41 lines
1.1 KiB
Go
41 lines
1.1 KiB
Go
package oauth
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
|
|
"gitea.local/admin/hspguard/internal/web"
|
|
)
|
|
|
|
// client_id=gitea-client&redirect_uri=https://git.adalspace.com/user/oauth2/Home%20Guard/callback&response_type=code&scope=openid&state=4c3b4a25-9cf9-4b18-afc0-270e1078eb40
|
|
func (h *OAuthHandler) AuthorizeClient(w http.ResponseWriter, r *http.Request) {
|
|
redirectUri := r.URL.Query().Get("redirect_uri")
|
|
if redirectUri == "" {
|
|
web.Error(w, "redirect_uri is missing in request", http.StatusBadRequest)
|
|
return
|
|
}
|
|
|
|
state := r.URL.Query().Get("state")
|
|
|
|
clientId := r.URL.Query().Get("client_id")
|
|
if clientId == "" {
|
|
uri := fmt.Sprintf("%s?error=invalid_request&error_description=ClientID+is+missing", redirectUri)
|
|
if state != "" {
|
|
uri += "&state=" + state
|
|
}
|
|
http.Redirect(w, r, uri, http.StatusFound)
|
|
return
|
|
}
|
|
|
|
if uri, err := h.verifyOAuthClient(w, r, &VerifyOAuthClientParams{
|
|
ClientID: clientId,
|
|
RedirectURI: redirectUri,
|
|
State: state,
|
|
}); err != nil {
|
|
http.Redirect(w, r, uri, http.StatusFound)
|
|
return
|
|
}
|
|
|
|
http.Redirect(w, r, fmt.Sprintf("/auth?%s", r.URL.Query().Encode()), http.StatusFound)
|
|
}
|