grafana/pkg/social/grafananet_oauth.go

package social

import (
	"encoding/json"
	"net/http"

	"github.com/grafana/grafana/pkg/models"

	"golang.org/x/oauth2"
)

type SocialGrafanaNet struct {
	*oauth2.Config
	url                  string
	allowedOrganizations []string
	allowSignup          bool
}

type OrgRecord struct {
	Login string `json:"login"`
}

func (s *SocialGrafanaNet) Type() int {
	return int(models.GRAFANANET)
}

func (s *SocialGrafanaNet) IsEmailAllowed(email string) bool {
	return true
}

func (s *SocialGrafanaNet) IsSignupAllowed() bool {
	return s.allowSignup
}

func (s *SocialGrafanaNet) IsOrganizationMember(organizations []OrgRecord) bool {
	if len(s.allowedOrganizations) == 0 {
		return true
	}

	for _, allowedOrganization := range s.allowedOrganizations {
		for _, organization := range organizations {
			if organization.Login == allowedOrganization {
				return true
			}
		}
	}

	return false
}

func (s *SocialGrafanaNet) UserInfo(client *http.Client) (*BasicUserInfo, error) {
	var data struct {
		Name  string      `json:"name"`
		Login string      `json:"username"`
		Email string      `json:"email"`
		Role  string      `json:"role"`
		Orgs  []OrgRecord `json:"orgs"`
	}

	var err error
	r, err := client.Get(s.url + "/api/oauth2/user")
	if err != nil {
		return nil, err
	}

	defer r.Body.Close()

	if err = json.NewDecoder(r.Body).Decode(&data); err != nil {
		return nil, err
	}

	userInfo := &BasicUserInfo{
		Name:  data.Name,
		Login: data.Login,
		Email: data.Email,
		Role:  data.Role,
	}

	if !s.IsOrganizationMember(data.Orgs) {
		return nil, ErrMissingOrganizationMembership
	}

	return userInfo, nil
}
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`package social`

			`import (`
			`"encoding/json"`
			`"net/http"`

			`"github.com/grafana/grafana/pkg/models"`

			`"golang.org/x/oauth2"`
			`)`

			`type SocialGrafanaNet struct {`
			`*oauth2.Config`
			`url string`
			`allowedOrganizations []string`
			`allowSignup bool`
			`}`

Oauth2 Updates (#6226) * break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic 2016-10-11 01:51:44 -05:00			`type OrgRecord struct {`
			Login string `json:"login"`
			`}`

support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`func (s *SocialGrafanaNet) Type() int {`
			`return int(models.GRAFANANET)`
			`}`

			`func (s *SocialGrafanaNet) IsEmailAllowed(email string) bool {`
			`return true`
			`}`

			`func (s *SocialGrafanaNet) IsSignupAllowed() bool {`
			`return s.allowSignup`
			`}`

Oauth2 Updates (#6226) * break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic 2016-10-11 01:51:44 -05:00			`func (s *SocialGrafanaNet) IsOrganizationMember(organizations []OrgRecord) bool {`
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`if len(s.allowedOrganizations) == 0 {`
			`return true`
			`}`

			`for _, allowedOrganization := range s.allowedOrganizations {`
			`for _, organization := range organizations {`
Oauth2 Updates (#6226) * break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic 2016-10-11 01:51:44 -05:00			`if organization.Login == allowedOrganization {`
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`return true`
			`}`
			`}`
			`}`

			`return false`
			`}`

Oauth2 Updates (#6226) * break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic 2016-10-11 01:51:44 -05:00			`func (s SocialGrafanaNet) UserInfo(client http.Client) (*BasicUserInfo, error) {`
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`var data struct {`
(format) run go fmt in pkg 2016-12-13 21:15:35 -06:00			Name string `json:"name"`
			Login string `json:"username"`
			Email string `json:"email"`
			Role string `json:"role"`
Oauth2 Updates (#6226) * break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic 2016-10-11 01:51:44 -05:00			Orgs []OrgRecord `json:"orgs"`
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`}`

			`var err error`
			`r, err := client.Get(s.url + "/api/oauth2/user")`
			`if err != nil {`
			`return nil, err`
			`}`

			`defer r.Body.Close()`

			`if err = json.NewDecoder(r.Body).Decode(&data); err != nil {`
			`return nil, err`
			`}`

			`userInfo := &BasicUserInfo{`
(format) run go fmt in pkg 2016-12-13 21:15:35 -06:00			`Name: data.Name,`
			`Login: data.Login,`
			`Email: data.Email,`
			`Role: data.Role,`
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`}`

Oauth2 Updates (#6226) * break out go and js build commands * support oauth providers that return errors via redirect * remove extra call to get grafana.net org membership * removed GitHub specifics from generic OAuth * readded ability to name generic source * revert to a backward-compatible state, refactor and clean up * streamline oauth user creation, make generic oauth support more generic 2016-10-11 01:51:44 -05:00			`if !s.IsOrganizationMember(data.Orgs) {`
support logging in with grafana.net credentials 2016-09-19 15:48:07 -05:00			`return nil, ErrMissingOrganizationMembership`
			`}`

			`return userInfo, nil`
			`}`