mirrors/element-web
1
0
Fork 0
mirror of https://github.com/element-hq/element-web.git synced 2024-12-16 21:01:46 +03:00
Code Issues Projects Releases Packages Wiki Activity
element-web/src/components/structures/auth/ForgotPassword.js

404 lines
14 KiB
JavaScript
Raw Normal View History

Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
/*
Copyright 2015, 2016 OpenMarket Ltd
Group fields into rows on reset password
2019-02-06 18:10:16 +03:00
Copyright 2017, 2018, 2019 New Vector Ltd
Reveal custom IS field only when required This hides the identity server at first from the custom server auth flows. For the flows that may need an IS if the HS requires it (registration, password reset), we then check with the HS before proceeding further and reveal the IS field if it is in fact needed. Fixes https://github.com/vector-im/riot-web/issues/10553
2019-08-23 20:43:55 +03:00
Copyright 2019 The Matrix.org Foundation C.I.C.
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
fix password reset
2017-10-27 03:23:50 +03:00
import React from 'react';
Migrate away from React.createClass for auth and views/auth. React 16 :D Signed-off-by: Michael Telatynski <7t3chguy@gmail.com>
2019-08-30 12:27:51 +03:00
import createReactClass from 'create-react-class';
Remove use of deprecated React.PropTypes Replace all uses of React.PropTypes with PropTypes and importing PropTypes from 'prop-types'.
2017-12-26 04:03:18 +03:00
import PropTypes from 'prop-types';
Bulk change counterpart imports to use languageHandler wrapper func
2017-05-25 13:39:08 +03:00
import { _t } from '../../../languageHandler';
Convert many imports to handle ES6 exports Reliant upon https://github.com/matrix-org/matrix-react-sdk/pull/3761
2019-12-20 04:19:56 +03:00
import * as sdk from '../../../index';
fix password reset
2017-10-27 03:23:50 +03:00
import Modal from "../../../Modal";
Fix broken ForgotPassword component
2018-04-06 12:27:03 +03:00
import SdkConfig from "../../../SdkConfig";
fix password reset
2017-10-27 03:23:50 +03:00
import PasswordReset from "../../../PasswordReset";
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
import AutoDiscoveryUtils, {ValidatedServerConfig} from "../../../utils/AutoDiscoveryUtils";
Don't handle identity server failure as fatal, and use the right message Fixes https://github.com/vector-im/riot-web/issues/10002
2019-06-11 04:28:32 +03:00
import classNames from 'classnames';
Implementation of new potential skinning mechanism With a switch to Only One Webpack™ we need a way to help developers generate the component index without a concurrent watch task. The best way to do this is to have developers import their components, but how do they do that when we support skins? The answer in this commit is to change skinning. Skinning now expects to receive your list of overrides instead of the react-sdk+branded components. For Riot this means we send over *only* the Vector components and not Vector+react-sdk. Components can then be annotated with the `replaceComponent` decorator to have them be skinnable. The decorator must take a string with the dot path of the component because we can't reliably calculate it ourselves, sadly. The decorator does a call to `getComponent` which is where the important part of the branded components not including the react-sdk is important: if the branded app includes the react-sdk then the decorator gets executed before the skin has finished loading, leading to all kinds of fun errors. This is also why the skinner lazily loads the react-sdk components to avoid importing them too early, breaking the app. The decorator will end up receiving null for a component because of the getComponent loop mentioned: the require() call is still in progress when the decorator is called, therefore we can't error out. All usages of getComponent() within the app are safe to not need such an error (the return won't be null, and developers shouldn't use getComponent() after this commit anyways). The AuthPage, being a prominent component, has been converted to demonstrate this working. Changes to riot-web are required to have this work. The reskindex script has also been altered to reflect these skinning changes - it no longer should set the react-sdk as a parent. The eventual end goal is to get rid of `getComponent()` entirely as it'll be easily replaced by imports.
