llvy.ltd/casdoor
1
0
Fork 0
mirror of https://github.com/casdoor/casdoor.git synced 2025-05-24 08:20:31 +08:00
Code Issues Packages Projects Releases Wiki Activity

feat: authorize via clientId and clientSecret

Browse Source 
Signed-off-by: Kininaru <shiftregister233@outlook.com>
This commit is contained in:
Kininaru 2021-06-06 17:27:03 +08:00
parent ec5a574ce6
commit 56be5f9a51
3 changed files with 20 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
object/application.go
View File

@ -116,7 +116,7 @@ func GetApplicationByUser(user *User) *Application {
return GetApplicationByOrganizationName(user.Owner) return GetApplicationByOrganizationName(user.Owner)
} }
func getApplicationByClientId(clientId string) *Application { func GetApplicationByClientId(clientId string) *Application {
application := Application{} application := Application{}
existed, err := adapter.Engine.Where("client_id=?", clientId).Get(&application) existed, err := adapter.Engine.Where("client_id=?", clientId).Get(&application)
if err != nil { if err != nil {

4
object/token.go
View File

@ -129,7 +129,7 @@ func CheckOAuthLogin(clientId string, responseType string, redirectUri string, s
return "response_type should be \"code\"", nil return "response_type should be \"code\"", nil
} }
application := getApplicationByClientId(clientId) application := GetApplicationByClientId(clientId)
if application == nil { if application == nil {
return "Invalid client_id", nil return "Invalid client_id", nil
} }
@ -192,7 +192,7 @@ func GetOAuthCode(userId string, clientId string, responseType string, redirectU
} }
func GetOAuthToken(grantType string, clientId string, clientSecret string, code string) *TokenWrapper { func GetOAuthToken(grantType string, clientId string, clientSecret string, code string) *TokenWrapper {
application := getApplicationByClientId(clientId) application := GetApplicationByClientId(clientId)
if application == nil { if application == nil {
return &TokenWrapper{ return &TokenWrapper{
AccessToken: "error: invalid client_id", AccessToken: "error: invalid client_id",

17
routers/authz_filter.go
View File

@ -23,6 +23,7 @@ import (
"github.com/astaxie/beego/context" "github.com/astaxie/beego/context"
"github.com/casdoor/casdoor/authz" "github.com/casdoor/casdoor/authz"
"github.com/casdoor/casdoor/controllers" "github.com/casdoor/casdoor/controllers"
"github.com/casdoor/casdoor/object"
"github.com/casdoor/casdoor/util" "github.com/casdoor/casdoor/util"
) )
@ -41,6 +42,22 @@ func getUsername(ctx *context.Context) (username string) {
// bug in Beego: this call will panic when file session store is empty // bug in Beego: this call will panic when file session store is empty
// so we catch the panic // so we catch the panic
username = ctx.Input.Session("username").(string) username = ctx.Input.Session("username").(string)
if len(username) == 0 {
query := ctx.Request.URL.RawQuery
clientId := parseQuery(query, "clientId")
clientSecret := parseQuery(query, "clientSecret")
if len(clientId) == 0 || len(clientSecret) == 0 {
return
}
app := object.GetApplicationByClientId(clientId)
if app == nil || app.ClientSecret != clientSecret {
return
}
return "built-in/service"
}
return return
} }