google.go

package main

import (
	"encoding/json"
	"errors"
	"io/ioutil"
	"net/http"

	"github.com/aerogo/aero"
	"github.com/animenotifier/arn"
	"golang.org/x/oauth2"
	"golang.org/x/oauth2/google"
)

// GoogleUser is the user data we receive from Google
type GoogleUser struct {
	Sub           string `json:"sub"`
	Name          string `json:"name"`
	GivenName     string `json:"given_name"`
	FamilyName    string `json:"family_name"`
	Profile       string `json:"profile"`
	Picture       string `json:"picture"`
	Email         string `json:"email"`
	EmailVerified bool   `json:"email_verified"`
	Gender        string `json:"gender"`
}

// EnableGoogleLogin enables Google login for the app.
func EnableGoogleLogin(app *aero.Application) {
	conf := &oauth2.Config{
		ClientID:     apiKeys.Google.ID,
		ClientSecret: apiKeys.Google.Secret,
		RedirectURL:  "https://beta.notify.moe/auth/google/callback",
		Scopes: []string{
			"https://www.googleapis.com/auth/userinfo.email",
		},
		Endpoint: google.Endpoint,
	}

	// Auth
	app.Get("/auth/google", func(ctx *aero.Context) string {
		sessionID := ctx.Session().ID()
		url := conf.AuthCodeURL(sessionID)
		ctx.Redirect(url)
		return ""
	})

	// Auth Callback
	app.Get("/auth/google/callback", func(ctx *aero.Context) string {
		session := ctx.Session()

		if session.ID() != ctx.Query("state") {
			return ctx.Error(http.StatusUnauthorized, "Authorization not allowed for this session", errors.New("Google login failed: Incorrect state"))
		}

		// Handle the exchange code to initiate a transport
		token, err := conf.Exchange(oauth2.NoContext, ctx.Query("code"))

		if err != nil {
			return ctx.Error(http.StatusBadRequest, "Could not obtain OAuth token", err)
		}

		// Construct the OAuth client
		client := conf.Client(oauth2.NoContext, token)

		// Fetch user data from Google
		resp, err := client.Get("https://www.googleapis.com/oauth2/v3/userinfo")

		if err != nil {
			return ctx.Error(http.StatusBadRequest, "Failed requesting user data from Google", err)
		}

		defer resp.Body.Close()
		data, _ := ioutil.ReadAll(resp.Body)

		// Construct a GoogleUser object
		var googleUser GoogleUser
		err = json.Unmarshal(data, &googleUser)

		if err != nil {
			return ctx.Error(http.StatusBadRequest, "Failed parsing user data (JSON)", err)
		}

		// Try to find an existing user by the associated e-mail address
		email := googleUser.Email
		user, getErr := arn.GetUserByEmail(email)

		if getErr != nil {
			return ctx.Error(http.StatusForbidden, "Email not registered", err)
		}

		// Login
		session.Set("userId", user.ID)

		// Redirect back to frontpage
		return ctx.Redirect("/")
	})
}
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`package main`

			`import (`
			`"encoding/json"`
			`"errors"`
			`"io/ioutil"`
			`"net/http"`

			`"github.com/aerogo/aero"`
Implemented Google login 2017-06-07 19:12:59 +00:00			`"github.com/animenotifier/arn"`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`"golang.org/x/oauth2"`
			`"golang.org/x/oauth2/google"`
			`)`

Implemented Google login 2017-06-07 19:12:59 +00:00			`// GoogleUser is the user data we receive from Google`
			`type GoogleUser struct {`
			Sub string `json:"sub"`
			Name string `json:"name"`
			GivenName string `json:"given_name"`
			FamilyName string `json:"family_name"`
			Profile string `json:"profile"`
			Picture string `json:"picture"`
			Email string `json:"email"`
			EmailVerified bool `json:"email_verified"`
			Gender string `json:"gender"`
			`}`

Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`// EnableGoogleLogin enables Google login for the app.`
			`func EnableGoogleLogin(app *aero.Application) {`
			`conf := &oauth2.Config{`
Improved auth and logging 2017-06-15 13:50:39 +00:00			`ClientID: apiKeys.Google.ID,`
			`ClientSecret: apiKeys.Google.Secret,`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`RedirectURL: "https://beta.notify.moe/auth/google/callback",`
			`Scopes: []string{`
			`"https://www.googleapis.com/auth/userinfo.email",`
			`},`
			`Endpoint: google.Endpoint,`
			`}`

			`// Auth`
			`app.Get("/auth/google", func(ctx *aero.Context) string {`
Implemented Google login 2017-06-07 19:12:59 +00:00			`sessionID := ctx.Session().ID()`
			`url := conf.AuthCodeURL(sessionID)`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`ctx.Redirect(url)`
			`return ""`
			`})`

			`// Auth Callback`
			`app.Get("/auth/google/callback", func(ctx *aero.Context) string {`
Persistent sessions are working now 2017-06-08 21:26:58 +00:00			`session := ctx.Session()`

			`if session.ID() != ctx.Query("state") {`
Implemented Google login 2017-06-07 19:12:59 +00:00			`return ctx.Error(http.StatusUnauthorized, "Authorization not allowed for this session", errors.New("Google login failed: Incorrect state"))`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`}`

			`// Handle the exchange code to initiate a transport`
			`token, err := conf.Exchange(oauth2.NoContext, ctx.Query("code"))`
Implemented Google login 2017-06-07 19:12:59 +00:00
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`if err != nil {`
			`return ctx.Error(http.StatusBadRequest, "Could not obtain OAuth token", err)`
			`}`

			`// Construct the OAuth client`
			`client := conf.Client(oauth2.NoContext, token)`

Improved auth and logging 2017-06-15 13:50:39 +00:00			`// Fetch user data from Google`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`resp, err := client.Get("https://www.googleapis.com/oauth2/v3/userinfo")`
Implemented Google login 2017-06-07 19:12:59 +00:00
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`if err != nil {`
			`return ctx.Error(http.StatusBadRequest, "Failed requesting user data from Google", err)`
			`}`
Implemented Google login 2017-06-07 19:12:59 +00:00
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`defer resp.Body.Close()`
Implemented Google login 2017-06-07 19:12:59 +00:00			`data, _ := ioutil.ReadAll(resp.Body)`

Improved auth and logging 2017-06-15 13:50:39 +00:00			`// Construct a GoogleUser object`
Implemented Google login 2017-06-07 19:12:59 +00:00			`var googleUser GoogleUser`
			`err = json.Unmarshal(data, &googleUser)`

			`if err != nil {`
			`return ctx.Error(http.StatusBadRequest, "Failed parsing user data (JSON)", err)`
			`}`

Improved auth and logging 2017-06-15 13:50:39 +00:00			`// Try to find an existing user by the associated e-mail address`
Implemented Google login 2017-06-07 19:12:59 +00:00			`email := googleUser.Email`
			`user, getErr := arn.GetUserByEmail(email)`

			`if getErr != nil {`
			`return ctx.Error(http.StatusForbidden, "Email not registered", err)`
			`}`

Improved auth and logging 2017-06-15 13:50:39 +00:00			`// Login`
Persistent sessions are working now 2017-06-08 21:26:58 +00:00			`session.Set("userId", user.ID)`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00
Improved auth and logging 2017-06-15 13:50:39 +00:00			`// Redirect back to frontpage`
Implemented Google login 2017-06-07 19:12:59 +00:00			`return ctx.Redirect("/")`
Basics of Google login are implemented 2017-06-07 16:06:57 +00:00			`})`
			`}`