Merge pull request #12723 from nextcloud/backport/12710/stable15

[stable15] Remove old button to submit the apppassword login

Author: MorrisJobke

core/Controller/ClientFlowLoginController.php

@@ -242,34 +242,6 @@ public function grantPage($stateToken = '',
 		);
 	}
 
-	/**
-	 * @NoAdminRequired
-	 * @NoCSRFRequired
-	 * @UseSession
-	 *
-	 * @param string $stateToken
-	 * @param string $clientIdentifier
-	 * @return TemplateResponse
-	 */
-	public function redirectPage($stateToken = '',
-								 $clientIdentifier = '') {
-		if(!$this->isValidToken($stateToken)) {
-			return $this->stateTokenForbiddenResponse();
-		}
-
-		return new TemplateResponse(
-			$this->appName,
-			'loginflow/redirect',
-			[
-				'urlGenerator' => $this->urlGenerator,
-				'stateToken' => $stateToken,
-				'clientIdentifier' => $clientIdentifier,
-				'oauthState' => $this->session->get('oauth.state'),
-			],
-			'guest'
-		);
-	}
-
 	/**
 	 * @NoAdminRequired
 	 * @UseSession

core/js/login/grant.js

@@ -0,0 +1,9 @@
+jQuery(document).ready(function() {
+	$('#submit').click(function (e) {
+		$('#submit + .submit-icon')
+			.removeClass('icon-confirm-white')
+			.addClass(OCA.Theming && OCA.Theming.inverted
+				? 'icon-loading-small'
+				: 'icon-loading-small-dark');
+	})
+})

core/js/login/redirect.js

@@ -52,7 +52,6 @@
 		['name' => 'login#showLoginForm', 'url' => '/login', 'verb' => 'GET'],
 		['name' => 'login#logout', 'url' => '/logout', 'verb' => 'GET'],
 		['name' => 'ClientFlowLogin#showAuthPickerPage', 'url' => '/login/flow', 'verb' => 'GET'],
-		['name' => 'ClientFlowLogin#redirectPage', 'url' => '/login/flow/redirect', 'verb' => 'GET'],
 		['name' => 'ClientFlowLogin#generateAppPassword', 'url' => '/login/flow', 'verb' => 'POST'],
 		['name' => 'ClientFlowLogin#grantPage', 'url' => '/login/flow/grant', 'verb' => 'GET'],
 		['name' => 'TwoFactorChallenge#selectChallenge', 'url' => '/login/selectchallenge', 'verb' => 'GET'],

core/routes.php

@@ -19,7 +19,7 @@
  *
  */
 
-script('core', 'login/authpicker');
+script('core', 'login/grant');
 style('core', 'login/authpicker');
 
 /** @var array $_ */
@@ -39,8 +39,15 @@
 	<br/>
 
 	<p id="redirect-link">
-		<a href="<?php p($urlGenerator->linkToRouteAbsolute('core.ClientFlowLogin.redirectPage', ['stateToken' => $_['stateToken'], 'clientIdentifier' => $_['clientIdentifier'], 'oauthState' => $_['oauthState']])) ?>">
-			<input type="submit" class="login primary icon-confirm-white" value="<?php p($l->t('Grant access')) ?>">
-		</a>
+		<form method="POST" action="<?php p($urlGenerator->linkToRouteAbsolute('core.ClientFlowLogin.generateAppPassword')) ?>">	
+			<input type="hidden" name="clientIdentifier" value="<?php p($_['clientIdentifier']) ?>" />	
+			<input type="hidden" name="requesttoken" value="<?php p($_['requesttoken']) ?>" />	
+			<input type="hidden" name="stateToken" value="<?php p($_['stateToken']) ?>" />	
+			<input type="hidden" name="oauthState" value="<?php p($_['oauthState']) ?>" />	
+			<div id="submit-wrapper">
+				<input type="submit" id="submit" class="login primary" title="" value="<?php p($l->t('Grant access')); ?>" />
+				<div class="submit-icon icon-confirm-white"></div>
+			</div>	
+		</form>
 	</p>
 </div>

core/templates/loginflow/grant.php

@@ -242,70 +242,6 @@ public function testShowAuthPickerPageWithOauth() {
 		$this->assertEquals($expected, $this->clientFlowLoginController->showAuthPickerPage('MyClientIdentifier'));
 	}
 
-	public function testRedirectPageWithInvalidToken() {
-		$this->session
-			->expects($this->once())
-			->method('get')
-			->with('client.flow.state.token')
-			->willReturn('OtherToken');
-
-		$expected = new TemplateResponse(
-			'core',
-			'403',
-			[
-				'file' => 'State token does not match',
-			],
-			'guest'
-		);
-		$expected->setStatus(Http::STATUS_FORBIDDEN);
-		$this->assertEquals($expected, $this->clientFlowLoginController->redirectPage('MyStateToken'));
-	}
-
-	public function testRedirectPageWithoutToken() {
-		$this->session
-			->expects($this->once())
-			->method('get')
-			->with('client.flow.state.token')
-			->willReturn(null);
-
-		$expected = new TemplateResponse(
-			'core',
-			'403',
-			[
-				'file' => 'State token does not match',
-			],
-			'guest'
-		);
-		$expected->setStatus(Http::STATUS_FORBIDDEN);
-		$this->assertEquals($expected, $this->clientFlowLoginController->redirectPage('MyStateToken'));
-	}
-
-	public function testRedirectPage() {
-		$this->session
-			->expects($this->at(0))
-			->method('get')
-			->with('client.flow.state.token')
-			->willReturn('MyStateToken');
-		$this->session
-			->expects($this->at(1))
-			->method('get')
-			->with('oauth.state')
-			->willReturn('MyOauthStateToken');
-
-		$expected = new TemplateResponse(
-			'core',
-			'loginflow/redirect',
-			[
-				'urlGenerator' => $this->urlGenerator,
-				'stateToken' => 'MyStateToken',
-				'clientIdentifier' => 'Identifier',
-				'oauthState' => 'MyOauthStateToken',
-			],
-			'guest'
-		);
-		$this->assertEquals($expected, $this->clientFlowLoginController->redirectPage('MyStateToken', 'Identifier'));
-	}
-
 	public function testGenerateAppPasswordWithInvalidToken() {
 		$this->session
 			->expects($this->once())