Add authentication

.gitignore

@@ -24,3 +24,5 @@ coverage
 *.tsv
 .vscode
 .prettierrc
+
+.env

Makefile

@@ -44,6 +44,7 @@ install: configs
 	install -d -m 0777 $(DESTDIR)/var/www/images
 	install -d -m 0777 $(DESTDIR)/var/www/uploads
 	install -d -m 0777 $(DESTDIR)/var/www/scripts/i18n
+	install -d -m 0755 $(DESTDIR)/var/www/fonts
 
 	cp -a dist/css/*.css $(DESTDIR)/var/www/css
 	cp -a dist/images/* $(DESTDIR)/var/www/images
@@ -52,13 +53,12 @@ install: configs
 	cp -a dist/*.js $(DESTDIR)/var/www/
 	cp -a dist/*.svg $(DESTDIR)/var/www/
 	cp -a dist/*.png $(DESTDIR)/var/www/
-	cp -a dist/*.ttf $(DESTDIR)/var/www/
-	cp -a dist/*.woff $(DESTDIR)/var/www/
-	cp -a dist/*.woff2 $(DESTDIR)/var/www/ || :
+	cp -a dist/fonts/* $(DESTDIR)/var/www/fonts
 
 	install -m 0644 dist/404.html $(DESTDIR)/var/www/
 	install -m 0644 dist/robots.txt $(DESTDIR)/var/www/
 	install -m 0644 dist/index.html $(DESTDIR)/var/www/
+	install -m 0644 login/login.html $(DESTDIR)/var/www/
 
 	install -Dm0644 dist/configs/*.json -t $(DESTDIR)/usr/share/wb-mqtt-homeui
 	install -Dm0755 convert_config_v1v2.py $(DESTDIR)/usr/lib/wb-mqtt-homeui/convert_config_v1v2

README.md

@@ -9,6 +9,7 @@ See into [conventions](https://github.com/wirenboard/conventions/blob/main/READM
 ## Build & development
 
 Run `npm run build` for building and `npm start` for preview.
+To change the mqtt broker url create a "MQTT_BROKER_URI" variable in the .env file with your url.
 
 ## Default SVG-Dashboards
 

app/index.ejs

@@ -24,6 +24,10 @@
 
   <div id="wrapper" class="fade" ng-class="{ 'show-console': consoleVisible }">
       <exp-check-widget></exp-check-widget>
+      <div class="alert alert-danger" role="alert" ng-cloak ng-if="roles.notConfiguredAdmin">
+        <span class="glyphicon glyphicon-exclamation-sign" aria-hidden="true"></span>
+        <span translate>{{'app.errors.not-configured-admin'}}</span>
+      </div>
 
       <!-- Navigation -->
       <nav class="navbar navbar-inverse navbar-fixed-top" role="navigation" ng-controller='NavigationCtrl'>
@@ -38,16 +42,22 @@
               <a class="navbar-brand wb-navbar-brand" ui-sref="home">
                 <img src="images/logo.svg" alt="Wiren Board Web UI">
               </a>
-              <p class="navbar-text navbar-right connection-status">
-                <span class="label label-custom access-level-label" ng-class="roles.current.roles.isAdmin ? 'label label-custom label-danger' : 'label label-custom label-warning'"
-                      ng-show="roles.current.roles.shortName"
-                      title="{{'navigation.access.title' | translate}} {{roles.current.roles.name | translate}}">
-                      <span class="mobile-screen-access-level">{{roles.current.roles.shortName | translate}}</span>
-                      <span class="big-screen-access-level">{{'navigation.access.title' | translate}} {{roles.current.roles.name | translate}}</span>
-                    </span>
+              <div class="navbar-text navbar-right connection-status">
                 <span class="connected-status label label-success" ng-show="isConnected()" translate>{{'navigation.connection.active'}}</span>
                 <span class="connected-status label label-danger" ng-show="!isConnected()" translate>{{'navigation.connection.inactive'}}</span>
-              </p>
+                <div class="dropdown user-menu navbar-right" ng-if="!roles.notConfiguredAdmin">
+                    <i class="glyphicon glyphicon-user" id="userMenu" type="button" data-toggle="dropdown" aria-label="User menu" aria-haspopup="true" aria-expanded="false"></i>
+                    <ul class="dropdown-menu" aria-labelledby="userMenu">
+                        <li>
+                            <span class='user-name' translate>{{roles.current.roles.name}}</span>
+                        </li>
+                        <li role="separator" class="divider"></li>
+                        <li>
+                            <a href="#" ng-click="logout()" translate>{{'app.buttons.logout'}}</a>
+                        </li>
+                    </ul>
+                </div>
+              </div>
           </div>
 
