[e455b7]: / Allura / allura / templates / oauth_applications.html  Maximize  Restore  History

Download this file

210 lines (195 with data), 8.3 kB 

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
{#-

       Licensed to the Apache Software Foundation (ASF) under one

       or more contributor license agreements.  See the NOTICE file

       distributed with this work for additional information

       regarding copyright ownership.  The ASF licenses this file

       to you under the Apache License, Version 2.0 (the

       "License"); you may not use this file except in compliance

       with the License.  You may obtain a copy of the License at



         http://www.apache.org/licenses/LICENSE-2.0



       Unless required by applicable law or agreed to in writing,

       software distributed under the License is distributed on an

       "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY

       KIND, either express or implied.  See the License for the

       specific language governing permissions and limitations

       under the License.

-#}

{% set hide_left_bar = True %}

{% extends "allura:templates/user_account_base.html" %}



{% block title %}{{c.user.username}} / Applications {% endblock %}



{% block header %}OAuth applications registered for {{c.user.username}}{% endblock %}



{% block extra_css %}

<style type="text/css">

    table {

        border: 1px solid #e5e5e5;

    }

    th {

        text-align: left;

        width: 10em;

        padding: 5px;

        border: 1px solid #e5e5e5;

    }

    tr.description p {

        padding-left: 0;

    }

    tr.description p:last-child {

        padding-bottom: 0;

    }

    tr.controls input[type="submit"] {

        margin-bottom: 0;

    }

</style>

{% endblock %}



{% block extra_js %}

<script type="text/javascript">

    $(function() {

        $('.deregister_consumer_token').submit(function(e) {

            var ok = confirm('Deregister application and revoke all its access tokens?')

            if(!ok) {

                e.preventDefault();

                return false;

            }

        });



        $('.revoke_access_tokens').submit(function(e) {

            var ok = confirm('Revoke all current access tokens?')

            if(!ok) {

                e.preventDefault();

                return false;

            }

        });



        $('.revoke_access_token').submit(function(e) {

            var ok = confirm('Revoke access?')

            if(!ok) {

                e.preventDefault();

                return false;

            }

        });

    })

</script>

{% endblock %}



{% block content %}

    {{ super() }}

    <h5>For direct API use, <a href="#oauth_applications">create an application client</a> and generate a bearer token</h5>

    <br/>

    <h2>Authorized Applications</h2>

    <p>

        These are applications you have authorized to act on your behalf.

        They potentially have full access to your account, so if you are

        no longer using an application listed here, you should revoke its

        access.

    </p>

    {% for access_token in access_tokens %}{# both oauth1 & oauth2 #}

    <table class="authorized_app">

        <tr class="name">

            <th>Name:</th><td>{{access_token.app.name}}</td>

        </tr>

        <tr class="description">

            <th>Description:</th><td>{{access_token.app.description_html }}</td>

        </tr>

        {% if access_token.is_bearer %}

        <tr class="bearer_token">

            <th>Bearer Token:</th><td>{{access_token.api_key}}</td>

        </tr>

        {% endif %}

         <tr>

            <th>Last Access:</th><td>{% if access_token.last_access %} {{ access_token.last_access.strftime('%a %b %d, %Y %I:%M %p UTC')  }} {%  endif %}</td>

        </tr>

        <tr class="controls">

            <td colspan="2">

                <form method="POST" action="revoke_access_token{{ '' if access_token.type == 1 else access_token.type}}" class="revoke_access_token">

                    <input type="hidden" name="_id" value="{{access_token._id}}"/>

                    <input type="submit" value="Revoke"/>

                    {{lib.csrf_token()}}

                </form>

            </td>

        </tr>

    </table>

    {% else %}

        No applications have been authorized to access your account.

    {% endfor %}



    {% if oauth2_client_apps %}

    <h2>My OAuth2 Applications</h2>

    <p>

    These are the client applications you have registered.  They can request authorization

    for a user using the Client ID and Client Secret via OAuth negotiation.

    See the <a href="{{ config['doc.url.api'] }}">API documentation</a> for more information.

    </p>

    {% for client in oauth2_client_apps %}

    <table>

        <tr><th>Type:</th><td>OAuth2</td></tr>

        <tr><th>Name:</th><td>{{client.name}}</td></tr>

        <tr class="description"><th>Description:</th><td>{{client.description_html }}</td></tr>

        <tr><th>Client ID:</th><td>{{client.client_id}}</td></tr>

        <tr><th>Client Secret:</th><td>{{client.client_secret}}</td></tr>

        <tr><th>Redirect URL:</th><td>

            {% for uri in client.redirect_uris %}

                {{ uri }}<br/>

            {% else %}

                None!

            {% endfor %}

        </td></tr>

        <tr class="controls">

            <td colspan="2">

                <form method="POST" action="deregister2" class="deregister_consumer_token">

                    <input type="hidden" name="client_id" value="{{client.client_id}}"/>

                    <input type="submit" value="Delete App"/>

                    {{lib.csrf_token()}}

                </form>

                <form method="POST" action="revoke_all_access_tokens2" class="revoke_access_tokens">

                    <input type="hidden" name="client_id" value="{{client.client_id}}"/>

                    <input type="submit" value="Delete all access tokens"/>

                    {{lib.csrf_token()}}

                </form>

                <form method="POST" action="generate_bearer_token" class="generate_bearer_token">

                    <input type="hidden" name="client_id" value="{{client.client_id}}"/>

                    <input type="submit" value="Generate Bearer Token"/>

                    {{lib.csrf_token()}}

                </form>



            </td>

        </tr>

    </table>

    {% endfor %}

    {% endif %}



    {% if consumer_tokens %}

    <h2>My OAuth1 Applications</h2>

    <p>

    These are the applications you have registered.  They can request authorization

    for a user using the Consumer Key and Consumer Secret via OAuth negotiation.

    Alternatively, you can generate a bearer token to give your application access

    to your account without having to perform the OAuth negotiation.  Note, however,

    that you must be careful with bearer tokens, since anyone who has the token can

    access your account as that application.

    </p>

    {% for consumer_token in consumer_tokens %}

    <table class="registered_app">

        <tr><th>Type:</th><td>OAuth1</td></tr>

        <tr><th>Name:</th><td>{{consumer_token.name}}</td></tr>

        <tr class="description"><th>Description:</th><td>{{consumer_token.description_html }}</td></tr>

        <tr class="consumer_key"><th>Consumer Key:</th><td>{{consumer_token.api_key}}</td></tr>

        <tr class="consumer_secret"><th>Consumer Secret:</th><td>{{consumer_token.secret_key}}</td></tr>

        <tr class="controls">

            <td colspan="2">

                <form method="POST" action="deregister" class="deregister_consumer_token">

                    <input type="hidden" name="_id" value="{{consumer_token._id}}"/>

                    <input type="submit" value="Delete App"/>

                    {{lib.csrf_token()}}

                </form>

                <form method="POST" action="generate_access_token" class="generate_access_token">

                    <input type="hidden" name="_id" value="{{consumer_token._id}}"/>

                    <input type="submit" value="Generate Bearer Token"/>

                    {{lib.csrf_token()}}

                </form>

            </td>

        </tr>

    </table>

    {% endfor %}

    {% endif %}



    {% if h.asbool(config.get('auth.oauth2.enabled', False)) %}

    <div id="oauth_applications" class="grid-24" style="margin-left:0">

    <h2>Register New OAuth2 Application</h2>

    {{ c.form2.display() }}

    </div>

    {% endif %}



    <h2>Register New OAuth1 Application</h2>

    {{ c.form.display() }}

{% endblock %}