Fixed server implementation;Improve the example

田念收 · 田念收 · commit a0ff18c3952a · 2016-07-20T07:50:31.000+08:00
diff --git a/example/server/main.go b/example/server/main.go
@@ -5,15 +5,26 @@ import (
 	"log"
 	"net/http"
 
-	"gopkg.in/oauth2.v3"
+	"net/url"
+
+	"os"
+
+	"github.com/gorilla/sessions"
 	"gopkg.in/oauth2.v3/manage"
 	"gopkg.in/oauth2.v3/models"
 	"gopkg.in/oauth2.v3/server"
 	"gopkg.in/oauth2.v3/store/client"
 	"gopkg.in/oauth2.v3/store/token"
 )
 
+var (
+	sessionStore *sessions.CookieStore
+)
+
 func main() {
+	// Create the session store
+	sessionStore = sessions.NewCookieStore([]byte("123456"))
+
 	manager := manage.NewRedisManager(
 		&token.RedisConfig{Addr: "192.168.33.70:6379"},
 	)
@@ -25,15 +36,15 @@ func main() {
 	}))
 
 	srv := server.NewServer(server.NewConfig(), manager)
-	srv.SetAllowedResponseType(oauth2.Code)
-	srv.SetAllowedGrantType(oauth2.AuthorizationCode)
+
+	srv.SetUserAuthorizationHandler(userAuthorizeHandler)
+
 	srv.SetErrorHandler(func(err error) {
 		fmt.Println("OAuth2 Error:", err.Error())
 	})
-	srv.SetUserAuthorizationHandler(func(w http.ResponseWriter, r *http.Request) (userID string, err error) {
-		userID = "000000"
-		return
-	})
+
+	http.HandleFunc("/login", loginHandler)
+	http.HandleFunc("/auth", authHandler)
 
 	http.HandleFunc("/authorize", func(w http.ResponseWriter, r *http.Request) {
 		err := srv.HandleAuthorizeRequest(w, r)
@@ -52,3 +63,60 @@ func main() {
 	log.Println("Server is running at 9096 port.")
 	log.Fatal(http.ListenAndServe(":9096", nil))
 }
+
+func userAuthorizeHandler(w http.ResponseWriter, r *http.Request) (userID string, err error) {
+	us, err := sessionStore.Get(r, "user")
+	if err != nil {
+		return
+	}
+	if us.IsNew {
+		r.ParseForm()
+		fs, _ := sessionStore.Get(r, "form")
+		fs.Values["Form"] = r.Form
+		w.Header().Set("Location", "/login")
+		w.WriteHeader(http.StatusFound)
+		return
+	}
+	userID = us.Values["UserID"].(string)
+	return
+}
+
+func loginHandler(w http.ResponseWriter, r *http.Request) {
+	if r.Method == "POST" {
+		us, _ := sessionStore.Get(r, "user")
+		us.Values["UserID"] = "000000"
+		us.Save(r, w)
+		w.Header().Set("Location", "/auth")
+		w.WriteHeader(http.StatusFound)
+		return
+	}
+	outputHTML(w, r, "static/login.html")
+}
+
+func authHandler(w http.ResponseWriter, r *http.Request) {
+	us, _ := sessionStore.Get(r, "user")
+	if us.IsNew {
+		w.Header().Set("Location", "/login")
+		w.WriteHeader(http.StatusFound)
+		return
+	}
+	if r.Method == "POST" {
+		fs, _ := sessionStore.Get(r, "form")
+		values := fs.Values["Form"].(url.Values)
+		w.Header().Set("Location", "/authorize?"+values.Encode())
+		w.WriteHeader(http.StatusFound)
+		return
+	}
+	outputHTML(w, r, "static/auth.html")
+}
+
+func outputHTML(w http.ResponseWriter, req *http.Request, filename string) {
+	file, err := os.Open(filename)
+	if err != nil {
+		http.Error(w, err.Error(), 500)
+		return
+	}
+	defer file.Close()
+	fi, _ := file.Stat()
+	http.ServeContent(w, req, file.Name(), fi.ModTime(), file)
+}
diff --git a/example/server/static/auth.html b/example/server/static/auth.html
@@ -0,0 +1,24 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <title>Auth</title>
+    <link rel="stylesheet" href="//maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css">
+    <script src="//code.jquery.com/jquery-2.2.4.min.js"></script>
+    <script src="//maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"></script>
+</head>
+
+<body>
+    <div class="container">
+        <div class="jumbotron">
+        <form action="/auth" method="POST">
+            <h1>The user authorization!</h1>
+            <p>...</p>
+            <p><button type="submit" class="btn btn-danger btn-lg">Authorize</button></p>
+        </form>
+    </div>
+    </div>
+</body>
+
+</html>
diff --git a/example/server/static/login.html b/example/server/static/login.html
@@ -0,0 +1,29 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+    <meta charset="UTF-8">
+    <title>Login</title>
+    <link rel="stylesheet" href="//maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css">
+    <script src="//code.jquery.com/jquery-2.2.4.min.js"></script>
+    <script src="//maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js"></script>
+</head>
+
+<body>
+    <div class="container">
+        <h1>Login</h1>
+        <form action="/login" method="POST">
+            <div class="form-group">
+                <label for="username">User Name</label>
+                <input type="text" class="form-control" name="username" placeholder="Please enter your user name">
+            </div>
+            <div class="form-group">
+                <label for="password">Password</label>
+                <input type="password" class="form-control" name="password" placeholder="Please enter your password">
+            </div>
+            <button type="submit" class="btn btn-primary">Submit</button>
+        </form>
+    </div>
+</body>
+
+</html>
diff --git a/server/server.go b/server/server.go
@@ -126,8 +126,7 @@ func (s *Server) ValidationAuthorizeRequest(r *http.Request) (req *AuthorizeRequ
 // GetAuthorizeToken Get authorization token(code)
 func (s *Server) GetAuthorizeToken(req *AuthorizeRequest) (ti oauth2.TokenInfo, rerr, ierr error) {
 	if req.RedirectURI == "" ||
-		req.ClientID == "" ||
-		req.UserID == "" {
+		req.ClientID == "" {
 		rerr = errors.ErrInvalidRequest
 		return
 	} else if req.ResponseType == "" {
@@ -231,9 +230,6 @@ func (s *Server) GetErrorData(rerr, ierr error) (data map[string]interface{}) {
 		err = rerr
 		ierr = rerr
 	}
-	if err == nil {
-		return
-	}
 	if fn := s.ErrorHandler; fn != nil {
 		s.ErrorHandler(err)
 	}
@@ -243,47 +239,52 @@ func (s *Server) GetErrorData(rerr, ierr error) (data map[string]interface{}) {
 	return
 }
 
