chris
/
jean-marie
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix Google authentication

This commit is contained in:
Chris Jean-Marie 2024-09-22 12:05:07 +00:00
parent 2fb1c74799
commit 24027ed3c5
6 changed files with 37 additions and 84 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
backend/.env Normal file
View File

@ -0,0 +1,3 @@
DATABASE_URL=sqlite://db/db.sqlite3
GOOGLE_CLIENT_ID=735264084619-clsmvgdqdmum4rvrcj0kuk28k9agir1c.apps.googleusercontent.com
GOOGLE_CLIENT_SECRET=L6uI7FQGoMJd-ay1HO_iGJ6M

0
backend/db/.gitkeep Normal file
View File

BIN
backend/db/db.sqlite3 Normal file
View File

Binary file not shown.

2
backend/src/google_oauth.rs
View File

@ -91,7 +91,7 @@ pub fn google_oauth_client() -> BasicClient {
} }
let redirect_url = env::var("REDIRECT_URL") let redirect_url = env::var("REDIRECT_URL")
.unwrap_or_else(|_| "http://localhost:40192/auth/google".to_string()); .unwrap_or_else(|_| "http://localhost:40192/google_auth_return".to_string());
// .unwrap_or_else(|_| "https://www.jean-marie.ca/auth/google".to_string()); // .unwrap_or_else(|_| "https://www.jean-marie.ca/auth/google".to_string());
let google_client_id = env::var("GOOGLE_CLIENT_ID").expect("Missing GOOGLE_CLIENT_ID!"); let google_client_id = env::var("GOOGLE_CLIENT_ID").expect("Missing GOOGLE_CLIENT_ID!");

