/
service_code_grant.go
52 lines (43 loc) · 1.47 KB
/
service_code_grant.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
package handler
import (
"github.com/authgear/authgear-server/pkg/lib/authn/authenticationinfo"
"github.com/authgear/authgear-server/pkg/lib/config"
"github.com/authgear/authgear-server/pkg/lib/oauth"
"github.com/authgear/authgear-server/pkg/lib/oauth/protocol"
"github.com/authgear/authgear-server/pkg/util/clock"
)
type CodeGrantService struct {
AppID config.AppID
CodeGenerator TokenGenerator
Clock clock.Clock
CodeGrants oauth.CodeGrantStore
}
type CreateCodeGrantOptions struct {
Authorization *oauth.Authorization
IDPSessionID string
AuthenticationInfo authenticationinfo.T
IDTokenHintSID string
RedirectURI string
AuthorizationRequest protocol.AuthorizationRequest
}
func (s *CodeGrantService) CreateCodeGrant(opts *CreateCodeGrantOptions) (code string, grant *oauth.CodeGrant, err error) {
code = s.CodeGenerator()
codeHash := oauth.HashToken(code)
codeGrant := &oauth.CodeGrant{
AppID: string(s.AppID),
AuthorizationID: opts.Authorization.ID,
IDPSessionID: opts.IDPSessionID,
AuthenticationInfo: opts.AuthenticationInfo,
IDTokenHintSID: opts.IDTokenHintSID,
CreatedAt: s.Clock.NowUTC(),
ExpireAt: s.Clock.NowUTC().Add(CodeGrantValidDuration),
CodeHash: codeHash,
RedirectURI: opts.RedirectURI,
AuthorizationRequest: opts.AuthorizationRequest,
}
err = s.CodeGrants.CreateCodeGrant(codeGrant)
if err != nil {
return "", nil, err
}
return code, codeGrant, nil
}