mirror of
https://github.com/golang/oauth2.git
synced 2025-07-21 00:00:09 +08:00
22b0adad75
Added authhandler.go, which implements a TokenSource to support "three-legged OAuth 2.0" via a custom AuthorizationHandler. Added example_test.go with a sample command line implementation for AuthorizationHandler. This patch adds support for 3-legged-OAuth flow using an OAuth Client ID file downloaded from Google Cloud Console. Change-Id: Iefe54494d6f3ee326a6b1b2a81a7d5d1a7ba3331 GitHub-Last-Rev: 48fc0367c2092baf97b8e09f03a94e7fe1ecd890 GitHub-Pull-Request: golang/oauth2#419 Reviewed-on: https://go-review.googlesource.com/c/oauth2/+/232238 Reviewed-by: Tyler Bui-Palsulich <tbp@google.com> Reviewed-by: Shin Fan <shinfan@google.com> Reviewed-by: Cody Oss <codyoss@google.com> Trust: Shin Fan <shinfan@google.com> Trust: Cody Oss <codyoss@google.com>
80 lines
2.3 KiB
Go
80 lines
2.3 KiB
Go
// Copyright 2021 The Go Authors. All rights reserved.
|
|
// Use of this source code is governed by a BSD-style
|
|
// license that can be found in the LICENSE file.
|
|
|
|
package authhandler_test
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
"net/http"
|
|
"net/http/httptest"
|
|
|
|
"golang.org/x/oauth2"
|
|
"golang.org/x/oauth2/authhandler"
|
|
)
|
|
|
|
// CmdAuthorizationHandler returns a command line auth handler that prints
|
|
// the auth URL to the console and prompts the user to authorize in the
|
|
// browser and paste the auth code back via stdin.
|
|
//
|
|
// Per the OAuth protocol, a unique "state" string should be specified here.
|
|
// The authhandler token source will verify that the "state" is identical in
|
|
// the request and response before exchanging the auth code for OAuth token to
|
|
// prevent CSRF attacks.
|
|
//
|
|
// For convenience, this handler returns a pre-configured state instead of
|
|
// asking the user to additionally paste the state from the auth response.
|
|
// In order for this to work, the state configured here must match the state
|
|
// used in authCodeURL.
|
|
func CmdAuthorizationHandler(state string) authhandler.AuthorizationHandler {
|
|
return func(authCodeURL string) (string, string, error) {
|
|
fmt.Printf("Go to the following link in your browser:\n\n %s\n\n", authCodeURL)
|
|
fmt.Println("Enter authorization code:")
|
|
var code string
|
|
fmt.Scanln(&code)
|
|
return code, state, nil
|
|
}
|
|
}
|
|
|
|
func Example() {
|
|
ts := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
r.ParseForm()
|
|
w.Header().Set("Content-Type", "application/json")
|
|
w.Write([]byte(`{
|
|
"access_token": "90d64460d14870c08c81352a05dedd3465940a7c",
|
|
"scope": "pubsub",
|
|
"token_type": "bearer",
|
|
"expires_in": 3600
|
|
}`))
|
|
}))
|
|
defer ts.Close()
|
|
|
|
ctx := context.Background()
|
|
conf := &oauth2.Config{
|
|
ClientID: "testClientID",
|
|
Scopes: []string{"pubsub"},
|
|
Endpoint: oauth2.Endpoint{
|
|
AuthURL: "testAuthCodeURL",
|
|
TokenURL: ts.URL,
|
|
},
|
|
}
|
|
state := "unique_state"
|
|
|
|
token, err := authhandler.TokenSource(ctx, conf, state, CmdAuthorizationHandler(state)).Token()
|
|
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
}
|
|
|
|
fmt.Printf("AccessToken: %s", token.AccessToken)
|
|
|
|
// Output:
|
|
// Go to the following link in your browser:
|
|
//
|
|
// testAuthCodeURL?client_id=testClientID&response_type=code&scope=pubsub&state=unique_state
|
|
//
|
|
// Enter authorization code:
|
|
// AccessToken: 90d64460d14870c08c81352a05dedd3465940a7c
|
|
}
|