4923 lines
181 KiB
Diff
4923 lines
181 KiB
Diff
|
diff --git a/configure.ac b/configure.ac
|
|||
|
index ddf98f1..f997d36 100644
|
|||
|
--- a/configure.ac
|
|||
|
+++ b/configure.ac
|
|||
|
@@ -124,10 +124,6 @@ if test "$enable_backend" != "no"; then
|
|||
|
AC_SUBST(GTK_CFLAGS)
|
|||
|
AC_SUBST(GTK_LIBS)
|
|||
|
|
|||
|
- PKG_CHECK_MODULES(WEBKIT_GTK, [webkit2gtk-4.0 >= 2.12.0])
|
|||
|
- AC_SUBST(WEBKIT_GTK_CFLAGS)
|
|||
|
- AC_SUBST(WEBKIT_GTK_LIBS)
|
|||
|
-
|
|||
|
PKG_CHECK_MODULES(LIBSOUP, [libsoup-2.4 >= 2.42])
|
|||
|
AC_SUBST(LIBSOUP_CFLAGS)
|
|||
|
AC_SUBST(LIBSOUP_LIBS)
|
|||
|
@@ -176,14 +172,6 @@ if test "$enable_backend" != "no"; then
|
|||
|
fi
|
|||
|
fi
|
|||
|
|
|||
|
-AC_ARG_ENABLE([inspector],
|
|||
|
- [AS_HELP_STRING([--enable-inspector], [Enable a WebKitWebInspector for the embedded web view])],
|
|||
|
- [],
|
|||
|
- [enable_inspector=no])
|
|||
|
-if test "$enable_inspector" != "no"; then
|
|||
|
- AC_DEFINE(GOA_INSPECTOR_ENABLED, 1, [Enable a WebKitWebInspector for the embedded web view])
|
|||
|
-fi
|
|||
|
-
|
|||
|
AC_ARG_WITH(template-file,
|
|||
|
[AS_HELP_STRING([--with-template-file], [Path to the template file])],
|
|||
|
[],
|
|||
|
@@ -271,7 +259,11 @@ AC_DEFINE_UNQUOTED(GOA_GOOGLE_CLIENT_ID, ["$with_google_client_id"], [Google OAu
|
|||
|
AC_DEFINE_UNQUOTED(GOA_GOOGLE_CLIENT_SECRET, ["$with_google_client_secret"], [Google OAuth 2.0 client secret])
|
|||
|
if test "$enable_google" != "no"; then
|
|||
|
AC_DEFINE(GOA_GOOGLE_ENABLED, 1, [Enable Google data provider])
|
|||
|
+ if test "$with_google_client_id" != "44438659992-7kgjeitenc16ssihbtdjbgguch7ju55s.apps.googleusercontent.com"; then
|
|||
|
+ AC_MSG_ERROR([Unexpected Google OAuth2 Client ID, correct it here and in data/Makefile.am in oauth2_schemes, to be reverse-DNS of the new Client ID])
|
|||
|
+ fi
|
|||
|
fi
|
|||
|
+AM_CONDITIONAL(GOOGLE_ENABLED, [test x$enable_google != xno])
|
|||
|
|
|||
|
# IMAP/SMTP
|
|||
|
AC_DEFINE(GOA_IMAP_SMTP_NAME, ["imap_smtp"], [ProviderType and extension point name])
|
|||
|
diff --git a/data/Makefile.am b/data/Makefile.am
|
|||
|
index 286dcd0..61b69e1 100644
|
|||
|
--- a/data/Makefile.am
|
|||
|
+++ b/data/Makefile.am
|
|||
|
@@ -20,16 +20,30 @@ service_DATA = $(service_in_files:.service.in=.service)
|
|||
|
@sed -e "s|\@libexecdir\@|$(libexecdir)|" $< > $@
|
|||
|
endif
|
|||
|
|
|||
|
+desktopdir = $(datadir)/applications
|
|||
|
+desktop_in_files = org.gnome.OnlineAccounts.OAuth2.desktop.in
|
|||
|
+desktop_DATA = $(desktop_in_files:.desktop.in=.desktop)
|
|||
|
+if GOOGLE_ENABLED
|
|||
|
+ oauth2_schemes=x-scheme-handler/com.googleusercontent.apps.44438659992-7kgjeitenc16ssihbtdjbgguch7ju55s;
|
|||
|
+else
|
|||
|
+ oauth2_schemes=
|
|||
|
+endif
|
|||
|
+
|
|||
|
+%.desktop: %.desktop.in Makefile
|
|||
|
+ @sed -e "s|\@libexecdir\@|$(libexecdir)|" -e "s|\@oauth2_schemes\@|$(oauth2_schemes)|" $< > $@
|
|||
|
+
|
|||
|
EXTRA_DIST = \
|
|||
|
$(gsettings_SCHEMAS) \
|
|||
|
dbus-interfaces.xml \
|
|||
|
org.gnome.Identity.service.in \
|
|||
|
org.gnome.OnlineAccounts.service.in \
|
|||
|
+ org.gnome.OnlineAccounts.OAuth2.desktop.in \
|
|||
|
$(NULL)
|
|||
|
|
|||
|
CLEANFILES = \
|
|||
|
org.gnome.OnlineAccounts.service \
|
|||
|
org.gnome.Identity.service \
|
|||
|
+ org.gnome.OnlineAccounts.OAuth2.desktop \
|
|||
|
$(NULL)
|
|||
|
|
|||
|
clean-local :
|
|||
|
diff --git a/data/org.gnome.OnlineAccounts.OAuth2.desktop.in b/data/org.gnome.OnlineAccounts.OAuth2.desktop.in
|
|||
|
new file mode 100644
|
|||
|
index 0000000..d0478aa
|
|||
|
--- /dev/null
|
|||
|
+++ b/data/org.gnome.OnlineAccounts.OAuth2.desktop.in
|
|||
|
@@ -0,0 +1,6 @@
|
|||
|
+[Desktop Entry]
|
|||
|
+Name=GNOME OAuth2 Handler
|
|||
|
+Exec=@libexecdir@/goa-oauth2-handler %u
|
|||
|
+Type=Application
|
|||
|
+MimeType=x-scheme-handler/goa-oauth2;@oauth2_schemes@
|
|||
|
+NoDisplay=true
|
|||
|
diff --git a/doc/goa-docs.xml b/doc/goa-docs.xml
|
|||
|
index 0abb53a..a9d45e1 100644
|
|||
|
--- a/doc/goa-docs.xml
|
|||
|
+++ b/doc/goa-docs.xml
|
|||
|
@@ -171,7 +171,6 @@
|
|||
|
<title>Core</title>
|
|||
|
<xi:include href="xml/goautil.xml"/>
|
|||
|
<xi:include href="xml/goaprovider.xml"/>
|
|||
|
- <xi:include href="xml/goaoauthprovider.xml"/>
|
|||
|
<xi:include href="xml/goaoauth2provider.xml"/>
|
|||
|
</chapter>
|
|||
|
</part>
|
|||
|
diff --git a/doc/goa-sections.txt b/doc/goa-sections.txt
|
|||
|
index 306846e..a27d942 100644
|
|||
|
--- a/doc/goa-sections.txt
|
|||
|
+++ b/doc/goa-sections.txt
|
|||
|
@@ -498,36 +498,6 @@ GoaOAuth2ProviderPrivate
|
|||
|
goa_oauth2_provider_get_type
|
|||
|
</SECTION>
|
|||
|
|
|||
|
-<SECTION>
|
|||
|
-<FILE>goaoauthprovider</FILE>
|
|||
|
-GoaOAuthProvider
|
|||
|
-GoaOAuthProviderClass
|
|||
|
-goa_oauth_provider_get_request_uri
|
|||
|
-goa_oauth_provider_get_request_uri_params
|
|||
|
-goa_oauth_provider_get_authorization_uri
|
|||
|
-goa_oauth_provider_get_token_uri
|
|||
|
-goa_oauth_provider_get_callback_uri
|
|||
|
-goa_oauth_provider_get_consumer_key
|
|||
|
-goa_oauth_provider_get_consumer_secret
|
|||
|
-goa_oauth_provider_build_authorization_uri
|
|||
|
-goa_oauth_provider_get_use_mobile_browser
|
|||
|
-goa_oauth_provider_is_deny_node
|
|||
|
-goa_oauth_provider_is_identity_node
|
|||
|
-goa_oauth_provider_is_password_node
|
|||
|
-goa_oauth_provider_add_account_key_values
|
|||
|
-goa_oauth_provider_get_identity_sync
|
|||
|
-goa_oauth_provider_get_access_token_sync
|
|||
|
-goa_oauth_provider_parse_request_token_error
|
|||
|
-<SUBSECTION Standard>
|
|||
|
-GOA_OAUTH_PROVIDER
|
|||
|
-GOA_OAUTH_PROVIDER_CLASS
|
|||
|
-GOA_OAUTH_PROVIDER_GET_CLASS
|
|||
|
-GOA_IS_OAUTH_PROVIDER
|
|||
|
-GOA_IS_OAUTH_PROVIDER_CLASS
|
|||
|
-GOA_TYPE_OAUTH_PROVIDER
|
|||
|
-goa_oauth_provider_get_type
|
|||
|
-</SECTION>
|
|||
|
-
|
|||
|
<SECTION>
|
|||
|
<FILE>GoaMail</FILE>
|
|||
|
GoaMail
|
|||
|
diff --git a/doc/goa.types b/doc/goa.types
|
|||
|
index 56ba3c4..d8d7325 100644
|
|||
|
--- a/doc/goa.types
|
|||
|
+++ b/doc/goa.types
|
|||
|
@@ -62,5 +62,4 @@ goa_printers_proxy_get_type
|
|||
|
goa_printers_skeleton_get_type
|
|||
|
|
|||
|
goa_provider_get_type
|
|||
|
-goa_oauth_provider_get_type
|
|||
|
goa_oauth2_provider_get_type
|
|||
|
diff --git a/po/POTFILES.in b/po/POTFILES.in
|
|||
|
index b65650c..8ee89ae 100644
|
|||
|
--- a/po/POTFILES.in
|
|||
|
+++ b/po/POTFILES.in
|
|||
|
@@ -22,7 +22,6 @@ src/goabackend/goasmtpauth.c
|
|||
|
src/goabackend/goatelepathyprovider.c
|
|||
|
src/goabackend/goatodoistprovider.c
|
|||
|
src/goabackend/goautils.c
|
|||
|
-src/goabackend/goawebview.c
|
|||
|
src/goabackend/goawindowsliveprovider.c
|
|||
|
src/goaidentity/goaidentityservice.c
|
|||
|
src/goaidentity/goakerberosidentity.c
|
|||
|
diff --git a/src/goabackend/Makefile.am b/src/goabackend/Makefile.am
|
|||
|
index c254594..7f15518 100644
|
|||
|
--- a/src/goabackend/Makefile.am
|
|||
|
+++ b/src/goabackend/Makefile.am
|
|||
|
@@ -19,7 +19,6 @@ AM_CPPFLAGS = \
|
|||
|
-DPACKAGE_LOCALSTATE_DIR=\""$(localstatedir)"\" \
|
|||
|
-DPACKAGE_LOCALE_DIR=\""$(localedir)"\" \
|
|||
|
-DPACKAGE_LIB_DIR=\""$(libdir)"\" \
|
|||
|
- -DPACKAGE_WEB_EXTENSIONS_DIR=\""$(libdir)/goa-1.0/web-extensions"\" \
|
|||
|
-D_POSIX_PTHREAD_SEMANTICS -D_REENTRANT \
|
|||
|
$(WARN_CFLAGS) \
|
|||
|
$(NULL)
|
|||
|
@@ -81,17 +80,13 @@ libgoa_backend_1_0_la_SOURCES = \
|
|||
|
goasouplogger.h goasouplogger.c \
|
|||
|
goamailclient.h goamailclient.c \
|
|||
|
goaexchangeprovider.h goaexchangeprovider.c \
|
|||
|
- goaoauthprovider.h goaoauthprovider.c \
|
|||
|
goaoauth2provider.h goaoauth2provider-priv.h \
|
|||
|
- goaoauth2provider-web-extension.h \
|
|||
|
- goaoauth2provider-web-view.h \
|
|||
|
goaoauth2provider.c \
|
|||
|
goagoogleprovider.h goagoogleprovider.c \
|
|||
|
goafacebookprovider.h goafacebookprovider.c \
|
|||
|
goaimapsmtpprovider.h goaimapsmtpprovider.c \
|
|||
|
goamediaserverprovider.h goamediaserverprovider.c \
|
|||
|
goaowncloudprovider.h goaowncloudprovider.c \
|
|||
|
- goaflickrprovider.h goaflickrprovider.c \
|
|||
|
goafoursquareprovider.h goafoursquareprovider.c \
|
|||
|
goawindowsliveprovider.h goawindowsliveprovider.c \
|
|||
|
goapocketprovider.h goapocketprovider.c \
|
|||
|
@@ -99,7 +94,6 @@ libgoa_backend_1_0_la_SOURCES = \
|
|||
|
goatodoistprovider.h goatodoistprovider.c \
|
|||
|
goaobjectskeletonutils.h goaobjectskeletonutils.c \
|
|||
|
goautils.h goautils.c \
|
|||
|
- goawebview.h goawebview.c \
|
|||
|
nautilus-floating-bar.h nautilus-floating-bar.c \
|
|||
|
$(top_builddir)/src/goaidentity/org.gnome.Identity.c \
|
|||
|
$(top_srcdir)/src/goaidentity/goaidentitymanagererror.c \
|
|||
|
@@ -119,7 +113,6 @@ libgoa_backend_1_0_la_SOURCES += \
|
|||
|
endif
|
|||
|
|
|||
|
libgoa_backend_1_0_la_CFLAGS = \
|
|||
|
- $(WEBKIT_GTK_CFLAGS) \
|
|||
|
$(JSON_GLIB_CFLAGS) \
|
|||
|
$(GCR_CFLAGS) \
|
|||
|
$(GLIB_CFLAGS) \
|
|||
|
@@ -134,7 +127,6 @@ libgoa_backend_1_0_la_CFLAGS = \
|
|||
|
|
|||
|
libgoa_backend_1_0_la_LIBADD = \
|
|||
|
$(top_builddir)/src/goa/libgoa-1.0.la \
|
|||
|
- $(WEBKIT_GTK_LIBS) \
|
|||
|
$(JSON_GLIB_LIBS) \
|
|||
|
$(GCR_LIBS) \
|
|||
|
$(GLIB_LIBS) \
|
|||
|
@@ -154,39 +146,29 @@ libgoa_backend_1_0_la_LDFLAGS = \
|
|||
|
|
|||
|
# ----------------------------------------------------------------------------------------------------
|
|||
|
|
|||
|
-webextension_LTLIBRARIES = libgoawebextension.la
|
|||
|
+libexec_PROGRAMS = goa-oauth2-handler
|
|||
|
|
|||
|
-webextensiondir = $(libdir)/goa-1.0/web-extensions
|
|||
|
-
|
|||
|
-libgoawebextension_la_SOURCES = \
|
|||
|
- goawebextension.h goawebextension.c \
|
|||
|
- goawebextensionmain.c \
|
|||
|
+goa_oauth2_handler_SOURCES = \
|
|||
|
+ goaoauth2handler.c \
|
|||
|
$(NULL)
|
|||
|
|
|||
|
-libgoawebextension_la_CFLAGS = \
|
|||
|
- $(REST_CFLAGS) \
|
|||
|
- $(WEBKIT_GTK_CFLAGS) \
|
|||
|
+goa_oauth2_handler_CFLAGS = \
|
|||
|
+ $(GLIB_CFLAGS) \
|
|||
|
+ $(LIBSOUP_CFLAGS) \
|
|||
|
+ $(SECRET_CFLAGS) \
|
|||
|
+ -DG_LOG_DOMAIN=\"goa-oauth2-handler\" \
|
|||
|
$(NULL)
|
|||
|
|
|||
|
-libgoawebextension_la_LIBADD = \
|
|||
|
- libgoa-backend-1.0.la \
|
|||
|
- $(REST_LIBS) \
|
|||
|
- $(WEBKIT_GTK_LIBS) \
|
|||
|
+goa_oauth2_handler_LDADD = \
|
|||
|
+ $(GLIB_LIBS) \
|
|||
|
+ $(LIBSOUP_LIBS) \
|
|||
|
+ $(SECRET_LIBS) \
|
|||
|
$(NULL)
|
|||
|
|
|||
|
-libgoawebextension_la_LDFLAGS = \
|
|||
|
- -avoid-version \
|
|||
|
- -module \
|
|||
|
- -no-undefined \
|
|||
|
+goa_oauth2_handler_LDFLAGS = \
|
|||
|
+ $(WARN_LDFLAGS) \
|
|||
|
$(NULL)
|
|||
|
|
|||
|
-# Force installation order: libgoa-backend-1.0 must be installed first, othwerwise
|
|||
|
-# libtool will incorrectly relink libgoawebextension.la under parallel make install.
