jds
/
gogs


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117
							// Copyright 2014 The Gogs Authors. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.

package user

import (
	"encoding/json"
	"fmt"
	"net/url"
	"strings"

	"code.google.com/p/goauth2/oauth"

	"github.com/go-martini/martini"
	"github.com/gogits/gogs/models"
	"github.com/gogits/gogs/modules/base"
	"github.com/gogits/gogs/modules/log"
	"github.com/gogits/gogs/modules/middleware"
)

type BasicUserInfo struct {
	Identity string
	Name     string
	Email    string
}

type SocialConnector interface {
	Type() int
	SetRedirectUrl(string)
	UserInfo(*oauth.Token, *url.URL) (*BasicUserInfo, error)

	AuthCodeURL(string) string
	Exchange(string) (*oauth.Token, error)
}

func extractPath(next string) string {
	n, err := url.Parse(next)
	if err != nil {
		return "/"
	}
	return n.Path
}

var (
	SocialBaseUrl = "/user/login"
	SocialMap     = make(map[string]SocialConnector)
)

// github && google && ...
func SocialSignIn(params martini.Params, ctx *middleware.Context) {
	if base.OauthService == nil || !base.OauthService.GitHub.Enabled {
		ctx.Handle(404, "social login not enabled", nil)
		return
	}
	next := extractPath(ctx.Query("next"))
	name := params["name"]
	connect, ok := SocialMap[name]
	if !ok {
		ctx.Handle(404, "social login", nil)
		return
	}
	code := ctx.Query("code")
	if code == "" {
		// redirect to social login page
		connect.SetRedirectUrl(strings.TrimSuffix(base.AppUrl, "/") + ctx.Req.URL.Host + ctx.Req.URL.Path)
		ctx.Redirect(connect.AuthCodeURL(next))
		return
	}

	// handle call back
	tk, err := connect.Exchange(code) // exchange for token
	if err != nil {
		log.Error("oauth2 handle callback error: %v", err)
		ctx.Handle(500, "exchange code error", nil)
		return
	}
	next = extractPath(ctx.Query("state"))
	log.Trace("success get token")

	ui, err := connect.UserInfo(tk, ctx.Req.URL)
	if err != nil {
		ctx.Handle(500, fmt.Sprintf("get infomation from %s error: %v", name, err), nil)
		log.Error("social connect error: %s", err)
		return
	}
	log.Info("social login: %s", ui)
	oa, err := models.GetOauth2(ui.Identity)
	switch err {
	case nil:
		ctx.Session.Set("userId", oa.User.Id)
		ctx.Session.Set("userName", oa.User.Name)
	case models.ErrOauth2RecordNotExists:
		oa = &models.Oauth2{}
		raw, _ := json.Marshal(tk) // json encode
		oa.Token = string(raw)
		oa.Uid = -1
		oa.Type = connect.Type()
		oa.Identity = ui.Identity
		log.Trace("oa: %v", oa)
		if err = models.AddOauth2(oa); err != nil {
			log.Error("add oauth2 %v", err) // 501
			return
		}
	case models.ErrOauth2NotAssociatedWithUser:
		next = "/user/sign_up"
	default:
		log.Error("other error: %v", err)
		ctx.Handle(500, err.Error(), nil)
		return
	}
	ctx.Session.Set("socialId", oa.Id)
	ctx.Session.Set("socialName", ui.Name)
	ctx.Session.Set("socialEmail", ui.Email)
	log.Trace("socialId: %v", oa.Id)
	ctx.Redirect(next)
}