upstream/mattermost
1
0
Fork 0
mirror of https://github.com/mattermost/mattermost.git synced 2026-03-01 21:01:33 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 4
mattermost/server/channels/utils/api.go

179 lines
6.4 KiB
Go
Raw Permalink Normal View History

Consistent license message for all the go files (#13235) * Consistent license message for all the go files * Fixing the last set of unconsistencies with the license headers * Addressing PR review comments * Fixing busy.go and busy_test.go license header
2019-11-29 06:59:40 -05:00
// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.
// See LICENSE.txt for license information.
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
package utils
import (
ABC-132: sign error page parameters (#8197) * sign error page parameters * add comments
2018-02-07 12:05:46 -05:00
"crypto"
"crypto/rand"
"encoding/base64"
ABC-153: don't use http redirects with 4xx/5xx status codes (#8178) * don't use http redirects with 4xx/5xx status codes * minor html syntax fix
2018-02-02 08:29:11 -05:00
"fmt"
"html/template"
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
"net/http"
Implement v4 endpoints for OAuth (#6040) * Implement POST /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps/{app_id} and /oauth/apps/{app_id}/info endpoints for APIv4 * Refactor API version independent oauth endpoints * Implement DELETE /oauth/apps/{app_id} endpoint for APIv4 * Implement /oauth/apps/{app_id}/regen_secret endpoint for APIv4 * Implement GET /user/{user_id}/oauth/apps/authorized endpoint for APIv4 * Implement POST /oauth/deauthorize endpoint
2017-04-20 09:55:02 -04:00
"net/url"
MM-10370: serve subpath (#8968) * factor out GetSubpathFromConfig * mv web/subpath.go to utils/subpath.go * serve up web, api and ws on /subpath if configured * pass config to utils.RenderWeb(App)?Error This allows the methods to extract the configured subpath and redirect to the appropriate `/subpath/error` handler. * ensure GetSubpathFromConfig returns trailing slashes deterministically * fix error 404 handling * redirect /subpath to /subpath/ This is necessary for the static handler to match, otherwise none of the registered routes find anything. This also makes it no longer necessary to add trailing slashes in the root router.
2018-06-21 14:31:51 -04:00
"path"
[MM-57356] Make use of go1.21 features (#26620)
2024-04-04 07:44:03 -04:00
"slices"
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
"strings"
Implement v4 endpoints for OAuth (#6040) * Implement POST /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps/{app_id} and /oauth/apps/{app_id}/info endpoints for APIv4 * Refactor API version independent oauth endpoints * Implement DELETE /oauth/apps/{app_id} endpoint for APIv4 * Implement /oauth/apps/{app_id}/regen_secret endpoint for APIv4 * Implement GET /user/{user_id}/oauth/apps/authorized endpoint for APIv4 * Implement POST /oauth/deauthorize endpoint
2017-04-20 09:55:02 -04:00
MM-53032: Fix module path after repo rename (#23689) It was a good decision in hindsight to keep the public module as 0.x because this would have been a breaking change again. https://mattermost.atlassian.net/browse/MM-53032 ```release-note Changed the Go module path from github.com/mattermost/mattermost-server/server/v8 to github.com/mattermost/mattermost/server/v8. For the public facing module, it's path is also changed from github.com/mattermost/mattermost-server/server/public to github.com/mattermost/mattermost/server/public ```
2023-06-11 01:24:35 -04:00
"github.com/mattermost/mattermost/server/public/model"
"github.com/mattermost/mattermost/server/public/shared/i18n"
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
)
origin checker refactor (#7889)
2017-11-22 16:58:03 -05:00
func CheckOrigin(r *http.Request, allowedOrigins string) bool {
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
