87 lines
2.6 KiB
Go
87 lines
2.6 KiB
Go
package handlers
|
|
|
|
import (
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
log "github.com/sirupsen/logrus"
|
|
|
|
"github.com/authorizerdev/authorizer/server/constants"
|
|
"github.com/authorizerdev/authorizer/server/memorystore"
|
|
"github.com/authorizerdev/authorizer/server/parsers"
|
|
"github.com/authorizerdev/authorizer/server/validators"
|
|
)
|
|
|
|
// State is the struct that holds authorizer url and redirect url
|
|
// They are provided via query string in the request
|
|
type State struct {
|
|
AuthorizerURL string `json:"authorizerURL"`
|
|
RedirectURL string `json:"redirectURL"`
|
|
}
|
|
|
|
// AppHandler is the handler for the /app route
|
|
func AppHandler() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
hostname := parsers.GetHost(c)
|
|
if isLoginPageDisabled, err := memorystore.Provider.GetBoolStoreEnvVariable(constants.EnvKeyDisableLoginPage); err != nil || isLoginPageDisabled {
|
|
log.Debug("Login page is disabled")
|
|
c.JSON(400, gin.H{"error": "login page is not enabled"})
|
|
return
|
|
}
|
|
|
|
redirectURI := strings.TrimSpace(c.Query("redirect_uri"))
|
|
state := strings.TrimSpace(c.Query("state"))
|
|
scopeString := strings.TrimSpace(c.Query("scope"))
|
|
|
|
var scope []string
|
|
if scopeString == "" {
|
|
scope = []string{"openid", "profile", "email"}
|
|
} else {
|
|
scope = strings.Split(scopeString, " ")
|
|
}
|
|
|
|
if redirectURI == "" {
|
|
redirectURI = hostname + "/app"
|
|
} else {
|
|
// validate redirect url with allowed origins
|
|
if !validators.IsValidOrigin(redirectURI) {
|
|
log.Debug("Invalid redirect_uri")
|
|
c.JSON(400, gin.H{"error": "invalid redirect url"})
|
|
return
|
|
}
|
|
}
|
|
|
|
// debug the request state
|
|
if pusher := c.Writer.Pusher(); pusher != nil {
|
|
// use pusher.Push() to do server push
|
|
if err := pusher.Push("/app/build/bundle.js", nil); err != nil {
|
|
log.Debug("Failed to push file path: ", err)
|
|
}
|
|
}
|
|
|
|
orgName, err := memorystore.Provider.GetStringStoreEnvVariable(constants.EnvKeyOrganizationName)
|
|
if err != nil {
|
|
log.Debug("Failed to get organization name")
|
|
c.JSON(400, gin.H{"error": "failed to get organization name"})
|
|
return
|
|
}
|
|
orgLogo, err := memorystore.Provider.GetStringStoreEnvVariable(constants.EnvKeyOrganizationLogo)
|
|
if err != nil {
|
|
log.Debug("Failed to get organization logo")
|
|
c.JSON(400, gin.H{"error": "failed to get organization logo"})
|
|
return
|
|
}
|
|
c.HTML(http.StatusOK, "app.tmpl", gin.H{
|
|
"data": map[string]interface{}{
|
|
"authorizerURL": hostname,
|
|
"redirectURL": redirectURI,
|
|
"scope": strings.Join(scope, " "),
|
|
"state": state,
|
|
"organizationName": orgName,
|
|
"organizationLogo": orgLogo,
|
|
},
|
|
})
|
|
}
|
|
}
|