Ghost/core/client/app/initializers/authentication.js

import Ember from 'ember';
import ghostPaths from 'ghost/utils/ghost-paths';

var Ghost,
    AuthenticationInitializer;

Ghost = ghostPaths();

AuthenticationInitializer = {
    name: 'authentication',
    before: 'simple-auth',
    after: 'registerTrailingLocationHistory',

    initialize: function (container) {
        window.ENV = window.ENV || {};

        window.ENV['simple-auth'] = {
            authenticationRoute: 'signin',
            routeAfterAuthentication: 'posts',
            authorizer: 'simple-auth-authorizer:oauth2-bearer',
            localStorageKey: 'ghost' + (Ghost.subdir.indexOf('/') === 0 ? '-' + Ghost.subdir.substr(1) : '') + ':session'
        };

        window.ENV['simple-auth-oauth2'] = {
            serverTokenEndpoint: Ghost.apiRoot + '/authentication/token',
            serverTokenRevocationEndpoint: Ghost.apiRoot + '/authentication/revoke',
            refreshAccessTokens: true
        };

        SimpleAuth.Session.reopen({
            user: Ember.computed(function () {
                return container.lookup('store:main').find('user', 'me');
            })
        });

        SimpleAuth.Authenticators.OAuth2.reopen({
            makeRequest: function (url, data) {
                data.client_id = 'ghost-admin';
                return this._super(url, data);
            }
        });
    }
};

export default AuthenticationInitializer;
Ember init, bower deps, es6 modules 2015-02-13 07:22:32 +03:00			`import Ember from 'ember';`
Update authentication endpoint for subdirectory Fixes bug where user is unable to log into admin when subdirectory is specified 2014-08-10 18:48:11 +04:00			`import ghostPaths from 'ghost/utils/ghost-paths';`

Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00			`var Ghost,`
			`AuthenticationInitializer;`
Update authentication endpoint for subdirectory Fixes bug where user is unable to log into admin when subdirectory is specified 2014-08-10 18:48:11 +04:00
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00			`Ghost = ghostPaths();`
oAuth closes #2759 closes #3027 - added oauth2orize library for server side oAuth handling - added ember-simple-auth library for admin oAuth handling - added tables for client, accesstoken and refreshtoken - implemented RFC6749 4.3 Ressouce Owner Password Credentials Grant - updated api tests with oAuth - removed session, authentication is now token based Known issues: - Restore spam prevention #3128 - Signin after Signup #3125 - Signin validation #3125 Attention - oldClient doesn't work with this PR anymore, session authentication was removed 2014-06-30 16:58:10 +04:00
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00			`AuthenticationInitializer = {`
oAuth closes #2759 closes #3027 - added oauth2orize library for server side oAuth handling - added ember-simple-auth library for admin oAuth handling - added tables for client, accesstoken and refreshtoken - implemented RFC6749 4.3 Ressouce Owner Password Credentials Grant - updated api tests with oAuth - removed session, authentication is now token based Known issues: - Restore spam prevention #3128 - Signin after Signup #3125 - Signin validation #3125 Attention - oldClient doesn't work with this PR anymore, session authentication was removed 2014-06-30 16:58:10 +04:00			`name: 'authentication',`
updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`before: 'simple-auth',`
oAuth closes #2759 closes #3027 - added oauth2orize library for server side oAuth handling - added ember-simple-auth library for admin oAuth handling - added tables for client, accesstoken and refreshtoken - implemented RFC6749 4.3 Ressouce Owner Password Credentials Grant - updated api tests with oAuth - removed session, authentication is now token based Known issues: - Restore spam prevention #3128 - Signin after Signup #3125 - Signin validation #3125 Attention - oldClient doesn't work with this PR anymore, session authentication was removed 2014-06-30 16:58:10 +04:00			`after: 'registerTrailingLocationHistory',`

updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`initialize: function (container) {`
			`window.ENV = window.ENV \|\| {};`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00
updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`window.ENV['simple-auth'] = {`
			`authenticationRoute: 'signin',`
Fixup behavior and styling of editor re-auth. Closes #2092 - Adds styling for re-auth modal. - Prevent transition to posts route on success. - Clear credentials from controller. - Handle confirmAccept action if form is submitted via 'enter'. - Only allow re-auth as the user that was previously logged in. 2014-12-08 03:31:24 +03:00			`routeAfterAuthentication: 'posts',`
Update authentication initializer. Refs #3492 - ember-simple-auth@0.7.2 2014-11-22 20:43:32 +03:00			`authorizer: 'simple-auth-authorizer:oauth2-bearer',`
			`localStorageKey: 'ghost' + (Ghost.subdir.indexOf('/') === 0 ? '-' + Ghost.subdir.substr(1) : '') + ':session'`
			`};`