           <div class="nav navbar-nav navbar-right ma-0"></div>
@@ -102,7 +112,7 @@
                           <li>
                               <a data-toggle="collapse" data-target=".navbar-ex1-collapse" ui-sref="MQTTChannels" ui-sref-active="active">{{'navigation.menu.channels' | translate}}</a>
                           </li>
-                          <li>
+                          <li ng-if="showAccessControl()">
                               <a data-toggle="collapse" data-target=".navbar-ex1-collapse" ui-sref="accessLevel" ui-sref-active="active">{{'navigation.menu.access' | translate}}</a>
                           </li>
                           <li user-role="mto" current-role="roles.current.role">

app/scripts/app.js

@@ -67,7 +67,6 @@ import HomeCtrl from './controllers/homeController';
 import NavigationCtrl from './controllers/navigationController';
 import LoginCtrl from './controllers/loginController';
 import MQTTCtrl from './controllers/MQTTChannelsController';
-import AccessLevelCtrl from './controllers/accessLevelController';
 import DateTimePickerModalCtrl from './controllers/dateTimePickerModalController';
 import DiagnosticCtrl from './controllers/diagnosticController';
 import BackupCtrl from './controllers/backupController';
@@ -95,6 +94,7 @@ import onResizeDirective from './directives/resize';
 import confirmDirective from './directives/confirm';
 import fullscreenToggleDirective from './directives/fullscreenToggle';
 import expCheckMetaDirective from './react-directives/exp-check/exp-check';
+import usersPageDirective from './react-directives/users/users';
 
 // Angular routes
 import routingModule from './app.routes';
@@ -178,7 +178,6 @@ module
   .controller('HomeCtrl', HomeCtrl)
   .controller('LoginCtrl', LoginCtrl)
   .controller('MQTTCtrl', MQTTCtrl)
-  .controller('AccessLevelCtrl', AccessLevelCtrl)
   .controller('DateTimePickerModalCtrl', DateTimePickerModalCtrl)
   .controller('DiagnosticCtrl', DiagnosticCtrl)
   .controller('BackupCtrl', BackupCtrl)
@@ -266,7 +265,8 @@ module
   .directive('onResize', ['$parse', onResizeDirective])
   .directive('ngConfirm', confirmDirective)
   .directive('fullscreenToggle', fullscreenToggleDirective)
-  .directive('expCheckWidget', expCheckMetaDirective);
+  .directive('expCheckWidget', expCheckMetaDirective)
+  .directive('usersPage', usersPageDirective);
 
 module
   .config([
@@ -277,7 +277,6 @@ module
         'app',
         'console',
         'help',
-        'access',
         'mqtt',
         'system',
         'ui',
@@ -451,23 +450,14 @@ const realApp = angular
         prefix: $window.localStorage['prefix'],
       };
 
-      // detect auto url
-      var autoURL = new URL('/mqtt', $window.location.href);
-      autoURL.protocol = autoURL.protocol.replace('http', 'ws');
-
-      // FIXME: I know it's ugly, let's find more elegant way later
-      var isDev = $window.location.host === 'localhost:8080';
-
-      if (isDev) {
-        // local debug detected, enable MQTT url override via settings
-        if (!$window.localStorage.url) {
-          $window.localStorage.setItem('url', autoURL.href);
-        }
-        loginData['url'] = $window.localStorage['url'];
-      } else {
-        // no local debug detected, full auto
-        loginData['url'] = autoURL.href;
+      const loginUrl = new URL('/mqtt', $window.location.origin);
+
+      const isDev = $window.location.host === 'localhost:8080';
+
+      if (!isDev) {
+        loginUrl.protocol = loginUrl.protocol.replace('http', 'ws');
       }
+      loginData.url = loginUrl.href;
 
       let language = localStorage.getItem('language');
       const supportedLanguages = ['en', 'ru'];

app/scripts/app.routes.js

@@ -53,7 +53,6 @@ function routing($stateProvider, $locationProvider, $urlRouterProvider) {
     .state('accessLevel', {
       url: '/access-level',
       template: require('../views/access-level.html'),
-      controller: 'AccessLevelCtrl as $ctrl',
     })
     .state('scan', {
       url: '/scan',

app/scripts/components/loginForm/loginForm.controller.js

@@ -3,17 +3,11 @@ class LoginFormCtrl {
   constructor($window, $rootScope, $state, $location, rolesFactory) {
     'ngInject';
 
