wangwei
/
aiforge
Not watched
1
0
Fork 0
Code
Releases 128 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: b3e757a06c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b3e757a06c'
${ noResults }
aiforge/vendor/github.com/markbates/goth/providers/gplus/gplus.go

196 lines
5.3 kB
Raw Blame History 

  1. // Package gplus implements the OAuth2 protocol for authenticating users through Google+.

  2. // This package can be used as a reference implementation of an OAuth2 provider for Goth.

  3. package gplus

  4. 

  5. import (

  6. 	"bytes"

  7. 	"encoding/json"

  8. 	"io"

  9. 	"io/ioutil"

  10. 	"net/http"

  11. 	"net/url"

  12. 	"strings"

  13. 

  14. 	"fmt"

  15. 	"github.com/markbates/goth"

  16. 	"golang.org/x/oauth2"

  17. )

  18. 

  19. const (

  20. 	authURL         string = "https://accounts.google.com/o/oauth2/auth?access_type=offline"

  21. 	tokenURL        string = "https://accounts.google.com/o/oauth2/token"

  22. 	endpointProfile string = "https://www.googleapis.com/oauth2/v2/userinfo"

  23. )

  24. 

  25. // New creates a new Google+ provider, and sets up important connection details.

  26. // You should always call `gplus.New` to get a new Provider. Never try to create

  27. // one manually.

  28. func New(clientKey, secret, callbackURL string, scopes ...string) *Provider {

  29. 	p := &Provider{

  30. 		ClientKey:    clientKey,

  31. 		Secret:       secret,

  32. 		CallbackURL:  callbackURL,

  33. 		providerName: "gplus",

  34. 	}

  35. 	p.config = newConfig(p, scopes)

  36. 	return p

  37. }

  38. 

  39. // Provider is the implementation of `goth.Provider` for accessing Google+.

  40. type Provider struct {

  41. 	ClientKey    string

  42. 	Secret       string

  43. 	CallbackURL  string

  44. 	HTTPClient   *http.Client

  45. 	config       *oauth2.Config

  46. 	prompt       oauth2.AuthCodeOption

  47. 	providerName string

  48. }

  49. 

  50. // Name is the name used to retrieve this provider later.

  51. func (p *Provider) Name() string {

  52. 	return p.providerName

  53. }

  54. 

  55. // SetName is to update the name of the provider (needed in case of multiple providers of 1 type)

  56. func (p *Provider) SetName(name string) {

  57. 	p.providerName = name

  58. }

  59. 

  60. func (p *Provider) Client() *http.Client {

  61. 	return goth.HTTPClientWithFallBack(p.HTTPClient)

  62. }

  63. 

  64. // Debug is a no-op for the gplus package.

  65. func (p *Provider) Debug(debug bool) {}

  66. 

  67. // BeginAuth asks Google+ for an authentication end-point.

  68. func (p *Provider) BeginAuth(state string) (goth.Session, error) {

  69. 	var opts []oauth2.AuthCodeOption

  70. 	if p.prompt != nil {

  71. 		opts = append(opts, p.prompt)

  72. 	}

  73. 	url := p.config.AuthCodeURL(state, opts...)

  74. 	session := &Session{

  75. 		AuthURL: url,

  76. 	}

  77. 	return session, nil

  78. }

  79. 

  80. // FetchUser will go to Google+ and access basic information about the user.

  81. func (p *Provider) FetchUser(session goth.Session) (goth.User, error) {

  82. 	sess := session.(*Session)

  83. 	user := goth.User{

  84. 		AccessToken:  sess.AccessToken,

  85. 		Provider:     p.Name(),

  86. 		RefreshToken: sess.RefreshToken,

  87. 		ExpiresAt:    sess.ExpiresAt,

  88. 	}

  89. 

  90. 	if user.AccessToken == "" {

  91. 		// data is not yet retrieved since accessToken is still empty

  92. 		return user, fmt.Errorf("%s cannot get user information without accessToken", p.providerName)

  93. 	}

  94. 

