mirror of
https://github.com/gogs/gogs.git
synced 2026-01-26 09:09:23 +01:00
auth: decouple types and functions from db (#6320)
This commit is contained in:
ᴜɴᴋɴᴡᴏɴ
GitHub
58
internal/auth/github/config.go
Normal file
58
internal/auth/github/config.go
Normal file
@@ -0,0 +1,58 @@
|
||||
// Copyright 2020 The Gogs Authors. All rights reserved.
|
||||
// Use of this source code is governed by a MIT-style
|
||||
// license that can be found in the LICENSE file.
|
||||
|
||||
package github
|
||||
|
||||
import (
|
||||
"context"
|
||||
"crypto/tls"
|
||||
"net/http"
|
||||
"strings"
|
||||
|
||||
"github.com/google/go-github/github"
|
||||
"github.com/pkg/errors"
|
||||
)
|
||||
|
||||
// Config contains configuration for GitHub authentication.
|
||||
//
|
||||
// ⚠️ WARNING: Change to the field name must preserve the INI key name for backward compatibility.
|
||||
type Config struct {
|
||||
// the GitHub service endpoint, e.g. https://api.github.com/.
|
||||
APIEndpoint string
|
||||
SkipVerify bool
|
||||
}
|
||||
|
||||
func (c *Config) doAuth(login, password string) (fullname, email, location, website string, err error) {
|
||||
tp := github.BasicAuthTransport{
|
||||
Username: strings.TrimSpace(login),
|
||||
Password: strings.TrimSpace(password),
|
||||
Transport: &http.Transport{
|
||||
TLSClientConfig: &tls.Config{InsecureSkipVerify: c.SkipVerify},
|
||||
},
|
||||
}
|
||||
client, err := github.NewEnterpriseClient(c.APIEndpoint, c.APIEndpoint, tp.Client())
|
||||
if err != nil {
|
||||
return "", "", "", "", errors.Wrap(err, "create new client")
|
||||
}
|
||||
user, _, err := client.Users.Get(context.Background(), "")
|
||||
if err != nil {
|
||||
return "", "", "", "", errors.Wrap(err, "get user info")
|
||||
}
|
||||
|
||||
if user.Name != nil {
|
||||
fullname = *user.Name
|
||||
}
|
||||
if user.Email != nil {
|
||||
email = *user.Email
|
||||
} else {
|
||||
email = login + "+github@local"
|
||||
}
|
||||
if user.Location != nil {
|
||||
location = strings.ToUpper(*user.Location)
|
||||
}
|
||||
if user.HTMLURL != nil {
|
||||
website = strings.ToLower(*user.HTMLURL)
|
||||
}
|
||||
return fullname, email, location, website, nil
|
||||
}
|
||||
@@ -1,50 +0,0 @@
|
||||
// Copyright 2018 The Gogs Authors. All rights reserved.
|
||||
// Use of this source code is governed by a MIT-style
|
||||
// license that can be found in the LICENSE file.
|
||||
|
||||
package github
|
||||
|
||||
import (
|
||||
"context"
|
||||
"crypto/tls"
|
||||
"fmt"
|
||||
"net/http"
|
||||
"strings"
|
||||
|
||||
"github.com/google/go-github/github"
|
||||
)
|
||||
|
||||
func Authenticate(apiEndpoint, login, passwd string) (name string, email string, website string, location string, _ error) {
|
||||
tp := github.BasicAuthTransport{
|
||||
Username: strings.TrimSpace(login),
|
||||
Password: strings.TrimSpace(passwd),
|
||||
Transport: &http.Transport{
|
||||
TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
|
||||
},
|
||||
}
|
||||
client, err := github.NewEnterpriseClient(apiEndpoint, apiEndpoint, tp.Client())
|
||||
if err != nil {
|
||||
return "", "", "", "", fmt.Errorf("create new client: %v", err)
|
||||
}
|
||||
user, _, err := client.Users.Get(context.Background(), "")
|
||||
if err != nil {
|
||||
return "", "", "", "", fmt.Errorf("get user info: %v", err)
|
||||
}
|
||||
|
||||
if user.Name != nil {
|
||||
name = *user.Name
|
||||
}
|
||||
if user.Email != nil {
|
||||
email = *user.Email
|
||||
} else {
|
||||
email = login + "+github@local"
|
||||
}
|
||||
if user.HTMLURL != nil {
|
||||
website = strings.ToLower(*user.HTMLURL)
|
||||
}
|
||||
if user.Location != nil {
|
||||
location = strings.ToUpper(*user.Location)
|
||||
}
|
||||
|
||||
return name, email, website, location, nil
|
||||
}
|
||||
57
internal/auth/github/provider.go
Normal file
57
internal/auth/github/provider.go
Normal file
@@ -0,0 +1,57 @@
|
||||
// Copyright 2020 The Gogs Authors. All rights reserved.
|
||||
// Use of this source code is governed by a MIT-style
|
||||
// license that can be found in the LICENSE file.
|
||||
|
||||
package github
|
||||
|
||||
import (
|
||||
"strings"
|
||||
|
||||
"gogs.io/gogs/internal/auth"
|
||||
)
|
||||
|
||||
// Provider contains configuration of a PAM authentication provider.
|
||||
type Provider struct {
|
||||
config *Config
|
||||
}
|
||||
|
||||
// NewProvider creates a new PAM authentication provider.
|
||||
func NewProvider(cfg *Config) auth.Provider {
|
||||
return &Provider{
|
||||
config: cfg,
|
||||
}
|
||||
}
|
||||
|
||||
func (p *Provider) Authenticate(login, password string) (*auth.ExternalAccount, error) {
|
||||
fullname, email, website, location, err := p.config.doAuth(login, password)
|
||||
if err != nil {
|
||||
if strings.Contains(err.Error(), "401") {
|
||||
return nil, auth.ErrBadCredentials{Args: map[string]interface{}{"login": login}}
|
||||
}
|
||||
return nil, err
|
||||
}
|
||||
return &auth.ExternalAccount{
|
||||
Login: login,
|
||||
Name: login,
|
||||
FullName: fullname,
|
||||
Email: email,
|
||||
Location: location,
|
||||
Website: website,
|
||||
}, nil
|
||||
}
|
||||
|
||||
func (p *Provider) Config() interface{} {
|
||||
return p.config
|
||||
}
|
||||
|
||||
func (p *Provider) HasTLS() bool {
|
||||
return true
|
||||
}
|
||||
|
||||
func (p *Provider) UseTLS() bool {
|
||||
return true
|
||||
}
|
||||
|
||||
func (p *Provider) SkipTLSVerify() bool {
|
||||
return p.config.SkipVerify
|
||||
}
|
||||
Reference in New Issue
Block a user