2019-12-13 05:31:52 +03:00
import AuthPage from "../../views/auth/AuthPage";
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
Convert forgot password to phases like the other flows
2019-02-06 19:30:53 +03:00
// Phases
// Show controls to configure server details
const PHASE_SERVER_DETAILS = 0;
// Show the forgot password inputs
const PHASE_FORGOT = 1;
// Email is in the process of being sent
const PHASE_SENDING_EMAIL = 2;
// Email has been sent
const PHASE_EMAIL_SENT = 3;
// User has clicked the link in email and completed reset
const PHASE_DONE = 4;
Convert CommonJS exports to ES6-compatible exports We use `export default` begrudgingly here. Ideally we'd use just `export`, though this entire SDK expects things to be exported as a default. Instead of breaking everything, we'll sacrifice our export pattern for a smaller diff - a later commit can always do the default export -> regular export conversion.
2019-12-20 03:45:24 +03:00
export default createReactClass({
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
displayName: 'ForgotPassword',
propTypes: {
Make password resets use server config objects Like registration, the idea is that the object is passed around between components so they can take details they need.
2019-05-03 08:05:59 +03:00
serverConfig: PropTypes.instanceOf(ValidatedServerConfig).isRequired,
onServerConfigChange: PropTypes.func.isRequired,
Remove use of deprecated React.PropTypes Replace all uses of React.PropTypes with PropTypes and importing PropTypes from 'prop-types'.
2017-12-26 04:03:18 +03:00
onLoginClick: PropTypes.func,
onComplete: PropTypes.func.isRequired,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
},
getInitialState: function() {
return {
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
phase: PHASE_FORGOT,
Avoid controlled component error with empty strings
2019-02-06 21:26:44 +03:00
email: "",
password: "",
password2: "",
Introduce a default_server_name for aesthetics and rework .well-known Fixes https://github.com/vector-im/riot-web/issues/7724 The `default_server_name` from the config gets displayed in the "Login with my [server] matrix ID" dropdown when the default server is being used. At this point, we also discourage the use of the `default_hs_url` and `default_is_url` options because we do an implicit .well-known lookup to configure the client based on the `default_server_name`. If the URLs are still present in the config, we'll honour them and won't do a .well-known lookup when the URLs are mixed with the new server_name option. Users will be warned if the `default_server_name` does not match the `default_hs_url` if both are supplied. Users are additionally prevented from logging in, registering, and resetting their password if the implicit .well-known check fails - this is to prevent people from doing actions against the wrong homeserver. This relies on https://github.com/matrix-org/matrix-js-sdk/pull/799 as we now do auto discovery in two places. Instead of bringing the .well-known out to its own utility class in the react-sdk, we might as well drag it out to the js-sdk.
2018-12-05 09:34:57 +03:00
errorText: null,
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
// We perform liveliness checks later, but for now suppress the errors.
// We also track the server dead errors independently of the regular errors so
// that we can render it differently, and override any other error the user may
// be seeing.
serverIsAlive: true,
Don't handle identity server failure as fatal, and use the right message Fixes https://github.com/vector-im/riot-web/issues/10002
2019-06-11 04:28:32 +03:00
serverErrorIsFatal: false,
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
serverDeadError: "",
Allow password reset without an ID Server If the server advertises that it supports doing so Requires matrix-org/matrix-js-sdk#1018 Requires matrix-org/matrix-js-sdk#1019 Fixes vector-im/riot-web#10572
2019-08-16 20:11:24 +03:00
serverRequiresIdServer: null,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
};
},
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
componentWillMount: function() {
Allow password reset without an ID Server If the server advertises that it supports doing so Requires matrix-org/matrix-js-sdk#1018 Requires matrix-org/matrix-js-sdk#1019 Fixes vector-im/riot-web#10572
2019-08-16 20:11:24 +03:00
this.reset = null;
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
this._checkServerLiveliness(this.props.serverConfig);
},
Allow the login form to be submitted, and clarify other things
2019-06-06 21:18:41 +03:00
componentWillReceiveProps: function(newProps) {
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
if (newProps.serverConfig.hsUrl === this.props.serverConfig.hsUrl &&
newProps.serverConfig.isUrl === this.props.serverConfig.isUrl) return;
// Do a liveliness check on the new URLs
this._checkServerLiveliness(newProps.serverConfig);
},
_checkServerLiveliness: async function(serverConfig) {
try {
await AutoDiscoveryUtils.validateServerConfigWithStaticUrls(
serverConfig.hsUrl,
serverConfig.isUrl,
);
Allow password reset without an ID Server If the server advertises that it supports doing so Requires matrix-org/matrix-js-sdk#1018 Requires matrix-org/matrix-js-sdk#1019 Fixes vector-im/riot-web#10572
2019-08-16 20:11:24 +03:00
const pwReset = new PasswordReset(serverConfig.hsUrl, serverConfig.isUrl);
const serverRequiresIdServer = await pwReset.doesServerRequireIdServerParam();
this.setState({
serverIsAlive: true,
serverRequiresIdServer,
});
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
} catch (e) {
Don't handle identity server failure as fatal, and use the right message Fixes https://github.com/vector-im/riot-web/issues/10002
2019-06-11 04:28:32 +03:00
this.setState(AutoDiscoveryUtils.authComponentStateForError(e, "forgot_password"));
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
}
},
Make password resets use server config objects Like registration, the idea is that the object is passed around between components so they can take details they need.
