pronounscc/backend/routes/auth/routes.go

64 lines
1.5 KiB
Go
Raw Normal View History

2022-05-02 17:19:37 +02:00
package auth
import (
"net/http"
"codeberg.org/u1f320/pronouns.cc/backend/log"
"codeberg.org/u1f320/pronouns.cc/backend/server"
"emperror.dev/errors"
2022-05-02 17:19:37 +02:00
"github.com/go-chi/chi/v5"
"github.com/go-chi/render"
2022-05-02 17:19:37 +02:00
)
type Server struct {
*server.Server
}
func Mount(srv *server.Server, r chi.Router) {
s := &Server{srv}
r.Route("/auth", func(r chi.Router) {
// generate csrf token, returns all supported OAuth provider URLs
2022-05-12 16:41:32 +02:00
r.Post("/urls", server.WrapHandler(s.oauthURLs))
2022-05-02 17:19:37 +02:00
r.Route("/discord", func(r chi.Router) {
// takes code + state, validates it, returns token OR discord signup ticket
2022-05-12 16:41:32 +02:00
r.Post("/callback", server.WrapHandler(s.discordCallback))
// takes discord signup ticket to register account
r.Post("/signup", nil)
2022-05-02 17:19:37 +02:00
})
})
}
type oauthURLsRequest struct {
2022-05-12 16:41:32 +02:00
CallbackDomain string `json:"callback_domain"`
}
type oauthURLsResponse struct {
Discord string `json:"discord"`
}
func (s *Server) oauthURLs(w http.ResponseWriter, r *http.Request) error {
req, err := Decode[oauthURLsRequest](r)
if err != nil {
2022-05-12 16:41:32 +02:00
log.Error(err)
return server.APIError{Code: server.ErrBadRequest}
}
// generate CSRF state
state, err := s.setCSRFState(r.Context())
if err != nil {
return errors.Wrap(err, "setting CSRF state")
}
// copy Discord config and set redirect url
discordCfg := discordOAuthConfig
2022-05-12 16:41:32 +02:00
discordCfg.RedirectURL = req.CallbackDomain + "/login/discord"
render.JSON(w, r, oauthURLsResponse{
Discord: discordCfg.AuthCodeURL(state),
})
return nil
}