shanshanzhong
c582087c0f
feat: 添加版本和构建时间变量 fix: 修正短信队列类型注释错误 style: 清理未使用的代码和测试文件 docs: 更新安装文档中的下载链接 chore: 迁移数据库脚本添加日志和订阅配置
113 lines
3.4 KiB
Go
113 lines
3.4 KiB
Go
package user
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"time"
|
|
|
|
"github.com/perfect-panel/server/internal/model/auth"
|
|
"github.com/perfect-panel/server/pkg/oauth/google"
|
|
"github.com/perfect-panel/server/pkg/random"
|
|
"github.com/perfect-panel/server/pkg/xerr"
|
|
"github.com/pkg/errors"
|
|
"golang.org/x/oauth2"
|
|
|
|
"github.com/perfect-panel/server/internal/svc"
|
|
"github.com/perfect-panel/server/internal/types"
|
|
"github.com/perfect-panel/server/pkg/logger"
|
|
)
|
|
|
|
type BindOAuthLogic struct {
|
|
logger.Logger
|
|
ctx context.Context
|
|
svcCtx *svc.ServiceContext
|
|
}
|
|
|
|
// Bind OAuth
|
|
func NewBindOAuthLogic(ctx context.Context, svcCtx *svc.ServiceContext) *BindOAuthLogic {
|
|
return &BindOAuthLogic{
|
|
Logger: logger.WithContext(ctx),
|
|
ctx: ctx,
|
|
svcCtx: svcCtx,
|
|
}
|
|
}
|
|
|
|
func (l *BindOAuthLogic) BindOAuth(req *types.BindOAuthRequest) (resp *types.BindOAuthResponse, err error) {
|
|
var uri string
|
|
switch req.Method {
|
|
case "google":
|
|
uri, err = l.google(req)
|
|
case "apple":
|
|
uri, err = l.apple(req)
|
|
case "github":
|
|
uri, err = l.github()
|
|
case "facebook":
|
|
uri, err = l.facebook()
|
|
default:
|
|
l.Errorw("oauth login method not support: %v", logger.Field("method", req.Method))
|
|
return nil, errors.Wrapf(xerr.NewErrCode(xerr.ERROR), "oauth login method not support: %v", req.Method)
|
|
}
|
|
if err != nil {
|
|
l.Errorw("error bind oauth", logger.Field("error", err.Error()))
|
|
return nil, errors.Wrapf(xerr.NewErrCode(xerr.ERROR), "error bind oauth: %v", err.Error())
|
|
}
|
|
return &types.BindOAuthResponse{
|
|
Redirect: uri,
|
|
}, nil
|
|
}
|
|
|
|
func (l *BindOAuthLogic) google(req *types.BindOAuthRequest) (string, error) {
|
|
authMethod, err := l.svcCtx.AuthModel.FindOneByMethod(l.ctx, "google")
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
cfg := new(auth.GoogleAuthConfig)
|
|
err = cfg.Unmarshal(authMethod.Config)
|
|
if err != nil {
|
|
l.Errorw("error unmarshal google config: %v", logger.Field("config", authMethod.Config), logger.Field("error", err.Error()))
|
|
return "", err
|
|
}
|
|
client := google.New(&google.Config{
|
|
ClientID: cfg.ClientId,
|
|
ClientSecret: cfg.ClientSecret,
|
|
RedirectURL: req.Redirect,
|
|
})
|
|
// generate the state code
|
|
code := random.KeyNew(8, 1)
|
|
// save the state code
|
|
err = l.svcCtx.Redis.Set(l.ctx, fmt.Sprintf("google:%s", code), req.Redirect, 5*60*time.Second).Err()
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
uri := client.AuthCodeURL(code, oauth2.AccessTypeOffline)
|
|
return uri, nil
|
|
}
|
|
|
|
func (l *BindOAuthLogic) facebook() (string, error) {
|
|
return "", nil
|
|
}
|
|
func (l *BindOAuthLogic) apple(req *types.BindOAuthRequest) (string, error) {
|
|
authMethod, err := l.svcCtx.AuthModel.FindOneByMethod(l.ctx, "apple")
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
var cfg auth.AppleAuthConfig
|
|
err = cfg.Unmarshal(authMethod.Config)
|
|
if err != nil {
|
|
l.Errorw("error unmarshal apple config: %v", logger.Field("config", authMethod.Config), logger.Field("error", err.Error()))
|
|
return "", err
|
|
}
|
|
uri := "https://appleid.apple.com/auth/authorize?client_id=%s&redirect_uri=%s&response_type=code&state=%s&scope=name email&response_mode=form_post"
|
|
// generate the state code
|
|
code := random.KeyNew(8, 1)
|
|
// save the state code
|
|
err = l.svcCtx.Redis.Set(l.ctx, fmt.Sprintf("apple:%s", code), req.Redirect, 5*60*time.Second).Err()
|
|
if err != nil {
|
|
l.Errorw("error save state code to redis: %v", logger.Field("code", code), logger.Field("error", err.Error()))
|
|
}
|
|
return fmt.Sprintf(uri, cfg.ClientId, fmt.Sprintf("%s/v1/auth/oauth/callback/apple", cfg.RedirectURL), code), nil
|
|
}
|
|
func (l *BindOAuthLogic) github() (string, error) {
|
|
return "", nil
|
|
}
|