mirror of
https://github.com/casdoor/casdoor.git
synced 2025-07-02 11:20:18 +08:00
Add /api/get-app-login
This commit is contained in:
Yang Luo
@ -25,6 +25,11 @@ import (
|
||||
"github.com/casdoor/casdoor/util"
|
||||
)
|
||||
|
||||
const (
|
||||
ResponseTypeLogin = "login"
|
||||
ResponseTypeCode = "code"
|
||||
)
|
||||
|
||||
type RequestForm struct {
|
||||
Type string `json:"type"`
|
||||
|
||||
|
||||
@ -26,9 +26,44 @@ import (
|
||||
"golang.org/x/oauth2"
|
||||
)
|
||||
|
||||
func (c *ApiController) HandleLoggedIn(userId string) {
|
||||
c.SetSessionUser(userId)
|
||||
util.LogInfo(c.Ctx, "API: [%s] signed in", userId)
|
||||
func (c *ApiController) HandleLoggedIn(userId string, form *RequestForm) *Response {
|
||||
resp := &Response{}
|
||||
if form.Type == ResponseTypeLogin {
|
||||
c.SetSessionUser(userId)
|
||||
util.LogInfo(c.Ctx, "API: [%s] signed in", userId)
|
||||
resp = nil
|
||||
} else if form.Type == ResponseTypeCode {
|
||||
clientId := c.Input().Get("clientId")
|
||||
responseType := c.Input().Get("responseType")
|
||||
redirectUri := c.Input().Get("redirectUri")
|
||||
scope := c.Input().Get("scope")
|
||||
state := c.Input().Get("state")
|
||||
|
||||
code := object.GetOAuthCode(userId, clientId, responseType, redirectUri, scope, state)
|
||||
resp = codeToResponse(code)
|
||||
} else {
|
||||
resp = &Response{Status: "error", Msg: fmt.Sprintf("unknown response type: %s", form.Type)}
|
||||
}
|
||||
return resp
|
||||
}
|
||||
|
||||
func (c *ApiController) GetApplicationLogin() {
|
||||
var resp Response
|
||||
|
||||
clientId := c.Input().Get("clientId")
|
||||
responseType := c.Input().Get("responseType")
|
||||
redirectUri := c.Input().Get("redirectUri")
|
||||
scope := c.Input().Get("scope")
|
||||
state := c.Input().Get("state")
|
||||
|
||||
msg, application := object.CheckOAuthLogin(clientId, responseType, redirectUri, scope, state)
|
||||
if msg != "" {
|
||||
resp = Response{Status: "error", Msg: msg, Data: application}
|
||||
} else {
|
||||
resp = Response{Status: "ok", Msg: "", Data: application}
|
||||
}
|
||||
c.Data["json"] = resp
|
||||
c.ServeJSON()
|
||||
}
|
||||
|
||||
func (c *ApiController) Login() {
|
||||
@ -54,7 +89,7 @@ func (c *ApiController) Login() {
|
||||
if msg != "" {
|
||||
resp = Response{Status: "error", Msg: msg, Data: ""}
|
||||
} else {
|
||||
c.HandleLoggedIn(userId)
|
||||
c.HandleLoggedIn(userId, &form)
|
||||
resp = Response{Status: "ok", Msg: "", Data: userId}
|
||||
}
|
||||
} else if form.Provider != "" {
|
||||
@ -116,7 +151,7 @@ func (c *ApiController) Login() {
|
||||
// object.LinkMemberAccount(userId, "avatar", avatar)
|
||||
//}
|
||||
|
||||
c.HandleLoggedIn(userId)
|
||||
c.HandleLoggedIn(userId, &form)
|
||||
} else {
|
||||
//if object.IsForbidden(userId) {
|
||||
// c.forbiddenAccountResp(userId)
|
||||
@ -124,7 +159,7 @@ func (c *ApiController) Login() {
|
||||
//}
|
||||
|
||||
if userId := object.GetUserIdByField(application, "email", res.Email); userId != "" {
|
||||
c.HandleLoggedIn(userId)
|
||||
c.HandleLoggedIn(userId, &form)
|
||||
|
||||
if provider.Type == "github" {
|
||||
_ = object.LinkUserAccount(userId, "github", res.Method)
|
||||
|
||||
@ -69,11 +69,11 @@ func (c *ApiController) DeleteToken() {
|
||||
c.ServeJSON()
|
||||
}
|
||||
|
||||
func codeToResponse(code *object.Code) Response {
|
||||
func codeToResponse(code *object.Code) *Response {
|
||||
if code.Code == "" {
|
||||
return Response{Status: "error", Msg: code.Message, Data: code.Code}
|
||||
return &Response{Status: "error", Msg: code.Message, Data: code.Code}
|
||||
} else {
|
||||
return Response{Status: "ok", Msg: "success", Data: code.Code}
|
||||
return &Response{Status: "ok", Msg: "success", Data: code.Code}
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
@ -123,6 +123,30 @@ func DeleteToken(token *Token) bool {
|
||||
return affected != 0
|
||||
}
|
||||
|
||||
func CheckOAuthLogin(clientId string, responseType string, redirectUri string, scope string, state string) (string, *Application) {
|
||||
if responseType != "code" {
|
||||
return "response_type should be \"code\"", nil
|
||||
}
|
||||
|
||||
application := getApplicationByClientId(clientId)
|
||||
if application == nil {
|
||||
return "invalid client_id", nil
|
||||
}
|
||||
|
||||
validUri := false
|
||||
for _, tmpUri := range application.RedirectUris {
|
||||
if strings.Contains(redirectUri, tmpUri) {
|
||||
validUri = true
|
||||
break
|
||||
}
|
||||
}
|
||||
if !validUri {
|
||||
return "redirect_uri doesn't exist in the allowed Redirect URL list", application
|
||||
}
|
||||
|
||||
return "", application
|
||||
}
|
||||
|
||||
func GetOAuthCode(userId string, clientId string, responseType string, redirectUri string, scope string, state string) *Code {
|
||||
if userId == "" {
|
||||
return &Code{
|
||||
|
||||
@ -35,6 +35,7 @@ func initAPI() {
|
||||
|
||||
beego.Router("/api/register", &controllers.ApiController{}, "POST:Register")
|
||||
beego.Router("/api/login", &controllers.ApiController{}, "POST:Login")
|
||||
beego.Router("/api/get-app-login", &controllers.ApiController{}, "GET:GetApplicationLogin")
|
||||
beego.Router("/api/logout", &controllers.ApiController{}, "POST:Logout")
|
||||
beego.Router("/api/get-account", &controllers.ApiController{}, "GET:GetAccount")
|
||||
|
||||
|
||||
Reference in New Issue
Block a user