mirror of
https://github.com/TryGhost/Ghost.git
synced 2024-12-18 16:01:40 +03:00
7b3712a15b
refs https://github.com/TryGhost/Team/issues/2393 - During boot and loading the active theme, we now cache the result of the gscan validation. Cache configuration can happen in `adapters.cache.gscan` - We now also return non-fatal errors when activating or adding a theme. - When the `themeErrorsNotification` feature flag is on, we fetch the active theme (which includes the validation information) when loading admin - If the currently active theme has errors, we show an error notification that can open the error modal - Added a new endpoint: `/ghost/api/admin/themes/active/` that returns the result of the last gscan validation of the active theme. If no cache is available, it will run a new gscan validation. - Added new permissions for the active action/endpoint (author, editor, administrator)
157 lines
4.7 KiB
JavaScript
157 lines
4.7 KiB
JavaScript
import ESASessionService from 'ember-simple-auth/services/session';
|
|
import RSVP from 'rsvp';
|
|
import {configureScope} from '@sentry/ember';
|
|
import {getOwner} from '@ember/application';
|
|
import {inject} from 'ghost-admin/decorators/inject';
|
|
import {run} from '@ember/runloop';
|
|
import {inject as service} from '@ember/service';
|
|
import {task} from 'ember-concurrency';
|
|
import {tracked} from '@glimmer/tracking';
|
|
|
|
export default class SessionService extends ESASessionService {
|
|
@service configManager;
|
|
@service('store') dataStore;
|
|
@service feature;
|
|
@service notifications;
|
|
@service router;
|
|
@service frontend;
|
|
@service settings;
|
|
@service ui;
|
|
@service upgradeStatus;
|
|
@service whatsNew;
|
|
@service membersUtils;
|
|
@service themeManagement;
|
|
|
|
@inject config;
|
|
|
|
@tracked user = null;
|
|
|
|
skipAuthSuccessHandler = false;
|
|
|
|
async populateUser(options = {}) {
|
|
if (this.user) {
|
|
return;
|
|
}
|
|
|
|
const id = options.id || 'me';
|
|
const user = await this.dataStore.queryRecord('user', {id});
|
|
this.user = user;
|
|
}
|
|
|
|
async postAuthPreparation() {
|
|
await RSVP.all([
|
|
this.configManager.fetchAuthenticated(),
|
|
this.feature.fetch(),
|
|
this.settings.fetch(),
|
|
this.membersUtils.fetch()
|
|
]);
|
|
|
|
// Theme management requires features to be loaded
|
|
this.themeManagement.fetch().catch(console.error); // eslint-disable-line no-console
|
|
|
|
await this.frontend.loginIfNeeded();
|
|
|
|
// update Sentry with the full Ghost version which we only get after authentication
|
|
if (this.config.sentry_dsn) {
|
|
configureScope((scope) => {
|
|
scope.addEventProcessor((event) => {
|
|
return new Promise((resolve) => {
|
|
resolve({
|
|
...event,
|
|
release: `ghost@${this.config.version}`,
|
|
'user.role': this.user.role.name
|
|
});
|
|
});
|
|
});
|
|
});
|
|
}
|
|
|
|
this.loadServerNotifications();
|
|
this.whatsNew.fetchLatest.perform();
|
|
}
|
|
|
|
async handleAuthentication() {
|
|
if (this.handleAuthenticationTask.isRunning) {
|
|
return this.handleAuthenticationTask.last;
|
|
}
|
|
|
|
return this.handleAuthenticationTask.perform(() => {
|
|
if (this.skipAuthSuccessHandler) {
|
|
this.skipAuthSuccessHandler = false;
|
|
return;
|
|
}
|
|
|
|
super.handleAuthentication('home');
|
|
});
|
|
}
|
|
|
|
/**
|
|
* Always try to re-setup session & retry the original transition
|
|
* if user data is still available in session store although the
|
|
* ember-session is unauthenticated.
|
|
*
|
|
* If success, it will retry the original transition.
|
|
* If failed, it will be handled by the redirect to sign in.
|
|
*/
|
|
async requireAuthentication(transition, route) {
|
|
// Only when ember session invalidated
|
|
if (!this.isAuthenticated) {
|
|
transition.abort();
|
|
|
|
if (this.user) {
|
|
await this.setup();
|
|
this.notifications.clearAll();
|
|
transition.retry();
|
|
}
|
|
}
|
|
|
|
super.requireAuthentication(transition, route);
|
|
}
|
|
|
|
handleInvalidation() {
|
|
let transition = this.appLoadTransition;
|
|
|
|
if (transition) {
|
|
transition.send('authorizationFailed');
|
|
} else {
|
|
run.scheduleOnce('routerTransitions', this, 'triggerAuthorizationFailed');
|
|
}
|
|
}
|
|
|
|
// TODO: this feels hacky, find a better way than using .send
|
|
triggerAuthorizationFailed() {
|
|
getOwner(this).lookup(`route:${this.router.currentRouteName}`)?.send('authorizationFailed');
|
|
}
|
|
|
|
loadServerNotifications() {
|
|
if (this.isAuthenticated) {
|
|
if (!this.user.isAuthorOrContributor) {
|
|
this.dataStore.findAll('notification', {reload: true}).then((serverNotifications) => {
|
|
serverNotifications.forEach((notification) => {
|
|
if (notification.top || notification.custom) {
|
|
this.notifications.handleNotification(notification);
|
|
} else {
|
|
this.upgradeStatus.handleUpgradeNotification(notification);
|
|
}
|
|
});
|
|
});
|
|
}
|
|
}
|
|
}
|
|
|
|
@task({drop: true})
|
|
*handleAuthenticationTask(callback) {
|
|
if (!this.user) {
|
|
try {
|
|
yield this.populateUser();
|
|
} catch (err) {
|
|
yield this.invalidate();
|
|
}
|
|
|
|
yield this.postAuthPreparation();
|
|
}
|
|
|
|
callback();
|
|
}
|
|
}
|