|
|||
|
-# Requires ugly automake syntax - see http://debbugs.gnu.org/cgi/bugreport.cgi?bug=7328
|
|||
|
-
|
|||
|
-installwebextensionLTLIBRARIES = install-webextensionLTLIBRARIES
|
|||
|
-$(installwebextensionLTLIBRARIES): install-libLTLIBRARIES
|
|||
|
-
|
|||
|
# ----------------------------------------------------------------------------------------------------
|
|||
|
|
|||
|
BUILT_SOURCES = \
|
|||
|
diff --git a/src/goabackend/goafacebookprovider.c b/src/goabackend/goafacebookprovider.c
|
|||
|
index c6033fb..c1d35d0 100644
|
|||
|
--- a/src/goabackend/goafacebookprovider.c
|
|||
|
+++ b/src/goabackend/goafacebookprovider.c
|
|||
|
@@ -243,31 +243,6 @@ get_identity_sync (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *element_type = NULL;
|
|||
|
- gchar *name = NULL;
|
|||
|
-
|
|||
|
- g_object_get (element, "type", &element_type, NULL);
|
|||
|
- if (g_strcmp0 (element_type, "text") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- name = webkit_dom_html_input_element_get_name (element);
|
|||
|
- if (g_strcmp0 (name, "email") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (element_type);
|
|||
|
- g_free (name);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
build_object (GoaProvider *provider,
|
|||
|
GoaObjectSkeleton *object,
|
|||
|
@@ -367,6 +342,5 @@ goa_facebook_provider_class_init (GoaFacebookProviderClass *klass)
|
|||
|
oauth2_class->get_client_id = get_client_id;
|
|||
|
oauth2_class->get_client_secret = get_client_secret;
|
|||
|
oauth2_class->get_identity_sync = get_identity_sync;
|
|||
|
- oauth2_class->is_identity_node = is_identity_node;
|
|||
|
oauth2_class->add_account_key_values = add_account_key_values;
|
|||
|
}
|
|||
|
diff --git a/src/goabackend/goaflickrprovider.c b/src/goabackend/goaflickrprovider.c
|
|||
|
deleted file mode 100644
|
|||
|
index 702ed1e..0000000
|
|||
|
--- a/src/goabackend/goaflickrprovider.c
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,364 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright (C) 2011 Willem van Engen <gnome@willem.engen.nl>
|
|||
|
- * Copyright © 2012 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#include "config.h"
|
|||
|
-#include <glib/gi18n-lib.h>
|
|||
|
-
|
|||
|
-#include <rest/oauth-proxy.h>
|
|||
|
-#include <json-glib/json-glib.h>
|
|||
|
-
|
|||
|
-#include "goaprovider.h"
|
|||
|
-#include "goaprovider-priv.h"
|
|||
|
-#include "goaflickrprovider.h"
|
|||
|
-#include "goaobjectskeletonutils.h"
|
|||
|
-#include "goasouplogger.h"
|
|||
|
-
|
|||
|
-struct _GoaFlickrProvider
|
|||
|
-{
|
|||
|
- GoaOAuthProvider parent_instance;
|
|||
|
-};
|
|||
|
-
|
|||
|
-G_DEFINE_TYPE_WITH_CODE (GoaFlickrProvider, goa_flickr_provider, GOA_TYPE_OAUTH_PROVIDER,
|
|||
|
- goa_provider_ensure_extension_points_registered ();
|
|||
|
- g_io_extension_point_implement (GOA_PROVIDER_EXTENSION_POINT_NAME,
|
|||
|
- g_define_type_id,
|
|||
|
- GOA_FLICKR_NAME,
|
|||
|
- 0));
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_provider_type (GoaProvider *provider)
|
|||
|
-{
|
|||
|
- return GOA_FLICKR_NAME;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gchar *
|
|||
|
-get_provider_name (GoaProvider *provider,
|
|||
|
- GoaObject *object)
|
|||
|
-{
|
|||
|
- return g_strdup (_("Flickr"));
|
|||
|
-}
|
|||
|
-
|
|||
|
-static GoaProviderGroup
|
|||
|
-get_provider_group (GoaProvider *provider)
|
|||
|
-{
|
|||
|
- return GOA_PROVIDER_GROUP_BRANDED;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static GoaProviderFeatures
|
|||
|
-get_provider_features (GoaProvider *provider)
|
|||
|
-{
|
|||
|
- return GOA_PROVIDER_FEATURE_BRANDED | GOA_PROVIDER_FEATURE_PHOTOS;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_consumer_key (GoaOAuthProvider *oauth_provider)
|
|||
|
-{
|
|||
|
- return GOA_FLICKR_CONSUMER_KEY;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_consumer_secret (GoaOAuthProvider *oauth_provider)
|
|||
|
-{
|
|||
|
- return GOA_FLICKR_CONSUMER_SECRET;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_request_uri (GoaOAuthProvider *oauth_provider)
|
|||
|
-{
|
|||
|
- return "https://www.flickr.com/services/oauth/request_token";
|
|||
|
-}
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_authorization_uri (GoaOAuthProvider *oauth_provider)
|
|||
|
-{
|
|||
|
- return "https://www.flickr.com/services/oauth/authorize";
|
|||
|
-}
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_token_uri (GoaOAuthProvider *oauth_provider)
|
|||
|
-{
|
|||
|
- return "https://www.flickr.com/services/oauth/access_token";
|
|||
|
-}
|
|||
|
-
|
|||
|
-static const gchar *
|
|||
|
-get_callback_uri (GoaOAuthProvider *oauth_provider)
|
|||
|
-{
|
|||
|
- /* Should match the URI specified in the Flickr App
|
|||
|
- * Garden in order to detect when the user denied access via
|
|||
|
- * the OAuth1 web page.
|
|||
|
- */
|
|||
|
- return "https://www.gnome.org/";
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gchar *
|
|||
|
-get_identity_sync (GoaOAuthProvider *oauth_provider,
|
|||
|
- const gchar *access_token,
|
|||
|
- const gchar *access_token_secret,
|
|||
|
- gchar **out_presentation_identity,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GError *identity_error = NULL;
|
|||
|
- RestProxy *proxy = NULL;
|
|||
|
- RestProxyCall *call = NULL;
|
|||
|
- JsonParser *parser = NULL;
|
|||
|
- JsonObject *json_object;
|
|||
|
- SoupLogger *logger = NULL;
|
|||
|
- gchar *ret = NULL;
|
|||
|
- gchar *id = NULL;
|
|||
|
- gchar *presentation_identity = NULL;
|
|||
|
-
|
|||
|
- /* TODO: cancellable */
|
|||
|
-
|
|||
|
- proxy = oauth_proxy_new_with_token (goa_oauth_provider_get_consumer_key (oauth_provider),
|
|||
|
- goa_oauth_provider_get_consumer_secret (oauth_provider),
|
|||
|
- access_token,
|
|||
|
- access_token_secret,
|
|||
|
- "https://api.flickr.com/services/rest",
|
|||
|
- FALSE);
|
|||
|
- logger = goa_soup_logger_new (SOUP_LOGGER_LOG_BODY, -1);
|
|||
|
- rest_proxy_add_soup_feature (proxy, SOUP_SESSION_FEATURE (logger));
|
|||
|
-
|
|||
|
- call = rest_proxy_new_call (proxy);
|
|||
|
- rest_proxy_call_add_param (call, "method", "flickr.test.login");
|
|||
|
- rest_proxy_call_add_param (call, "format", "json");
|
|||
|
- rest_proxy_call_add_param (call, "nojsoncallback", "1");
|
|||
|
- rest_proxy_call_set_method (call, "GET");
|
|||
|
-
|
|||
|
- if (!rest_proxy_call_sync (call, error))
|
|||
|
- goto out;
|
|||
|
- if (rest_proxy_call_get_status_code (call) != 200)
|
|||
|
- {
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Expected status 200 when requesting your identity, instead got status %d (%s)"),
|
|||
|
- rest_proxy_call_get_status_code (call),
|
|||
|
- rest_proxy_call_get_status_message (call));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- parser = json_parser_new ();
|
|||
|
- if (!json_parser_load_from_data (parser,
|
|||
|
- rest_proxy_call_get_payload (call),
|
|||
|
- rest_proxy_call_get_payload_length (call),
|
|||
|
- &identity_error))
|
|||
|
- {
|
|||
|
- g_warning ("json_parser_load_from_data() failed: %s (%s, %d)",
|
|||
|
- identity_error->message,
|
|||
|
- g_quark_to_string (identity_error->domain),
|
|||
|
- identity_error->code);
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Could not parse response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- json_object = json_node_get_object (json_parser_get_root (parser));
|
|||
|
- if (!json_object_has_member (json_object, "user"))
|
|||
|
- {
|
|||
|
- g_warning ("Did not find user in JSON data");
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Could not parse response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- json_object = json_object_get_object_member (json_object, "user");
|
|||
|
- if (!json_object_has_member (json_object, "id"))
|
|||
|
- {
|
|||
|
- g_warning ("Did not find user.id in JSON data");
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Could not parse response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
- if (!json_object_has_member (json_object, "username"))
|
|||
|
- {
|
|||
|
- g_warning ("Did not find user.username in JSON data");
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Could not parse response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- id = g_strdup (json_object_get_string_member (json_object, "id"));
|
|||
|
-
|
|||
|
- json_object = json_object_get_object_member (json_object, "username");
|
|||
|
- if (!json_object_has_member (json_object, "_content"))
|
|||
|
- {
|
|||
|
- g_warning ("Did not find user.username._content in JSON data");
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Could not parse response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- presentation_identity = g_strdup (json_object_get_string_member (json_object, "_content"));
|
|||
|
-
|
|||
|
- ret = id;
|
|||
|
- id = NULL;
|
|||
|
- if (out_presentation_identity != NULL)
|
|||
|
- {
|
|||
|
- *out_presentation_identity = presentation_identity;
|
|||
|
- presentation_identity = NULL;
|
|||
|
- }
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_clear_object (&parser);
|
|||
|
- g_clear_error (&identity_error);
|
|||
|
- g_clear_object (&call);
|
|||
|
- g_clear_object (&proxy);
|
|||
|
- g_clear_object (&logger);
|
|||
|
- g_free (id);
|
|||
|
- g_free (presentation_identity);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuthProvider *oauth_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- /* Flickr does not provide a way to query the string used by the
|
|||
|
- * user to log in via the web interface. The user id and username
|
|||
|
- * returned by flickr.test.login [1] are not what we are looking
|
|||
|
- * for.