origin := r.Header.Get("Origin")
If no origin header is set for WebSocket, do not fail upgrade (#9287)
2018-08-24 06:09:48 -04:00
if origin == "" {
return true
}
origin checker refactor (#7889)
2017-11-22 16:58:03 -05:00
if allowedOrigins == "*" {
Tweak WebSocket header-processing (#6929) * fix * consolidate code
2017-07-13 17:02:33 -04:00
return true
}
[MM-64654] Migrate to modern Go features (#31820)
2025-07-18 06:54:51 -04:00
return slices.Contains(strings.Split(allowedOrigins, " "), origin)
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
}
origin checker refactor (#7889)
2017-11-22 16:58:03 -05:00
func OriginChecker(allowedOrigins string) func(*http.Request) bool {
return func(r *http.Request) bool {
return CheckOrigin(r, allowedOrigins)
Move WebSocket API to it's own package and add websocket v4 endpoint (#5881)
2017-03-28 04:58:19 -04:00
}
}
Implement v4 endpoints for OAuth (#6040) * Implement POST /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps/{app_id} and /oauth/apps/{app_id}/info endpoints for APIv4 * Refactor API version independent oauth endpoints * Implement DELETE /oauth/apps/{app_id} endpoint for APIv4 * Implement /oauth/apps/{app_id}/regen_secret endpoint for APIv4 * Implement GET /user/{user_id}/oauth/apps/authorized endpoint for APIv4 * Implement POST /oauth/deauthorize endpoint
2017-04-20 09:55:02 -04:00
MM-53147 Support for embedding Mattermost in an MSTeams iframe (#23776) * add teams to allowed frame-ancestors * fix unit tests * set SameSite attribute for session cookie * further restrict ancestors * skip landing page if in iframe * Only set cookie SameSite=None if embedded in iframe * don't set MMEMBED cookie on landing page (check only) * fully parse MMEMBED cookie * add comment * more comments --------- Co-authored-by: Mattermost Build <build@mattermost.com>
2023-07-12 17:55:13 -04:00
// CheckEmbeddedCookie returns true if the MMEMBED cookie is set to 1.
// MMEMBED is set via any plugin that facilitates Mattermost embedded in an iframe (e.g. mattermost-plugin-msteams-sync).
func CheckEmbeddedCookie(r *http.Request) bool {
cookie, err := r.Cookie("MMEMBED")
if err != nil {
return false
}
return cookie.Value == "1"
}
MM-10370: serve subpath (#8968) * factor out GetSubpathFromConfig * mv web/subpath.go to utils/subpath.go * serve up web, api and ws on /subpath if configured * pass config to utils.RenderWeb(App)?Error This allows the methods to extract the configured subpath and redirect to the appropriate `/subpath/error` handler. * ensure GetSubpathFromConfig returns trailing slashes deterministically * fix error 404 handling * redirect /subpath to /subpath/ This is necessary for the static handler to match, otherwise none of the registered routes find anything. This also makes it no longer necessary to add trailing slashes in the root router.
2018-06-21 14:31:51 -04:00
func RenderWebAppError(config *model.Config, w http.ResponseWriter, r *http.Request, err *model.AppError, s crypto.Signer) {
RenderWebError(config, w, r, err.StatusCode, url.Values{
ABC-132: sign error page parameters (#8197) * sign error page parameters * add comments
2018-02-07 12:05:46 -05:00
"message": []string{err.Message},
}, s)
}
MM-10370: serve subpath (#8968) * factor out GetSubpathFromConfig * mv web/subpath.go to utils/subpath.go * serve up web, api and ws on /subpath if configured * pass config to utils.RenderWeb(App)?Error This allows the methods to extract the configured subpath and redirect to the appropriate `/subpath/error` handler. * ensure GetSubpathFromConfig returns trailing slashes deterministically * fix error 404 handling * redirect /subpath to /subpath/ This is necessary for the static handler to match, otherwise none of the registered routes find anything. This also makes it no longer necessary to add trailing slashes in the root router.
