realms-wiki/realms/modules/auth/oauth/views.py

from flask import Blueprint, url_for, request, flash, redirect, session, current_app
from .models import User

blueprint = Blueprint('auth.oauth', __name__)


def oauth_failed(next_url):
    flash('You denied the request to sign in.')
    return redirect(next_url)


@blueprint.route("/login/oauth/<provider>")
def login(provider):
    return User.get_app(provider).authorize(callback=url_for('auth.oauth.callback', provider=provider, _external=True))


@blueprint.route('/login/oauth/<provider>/callback')
def callback(provider):
    next_url = request.args.get('next') or url_for(current_app.config['ROOT_ENDPOINT'])
    try:
        remote_app = User.get_app(provider)
        resp = remote_app.authorized_response()
        if resp is None:
            flash('You denied the request to sign in.', 'error')
            flash('Reason: ' + request.args['error_reason'] +
                  ' ' + request.args['error_description'], 'error')
            return redirect(next_url)
    except Exception as e:
        flash('Access denied: %s' % e.message)
        return redirect(next_url)

    profile = User.get_provider_value(provider, 'profile')
    data = remote_app.get(profile) if profile else resp

    User.auth(provider, data, resp)

    return redirect(next_url)
enable oauth, set correct default oauth success endpoint 2015-10-21 01:18:43 +03:00			`from flask import Blueprint, url_for, request, flash, redirect, session, current_app`
2nd pass on oauth, making more generic 2015-10-15 07:08:56 +03:00			`from .models import User`
first pass, non-working 2015-10-14 06:52:30 +03:00
			`blueprint = Blueprint('auth.oauth', __name__)`


			`def oauth_failed(next_url):`
ldap first pass 2015-10-15 01:36:22 +03:00			`flash('You denied the request to sign in.')`
first pass, non-working 2015-10-14 06:52:30 +03:00			`return redirect(next_url)`

2nd pass on oauth, making more generic 2015-10-15 07:08:56 +03:00
			`@blueprint.route("/login/oauth/<provider>")`
oauth work 2015-10-16 01:36:47 +03:00			`def login(provider):`
oauth field map to include lists to access nested response dicts oauth authorize callback to use absolute url, needed by Facebook 2015-10-26 23:47:32 +02:00			`return User.get_app(provider).authorize(callback=url_for('auth.oauth.callback', provider=provider, _external=True))`
first pass, non-working 2015-10-14 06:52:30 +03:00
2nd pass on oauth, making more generic 2015-10-15 07:08:56 +03:00
			`@blueprint.route('/login/oauth/<provider>/callback')`
oauth work 2015-10-16 01:36:47 +03:00			`def callback(provider):`
add github support, fix redirect on oauth 2015-10-21 17:09:42 +03:00			`next_url = request.args.get('next') or url_for(current_app.config['ROOT_ENDPOINT'])`
oauth work 2015-10-16 01:36:47 +03:00			`try:`
get oauth data from providers 2015-11-13 01:19:26 +02:00			`remote_app = User.get_app(provider)`
			`resp = remote_app.authorized_response()`
oauth work 2015-10-16 01:36:47 +03:00			`if resp is None:`
			`flash('You denied the request to sign in.', 'error')`
			`flash('Reason: ' + request.args['error_reason'] +`
			`' ' + request.args['error_description'], 'error')`
			`return redirect(next_url)`
			`except Exception as e:`
			`flash('Access denied: %s' % e.message)`
			`return redirect(next_url)`
first pass, non-working 2015-10-14 06:52:30 +03:00
get oauth data from providers 2015-11-13 01:19:26 +02:00			`profile = User.get_provider_value(provider, 'profile')`
			`data = remote_app.get(profile) if profile else resp`
first pass, non-working 2015-10-14 06:52:30 +03:00
get oauth data from providers 2015-11-13 01:19:26 +02:00			`User.auth(provider, data, resp)`
add more oauth providers, really authenticate 2015-10-22 01:34:20 +03:00
ldap first pass 2015-10-15 01:36:22 +03:00			`return redirect(next_url)`