···
-
ctx = context.Background()
-
serverAddr = os.Getenv("OAUTH_TEST_SERVER_ADDR")
-
serverUrlRoot = os.Getenv("OAUTH_TEST_SERVER_URL_ROOT")
-
staticFilePath = os.Getenv("OAUTH_TEST_SERVER_STATIC_PATH")
-
sessionSecret = os.Getenv("OAUTH_TEST_SESSION_SECRET")
-
serverMetadataUrl = fmt.Sprintf("%s/oauth/client-metadata.json", serverUrlRoot)
-
serverCallbackUrl = fmt.Sprintf("%s/callback", serverUrlRoot)
-
pdsUrl = os.Getenv("OAUTH_TEST_PDS_URL")
-
scope = "atproto transition:generic"
Name: "atproto-goauth-demo-webserver",
-
if serverUrlRoot == "" {
-
panic(fmt.Errorf("no server url root set in env file"))
-
app.RunAndExitOnError()
···
oauthClient *oauth.Client
xrpcCli *oauth.XrpcClient
jwksResponse *oauth_helpers.JwksResponseObject
type TemplateRenderer struct {
templates *template.Template
-
func (t *TemplateRenderer) Render(w io.Writer, name string, data interface{}, c echo.Context) error {
-
if viewContext, isMap := data.(map[string]interface{}); isMap {
viewContext["reverse"] = c.Echo().Reverse
···
func run(cmd *cli.Context) error {
···
-
func NewServer() (*TestServer, error) {
e.Use(slogecho.New(slog.Default()))
-
e.Use(session.Middleware(sessions.NewCookieStore([]byte(sessionSecret))))
-
renderer := &TemplateRenderer{
-
templates: template.Must(template.ParseGlob(getFilePath("*.html"))),
fmt.Println("atproto goauth demo webserver")
···
c, err := oauth.NewClient(oauth.ClientArgs{
-
ClientId: serverMetadataUrl,
-
RedirectUri: serverCallbackUrl,
···
jwksResponse: oauth_helpers.CreateJwksResponseObject(pubKey),
func (s *TestServer) run() error {
s.e.GET("/", s.handleHome)
-
s.e.File("/login", getFilePath("login.html"))
s.e.POST("/login", s.handleLoginSubmit)
s.e.GET("/logout", s.handleLogout)
s.e.GET("/profile", s.handleProfile)
···
s.e.GET("/oauth/client-metadata.json", s.handleClientMetadata)
s.e.GET("/oauth/jwks.json", s.handleJwks)
if err := s.httpd.ListenAndServe(); err != nil {
···
func (s *TestServer) handleClientMetadata(e echo.Context) error {
metadata := map[string]any{
-
"client_id": serverMetadataUrl,
"client_name": "Atproto GoAuth Demo Webserver",
-
"client_uri": serverUrlRoot,
-
"logo_uri": fmt.Sprintf("%s/logo.png", serverUrlRoot),
-
"tos_uri": fmt.Sprintf("%s/tos", serverUrlRoot),
-
"policy_url": fmt.Sprintf("%s/policy", serverUrlRoot),
-
"redirect_uris": []string{serverCallbackUrl},
"grant_types": []string{"authorization_code", "refresh_token"},
"response_types": []string{"code"},
"application_type": "web",
"dpop_bound_access_tokens": true,
-
"jwks_uri": fmt.Sprintf("%s/oauth/jwks.json", serverUrlRoot),
"scope": "atproto transition:generic",
"token_endpoint_auth_method": "private_key_jwt",
"token_endpoint_auth_signing_alg": "ES256",
···
return e.JSON(200, s.jwksResponse)
-
func getFilePath(file string) string {
-
return fmt.Sprintf("%s/%s", staticFilePath, file)
···
+
ctx = context.Background()
+
serverMetadataPath = "/oauth/client-metadata.json"
+
serverCallbackPath = "/callback"
+
scope = "atproto transition:generic"