			`window.ENV['simple-auth-oauth2'] = {`
			`serverTokenEndpoint: Ghost.apiRoot + '/authentication/token',`
			`serverTokenRevocationEndpoint: Ghost.apiRoot + '/authentication/revoke',`
			`refreshAccessTokens: true`
updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`};`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00
updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`SimpleAuth.Session.reopen({`
Fixup behavior and styling of editor re-auth. Closes #2092 - Adds styling for re-auth modal. - Prevent transition to posts route on success. - Clear credentials from controller. - Handle confirmAccept action if form is submitted via 'enter'. - Only allow re-auth as the user that was previously logged in. 2014-12-08 03:31:24 +03:00			`user: Ember.computed(function () {`
Fix direct access to settings/user closes #3162 - removes injection of user object in application route's beforeModel - removes injection/cleanup of user object in signedIn/signedOut actions - removes loading of user and passing to signedIn action in signup/setup controllers - adds 'user' property to session object - updates header nav to reference session.user - sets model of settings/user route to session.user and forces reload - on leaving settings/user, rollback any unsaved changes 2014-07-01 19:58:26 +04:00			`return container.lookup('store:main').find('user', 'me');`
Fixup behavior and styling of editor re-auth. Closes #2092 - Adds styling for re-auth modal. - Prevent transition to posts route on success. - Clear credentials from controller. - Handle confirmAccept action if form is submitted via 'enter'. - Only allow re-auth as the user that was previously logged in. 2014-12-08 03:31:24 +03:00			`})`
Fix direct access to settings/user closes #3162 - removes injection of user object in application route's beforeModel - removes injection/cleanup of user object in signedIn/signedOut actions - removes loading of user and passing to signedIn action in signup/setup controllers - adds 'user' property to session object - updates header nav to reference session.user - sets model of settings/user route to session.user and forces reload - on leaving settings/user, rollback any unsaved changes 2014-07-01 19:58:26 +04:00			`});`
Enable JSCS checking on client. Refs #4001 - grunt-jscs@0.8.1 which provides ES6 support. 2014-10-25 01:09:50 +04:00
updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`SimpleAuth.Authenticators.OAuth2.reopen({`
			`makeRequest: function (url, data) {`
oAuth closes #2759 closes #3027 - added oauth2orize library for server side oAuth handling - added ember-simple-auth library for admin oAuth handling - added tables for client, accesstoken and refreshtoken - implemented RFC6749 4.3 Ressouce Owner Password Credentials Grant - updated api tests with oAuth - removed session, authentication is now token based Known issues: - Restore spam prevention #3128 - Signin after Signup #3125 - Signin validation #3125 Attention - oldClient doesn't work with this PR anymore, session authentication was removed 2014-06-30 16:58:10 +04:00			`data.client_id = 'ghost-admin';`
updated Ember Simple Auth to latest version 2014-07-25 17:38:13 +04:00			`return this._super(url, data);`
oAuth closes #2759 closes #3027 - added oauth2orize library for server side oAuth handling - added ember-simple-auth library for admin oAuth handling - added tables for client, accesstoken and refreshtoken - implemented RFC6749 4.3 Ressouce Owner Password Credentials Grant - updated api tests with oAuth - removed session, authentication is now token based Known issues: - Restore spam prevention #3128 - Signin after Signup #3125 - Signin validation #3125 Attention - oldClient doesn't work with this PR anymore, session authentication was removed 2014-06-30 16:58:10 +04:00			`}`
			`});`
			`}`
			`};`

Fix direct access to settings/user closes #3162 - removes injection of user object in application route's beforeModel - removes injection/cleanup of user object in signedIn/signedOut actions - removes loading of user and passing to signedIn action in signup/setup controllers - adds 'user' property to session object - updates header nav to reference session.user - sets model of settings/user route to session.user and forces reload - on leaving settings/user, rollback any unsaved changes 2014-07-01 19:58:26 +04:00			`export default AuthenticationInitializer;`