From 258bcc71bf39eeea48bef00a431b026138cbc9af Mon Sep 17 00:00:00 2001
From: Nazar Gargol <nazargargol@gmail.com>
Date: Wed, 26 Feb 2020 14:08:10 +0800
Subject: [PATCH] Added minified members.js file handling

refs 91984b54cabac50d25cb7b6b3ffb356adcc59945

- For request effieciency we should be using a minified file just like we did previously with `ghost-sdk.js`
- Modified 'max-age' caching header to 1 year  for both minified and non-minified files as thay won't affect dev environment and should be beneficial for self-hosting instances that don't use minification
- Along the way corrected an extra 301 redirect because `/public/member.js` path wasn't using a bakslach in the end.
---
 Gruntfile.js                               | 13 ++++++++++++-
 core/frontend/helpers/ghost_head.js        |  2 +-
 core/server/public/members.js              |  4 ++--
 core/server/public/members.min.js          |  2 +-
 core/server/services/members/middleware.js | 10 +++++++++-
 core/server/web/site/app.js                |  2 ++
 6 files changed, 27 insertions(+), 6 deletions(-)

diff --git a/Gruntfile.js b/Gruntfile.js
index fdd6f7b51c..da46bd1447 100644
--- a/Gruntfile.js
+++ b/Gruntfile.js
@@ -264,6 +264,17 @@ const configureGrunt = function (grunt) {
             }
         },
 
+        uglify: {
+            prod: {
+                options: {
+                    sourceMap: false
+                },
+                files: {
+                    'core/server/public/members.min.js': 'core/server/public/members.js'
+                }
+            }
+        },
+
         cssnano: {
             prod: {
                 options: {
@@ -530,7 +541,7 @@ const configureGrunt = function (grunt) {
     //
     // It is otherwise the same as running `grunt`, but is only used when running Ghost in the `production` env.
     grunt.registerTask('prod', 'Build JS & templates for production',
-        ['subgrunt:prod', 'cssnano:prod', 'master-warn']);
+        ['subgrunt:prod', 'uglify:prod', 'cssnano:prod', 'master-warn']);
 
     // ### Live reload
     // `grunt dev` - build assets on the fly whilst developing
diff --git a/core/frontend/helpers/ghost_head.js b/core/frontend/helpers/ghost_head.js
index 531ec5b6d6..6dfdf6692a 100644
--- a/core/frontend/helpers/ghost_head.js
+++ b/core/frontend/helpers/ghost_head.js
@@ -50,7 +50,7 @@ function getMembersHelper() {
     const stripeSecretToken = stripePaymentProcessor.config.secret_token;
     const stripePublicToken = stripePaymentProcessor.config.public_token;
 
-    let membersHelper = `<script defer src="${getAssetUrl('public/members.js')}"></script>`;
+    let membersHelper = `<script defer src="${getAssetUrl('public/members.js/', true)}"></script>`;
     if (!!stripeSecretToken && stripeSecretToken !== '' && !!stripePublicToken && stripePublicToken !== '') {
         membersHelper += '<script src="https://js.stripe.com/v3/"></script>';
     }
diff --git a/core/server/public/members.js b/core/server/public/members.js
index 17f8fb5571..79ebe49e1f 100644
--- a/core/server/public/members.js
+++ b/core/server/public/members.js
@@ -232,7 +232,7 @@ Array.prototype.forEach.call(document.querySelectorAll('[data-members-cancel-sub
 
             return res.text();
         }).then(function (identity)  {
-            return fetch(`{{admin-url}}/api/canary/members/subscriptions/${subscriptionId}/`, {
+            return fetch('{{admin-url}}/api/canary/members/subscriptions/' + subscriptionId + '/', {
                 method: 'PUT',
                 headers: {
                     'Content-Type': 'application/json'
@@ -282,7 +282,7 @@ Array.prototype.forEach.call(document.querySelectorAll('[data-members-continue-s
 