2019-05-03 08:05:59 +03:00
submitPasswordReset: function(email, password) {
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
this.setState({
Convert forgot password to phases like the other flows
2019-02-06 19:30:53 +03:00
phase: PHASE_SENDING_EMAIL,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
});
Make password resets use server config objects Like registration, the idea is that the object is passed around between components so they can take details they need.
2019-05-03 08:05:59 +03:00
this.reset = new PasswordReset(this.props.serverConfig.hsUrl, this.props.serverConfig.isUrl);
Rip out the remainder of Bluebird
2019-11-18 13:03:05 +03:00
this.reset.resetPassword(email, password).then(() => {
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
this.setState({
Convert forgot password to phases like the other flows
2019-02-06 19:30:53 +03:00
phase: PHASE_EMAIL_SENT,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
});
}, (err) => {
Squash merge https://github.com/matrix-org/matrix-react-sdk/pull/801
2017-05-23 17:16:31 +03:00
this.showErrorDialog(_t('Failed to send email') + ": " + err.message);
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
this.setState({
Go to forgot phase on error
2019-02-06 21:32:28 +03:00
phase: PHASE_FORGOT,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
});
Fix a bunch of linting errors eslint --fix and a few manual ones
2017-01-20 17:22:27 +03:00
});
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
},
Remove id_server param for password reset For HSes that no longer need it, remove the id_server param from password reset. Part of https://github.com/vector-im/riot-web/issues/10941
2019-09-24 16:47:08 +03:00
onVerify: async function(ev) {
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
ev.preventDefault();
if (!this.reset) {
console.error("onVerify called before submitPasswordReset!");
return;
}
Remove id_server param for password reset For HSes that no longer need it, remove the id_server param from password reset. Part of https://github.com/vector-im/riot-web/issues/10941
2019-09-24 16:47:08 +03:00
try {
await this.reset.checkEmailLinkClicked();
Convert forgot password to phases like the other flows
2019-02-06 19:30:53 +03:00
this.setState({ phase: PHASE_DONE });
Remove id_server param for password reset For HSes that no longer need it, remove the id_server param from password reset. Part of https://github.com/vector-im/riot-web/issues/10941
2019-09-24 16:47:08 +03:00
} catch (err) {
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
this.showErrorDialog(err.message);
Remove id_server param for password reset For HSes that no longer need it, remove the id_server param from password reset. Part of https://github.com/vector-im/riot-web/issues/10941
2019-09-24 16:47:08 +03:00
}
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
},
Allow submit on forgot password page
2019-06-07 16:27:15 +03:00
onSubmitForm: async function(ev) {
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
ev.preventDefault();
Typo
2019-06-11 12:29:00 +03:00
// refresh the server errors, just in case the server came back online
Don't block submit if the server is dead But still check so we can clear any errors, maybe
2019-06-07 16:36:46 +03:00
await this._checkServerLiveliness(this.props.serverConfig);
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
if (!this.state.email) {
Squash merge https://github.com/matrix-org/matrix-react-sdk/pull/801
2017-05-23 17:16:31 +03:00
this.showErrorDialog(_t('The email address linked to your account must be entered.'));
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
} else if (!this.state.password || !this.state.password2) {
fix all missing translations picked up by check-i18n.pl
2017-05-27 20:20:35 +03:00
this.showErrorDialog(_t('A new password must be entered.'));
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
} else if (this.state.password !== this.state.password2) {
Squash merge https://github.com/matrix-org/matrix-react-sdk/pull/801
2017-05-23 17:16:31 +03:00
this.showErrorDialog(_t('New passwords must match each other.'));
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
} else {
const QuestionDialog = sdk.getComponent("dialogs.QuestionDialog");
