afan
/
gitea
Segui 1
Vota 0
Forka 0
Codice Problemi 0 Pull Requests 0 Rilasci 0 Wiki Activity
gitea源码
3 Commit
2 Rami (Branch)
Ramo (Branch): master
Rami (Branch) Tag
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
gitea/routers/web/user/setting/oauth2_common.go

oauth2_common.go 5.3KB
Permalink Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179 
  1. // Copyright 2019 The Gitea Authors. All rights reserved.

  2. // SPDX-License-Identifier: MIT

  3. 

  4. package setting

  5. 

  6. import (

  7. 	"fmt"

  8. 	"net/http"

  9. 

  10. 	"code.gitea.io/gitea/models/auth"

  11. 	"code.gitea.io/gitea/modules/templates"

  12. 	"code.gitea.io/gitea/modules/util"

  13. 	"code.gitea.io/gitea/modules/web"

  14. 	shared_user "code.gitea.io/gitea/routers/web/shared/user"

  15. 	"code.gitea.io/gitea/services/context"

  16. 	"code.gitea.io/gitea/services/forms"

  17. )

  18. 

  19. type OAuth2CommonHandlers struct {

  20. 	OwnerID            int64             // 0 for instance-wide, otherwise OrgID or UserID

  21. 	BasePathList       string            // the base URL for the application list page, eg: "/user/setting/applications"

  22. 	BasePathEditPrefix string            // the base URL for the application edit page, will be appended with app id, eg: "/user/setting/applications/oauth2"

  23. 	TplAppEdit         templates.TplName // the template for the application edit page

  24. }

  25. 

  26. func (oa *OAuth2CommonHandlers) renderEditPage(ctx *context.Context) {

  27. 	app := ctx.Data["App"].(*auth.OAuth2Application)

  28. 	ctx.Data["FormActionPath"] = fmt.Sprintf("%s/%d", oa.BasePathEditPrefix, app.ID)

  29. 

  30. 	if ctx.ContextUser != nil && ctx.ContextUser.IsOrganization() {

  31. 		if _, err := shared_user.RenderUserOrgHeader(ctx); err != nil {

  32. 			ctx.ServerError("RenderUserOrgHeader", err)

  33. 			return

  34. 		}

  35. 	}

  36. 

  37. 	ctx.HTML(http.StatusOK, oa.TplAppEdit)

  38. }

  39. 

  40. // AddApp adds an oauth2 application

  41. func (oa *OAuth2CommonHandlers) AddApp(ctx *context.Context) {

  42. 	form := web.GetForm(ctx).(*forms.EditOAuth2ApplicationForm)

  43. 	if ctx.HasError() {

  44. 		ctx.Flash.Error(ctx.GetErrMsg())

  45. 		// go to the application list page

  46. 		ctx.Redirect(oa.BasePathList)

  47. 		return

  48. 	}

  49. 

  50. 	app, err := auth.CreateOAuth2Application(ctx, auth.CreateOAuth2ApplicationOptions{

  51. 		Name:                       form.Name,

  52. 		RedirectURIs:               util.SplitTrimSpace(form.RedirectURIs, "\n"),

  53. 		UserID:                     oa.OwnerID,

  54. 		ConfidentialClient:         form.ConfidentialClient,

  55. 		SkipSecondaryAuthorization: form.SkipSecondaryAuthorization,

  56. 	})

  57. 	if err != nil {

  58. 		ctx.ServerError("CreateOAuth2Application", err)

  59. 		return

  60. 	}

  61. 

  62. 	// render the edit page with secret

  63. 	ctx.Flash.Success(ctx.Tr("settings.create_oauth2_application_success"), true)

  64. 	ctx.Data["App"] = app

  65. 	ctx.Data["ClientSecret"], err = app.GenerateClientSecret(ctx)

  66. 	if err != nil {

  67. 		ctx.ServerError("GenerateClientSecret", err)

  68. 		return

  69. 	}

  70. 

  71. 	oa.renderEditPage(ctx)

  72. }

  73. 

  74. // EditShow displays the given application

  75. func (oa *OAuth2CommonHandlers) EditShow(ctx *context.Context) {

  76. 	app, err := auth.GetOAuth2ApplicationByID(ctx, ctx.PathParamInt64("id"))

  77. 	if err != nil {

  78. 		if auth.IsErrOAuthApplicationNotFound(err) {

  79. 			ctx.NotFound(err)

  80. 			return

  81. 		}

  82. 		ctx.ServerError("GetOAuth2ApplicationByID", err)

  83. 		return

  84. 	}

  85. 	if app.UID != oa.OwnerID {

  86. 		ctx.NotFound(nil)

  87. 		return

  88. 	}

  89. 	ctx.Data["App"] = app

  90. 	oa.renderEditPage(ctx)

  91. }

  92. 