             return res.text();
         }).then(function (identity)  {
-            return fetch(`{{admin-url}}/api/canary/members/subscriptions/${subscriptionId}/`, {
+            return fetch('{{admin-url}}/api/canary/members/subscriptions/' + subscriptionId + '/', {
                 method: 'PUT',
                 headers: {
                     'Content-Type': 'application/json'
diff --git a/core/server/public/members.min.js b/core/server/public/members.min.js
index beb17e89b3..915751dbbb 100644
--- a/core/server/public/members.min.js
+++ b/core/server/public/members.min.js
@@ -1 +1 @@
-Array.prototype.forEach.call(document.querySelectorAll("form[data-members-form]"),function(form){var errorEl=form.querySelector("[data-members-error]");function submitHandler(event){form.removeEventListener("submit",submitHandler);event.preventDefault();if(errorEl){errorEl.innerText=""}form.classList.remove("success","invalid","error");var input=event.target.querySelector("input[data-members-email]");var email=input.value;if(!email.includes("@")){form.classList.add("invalid");form.addEventListener("submit",submitHandler);return}form.classList.add("loading");fetch("{{admin-url}}/api/canary/members/send-magic-link/",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({email:email})}).then(function(res){form.addEventListener("submit",submitHandler);form.classList.remove("loading");if(res.ok){form.classList.add("success")}else{if(errorEl){errorEl.innerText="There was an error sending the email, please try again"}form.classList.add("error")}})}form.addEventListener("submit",submitHandler)});Array.prototype.forEach.call(document.querySelectorAll("[data-members-plan]"),function(el){var errorEl=el.querySelector("[data-members-error]");function clickHandler(event){el.removeEventListener("click",clickHandler);event.preventDefault();var plan=el.dataset.membersPlan;if(errorEl){errorEl.innerText=""}el.classList.add("loading");fetch("{{blog-url}}/members/ssr",{credentials:"same-origin"}).then(function(res){if(!res.ok){throw new Error("Could not get identity token")}return res.text()}).then(function(identity){return fetch("{{admin-url}}/api/canary/members/create-stripe-checkout-session/",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({plan:plan,identity:identity})}).then(function(res){if(!res.ok){throw new Error("Could not create stripe checkout session")}return res.json()})}).then(function(result){var stripe=Stripe(result.publicKey);return stripe.redirectToCheckout({sessionId:result.sessionId})}).then(function(result){if(result.error){throw new Error(result.error.message)}}).catch(function(err){console.error(err);el.addEventListener("click",clickHandler);el.classList.remove("loading");if(errorEl){errorEl.innerText=err.message}el.classList.add("error")})}el.addEventListener("click",clickHandler)});Array.prototype.forEach.call(document.querySelectorAll("[data-members-signout]"),function(el){function clickHandler(event){el.removeEventListener("click",clickHandler);event.preventDefault();el.classList.remove("error");el.classList.add("loading");fetch("{{blog-url}}/members/ssr",{method:"DELETE"}).then(function(res){if(res.ok){window.location.reload()}else{el.addEventListener("click",clickHandler);el.classList.remove("loading");el.classList.add("error")}})}el.addEventListener("click",clickHandler)});var magicLinkRegEx=/token=([a-zA-Z0-9_\-]+\.[a-zA-Z0-9_\-]+\.[a-zA-Z0-9_\-]+)/;var match=location.search.match(magicLinkRegEx);var isMagicLink=!!match;var token=match&&match[1];if(isMagicLink){fetch("{{blog-url}}/members/ssr",{method:"POST",body:token}).then(function(res){if(res.ok){window.location.search=window.location.search.replace(magicLinkRegEx,"")}})}
+Array.prototype.forEach.call(document.querySelectorAll("form[data-members-form]"),function(i){var c=i.querySelector("[data-members-error]");i.addEventListener("submit",function r(e){i.removeEventListener("submit",r),e.preventDefault(),c&&(c.innerText=""),i.classList.remove("success","invalid","error");for(var t=e.target.querySelector("input[data-members-email]").value,n=void 0,a=[],o=e.target.querySelectorAll("input[data-members-label]")||[],s=0;s<o.length;++s)a.push(o[s].value);i.dataset.membersForm&&(n=i.dataset.membersForm),i.classList.add("loading"),fetch("{{admin-url}}/api/canary/members/send-magic-link/",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({email:t,emailType:n,labels:a})}).then(function(e){i.addEventListener("submit",r),i.classList.remove("loading"),e.ok?i.classList.add("success"):(c&&(c.innerText="There was an error sending the email, please try again"),i.classList.add("error"))})})}),Array.prototype.forEach.call(document.querySelectorAll("[data-members-plan]"),function(i){var c=i.querySelector("[data-members-error]");i.addEventListener("click",function r(e){i.removeEventListener("click",r),e.preventDefault();var t,n,a=i.dataset.membersPlan,o=i.dataset.membersSuccess,s=i.dataset.membersCancel;o&&(t=new URL(o,window.location.href).href),s&&(n=new URL(s,window.location.href).href),c&&(c.innerText=""),i.classList.add("loading"),fetch("{{blog-url}}/members/ssr",{credentials:"same-origin"}).then(function(e){return e.ok?e.text():null}).then(function(e){return fetch("{{admin-url}}/api/canary/members/create-stripe-checkout-session/",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({plan:a,identity:e,successUrl:t,cancelUrl:n})}).then(function(e){if(!e.ok)throw