un-i18n Modal Analytics Signed-off-by: Michael Telatynski <7t3chguy@gmail.com>
2017-07-27 19:19:18 +03:00
Modal.createTrackedDialog('Forgot Password Warning', '', QuestionDialog, {
Put back default strings on dialogs But make them work by calling _t in render rather than getDefaultProps(). Also sort out some 'Warning!' strings
2017-05-25 20:20:48 +03:00
title: _t('Warning!'),
warn users that changing/resetting password will nuke E2E keys
2017-01-25 00:36:55 +03:00
description:
<div>
Squash merge https://github.com/matrix-org/matrix-react-sdk/pull/801
2017-05-23 17:16:31 +03:00
{ _t(
Fix 'forgot password' warning to represent the reality of e2ee Fixes https://github.com/vector-im/riot-web/issues/6681
2019-03-14 00:24:05 +03:00
"Changing your password will reset any end-to-end encryption keys " +
Replace device with session in UI text This replaces "device" with "session" throughout user-visible text at the React layer. Variable names and comments are left as-is for now.
2020-01-29 18:48:25 +03:00
"on all of your sessions, making encrypted chat history unreadable. Set up " +
"Key Backup or export your room keys from another session before resetting your " +
Fix 'forgot password' warning to represent the reality of e2ee Fixes https://github.com/vector-im/riot-web/issues/6681
2019-03-14 00:24:05 +03:00
"password.",
fix all missing translations picked up by check-i18n.pl
2017-05-27 20:20:35 +03:00
) }
warn users that changing/resetting password will nuke E2E keys
2017-01-25 00:36:55 +03:00
</div>,
Squash merge https://github.com/matrix-org/matrix-react-sdk/pull/801
2017-05-23 17:16:31 +03:00
button: _t('Continue'),
warn users that changing/resetting password will nuke E2E keys
2017-01-25 00:36:55 +03:00
onFinished: (confirmed) => {
if (confirmed) {
Make password resets use server config objects Like registration, the idea is that the object is passed around between components so they can take details they need.
2019-05-03 08:05:59 +03:00
this.submitPasswordReset(this.state.email, this.state.password);
warn users that changing/resetting password will nuke E2E keys
2017-01-25 00:36:55 +03:00
}
},
});
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
}
},
onInputChanged: function(stateKey, ev) {
this.setState({
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
[stateKey]: ev.target.value,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
});
},
Refactor "Next" button into ServerConfig components TODO still remains about making ModularServerConfig extend ServerConfig instead of duplicating everything. See https://github.com/vector-im/riot-web/issues/9290
2019-05-14 01:30:34 +03:00
async onServerDetailsNextPhaseClick() {
Move server details to a separate phase of forgot password
2019-02-06 21:30:07 +03:00
this.setState({
phase: PHASE_FORGOT,
});
},
onEditServerDetailsClick(ev) {
ev.preventDefault();
ev.stopPropagation();
this.setState({
phase: PHASE_SERVER_DETAILS,
});
},
Fix browser navigation not working between /home, /login, /register, etc All of the anchors were pointed at `#` which, when clicked, would trigger a hash change in the browser. This change races the change made by the screen handling where the screen handling ends up losing. Because the hash is then tracked as empty rather than `#/login` (for example), the state machine considers future changes as no-ops and doesn't do anything with them. By using `preventDefault` and `stopPropagation` on the anchor click events, we prevent the browser from automatically going to an empty hash, which then means the screen handling isn't racing the browser, and the hash change state machine doesn't no-op. After applying that fix, going between pages worked great unless you were going from /login to /home. This is because the MatrixChat state machine was now out of sync (a `view` of `LOGIN` but a `page` of `HomePage` - an invalid state). All we have to do here is ensure the right view is used when navigating to the homepage. Fixes https://github.com/vector-im/riot-web/issues/4061 Note: the concerns in 4061 about logging out upon entering the view appear to have been solved. Navigating to the login page doesn't obliterate your session, at least in my testing.
