mirrors
/
gitea
дзеркало https://github.com/go-gitea/gitea.git
Слідкувати 1
В обрані 0
Форк 0
Код Проблеми 0 Релізи 211 Вікі Активність
Ви не можете вибрати більше 25 тем Теми мають розпочинатися з літери або цифри, можуть містити дефіси (-) і не повинні перевищувати 35 символів.
5104 Коміти
17 Гілки
Дерево: 9182a35f18
Гілки Теги
${ item.name }
Створити гілку ${ searchTerm }
з '9182a35f18'
${ noResults }
gitea/routers/user/setting_openid.go

setting_openid.go 4.2KB
Неформатований Blame Історія

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158 
  1. // Copyright 2017 The Gitea Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package user

  6. 

  7. import (

  8. 

  9. 	"code.gitea.io/gitea/models"

  10. 	"code.gitea.io/gitea/modules/auth"

  11. 	"code.gitea.io/gitea/modules/auth/openid"

  12. 	"code.gitea.io/gitea/modules/base"

  13. 	"code.gitea.io/gitea/modules/context"

  14. 	"code.gitea.io/gitea/modules/log"

  15. 	"code.gitea.io/gitea/modules/setting"

  16. )

  17. 

  18. const (

  19. 	tplSettingsOpenID       base.TplName = "user/settings/openid"

  20. )

  21. 

  22. // SettingsOpenID renders change user's openid page

  23. func SettingsOpenID(ctx *context.Context) {

  24. 	ctx.Data["Title"] = ctx.Tr("settings")

  25. 	ctx.Data["PageIsSettingsOpenID"] = true

  26. 

  27. 	if ctx.Query("openid.return_to") != "" {

  28. 		settingsOpenIDVerify(ctx)

  29. 		return

  30. 	}

  31. 

  32. 	openid, err := models.GetUserOpenIDs(ctx.User.ID)

  33. 	if err != nil {

  34. 		ctx.Handle(500, "GetUserOpenIDs", err)

  35. 		return

  36. 	}

  37. 	ctx.Data["OpenIDs"] = openid

  38. 

  39. 	ctx.HTML(200, tplSettingsOpenID)

  40. }

  41. 

  42. // SettingsOpenIDPost response for change user's openid

  43. func SettingsOpenIDPost(ctx *context.Context, form auth.AddOpenIDForm) {

  44. 	ctx.Data["Title"] = ctx.Tr("settings")

  45. 	ctx.Data["PageIsSettingsOpenID"] = true

  46. 

  47. 	if ctx.HasError() {

  48. 		openid, err := models.GetUserOpenIDs(ctx.User.ID)

  49. 		if err != nil {

  50. 			ctx.Handle(500, "GetUserOpenIDs", err)

  51. 			return

  52. 		}

  53. 		ctx.Data["OpenIDs"] = openid

  54. 		ctx.HTML(200, tplSettingsOpenID)

  55. 		return

  56. 	}

  57. 

  58. 	// WARNING: specifying a wrong OpenID here could lock

  59. 	// a user out of her account, would be better to

  60. 	// verify/confirm the new OpenID before storing it

  61. 

  62. 	// Also, consider allowing for multiple OpenID URIs

  63. 

  64. 	id, err := openid.Normalize(form.Openid)

  65. 	if err != nil {

  66. 		ctx.RenderWithErr(err.Error(), tplSettingsOpenID, &form)

  67. 		return;

  68. 	}

  69. 	form.Openid = id

  70.         log.Trace("Normalized id: " + id)

  71. 

  72. 	oids, err := models.GetUserOpenIDs(ctx.User.ID)

  73. 	if err != nil {

  74. 		ctx.Handle(500, "GetUserOpenIDs", err)

  75. 		return

  76. 	}

  77. 	ctx.Data["OpenIDs"] = oids

  78. 

  79. 	// Check that the OpenID is not already used

  80. 	for _, obj := range oids {

  81. 		if obj.URI == id {

  82. 			ctx.RenderWithErr(ctx.Tr("form.openid_been_used", id), tplSettingsOpenID, &form)

  83. 			return

  84. 		}

  85. 	}

  86. 

  87. 

  88. 	redirectTo := setting.AppURL + "user/settings/openid"

  89. 	url, err := openid.RedirectURL(id, redirectTo, setting.AppURL)

  90.         if err != nil {

  91. 		ctx.RenderWithErr(err.Error(), tplSettingsOpenID, &form)

  92.                 return;

  93.         }

  94. 	ctx.Redirect(url)

  95. }

  96. 

  97. func settingsOpenIDVerify(ctx *context.Context) {

  98.         log.Trace("Incoming call to: " + ctx.Req.Request.URL.String())

  99. 

  100.         fullURL := setting.AppURL + ctx.Req.Request.URL.String()[1:]

  101.         log.Trace("Full URL: " + fullURL)

  102. 

  103. 	oids, err := models.GetUserOpenIDs(ctx.User.ID)

  104. 	if err != nil {

  105. 		ctx.Handle(500, "GetUserOpenIDs", err)

  106. 		return

  107. 	}

  108. 	ctx.Data["OpenIDs"] = oids

  109. 

  110. 	id, err := openid.Verify(fullURL)

  111. 	if err != nil {

  112. 		ctx.RenderWithErr(err.Error(), tplSettingsOpenID, &auth.AddOpenIDForm{

  113. 			Openid: id,

  114. 		})

  115. 		return

  116. 	}

  117. 

  118. 	log.Trace("Verified ID: " + id)

  119. 

  120. 	oid := &models.UserOpenID{UID:ctx.User.ID, URI:id}

  121. 	if err = models.AddUserOpenID(oid); err != nil {

  122. 		if models.IsErrOpenIDAlreadyUsed(err) {

  123. 			ctx.RenderWithErr(ctx.Tr("form.openid_been_used", id), tplSettingsOpenID, &auth.AddOpenIDForm{ Openid: id })

  124. 			return

  125. 		}

  126. 		ctx.Handle(500, "AddUserOpenID", err)

  127. 		return

  128. 	}

  129. 	log.Trace("Associated OpenID %s to user %s", id, ctx.User.Name)

  130. 	ctx.Flash.Success(ctx.Tr("settings.add_openid_success"))

  131. 

  132. 	ctx.Redirect(setting.AppSubURL + "/user/settings/openid")

  133. }

  134. 

  135. // DeleteOpenID response for delete user's openid

  136. func DeleteOpenID(ctx *context.Context) {

  137. 	if err := models.DeleteUserOpenID(&models.UserOpenID{ID: ctx.QueryInt64("id"), UID: ctx.User.ID}); err != nil {

  138. 		ctx.Handle(500, "DeleteUserOpenID", err)

  139. 		return

  140. 	}

  141. 	log.Trace("OpenID address deleted: %s", ctx.User.Name)

  142. 

  143. 	ctx.Flash.Success(ctx.Tr("settings.openid_deletion_success"))

  144. 	ctx.JSON(200, map[string]interface{}{

  145. 		"redirect": setting.AppSubURL + "/user/settings/openid",

  146. 	})

  147. }

  148. 

  149. // ToggleOpenIDVisibility response for toggle visibility of user's openid

  150. func ToggleOpenIDVisibility(ctx *context.Context) {

  151. 	if err := models.ToggleUserOpenIDVisibility(ctx.QueryInt64("id")); err != nil {

  152. 		ctx.Handle(500, "ToggleUserOpenIDVisibility", err)

  153. 		return

  154. 	}

  155. 

  156. 	ctx.Redirect(setting.AppSubURL + "/user/settings/openid")

  157. }