-    var currentURL = new URL("/mqtt", $window.location.href);
-    currentURL.protocol = currentURL.protocol.replace('http', 'ws');
-
     this.rootScope = $rootScope;
-    this.isDev = ($window.location.host === 'localhost:8080'); // FIXME: find more beautiful way to detect local dev
     this.localStorage = $window.localStorage;
     this.state = $state;
     this.rolesFactory = rolesFactory;
-    this.currentURL = currentURL.href;
     this.loginSettings = {};
-    this.loginSettings.url = this.localStorage['url'];
     this.loginSettings.user = this.localStorage['user'];
     this.loginSettings.password = this.localStorage['password'];
     this.loginSettings.prefix = this.localStorage['prefix'];
@@ -26,17 +20,11 @@ class LoginFormCtrl {
 
   //...........................................................................
   $postLink() {
-    let url = this.loginSettings.url;
     let useCredentials = this.loginSettings.useCredentials;
     let user = this.loginSettings.user;
     let password = this.loginSettings.password;
     let prefix = this.loginSettings.prefix;
 
-    if (url) {
-      this.url = url;
-    } else {
-      this.url = this.currentURL;
-    }
     if (useCredentials) {
       this.useCredentials = useCredentials;
     } else {
@@ -62,8 +50,6 @@ class LoginFormCtrl {
   //...........................................................................
   updateLoginSettings() {
     // Update settings in Local Storage
-    if (this.isDev)
-      this.localStorage.setItem('url', this.url);
 
     this.localStorage.setItem('prefix', this.prefix);
 
@@ -77,14 +63,11 @@ class LoginFormCtrl {
 
     // Try to fetch UI config this new settings
     let loginData = {
-      url: this.url,
       user: this.user,
       password: this.password,
       prefix: this.prefix,
-      isDev: this.isDev,
     };
 
-    this.rolesFactory.setRole(1);
     this.rootScope.requestConfig(loginData);
     location.reload();
   }

app/scripts/components/loginForm/loginForm.html

@@ -7,14 +7,6 @@ <h3 class="panel-title"><i class="glyphicon glyphicon-log-in"></i> {{'login.titl
             <form class="form-horizontal" name="$ctrl.loginForm"
                   ng-submit="$ctrl.loginForm.$valid ? $ctrl.updateLoginSettings() : ''" novalidate>
 
-                <div class="form-group" ng-if="$ctrl.isDev">
-                    <label for="loginURL" class="col-sm-2 control-label" translate>{{'login.labels.url'}}</label>
-
-                    <div class="col-sm-10">
-                        <input type="text" class="form-control" id="loginURL" name="url" ng-model="$ctrl.url"
-                               required>
-                    </div>
-                </div>
                 <div class="form-group">
                     <div class="col-sm-offset-2 col-sm-10">
                         <div class="checkbox">

app/scripts/controllers/navigationController.js

@@ -8,11 +8,13 @@
     whenMqttReady,
     errors,
     uiConfig,
-    rolesFactory
+    rolesFactory,
+    $rootScope
   ) {
     'ngInject';
 
     $scope.roles = rolesFactory;
+    $rootScope.roles = rolesFactory;
 
     $scope.isActive = function (viewLocation) {
       return viewLocation === $location.path();
@@ -84,6 +86,18 @@
         ? pageWrapperClassList.remove(overlayClass)
         : pageWrapperClassList.add(overlayClass);
     };
+
+    $scope.showAccessControl = function () {
+      return rolesFactory.current.roles.isAdmin || rolesFactory.notConfiguredAdmin;
+    };
+
+    $scope.logout = function () {
+      fetch('/logout', {
+        method: 'POST',
+      }).then(() => {
+        window.location.href = '/login';
+      });
+    };
   }
 
   //-----------------------------------------------------------------------------

app/scripts/i18n/app/en.json

@@ -4,11 +4,20 @@
             "load": "Cannot load WebUI config.",
             "save": "Config saving failed",
             "overflow": "Config saving failed. Try to clear page's localStorage and restart the browser. If problem remains, try to reduce overall size of SVG images.",
-            "stop-scan": "The controller started searching for Modbus devices. This could lead to slow polling of already configured devices. The search process is forcibly stopped"
+            "stop-scan": "The controller started searching for Modbus devices. This could lead to slow polling of already configured devices. The search process is forcibly stopped",
+            "not-configured-admin": "The administrator password is not set. Please set it in the settings"
         },
         "prompt": {
             "dirty": "The page has unsaved changes. Are you sure you want to leave?",
             "serial-config-leave": "Scanning will be canceled. Do you really want to leave the page?"
+        },
+        "buttons": {
+            "logout": "Logout"
+        },
+        "roles": {
+            "user": "User",
+            "operator": "Operator",
+            "admin": "Administrator"
         }
     },
     "home": {