Browse Source

Merge pull request #33 from matrix-org/kegan/jira-redirect

Add redirect URL for JIRA auth
pull/35/head
Kegsay 8 years ago
committed by GitHub
parent
commit
8ddd4e83d0
  1. 1
      README.md
  2. 47
      src/github.com/matrix-org/go-neb/realms/jira/jira.go

1
README.md

@ -266,6 +266,7 @@ curl -X POST localhost:4050/admin/requestAuthSession --data-binary '{
"RealmID": "jirarealm", "RealmID": "jirarealm",
"UserID": "@example:localhost", "UserID": "@example:localhost",
"Config": { "Config": {
"RedirectURL": "https://optional-url.com/to/redirect/to/after/auth"
} }
}' }'
``` ```

47
src/github.com/matrix-org/go-neb/realms/jira/jira.go

@ -39,12 +39,13 @@ type JIRARealm struct {
// JIRASession represents a single authentication session between a user and a JIRA endpoint. // JIRASession represents a single authentication session between a user and a JIRA endpoint.
// The endpoint is dictated by the realm ID. // The endpoint is dictated by the realm ID.
type JIRASession struct { type JIRASession struct {
id string // request token
userID string
realmID string
RequestSecret string
AccessToken string
AccessSecret string
id string // request token
userID string
realmID string
RequestSecret string
AccessToken string
AccessSecret string
ClientsRedirectURL string // where to redirect the client to after auth
} }
// Authenticated returns true if the user has completed the auth process // Authenticated returns true if the user has completed the auth process
@ -132,6 +133,16 @@ func (r *JIRARealm) Register() error {
// RequestAuthSession is called by a user wishing to auth with this JIRA realm // RequestAuthSession is called by a user wishing to auth with this JIRA realm
func (r *JIRARealm) RequestAuthSession(userID string, req json.RawMessage) interface{} { func (r *JIRARealm) RequestAuthSession(userID string, req json.RawMessage) interface{} {
logger := log.WithField("jira_url", r.JIRAEndpoint) logger := log.WithField("jira_url", r.JIRAEndpoint)
// check if they supplied a redirect URL
var reqBody struct {
RedirectURL string
}
if err := json.Unmarshal(req, &reqBody); err != nil {
log.WithError(err).Print("Failed to decode request body")
return nil
}
authConfig := r.oauth1Config(r.JIRAEndpoint) authConfig := r.oauth1Config(r.JIRAEndpoint)
reqToken, reqSec, err := authConfig.RequestToken() reqToken, reqSec, err := authConfig.RequestToken()
if err != nil { if err != nil {
@ -146,10 +157,11 @@ func (r *JIRARealm) RequestAuthSession(userID string, req json.RawMessage) inter
} }
_, err = database.GetServiceDB().StoreAuthSession(&JIRASession{ _, err = database.GetServiceDB().StoreAuthSession(&JIRASession{
id: reqToken,
userID: userID,
realmID: r.id,
RequestSecret: reqSec,
id: reqToken,
userID: userID,
realmID: r.id,
RequestSecret: reqSec,
ClientsRedirectURL: reqBody.RedirectURL,
}) })
if err != nil { if err != nil {
log.WithError(err).Print("Failed to store new auth session") log.WithError(err).Print("Failed to store new auth session")
@ -202,8 +214,19 @@ func (r *JIRARealm) OnReceiveRedirect(w http.ResponseWriter, req *http.Request)
failWith(logger, w, 500, "Failed to persist JIRA session", err) failWith(logger, w, 500, "Failed to persist JIRA session", err)
return return
} }
w.WriteHeader(200)
w.Write([]byte("OK!"))
if jiraSession.ClientsRedirectURL != "" {
w.WriteHeader(302)
w.Header().Set("Location", jiraSession.ClientsRedirectURL)
// technically don't need a body but *shrug*
w.Write([]byte(jiraSession.ClientsRedirectURL))
} else {
w.WriteHeader(200)
w.Write([]byte(
fmt.Sprintf("You have successfully linked your JIRA account on %s to %s",
r.JIRAEndpoint, jiraSession.UserID(),
),
))
}
} }
// AuthSession returns a JIRASession with the given parameters // AuthSession returns a JIRASession with the given parameters

Loading…
Cancel
Save