2018-06-21 14:31:51 -04:00
func RenderWebError(config *model.Config, w http.ResponseWriter, r *http.Request, status int, params url.Values, s crypto.Signer) {
ABC-132: sign error page parameters (#8197) * sign error page parameters * add comments
2018-02-07 12:05:46 -05:00
queryString := params.Encode()
MM-10370: serve subpath (#8968) * factor out GetSubpathFromConfig * mv web/subpath.go to utils/subpath.go * serve up web, api and ws on /subpath if configured * pass config to utils.RenderWeb(App)?Error This allows the methods to extract the configured subpath and redirect to the appropriate `/subpath/error` handler. * ensure GetSubpathFromConfig returns trailing slashes deterministically * fix error 404 handling * redirect /subpath to /subpath/ This is necessary for the static handler to match, otherwise none of the registered routes find anything. This also makes it no longer necessary to add trailing slashes in the root router.
2018-06-21 14:31:51 -04:00
subpath, _ := GetSubpathFromConfig(config)
ABC-132: sign error page parameters (#8197) * sign error page parameters * add comments
2018-02-07 12:05:46 -05:00
h := crypto.SHA256
sum := h.New()
MM-10370: serve subpath (#8968) * factor out GetSubpathFromConfig * mv web/subpath.go to utils/subpath.go * serve up web, api and ws on /subpath if configured * pass config to utils.RenderWeb(App)?Error This allows the methods to extract the configured subpath and redirect to the appropriate `/subpath/error` handler. * ensure GetSubpathFromConfig returns trailing slashes deterministically * fix error 404 handling * redirect /subpath to /subpath/ This is necessary for the static handler to match, otherwise none of the registered routes find anything. This also makes it no longer necessary to add trailing slashes in the root router.
2018-06-21 14:31:51 -04:00
sum.Write([]byte(path.Join(subpath, "error") + "?" + queryString))
ABC-132: sign error page parameters (#8197) * sign error page parameters * add comments
2018-02-07 12:05:46 -05:00
signature, err := s.Sign(rand.Reader, sum.Sum(nil), h)
if err != nil {
http.Error(w, "", http.StatusInternalServerError)
return
Implement v4 endpoints for OAuth (#6040) * Implement POST /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps/{app_id} and /oauth/apps/{app_id}/info endpoints for APIv4 * Refactor API version independent oauth endpoints * Implement DELETE /oauth/apps/{app_id} endpoint for APIv4 * Implement /oauth/apps/{app_id}/regen_secret endpoint for APIv4 * Implement GET /user/{user_id}/oauth/apps/authorized endpoint for APIv4 * Implement POST /oauth/deauthorize endpoint
2017-04-20 09:55:02 -04:00
}
MM-10370: serve subpath (#8968) * factor out GetSubpathFromConfig * mv web/subpath.go to utils/subpath.go * serve up web, api and ws on /subpath if configured * pass config to utils.RenderWeb(App)?Error This allows the methods to extract the configured subpath and redirect to the appropriate `/subpath/error` handler. * ensure GetSubpathFromConfig returns trailing slashes deterministically * fix error 404 handling * redirect /subpath to /subpath/ This is necessary for the static handler to match, otherwise none of the registered routes find anything. This also makes it no longer necessary to add trailing slashes in the root router.
