mirror of
https://github.com/0xJacky/nginx-ui.git
synced 2025-05-11 10:25:52 +02:00
98 lines
2.4 KiB
Go
98 lines
2.4 KiB
Go
package user
|
|
|
|
import (
|
|
"fmt"
|
|
"github.com/0xJacky/Nginx-UI/api"
|
|
"github.com/0xJacky/Nginx-UI/model"
|
|
"github.com/0xJacky/Nginx-UI/settings"
|
|
"github.com/casdoor/casdoor-go-sdk/casdoorsdk"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/pkg/errors"
|
|
"gorm.io/gorm"
|
|
"net/http"
|
|
"net/url"
|
|
)
|
|
|
|
type CasdoorLoginUser struct {
|
|
Code string `json:"code" binding:"required,max=255"`
|
|
State string `json:"state" binding:"required,max=255"`
|
|
}
|
|
|
|
func CasdoorCallback(c *gin.Context) {
|
|
var loginUser CasdoorLoginUser
|
|
|
|
ok := api.BindAndValid(c, &loginUser)
|
|
if !ok {
|
|
return
|
|
}
|
|
|
|
endpoint := settings.CasdoorSettings.Endpoint
|
|
clientId := settings.CasdoorSettings.ClientId
|
|
clientSecret := settings.CasdoorSettings.ClientSecret
|
|
certificate := settings.CasdoorSettings.Certificate
|
|
organization := settings.CasdoorSettings.Organization
|
|
application := settings.CasdoorSettings.Application
|
|
if endpoint == "" || clientId == "" || clientSecret == "" || certificate == "" || organization == "" || application == "" {
|
|
c.JSON(http.StatusInternalServerError, gin.H{
|
|
"message": "Casdoor is not configured",
|
|
})
|
|
return
|
|
}
|
|
|
|
casdoorsdk.InitConfig(endpoint, clientId, clientSecret, certificate, organization, application)
|
|
|
|
token, err := casdoorsdk.GetOAuthToken(loginUser.Code, loginUser.State)
|
|
if err != nil {
|
|
api.ErrHandler(c, err)
|
|
return
|
|
}
|
|
|
|
claims, err := casdoorsdk.ParseJwtToken(token.AccessToken)
|
|
if err != nil {
|
|
api.ErrHandler(c, err)
|
|
return
|
|
}
|
|
|
|
u, err := model.GetUser(claims.Name)
|
|
if err != nil {
|
|
if errors.Is(err, gorm.ErrRecordNotFound) {
|
|
c.JSON(http.StatusForbidden, gin.H{
|
|
"message": "User not exist",
|
|
})
|
|
} else {
|
|
api.ErrHandler(c, err)
|
|
}
|
|
return
|
|
}
|
|
|
|
userToken, err := model.GenerateJWT(u.Name)
|
|
if err != nil {
|
|
api.ErrHandler(c, err)
|
|
return
|
|
}
|
|
|
|
c.JSON(http.StatusOK, LoginResponse{
|
|
Message: "ok",
|
|
Token: userToken,
|
|
})
|
|
}
|
|
|
|
func GetCasdoorUri(c *gin.Context) {
|
|
endpoint := settings.CasdoorSettings.Endpoint
|
|
clientId := settings.CasdoorSettings.ClientId
|
|
redirectUri := settings.CasdoorSettings.RedirectUri
|
|
state := settings.CasdoorSettings.Application
|
|
|
|
if endpoint == "" || clientId == "" || redirectUri == "" || state == "" {
|
|
c.JSON(http.StatusOK, gin.H{
|
|
"uri": "",
|
|
})
|
|
return
|
|
}
|
|
|
|
encodedRedirectUri := url.QueryEscape(redirectUri)
|
|
|
|
c.JSON(http.StatusOK, gin.H{
|
|
"uri": fmt.Sprintf("%s/login/oauth/authorize?client_id=%s&response_type=code&redirect_uri=%s&state=%s&scope=read", endpoint, clientId, encodedRedirectUri, state),
|
|
})
|
|
}
|