request.renderForm(null, req)
+  }
+
+  /**
+   * Performs the login operation -- loads and validates the
+   * appropriate user, inits the session with credentials, and redirects the
+   * user to continue their auth flow.
+   *
+   * @param request {LoginRequest}
+   *
+   * @return {Promise}
+   */
+  static giveConsent (req, res) {
+    let request = ConsentRequest.fromParams(req, res)
+    console.log(request.authQueryParams)
+    // debug('Providing consent for app sharing')
+    // return request.authenticator.findValidUser()
+
+    //   .then(validUser => {
+    //     request.initUserSession(validUser)
+
+    //     request.redirectPostLogin(validUser)
+    //   })
+
+    //   .catch(error => request.error(error))
+  }
+
+  /**
+   * Returns a URL to redirect the user to after login.
+   * Either uses the provided `redirect_uri` auth query param, or simply
+   * returns the user profile URI if none was provided.
+   *
+   * @param validUser {UserAccount}
+   *
+   * @return {string}
+   */
+  postConsentUrl (validUser) {
+    return this.authorizeUrl()
+  }
+
+  /**
+   * Redirects the Login request to continue on the OIDC auth workflow.
+   */
+  redirectPostLogin (validUser) {
+    let uri = this.postLoginUrl(validUser)
+    debug('Login successful, redirecting to ', uri)
+    this.response.redirect(uri)
+  }
+
+  /**
+   * Renders the login form
+   */
+  renderForm (error, req) {
+    let queryString = req && req.url && req.url.replace(/[^?]+\?/, '') || ''
+    let params = Object.assign({}, this.authQueryParams,
+      {
+        registerUrl: this.registerUrl(),
+        returnToUrl: this.returnToUrl,
+        enablePassword: this.localAuth.password,
+        enableTls: this.localAuth.tls,
+        tlsUrl: `/login/tls?${encodeURIComponent(queryString)}`
+      })
+
+    if (error) {
+      params.error = error.message
+      this.response.status(error.statusCode)
+    }
+
+    this.response.render('auth/consent', params)
+  }
+}
+
+module.exports = {
+  ConsentRequest
+}
diff --git a/lib/requests/login-request.js b/lib/requests/login-request.js
@@ -159,7 +159,7 @@ class LoginRequest extends AuthRequest {
   postLoginUrl (validUser) {
     // Login request is part of an app's auth flow
     if (/token|code/.test(this.authQueryParams['response_type'])) {
-      return this.authorizeUrl()
+      return this.consentUrl()
     // Login request is a user going to /login in browser
     } else if (validUser) {
       return this.authQueryParams['redirect_uri'] || validUser.accountUri
diff --git a/test/resources/accounts-acl/config/views/auth/consent.hbs b/test/resources/accounts-acl/config/views/auth/consent.hbs
@@ -6,27 +6,26 @@
   <title>{{title}}</title>
   <!-- Bootstrap CSS and Theme for demo purposes -->
   <link rel="stylesheet" href="/common/css/bootstrap.min.css">
-  <style>
-    .title { margin-top: 2em; margin-bottom: 2em; }
-    #authorize { margin-right: 2em; }
-  </style>
+  <link rel="stylesheet" href="/common/css/solid.css">
 </head>
 <body>
 <div class="container title">
-  <h4>Authorize app to use your Web ID?</h4>
-</div>
-<div class="container">
-  <form method="post" action="/authorize">
-    <input type="hidden" name="response_type" value="{{response_type}}" />
-    <input type="hidden" name="display" value="{{display}}" />
-    <input type="hidden" name="scope" value="{{scope}}" />
-    <input type="hidden" name="client_id" value="{{client_id}}" />
-    <input type="hidden" name="redirect_uri" value="{{redirect_uri}}" />
-    <input type="hidden" name="state" value="{{state}}" />
-    <input type="hidden" name="nonce" value="{{nonce}}" />
+  <div class="page-title">
+    <h1>Authorize this app to use your data?</h1>
+    <p>You will be authorizing <strong>{{app_origin}}</strong> to have access perform the actions indicated below.</p>
+    <p>NOTE: This screen is TEMPORARY. Eventually more fine-tuned controls will be available.</p>
+  </div>
+
+  <form method="post" action="/consent">
+
+    <input type="checkbox" name="read" value="access_mode" checked> Read your data<br>
+    <input type="checkbox" name="write" value="access_mode" checked> Write new data<br>
+    <input type="checkbox" name="append" value="access_mode" checked> Add to existing data<br>
+    <input type="checkbox" name="control" value="access_mode"> Control who can access your data<br>
 
     <button type="submit" class="btn btn-primary" name="consent" value="true">Authorize</button>
-    <button type="submit" class="btn" name="cancel" value="true">Cancel</button>
+    <button type="submit" class="btn btn-default" name="cancel" value="true">Cancel</button>
+    {{> auth/auth-hidden-fields}}
   </form>
 </div>
 </body>

Original file line number	Diff line number	Diff line change
`@@ -210,6 +210,15 @@ class AuthRequest {`
`210`	`210`
`211`	`211`	`return url.format(signupUrl)`
`212`	`212`	`}`
	`213`	`+`
	`214`	`+ consentUrl () {`
	`215`	`+ let host = this.accountManager.host`
	`216`	`+ let consentUrl = url.parse(url.resolve(host.serverUri, '/consent'))`
	`217`	`+`
	`218`	`+ consentUrl.query = this.authQueryParams`
	`219`	`+`
	`220`	`+ return url.format(consentUrl)`
	`221`	`+ }`
`213`	`222`	`}`
`214`	`223`
`215`	`224`	`AuthRequest.AUTH_QUERY_PARAMS = AUTH_QUERY_PARAMS`