2018-06-21 14:31:51 -04:00
destination := path.Join(subpath, "error") + "?" + queryString + "&s=" + base64.URLEncoding.EncodeToString(signature)
Implement v4 endpoints for OAuth (#6040) * Implement POST /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps/{app_id} and /oauth/apps/{app_id}/info endpoints for APIv4 * Refactor API version independent oauth endpoints * Implement DELETE /oauth/apps/{app_id} endpoint for APIv4 * Implement /oauth/apps/{app_id}/regen_secret endpoint for APIv4 * Implement GET /user/{user_id}/oauth/apps/authorized endpoint for APIv4 * Implement POST /oauth/deauthorize endpoint
2017-04-20 09:55:02 -04:00
ABC-153: don't use http redirects with 4xx/5xx status codes (#8178) * don't use http redirects with 4xx/5xx status codes * minor html syntax fix
2018-02-02 08:29:11 -05:00
if status >= 300 && status < 400 {
http.Redirect(w, r, destination, status)
return
}
Add content type to API error response (#8460)
2018-03-14 18:09:04 -04:00
w.Header().Set("Content-Type", "text/html")
ABC-153: don't use http redirects with 4xx/5xx status codes (#8178) * don't use http redirects with 4xx/5xx status codes * minor html syntax fix
2018-02-02 08:29:11 -05:00
w.WriteHeader(status)
fmt.Fprintln(w, `<!DOCTYPE html><html><head></head>`)
fmt.Fprintln(w, `<body onload="window.location = '`+template.HTMLEscapeString(template.JSEscapeString(destination))+`'">`)
fmt.Fprintln(w, `<noscript><meta http-equiv="refresh" content="0; url=`+template.HTMLEscapeString(destination)+`"></noscript>`)
User friendly error messages during OAUTH and SAML flows (#16795) * Renders error messages in webapp * Added unit test Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-02-21 01:58:04 -05:00
fmt.Fprintln(w, `<!-- web error message -->`)
ABC-153: don't use http redirects with 4xx/5xx status codes (#8178) * don't use http redirects with 4xx/5xx status codes * minor html syntax fix
2018-02-02 08:29:11 -05:00
fmt.Fprintln(w, `<a href="`+template.HTMLEscapeString(destination)+`" style="color: #c0c0c0;">...</a>`)
fmt.Fprintln(w, `</body></html>`)
Implement v4 endpoints for OAuth (#6040) * Implement POST /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps endpoint for APIv4 * Implement GET /oauth/apps/{app_id} and /oauth/apps/{app_id}/info endpoints for APIv4 * Refactor API version independent oauth endpoints * Implement DELETE /oauth/apps/{app_id} endpoint for APIv4 * Implement /oauth/apps/{app_id}/regen_secret endpoint for APIv4 * Implement GET /user/{user_id}/oauth/apps/authorized endpoint for APIv4 * Implement POST /oauth/deauthorize endpoint
2017-04-20 09:55:02 -04:00
}
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
[Partial Fix - #16623]: Fix initialism errors in codebase. (#16877) * Update files in /app * Update files in /plugin * Update files in /store * Update files in /utils * Update files in /web * Update store.go * Update command_response.go * check-mocks and check-store-layer checks * Fix build errors * Revert "Fix build errors" This reverts commit 4ee38c3d0bf7bd7d8386f46f0985a0d03245a1d4. * Update .golangci.yml * make i18n-extract and make i18n-check * Commit suggestions * check-mocks and check-store-layers * Update en.json * Update product_notices.go * Update main.go * Fix translations * Regenerate mocks Co-authored-by: Mattermod <mattermod@users.noreply.github.com> Co-authored-by: Claudio Costa <cstcld91@gmail.com>
2021-02-18 09:36:56 -05:00
func RenderMobileAuthComplete(w http.ResponseWriter, redirectURL string) {
Removes JS redirection (#17591) * Removes JS redirection * Removed bootstrap and fontaweseom dependencies and added svgs and stylesheet Co-authored-by: anurag shivarathri <anuragindianbraves@gmail.com> Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-05-12 10:56:15 -04:00
var link = template.HTMLEscapeString(redirectURL)
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
RenderMobileMessage(w, `
Removes JS redirection (#17591) * Removes JS redirection * Removed bootstrap and fontaweseom dependencies and added svgs and stylesheet Co-authored-by: anurag shivarathri <anuragindianbraves@gmail.com> Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-05-12 10:56:15 -04:00
