manage AgentConnect callback
This commit is contained in:
simon lehericey
parent
1926a630f9
commit
5234a1854c
4 changed files with 46 additions and 1 deletions
|
|
@ -1,3 +1,4 @@
|
||||||
|
# doc: https://github.com/france-connect/Documentation-AgentConnect
|
||||||
class AgentConnect::AgentController < ApplicationController
|
class AgentConnect::AgentController < ApplicationController
|
||||||
def index
|
def index
|
||||||
end
|
end
|
||||||
|
|
@ -5,4 +6,35 @@ class AgentConnect::AgentController < ApplicationController
|
||||||
def login
|
def login
|
||||||
redirect_to AgentConnectService.authorization_uri
|
redirect_to AgentConnectService.authorization_uri
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def callback
|
||||||
|
user_info = AgentConnectService.user_info(params[:code])
|
||||||
|
|
||||||
|
instructeur = Instructeur.find_by(agent_connect_id: user_info['sub'])
|
||||||
|
|
||||||
|
if instructeur.nil?
|
||||||
|
instructeur = Instructeur.find_by(users: { email: santized_email(user_info) })
|
||||||
|
instructeur&.update(agent_connect_id: user_info['sub'])
|
||||||
|
end
|
||||||
|
|
||||||
|
if instructeur.nil?
|
||||||
|
user = User.create_or_promote_to_instructeur(santized_email(user_info), Devise.friendly_token[0, 20])
|
||||||
|
instructeur = user.instructeur
|
||||||
|
instructeur.update(agent_connect_id: user_info['sub'])
|
||||||
|
end
|
||||||
|
|
||||||
|
sign_in(:user, instructeur.user)
|
||||||
|
|
||||||
|
redirect_to instructeur_procedures_path
|
||||||
|
|
||||||
|
rescue Rack::OAuth2::Client::Error => e
|
||||||
|
Rails.logger.error e.message
|
||||||
|
redirect_france_connect_error_connection
|
||||||
|
end
|
||||||
|
|
||||||
|
private
|
||||||
|
|
||||||
|
def santized_email(user_info)
|
||||||
|
user_info['email'].strip.downcase
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|
|
||||||
|
|
@ -1,5 +1,9 @@
|
||||||
class AgentConnectClient < OpenIDConnect::Client
|
class AgentConnectClient < OpenIDConnect::Client
|
||||||
def initialize
|
def initialize(code = nil)
|
||||||
super(AGENT_CONNECT)
|
super(AGENT_CONNECT)
|
||||||
|
|
||||||
|
if code.present?
|
||||||
|
self.authorization_code = code
|
||||||
|
end
|
||||||
end
|
end
|
||||||
end
|
end
|
||||||
|
|
|
||||||
|
|
@ -13,4 +13,12 @@ class AgentConnectService
|
||||||
acr_values: 'eidas1'
|
acr_values: 'eidas1'
|
||||||
)
|
)
|
||||||
end
|
end
|
||||||
|
|
||||||
|
def self.user_info(code)
|
||||||
|
client = AgentConnectClient.new(code)
|
||||||
|
|
||||||
|
client.access_token!(client_auth_method: :secret)
|
||||||
|
.userinfo!
|
||||||
|
.raw_attributes
|
||||||
|
end
|
||||||
end
|
end
|
||||||
|
|
|
||||||
|
|
@ -132,6 +132,7 @@ Rails.application.routes.draw do
|
||||||
namespace :agent_connect do
|
namespace :agent_connect do
|
||||||
get '' => 'agent#index'
|
get '' => 'agent#index'
|
||||||
get 'login' => 'agent#login'
|
get 'login' => 'agent#login'
|
||||||
|
get 'callback' => 'agent#callback'
|
||||||
end
|
end
|
||||||
|
|
||||||
namespace :champs do
|
namespace :champs do
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue