hydra-passwordless/internal/route/consent.go

package route

import (
	"net/http"

	"forge.cadoles.com/wpetit/hydra-passwordless/internal/hydra"
	"github.com/pkg/errors"
	"gitlab.com/wpetit/goweb/middleware/container"
)

func serveConsentPage(w http.ResponseWriter, r *http.Request) {
	ctn := container.Must(r.Context())
	hydr := hydra.Must(ctn)

	challenge, err := hydr.ConsentChallenge(r)
	if err != nil {
		if err == hydra.ErrChallengeNotFound {
			http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)

			return
		}

		panic(errors.Wrap(err, "could not retrieve consent challenge"))
	}

	consentRes, err := hydr.ConsentRequest(challenge)
	if err != nil {
		panic(errors.Wrap(err, "could not retrieve hydra consent response"))
	}

	scopes := []string{"email"}
	scopes = append(scopes, consentRes.RequestedScope...)

	acceptConsentReq := &hydra.AcceptConsentRequest{
		GrantScope:               scopes,
		GrantAccessTokenAudience: consentRes.RequestedAccessTokenAudience,
		Session: hydra.AcceptConsentSession{
			IDToken: map[string]interface{}{
				"email":          consentRes.Context["email"],
				"email_verified": true,
			},
		},
	}

	acceptRes, err := hydr.AcceptConsentRequest(challenge, acceptConsentReq)
	if err != nil {
		panic(errors.Wrap(err, "could not accept hydra consent request"))
	}

	http.Redirect(w, r, acceptRes.RedirectTo, http.StatusTemporaryRedirect)
}
Initial commit 2020-04-08 08:56:42 +02:00			`package route`

			`import (`
			`"net/http"`

Basic but complete authentication flow 2020-05-20 11:13:14 +02:00			`"forge.cadoles.com/wpetit/hydra-passwordless/internal/hydra"`
Initial commit 2020-04-08 08:56:42 +02:00			`"github.com/pkg/errors"`
			`"gitlab.com/wpetit/goweb/middleware/container"`
			`)`

			`func serveConsentPage(w http.ResponseWriter, r *http.Request) {`
			`ctn := container.Must(r.Context())`
Basic but complete authentication flow 2020-05-20 11:13:14 +02:00			`hydr := hydra.Must(ctn)`
Initial commit 2020-04-08 08:56:42 +02:00
Basic but complete authentication flow 2020-05-20 11:13:14 +02:00			`challenge, err := hydr.ConsentChallenge(r)`
			`if err != nil {`
			`if err == hydra.ErrChallengeNotFound {`
			`http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)`
Initial commit 2020-04-08 08:56:42 +02:00
Basic but complete authentication flow 2020-05-20 11:13:14 +02:00			`return`
			`}`

			`panic(errors.Wrap(err, "could not retrieve consent challenge"))`
			`}`

Basic logout flow and better UX 2020-05-26 11:11:53 +02:00			`consentRes, err := hydr.ConsentRequest(challenge)`
Basic but complete authentication flow 2020-05-20 11:13:14 +02:00			`if err != nil {`
			`panic(errors.Wrap(err, "could not retrieve hydra consent response"))`
			`}`

Basic logout flow and better UX 2020-05-26 11:11:53 +02:00			`scopes := []string{"email"}`
			`scopes = append(scopes, consentRes.RequestedScope...)`

			`acceptConsentReq := &hydra.AcceptConsentRequest{`
			`GrantScope: scopes,`
			`GrantAccessTokenAudience: consentRes.RequestedAccessTokenAudience,`
			`Session: hydra.AcceptConsentSession{`
			`IDToken: map[string]interface{}{`
			`"email": consentRes.Context["email"],`
			`"email_verified": true,`
			`},`
			`},`
Initial commit 2020-04-08 08:56:42 +02:00			`}`
Basic but complete authentication flow 2020-05-20 11:13:14 +02:00
Basic logout flow and better UX 2020-05-26 11:11:53 +02:00			`acceptRes, err := hydr.AcceptConsentRequest(challenge, acceptConsentReq)`
Basic but complete authentication flow 2020-05-20 11:13:14 +02:00			`if err != nil {`
			`panic(errors.Wrap(err, "could not accept hydra consent request"))`
			`}`

Basic logout flow and better UX 2020-05-26 11:11:53 +02:00			`http.Redirect(w, r, acceptRes.RedirectTo, http.StatusTemporaryRedirect)`
Initial commit 2020-04-08 08:56:42 +02:00			`}`