BigBlueButton/bigbluebutton-Github
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #21520 from gustavotrott/fix-lad-cookie-cross-domain

Browse Source 
fix (LAD/cluster) (backport 2.7): Enable LearningDashboard cookie support across different subdomains
This commit is contained in:
Anton Georgiev 2024-10-24 10:08:03 -04:00 committed by GitHub
commit 02266dd970
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 52 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

53
bigbluebutton-html5/imports/ui/components/learning-dashboard/service.js
View File

@ -4,6 +4,44 @@ import Meetings from '/imports/api/meetings';
const ROLE_MODERATOR = Meteor.settings.public.user.role_moderator; const ROLE_MODERATOR = Meteor.settings.public.user.role_moderator;
const findCommonDomain = (url1, url2) => {
// Helper function to extract domain parts in reverse order
const getDomainParts = (url) => {
try {
const { hostname } = new URL(url);
return hostname.split('.').reverse();
} catch (e) {
throw new Error('Invalid URL format');
}
};
try {
const domain1Parts = getDomainParts(url1);
const domain2Parts = getDomainParts(url2);
// Find common parts starting from the end (TLD)
const commonParts = [];
const minLength = Math.min(domain1Parts.length, domain2Parts.length);
for (let i = 0; i < minLength; i += 1) {
if (domain1Parts[i] === domain2Parts[i]) {
commonParts.push(domain1Parts[i]);
} else {
break;
}
}
// Return the common parts in correct order
// Add leading dot if domains are different in any way
if (commonParts.length > 1) {
return commonParts.reverse().join('.');
}
return '';
} catch (error) {
return '';
}
};
const isModerator = () => { const isModerator = () => {
const user = Users.findOne( const user = Users.findOne(
{ {
@ -29,11 +67,24 @@ const getLearningDashboardAccessToken = () => ((
) || {}).learningDashboardAccessToken || null); ) || {}).learningDashboardAccessToken || null);
const setLearningDashboardCookie = () => { const setLearningDashboardCookie = () => {
const learningDashboardBase = Meteor.settings.public.app?.learningDashboardBase;
const learningDashboardAccessToken = getLearningDashboardAccessToken(); const learningDashboardAccessToken = getLearningDashboardAccessToken();
if (learningDashboardAccessToken !== null) { if (learningDashboardAccessToken !== null) {
const lifetime = new Date(); const lifetime = new Date();
lifetime.setTime(lifetime.getTime() + (3600000)); // 1h (extends 7d when open Dashboard) lifetime.setTime(lifetime.getTime() + (3600000)); // 1h (extends 7d when open Dashboard)
document.cookie = `ld-${Auth.meetingID}=${getLearningDashboardAccessToken()}; expires=${lifetime.toGMTString()}; path=/`; let cookieString = `ld-${Auth.meetingID}=${getLearningDashboardAccessToken()}; expires=${lifetime.toUTCString()}; path=/`;
// In a cluster setup it will be necessary to specify the root domain
// because the Dashboard might be in a different subdomain
if (learningDashboardBase.startsWith('http')) {
const commonDomain = findCommonDomain(learningDashboardBase, window.location.href);
if (commonDomain !== '') {
cookieString += `;domain=${commonDomain}`;
}
}
document.cookie = cookieString;
return true; return true;
} }
return false; return false;