forked from AkkomaGang/akkoma
92 lines
2.5 KiB
Elixir
92 lines
2.5 KiB
Elixir
|
# Pleroma: A lightweight social networking server
|
||
|
# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
|
||
|
# SPDX-License-Identifier: AGPL-3.0-only
|
||
|
|
||
|
defmodule Pleroma.Web.MastodonAPI.AuthController do
|
||
|
use Pleroma.Web, :controller
|
||
|
|
||
|
alias Pleroma.User
|
||
|
alias Pleroma.Web.OAuth.App
|
||
|
alias Pleroma.Web.OAuth.Authorization
|
||
|
alias Pleroma.Web.OAuth.Token
|
||
|
alias Pleroma.Web.TwitterAPI.TwitterAPI
|
||
|
|
||
|
action_fallback(Pleroma.Web.MastodonAPI.FallbackController)
|
||
|
|
||
|
@local_mastodon_name "Mastodon-Local"
|
||
|
|
||
|
plug(Pleroma.Plugs.RateLimiter, :password_reset when action == :password_reset)
|
||
|
|
||
|
@doc "GET /web/login"
|
||
|
def login(%{assigns: %{user: %User{}}} = conn, _params) do
|
||
|
redirect(conn, to: local_mastodon_root_path(conn))
|
||
|
end
|
||
|
|
||
|
@doc "Local Mastodon FE login init action"
|
||
|
def login(conn, %{"code" => auth_token}) do
|
||
|
with {:ok, app} <- get_or_make_app(),
|
||
|
{:ok, auth} <- Authorization.get_by_token(app, auth_token),
|
||
|
{:ok, token} <- Token.exchange_token(app, auth) do
|
||
|
conn
|
||
|
|> put_session(:oauth_token, token.token)
|
||
|
|> redirect(to: local_mastodon_root_path(conn))
|
||
|
end
|
||
|
end
|
||
|
|
||
|
@doc "Local Mastodon FE callback action"
|
||
|
def login(conn, _) do
|
||
|
with {:ok, app} <- get_or_make_app() do
|
||
|
path =
|
||
|
o_auth_path(conn, :authorize,
|
||
|
response_type: "code",
|
||
|
client_id: app.client_id,
|
||
|
redirect_uri: ".",
|
||
|
scope: Enum.join(app.scopes, " ")
|
||
|
)
|
||
|
|
||
|
redirect(conn, to: path)
|
||
|
end
|
||
|
end
|
||
|
|
||
|
@doc "DELETE /auth/sign_out"
|
||
|
def logout(conn, _) do
|
||
|
conn
|
||
|
|> clear_session
|
||
|
|> redirect(to: "/")
|
||
|
end
|
||
|
|
||
|
@doc "POST /auth/password"
|
||
|
def password_reset(conn, params) do
|
||
|
nickname_or_email = params["email"] || params["nickname"]
|
||
|
|
||
|
with {:ok, _} <- TwitterAPI.password_reset(nickname_or_email) do
|
||
|
conn
|
||
|
|> put_status(:no_content)
|
||
|
|> json("")
|
||
|
else
|
||
|
{:error, "unknown user"} ->
|
||
|
send_resp(conn, :not_found, "")
|
||
|
|
||
|
{:error, _} ->
|
||
|
send_resp(conn, :bad_request, "")
|
||
|
end
|
||
|
end
|
||
|
|
||
|
defp local_mastodon_root_path(conn) do
|
||
|
case get_session(conn, :return_to) do
|
||
|
nil ->
|
||
|
mastodon_api_path(conn, :index, ["getting-started"])
|
||
|
|
||
|
return_to ->
|
||
|
delete_session(conn, :return_to)
|
||
|
return_to
|
||
|
end
|
||
|
end
|
||
|
|
||
|
@spec get_or_make_app() :: {:ok, App.t()} | {:error, Ecto.Changeset.t()}
|
||
|
defp get_or_make_app do
|
||
|
%{client_name: @local_mastodon_name, redirect_uris: "."}
|
||
|
|> App.get_or_make(["read", "write", "follow", "push"])
|
||
|
end
|
||
|
end
|