SaveExternalService (OAuth) on plugin load (#69764)

pkg/services/pluginsintegration/serviceregistration/serviceregistration.go

@@ -0,0 +1,62 @@
+package serviceregistration
+
+import (
+	"context"
+
+	"github.com/grafana/grafana/pkg/plugins/oauth"
+	"github.com/grafana/grafana/pkg/services/oauthserver"
+)
+
+type Service struct {
+	os oauthserver.OAuth2Server
+}
+
+func ProvideService(os oauthserver.OAuth2Server) *Service {
+	s := &Service{
+		os: os,
+	}
+	return s
+}
+
+// RegisterExternalService is a simplified wrapper around SaveExternalService for the plugin use case.
+func (s *Service) RegisterExternalService(ctx context.Context, svcName string, svc *oauth.ExternalServiceRegistration) (*oauth.ExternalService, error) {
+	impersonation := oauthserver.ImpersonationCfg{}
+	if svc.Impersonation != nil {
+		impersonation.Permissions = svc.Impersonation.Permissions
+		if svc.Impersonation.Enabled != nil {
+			impersonation.Enabled = *svc.Impersonation.Enabled
+		} else {
+			impersonation.Enabled = true
+		}
+		if svc.Impersonation.Groups != nil {
+			impersonation.Groups = *svc.Impersonation.Groups
+		} else {
+			impersonation.Groups = true
+		}
+	}
+
+	self := oauthserver.SelfCfg{}
+	if svc.Self != nil {
+		self.Permissions = svc.Self.Permissions
+		if svc.Self.Enabled != nil {
+			self.Enabled = *svc.Self.Enabled
+		} else {
+			self.Enabled = true
+		}
+	}
+	extSvc, err := s.os.SaveExternalService(ctx, &oauthserver.ExternalServiceRegistration{
+		Name:          svcName,
+		Impersonation: impersonation,
+		Self:          self,
+		Key:           &oauthserver.KeyOption{Generate: true},
+	})
+	if err != nil {
+		return nil, err
+	}
+
+	return &oauth.ExternalService{
+		ClientID:     extSvc.ID,
+		ClientSecret: extSvc.Secret,
+		PrivateKey:   extSvc.KeyResult.PrivatePem,
+	}, nil
+}