111
backend/src/main.rs
View File

@ -1,25 +1,23 @@
use std::net::SocketAddr; use std::net::SocketAddr;
use askama::Template; use askama::Template;
use axum_session::{Session, SessionAnyPool, SessionConfig, SessionStore, SessionLayer};
use axum::{ use axum::{
Router, extract::{FromRef, State}, middleware, response::{Html, IntoResponse, Redirect, Response}, routing::{get, get_service}, Extension, Router
routing::{get, get_service}, response::{Html, IntoResponse, Response},
}; };
use axum_extra::extract::cookie::PrivateCookieJar; use axum_extra::TypedHeader;
use http::StatusCode; use headers::Cookie;
use serde::{Serialize, Deserialize}; use http::{Request, StatusCode};
use sqlx::{sqlite::SqlitePoolOptions, SqlitePool}; use sqlx::{sqlite::SqlitePoolOptions, SqlitePool};
use tower_http::services::ServeDir; use tower_http::services::ServeDir;
mod error_handling; mod error_handling;
use middlewares::{check_auth, inject_user_data};
mod google_oauth; mod google_oauth;
mod middlewares; mod middlewares;
mod oauth; mod oauth;
use error_handling::AppError; use error_handling::AppError;
use google_oauth::*; use google_oauth::*;
use middlewares::{check_auth, inject_user_data}; use oauth::{login, logout, google_auth_return};
use oauth::{login, logout, oauth_return};
struct HtmlTemplate<T>(T); struct HtmlTemplate<T>(T);
@ -53,13 +51,6 @@ struct LoginTemplate {
name: String, name: String,
} }
#[derive(Template)]
#[template(path = "dashboard.html")]
struct DashboardTemplate {
logged_in: bool,
name: String,
}
#[derive(Clone)] #[derive(Clone)]
pub struct AppState { pub struct AppState {
pub db_pool: SqlitePool, pub db_pool: SqlitePool,
@ -70,62 +61,41 @@ pub struct UserData {
#[allow(dead_code)] #[allow(dead_code)]
pub user_id: i64, pub user_id: i64,
pub user_email: String, pub user_email: String,
} /* pub user_name: String,
pub user_discriminator: String,
#[derive(Debug, Serialize, Deserialize)] pub user_avatar: String,
struct User { pub user_access_token: String,
id: String, pub user_refresh_token: String,
avatar: Option<String>, pub user_expires_at: i64,
username: String, */}
discriminator: String,
}
#[tokio::main] #[tokio::main]
async fn main() { async fn main() {
// initialize tracing // initialize tracing
tracing_subscriber::fmt::init(); tracing_subscriber::fmt::init();
let session_config = SessionConfig::default()
.with_table_name("sessions");
//let session_store = SessionStore::<SessionAnyPool>::new(None, session_config).await.unwrap();
let db_pool = SqlitePoolOptions::new() let db_pool = SqlitePoolOptions::new()
.max_connections(5) .max_connections(5)
.connect("sqlite://db/db.sqlite3") .connect("sqlite://db/db.sqlite3")
.await .await;
.map_err(|e| format!("DB connection failed: {}", e))?;
let app_state = AppState { let app_state = AppState {db_pool: db_pool.expect("Failed to get db_pool") };
db_pool: db_pool
};
// Create HashMap to store oauth configurations let user_data: Option<UserData> = None;
// let mut oauth_clients = HashMap::<&str, BasicClient>::new();
// Get the client structures
// let facebook_oauth_client = facebook_oauth_client();
// let discord_oauth_client = discord_oauth_client();
// let google_oauth_client = google_oauth_client();
// Get oauth clients for the hashmap
// oauth_clients.insert("Facebook", facebook_oauth_client);
// oauth_clients.insert("Discord", discord_oauth_client);
// oauth_clients.insert("Google", google_oauth_client);
// build our application with some routes // build our application with some routes
let app = Router::new() let app = Router::new()
.nest_service("/assets", ServeDir::new("templates/assets") .nest_service("/assets", ServeDir::new("templates/assets")
.fallback(get_service(ServeDir::new("templates/assets")))) .fallback(get_service(ServeDir::new("templates/assets"))))
.route_layer(middleware::from_fn_with_state(app_state.clone(), check_auth))
.route("/", get(index)) .route("/", get(index))
.route("/dashboard", get(dashboard))
.route("/login", get(login)) .route("/login", get(login))
.route("/google_auth", get(google_auth))
.route("/auth/google", get(google_authorized))
.route("/logout", get(logout)) .route("/logout", get(logout))
//.layer(SessionLayer::new(session_store)) .route("/google_auth", get(google_auth))
.with_state(app_state) .route("/google_auth_return", get(google_auth_return))
// .layer(Extension(oauth_clients)); .route_layer(middleware::from_fn_with_state(app_state.db_pool.clone(), inject_user_data))
.with_state(app_state.db_pool)
.layer(Extension(user_data))
; ;
// run it // run it
@ -137,36 +107,15 @@ async fn main() {
.unwrap(); .unwrap();
} }
async fn index(session: Session<SessionAnyPool>) -> impl IntoResponse { async fn index<T>(
let logged_in = session.get("logged_in").unwrap_or(false); Extension(user_data): Extension<Option<UserData>>,
let name = session.get("name").unwrap_or("You're not logged in.".to_string()); request: Request<T>,
) -> impl IntoResponse {
let user_email = user_data.map(|s| s.user_email);
let login_return_url = "?return_url=".to_owned() + &*request.uri().to_string();
let logged_in = user_email.is_some();
let name = user_email.unwrap_or_default();
let template = IndexTemplate { logged_in, name}; let template = IndexTemplate { logged_in, name};
HtmlTemplate(template) HtmlTemplate(template)
} }
/* async fn login(session: Session<SessionAnyPool>) -> impl IntoResponse {
let logged_in = session.get("logged_in").unwrap_or(false);
let name = session.get("name").unwrap_or("".to_string());
session.set_store(true);
session.set("logged_in", logged_in);
session.set("name", &name);
let template = LoginTemplate { logged_in, name };
HtmlTemplate(template)
} */
async fn dashboard(session: Session<SessionAnyPool>) -> impl IntoResponse {
let logged_in = session.get("logged_in").unwrap_or(false);
let name = session.get("name").unwrap_or("".to_string());
session.set_store(true);
session.set("logged_in", logged_in);
session.set("name", &name);
let template = DashboardTemplate { logged_in, name };
HtmlTemplate(template)
}

5
backend/src/oauth.rs
View File

@ -38,7 +38,7 @@ fn get_client(hostname: String) -> Result<BasicClient, AppError> {
"https" "https"
}; };
let redirect_url = format!("{}://{}/oauth_return", protocol, hostname); let redirect_url = format!("{}://{}/google_auth_return", protocol, hostname);
// Set up the config for the Google OAuth2 process. // Set up the config for the Google OAuth2 process.
let client = BasicClient::new( let client = BasicClient::new(
@ -61,6 +61,7 @@ pub async fn login(
State(db_pool): State<SqlitePool>, State(db_pool): State<SqlitePool>,
Host(hostname): Host, Host(hostname): Host,
) -> Result<Redirect, AppError> { ) -> Result<Redirect, AppError> {
if user_data.is_some() { if user_data.is_some() {
// check if already authenticated // check if already authenticated
return Ok(Redirect::to("/")); return Ok(Redirect::to("/"));
@ -95,7 +96,7 @@ pub async fn login(
Ok(Redirect::to(authorize_url.as_str())) Ok(Redirect::to(authorize_url.as_str()))
} }
pub async fn oauth_return( pub async fn google_auth_return(
Query(mut params): Query<HashMap<String, String>>, Query(mut params): Query<HashMap<String, String>>,
State(db_pool): State<SqlitePool>, State(db_pool): State<SqlitePool>,
Host(hostname): Host, Host(hostname): Host,