  95. 	response, err := p.Client().Get(endpointProfile + "?access_token=" + url.QueryEscape(sess.AccessToken))

  96. 	if err != nil {

  97. 		return user, err

  98. 	}

  99. 	defer response.Body.Close()

  100. 

  101. 	if response.StatusCode != http.StatusOK {

  102. 		return user, fmt.Errorf("%s responded with a %d trying to fetch user information", p.providerName, response.StatusCode)

  103. 	}

  104. 

  105. 	bits, err := ioutil.ReadAll(response.Body)

  106. 	if err != nil {

  107. 		return user, err

  108. 	}

  109. 

  110. 	err = json.NewDecoder(bytes.NewReader(bits)).Decode(&user.RawData)

  111. 	if err != nil {

  112. 		return user, err

  113. 	}

  114. 

  115. 	err = userFromReader(bytes.NewReader(bits), &user)

  116. 	return user, err

  117. }

  118. 

  119. func userFromReader(reader io.Reader, user *goth.User) error {

  120. 	u := struct {

  121. 		ID        string `json:"id"`

  122. 		Email     string `json:"email"`

  123. 		Name      string `json:"name"`

  124. 		FirstName string `json:"given_name"`

  125. 		LastName  string `json:"family_name"`

  126. 		Link      string `json:"link"`

  127. 		Picture   string `json:"picture"`

  128. 	}{}

  129. 

  130. 	err := json.NewDecoder(reader).Decode(&u)

  131. 	if err != nil {

  132. 		return err

  133. 	}

  134. 

  135. 	user.Name = u.Name

  136. 	user.FirstName = u.FirstName

  137. 	user.LastName = u.LastName

  138. 	user.NickName = u.Name

  139. 	user.Email = u.Email

  140. 	//user.Description = u.Bio

  141. 	user.AvatarURL = u.Picture

  142. 	user.UserID = u.ID

  143. 	//user.Location = u.Location.Name

  144. 

  145. 	return err

  146. }

  147. 

  148. func newConfig(provider *Provider, scopes []string) *oauth2.Config {

  149. 	c := &oauth2.Config{

  150. 		ClientID:     provider.ClientKey,

  151. 		ClientSecret: provider.Secret,

  152. 		RedirectURL:  provider.CallbackURL,

  153. 		Endpoint: oauth2.Endpoint{

  154. 			AuthURL:  authURL,

  155. 			TokenURL: tokenURL,

  156. 		},

  157. 		Scopes: []string{},

  158. 	}

  159. 

  160. 	if len(scopes) > 0 {

  161. 		for _, scope := range scopes {

  162. 			c.Scopes = append(c.Scopes, scope)

  163. 		}

  164. 	} else {

  165. 		c.Scopes = []string{"profile", "email", "openid"}

  166. 	}

  167. 	return c

  168. }

  169. 

  170. //RefreshTokenAvailable refresh token is provided by auth provider or not

  171. func (p *Provider) RefreshTokenAvailable() bool {

  172. 	return true

  173. }

  174. 

  175. //RefreshToken get new access token based on the refresh token

  176. func (p *Provider) RefreshToken(refreshToken string) (*oauth2.Token, error) {

  177. 	token := &oauth2.Token{RefreshToken: refreshToken}

  178. 	ts := p.config.TokenSource(goth.ContextForClient(p.Client()), token)

  179. 	newToken, err := ts.Token()

  180. 	if err != nil {

  181. 		return nil, err

  182. 	}

  183. 	return newToken, err

  184. }

  185. 

  186. // SetPrompt sets the prompt values for the GPlus OAuth call. Use this to

  187. // force users to choose and account every time by passing "select_account",

  188. // for example.

  189. // See https://developers.google.com/identity/protocols/OpenIDConnect#authenticationuriparameters

  190. func (p *Provider) SetPrompt(prompt ...string) {

  191. 	if len(prompt) == 0 {

  192. 		return

  193. 	}

  194. 	p.prompt = oauth2.SetAuthURLParam("prompt", strings.Join(prompt, " "))

  195. }