2018-12-21 03:26:13 +03:00
onLoginClick: function(ev) {
ev.preventDefault();
ev.stopPropagation();
this.props.onLoginClick();
},
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
showErrorDialog: function(body, title) {
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
const ErrorDialog = sdk.getComponent("dialogs.ErrorDialog");
don't track two more potential risks Signed-off-by: Michael Telatynski <7t3chguy@gmail.com>
2017-08-10 17:21:01 +03:00
Modal.createTrackedDialog('Forgot Password Error', '', ErrorDialog, {
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
title: title,
Squash merge https://github.com/matrix-org/matrix-react-sdk/pull/801
2017-05-23 17:16:31 +03:00
description: body,
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
});
},
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
renderServerDetails() {
const ServerConfig = sdk.getComponent("auth.ServerConfig");
Move server details to a separate phase of forgot password
2019-02-06 21:30:07 +03:00
if (SdkConfig.get()['disable_custom_urls']) {
return null;
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
}
Refactor "Next" button into ServerConfig components TODO still remains about making ModularServerConfig extend ServerConfig instead of duplicating everything. See https://github.com/vector-im/riot-web/issues/9290
2019-05-14 01:30:34 +03:00
return <ServerConfig
serverConfig={this.props.serverConfig}
onServerConfigChange={this.props.onServerConfigChange}
delayTimeMs={0}
Reveal custom IS field only when required This hides the identity server at first from the custom server auth flows. For the flows that may need an IS if the HS requires it (registration, password reset), we then check with the HS before proceeding further and reveal the IS field if it is in fact needed. Fixes https://github.com/vector-im/riot-web/issues/10553
2019-08-23 20:43:55 +03:00
showIdentityServerIfRequiredByHomeserver={true}
Refactor "Next" button into ServerConfig components TODO still remains about making ModularServerConfig extend ServerConfig instead of duplicating everything. See https://github.com/vector-im/riot-web/issues/9290
2019-05-14 01:30:34 +03:00
onAfterSubmit={this.onServerDetailsNextPhaseClick}
submitText={_t("Next")}
submitClass="mx_Login_submit"
/>;
Move server details to a separate phase of forgot password
2019-02-06 21:30:07 +03:00
},
renderForgot() {
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
const Field = sdk.getComponent('elements.Field');
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
let errorText = null;
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
const err = this.state.errorText;
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
if (err) {
errorText = <div className="mx_Login_error">{ err }</div>;
}
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
let serverDeadSection;
if (!this.state.serverIsAlive) {
Don't handle identity server failure as fatal, and use the right message Fixes https://github.com/vector-im/riot-web/issues/10002
2019-06-11 04:28:32 +03:00
const classes = classNames({
"mx_Login_error": true,
"mx_Login_serverError": true,
"mx_Login_serverErrorNonFatal": !this.state.serverErrorIsFatal,
});
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
serverDeadSection = (
Don't handle identity server failure as fatal, and use the right message Fixes https://github.com/vector-im/riot-web/issues/10002
2019-06-11 04:28:32 +03:00
<div className={classes}>
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
{this.state.serverDeadError}
</div>
);
}
Make password resets use server config objects Like registration, the idea is that the object is passed around between components so they can take details they need.
2019-05-03 08:05:59 +03:00
let yourMatrixAccountText = _t('Your Matrix account on %(serverName)s', {
serverName: this.props.serverConfig.hsName,
});
if (this.props.serverConfig.hsNameIsDifferent) {
Render underlines and tooltips on custom server names in auth pages See https://github.com/vector-im/riot-web/issues/9290
2019-05-14 02:16:40 +03:00
const TextWithTooltip = sdk.getComponent("elements.TextWithTooltip");
Make password resets use server config objects Like registration, the idea is that the object is passed around between components so they can take details they need.