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 512 512" style="width: 64px; height: 64px; fill: #3c763d">
<!-- Font Awesome Free 5.15.3 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) -->
<path stroke="green" d="M504 256c0 136.967-111.033 248-248 248S8 392.967 8 256 119.033 8 256 8s248 111.033 248 248zM227.314 387.314l184-184c6.248-6.248 6.248-16.379 0-22.627l-22.627-22.627c-6.248-6.249-16.379-6.249-22.628 0L216 308.118l-70.059-70.059c-6.248-6.248-16.379-6.248-22.628 0l-22.627 22.627c-6.248 6.248-6.248 16.379 0 22.627l104 104c6.249 6.249 16.379 6.249 22.628.001z"/>
</svg>
Extracting i18n functionality to i18n core library (#16914) * extracting i18n functionality to i18n core library * Removing utils.T * Adding documentation and changing one function name for better explanation * Changing other missing utils.T * Adding license string * Renaming corelibs to pkg * Renaming corelibs to pkg (moving directory) * Renaming from pkg to shared * Fixing bodyPage.Html casing * Fixing merges * Fixing merge problem * Fixing tests
2021-02-26 02:12:49 -05:00
<h2> `+i18n.T("api.oauth.auth_complete")+` </h2>
<p id="redirecting-message"> `+i18n.T("api.oauth.redirecting_back")+` </p>
<p id="close-tab-message" style="display: none"> `+i18n.T("api.oauth.close_browser")+` </p>
Removes JS redirection (#17591) * Removes JS redirection * Removed bootstrap and fontaweseom dependencies and added svgs and stylesheet Co-authored-by: anurag shivarathri <anuragindianbraves@gmail.com> Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-05-12 10:56:15 -04:00
<p> `+i18n.T("api.oauth.click_redirect", model.StringInterface{"Link": link})+` </p>
<meta http-equiv="refresh" content="2; url=`+link+`">
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
<script>
window.onload = function() {
setTimeout(function() {
document.getElementById('redirecting-message').style.display = 'none';
document.getElementById('close-tab-message').style.display = 'block';
}, 2000);
}
</script>
`)
}
func RenderMobileError(config *model.Config, w http.ResponseWriter, err *model.AppError, redirectURL string) {
[MM-42335] Fix in RenderMobileError (#21536) * tools updates * Revert "tools updates" This reverts commit 6293297b55803c5a263e200ebd80192899666ae9. * fix Co-authored-by: Benjamin Cooke <benjamincooke@Benjamins-MacBook-Pro.local> Co-authored-by: Benjamin Cooke <benjamincooke@Benjamins-MBP.ht.home> Co-authored-by: Benjamin Cooke <benjamincooke@Benjamins-MBP.fritz.box> Co-authored-by: Benjamin Cooke <benjamincooke@Benjamins-MacBook-Pro.fritz.box>
2022-11-22 08:43:26 -05:00
var link = template.HTMLEscapeString(redirectURL)
Prevent JS Execution on Pre-login OAUTH screen (#17789) * Fixed invalid js execution * Added data & vbscript * Added javascript protocol in mixed case * Updated the test
2021-06-17 08:20:43 -04:00
u, redirectErr := url.Parse(redirectURL)
[MM-57356] Make use of go1.21 features (#26620)
2024-04-04 07:44:03 -04:00
if redirectErr != nil || !slices.Contains(config.NativeAppSettings.AppCustomURLSchemes, u.Scheme) {
Prevent JS Execution on Pre-login OAUTH screen (#17789) * Fixed invalid js execution * Added data & vbscript * Added javascript protocol in mixed case * Updated the test
2021-06-17 08:20:43 -04:00
link = *config.ServiceSettings.SiteURL
}
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
RenderMobileMessage(w, `
Removes JS redirection (#17591) * Removes JS redirection * Removed bootstrap and fontaweseom dependencies and added svgs and stylesheet Co-authored-by: anurag shivarathri <anuragindianbraves@gmail.com> Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-05-12 10:56:15 -04:00
<svg xmlns="http://www.w3.org/2000/svg" viewBox="0 0 576 512" style="width: 64px; height: 64px; fill: #ccc">
<!-- Font Awesome Free 5.15.3 by @fontawesome - https://fontawesome.com License - https://fontawesome.com/license/free (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License) -->