  93. // EditSave saves the oauth2 application

  94. func (oa *OAuth2CommonHandlers) EditSave(ctx *context.Context) {

  95. 	form := web.GetForm(ctx).(*forms.EditOAuth2ApplicationForm)

  96. 

  97. 	if ctx.HasError() {

  98. 		app, err := auth.GetOAuth2ApplicationByID(ctx, ctx.PathParamInt64("id"))

  99. 		if err != nil {

  100. 			if auth.IsErrOAuthApplicationNotFound(err) {

  101. 				ctx.NotFound(err)

  102. 				return

  103. 			}

  104. 			ctx.ServerError("GetOAuth2ApplicationByID", err)

  105. 			return

  106. 		}

  107. 		if app.UID != oa.OwnerID {

  108. 			ctx.NotFound(nil)

  109. 			return

  110. 		}

  111. 		ctx.Data["App"] = app

  112. 

  113. 		oa.renderEditPage(ctx)

  114. 		return

  115. 	}

  116. 

  117. 	var err error

  118. 	if ctx.Data["App"], err = auth.UpdateOAuth2Application(ctx, auth.UpdateOAuth2ApplicationOptions{

  119. 		ID:                         ctx.PathParamInt64("id"),

  120. 		Name:                       form.Name,

  121. 		RedirectURIs:               util.SplitTrimSpace(form.RedirectURIs, "\n"),

  122. 		UserID:                     oa.OwnerID,

  123. 		ConfidentialClient:         form.ConfidentialClient,

  124. 		SkipSecondaryAuthorization: form.SkipSecondaryAuthorization,

  125. 	}); err != nil {

  126. 		ctx.ServerError("UpdateOAuth2Application", err)

  127. 		return

  128. 	}

  129. 	ctx.Flash.Success(ctx.Tr("settings.update_oauth2_application_success"))

  130. 	ctx.Redirect(oa.BasePathList)

  131. }

  132. 

  133. // RegenerateSecret regenerates the secret

  134. func (oa *OAuth2CommonHandlers) RegenerateSecret(ctx *context.Context) {

  135. 	app, err := auth.GetOAuth2ApplicationByID(ctx, ctx.PathParamInt64("id"))

  136. 	if err != nil {

  137. 		if auth.IsErrOAuthApplicationNotFound(err) {

  138. 			ctx.NotFound(err)

  139. 			return

  140. 		}

  141. 		ctx.ServerError("GetOAuth2ApplicationByID", err)

  142. 		return

  143. 	}

  144. 	if app.UID != oa.OwnerID {

  145. 		ctx.NotFound(nil)

  146. 		return

  147. 	}

  148. 	ctx.Data["App"] = app

  149. 	ctx.Data["ClientSecret"], err = app.GenerateClientSecret(ctx)

  150. 	if err != nil {

  151. 		ctx.ServerError("GenerateClientSecret", err)

  152. 		return

  153. 	}

  154. 	ctx.Flash.Success(ctx.Tr("settings.update_oauth2_application_success"), true)

  155. 	oa.renderEditPage(ctx)

  156. }

  157. 

  158. // DeleteApp deletes the given oauth2 application

  159. func (oa *OAuth2CommonHandlers) DeleteApp(ctx *context.Context) {

  160. 	if err := auth.DeleteOAuth2Application(ctx, ctx.PathParamInt64("id"), oa.OwnerID); err != nil {

  161. 		ctx.ServerError("DeleteOAuth2Application", err)

  162. 		return

  163. 	}

  164. 

  165. 	ctx.Flash.Success(ctx.Tr("settings.remove_oauth2_application_success"))

  166. 	ctx.JSONRedirect(oa.BasePathList)

  167. }

  168. 

  169. // RevokeGrant revokes the grant

  170. func (oa *OAuth2CommonHandlers) RevokeGrant(ctx *context.Context) {

  171. 	if err := auth.RevokeOAuth2Grant(ctx, ctx.PathParamInt64("grantId"), oa.OwnerID); err != nil {

  172. 		ctx.ServerError("RevokeOAuth2Grant", err)

  173. 		return

  174. 	}

  175. 

  176. 	ctx.Flash.Success(ctx.Tr("settings.revoke_oauth2_grant_success"))

  177. 	ctx.JSONRedirect(oa.BasePathList)

  178. }