2019-05-03 08:05:59 +03:00
yourMatrixAccountText = _t('Your Matrix account on <underlinedServerName />', {}, {
Render underlines and tooltips on custom server names in auth pages See https://github.com/vector-im/riot-web/issues/9290
2019-05-14 02:16:40 +03:00
'underlinedServerName': () => {
return <TextWithTooltip
class="mx_Login_underlinedServerName"
Human de-linting
2019-05-15 22:55:50 +03:00
tooltip={this.props.serverConfig.hsUrl}
>
Render underlines and tooltips on custom server names in auth pages See https://github.com/vector-im/riot-web/issues/9290
2019-05-14 02:16:40 +03:00
{this.props.serverConfig.hsName}
</TextWithTooltip>;
},
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
});
}
Move server details to a separate phase of forgot password
2019-02-06 21:30:07 +03:00
// If custom URLs are allowed, wire up the server details edit link.
let editLink = null;
if (!SdkConfig.get()['disable_custom_urls']) {
editLink = <a className="mx_AuthBody_editServerDetails"
href="#" onClick={this.onEditServerDetailsClick}
>
{_t('Change')}
</a>;
}
Allow password reset without an ID Server If the server advertises that it supports doing so Requires matrix-org/matrix-js-sdk#1018 Requires matrix-org/matrix-js-sdk#1019 Fixes vector-im/riot-web#10572
2019-08-16 20:11:24 +03:00
if (!this.props.serverConfig.isUrl && this.state.serverRequiresIdServer) {
Disable password reset if no ID server
2019-08-07 15:30:52 +03:00
return <div>
<h3>
{yourMatrixAccountText}
{editLink}
</h3>
{_t(
"No identity server is configured: " +
"add one in server settings to reset your password.",
)}
<a className="mx_AuthBody_changeFlow" onClick={this.onLoginClick} href="#">
{_t('Sign in instead')}
</a>
</div>;
}
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
return <div>
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
{errorText}
{serverDeadSection}
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
<h3>
{yourMatrixAccountText}
Move server details to a separate phase of forgot password
2019-02-06 21:30:07 +03:00
{editLink}
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
</h3>
<form onSubmit={this.onSubmitForm}>
<div className="mx_AuthBody_fieldRow">
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
<Field
id="mx_ForgotPassword_email"
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
name="reset_email" // define a name so browser's password autofill gets less confused
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
type="text"
label={_t('Email')}
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
value={this.state.email}
onChange={this.onInputChanged.bind(this, "email")}
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
autoFocus
/>
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
</div>
<div className="mx_AuthBody_fieldRow">
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
<Field
id="mx_ForgotPassword_password"
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
name="reset_password"
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
type="password"
label={_t('Password')}
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
value={this.state.password}
onChange={this.onInputChanged.bind(this, "password")}
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
/>
<Field
id="mx_ForgotPassword_passwordConfirm"
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
name="reset_password_confirm"
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
type="password"
label={_t('Confirm')}
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
value={this.state.password2}
onChange={this.onInputChanged.bind(this, "password2")}
Convert forgot password to Field component This converts all fields in the forgot password form to use the Field component.
2019-03-05 18:39:51 +03:00
/>
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
</div>
<span>{_t(
'A verification email will be sent to your inbox to confirm ' +
'setting your new password.',
)}</span>
Fail more softly on homeserver liveliness errors This performs liveliness checks on the auth pages to try and show a friendlier error. Earlier checks in the app startup are expected to not block the app from loading on such failures. See https://github.com/vector-im/riot-web/issues/9828
2019-06-05 08:41:59 +03:00
<input
className="mx_Login_submit"
type="submit"
value={_t('Send Reset Email')}
/>
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
</form>
<a className="mx_AuthBody_changeFlow" onClick={this.onLoginClick} href="#">
{_t('Sign in instead')}
</a>
</div>;
},
renderSendingEmail() {
const Spinner = sdk.getComponent("elements.Spinner");
return <Spinner />;
},
renderEmailSent() {
return <div>
{_t("An email has been sent to %(emailAddress)s. Once you've followed the " +
"link it contains, click below.", { emailAddress: this.state.email })}
<br />
<input className="mx_Login_submit" type="button" onClick={this.onVerify}
value={_t('I have verified my email address')} />
</div>;
},
renderDone() {
return <div>
Update style for forgot password copy, add full stops
2019-02-07 12:57:31 +03:00
<p>{_t("Your password has been reset.")}</p>
<p>{_t(
Replace device with session in UI text This replaces "device" with "session" throughout user-visible text at the React layer. Variable names and comments are left as-is for now.