+func (s *Server) resRedirectError(w http.ResponseWriter, req *AuthorizeRequest, rerr, ierr error) (err error) {
+	if req == nil {
+		err = ierr
+		return
+	}
+	err = s.resRedirect(w, req, s.GetErrorData(rerr, ierr))
+	return
+}
+
+func (s *Server) resRedirect(w http.ResponseWriter, req *AuthorizeRequest, data map[string]interface{}) (err error) {
+	uri, verr := s.GetRedirectURI(req, data)
+	if verr != nil {
+		err = verr
+		return
+	}
+	w.Header().Set("Location", uri)
+	w.WriteHeader(302)
+	return
+}
+
 // HandleAuthorizeRequest The authorization request handling
 func (s *Server) HandleAuthorizeRequest(w http.ResponseWriter, r *http.Request) (err error) {
-	var (
-		ti   oauth2.TokenInfo
-		req  *AuthorizeRequest
-		rerr error
-		ierr error
-	)
 	defer func() {
 		if verr := recover(); verr != nil {
 			err = fmt.Errorf("%v", verr)
-			return
-		}
-		data := s.GetErrorData(rerr, ierr)
-		if data != nil {
-			if req == nil {
-				err = ierr
-				return
-			}
-		} else {
-			data = s.GetAuthorizeData(req.ResponseType, ti)
 		}
-		uri, verr := s.GetRedirectURI(req, data)
-		if verr != nil {
-			err = verr
-			return
-		}
-		w.Header().Set("Location", uri)
-		w.WriteHeader(302)
 	}()
-	req, rerr, ierr = s.ValidationAuthorizeRequest(r)
+	req, rerr, ierr := s.ValidationAuthorizeRequest(r)
 	if rerr != nil || ierr != nil {
+		err = s.resRedirectError(w, req, rerr, ierr)
 		return
 	}
 	userID, err := s.UserAuthorizationHandler(w, r)
 	if err != nil {
-		ierr = err
+		err = s.resRedirectError(w, req, nil, err)
+		return
+	} else if userID == "" {
 		return
 	}
 	req.UserID = userID
-	ti, rerr, ierr = s.GetAuthorizeToken(req)
+	ti, rerr, ierr := s.GetAuthorizeToken(req)
+	if rerr != nil || ierr != nil {
+		err = s.resRedirectError(w, req, rerr, ierr)
+		return
+	}
+	err = s.resRedirect(w, req, s.GetAuthorizeData(req.ResponseType, ti))
 	return
 }
 
@@ -442,32 +443,37 @@ func (s *Server) GetTokenData(ti oauth2.TokenInfo) (data map[string]interface{})
 	return
 }
 
+func (s *Server) resTokenError(w http.ResponseWriter, rerr, ierr error) (err error) {
+	err = s.resToken(w, s.GetErrorData(rerr, ierr))
+	return
+}
+
+func (s *Server) resToken(w http.ResponseWriter, data map[string]interface{}) (err error) {
+	w.Header().Set("Content-Type", "application/json;charset=UTF-8")
+	w.Header().Set("Cache-Control", "no-store")
+	w.Header().Set("Pragma", "no-cache")
+	w.WriteHeader(http.StatusOK)
+	err = json.NewEncoder(w).Encode(data)
+	return
+}
+
 // HandleTokenRequest The token request handling
 func (s *Server) HandleTokenRequest(w http.ResponseWriter, r *http.Request) (err error) {
-	var (
-		ti   oauth2.TokenInfo
-		rerr error
-		ierr error
-	)
 	defer func() {
 		if verr := recover(); verr != nil {
 			err = fmt.Errorf("%v", verr)
-			return
 		}
-		data := s.GetErrorData(rerr, ierr)
-		if data == nil {
-			data = s.GetTokenData(ti)
-		}
-		w.Header().Set("Content-Type", "application/json;charset=UTF-8")
-		w.Header().Set("Cache-Control", "no-store")
-		w.Header().Set("Pragma", "no-cache")
-		w.WriteHeader(http.StatusOK)
-		err = json.NewEncoder(w).Encode(data)
 	}()
 	gt, tgr, rerr, ierr := s.ValidationTokenRequest(r)
 	if rerr != nil || ierr != nil {
+		err = s.resTokenError(w, rerr, ierr)
+		return
+	}
+	ti, rerr, ierr := s.GetAccessToken(gt, tgr)
+	if rerr != nil || ierr != nil {
+		err = s.resTokenError(w, rerr, ierr)
 		return
 	}
-	ti, rerr, ierr = s.GetAccessToken(gt, tgr)
+	err = s.resToken(w, s.GetTokenData(ti))
 	return
 }