|
|||
|
- *
|
|||
|
- * [1] http://www.flickr.com/services/api/flickr.test.login.html
|
|||
|
- */
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gchar *
|
|||
|
-parse_request_token_error (GoaOAuthProvider *oauth_provider, RestProxyCall *call)
|
|||
|
-{
|
|||
|
- const gchar *payload;
|
|||
|
- gchar *msg = NULL;
|
|||
|
- guint status;
|
|||
|
-
|
|||
|
- payload = rest_proxy_call_get_payload (call);
|
|||
|
- status = rest_proxy_call_get_status_code (call);
|
|||
|
-
|
|||
|
- if (status == 401 && g_strcmp0 (payload, "oauth_problem=timestamp_refused") == 0)
|
|||
|
- msg = g_strdup (_("Your system time is invalid. Check your date and time settings."));
|
|||
|
-
|
|||
|
- return msg;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-build_object (GoaProvider *provider,
|
|||
|
- GoaObjectSkeleton *object,
|
|||
|
- GKeyFile *key_file,
|
|||
|
- const gchar *group,
|
|||
|
- GDBusConnection *connection,
|
|||
|
- gboolean just_added,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GoaAccount *account = NULL;
|
|||
|
- gboolean photos_enabled;
|
|||
|
- gboolean ret = FALSE;
|
|||
|
-
|
|||
|
- /* Chain up */
|
|||
|
- if (!GOA_PROVIDER_CLASS (goa_flickr_provider_parent_class)->build_object (provider,
|
|||
|
- object,
|
|||
|
- key_file,
|
|||
|
- group,
|
|||
|
- connection,
|
|||
|
- just_added,
|
|||
|
- error))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- account = goa_object_get_account (GOA_OBJECT (object));
|
|||
|
-
|
|||
|
- /* Photos */
|
|||
|
- photos_enabled = g_key_file_get_boolean (key_file, group, "PhotosEnabled", NULL);
|
|||
|
- goa_object_skeleton_attach_photos (object, photos_enabled);
|
|||
|
-
|
|||
|
- if (just_added)
|
|||
|
- {
|
|||
|
- goa_account_set_photos_disabled (account, !photos_enabled);
|
|||
|
-
|
|||
|
- g_signal_connect (account,
|
|||
|
- "notify::photos-disabled",
|
|||
|
- G_CALLBACK (goa_util_account_notify_property_cb),
|
|||
|
- (gpointer) "PhotosEnabled");
|
|||
|
- }
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_clear_object (&account);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static void
|
|||
|
-add_account_key_values (GoaOAuthProvider *oauth_provider,
|
|||
|
- GVariantBuilder *builder)
|
|||
|
-{
|
|||
|
- g_variant_builder_add (builder, "{ss}", "PhotosEnabled", "true");
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_flickr_provider_init (GoaFlickrProvider *self)
|
|||
|
-{
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_flickr_provider_class_init (GoaFlickrProviderClass *klass)
|
|||
|
-{
|
|||
|
- GoaProviderClass *provider_class;
|
|||
|
- GoaOAuthProviderClass *oauth_class;
|
|||
|
-
|
|||
|
- provider_class = GOA_PROVIDER_CLASS (klass);
|
|||
|
- provider_class->get_provider_type = get_provider_type;
|
|||
|
- provider_class->get_provider_name = get_provider_name;
|
|||
|
- provider_class->get_provider_group = get_provider_group;
|
|||
|
- provider_class->get_provider_features = get_provider_features;
|
|||
|
- provider_class->build_object = build_object;
|
|||
|
-
|
|||
|
- oauth_class = GOA_OAUTH_PROVIDER_CLASS (klass);
|
|||
|
- oauth_class->get_identity_sync = get_identity_sync;
|
|||
|
- oauth_class->is_identity_node = is_identity_node;
|
|||
|
- oauth_class->get_consumer_key = get_consumer_key;
|
|||
|
- oauth_class->get_consumer_secret = get_consumer_secret;
|
|||
|
- oauth_class->get_request_uri = get_request_uri;
|
|||
|
- oauth_class->get_authorization_uri = get_authorization_uri;
|
|||
|
- oauth_class->get_token_uri = get_token_uri;
|
|||
|
- oauth_class->get_callback_uri = get_callback_uri;
|
|||
|
- oauth_class->parse_request_token_error = parse_request_token_error;
|
|||
|
- oauth_class->add_account_key_values = add_account_key_values;
|
|||
|
-}
|
|||
|
diff --git a/src/goabackend/goaflickrprovider.h b/src/goabackend/goaflickrprovider.h
|
|||
|
deleted file mode 100644
|
|||
|
index f08a8a6..0000000
|
|||
|
--- a/src/goabackend/goaflickrprovider.h
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,37 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2012 Willem van Engen <gnome@willem.engen.nl>
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#if !defined (__GOA_BACKEND_INSIDE_GOA_BACKEND_H__) && !defined (GOA_BACKEND_COMPILATION)
|
|||
|
-#error "Only <goabackend/goabackend.h> can be included directly."
|
|||
|
-#endif
|
|||
|
-
|
|||
|
-#ifndef __GOA_FLICKR_PROVIDER_H__
|
|||
|
-#define __GOA_FLICKR_PROVIDER_H__
|
|||
|
-
|
|||
|
-#include <glib-object.h>
|
|||
|
-
|
|||
|
-#include "goaoauthprovider.h"
|
|||
|
-
|
|||
|
-G_BEGIN_DECLS
|
|||
|
-
|
|||
|
-#define GOA_TYPE_FLICKR_PROVIDER (goa_flickr_provider_get_type ())
|
|||
|
-G_DECLARE_FINAL_TYPE (GoaFlickrProvider, goa_flickr_provider, GOA, FLICKR_PROVIDER, GoaOAuthProvider);
|
|||
|
-
|
|||
|
-G_END_DECLS
|
|||
|
-
|
|||
|
-#endif /* __GOA_FLICKR_PROVIDER_H__ */
|
|||
|
diff --git a/src/goabackend/goafoursquareprovider.c b/src/goabackend/goafoursquareprovider.c
|
|||
|
index c1e4146..def21cb 100644
|
|||
|
--- a/src/goabackend/goafoursquareprovider.c
|
|||
|
+++ b/src/goabackend/goafoursquareprovider.c
|
|||
|
@@ -251,31 +251,6 @@ get_identity_sync (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *element_type = NULL;
|
|||
|
- gchar *name = NULL;
|
|||
|
-
|
|||
|
- g_object_get (element, "type", &element_type, NULL);
|
|||
|
- if (g_strcmp0 (element_type, "email") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- name = webkit_dom_html_input_element_get_name (element);
|
|||
|
- if (g_strcmp0 (name, "emailOrPhone") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (element_type);
|
|||
|
- g_free (name);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
build_object (GoaProvider *provider,
|
|||
|
GoaObjectSkeleton *object,
|
|||
|
@@ -366,6 +341,5 @@ goa_foursquare_provider_class_init (GoaFoursquareProviderClass *klass)
|
|||
|
oauth2_class->get_client_secret = get_client_secret;
|
|||
|
oauth2_class->get_use_mobile_browser = get_use_mobile_browser;
|
|||
|
oauth2_class->get_identity_sync = get_identity_sync;
|
|||
|
- oauth2_class->is_identity_node = is_identity_node;
|
|||
|
oauth2_class->add_account_key_values = add_account_key_values;
|
|||
|
}
|
|||
|
diff --git a/src/goabackend/goagoogleprovider.c b/src/goabackend/goagoogleprovider.c
|
|||
|
index 6e4ace2..6f951e5 100644
|
|||
|
--- a/src/goabackend/goagoogleprovider.c
|
|||
|
+++ b/src/goabackend/goagoogleprovider.c
|
|||
|
@@ -32,6 +32,7 @@
|
|||
|
struct _GoaGoogleProvider
|
|||
|
{
|
|||
|
GoaOAuth2Provider parent_instance;
|
|||
|
+ gchar *redirect_uri;
|
|||
|
};
|
|||
|
|
|||
|
G_DEFINE_TYPE_WITH_CODE (GoaGoogleProvider, goa_google_provider, GOA_TYPE_OAUTH2_PROVIDER,
|
|||
|
@@ -81,19 +82,50 @@ get_provider_features (GoaProvider *provider)
|
|||
|
static const gchar *
|
|||
|
get_authorization_uri (GoaOAuth2Provider *oauth2_provider)
|
|||
|
{
|
|||
|
- return "https://accounts.google.com/o/oauth2/auth";
|
|||
|
+ return "https://accounts.google.com/o/oauth2/v2/auth";
|
|||
|
}
|
|||
|
|
|||
|
static const gchar *
|
|||
|
get_token_uri (GoaOAuth2Provider *oauth2_provider)
|
|||
|
{
|
|||
|
- return "https://accounts.google.com/o/oauth2/token";
|
|||
|
+ return "https://oauth2.googleapis.com/token";
|
|||
|
}
|
|||
|
|
|||
|
static const gchar *
|
|||
|
get_redirect_uri (GoaOAuth2Provider *oauth2_provider)
|
|||
|
{
|
|||
|
- return "http://localhost";
|
|||
|
+ G_LOCK_DEFINE_STATIC (redirect_uri);
|
|||
|
+ GoaGoogleProvider *self = GOA_GOOGLE_PROVIDER (oauth2_provider);
|
|||
|
+
|
|||
|
+ G_LOCK (redirect_uri);
|
|||
|
+
|
|||
|
+ if (!self->redirect_uri) {
|
|||
|
+ GPtrArray *array;
|
|||
|
+ gchar **strv;
|
|||
|
+ gchar *joinstr;
|
|||
|
+ guint ii;
|
|||
|
+
|
|||
|
+ strv = g_strsplit (GOA_GOOGLE_CLIENT_ID, ".", -1);
|
|||
|
+ array = g_ptr_array_new ();
|
|||
|
+
|
|||
|
+ for (ii = 0; strv[ii]; ii++) {
|
|||
|
+ g_ptr_array_insert (array, 0, strv[ii]);
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ g_ptr_array_add (array, NULL);
|
|||
|
+
|
|||
|
+ joinstr = g_strjoinv (".", (gchar **) array->pdata);
|
|||
|
+ /* Use reverse-DNS of the client ID with the below path */
|
|||
|
+ self->redirect_uri = g_strconcat (joinstr, ":/oauth2redirect", NULL);
|
|||
|
+
|
|||
|
+ g_ptr_array_free (array, TRUE);
|
|||
|
+ g_strfreev (strv);
|
|||
|
+ g_free (joinstr);
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ G_UNLOCK (redirect_uri);
|
|||
|
+
|
|||
|
+ return self->redirect_uri;
|
|||
|
}
|
|||
|
|
|||
|
static const gchar *
|
|||
|
@@ -241,37 +273,6 @@ get_identity_sync (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *element_type = NULL;
|
|||
|
- gchar *id = NULL;
|
|||
|
- gchar *name = NULL;
|
|||
|
-
|
|||
|
- g_object_get (element, "type", &element_type, NULL);
|
|||
|
- if (g_strcmp0 (element_type, "email") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- id = webkit_dom_element_get_id (WEBKIT_DOM_ELEMENT (element));
|
|||
|
- if (g_strcmp0 (id, "identifierId") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- name = webkit_dom_html_input_element_get_name (element);
|
|||
|
- if (g_strcmp0 (name, "identifier") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (element_type);
|
|||
|
- g_free (id);
|
|||
|
- g_free (name);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
build_object (GoaProvider *provider,
|
|||
|
GoaObjectSkeleton *object,
|
|||
|
@@ -446,6 +447,16 @@ add_account_key_values (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
+static void
|
|||
|
+goa_google_finalize (GObject *object)
|
|||
|
+{
|
|||
|
+ GoaGoogleProvider *self = GOA_GOOGLE_PROVIDER (object);
|
|||
|
+
|
|||
|
+ g_free (self->redirect_uri);
|
|||
|
+
|
|||
|
+ G_OBJECT_CLASS (goa_google_provider_parent_class)->finalize (object);
|
|||
|
+}
|
|||
|
+
|
|||
|
static void
|
|||
|
goa_google_provider_init (GoaGoogleProvider *self)
|
|||
|
{
|
|||
|
@@ -456,6 +467,10 @@ goa_google_provider_class_init (GoaGoogleProviderClass *klass)
|
|||
|
{
|
|||
|
GoaProviderClass *provider_class;
|
|||
|
GoaOAuth2ProviderClass *oauth2_class;
|
|||
|
+ GObjectClass *object_class;
|
|||
|
+
|
|||
|
+ object_class = G_OBJECT_CLASS (klass);
|
|||
|
+ object_class->finalize = goa_google_finalize;
|
|||
|
|
|||
|
provider_class = GOA_PROVIDER_CLASS (klass);
|
|||
|
provider_class->get_provider_type = get_provider_type;
|
|||
|
@@ -472,7 +487,6 @@ goa_google_provider_class_init (GoaGoogleProviderClass *klass)
|
|||
|
oauth2_class->get_identity_sync = get_identity_sync;
|
|||
|
oauth2_class->get_redirect_uri = get_redirect_uri;
|
|||
|
oauth2_class->get_scope = get_scope;
|
|||
|
- oauth2_class->is_identity_node = is_identity_node;
|
|||
|
oauth2_class->get_token_uri = get_token_uri;
|
|||
|
oauth2_class->add_account_key_values = add_account_key_values;
|
|||
|
}
|
|||
|
diff --git a/src/goabackend/goaoauth2handler.c b/src/goabackend/goaoauth2handler.c
|
|||
|
new file mode 100644
|
|||
|
index 0000000..c5a86cb
|
|||
|
--- /dev/null
|
|||
|
+++ b/src/goabackend/goaoauth2handler.c
|
|||
|
@@ -0,0 +1,173 @@
|
|||
|
+/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
+/*
|
|||
|
+ * Copyright © 2023 GNOME Foundation Inc.
|
|||
|
+ * Contributor: Andy Holmes <andyholmes@gnome.org>
|
|||
|
+ *
|
|||
|
+ * This library is free software; you can redistribute it and/or
|
|||
|
+ * modify it under the terms of the GNU Lesser General Public
|
|||
|
+ * License as published by the Free Software Foundation; either
|
|||
|
+ * version 2 of the License, or (at your option) any later version.
|
|||
|
+ *
|
|||
|
+ * This library is distributed in the hope that it will be useful,
|
|||
|
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
+ * Lesser General Public License for more details.