2020-01-29 18:48:25 +03:00
"You have been logged out of all sessions and will no longer receive " +
Update style for forgot password copy, add full stops
2019-02-07 12:57:31 +03:00
"push notifications. To re-enable notifications, sign in again on each " +
Replace device with session in UI text This replaces "device" with "session" throughout user-visible text at the React layer. Variable names and comments are left as-is for now.
2020-01-29 18:48:25 +03:00
"session.",
Update style for forgot password copy, add full stops
2019-02-07 12:57:31 +03:00
)}</p>
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
<input className="mx_Login_submit" type="button" onClick={this.props.onComplete}
value={_t('Return to login screen')} />
</div>;
},
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
render: function() {
Rename LoginPage, Header, Footer views to Auth*
2019-01-22 03:33:17 +03:00
const AuthHeader = sdk.getComponent("auth.AuthHeader");
Add modal look to authentication flows This changes the auth screens to use the modal-like style of the redesign. This does not attempt to style the actual body content of each screen. Instead, it covers the header area with logo, footer links, and overall modal container only.
2019-01-23 04:28:23 +03:00
const AuthBody = sdk.getComponent("auth.AuthBody");
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
let resetPasswordJsx;
Extract each phase to a separate function
2019-02-06 19:46:49 +03:00
switch (this.state.phase) {
case PHASE_SERVER_DETAILS:
resetPasswordJsx = this.renderServerDetails();
break;
case PHASE_FORGOT:
resetPasswordJsx = this.renderForgot();
break;
case PHASE_SENDING_EMAIL:
resetPasswordJsx = this.renderSendingEmail();
break;
case PHASE_EMAIL_SENT:
resetPasswordJsx = this.renderEmailSent();
break;
case PHASE_DONE:
resetPasswordJsx = this.renderDone();
break;
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
}
return (
Rename LoginPage, Header, Footer views to Auth*
2019-01-22 03:33:17 +03:00
<AuthPage>
Rename `mx_Login_box` to `mx_AuthPage_modal` and fold into `AuthPage`
2019-01-22 03:49:28 +03:00
<AuthHeader />
Add modal look to authentication flows This changes the auth screens to use the modal-like style of the redesign. This does not attempt to style the actual body content of each screen. Instead, it covers the header area with logo, footer links, and overall modal container only.
2019-01-23 04:28:23 +03:00
<AuthBody>
Add header text to forgot password
2019-01-24 00:03:43 +03:00
<h2> { _t('Set a new password') } </h2>
Add modal look to authentication flows This changes the auth screens to use the modal-like style of the redesign. This does not attempt to style the actual body content of each screen. Instead, it covers the header area with logo, footer links, and overall modal container only.
2019-01-23 04:28:23 +03:00
{resetPasswordJsx}
</AuthBody>
Rename LoginPage, Header, Footer views to Auth*
2019-01-22 03:33:17 +03:00
</AuthPage>
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
);
Run eslint --fix Fixing 1000s of lint issues. Some rules cannot be `--fix`ed but this goes some way to linting the entire codebase.
2017-10-11 19:56:17 +03:00
},
Implement password reset This adds a link to the login screen with "Forgot your password?". Clicking it takes you to a form with fields for an email address and a new password. This makes the same API calls as the Angular SDK. Manually tested resetting + not clicking link + invalid email and it all seems to work.
2016-01-12 20:20:16 +03:00
});
Reference in a new issue Copy permalink