agola/internal/services/gateway/api/oauth2.go

// Copyright 2019 Sorint.lab
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied
// See the License for the specific language governing permissions and
// limitations under the License.

package api

import (
	"net/http"

	"github.com/sorintlab/agola/internal/services/gateway/action"
	"github.com/sorintlab/agola/internal/util"

	"go.uber.org/zap"
)

type OAuth2CallbackHandler struct {
	log *zap.SugaredLogger
	ah  *action.ActionHandler
}

type RemoteSourceAuthResult struct {
	RequestType string      `json:"request_type,omitempty"`
	Response    interface{} `json:"response,omitempty"`
}

func NewOAuth2CallbackHandler(logger *zap.Logger, ah *action.ActionHandler) *OAuth2CallbackHandler {
	return &OAuth2CallbackHandler{log: logger.Sugar(), ah: ah}
}

func (h *OAuth2CallbackHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
	ctx := r.Context()
	query := r.URL.Query()
	code := query.Get("code")
	state := query.Get("state")

	cresp, err := h.ah.HandleOauth2Callback(ctx, code, state)
	if err != nil {
		h.log.Errorf("err: %+v", err)
		httpError(w, util.NewErrBadRequest(err))
		return
	}

	var response interface{}
	switch cresp.RequestType {
	case action.RemoteSourceRequestTypeCreateUserLA:
		authresp := cresp.Response.(*action.CreateUserLAResponse)
		response = &CreateUserLAResponse{
			LinkedAccount: authresp.LinkedAccount,
		}

	case action.RemoteSourceRequestTypeLoginUser:
		authresp := cresp.Response.(*action.LoginUserResponse)
		response = &LoginUserResponse{
			Token: authresp.Token,
			User:  createUserResponse(authresp.User),
		}

	case action.RemoteSourceRequestTypeAuthorize:
		authresp := cresp.Response.(*action.AuthorizeResponse)
		response = &AuthorizeResponse{
			RemoteUserInfo:   authresp.RemoteUserInfo,
			RemoteSourceName: authresp.RemoteSourceName,
		}

	case action.RemoteSourceRequestTypeRegisterUser:
		response = &RegisterUserResponse{}
	}

	res := RemoteSourceAuthResult{
		RequestType: string(cresp.RequestType),
		Response:    response,
	}
	if err := httpResponse(w, http.StatusOK, res); err != nil {
		h.log.Errorf("err: %+v", err)
	}
}
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`// Copyright 2019 Sorint.lab`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

			`package api`

			`import (`
			`"net/http"`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`"github.com/sorintlab/agola/internal/services/gateway/action"`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`"github.com/sorintlab/agola/internal/util"`
gateway: initial implementation 2019-02-21 16:58:25 +00:00
			`"go.uber.org/zap"`
			`)`

			`type OAuth2CallbackHandler struct {`
gateway: move remaining user logic from api to actions 2019-05-05 12:45:19 +00:00			`log *zap.SugaredLogger`
			`ah *action.ActionHandler`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`}`

			`type RemoteSourceAuthResult struct {`
			RequestType string `json:"request_type,omitempty"`
			Response interface{} `json:"response,omitempty"`
			`}`

gateway: move remaining user logic from api to actions 2019-05-05 12:45:19 +00:00			`func NewOAuth2CallbackHandler(logger zap.Logger, ah action.ActionHandler) *OAuth2CallbackHandler {`
			`return &OAuth2CallbackHandler{log: logger.Sugar(), ah: ah}`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`}`

			`func (h OAuth2CallbackHandler) ServeHTTP(w http.ResponseWriter, r http.Request) {`
			`ctx := r.Context()`
			`query := r.URL.Query()`
			`code := query.Get("code")`
			`state := query.Get("state")`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`cresp, err := h.ah.HandleOauth2Callback(ctx, code, state)`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`if err != nil {`
			`h.log.Errorf("err: %+v", err)`
/api: Use helpers for error handling client: always parse the json error message field and return its contents * Use ErrBadRequest and ErrNotFound in every handler and command * Gateway: by default pass underlying service error (configstore, runservice) to client keeping the status code and message. In future, if some errors must be masked, we should change the specific parts that need special handling. 2019-04-09 12:53:00 +00:00			`httpError(w, util.NewErrBadRequest(err))`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`return`
			`}`

			`var response interface{}`
			`switch cresp.RequestType {`
gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`case action.RemoteSourceRequestTypeCreateUserLA:`
			`authresp := cresp.Response.(*action.CreateUserLAResponse)`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`response = &CreateUserLAResponse{`
			`LinkedAccount: authresp.LinkedAccount,`
			`}`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`case action.RemoteSourceRequestTypeLoginUser:`
			`authresp := cresp.Response.(*action.LoginUserResponse)`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`response = &LoginUserResponse{`
			`Token: authresp.Token,`
			`User: createUserResponse(authresp.User),`
			`}`
gateway: add user registration Adds two handler: * Authorize handler used to ask remote source authorization * Register handler used to do user and related linked account creation 2019-03-29 16:53:15 +00:00
gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`case action.RemoteSourceRequestTypeAuthorize:`
			`authresp := cresp.Response.(*action.AuthorizeResponse)`
gateway: add user registration Adds two handler: * Authorize handler used to ask remote source authorization * Register handler used to do user and related linked account creation 2019-03-29 16:53:15 +00:00			`response = &AuthorizeResponse{`
			`RemoteUserInfo: authresp.RemoteUserInfo,`
			`RemoteSourceName: authresp.RemoteSourceName,`
			`}`

gateway: rename command(handler) to action(handler) Since we're going to migrate all actions (also queries that now are implemented in the api handlers) there 2019-05-03 21:48:49 +00:00			`case action.RemoteSourceRequestTypeRegisterUser:`
gateway: add user registration Adds two handler: * Authorize handler used to ask remote source authorization * Register handler used to do user and related linked account creation 2019-03-29 16:53:15 +00:00			`response = &RegisterUserResponse{}`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`}`

gateway api: improve response handling * Always return a json message also on error. For internal errors return a generic "internal server error" message to not leak the real internal error to clients * Return 201 Created on resource creation * Return 204 No Content on resource deletion and other action with no json output 2019-04-08 09:35:45 +00:00			`res := RemoteSourceAuthResult{`
gateway: add user registration Adds two handler: * Authorize handler used to ask remote source authorization * Register handler used to do user and related linked account creation 2019-03-29 16:53:15 +00:00			`RequestType: string(cresp.RequestType),`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`Response: response,`
			`}`
gateway api: improve response handling * Always return a json message also on error. For internal errors return a generic "internal server error" message to not leak the real internal error to clients * Return 201 Created on resource creation * Return 204 No Content on resource deletion and other action with no json output 2019-04-08 09:35:45 +00:00			`if err := httpResponse(w, http.StatusOK, res); err != nil {`
api: use httpError helper everywhere 2019-04-05 14:33:00 +00:00			`h.log.Errorf("err: %+v", err)`
gateway: initial implementation 2019-02-21 16:58:25 +00:00			`}`
			`}`