|
|||
|
+ *
|
|||
|
+ * You should have received a copy of the GNU Lesser General
|
|||
|
+ * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
+ */
|
|||
|
+
|
|||
|
+#include "config.h"
|
|||
|
+
|
|||
|
+#include <glib.h>
|
|||
|
+#include <libsoup/soup.h>
|
|||
|
+#include <libsecret/secret.h>
|
|||
|
+
|
|||
|
+
|
|||
|
+static const SecretSchema oauth2_schema =
|
|||
|
+{
|
|||
|
+ .name = "org.gnome.OnlineAccounts.OAuth2",
|
|||
|
+ .flags = SECRET_SCHEMA_NONE,
|
|||
|
+ .attributes = {
|
|||
|
+ {
|
|||
|
+ .name = "goa-oauth2-client",
|
|||
|
+ .type = SECRET_SCHEMA_ATTRIBUTE_STRING,
|
|||
|
+ },
|
|||
|
+ {
|
|||
|
+ .name = "goa-oauth2-provider",
|
|||
|
+ .type = SECRET_SCHEMA_ATTRIBUTE_STRING,
|
|||
|
+ },
|
|||
|
+ { "NULL", 0 }
|
|||
|
+ }
|
|||
|
+};
|
|||
|
+
|
|||
|
+static struct
|
|||
|
+{
|
|||
|
+ const char *client_id;
|
|||
|
+ const char *provider;
|
|||
|
+}
|
|||
|
+oauth2_providers[] =
|
|||
|
+{
|
|||
|
+#ifdef GOA_GOOGLE_ENABLED
|
|||
|
+ {
|
|||
|
+ .client_id = GOA_GOOGLE_CLIENT_ID,
|
|||
|
+ .provider = GOA_GOOGLE_NAME,
|
|||
|
+ },
|
|||
|
+#endif
|
|||
|
+#ifdef GOA_WINDOWS_LIVE_ENABLED
|
|||
|
+ {
|
|||
|
+ .client_id = GOA_WINDOWS_LIVE_CLIENT_ID,
|
|||
|
+ .provider = GOA_WINDOWS_LIVE_NAME,
|
|||
|
+ },
|
|||
|
+#endif
|
|||
|
+ { NULL, NULL },
|
|||
|
+};
|
|||
|
+
|
|||
|
+static gboolean
|
|||
|
+get_oauth2_provider (const char *needle,
|
|||
|
+ const char **client_out,
|
|||
|
+ const char **provider_out)
|
|||
|
+{
|
|||
|
+ g_return_val_if_fail (needle != NULL, FALSE);
|
|||
|
+
|
|||
|
+ for (unsigned int i = 0; oauth2_providers[i].client_id != NULL; i++)
|
|||
|
+ {
|
|||
|
+ if (g_str_equal (needle, oauth2_providers[i].client_id))
|
|||
|
+ {
|
|||
|
+ if (client_out)
|
|||
|
+ *client_out = oauth2_providers[i].client_id;
|
|||
|
+
|
|||
|
+ if (provider_out)
|
|||
|
+ *provider_out = oauth2_providers[i].provider;
|
|||
|
+
|
|||
|
+ return TRUE;
|
|||
|
+ }
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ return FALSE;
|
|||
|
+}
|
|||
|
+
|
|||
|
+int
|
|||
|
+main (int argc,
|
|||
|
+ char **argv)
|
|||
|
+{
|
|||
|
+ SoupURI *uri = NULL;
|
|||
|
+ const char *scheme = NULL;
|
|||
|
+ const char *path = NULL;
|
|||
|
+ const char *client_id = NULL;
|
|||
|
+ const char *provider_type = NULL;
|
|||
|
+ GError *error = NULL;
|
|||
|
+
|
|||
|
+ if (argc < 2)
|
|||
|
+ {
|
|||
|
+ g_printerr ("%s: Missing URI\n", argv[0]);
|
|||
|
+ return EXIT_FAILURE;
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ uri = soup_uri_new (argv[1]);
|
|||
|
+ if (uri == NULL)
|
|||
|
+ {
|
|||
|
+ g_printerr ("%s: Invalid URI: %s\n", argv[0], argv[1]);
|
|||
|
+ return EXIT_FAILURE;
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ /* Google apps may use a reverse-DNS form of the client ID as the URI scheme
|
|||
|
+ * See: https://developers.google.com/identity/protocols/oauth2/native-app
|
|||
|
+ */
|
|||
|
+ scheme = soup_uri_get_scheme (uri);
|
|||
|
+ if (scheme != NULL)
|
|||
|
+ {
|
|||
|
+ g_auto (GStrv) strv = g_strsplit (scheme, ".", -1);
|
|||
|
+ g_autoptr (GString) tmp = g_string_new ("");
|
|||
|
+
|
|||
|
+ for (unsigned int i = 0; strv[i] != NULL; i++)
|
|||
|
+ {
|
|||
|
+ if (i > 0)
|
|||
|
+ g_string_prepend_c (tmp, '.');
|
|||
|
+ g_string_prepend (tmp, strv[i]);
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ get_oauth2_provider (tmp->str, &client_id, &provider_type);
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ /* Windows Live uses goa-oauth2:// with the client ID as the first path segment
|
|||
|
+ */
|
|||
|
+ if (client_id == NULL)
|
|||
|
+ {
|
|||
|
+ path = soup_uri_get_path (uri);
|
|||
|
+ if (path != NULL && *path != '\0')
|
|||
|
+ {
|
|||
|
+ g_auto (GStrv) strv = NULL;
|
|||
|
+
|
|||
|
+ strv = g_strsplit (*path == '/' ? path +1 : path, "/", 1);
|
|||
|
+ get_oauth2_provider (strv[0], &client_id, &provider_type);
|
|||
|
+ }
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ if (client_id == NULL)
|
|||
|
+ {
|
|||
|
+ g_printerr ("%s: Unknown provider\n", argv[0]);
|
|||
|
+ soup_uri_free (uri);
|
|||
|
+ return EXIT_FAILURE;
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ if (!secret_password_store_sync (&oauth2_schema,
|
|||
|
+ SECRET_COLLECTION_SESSION,
|
|||
|
+ "GNOME Online Accounts OAuth2 URI",
|
|||
|
+ argv[1], /* Secret */
|
|||
|
+ NULL,
|
|||
|
+ &error,
|
|||
|
+ "goa-oauth2-client", client_id,
|
|||
|
+ "goa-oauth2-provider", provider_type,
|
|||
|
+ NULL))
|
|||
|
+ {
|
|||
|
+ if (error != NULL)
|
|||
|
+ g_printerr ("%s: Failed to store OAuth2 URI: %s\n", argv[0], error->message);
|
|||
|
+
|
|||
|
+ soup_uri_free (uri);
|
|||
|
+ g_clear_error (&error);
|
|||
|
+ return EXIT_FAILURE;
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ return EXIT_SUCCESS;
|
|||
|
+}
|
|||
|
diff --git a/src/goabackend/goaoauth2provider-priv.h b/src/goabackend/goaoauth2provider-priv.h
|
|||
|
index de1b808..4b00a24 100644
|
|||
|
--- a/src/goabackend/goaoauth2provider-priv.h
|
|||
|
+++ b/src/goabackend/goaoauth2provider-priv.h
|
|||
|
@@ -26,8 +26,6 @@
|
|||
|
#include <gio/gio.h>
|
|||
|
#include <goabackend/goaoauth2provider.h>
|
|||
|
#include <goabackend/goaprovider-priv.h>
|
|||
|
-#include <webkit2/webkit2.h>
|
|||
|
-#include <webkitdom/webkitdom.h>
|
|||
|
|
|||
|
G_BEGIN_DECLS
|
|||
|
|
|||
|
@@ -51,11 +49,7 @@ G_BEGIN_DECLS
|
|||
|
* @build_authorization_uri: Virtual function for goa_oauth2_provider_build_authorization_uri().
|
|||
|
* @get_use_mobile_browser: Virtual function for goa_oauth2_provider_get_use_mobile_browser().
|
|||
|
* @add_account_key_values: Virtual function for goa_oauth2_provider_add_account_key_values().
|
|||
|
- * @decide_navigation_policy: Virtual function for goa_oauth2_provider_decide_navigation_policy().
|
|||
|
* @process_redirect_url: Virtual function for goa_oauth2_provider_process_redirect_url().
|
|||
|
- * @is_deny_node: Virtual function for goa_oauth2_provider_is_deny_node().
|
|||
|
- * @is_identity_node: Virtual function for goa_oauth2_provider_is_identity_node().
|
|||
|
- * @is_password_node: Virtual function for goa_oauth2_provider_is_password_node().
|
|||
|
*
|
|||
|
* Class structure for #GoaOAuth2Provider.
|
|||
|
*/
|
|||
|
@@ -86,18 +80,7 @@ struct _GoaOAuth2ProviderClass
|
|||
|
void (*add_account_key_values) (GoaOAuth2Provider *provider,
|
|||
|
GVariantBuilder *builder);
|
|||
|
|
|||
|
- /* pure virtual */
|
|||
|
- gboolean (*is_identity_node) (GoaOAuth2Provider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-
|
|||
|
/* virtual but with default implementation */
|
|||
|
- gboolean (*is_deny_node) (GoaOAuth2Provider *provider,
|
|||
|
- WebKitDOMNode *node);
|
|||
|
- gboolean (*is_password_node) (GoaOAuth2Provider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
- gboolean (*decide_navigation_policy) (GoaOAuth2Provider *provider,
|
|||
|
- WebKitWebView *web_view,
|
|||
|
- WebKitNavigationPolicyDecision *decision);
|
|||
|
gboolean (*process_redirect_url) (GoaOAuth2Provider *provider,
|
|||
|
const gchar *redirect_url,
|
|||
|
gchar **access_token,
|
|||
|
diff --git a/src/goabackend/goaoauth2provider-web-extension.h b/src/goabackend/goaoauth2provider-web-extension.h
|
|||
|
deleted file mode 100644
|
|||
|
index baac005..0000000
|
|||
|
--- a/src/goabackend/goaoauth2provider-web-extension.h
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,40 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2016 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#if !defined (__GOA_BACKEND_INSIDE_GOA_BACKEND_H__) && !defined (GOA_BACKEND_COMPILATION)
|
|||
|
-#error "Only <goabackend/goabackend.h> can be included directly."
|
|||
|
-#endif
|
|||
|
-
|
|||
|
-#ifndef __GOA_OAUTH2_PROVIDER_WEB_EXTENSION_H__
|
|||
|
-#define __GOA_OAUTH2_PROVIDER_WEB_EXTENSION_H__
|
|||
|
-
|
|||
|
-#include <goabackend/goaoauth2provider.h>
|
|||
|
-#include <webkitdom/webkitdom.h>
|
|||
|
-
|
|||
|
-G_BEGIN_DECLS
|
|||
|
-
|
|||
|
-gboolean goa_oauth2_provider_is_deny_node (GoaOAuth2Provider *provider,
|
|||
|
- WebKitDOMNode *node);
|
|||
|
-gboolean goa_oauth2_provider_is_identity_node (GoaOAuth2Provider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-gboolean goa_oauth2_provider_is_password_node (GoaOAuth2Provider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-
|
|||
|
-G_END_DECLS
|
|||
|
-
|
|||
|
-#endif /* __GOA_OAUTH2_PROVIDER_WEB_EXTENSION_H__ */
|
|||
|
diff --git a/src/goabackend/goaoauth2provider-web-view.h b/src/goabackend/goaoauth2provider-web-view.h
|
|||
|
deleted file mode 100644
|
|||
|
index f2dae5e..0000000
|
|||
|
--- a/src/goabackend/goaoauth2provider-web-view.h
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,37 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2016 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#if !defined (__GOA_BACKEND_INSIDE_GOA_BACKEND_H__) && !defined (GOA_BACKEND_COMPILATION)
|
|||
|
-#error "Only <goabackend/goabackend.h> can be included directly."
|
|||
|
-#endif
|
|||
|
-
|
|||
|
-#ifndef __GOA_OAUTH2_PROVIDER_WEB_VIEW_H__
|
|||
|
-#define __GOA_OAUTH2_PROVIDER_WEB_VIEW_H__
|
|||
|
-
|
|||
|
-#include <goabackend/goaoauth2provider.h>
|
|||
|
-#include <webkit2/webkit2.h>
|
|||
|
-
|
|||
|
-G_BEGIN_DECLS
|
|||
|
-
|
|||
|
-gboolean goa_oauth2_provider_decide_navigation_policy (GoaOAuth2Provider *provider,
|
|||
|
- WebKitWebView *web_view,
|
|||
|
- WebKitNavigationPolicyDecision *decision);
|
|||
|
-
|
|||
|
-G_END_DECLS
|
|||
|
-
|
|||
|
-#endif /* __GOA_OAUTH2_PROVIDER_WEB_VIEW_H__ */
|
|||
|
diff --git a/src/goabackend/goaoauth2provider.c b/src/goabackend/goaoauth2provider.c
|
|||
|
index 9092605..1ceacb5 100644
|
|||
|
--- a/src/goabackend/goaoauth2provider.c
|
|||
|
+++ b/src/goabackend/goaoauth2provider.c
|
|||
|
@@ -22,16 +22,13 @@
|
|||
|
|
|||
|
#include <rest/oauth2-proxy.h>
|
|||
|
#include <libsoup/soup.h>
|
|||
|
+#include <libsecret/secret.h>
|
|||
|
#include <json-glib/json-glib.h>
|
|||
|
-#include <webkit2/webkit2.h>
|
|||
|
|
|||
|
#include "goaprovider.h"
|
|||
|
#include "goautils.h"
|
|||
|
-#include "goawebview.h"
|
|||
|
#include "goaoauth2provider.h"
|
|||
|
#include "goaoauth2provider-priv.h"
|
|||
|
-#include "goaoauth2provider-web-extension.h"
|
|||
|
-#include "goaoauth2provider-web-view.h"
|
|||
|
#include "goarestproxy.h"
|
|||
|
|
|||
|
/**
|
|||
|
@@ -81,6 +78,8 @@ struct _GoaOAuth2ProviderPrivate
|
|||
|
gchar *identity;
|
|||
|
gchar *presentation_identity;
|
|||
|
gchar *password;
|
|||
|
+ gchar *request_uri;
|
|||
|
+ SecretCollection *session;
|
|||
|
};
|
|||
|
|
|||
|
G_LOCK_DEFINE_STATIC (provider_lock);
|
|||
|
@@ -134,70 +133,6 @@ goa_oauth2_provider_get_use_mobile_browser (GoaOAuth2Provider *self)
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-goa_oauth2_provider_is_deny_node_default (GoaOAuth2Provider *self, WebKitDOMNode *node)
|
|||
|
-{
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth2_provider_is_deny_node:
|
|||
|
- * @self: A #GoaOAuth2Provider.
