feat: get phone number and country from Google OAuth provider (#2965)

* feat: get phone number and country from Google OAuth provider * feat: fix i18n
2025-05-24 08:20:31 +08:00 · 2024-05-23 00:42:36 +08:00 · 2024-05-23 00:42:36 +08:00 · af2a9f0374
commit af2a9f0374
parent bfcfb56336
27 changed files with 119 additions and 3 deletions
--- a/idp/google.go
+++ b/idp/google.go
@ -25,6 +25,7 @@ import (
 	"time"

 	"github.com/casdoor/casdoor/util"
+	"github.com/nyaruka/phonenumbers"
 	"golang.org/x/oauth2"
 )

@ -130,6 +131,23 @@ type GoogleUserInfo struct {
 	Locale        string `json:"locale"`
 }

+type GooglePeopleApiPhoneNumberMetaData struct {
+	Primary bool `json:"primary"`
+}
+
+type GooglePeopleApiPhoneNumber struct {
+	CanonicalForm string                             `json:"canonicalForm"`
+	MetaData      GooglePeopleApiPhoneNumberMetaData `json:"metadata"`
+	Value         string                             `json:"value"`
+	Type          string                             `json:"type"`
+}
+
+type GooglePeopleApiResult struct {
+	PhoneNumbers []GooglePeopleApiPhoneNumber `json:"phoneNumbers"`
+	Etag         string                       `json:"etag"`
+	ResourceName string                       `json:"resourceName"`
+}
+
 func (idp *GoogleIdProvider) GetUserInfo(token *oauth2.Token) (*UserInfo, error) {
 	if strings.HasPrefix(token.AccessToken, GoogleIdTokenKey) {
 		googleIdToken, ok := token.Extra(GoogleIdTokenKey).(GoogleIdToken)
@ -167,12 +185,49 @@ func (idp *GoogleIdProvider) GetUserInfo(token *oauth2.Token) (*UserInfo, error)
 		return nil, errors.New("google email is empty")
 	}

+	url = fmt.Sprintf("https://people.googleapis.com/v1/people/me?personFields=phoneNumbers&access_token=%s", token.AccessToken)
+	resp, err = idp.Client.Get(url)
+	if err != nil {
+		return nil, err
+	}
+
+	defer resp.Body.Close()
+	body, err = io.ReadAll(resp.Body)
+	if err != nil {
+		return nil, err
+	}
+
+	var googlePeopleResult GooglePeopleApiResult
+	err = json.Unmarshal(body, &googlePeopleResult)
+	if err != nil {
+		return nil, err
+	}
+
+	var phoneNumber string
+	var countryCode string
+	if len(googlePeopleResult.PhoneNumbers) != 0 {
+		for _, phoneData := range googlePeopleResult.PhoneNumbers {
+			if phoneData.MetaData.Primary {
+				phoneNumber = phoneData.CanonicalForm
+				break
+			}
+		}
+		phoneNumberParsed, err := phonenumbers.Parse(phoneNumber, "")
+		if err != nil {
+			return nil, err
+		}
+		countryCode = phonenumbers.GetRegionCodeForNumber(phoneNumberParsed)
+		phoneNumber = fmt.Sprintf("%d", phoneNumberParsed.GetNationalNumber())
+	}
+
 	userInfo := UserInfo{
 		Id:          googleUserInfo.Id,
 		Username:    googleUserInfo.Email,
 		DisplayName: googleUserInfo.Name,
 		Email:       googleUserInfo.Email,
 		AvatarUrl:   googleUserInfo.Picture,
+		Phone:       phoneNumber,
+		CountryCode: countryCode,
 	}
 	return &userInfo, nil
 }
--- a/object/provider.go
+++ b/object/provider.go
@ -50,7 +50,7 @@ type Provider struct {

 	Host       string `xorm:"varchar(100)" json:"host"`
 	Port       int    `json:"port"`
-	DisableSsl bool   `json:"disableSsl"` // If the provider type is WeChat, DisableSsl means EnableQRCode
+	DisableSsl bool   `json:"disableSsl"` // If the provider type is WeChat, DisableSsl means EnableQRCode, if type is Google, it means sync phone number
 	Title      string `xorm:"varchar(100)" json:"title"`
 	Content    string `xorm:"varchar(2000)" json:"content"` // If provider type is WeChat, Content means QRCode string by Base64 encoding
 	Receiver   string `xorm:"varchar(100)" json:"receiver"`
--- a/web/src/ProviderEditPage.js
+++ b/web/src/ProviderEditPage.js
@ -832,6 +832,20 @@ class ProviderEditPage extends React.Component {
            </React.Fragment>
          )
        }
+        {
+          this.state.provider.type !== "Google" ? null : (
+            <Row style={{marginTop: "20px"}} >
+              <Col style={{marginTop: "5px"}} span={(Setting.isMobile()) ? 22 : 2}>
+                {Setting.getLabel(i18next.t("provider:Get phone number"), i18next.t("provider:Get phone number - Tooltip"))} :
+              </Col>
+              <Col span={1} >
+                <Switch disabled={!this.state.provider.clientId} checked={this.state.provider.disableSsl} onChange={checked => {
+                  this.updateProviderField("disableSsl", checked);
+                }} />
+              </Col>
+            </Row>
+          )
+        }
        {
          this.state.provider.type !== "ADFS" && this.state.provider.type !== "AzureAD" && this.state.provider.type !== "AzureADB2C" && this.state.provider.type !== "Casdoor" && this.state.provider.type !== "Okta" ? null : (
            <Row style={{marginTop: "20px"}} >
--- a/web/src/auth/Provider.js
+++ b/web/src/auth/Provider.js
@ -384,8 +384,7 @@ export function getAuthUrl(application, provider, method, code) {

