/
authflow_promote.go
121 lines (99 loc) · 3.49 KB
/
authflow_promote.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
package webapp
import (
"net/http"
"net/url"
"github.com/authgear/authgear-server/pkg/auth/handler/webapp/viewmodels"
"github.com/authgear/authgear-server/pkg/auth/webapp"
authflow "github.com/authgear/authgear-server/pkg/lib/authenticationflow"
"github.com/authgear/authgear-server/pkg/lib/authn/sso"
"github.com/authgear/authgear-server/pkg/util/httproute"
"github.com/authgear/authgear-server/pkg/util/template"
"github.com/authgear/authgear-server/pkg/util/validation"
)
var TemplateWebAuthflowPromoteHTML = template.RegisterHTML(
"web/authflow_promote.html",
Components...,
)
var AuthflowPromoteLoginIDSchema = validation.NewSimpleSchema(`
{
"type": "object",
"properties": {
"q_login_id_key": { "type": "string" },
"q_login_id": { "type": "string" }
},
"required": ["q_login_id_key", "q_login_id"]
}
`)
func ConfigureAuthflowPromoteRoute(route httproute.Route) httproute.Route {
return route.
WithMethods("OPTIONS", "POST", "GET").
WithPathPattern(webapp.AuthflowRoutePromote)
}
type AuthflowPromoteEndpointsProvider interface {
SSOCallbackURL(alias string) *url.URL
}
type AuthflowPromoteHandler struct {
Controller *AuthflowController
BaseViewModel *viewmodels.BaseViewModeler
AuthflowViewModel *viewmodels.AuthflowViewModeler
Renderer Renderer
Endpoints AuthflowPromoteEndpointsProvider
}
func (h *AuthflowPromoteHandler) GetData(w http.ResponseWriter, r *http.Request, screen *webapp.AuthflowScreenWithFlowResponse) (map[string]interface{}, error) {
data := make(map[string]interface{})
baseViewModel := h.BaseViewModel.ViewModelForAuthFlow(r, w)
viewmodels.Embed(data, baseViewModel)
authflowViewModel := h.AuthflowViewModel.NewWithAuthflow(screen.StateTokenFlowResponse, r)
viewmodels.Embed(data, authflowViewModel)
return data, nil
}
func (h *AuthflowPromoteHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
opts := webapp.SessionOptions{
RedirectURI: h.Controller.RedirectURI(r),
}
var handlers AuthflowControllerHandlers
handlers.Get(func(s *webapp.Session, screen *webapp.AuthflowScreenWithFlowResponse) error {
data, err := h.GetData(w, r, screen)
if err != nil {
return err
}
h.Renderer.RenderHTML(w, r, TemplateWebAuthflowPromoteHTML, data)
return nil
})
handlers.PostAction("oauth", func(s *webapp.Session, screen *webapp.AuthflowScreenWithFlowResponse) error {
providerAlias := r.Form.Get("x_provider_alias")
callbackURL := h.Endpoints.SSOCallbackURL(providerAlias).String()
input := map[string]interface{}{
"identification": "oauth",
"alias": providerAlias,
"redirect_uri": callbackURL,
"response_mode": string(sso.ResponseModeFormPost),
}
result, err := h.Controller.AdvanceWithInput(r, s, screen, input, nil)
if err != nil {
return err
}
result.WriteResponse(w, r)
return nil
})
handlers.PostAction("login_id", func(s *webapp.Session, screen *webapp.AuthflowScreenWithFlowResponse) error {
err := AuthflowPromoteLoginIDSchema.Validator().ValidateValue(FormToJSON(r.Form))
if err != nil {
return err
}
loginIDKey := r.Form.Get("q_login_id_key")
loginID := r.Form.Get("q_login_id")
identification := loginIDKey
input := map[string]interface{}{
"identification": identification,
"login_id": loginID,
}
result, err := h.Controller.AdvanceWithInput(r, s, screen, input, nil)
if err != nil {
return err
}
result.WriteResponse(w, r)
return nil
})
h.Controller.HandleStartOfFlow(w, r, opts, authflow.FlowTypePromote, &handlers, nil)
}