|
|||
|
- * @node: A WebKitDOMNode.
|
|||
|
- *
|
|||
|
- * Checks whether @node is the HTML UI element that the user can use
|
|||
|
- * to deny permission to access his account. Usually they are either a
|
|||
|
- * WebKitDOMHTMLButtonElement or a WebKitDOMHTMLInputElement.
|
|||
|
- *
|
|||
|
- * Please note that providers may have multiple such elements in their
|
|||
|
- * UI and this method should catch all of them.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %FALSE.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if the @node can be used to deny permission.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth2_provider_is_deny_node (GoaOAuth2Provider *self, WebKitDOMNode *node)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH2_PROVIDER (self), FALSE);
|
|||
|
- return GOA_OAUTH2_PROVIDER_GET_CLASS (self)->is_deny_node (self, node);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth2_provider_is_password_node_default (GoaOAuth2Provider *self, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth2_provider_is_password_node:
|
|||
|
- * @self: A #GoaOAuth2Provider.
|
|||
|
- * @element: A WebKitDOMHTMLInputElement
|
|||
|
- *
|
|||
|
- * Checks whether @element is the HTML UI element that the user can
|
|||
|
- * use to enter her password. This can be used to offer a
|
|||
|
- * #GoaPasswordBased interface by saving the user's
|
|||
|
- * password. Providers usually frown upon doing this, so this is not
|
|||
|
- * recommended.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %FALSE.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if @element can be used to enter the password.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth2_provider_is_password_node (GoaOAuth2Provider *self, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH2_PROVIDER (self), FALSE);
|
|||
|
- g_return_val_if_fail (WEBKIT_DOM_IS_HTML_INPUT_ELEMENT (element), FALSE);
|
|||
|
- return GOA_OAUTH2_PROVIDER_GET_CLASS (self)->is_password_node (self, element);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static void
|
|||
|
goa_oauth2_provider_add_account_key_values_default (GoaOAuth2Provider *self,
|
|||
|
GVariantBuilder *builder)
|
|||
|
@@ -287,45 +222,6 @@ goa_oauth2_provider_build_authorization_uri (GoaOAuth2Provider *self,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-goa_oauth2_provider_decide_navigation_policy_default (GoaOAuth2Provider *self,
|
|||
|
- WebKitWebView *web_view,
|
|||
|
- WebKitNavigationPolicyDecision *decision)
|
|||
|
-{
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/*
|
|||
|
- * goa_oauth2_provider_decide_navigation_policy_default:
|
|||
|
- * @self: A #GoaOAuth2Provider.
|
|||
|
- * @decision: A #WebKitNavigationPolicyDecision
|
|||
|
- *
|
|||
|
- * Certain OAuth2-like, but not exactly <ulink
|
|||
|
- * url="http://tools.ietf.org/html/draft-ietf-oauth-v2-15">OAuth2</ulink>,
|
|||
|
- * providers may not send us to the redirect URI, as expected. They
|
|||
|
- * might need some special handling for that. This is a provider
|
|||
|
- * specific hook to accommodate them.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %FALSE.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if @provider decided what to do with @decision,
|
|||
|
- * %FALSE otherwise.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth2_provider_decide_navigation_policy (GoaOAuth2Provider *self,
|
|||
|
- WebKitWebView *web_view,
|
|||
|
- WebKitNavigationPolicyDecision *decision)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH2_PROVIDER (self), FALSE);
|
|||
|
- g_return_val_if_fail (WEBKIT_IS_WEB_VIEW (web_view), FALSE);
|
|||
|
- g_return_val_if_fail (WEBKIT_IS_NAVIGATION_POLICY_DECISION (decision), FALSE);
|
|||
|
-
|
|||
|
- return GOA_OAUTH2_PROVIDER_GET_CLASS (self)->decide_navigation_policy (self, web_view, decision);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
/**
|
|||
|
* goa_oauth2_provider_process_redirect_url:
|
|||
|
* @self: A #GoaOAuth2Provider.
|
|||
|
@@ -551,26 +447,6 @@ goa_oauth2_provider_get_identity_sync (GoaOAuth2Provider *self,
|
|||
|
error);
|
|||
|
}
|
|||
|
|
|||
|
-/**
|
|||
|
- * goa_oauth2_provider_is_identity_node:
|
|||
|
- * @self: A #GoaOAuth2Provider.
|
|||
|
- * @element: A WebKitDOMHTMLInputElement.
|
|||
|
- *
|
|||
|
- * Checks whether @element is the HTML UI element that the user can
|
|||
|
- * use to identify herself at the provider.
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if the @element can be used to deny permission.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth2_provider_is_identity_node (GoaOAuth2Provider *self, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH2_PROVIDER (self), FALSE);
|
|||
|
- return GOA_OAUTH2_PROVIDER_GET_CLASS (self)->is_identity_node (self, element);
|
|||
|
-}
|
|||
|
-
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
static gchar *
|
|||
|
@@ -730,72 +606,42 @@ get_tokens_sync (GoaOAuth2Provider *self,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static void
|
|||
|
-on_web_view_deny_click (GoaWebView *web_view, gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaOAuth2Provider *self = GOA_OAUTH2_PROVIDER (user_data);
|
|||
|
- GoaOAuth2ProviderPrivate *priv;
|
|||
|
-
|
|||
|
- priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
- gtk_dialog_response (priv->dialog, GTK_RESPONSE_CANCEL);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-on_web_view_password_submit (GoaWebView *web_view, const gchar *password, gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaOAuth2Provider *self = GOA_OAUTH2_PROVIDER (user_data);
|
|||
|
- GoaOAuth2ProviderPrivate *priv;
|
|||
|
-
|
|||
|
- priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
-
|
|||
|
- g_free (priv->password);
|
|||
|
- priv->password = g_strdup (password);
|
|||
|
-}
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
-on_web_view_decide_policy (WebKitWebView *web_view,
|
|||
|
- WebKitPolicyDecision *decision,
|
|||
|
- WebKitPolicyDecisionType decision_type,
|
|||
|
- gpointer user_data)
|
|||
|
+parse_requested_uri (GoaOAuth2Provider *self,
|
|||
|
+ const char *requested_uri)
|
|||
|
{
|
|||
|
- GoaOAuth2Provider *self = GOA_OAUTH2_PROVIDER (user_data);
|
|||
|
- GoaOAuth2ProviderPrivate *priv;
|
|||
|
+ GoaOAuth2ProviderPrivate *priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
GHashTable *key_value_pairs;
|
|||
|
- WebKitNavigationAction *action;
|
|||
|
- WebKitURIRequest *request;
|
|||
|
SoupURI *uri;
|
|||
|
const gchar *fragment;
|
|||
|
const gchar *oauth2_error;
|
|||
|
const gchar *query;
|
|||
|
const gchar *redirect_uri;
|
|||
|
- const gchar *requested_uri;
|
|||
|
- gint response_id = GTK_RESPONSE_NONE;
|
|||
|
-
|
|||
|
- priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
-
|
|||
|
- if (decision_type != WEBKIT_POLICY_DECISION_TYPE_NAVIGATION_ACTION)
|
|||
|
- goto default_behaviour;
|
|||
|
-
|
|||
|
- if (goa_oauth2_provider_decide_navigation_policy (self,
|
|||
|
- web_view,
|
|||
|
- WEBKIT_NAVIGATION_POLICY_DECISION (decision)))
|
|||
|
- {
|
|||
|
- response_id = 0;
|
|||
|
- goto ignore_request;
|
|||
|
- }
|
|||
|
|
|||
|
/* TODO: use oauth2_proxy_extract_access_token() */
|
|||
|
+ g_assert (priv->error == NULL);
|
|||
|
|
|||
|
- action = webkit_navigation_policy_decision_get_navigation_action (WEBKIT_NAVIGATION_POLICY_DECISION (decision));
|
|||
|
- request = webkit_navigation_action_get_request (action);
|
|||
|
- requested_uri = webkit_uri_request_get_uri (request);
|
|||
|
redirect_uri = goa_oauth2_provider_get_redirect_uri (self);
|
|||
|
if (!g_str_has_prefix (requested_uri, redirect_uri))
|
|||
|
- goto default_behaviour;
|
|||
|
+ {
|
|||
|
+ g_set_error (&priv->error,
|
|||
|
+ GOA_ERROR,
|
|||
|
+ GOA_ERROR_FAILED,
|
|||
|
+ "Invalid URI: %s",
|
|||
|
+ requested_uri);
|
|||
|
+ return FALSE;
|
|||
|
+ }
|
|||
|
|
|||
|
uri = soup_uri_new (requested_uri);
|
|||
|
- fragment = soup_uri_get_fragment (uri);
|
|||
|
- query = soup_uri_get_query (uri);
|
|||
|
+ if (uri == NULL)
|
|||
|
+ {
|
|||
|
+ g_set_error (&priv->error,
|
|||
|
+ GOA_ERROR,
|
|||
|
+ GOA_ERROR_FAILED,
|
|||
|
+ "Invalid URI: %s",
|
|||
|
+ requested_uri);
|
|||
|
+ return FALSE;
|
|||
|
+ }
|
|||
|
|
|||
|
/* Three cases:
|
|||
|
* 1) we can either have the backend handle the URI for us, or
|
|||
|
@@ -806,23 +652,23 @@ on_web_view_decide_policy (WebKitWebView *web_view,
|
|||
|
*/
|
|||
|
if (GOA_OAUTH2_PROVIDER_GET_CLASS (self)->process_redirect_url)
|
|||
|
{
|
|||
|
- gchar *url;
|
|||
|
+ g_autofree char *url = NULL;
|
|||
|
|
|||
|
url = soup_uri_to_string (uri, FALSE);
|
|||
|
+ soup_uri_free (uri);
|
|||
|
if (!goa_oauth2_provider_process_redirect_url (self, url, &priv->access_token, &priv->error))
|
|||
|
{
|
|||
|
g_prefix_error (&priv->error, _("Authorization response: "));
|
|||
|
priv->error->domain = GOA_ERROR;
|
|||
|
priv->error->code = GOA_ERROR_NOT_AUTHORIZED;
|
|||
|
- response_id = GTK_RESPONSE_CLOSE;
|
|||
|
+
|
|||
|
+ return FALSE;
|
|||
|
}
|
|||
|
- else
|
|||
|
- response_id = GTK_RESPONSE_OK;
|
|||
|
|
|||
|
- g_free (url);
|
|||
|
- goto ignore_request;
|
|||
|
+ return TRUE;
|
|||
|
}
|
|||
|
|
|||
|
+ fragment = soup_uri_get_fragment (uri);
|
|||
|
if (fragment != NULL)
|
|||
|
{
|
|||
|
/* fragment is encoded into a key/value pairs for the token and
|
|||
|
@@ -846,57 +692,175 @@ on_web_view_decide_policy (WebKitWebView *web_view,
|
|||
|
priv->access_token_expires_in = atoi (expires_in_str);
|
|||
|
|
|||
|
priv->refresh_token = g_strdup (g_hash_table_lookup (key_value_pairs, "refresh_token"));
|
|||
|
-
|
|||
|
- response_id = GTK_RESPONSE_OK;
|
|||
|
}
|
|||
|
g_hash_table_unref (key_value_pairs);
|
|||
|
- }
|
|||
|
|
|||
|
- if (priv->access_token != NULL)
|
|||
|
- goto ignore_request;
|
|||
|
+ if (priv->access_token != NULL)
|
|||
|
+ {
|
|||
|
+ soup_uri_free (uri);
|
|||
|
+ return TRUE;
|
|||
|
+ }
|
|||
|
+ }
|
|||
|
|
|||
|
+ query = soup_uri_get_query (uri);
|
|||
|
if (query != NULL)
|
|||
|
{
|
|||
|
key_value_pairs = soup_form_decode (query);
|
|||
|
|
|||
|
priv->authorization_code = g_strdup (g_hash_table_lookup (key_value_pairs, "code"));
|
|||
|
- if (priv->authorization_code != NULL)
|
|||
|
- response_id = GTK_RESPONSE_OK;
|
|||
|
-
|
|||
|
g_hash_table_unref (key_value_pairs);
|
|||
|
+ if (priv->authorization_code != NULL)
|
|||
|
+ {
|
|||
|
+ soup_uri_free (uri);
|
|||
|
+ return TRUE;
|
|||
|
+ }
|
|||
|
}
|
|||
|
|
|||
|
- if (priv->authorization_code != NULL)
|
|||
|
- goto ignore_request;
|
|||
|
-
|
|||
|
/* In case we don't find the access_token or auth code, then look
|
|||
|
* for the error in the query part of the URI.