  let endpoint = authInfo[provider.type].endpoint;
  let redirectUri = `${window.location.origin}/callback`;
-  const scope = authInfo[provider.type].scope;
-
+  let scope = authInfo[provider.type].scope;
  const isShortState = (provider.type === "WeChat" && navigator.userAgent.includes("MicroMessenger")) || (provider.type === "Twitter");
  const state = Util.getStateFromQueryParams(application.name, provider.name, method, isShortState);
  const codeChallenge = "P3S-a7dr8bgM4bF6vOyiKkKETDl16rcAzao9F8UIL1Y"; // SHA256(Base64-URL-encode("casdoor-verifier"))
@ -396,6 +395,8 @@ export function getAuthUrl(application, provider, method, code) {
    }
  } else if (provider.type === "Apple") {
    redirectUri = `${window.location.origin}/api/callback`;
+  } else if (provider.type === "Google" && provider.disableSsl) {
+    scope += "+https://www.googleapis.com/auth/user.phonenumbers.read";
  }

  if (provider.type === "Google" || provider.type === "GitHub" || provider.type === "QQ" || provider.type === "Facebook"
--- a/web/src/locales/ar/data.json
+++ b/web/src/locales/ar/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/de/data.json
+++ b/web/src/locales/de/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name des Hosts",
    "IdP": "IdP",
--- a/web/src/locales/en/data.json
+++ b/web/src/locales/en/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/es/data.json
+++ b/web/src/locales/es/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Anfitrión",
    "Host - Tooltip": "Nombre del anfitrión",
    "IdP": "IdP = Proveedor de Identidad",
--- a/web/src/locales/fa/data.json
+++ b/web/src/locales/fa/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/fi/data.json
+++ b/web/src/locales/fi/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/fr/data.json
+++ b/web/src/locales/fr/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "L'adresse e-mail affichée comme expéditeur dans les e-mails envoyés",
    "From name": "Nom de l'expéditeur",
    "From name - Tooltip": "Le nom affiché comme expéditeur dans les e-mails envoyés",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Hôte",
    "Host - Tooltip": "Nom d'hôte",
    "IdP": "IdP (Identité Fournisseur)",
--- a/web/src/locales/he/data.json
+++ b/web/src/locales/he/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/id/data.json
+++ b/web/src/locales/id/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Tuan rumah",
    "Host - Tooltip": "Nama tuan rumah",
    "IdP": "IdP",
--- a/web/src/locales/it/data.json
+++ b/web/src/locales/it/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/ja/data.json
+++ b/web/src/locales/ja/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "ホスト",
    "Host - Tooltip": "ホストの名前",
    "IdP": "IdP",
--- a/web/src/locales/kk/data.json
+++ b/web/src/locales/kk/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/ko/data.json
+++ b/web/src/locales/ko/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "호스트",
    "Host - Tooltip": "호스트의 이름",
    "IdP": "IdP",
--- a/web/src/locales/ms/data.json
+++ b/web/src/locales/ms/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/nl/data.json
+++ b/web/src/locales/nl/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/pl/data.json
+++ b/web/src/locales/pl/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/pt/data.json
+++ b/web/src/locales/pt/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Endereço de e-mail do remetente",
    "From name": "Nome do remetente",
    "From name - Tooltip": "Nome do remetente",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Nome do host",
    "IdP": "IdP",
--- a/web/src/locales/ru/data.json
+++ b/web/src/locales/ru/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Хост",
    "Host - Tooltip": "Имя хоста",
    "IdP": "ИдП",
--- a/web/src/locales/sv/data.json
+++ b/web/src/locales/sv/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/tr/data.json
+++ b/web/src/locales/tr/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Email address of \"From\"",
    "From name": "From name",
    "From name - Tooltip": "Name of \"From\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Host",
    "Host - Tooltip": "Name of host",
    "IdP": "IdP",
--- a/web/src/locales/uk/data.json
+++ b/web/src/locales/uk/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "Електронна адреса \"Від\"",
    "From name": "Від імені",
    "From name - Tooltip": "Назва \"Від\"",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Хост",
    "Host - Tooltip": "Ім'я хоста",
    "IdP": "IDP",
--- a/web/src/locales/vi/data.json
+++ b/web/src/locales/vi/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "From address - Tooltip",
    "From name": "From name",
    "From name - Tooltip": "From name - Tooltip",
+    "Get phone number": "Get phone number",
+    "Get phone number - Tooltip": "If sync phone number is enabled, you should enable google people api first and add scope https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "Chủ nhà",
    "Host - Tooltip": "Tên của người chủ chỗ ở",
    "IdP": "IdP",
--- a/web/src/locales/zh/data.json
+++ b/web/src/locales/zh/data.json
@ -778,6 +778,8 @@
    "From address - Tooltip": "邮件里发件人的邮箱地址",
    "From name": "发件人名称",
    "From name - Tooltip": "邮件里发件人的显示名称",
+    "Get phone number": "获取手机号码",
+    "Get phone number - Tooltip": "如果启用获取手机号码，你需要先启用peopleApi并添加范围https://www.googleapis.com/auth/user.phonenumbers.read",
    "Host": "主机",
    "Host - Tooltip": "主机名",
    "IdP": "身份提供商",