moving forward on oauth2 session management

Gandi · Jan 4, 2016 · 857fa4e · 857fa4e
1 parent 4400514
commit 857fa4e
Show file tree

Hide file tree

Showing 4 changed files with 17 additions and 4 deletions.
diff --git a/app/config/hieraviz.default.yml b/app/config/hieraviz.default.yml
@@ -3,6 +3,7 @@ app_name: HieraViz
 basepath: "../puppet"
 classpath: "farm_modules/%s/manifests/init.pp"
 hierafile: "dev/hiera-local.yaml"
+session_seed: "xxx"
 usedb: true
 puppetdb:
   usessl: false

diff --git a/app/views/home.erb b/app/views/home.erb
@@ -1,4 +1,4 @@
 <div class="meat text">
-Welcome to hieraviz
-<%= session[:access_token] %>
+Welcome to hieraviz<br>
+<%= @sess %>
 </div>
diff --git a/app/web.rb b/app/web.rb
@@ -15,6 +15,7 @@ class Web < Common
     helpers Sinatra::ContentFor
 
     configure do
+      set :session_secret, settings.configdata['session_seed']
       set :public_folder, Proc.new { File.join(root, "public") }
       set :views_folder, Proc.new { File.join(root, "views") }
       set :erb, layout: :_layout
@@ -36,14 +37,21 @@ def oauth_client
       end
       def get_response(url)
         access_token = OAuth2::AccessToken.new(oauth_client, session[:access_token])
-        JSON.parse(access_token.get("/api/v1/#{url}").body)
+        JSON.parse(access_token.get("/api/v3/#{url}").body)
       end
       def redirect_uri
         uri = URI.parse(request.url)
         uri.path = '/logged-in'
         uri.query = nil
         uri.to_s
       end
+      def authorize
+        if settings.configdata['auth_method'] == 'oauth2'
+          resp = get_response('projects/devops/puppet')
+          # logger.info resp
+          redirect '/'
+        end
+      end
     end
 
     case settings.configdata['auth_method']
@@ -57,13 +65,13 @@ def redirect_uri
     when 'oauth2'
 
       get '/login' do
-        logger.info oauth_client
         redirect oauth_client.auth_code.authorize_url(:redirect_uri => redirect_uri)
       end
 
       get '/logged-in' do
         access_token = oauth_client.auth_code.get_token(params[:code], :redirect_uri => redirect_uri)
         session[:access_token] = access_token.token
+        # logger.info session['access_token']
         @message = "Successfully authenticated with the server"
         redirect '/'
       end
@@ -73,10 +81,13 @@ def redirect_uri
 
 
     get '/' do
+      @sess = session['access_token']
+      # logger.info @sess
       erb :home
     end
 
     get '/nodes' do
+      authorize
       @nodes = Hieracles::Registry.nodes(settings.config)
       erb :nodes
     end

diff --git a/spec/files/config.yml b/spec/files/config.yml
@@ -2,6 +2,7 @@
 basepath: "spec/files/puppet"
 classpath: "farm_modules/%s/manifests/init.pp"
 hierafile: "hiera.yml"
+session_seed: "toto"
 usedb: false
 puppetdb:
   usessl: false