|
|||
|
*/
|
|||
|
key_value_pairs = soup_form_decode (query);
|
|||
|
oauth2_error = (const gchar *) g_hash_table_lookup (key_value_pairs, "error");
|
|||
|
if (g_strcmp0 (oauth2_error, GOA_OAUTH2_ACCESS_DENIED) == 0)
|
|||
|
- response_id = GTK_RESPONSE_CANCEL;
|
|||
|
- else
|
|||
|
{
|
|||
|
g_set_error (&priv->error,
|
|||
|
GOA_ERROR,
|
|||
|
GOA_ERROR_NOT_AUTHORIZED,
|
|||
|
_("Authorization response: %s"),
|
|||
|
oauth2_error);
|
|||
|
- response_id = GTK_RESPONSE_CLOSE;
|
|||
|
+ }
|
|||
|
+ else
|
|||
|
+ {
|
|||
|
+ g_set_error_literal (&priv->error,
|
|||
|
+ GOA_ERROR,
|
|||
|
+ GOA_ERROR_FAILED,
|
|||
|
+ _("Failed to authenticate"));
|
|||
|
}
|
|||
|
g_hash_table_unref (key_value_pairs);
|
|||
|
- goto ignore_request;
|
|||
|
+ soup_uri_free (uri);
|
|||
|
+ return FALSE;
|
|||
|
+}
|
|||
|
|
|||
|
- ignore_request:
|
|||
|
- g_assert (response_id != GTK_RESPONSE_NONE);
|
|||
|
- if (response_id < 0)
|
|||
|
- gtk_dialog_response (priv->dialog, response_id);
|
|||
|
- webkit_policy_decision_ignore (decision);
|
|||
|
- return TRUE;
|
|||
|
+/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
- default_behaviour:
|
|||
|
- return FALSE;
|
|||
|
+static const SecretSchema oauth2_schema =
|
|||
|
+{
|
|||
|
+ .name = "org.gnome.OnlineAccounts.OAuth2",
|
|||
|
+ .flags = SECRET_SCHEMA_NONE,
|
|||
|
+ .attributes = {
|
|||
|
+ {
|
|||
|
+ .name = "goa-oauth2-client",
|
|||
|
+ .type = SECRET_SCHEMA_ATTRIBUTE_STRING,
|
|||
|
+ },
|
|||
|
+ {
|
|||
|
+ .name = "goa-oauth2-provider",
|
|||
|
+ .type = SECRET_SCHEMA_ATTRIBUTE_STRING,
|
|||
|
+ },
|
|||
|
+ { "NULL", 0 }
|
|||
|
+ }
|
|||
|
+};
|
|||
|
+
|
|||
|
+static void
|
|||
|
+on_secrets_changed (SecretCollection *collection,
|
|||
|
+ GParamSpec *pspec,
|
|||
|
+ GoaOAuth2Provider *self)
|
|||
|
+{
|
|||
|
+ GoaOAuth2ProviderPrivate *priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
+ const char *client_id = NULL;
|
|||
|
+ const char *provider_type = NULL;
|
|||
|
+ g_autofree char *requested_uri = NULL;
|
|||
|
+ GtkResponseType response_id = GTK_RESPONSE_NONE;
|
|||
|
+
|
|||
|
+ client_id = goa_oauth2_provider_get_client_id (self);
|
|||
|
+ provider_type = goa_provider_get_provider_type (GOA_PROVIDER (self));
|
|||
|
+ requested_uri = secret_password_lookup_sync (&oauth2_schema, NULL, NULL,
|
|||
|
+ "goa-oauth2-client", client_id,
|
|||
|
+ "goa-oauth2-provider", provider_type,
|
|||
|
+ NULL);
|
|||
|
+
|
|||
|
+ if (requested_uri != NULL)
|
|||
|
+ {
|
|||
|
+ if (parse_requested_uri (self, requested_uri))
|
|||
|
+ response_id = GTK_RESPONSE_OK;
|
|||
|
+ else
|
|||
|
+ response_id = GTK_RESPONSE_CANCEL;
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ if (response_id != GTK_RESPONSE_NONE)
|
|||
|
+ {
|
|||
|
+ g_signal_handlers_disconnect_by_func (collection, on_secrets_changed, self);
|
|||
|
+ gtk_dialog_response (priv->dialog, response_id);
|
|||
|
+ }
|
|||
|
+}
|
|||
|
+
|
|||
|
+static void
|
|||
|
+secret_service_get_cb (GObject *object,
|
|||
|
+ GAsyncResult *result,
|
|||
|
+ GoaOAuth2Provider *self)
|
|||
|
+{
|
|||
|
+ GoaOAuth2ProviderPrivate *priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
+ SecretService *service = NULL;
|
|||
|
+ GList *collections = NULL;
|
|||
|
+
|
|||
|
+ service = secret_service_get_finish (result, &priv->error);
|
|||
|
+ if (service == NULL)
|
|||
|
+ goto out;
|
|||
|
+
|
|||
|
+ collections = secret_service_get_collections (service);
|
|||
|
+ for (const GList *iter = collections; iter != NULL; iter = iter->next)
|
|||
|
+ {
|
|||
|
+ g_autofree char *label = secret_collection_get_label (iter->data);
|
|||
|
+
|
|||
|
+ /* The session collection is an empty string (?) */
|
|||
|
+ if (g_strcmp0 (label, "") == 0)
|
|||
|
+ {
|
|||
|
+ const char *client_id = NULL;
|
|||
|
+ const char *provider_type = NULL;
|
|||
|
+
|
|||
|
+ /* Ensure there's no dangling entry */
|
|||
|
+ client_id = goa_oauth2_provider_get_client_id (self);
|
|||
|
+ provider_type = goa_provider_get_provider_type (GOA_PROVIDER (self));
|
|||
|
+ secret_password_clear_sync (&oauth2_schema, NULL, NULL,
|
|||
|
+ "goa-oauth2-client", client_id,
|
|||
|
+ "goa-oauth2-provider", provider_type,
|
|||
|
+ NULL);
|
|||
|
+
|
|||
|
+ /* Watch the session collection for the requested URI */
|
|||
|
+ priv->session = g_object_ref (iter->data);
|
|||
|
+ g_signal_connect_object (priv->session,
|
|||
|
+ "notify::items",
|
|||
|
+ G_CALLBACK (on_secrets_changed),
|
|||
|
+ self,
|
|||
|
+ 0);
|
|||
|
+ goto out;
|
|||
|
+ }
|
|||
|
+ }
|
|||
|
+
|
|||
|
+ if (priv->session == NULL && priv->error == NULL)
|
|||
|
+ {
|
|||
|
+ g_set_error (&priv->error,
|
|||
|
+ GOA_ERROR,
|
|||
|
+ GOA_ERROR_FAILED,
|
|||
|
+ "Failed to connect to session keyring");
|
|||
|
+ goto out;
|
|||
|
+ }
|
|||
|
+
|
|||
|
+out:
|
|||
|
+ g_clear_object (&service);
|
|||
|
+ g_list_free_full (collections, g_object_unref);
|
|||
|
+ g_main_loop_quit (priv->loop);
|
|||
|
+}
|
|||
|
+
|
|||
|
+static void
|
|||
|
+on_continue_in_browser (GtkButton *button,
|
|||
|
+ GoaOAuth2Provider *self)
|
|||
|
+{
|
|||
|
+ GoaOAuth2ProviderPrivate *priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
+
|
|||
|
+ if (!g_app_info_launch_default_for_uri (priv->request_uri, NULL, &priv->error))
|
|||
|
+ gtk_dialog_response (priv->dialog, GTK_RESPONSE_CANCEL);
|
|||
|
+ else
|
|||
|
+ gtk_widget_set_sensitive (GTK_WIDGET (button), FALSE);
|
|||
|
}
|
|||
|
|
|||
|
static gboolean
|
|||
|
@@ -906,12 +870,13 @@ get_tokens_and_identity (GoaOAuth2Provider *self,
|
|||
|
GtkDialog *dialog,
|
|||
|
GtkBox *vbox)
|
|||
|
{
|
|||
|
- GoaOAuth2ProviderPrivate *priv;
|
|||
|
+ GoaOAuth2ProviderPrivate *priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
gboolean ret = FALSE;
|
|||
|
- gchar *url;
|
|||
|
- GtkWidget *embed;
|
|||
|
+ int response_id = GTK_RESPONSE_NONE;
|
|||
|
GtkWidget *grid;
|
|||
|
- GtkWidget *web_view;
|
|||
|
+ GtkWidget *image;
|
|||
|
+ GtkWidget *label;
|
|||
|
+ GtkWidget *button;
|
|||
|
const gchar *scope;
|
|||
|
gchar *escaped_redirect_uri = NULL;
|
|||
|
gchar *escaped_client_id = NULL;
|
|||
|
@@ -923,7 +888,6 @@ get_tokens_and_identity (GoaOAuth2Provider *self,
|
|||
|
g_return_val_if_fail (GTK_IS_DIALOG (dialog), FALSE);
|
|||
|
g_return_val_if_fail (GTK_IS_BOX (vbox), FALSE);
|
|||
|
|
|||
|
- priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
g_return_val_if_fail (priv->error == NULL, FALSE);
|
|||
|
|
|||
|
/* TODO: check with NM whether we're online, if not - return error */
|
|||
|
@@ -937,6 +901,8 @@ get_tokens_and_identity (GoaOAuth2Provider *self,
|
|||
|
g_clear_pointer (&priv->authorization_code, g_free);
|
|||
|
g_clear_pointer (&priv->access_token, g_free);
|
|||
|
g_clear_pointer (&priv->refresh_token, g_free);
|
|||
|
+ g_clear_pointer (&priv->request_uri, g_free);
|
|||
|
+ g_clear_object (&priv->session);
|
|||
|
|
|||
|
/* TODO: use oauth2_proxy_build_login_url_full() */
|
|||
|
escaped_redirect_uri = g_uri_escape_string (goa_oauth2_provider_get_redirect_uri (self), NULL, TRUE);
|
|||
|
@@ -946,40 +912,71 @@ get_tokens_and_identity (GoaOAuth2Provider *self,
|
|||
|
escaped_scope = g_uri_escape_string (goa_oauth2_provider_get_scope (self), NULL, TRUE);
|
|||
|
else
|
|||
|
escaped_scope = NULL;
|
|||
|
- url = goa_oauth2_provider_build_authorization_uri (self,
|
|||
|
- goa_oauth2_provider_get_authorization_uri (self),
|
|||
|
- escaped_redirect_uri,
|
|||
|
- escaped_client_id,
|
|||
|
- escaped_scope);
|
|||
|
+ priv->request_uri = goa_oauth2_provider_build_authorization_uri (self,
|
|||
|
+ goa_oauth2_provider_get_authorization_uri (self),
|
|||
|
+ escaped_redirect_uri,
|
|||
|
+ escaped_client_id,
|
|||
|
+ escaped_scope);
|
|||
|
|
|||
|
goa_utils_set_dialog_title (GOA_PROVIDER (self), dialog, add_account);
|
|||
|
|
|||
|
- grid = gtk_grid_new ();
|
|||
|
- gtk_orientable_set_orientation (GTK_ORIENTABLE (grid), GTK_ORIENTATION_VERTICAL);
|
|||
|
- gtk_grid_set_row_spacing (GTK_GRID (grid), 12);
|
|||
|
+ grid = g_object_new (GTK_TYPE_BOX,
|
|||
|
+ "orientation", GTK_ORIENTATION_VERTICAL,
|
|||
|
+ "spacing", 18,
|
|||
|
+ "halign", GTK_ALIGN_CENTER,
|
|||
|
+ "hexpand", TRUE,
|
|||
|
+ "valign", GTK_ALIGN_CENTER,
|
|||
|
+ "vexpand", TRUE,
|
|||
|
+ "margin", 12,
|
|||
|
+ NULL);
|
|||
|
gtk_container_add (GTK_CONTAINER (vbox), grid);
|
|||
|
|
|||
|
- web_view = goa_web_view_new (GOA_PROVIDER (self), existing_identity);
|
|||
|
- gtk_widget_set_hexpand (web_view, TRUE);
|
|||
|
- gtk_widget_set_vexpand (web_view, TRUE);
|
|||
|
- embed = goa_web_view_get_view (GOA_WEB_VIEW (web_view));
|
|||
|
-
|
|||
|
- if (goa_oauth2_provider_get_use_mobile_browser (self))
|
|||
|
- goa_web_view_fake_mobile (GOA_WEB_VIEW (web_view));
|
|||
|
-
|
|||
|
- webkit_web_view_load_uri (WEBKIT_WEB_VIEW (embed), url);
|
|||
|
- g_signal_connect (embed,
|
|||
|
- "decide-policy",
|
|||
|
- G_CALLBACK (on_web_view_decide_policy),
|
|||
|
- self);
|
|||
|
- g_signal_connect (web_view, "deny-click", G_CALLBACK (on_web_view_deny_click), self);
|
|||
|
- g_signal_connect (web_view, "password-submit", G_CALLBACK (on_web_view_password_submit), self);
|
|||
|
+ image = g_object_new (GTK_TYPE_IMAGE,
|
|||
|
+ "icon-name", "web-browser-symbolic",
|
|||
|
+ "pixel-size", 128,
|
|||
|
+ NULL);
|
|||
|
+ gtk_style_context_add_class (gtk_widget_get_style_context (image), "dim-label");
|
|||
|
+ gtk_container_add (GTK_CONTAINER (grid), image);
|
|||
|
+
|
|||
|
+ label = gtk_label_new (_("Sign in with your browser to setup an account."));
|
|||
|
+ gtk_style_context_add_class (gtk_widget_get_style_context (label), "heading");
|
|||
|
+ gtk_container_add (GTK_CONTAINER (grid), label);
|
|||
|
+
|
|||
|
+ button = gtk_button_new_with_label (_("Continue"));
|
|||
|
+ gtk_widget_set_halign (button, GTK_ALIGN_CENTER);
|
|||
|
+ gtk_style_context_add_class (gtk_widget_get_style_context (button), "suggested-action");
|
|||
|
+ g_signal_connect_object (button,
|
|||
|
+ "clicked",
|
|||
|
+ G_CALLBACK (on_continue_in_browser),
|
|||
|
+ self, 0);
|
|||
|
+ gtk_container_add (GTK_CONTAINER (grid), button);
|
|||
|
+ gtk_dialog_add_button (priv->dialog, _("_Cancel"), GTK_RESPONSE_CANCEL);
|
|||
|
|
|||
|
- gtk_container_add (GTK_CONTAINER (grid), web_view);
|
|||
|
+ gtk_widget_show_all (GTK_WIDGET (vbox));
|
|||
|
gtk_window_set_default_size (GTK_WINDOW (dialog), -1, -1);
|
|||
|
|
|||
|
- gtk_widget_show_all (GTK_WIDGET (vbox));
|
|||
|
- gtk_dialog_run (GTK_DIALOG (dialog));
|
|||
|
+ /* Watch the session secret collection for the OAuth2 URI */
|
|||
|
+ secret_service_get (SECRET_SERVICE_LOAD_COLLECTIONS | SECRET_SERVICE_OPEN_SESSION,
|
|||
|
+ NULL,
|
|||
|
+ (GAsyncReadyCallback) secret_service_get_cb,
|
|||
|
+ self);
|
|||
|
+ g_main_loop_run (priv->loop);
|
|||
|
+ if (priv->error != NULL)
|
|||
|
+ goto out;
|
|||
|
+
|
|||
|
+ /* Inform the user authentication should be completed in the browser */
|
|||
|
+ response_id = gtk_dialog_run (GTK_DIALOG (dialog));
|
|||
|
+ if (response_id != GTK_RESPONSE_OK)
|
|||
|
+ {
|
|||
|
+ if (priv->error == NULL)
|
|||
|
+ {
|
|||
|
+ g_set_error (&priv->error,
|
|||
|
+ GOA_ERROR,
|
|||
|
+ GOA_ERROR_DIALOG_DISMISSED,
|
|||
|
+ _("Dialog was dismissed"));
|
|||
|
+ }
|
|||
|
+ goto out;
|
|||
|
+ }
|
|||
|
|
|||
|
/* We can have either the auth code, with which we'll obtain the token, or
|
|||
|
* the token directly if we are using a client side flow, since we don't
|
|||
|
@@ -1038,12 +1035,14 @@ get_tokens_and_identity (GoaOAuth2Provider *self,
|
|||
|
}
|
|||
|
|
|||
|
ret = TRUE;
|
|||
|
+ gtk_dialog_response (dialog, GTK_RESPONSE_OK);
|
|||
|
|
|||
|
out:
|
|||
|
- g_free (url);
|
|||
|
g_free (escaped_redirect_uri);