new Error("Could not create stripe checkout session");return e.json()})}).then(function(e){return Stripe(e.publicKey).redirectToCheckout({sessionId:e.sessionId})}).then(function(e){if(e.error)throw new Error(e.error.message)}).catch(function(e){console.error(e),i.addEventListener("click",r),i.classList.remove("loading"),c&&(c.innerText=e.message),i.classList.add("error")})})}),Array.prototype.forEach.call(document.querySelectorAll("[data-members-edit-billing]"),function(t){var n,a,o=t.querySelector("[data-members-error]"),e=t.dataset.membersSuccess,r=t.dataset.membersCancel;e&&(n=new URL(e,window.location.href).href),r&&(a=new URL(r,window.location.href).href),t.addEventListener("click",function r(e){t.removeEventListener("click",r),e.preventDefault(),o&&(o.innerText=""),t.classList.add("loading"),fetch("{{blog-url}}/members/ssr",{credentials:"same-origin"}).then(function(e){return e.ok?e.text():null}).then(function(e){return fetch("{{admin-url}}/api/canary/members/create-stripe-setup-session/",{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({identity:e,successUrl:n,cancelUrl:a})}).then(function(e){if(!e.ok)throw new Error("Could not create stripe checkout session");return e.json()})}).then(function(e){return Stripe(e.publicKey).redirectToCheckout({sessionId:e.sessionId})}).then(function(e){if(e.error)throw new Error(e.error.message)}).catch(function(e){console.error(e),t.addEventListener("click",r),t.classList.remove("loading"),o&&(o.innerText=e.message),t.classList.add("error")})})}),Array.prototype.forEach.call(document.querySelectorAll("[data-members-signout]"),function(t){t.addEventListener("click",function r(e){t.removeEventListener("click",r),e.preventDefault(),t.classList.remove("error"),t.classList.add("loading"),fetch("{{blog-url}}/members/ssr",{method:"DELETE"}).then(function(e){e.ok?window.location.reload():(t.addEventListener("click",r),t.classList.remove("loading"),t.classList.add("error"))})})}),Array.prototype.forEach.call(document.querySelectorAll("[data-members-cancel-subscription]"),function(n){var a=n.parentElement.querySelector("[data-members-error]");n.addEventListener("click",function r(e){n.removeEventListener("click",r),e.preventDefault(),n.classList.remove("error"),n.classList.add("loading");var t=n.dataset.membersCancelSubscription;return a&&(a.innerText=""),fetch("{{blog-url}}/members/ssr",{credentials:"same-origin"}).then(function(e){return e.ok?e.text():null}).then(function(e){return fetch("{{admin-url}}/api/canary/members/subscriptions/"+t+"/",{method:"PUT",headers:{"Content-Type":"application/json"},body:JSON.stringify({identity:e,cancel_at_period_end:!0})})}).then(function(e){e.ok?window.location.reload():(n.addEventListener("click",r),n.classList.remove("loading"),n.classList.add("error"),a&&(a.innerText="There was an error cancelling your subscription, please try again."))})})}),Array.prototype.forEach.call(document.querySelectorAll("[data-members-continue-subscription]"),function(n){var a=n.parentElement.querySelector("[data-members-error]");n.addEventListener("click",function r(e){n.removeEventListener("click",r),e.preventDefault(),n.classList.remove("error"),n.classList.add("loading");var t=n.dataset.membersContinueSubscription;return a&&(a.innerText=""),fetch("{{blog-url}}/members/ssr",{credentials:"same-origin"}).then(function(e){return e.ok?e.text():null}).then(function(e){return fetch("{{admin-url}}/api/canary/members/subscriptions/"+t+"/",{method:"PUT",headers:{"Content-Type":"application/json"},body:JSON.stringify({identity:e,cancel_at_period_end:!1})})}).then(function(e){e.ok?window.location.reload():(n.addEventListener("click",r),n.classList.remove("loading"),n.classList.add("error"),a&&(a.innerText="There was an error continuing your subscription, please try again."))})})});var url=new URL(window.location);url.searchParams.get("token")&&(url.searchParams.delete("token"),window.history.replaceState({},document.title,url.href));
\ No newline at end of file
diff --git a/core/server/services/members/middleware.js b/core/server/services/members/middleware.js
index 6cd2479f8f..78bb770650 100644
--- a/core/server/services/members/middleware.js
+++ b/core/server/services/members/middleware.js
@@ -74,7 +74,15 @@ module.exports = {
         shared.middlewares.servePublicFile.createPublicFileMiddleware(
             'public/members.js',
             'application/javascript',
-            constants.ONE_HOUR_S
+            constants.ONE_YEAR_S
+        )
+    ],
+    publicMinified: [
+        shared.middlewares.labs.members,
+        shared.middlewares.servePublicFile.createPublicFileMiddleware(
+            'public/members.min.js',
+            'application/javascript',
+            constants.ONE_YEAR_S
         )
     ],
     createSessionFromToken: [
diff --git a/core/server/web/site/app.js b/core/server/web/site/app.js
index 85ee555df0..d78bb12c66 100644
--- a/core/server/web/site/app.js
+++ b/core/server/web/site/app.js
@@ -109,6 +109,8 @@ module.exports = function setupSiteApp(options = {}) {
 
     // /public/members.js
     siteApp.get('/public/members.js', membersMiddleware.public);
+    // /public/members.min.js
+    siteApp.get('/public/members.min.js', membersMiddleware.publicMinified);
 
     // Serve sitemap.xsl file
     siteApp.use(shared.middlewares.servePublicFile('sitemap.xsl', 'text/xsl', constants.ONE_DAY_S));