Name: "atproto-goauth-demo-webserver",
+
EnvVars: []string{"OAUTH_TEST_SERVER_ADDR"},
+
EnvVars: []string{"OAUTH_TEST_SERVER_URL_ROOT"},
+
Name: "static-file-path",
+
Value: "./cmd/web_server_demo/html",
+
EnvVars: []string{"OAUTH_TEST_SERVER_STATIC_PATH"},
+
Name: "session-secret",
+
Value: "session-secret",
+
EnvVars: []string{"OAUTH_TEST_SERVER_SESSION_SECRET"},
···
oauthClient *oauth.Client
xrpcCli *oauth.XrpcClient
jwksResponse *oauth_helpers.JwksResponseObject
type TemplateRenderer struct {
templates *template.Template
+
func (t *TemplateRenderer) Render(w io.Writer, name string, data any, c echo.Context) error {
+
if viewContext, isMap := data.(map[string]any); isMap {
viewContext["reverse"] = c.Echo().Reverse
···
func run(cmd *cli.Context) error {
+
s, err := NewServer(ServerArgs{
+
Addr: cmd.String("addr"),
+
UrlRoot: cmd.String("url-root"),
+
StaticFilePath: cmd.String("static-file-path"),
+
SessionSecret: cmd.String("session-secret"),
···
+
type ServerArgs struct {
+
func NewServer(args ServerArgs) (*TestServer, error) {
e.Use(slogecho.New(slog.Default()))
+
e.Use(session.Middleware(sessions.NewCookieStore([]byte(args.SessionSecret))))
fmt.Println("atproto goauth demo webserver")
···
c, err := oauth.NewClient(oauth.ClientArgs{
+
ClientId: args.UrlRoot + serverMetadataPath,
+
RedirectUri: args.UrlRoot + serverCallbackPath,
···
jwksResponse: oauth_helpers.CreateJwksResponseObject(pubKey),
+
renderer := &TemplateRenderer{
+
templates: template.Must(template.ParseGlob(s.getFilePath("*.html"))),
func (s *TestServer) run() error {
s.e.GET("/", s.handleHome)
+
s.e.File("/login", s.getFilePath("login.html"))
s.e.POST("/login", s.handleLoginSubmit)
s.e.GET("/logout", s.handleLogout)
s.e.GET("/profile", s.handleProfile)
···
s.e.GET("/oauth/client-metadata.json", s.handleClientMetadata)
s.e.GET("/oauth/jwks.json", s.handleJwks)
+
slog.Default().Info("starting http server", "addr", s.args.Addr)
if err := s.httpd.ListenAndServe(); err != nil {
···
func (s *TestServer) handleClientMetadata(e echo.Context) error {
metadata := map[string]any{
+
"client_id": s.args.UrlRoot + serverMetadataPath,
"client_name": "Atproto GoAuth Demo Webserver",
+
"client_uri": s.args.UrlRoot,
+
"logo_uri": fmt.Sprintf("%s/logo.png", s.args.UrlRoot),
+
"tos_uri": fmt.Sprintf("%s/tos", s.args.UrlRoot),
+
"policy_url": fmt.Sprintf("%s/policy", s.args.UrlRoot),
+
"redirect_uris": []string{s.args.UrlRoot + serverCallbackPath},
"grant_types": []string{"authorization_code", "refresh_token"},
"response_types": []string{"code"},
"application_type": "web",
"dpop_bound_access_tokens": true,
+
"jwks_uri": fmt.Sprintf("%s/oauth/jwks.json", s.args.UrlRoot),
"scope": "atproto transition:generic",
"token_endpoint_auth_method": "private_key_jwt",
"token_endpoint_auth_signing_alg": "ES256",
···
return e.JSON(200, s.jwksResponse)
+
func (s *TestServer) getFilePath(file string) string {
+
return fmt.Sprintf("%s/%s", s.args.StaticFilePath, file)
hailey.at