simon/youyesyet
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity

#2: I'm getting something back!

Browse source 
That's probably as far as I can get inside the firewall. Now it has to go out!
This commit is contained in:
Simon Brooke 2018-08-08 16:21:39 +01:00
parent 2806d3c28c
commit f438803723
10 changed files with 50 additions and 35 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
resources/templates/base.html
View file

@ -46,7 +46,7 @@
<div class="error">
{{ error }}
</div>
{% if error %}
{% endif %}
</header>
{% endblock %}
<div id="main-container" class="container">

1
resources/templates/error.html
View file

@ -2,7 +2,6 @@
{% block big-links %}
{% endblock %}
{% block content %}
<body>
<div class="container-fluid">
<div class="row-fluid">
<div class="col-lg-12">

6
src/clj/youyesyet/oauth.clj → src/clj/youyesyet/authentication.clj
View file

@ -1,5 +1,5 @@
(ns ^{:doc "Handle oauth with multiple authenticating authorities."
:author "Simon Brooke"} youyesyet.oauth
:author "Simon Brooke"} youyesyet.authentication
(:require [youyesyet.config :refer [env]]
[youyesyet.db.core :as db]
[oauth.client :as oauth]
@ -8,7 +8,8 @@
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
;;;;
;;;; youyesyet.routes.home: routes and pages for unauthenticated users.
;;;; youyesyet.authentication: Handle oauth with multiple authenticating
;;;; authorities.
;;;;
;;;; This program is free software; you can redistribute it and/or
;;;; modify it under the terms of the GNU General Public License
@ -49,6 +50,7 @@
:hmac-sha1)))
(db/list-authorities db/*db* {}))))
(def authority!
;; Closure to allow authorities map to be created once when the function is first
;; called. The argument `id` should be a string, the id of some authority

10
src/clj/youyesyet/handler.clj
View file

@ -91,14 +91,18 @@
(-> #'rest-routes
(wrap-routes middleware/wrap-formats))
(-> #'service-routes
(wrap-routes middleware/wrap-formats)) ;; TODO: and authentication, but let's not sweat the small stuff.
'oauth-routes
(wrap-routes middleware/wrap-formats))
(-> #'oauth-routes
(wrap-routes middleware/wrap-csrf)
(wrap-routes middleware/wrap-formats))
(route/resources "/")
(route/not-found
(fn [request]
(log/error "NOT-FOUND: " request)
(:body
(error-page {:status 404
:title "Page not found"
:message "The page you requested has not yet been implemented"})))))
:message (str "The page you requested has not yet been implemented: " (:uri request))}))))))
(def app (middleware/wrap-base #'app-routes))

3
src/clj/youyesyet/layout.clj
View file

@ -112,6 +112,7 @@
returns a response map with the error page as the body
and the status specified by the status key"
[error-details]
(log/error "ERROR: " error-details)
{:status (:status error-details)
:headers {"Content-Type" "text/html; charset=utf-8"}
:body (render "error.html" {} error-details)})
:body (render "error.html" error-details)})

12
src/clj/youyesyet/routes/home.clj
View file

@ -11,7 +11,7 @@
[youyesyet.config :refer [env]]
[youyesyet.db.core :as db-core]
[youyesyet.layout :as layout]
[youyesyet.oauth :as oauth]
[youyesyet.authentication :as auth]
[compojure.core :refer [defroutes GET POST]]
))
@ -84,13 +84,13 @@
(str (:servlet-context request) "/roles"))]
(cond
(:authority params)
(let [auth (oauth/authority! (:authority params))]
(if auth
(let [authority (auth/authority! (:authority params))]
(if authority
(do
(log/info "Attempting to authorise with authority " (:authority params))
(oauth/fetch-request-token
(assoc request :session (assoc session :authority auth))
auth))
(auth/fetch-request-token
(assoc request :session (assoc session :authority authority))
authority))
(throw (Exception. (str "No such authority: " (:authority params))))))
;; this is obviously, ABSURDLY, insecure. I don't want to put just-about-good-enough,
;; it-will-do-for-now security in place; instead, I want this to be test code only

3
src/clj/youyesyet/routes/issue_experts.clj
View file

@ -12,13 +12,12 @@
[youyesyet.config :refer [env]]
[youyesyet.db.core :as db]
[youyesyet.layout :as layout]
[youyesyet.oauth :as oauth]
[compojure.core :refer [defroutes GET POST]]
))
;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;
;;;;
;;;; youyesyet.routes.home: routes and pages for issue experts.
;;;; youyesyet.routes.issue-experts: routes and pages for issue experts.
;;;;
;;;; This program is free software; you can redistribute it and/or
;;;; modify it under the terms of the GNU General Public License

1
src/clj/youyesyet/routes/logged_in.clj
View file

@ -12,7 +12,6 @@
[youyesyet.config :refer [env]]
[youyesyet.db.core :as db]
[youyesyet.layout :as layout]
[youyesyet.oauth :as oauth]
[compojure.core :refer [defroutes GET POST]]
))

46
src/clj/youyesyet/routes/oauth.clj
View file

@ -1,29 +1,40 @@
(ns ^{:doc "OAuth authentication routes - not finished, does not work yet."
:author "Simon Brooke"} youyesyet.routes.oauth
(:require [clojure.tools.logging :as log]
(:require [adl-support.core :refer :all]
[clojure.tools.logging :as log]
[compojure.core :refer [defroutes GET]]
[ring.util.http-response :refer [ok found]]
[clojure.java.io :as io]
[youyesyet.oauth :as oauth]))
[youyesyet.authentication :as auth]
[youyesyet.layout :refer [error-page]]))
(defn oauth-init
"Initiates the OAuth with the authority implied by this `request`"
[request]
(let [authority (or
(:authority (:session request))
(oauth/authority! (:authority (massage-params :request))))]
(if
authority
(assoc-in
(found
(oauth/auth-redirect-uri
(:request-token
(oauth/fetch-request-token request authority))
authority))
[:session :authority]
authority))))
:session
(let [authority-name (:authority (massage-params request))
authority (or
(:authority (:session request))
(auth/authority! authority-name))]
(log/debug "Authenticating with oauth request: " request "; authority: " authority)
(if
authority
(do-or-log-error
(assoc-in
(auth/auth-redirect-uri
(:request-token
(auth/fetch-request-token request authority))
authority)
[:session :authority]
authority)
:error-return
{:status 500
:title "Error while seeking authentication"
:message "See server log for more detail"})
(:body
(error-page {:status 404
:title (str "No such authority: " authority-name)
:message "The authority you requested is unknown to this system."})))))
(defn oauth-callback
@ -35,12 +46,13 @@
(assoc :flash {:denied true}))
; fetch the request token and do anything else you wanna do if not denied.
(let [{:keys [user_id screen_name]}
(oauth/fetch-access-token request_token (:authority session))]
(auth/fetch-access-token request_token (:authority session))]
(log/info "successfully authenticated as" user_id screen_name)
(-> (found "/")
(assoc :session
(assoc session :user-id user_id :screen-name screen_name))))))
(defroutes oauth-routes
(GET "/oauth/oauth-init" req (oauth-init req))
(GET "/oauth/oauth-callback" [& req_token :as req] (oauth-callback req_token req)))

1
src/clj/youyesyet/routes/roles.clj
View file

@ -11,7 +11,6 @@
[youyesyet.db.core :as db-core]
[youyesyet.routes.issue-experts :as expert]
[youyesyet.layout :as layout]
[youyesyet.oauth :as oauth]
[youyesyet.routes.auto :as auto]))