|
|||
|
g_free (escaped_client_id);
|
|||
|
g_free (escaped_scope);
|
|||
|
+ g_clear_pointer (&priv->request_uri, g_free);
|
|||
|
+ g_clear_object (&priv->session);
|
|||
|
return ret;
|
|||
|
}
|
|||
|
|
|||
|
@@ -1131,6 +1130,7 @@ goa_oauth2_provider_add_account (GoaProvider *provider,
|
|||
|
g_return_val_if_fail (error == NULL || *error == NULL, NULL);
|
|||
|
|
|||
|
priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
+ priv->loop = g_main_loop_new (NULL, FALSE);
|
|||
|
|
|||
|
if (!get_tokens_and_identity (self, TRUE, NULL, dialog, vbox))
|
|||
|
goto out;
|
|||
|
@@ -1165,7 +1165,6 @@ goa_oauth2_provider_add_account (GoaProvider *provider,
|
|||
|
NULL, /* GCancellable* */
|
|||
|
(GAsyncReadyCallback) add_account_cb,
|
|||
|
self);
|
|||
|
- priv->loop = g_main_loop_new (NULL, FALSE);
|
|||
|
g_main_loop_run (priv->loop);
|
|||
|
if (priv->error != NULL)
|
|||
|
goto out;
|
|||
|
@@ -1215,6 +1214,7 @@ goa_oauth2_provider_refresh_account (GoaProvider *provider,
|
|||
|
g_return_val_if_fail (error == NULL || *error == NULL, FALSE);
|
|||
|
|
|||
|
priv = goa_oauth2_provider_get_instance_private (self);
|
|||
|
+ priv->loop = g_main_loop_new (NULL, FALSE);
|
|||
|
|
|||
|
dialog = gtk_dialog_new_with_buttons (NULL,
|
|||
|
parent,
|
|||
|
@@ -1625,6 +1625,8 @@ goa_oauth2_provider_finalize (GObject *object)
|
|||
|
g_free (priv->authorization_code);
|
|||
|
g_free (priv->access_token);
|
|||
|
g_free (priv->refresh_token);
|
|||
|
+ g_clear_pointer (&priv->request_uri, g_free);
|
|||
|
+ g_clear_object (&priv->session);
|
|||
|
|
|||
|
G_OBJECT_CLASS (goa_oauth2_provider_parent_class)->finalize (object);
|
|||
|
}
|
|||
|
@@ -1650,12 +1652,9 @@ goa_oauth2_provider_class_init (GoaOAuth2ProviderClass *klass)
|
|||
|
provider_class->ensure_credentials_sync = goa_oauth2_provider_ensure_credentials_sync;
|
|||
|
|
|||
|
klass->build_authorization_uri = goa_oauth2_provider_build_authorization_uri_default;
|
|||
|
- klass->decide_navigation_policy = goa_oauth2_provider_decide_navigation_policy_default;
|
|||
|
klass->get_token_uri = goa_oauth2_provider_get_token_uri_default;
|
|||
|
klass->get_scope = goa_oauth2_provider_get_scope_default;
|
|||
|
klass->get_use_mobile_browser = goa_oauth2_provider_get_use_mobile_browser_default;
|
|||
|
- klass->is_deny_node = goa_oauth2_provider_is_deny_node_default;
|
|||
|
- klass->is_password_node = goa_oauth2_provider_is_password_node_default;
|
|||
|
klass->add_account_key_values = goa_oauth2_provider_add_account_key_values_default;
|
|||
|
}
|
|||
|
|
|||
|
diff --git a/src/goabackend/goaoauthprovider.c b/src/goabackend/goaoauthprovider.c
|
|||
|
deleted file mode 100644
|
|||
|
index 71bcad6..0000000
|
|||
|
--- a/src/goabackend/goaoauthprovider.c
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,1662 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2011 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#include "config.h"
|
|||
|
-#include <glib/gi18n-lib.h>
|
|||
|
-#include <stdlib.h>
|
|||
|
-
|
|||
|
-#include <rest/oauth-proxy.h>
|
|||
|
-#include <libsoup/soup.h>
|
|||
|
-#include <json-glib/json-glib.h>
|
|||
|
-#include <webkit2/webkit2.h>
|
|||
|
-
|
|||
|
-#include "goaprovider.h"
|
|||
|
-#include "goautils.h"
|
|||
|
-#include "goawebview.h"
|
|||
|
-#include "goaoauthprovider.h"
|
|||
|
-#include "goasouplogger.h"
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * SECTION:goaoauthprovider
|
|||
|
- * @title: GoaOAuthProvider
|
|||
|
- * @short_description: Abstract base class for OAuth 1.0a providers
|
|||
|
- *
|
|||
|
- * #GoaOAuthProvider is an abstract base class for OAuth 1.0a
|
|||
|
- * compliant implementations as defined by <ulink
|
|||
|
- * url="http://tools.ietf.org/html/rfc5849">RFC
|
|||
|
- * 5849</ulink>. Additionally, the code works with providers
|
|||
|
- * implementing <ulink
|
|||
|
- * url="http://oauth.googlecode.com/svn/spec/ext/session/1.0/drafts/1/spec.html">OAuth
|
|||
|
- * Session 1.0 Draft 1</ulink> for refreshing access tokens.
|
|||
|
- *
|
|||
|
- * Subclasses must implement
|
|||
|
- * #GoaOAuthProviderClass.get_consumer_key,
|
|||
|
- * #GoaOAuthProviderClass.get_consumer_secret,
|
|||
|
- * #GoaOAuthProviderClass.get_request_uri,
|
|||
|
- * #GoaOAuthProviderClass.get_authorization_uri,
|
|||
|
- * #GoaOAuthProviderClass.get_token_uri,
|
|||
|
- * #GoaOAuthProviderClass.get_callback_uri and
|
|||
|
- * #GoaOAuthProviderClass.get_identity_sync methods.
|
|||
|
- *
|
|||
|
- * Additionally, the
|
|||
|
- * #GoaProviderClass.get_provider_type,
|
|||
|
- * #GoaProviderClass.get_provider_name,
|
|||
|
- * #GoaProviderClass.build_object (this should chain up to its
|
|||
|
- * parent class) methods must be implemented.
|
|||
|
- *
|
|||
|
- * Note that the #GoaProviderClass.add_account,
|
|||
|
- * #GoaProviderClass.refresh_account and
|
|||
|
- * #GoaProviderClass.ensure_credentials_sync methods do not
|
|||
|
- * need to be implemented - this type implements these methods.
|
|||
|
- */
|
|||
|
-
|
|||
|
-G_LOCK_DEFINE_STATIC (provider_lock);
|
|||
|
-
|
|||
|
-G_DEFINE_ABSTRACT_TYPE (GoaOAuthProvider, goa_oauth_provider, GOA_TYPE_PROVIDER);
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-is_authorization_error (GError *error)
|
|||
|
-{
|
|||
|
- gboolean ret;
|
|||
|
-
|
|||
|
- g_return_val_if_fail (error != NULL, FALSE);
|
|||
|
-
|
|||
|
- ret = FALSE;
|
|||
|
- if (error->domain == REST_PROXY_ERROR || error->domain == SOUP_HTTP_ERROR)
|
|||
|
- {
|
|||
|
- if (SOUP_STATUS_IS_CLIENT_ERROR (error->code))
|
|||
|
- ret = TRUE;
|
|||
|
- }
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth_provider_get_use_mobile_browser_default (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_use_mobile_browser:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Returns whether there is a need for the embedded browser to identify
|
|||
|
- * itself as running on a mobile phone in order to get a more compact
|
|||
|
- * version of the approval page.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %FALSE.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if the embedded browser should identify itself as
|
|||
|
- * running on a mobile platform, %FALSE otherwise.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth_provider_get_use_mobile_browser (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), FALSE);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_use_mobile_browser (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth_provider_is_deny_node_default (GoaOAuthProvider *provider, WebKitDOMNode *node)
|
|||
|
-{
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_is_deny_node:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @node: A WebKitDOMNode.
|
|||
|
- *
|
|||
|
- * Checks whether @node is the HTML UI element that the user can use
|
|||
|
- * to deny permission to access his account. Usually they are either a
|
|||
|
- * WebKitDOMHTMLButtonElement or a WebKitDOMHTMLInputElement.
|
|||
|
- *
|
|||
|
- * Please note that providers may have multiple such elements in their
|
|||
|
- * UI and this method should catch all of them.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %FALSE.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if the @node can be used to deny permission.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth_provider_is_deny_node (GoaOAuthProvider *provider, WebKitDOMNode *node)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), FALSE);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->is_deny_node (provider, node);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth_provider_is_password_node_default (GoaOAuthProvider *provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_is_password_node:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @element: A WebKitDOMHTMLInputElement
|
|||
|
- *
|
|||
|
- * Checks whether @element is the HTML UI element that the user can
|
|||
|
- * use to enter her password. This can be used to offer a
|
|||
|
- * #GoaPasswordBased interface by saving the user's
|
|||
|
- * password. Providers usually frown upon doing this, so this is not
|
|||
|
- * recommended.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %FALSE.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if @element can be used to enter the password.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth_provider_is_password_node (GoaOAuthProvider *provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), FALSE);
|
|||
|
- g_return_val_if_fail (WEBKIT_DOM_IS_HTML_INPUT_ELEMENT (element), FALSE);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->is_password_node (provider, element);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_oauth_provider_add_account_key_values_default (GoaOAuthProvider *provider,
|
|||
|
- GVariantBuilder *builder)
|
|||
|
-{
|
|||
|
- /* do nothing */
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_add_account_key_values:
|
|||
|
- * @provider: A #GoaProvider.
|
|||
|
- * @builder: A #GVariantBuilder for a <literal>a{ss}</literal> variant.
|
|||
|
- *
|
|||
|
- * Hook for implementations to add key/value pairs to the key-file
|
|||
|
- * when creating an account.
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation does nothing.
|
|||
|
- */
|
|||
|
-void
|
|||
|
-goa_oauth_provider_add_account_key_values (GoaOAuthProvider *provider,
|
|||
|
- GVariantBuilder *builder)
|
|||
|
-{
|
|||
|
- g_return_if_fail (GOA_IS_OAUTH_PROVIDER (provider));
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->add_account_key_values (provider, builder);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gchar *
|
|||
|
-goa_oauth_provider_build_authorization_uri_default (GoaOAuthProvider *provider,
|
|||
|
- const gchar *authorization_uri,
|
|||
|
- const gchar *escaped_oauth_token)
|
|||
|
-{
|
|||
|
- return g_strdup_printf ("%s"
|
|||
|
- "?oauth_token=%s",
|
|||
|
- authorization_uri,
|
|||
|
- escaped_oauth_token);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_build_authorization_uri:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @authorization_uri: An authorization URI.
|
|||
|
- * @escaped_oauth_token: An escaped oauth token.
|
|||
|
- *
|
|||
|
- * Builds the URI that can be opened in a web browser (or embedded web
|
|||
|
- * browser widget) to start authenticating an user.
|
|||
|
- *
|
|||
|
- * The default implementation just returns the expected URI
|
|||
|
- * (e.g. <literal>http://example.com/dialog/oauth?auth_token=1234567890</literal>)
|
|||
|
- * - override (and chain up) if you e.g. need to to pass additional
|
|||
|
- * parameters.
|
|||
|
- *
|
|||
|
- * The @authorization_uri parameter originate from the result of the
|
|||
|
- * the goa_oauth_provider_get_authorization_uri() method. The
|
|||
|
- * @escaped_oauth_token parameter is the temporary credentials identifier
|
|||
|
- * escaped using g_uri_escape_string().
|
|||
|
- *
|
|||
|
- * Returns: (transfer full): An authorization URI that must be freed with g_free().
|
|||
|
- */
|
|||
|
-gchar *
|
|||
|
-goa_oauth_provider_build_authorization_uri (GoaOAuthProvider *provider,
|
|||
|
- const gchar *authorization_uri,
|
|||
|
- const gchar *escaped_oauth_token)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- g_return_val_if_fail (authorization_uri != NULL, NULL);
|
|||
|
- g_return_val_if_fail (escaped_oauth_token != NULL, NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->build_authorization_uri (provider,
|
|||
|
- authorization_uri,
|
|||
|
- escaped_oauth_token);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_consumer_key:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets the consumer key identifying the client.
