apps/pg
1
0
Fork 0
mirror of https://github.com/sigcn/pg.git synced 2025-10-31 12:26:35 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
ab8ea6e59e76f8fcc83705066ea0f5b9c50ea01c
pg/peermap/oidc/http.go
rkonfj ab8ea6e59e pgcli/vpn: remove oidc provider selector
2024-07-04 20:52:47 +08:00

80 lines
2.0 KiB
Go
Raw Blame History

package oidc
import (
"cmp"
"context"
"encoding/json"
"errors"
"fmt"
"net/http"
"path"
"sync"
"time"
"github.com/rkonfj/peerguard/peer"
)
var (
notifyContext = make(map[string]chan peer.NetworkSecret)
notifyContextMut sync.RWMutex
)
func NotifyToken(state string, secret peer.NetworkSecret) error {
notifyContextMut.RLock()
defer notifyContextMut.RUnlock()
if ch, ok := notifyContext[state]; ok {
ch <- secret
return nil
}
return errors.New("state not found")
}
func HandleNotifyToken(w http.ResponseWriter, r *http.Request) {
ch := make(chan peer.NetworkSecret)
state := r.URL.Query().Get("state")
notifyContextMut.Lock()
notifyContext[state] = ch
notifyContextMut.Unlock()
ctx, cancel := context.WithTimeout(context.Background(), 2*time.Minute)
defer cancel()
defer close(ch)
defer func() {
notifyContextMut.Lock()
defer notifyContextMut.Unlock()
delete(notifyContext, state)
}()
select {
case <-ctx.Done():
return
case token := <-ch:
json.NewEncoder(w).Encode(token)
}
}
func RedirectAuthURL(w http.ResponseWriter, r *http.Request) {
provider, ok := Provider(r.PathValue("provider"))
if !ok {
w.WriteHeader(http.StatusBadRequest)
fmt.Fprintf(w, "provider %s not found", r.PathValue("provider"))
return
}
authURL := provider.oAuthConfig.AuthCodeURL(r.URL.Query().Get("state"))
http.Redirect(w, r, authURL, http.StatusFound)
}
func OIDCSelector(w http.ResponseWriter, r *http.Request) {
state := r.URL.Query().Get("state")
w.Header().Set("Content-Type", "text/html")
fmt.Fprintf(w, `<meta name="viewport" content="width=device-width, initial-scale=1.0">`)
fmt.Fprintf(w, `<style>body{font-size: 18px;line-height: 26px;margin: 0;padding: 10px}</style>`)
if len(providers) == 0 {
fmt.Fprintf(w, `OIDC not configured yet`)
return
}
fmt.Fprintf(w, `<b>Select an account to authenticate: </b><br />`)
for provider := range providers {
fmt.Fprintf(w, `<a href="//%s%s?state=%s">%s</a><br />`,
cmp.Or(r.Header.Get("host"), r.Host), path.Join(r.URL.Path, provider), state, provider)
}
}
Reference in New Issue View Git Blame Copy Permalink