sudacode/metrics
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity

fix(app/web): add disclaimer about using localstorage

Browse Source
This commit is contained in:
lowlighter
2022-08-17 20:23:17 -04:00
parent 77d15eb188
commit 4b35fc5169
3 changed files with 38 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
source/app/web/statics/oauth/index.html
View File

@@ -42,6 +42,8 @@
</div> </div>
<p> <p>
Signing in with your GitHub account lets you use this web instance with your own API requests quota. Signing in with your GitHub account lets you use this web instance with your own API requests quota.
<br><br>
A session identifier will be stored in your <a href="https://developer.mozilla.org/en-US/docs/Web/API/Window/localStorage">browser's localStorage</a> and will be used by the server to load custom <a href="https://github.com/octokit">GitHub Octokit</a> instances that are linked to your account.
</p> </p>
<template v-if="extras.length"> <template v-if="extras.length">
The following extra features permissions will be granted when logged with your GitHub account: The following extra features permissions will be granted when logged with your GitHub account:
@@ -54,19 +56,28 @@
<template> <template>
<section class="container center oauth"> <section class="container center oauth">
<template v-if="!requests.login"> <template v-if="!requests.login">
<a class="oauth-github" :href="`/.oauth/authenticate?${params}`"> <a class="oauth-github" :class="{disabled:!supported}" :href="`/.oauth/authenticate?${params}`">
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16" width="16" height="16"><path fill="currentColor" fill-rule="evenodd" d="M8 0C3.58 0 0 3.58 0 8c0 3.54 2.29 6.53 5.47 7.59.4.07.55-.17.55-.38 0-.19-.01-.82-.01-1.49-2.01.37-2.53-.49-2.69-.94-.09-.23-.48-.94-.82-1.13-.28-.15-.68-.52-.01-.53.63-.01 1.08.58 1.23.82.72 1.21 1.87.87 2.33.66.07-.52.28-.87.51-1.07-1.78-.2-3.64-.89-3.64-3.95 0-.87.31-1.59.82-2.15-.08-.2-.36-1.02.08-2.12 0 0 .67-.21 2.2.82.64-.18 1.32-.27 2-.27.68 0 1.36.09 2 .27 1.53-1.04 2.2-.82 2.2-.82.44 1.1.16 1.92.08 2.12.51.56.82 1.27.82 2.15 0 3.07-1.87 3.75-3.65 3.95.29.25.54.73.54 1.48 0 1.07-.01 1.93-.01 2.2 0 .21.15.46.55.38A8.013 8.013 0 0016 8c0-4.42-3.58-8-8-8z"></path></svg> <svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 16 16" width="16" height="16"><path fill="currentColor" fill-rule="evenodd" d="M8 0C3.58 0 0 3.58 0 8c0 3.54 2.29 6.53 5.47 7.59.4.07.55-.17.55-.38 0-.19-.01-.82-.01-1.49-2.01.37-2.53-.49-2.69-.94-.09-.23-.48-.94-.82-1.13-.28-.15-.68-.52-.01-.53.63-.01 1.08.58 1.23.82.72 1.21 1.87.87 2.33.66.07-.52.28-.87.51-1.07-1.78-.2-3.64-.89-3.64-3.95 0-.87.31-1.59.82-2.15-.08-.2-.36-1.02.08-2.12 0 0 .67-.21 2.2.82.64-.18 1.32-.27 2-.27.68 0 1.36.09 2 .27 1.53-1.04 2.2-.82 2.2-.82.44 1.1.16 1.92.08 2.12.51.56.82 1.27.82 2.15 0 3.07-1.87 3.75-3.65 3.95.29.25.54.73.54 1.48 0 1.07-.01 1.93-.01 2.2 0 .21.15.46.55.38A8.013 8.013 0 0016 8c0-4.42-3.58-8-8-8z"></path></svg>
Sign in with GitHub Sign in with GitHub
</a> </a>
<div class="oauth-scopes"> <template v-if="supported">
<label v-for="scope in ['read:org', 'read:user', 'read:packages', 'read:project']"> <div class="oauth-scopes">
<input type="checkbox" :value="scope" v-model="scopes"> <code>{{ scope }}</code> <label v-for="scope in ['read:org', 'read:user', 'read:packages', 'read:project']">
</label> <input type="checkbox" :value="scope" v-model="scopes"> <code>{{ scope }}</code>
</label>
</div>
<small>
While no scope is required, you can chose to grant additional scopes which may be required by some plugins options.
For security reasons, <a href="https://github.com/lowlighter/metrics">metrics</a> will only ask for <b>read-only access</b> to your account.
</small>
<br>
<small>
By clicking above button you understand that your <a href="https://developer.mozilla.org/en-US/docs/Web/API/Window/localStorage">browser's localStorage</a> will be used to store a session identifier.
</small>
</template>
<div class="warning" v-else>
This feature requires <a href="https://developer.mozilla.org/en-US/docs/Web/API/Window/localStorage">localStorage</a> to be enabled.
</div> </div>
<small>
While no scope is required, you can chose to grant additional scopes which may be required by some plugins options.
For security reasons, <a href="https://github.com/lowlighter/metrics">metrics</a> will only ask for <b>read-only access</b> to your account.
</small>
</template> </template>
<template v-else> <template v-else>
<a class="oauth-github disabled" href="#"> <a class="oauth-github disabled" href="#">
@@ -76,6 +87,7 @@
<a :href="`/.oauth/revoke/${session}`"> <a :href="`/.oauth/revoke/${session}`">
<button class="oauth-revoke">Revoke authorization</button> <button class="oauth-revoke">Revoke authorization</button>
</a> </a>
<small>Session: {{ session.substring(0, 32) }}</small>
</template> </template>
</section> </section>
</template> </template>

15
source/app/web/statics/oauth/script.js
View File

@@ -74,6 +74,21 @@
scopes: [], scopes: [],
extras: [], extras: [],
session: null, session: null,
supported:(() => {
try {
const storage = window.localStorage
const test = "__storage_test__"
storage.setItem(test, test);
if (localStorage.getItem(test) !== test)
throw new Error("localStorage value mismatch")
storage.removeItem(test)
return true
}
catch (error) {
console.error(error)
return false
}
})()
}, },
}) })
})() })()

4
source/app/web/statics/style.css
View File

@@ -305,7 +305,7 @@
} }
.oauth-github { .oauth-github {
color: var(--color-text-primary); color: var(--color-text-primary) !important;
display: flex; display: flex;
align-items: center; align-items: center;
justify-content: center; justify-content: center;
@@ -463,7 +463,7 @@
} }
.badges-oauth .border { .badges-oauth .border {
width: 4rem; width: 4rem;
border: 3px dashed var(--color-border-secondary); border-top: 3px dashed var(--color-border-secondary);
} }
.badge-oauth { .badge-oauth {
width: 96px; width: 96px;