<path d="M569.517 440.013C587.975 472.007 564.806 512 527.94 512H48.054c-36.937 0-59.999-40.055-41.577-71.987L246.423 23.985c18.467-32.009 64.72-31.951 83.154 0l239.94 416.028zM288 354c-25.405 0-46 20.595-46 46s20.595 46 46 46 46-20.595 46-46-20.595-46-46-46zm-43.673-165.346l7.418 136c.347 6.364 5.609 11.346 11.982 11.346h48.546c6.373 0 11.635-4.982 11.982-11.346l7.418-136c.375-6.874-5.098-12.654-11.982-12.654h-63.383c-6.884 0-12.356 5.78-11.981 12.654z"/>
</svg>
Extracting i18n functionality to i18n core library (#16914) * extracting i18n functionality to i18n core library * Removing utils.T * Adding documentation and changing one function name for better explanation * Changing other missing utils.T * Adding license string * Renaming corelibs to pkg * Renaming corelibs to pkg (moving directory) * Renaming from pkg to shared * Fixing bodyPage.Html casing * Fixing merges * Fixing merge problem * Fixing tests
2021-02-26 02:12:49 -05:00
<h2> `+i18n.T("error")+` </h2>
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
<p> `+err.Message+` </p>
Prevent JS Execution on Pre-login OAUTH screen (#17789) * Fixed invalid js execution * Added data & vbscript * Added javascript protocol in mixed case * Updated the test
2021-06-17 08:20:43 -04:00
<a href="`+link+`">
Use any instead of interface{} (#20577) * replace interface{} with any
2022-07-05 02:46:50 -04:00
`+i18n.T("api.back_to_app", map[string]any{"SiteName": config.TeamSettings.SiteName})+`
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
</a>
`)
}
func RenderMobileMessage(w http.ResponseWriter, message string) {
w.Header().Set("Content-Type", "text/html")
fmt.Fprintln(w, `
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0, minimum-scale=1.0, user-scalable=yes, viewport-fit=cover">
<style>
Removes JS redirection (#17591) * Removes JS redirection * Removed bootstrap and fontaweseom dependencies and added svgs and stylesheet Co-authored-by: anurag shivarathri <anuragindianbraves@gmail.com> Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-05-12 10:56:15 -04:00
body {
color: #333;
background-color: #fff;
font-family: "Helvetica Neue",Helvetica,Arial,sans-serif;
font-size: 14px;
line-height: 1.42857143;
}
a {
color: #337ab7;
text-decoration: none;
}
a:focus, a:hover {
color: #23527c;
text-decoration: underline;
}
h2 {
font-size: 30px;
margin: 20px 0 10px 0;
font-weight: 500;
line-height: 1.1
}
p {
margin: 0 0 10px;
}
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
.message-container {
color: #555;
display: table-cell;
padding: 5em 0;
text-align: left;
vertical-align: top;
}
</style>
</head>
<body>
User friendly error messages during OAUTH and SAML flows (#16795) * Renders error messages in webapp * Added unit test Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-02-21 01:58:04 -05:00
<!-- mobile app message -->
Removes JS redirection (#17591) * Removes JS redirection * Removed bootstrap and fontaweseom dependencies and added svgs and stylesheet Co-authored-by: anurag shivarathri <anuragindianbraves@gmail.com> Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-05-12 10:56:15 -04:00
<div class="message-container">
`+message+`
After OAUTH, SAML auth completion, Redirect to App custom url scheme with token data as query params. (#16447) * Added redirection after Auth complete * Fixed gofmt * Handling error while parsing the url, added util function to check for a valid mobile redirect url * Added check for custom scheme url validation * Added test to verify custom schele url * Added mobile message screens * Translation strings for mobile screens * Added mobile specific screens for success and error * Added error logs and changed variable name for consistency with oauth.go * i18n fix * Reusing assigned variable instead of map * Added AppCustomUrlScheme property * Code refactor and removed dependency from cookies to build the final url * Changed util function * Updated util test * Fixed go lint * Code refactor and unsused code removed * Code refactor * simplified boolean checks * Added support of whitelist of appCustomURLSchemes * Changed i18 en * Fixed validating redirecturl for web Co-authored-by: Mattermod <mattermod@users.noreply.github.com>
2021-01-19 10:46:22 -05:00
</div>
</body>
</html>
`)
}
Reference in a new issue Copy permalink