Home Explore Help
Sign In
mirrors
/
wekan
mirror of https://github.com/wekan/wekan.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: f26d582018
Branches Tags
wekan
/
client
/
00-startup.js

00-startup.js 2.1 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364 
  1. // PWA
    2. 

  2. if ('serviceWorker' in navigator) {
    3. 

  3.   window.addEventListener('load', function() {
    4. 

  4.     navigator.serviceWorker.register('/pwa-service-worker.js');
    5. 

  5.   });
    6. 

  6. }
    7. 

  7. 

  8. // Import board converter for on-demand conversion
    9. 

  9. import '/client/lib/boardConverter';
    10. 

  10. import '/client/components/boardConversionProgress';
    11. 

  11. 

  12. // Import migration manager and progress UI
    13. 

  13. import '/client/lib/migrationManager';
    14. 

  14. import '/client/components/migrationProgress';
    15. 

  15. 

  16. // Import cron settings
    17. 

  17. import '/client/components/settings/cronSettings';
    18. 

  18. 

  19. // Mirror Meteor login token into a cookie for server-side file route auth
    20. 

  20. // This enables cookie-based auth for /cdn/storage/* without leaking ROOT_URL
    21. 

  21. // Token already lives in localStorage; cookie adds same-origin send-on-request semantics
    22. 

  22. Meteor.startup(() => {
    23. 

  23.   const COOKIE_NAME = 'meteor_login_token';
    24. 

  24.   const cookieAttrs = () => {
    25. 

  25.     const attrs = ['Path=/', 'SameSite=Lax'];
    26. 

  26.     try {
    27. 

  27.       if (window.location && window.location.protocol === 'https:') {
    28. 

  28.         attrs.push('Secure');
    29. 

  29.       }
    30. 

  30.     } catch (_) {}
    31. 

  31.     return attrs.join('; ');
    32. 

  32.   };
    33. 

  33. 

  34.   const setCookie = (name, value) => {
    35. 

  35.     if (!value) return;
    36. 

  36.     document.cookie = `${encodeURIComponent(name)}=${encodeURIComponent(value)}; ${cookieAttrs()}`;
    37. 

  37.   };
    38. 

  38.   const clearCookie = (name) => {
    39. 

  39.     document.cookie = `${encodeURIComponent(name)}=; Expires=Thu, 01 Jan 1970 00:00:00 GMT; ${cookieAttrs()}`;
    40. 

  40.   };
    41. 

  41. 

  42.   const syncCookie = () => {
    43. 

  43.     try {
    44. 

  44.       const token = Accounts && typeof Accounts._storedLoginToken === 'function' ? Accounts._storedLoginToken() : null;
    45. 

  45.       if (token) setCookie(COOKIE_NAME, token); else clearCookie(COOKIE_NAME);
    46. 

  46.     } catch (e) {
    47. 

  47.       // ignore
    48. 

  48.     }
    49. 

  49.   };
    50. 

  50. 

  51.   // Initial sync on startup
    52. 

  52.   syncCookie();
    53. 

  53. 

  54.   // Keep cookie in sync on login/logout
    55. 

  55.   if (Accounts && typeof Accounts.onLogin === 'function') Accounts.onLogin(syncCookie);
    56. 

  56.   if (Accounts && typeof Accounts.onLogout === 'function') Accounts.onLogout(syncCookie);
    57. 

  57. 

  58.   // Sync across tabs/windows when localStorage changes
    59. 

  59.   window.addEventListener('storage', (ev) => {
    60. 

  60.     if (ev && typeof ev.key === 'string' && ev.key.indexOf('Meteor.loginToken') !== -1) {
    61. 

  61.       syncCookie();
    62. 

  62.     }
    63. 

  63.   });
    64. 

  64. });
    65.