FilesExpand file tree

 master

/

callback.go

Copy path

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

69 lines (57 loc) · 2.02 KB

 master

/

callback.go

Top

File metadata and controls

• Code
• Blame

69 lines (57 loc) · 2.02 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

// Copyright © 2019 The Things Network Foundation, The Things Industries B.V.

//

// Licensed under the Apache License, Version 2.0 (the "License");

// you may not use this file except in compliance with the License.

// You may obtain a copy of the License at

//

// http://www.apache.org/licenses/LICENSE-2.0

//

// Unless required by applicable law or agreed to in writing, software

// distributed under the License is distributed on an "AS IS" BASIS,

// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

// See the License for the specific language governing permissions and

// limitations under the License.

package console

import (

"net/http"

echo "github.com/labstack/echo/v4"

)

// Callback is the OAuth callback that accepts the authorization code

// and exchanges it for an access token (+ refresh token). The access token is

// stored in the authorization cookie for later reference.

func (console *Console) Callback(c echo.Context) error {

if e := c.QueryParam("error"); e != "" {

return echo.NewHTTPError(http.StatusUnauthorized, c.QueryParam("error_description"))

}

state := c.QueryParam("state")

if state == "" {

return echo.NewHTTPError(http.StatusBadRequest, "No state parameter present in request")

}

code := c.QueryParam("code")

if code == "" {

return echo.NewHTTPError(http.StatusBadRequest, "No code parameter present in request")

}

stateCookie, err := console.getStateCookie(c)

if err != nil {

return err

}

if stateCookie.Secret != state {

return echo.NewHTTPError(http.StatusBadRequest, "Invalid state")

}

// Exchange token.

token, err := console.oauth(c).Exchange(c.Request().Context(), code)

if err != nil {

return err

}

// Remove state cookie.

console.removeStateCookie(c)

err = console.setAuthCookie(c, authCookie{

AccessToken: token.AccessToken,

RefreshToken: token.RefreshToken,

Expiry: token.Expiry,

})

if err != nil {

return err

}

return c.Redirect(http.StatusFound, console.configFromContext(c.Request().Context()).UI.CanonicalURL+stateCookie.Next)

}