icynet-auth-server/views/authorize.pug

extends partials/layout.pug

block title
  |Authorize application | Icy Network

block body
  include partials/logo.pug
  div.container
    div.center-box
      h1 Authorize application

      .authorize
        .authorize__user
          .authorize__user-image
            if user.picture
              img(src='/uploads/' + user.picture.file, alt=user.username)
            else
              img(src='/public/image/avatar.png', alt='No picture')
          .authorize__user-content
            span.authorize__user-title #{user.display_name}
            span.authorize__user-user @#{user.username}
        .authorize__center
        .authorize__client
          .authorize__client-image
            if client.picture
              img(src='/uploads/' + client.picture.file, alt=client.title)
            else
              img(src='/public/image/application.png', alt='No picture')
          .authorize__client-content
            span.authorize__client-title #{client.title}
            span.authorize__client-description #{client.description}
            .authorize__client-urls
              each url in client.urls
                if url.type == 'website'
                  a.authorize__client-url(href=url.url, target="_blank", rel="nofollow") Visit website
                if url.type == 'privacy'
                  a.authorize__client-url(href=url.url, target="_blank", rel="nofollow") Privacy Policy
                if url.type == 'terms'
                  a.authorize__client-url(href=url.url, target="_blank", rel="nofollow") Terms of Service

      h2.text-center This application will have access to..

      .scopes
        each allowed in allowedScopes
          span.scopes__scope.scopes__scope--allowed #{allowed}
      

      h2.text-center This application will not have access to..

      .scopes
        each allowed in disallowedScopes
          span.scopes__scope.scopes__scope--disallowed #{allowed}

      form(method="POST", action="")
        div.form-container
          input(type="hidden", name="_csrf", value=csrf)
          input(type="hidden", name="decision", value="1")
          button.btn.btn-primary(type="submit") Authorize

      form(method="POST", action="")
        div.form-container
          input(type="hidden", name="_csrf", value=csrf)
          input(type="hidden", name="decision", value="0")
          button.btn.btn-link(type="submit") Reject