authorizer/server/handlers/app.go

package handlers

import (
	"encoding/json"
	"log"
	"net/http"
	"strings"

	"github.com/authorizerdev/authorizer/server/constants"
	"github.com/authorizerdev/authorizer/server/envstore"
	"github.com/authorizerdev/authorizer/server/utils"
	"github.com/gin-gonic/gin"
)

// State is the struct that holds authorizer url and redirect url
// They are provided via query string in the request
type State struct {
	AuthorizerURL string `json:"authorizerURL"`
	RedirectURL   string `json:"redirectURL"`
}

// AppHandler is the handler for the /app route
func AppHandler() gin.HandlerFunc {
	return func(c *gin.Context) {
		state := c.Query("state")

		var stateObj State

		if state == "" {
			stateObj.AuthorizerURL = envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyAuthorizerURL)
			stateObj.RedirectURL = stateObj.AuthorizerURL + "/app"

		} else {
			decodedState, err := utils.DecryptB64(state)
			if err != nil {
				c.JSON(400, gin.H{"error": "[unable to decode state] invalid state"})
				return
			}

			err = json.Unmarshal([]byte(decodedState), &stateObj)
			if err != nil {
				c.JSON(400, gin.H{"error": "[unable to parse state] invalid state"})
				return
			}
			stateObj.AuthorizerURL = strings.TrimSuffix(stateObj.AuthorizerURL, "/")
			stateObj.RedirectURL = strings.TrimSuffix(stateObj.RedirectURL, "/")

			// validate redirect url with allowed origins
			if !utils.IsValidOrigin(stateObj.RedirectURL) {
				c.JSON(400, gin.H{"error": "invalid redirect url"})
				return
			}

			if stateObj.AuthorizerURL == "" {
				c.JSON(400, gin.H{"error": "invalid authorizer url"})
				return
			}

			// validate host and domain of authorizer url
			if strings.TrimSuffix(stateObj.AuthorizerURL, "/") != envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyAuthorizerURL) {
				c.JSON(400, gin.H{"error": "invalid host url"})
				return
			}
		}

		// debug the request state
		if pusher := c.Writer.Pusher(); pusher != nil {
			// use pusher.Push() to do server push
			if err := pusher.Push("/app/build/bundle.js", nil); err != nil {
				log.Printf("Failed to push: %v", err)
			}
		}
		c.HTML(http.StatusOK, "app.tmpl", gin.H{
			"data": map[string]string{
				"authorizerURL":    stateObj.AuthorizerURL,
				"redirectURL":      stateObj.RedirectURL,
				"organizationName": envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyOrganizationName),
				"organizationLogo": envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyOrganizationLogo),
			},
		})
	}
}
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`package handlers`

			`import (`
			`"encoding/json"`
			`"log"`
			`"net/http"`
fix: add location middleware to get exact host 2021-08-04 10:25:13 +00:00			`"strings"`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00
fix: add location middleware to get exact host 2021-08-04 10:25:13 +00:00			`"github.com/authorizerdev/authorizer/server/constants"`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`"github.com/authorizerdev/authorizer/server/envstore"`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`"github.com/authorizerdev/authorizer/server/utils"`
			`"github.com/gin-gonic/gin"`
			`)`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// State is the struct that holds authorizer url and redirect url`
			`// They are provided via query string in the request`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`type State struct {`
			AuthorizerURL string `json:"authorizerURL"`
			RedirectURL string `json:"redirectURL"`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// AppHandler is the handler for the /app route`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`func AppHandler() gin.HandlerFunc {`
			`return func(c *gin.Context) {`
			`state := c.Query("state")`
fix: add location middleware to get exact host 2021-08-04 10:25:13 +00:00
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`var stateObj State`

			`if state == "" {`
fix: rename config -> env and handle env interface better 2022-01-20 11:22:37 +00:00			`stateObj.AuthorizerURL = envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyAuthorizerURL)`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`stateObj.RedirectURL = stateObj.AuthorizerURL + "/app"`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00
			`} else {`
feat: persist encrypted env 2021-12-31 08:22:10 +00:00			`decodedState, err := utils.DecryptB64(state)`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`if err != nil {`
			`c.JSON(400, gin.H{"error": "[unable to decode state] invalid state"})`
			`return`
			`}`

feat: persist encrypted env 2021-12-31 08:22:10 +00:00			`err = json.Unmarshal([]byte(decodedState), &stateObj)`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`if err != nil {`
			`c.JSON(400, gin.H{"error": "[unable to parse state] invalid state"})`
			`return`
			`}`
fix: add location middleware to get exact host 2021-08-04 10:25:13 +00:00			`stateObj.AuthorizerURL = strings.TrimSuffix(stateObj.AuthorizerURL, "/")`
			`stateObj.RedirectURL = strings.TrimSuffix(stateObj.RedirectURL, "/")`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00
			`// validate redirect url with allowed origins`
fix: add valid origin check for cors (#83) Resolves #72 2021-12-21 13:16:54 +00:00			`if !utils.IsValidOrigin(stateObj.RedirectURL) {`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`c.JSON(400, gin.H{"error": "invalid redirect url"})`
			`return`
			`}`

			`if stateObj.AuthorizerURL == "" {`
			`c.JSON(400, gin.H{"error": "invalid authorizer url"})`
			`return`
			`}`

			`// validate host and domain of authorizer url`
fix: rename config -> env and handle env interface better 2022-01-20 11:22:37 +00:00			`if strings.TrimSuffix(stateObj.AuthorizerURL, "/") != envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyAuthorizerURL) {`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`c.JSON(400, gin.H{"error": "invalid host url"})`
			`return`
			`}`
			`}`

			`// debug the request state`
			`if pusher := c.Writer.Pusher(); pusher != nil {`
			`// use pusher.Push() to do server push`
			`if err := pusher.Push("/app/build/bundle.js", nil); err != nil {`
			`log.Printf("Failed to push: %v", err)`
			`}`
			`}`
			`c.HTML(http.StatusOK, "app.tmpl", gin.H{`
			`"data": map[string]string{`
feat: add responsive email template + support for org env Resolves #52 2021-10-03 21:47:50 +00:00			`"authorizerURL": stateObj.AuthorizerURL,`
			`"redirectURL": stateObj.RedirectURL,`
fix: rename config -> env and handle env interface better 2022-01-20 11:22:37 +00:00			`"organizationName": envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyOrganizationName),`
			`"organizationLogo": envstore.EnvInMemoryStoreObj.GetStringStoreEnvVariable(constants.EnvKeyOrganizationLogo),`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`},`
			`})`
			`}`
			`}`