cst1/openstreetmap-website
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Switch web site to use OAuth 2

Browse source
This commit is contained in:
Tom Hughes 2021-06-27 18:42:47 +01:00
parent 90360df6d7
commit b4a1e41968
7 changed files with 20 additions and 42 deletions
Download patch file Download diff file Expand all files Collapse all files

21
app/assets/javascripts/oauth.js
View file

@ -1,26 +1,11 @@
//= require ohauth/ohauth
$(document).ready(function () { $(document).ready(function () {
var application_data = $("head").data(); var application_data = $("head").data();
function makeAbsolute(url) { if (application_data.oauthToken) {
var a = document.createElement("a"); $.ajaxPrefilter(function (options) {
a.href = url;
return a.href;
}
if (application_data.token) {
var headerGenerator = window.ohauth.headerGenerator({
consumer_key: application_data.consumerKey,
consumer_secret: application_data.consumerSecret,
token: application_data.token,
token_secret: application_data.tokenSecret
});
$.ajaxPrefilter(function (options, jqxhr) {
if (options.oauth) { if (options.oauth) {
options.headers = options.headers || {}; options.headers = options.headers || {};
options.headers.Authorization = headerGenerator(options.type, makeAbsolute(options.url), jqxhr.data); options.headers.Authorization = "Bearer " + application_data.oauthToken;
} }
}); });
} }

2
app/controllers/application_controller.rb
View file

@ -67,7 +67,7 @@ class ApplicationController < ActionController::Base
end end
def require_oauth def require_oauth
@oauth_token = current_user.access_token(Settings.oauth_key) if current_user && Settings.key?(:oauth_key) @oauth_token = current_user.oauth_token(Settings.oauth_application) if current_user && Settings.key?(:oauth_application)
end end
## ##

8
app/helpers/application_helper.rb
View file

@ -58,13 +58,7 @@ module ApplicationHelper
end end
data[:location] = session[:location] if session[:location] data[:location] = session[:location] if session[:location]
data[:oauth_token] = oauth_token.token if oauth_token
if oauth_token
data[:token] = oauth_token.token
data[:token_secret] = oauth_token.secret
data[:consumer_key] = oauth_token.client_application.key
data[:consumer_secret] = oauth_token.client_application.secret
end
data data
end end

14
app/models/user.rb
View file

@ -288,11 +288,23 @@ class User < ApplicationRecord
end end
## ##
# return an oauth access token for a specified application # return an oauth 1 access token for a specified application
def access_token(application_key) def access_token(application_key)
ClientApplication.find_by(:key => application_key).access_token_for_user(self) ClientApplication.find_by(:key => application_key).access_token_for_user(self)
end end
##
# return an oauth 2 access token for a specified application
def oauth_token(application_id)
application = Doorkeeper.config.application_model.find_by(:uid => application_id)
Doorkeeper.config.access_token_model.find_or_create_for(
:application => application,
:resource_owner => self,
:scopes => application.scopes
)
end
def fingerprint def fingerprint
digest = Digest::SHA256.new digest = Digest::SHA256.new
digest.update(email) digest.update(email)

4
config/settings.yml
View file

@ -84,8 +84,8 @@ oauth_10_support: true
nominatim_url: "https://nominatim.openstreetmap.org/" nominatim_url: "https://nominatim.openstreetmap.org/"
# Default editor # Default editor
default_editor: "id" default_editor: "id"
# OAuth consumer key for the web site # OAuth application for the web site
#oauth_key: "" #oauth_application: ""
# OAuth consumer key for iD # OAuth consumer key for iD
#id_key: "" #id_key: ""
# Imagery to return in capabilities as blacklisted # Imagery to return in capabilities as blacklisted

1
package.json
View file

@ -8,7 +8,6 @@
"js-cookie": "^2.2.1", "js-cookie": "^2.2.1",
"leaflet": "^1.6.0", "leaflet": "^1.6.0",
"leaflet.locatecontrol": "^0.74.0", "leaflet.locatecontrol": "^0.74.0",
"ohauth": "^1.0.0",
"qs": "^6.9.4" "qs": "^6.9.4"
}, },
"devDependencies": { "devDependencies": {

12
yarn.lock
View file

@ -550,11 +550,6 @@ js-yaml@^3.13.1:
argparse "^1.0.7" argparse "^1.0.7"
esprima "^4.0.0" esprima "^4.0.0"
jshashes@~1.0.8:
version "1.0.8"
resolved "https://registry.yarnpkg.com/jshashes/-/jshashes-1.0.8.tgz#f60d837428383abf73ab022e1542e6614bd75514"
integrity sha512-btmQZ/w1rj8Lb6nEwvhjM7nBYoj54yaEFo2PWh3RkxZ8qNwuvOxvQYN/JxVuwoMmdIluL+XwYVJ+pEEZoSYybQ==
json-schema-traverse@^0.4.1: json-schema-traverse@^0.4.1:
version "0.4.1" version "0.4.1"
resolved "https://registry.yarnpkg.com/json-schema-traverse/-/json-schema-traverse-0.4.1.tgz#69f6a87d9513ab8bb8fe63bdb0979c448e684660" resolved "https://registry.yarnpkg.com/json-schema-traverse/-/json-schema-traverse-0.4.1.tgz#69f6a87d9513ab8bb8fe63bdb0979c448e684660"
@ -625,13 +620,6 @@ object-inspect@^1.9.0:
resolved "https://registry.yarnpkg.com/object-inspect/-/object-inspect-1.9.0.tgz#c90521d74e1127b67266ded3394ad6116986533a" resolved "https://registry.yarnpkg.com/object-inspect/-/object-inspect-1.9.0.tgz#c90521d74e1127b67266ded3394ad6116986533a"
integrity sha512-i3Bp9iTqwhaLZBxGkRfo5ZbE07BQRT7MGu8+nNgwW9ItGp1TzCTw2DLEoWwjClxBjOFI/hWljTAmYGCEwmtnOw== integrity sha512-i3Bp9iTqwhaLZBxGkRfo5ZbE07BQRT7MGu8+nNgwW9ItGp1TzCTw2DLEoWwjClxBjOFI/hWljTAmYGCEwmtnOw==
ohauth@^1.0.0:
version "1.0.1"
resolved "https://registry.yarnpkg.com/ohauth/-/ohauth-1.0.1.tgz#a5d4ab8e5390bb1cad68a58cc9c58630173c02f2"
integrity sha512-R9ZUN3+FVCwzeOOHCJpzA9jw/byRxp5O9X06mTL6Sp/LIQn/rLrMv6cwYctX+hoIKzRUsalGJXZ1kG5wBmSskQ==
dependencies:
jshashes "~1.0.8"
once@^1.3.0: once@^1.3.0:
version "1.4.0" version "1.4.0"
resolved "https://registry.yarnpkg.com/once/-/once-1.4.0.tgz#583b1aa775961d4b113ac17d9c50baef9dd76bd1" resolved "https://registry.yarnpkg.com/once/-/once-1.4.0.tgz#583b1aa775961d4b113ac17d9c50baef9dd76bd1"