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: (transfer none): A string owned by @provider - do not free.
|
|||
|
- */
|
|||
|
-const gchar *
|
|||
|
-goa_oauth_provider_get_consumer_key (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_consumer_key (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_consumer_secret:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets the consumer secret identifying the client.
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: (transfer none): A string owned by @provider - do not free.
|
|||
|
- */
|
|||
|
-const gchar *
|
|||
|
-goa_oauth_provider_get_consumer_secret (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_consumer_secret (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_request_uri:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets the request uri.
|
|||
|
- *
|
|||
|
- * http://tools.ietf.org/html/rfc5849#section-2.1
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: (transfer none): A string owned by @provider - do not free.
|
|||
|
- */
|
|||
|
-const gchar *
|
|||
|
-goa_oauth_provider_get_request_uri (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_request_uri (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_request_uri_params:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets additional parameters for the request URI.
|
|||
|
- *
|
|||
|
- * http://tools.ietf.org/html/rfc5849#section-2.1
|
|||
|
- *
|
|||
|
- * This is a virtual method where the default implementation returns
|
|||
|
- * %NULL.
|
|||
|
- *
|
|||
|
- * Returns: (transfer full): %NULL (for no parameters) or a
|
|||
|
- * %NULL-terminated array of (key, value) pairs that will be added to
|
|||
|
- * the URI. The caller will free the returned value with g_strfreev().
|
|||
|
- */
|
|||
|
-gchar **
|
|||
|
-goa_oauth_provider_get_request_uri_params (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_request_uri_params (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gchar **
|
|||
|
-goa_oauth_provider_get_request_uri_params_default (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return NULL;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_authorization_uri:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets the authorization uri.
|
|||
|
- *
|
|||
|
- * http://tools.ietf.org/html/rfc5849#section-2.2
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: (transfer none): A string owned by @provider - do not free.
|
|||
|
- */
|
|||
|
-const gchar *
|
|||
|
-goa_oauth_provider_get_authorization_uri (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_authorization_uri (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_token_uri:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets the token uri.
|
|||
|
- *
|
|||
|
- * http://tools.ietf.org/html/rfc5849#section-2.3
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: (transfer none): A string owned by @provider - do not free.
|
|||
|
- */
|
|||
|
-const gchar *
|
|||
|
-goa_oauth_provider_get_token_uri (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_token_uri (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_callback_uri:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- *
|
|||
|
- * Gets the callback uri.
|
|||
|
- *
|
|||
|
- * http://tools.ietf.org/html/rfc5849#section-2.1
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: (transfer none): A string owned by @provider - do not free.
|
|||
|
- */
|
|||
|
-const gchar *
|
|||
|
-goa_oauth_provider_get_callback_uri (GoaOAuthProvider *provider)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_callback_uri (provider);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_identity_sync:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @access_token: A valid OAuth 1.0 access token.
|
|||
|
- * @access_token_secret: The valid secret for @access_token.
|
|||
|
- * @out_presentation_identity: (out): Return location for presentation identity or %NULL.
|
|||
|
- * @cancellable: (allow-none): A #GCancellable or %NULL.
|
|||
|
- * @error: Return location for error or %NULL.
|
|||
|
- *
|
|||
|
- * Method that returns the identity corresponding to @access_token and
|
|||
|
- * @access_token_secret.
|
|||
|
- *
|
|||
|
- * The identity is needed because all authentication happens out of
|
|||
|
- * band. In addition to the identity, an implementation also returns a
|
|||
|
- * <emphasis>presentation identity</emphasis> that is more suitable
|
|||
|
- * for presentation (the identity could be a GUID for example).
|
|||
|
- *
|
|||
|
- * The calling thread is blocked while the identity is obtained.
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: The identity or %NULL if error is set. The returned string
|
|||
|
- * must be freed with g_free().
|
|||
|
- */
|
|||
|
-gchar *
|
|||
|
-goa_oauth_provider_get_identity_sync (GoaOAuthProvider *provider,
|
|||
|
- const gchar *access_token,
|
|||
|
- const gchar *access_token_secret,
|
|||
|
- gchar **out_presentation_identity,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- g_return_val_if_fail (access_token != NULL, NULL);
|
|||
|
- g_return_val_if_fail (cancellable == NULL || G_IS_CANCELLABLE (cancellable), NULL);
|
|||
|
- g_return_val_if_fail (error == NULL || *error == NULL, NULL);
|
|||
|
-
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->get_identity_sync (provider,
|
|||
|
- access_token,
|
|||
|
- access_token_secret,
|
|||
|
- out_presentation_identity,
|
|||
|
- cancellable,
|
|||
|
- error);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_is_identity_node:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @element: A WebKitDOMHTMLInputElement.
|
|||
|
- *
|
|||
|
- * Checks whether @element is the HTML UI element that the user can
|
|||
|
- * use to identify herself at the provider.
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: %TRUE if the @element can be used to deny permission.
|
|||
|
- */
|
|||
|
-gboolean
|
|||
|
-goa_oauth_provider_is_identity_node (GoaOAuthProvider *provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), FALSE);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->is_identity_node (provider, element);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_parse_request_token_error:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @call: The #RestProxyCall that was used to fetch the request token.
|
|||
|
- *
|
|||
|
- * Tries to parse the headers and payload within @call to provide a
|
|||
|
- * human readable error message in case the request token could not
|
|||
|
- * be fetched.
|
|||
|
- *
|
|||
|
- * This is a pure virtual method - a subclass must provide an
|
|||
|
- * implementation.
|
|||
|
- *
|
|||
|
- * Returns: A human readable error message or %NULL if the cause of the
|
|||
|
- * error could not be determined. The returned string must be freed with
|
|||
|
- * g_free().
|
|||
|
- */
|
|||
|
-gchar *
|
|||
|
-goa_oauth_provider_parse_request_token_error (GoaOAuthProvider *provider, RestProxyCall *call)
|
|||
|
-{
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- return GOA_OAUTH_PROVIDER_GET_CLASS (provider)->parse_request_token_error (provider, call);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gchar *
|
|||
|
-get_tokens_sync (GoaOAuthProvider *provider,
|
|||
|
- const gchar *token,
|
|||
|
- const gchar *token_secret,
|
|||
|
- const gchar *session_handle, /* may be NULL */
|
|||
|
- const gchar *verifier, /* may be NULL */
|
|||
|
- gchar **out_access_token_secret,
|
|||
|
- gint *out_access_token_expires_in,
|
|||
|
- gchar **out_session_handle,
|
|||
|
- gint *out_session_handle_expires_in,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- RestProxy *proxy;
|
|||
|
- RestProxyCall *call;
|
|||
|
- SoupLogger *logger = NULL;
|
|||
|
- gchar *ret = NULL;
|
|||
|
- guint status_code;
|
|||
|
- GHashTable *f;
|
|||
|
- const gchar *expires_in_str;
|
|||
|
- gchar *ret_access_token = NULL;
|
|||
|
- gchar *ret_access_token_secret = NULL;
|
|||
|
- gint ret_access_token_expires_in = 0;
|
|||
|
- gchar *ret_session_handle = NULL;
|
|||
|
- gint ret_session_handle_expires_in = 0;
|
|||
|
-
|
|||
|
- proxy = oauth_proxy_new (goa_oauth_provider_get_consumer_key (provider),
|
|||
|
- goa_oauth_provider_get_consumer_secret (provider),
|
|||
|
- goa_oauth_provider_get_token_uri (provider),
|
|||
|
- FALSE);
|
|||
|
- logger = goa_soup_logger_new (SOUP_LOGGER_LOG_BODY, -1);
|
|||
|
- rest_proxy_add_soup_feature (proxy, SOUP_SESSION_FEATURE (logger));
|
|||
|
- oauth_proxy_set_token (OAUTH_PROXY (proxy), token);
|
|||
|
- oauth_proxy_set_token_secret (OAUTH_PROXY (proxy), token_secret);
|
|||
|
- call = rest_proxy_new_call (proxy);
|
|||
|
- rest_proxy_call_set_method (call, "POST");
|
|||
|
- if (verifier != NULL)
|
|||
|
- rest_proxy_call_add_param (call, "oauth_verifier", verifier);
|
|||
|
- if (session_handle != NULL)
|
|||
|
- rest_proxy_call_add_param (call, "oauth_session_handle", session_handle);
|
|||
|
- /* TODO: cancellable support? */
|
|||
|
- if (!rest_proxy_call_sync (call, error))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- status_code = rest_proxy_call_get_status_code (call);
|
|||
|
- if (status_code != 200)
|
|||
|
- {
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- /* Translators: the %d is a HTTP status code and the %s is a textual description of it */
|
|||
|
- _("Expected status 200 when requesting access token, instead got status %d (%s)"),
|
|||
|
- status_code,
|
|||
|
- rest_proxy_call_get_status_message (call));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- f = soup_form_decode (rest_proxy_call_get_payload (call));
|
|||
|
- ret_access_token = g_strdup (g_hash_table_lookup (f, "oauth_token"));
|
|||
|
- ret_access_token_secret = g_strdup (g_hash_table_lookup (f, "oauth_token_secret"));
|
|||
|
- ret_session_handle = g_strdup (g_hash_table_lookup (f, "oauth_session_handle"));
|
|||
|
- expires_in_str = g_hash_table_lookup (f, "oauth_expires_in");
|
|||
|
- if (expires_in_str != NULL)
|
|||
|
- ret_access_token_expires_in = atoi (expires_in_str);
|
|||
|
- expires_in_str = g_hash_table_lookup (f, "oauth_authorization_expires_in");
|
|||
|
- if (expires_in_str != NULL)
|
|||
|
- ret_session_handle_expires_in = atoi (expires_in_str);
|
|||
|
- g_hash_table_unref (f);
|
|||
|
-
|
|||
|
- if (ret_access_token == NULL || ret_access_token_secret == NULL)
|
|||
|
- {
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Missing access_token or access_token_secret headers in response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- ret = ret_access_token; ret_access_token = NULL;
|
|||
|
- if (out_access_token_secret != NULL)
|
|||
|
- {
|
|||
|
- *out_access_token_secret = ret_access_token_secret;
|
|||
|
- ret_access_token_secret = NULL;
|
|||
|
- }
|
|||
|
- if (out_access_token_expires_in != NULL)
|
|||
|
- *out_access_token_expires_in = ret_access_token_expires_in;
|
|||
|
- if (out_session_handle != NULL)
|
|||
|
- {
|
|||
|
- *out_session_handle = ret_session_handle;
|
|||
|
- ret_session_handle = NULL;
|
|||
|
- }
|
|||
|
- if (out_session_handle_expires_in != NULL)
|
|||
|
- *out_session_handle_expires_in = ret_session_handle_expires_in;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (ret_access_token);
|
|||
|
- g_free (ret_access_token_secret);
|
|||
|
- g_free (ret_session_handle);
|
|||
|
- g_clear_object (&call);
|
|||
|
- g_clear_object (&proxy);
|
|||
|
- g_clear_object (&logger);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-typedef struct
|
|||
|
-{
|
|||
|
- GoaOAuthProvider *provider;
|
|||
|
- GtkDialog *dialog;
|
|||
|
- GError *error;
|
|||
|
- GMainLoop *loop;
|
|||
|
-
|
|||
|
- gchar *password;
|
|||
|
-
|
|||
|
- gchar *oauth_verifier;
|
|||
|
-
|
|||
|
- const gchar *existing_identity;
|
|||
|
-
|
|||
|
- gchar *identity;
|
|||
|
- gchar *presentation_identity;
|
|||
|
-
|
|||
|
- gchar *request_token;
|
|||
|
- gchar *request_token_secret;
|
|||
|
- gchar *access_token;
|
|||
|
- gchar *access_token_secret;
|
|||
|
- gint access_token_expires_in;
|
|||
|
- gchar *session_handle;
|
|||
|
- gint session_handle_expires_in;
|
|||
|
-} IdentifyData;
|
|||
|
-
|
|||
|
-static void
|
|||
|
-on_web_view_deny_click (GoaWebView *web_view, gpointer user_data)
|
|||
|
-{
|
|||
|
- IdentifyData *data = user_data;
|
|||
|
- gtk_dialog_response (data->dialog, GTK_RESPONSE_CANCEL);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-on_web_view_password_submit (GoaWebView *web_view, const gchar *password, gpointer user_data)
|
|||
|
-{
|
|||
|
- IdentifyData *data = user_data;
|
|||
|
-
|
|||
|
- g_free (data->password);
|
|||
|
- data->password = g_strdup (password);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-on_web_view_decide_policy (WebKitWebView *web_view,
|
|||
|
- WebKitPolicyDecision *decision,
|
|||
|
- WebKitPolicyDecisionType decision_type,
|
|||
|
- gpointer user_data)
|
|||
|
-{
|
|||
|
- GHashTable *key_value_pairs;
|
|||
|
- IdentifyData *data = user_data;
|
|||
|
- SoupURI *uri;
|
|||
|
- WebKitNavigationAction *action;
|
|||
|
- WebKitURIRequest *request;
|
|||
|
- const gchar *query;
|
|||
|
- const gchar *redirect_uri;
|
|||
|
- const gchar *requested_uri;
|
|||
|
- gint response_id = GTK_RESPONSE_NONE;
|
|||
|
-
|
|||
|
- if (decision_type != WEBKIT_POLICY_DECISION_TYPE_NAVIGATION_ACTION)
|
|||
|
- return FALSE;
|
|||
|
-
|
|||
|
- /* TODO: use oauth_proxy_extract_access_token() */
|
|||
|
-
|
|||
|
- action = webkit_navigation_policy_decision_get_navigation_action (WEBKIT_NAVIGATION_POLICY_DECISION (decision));
|
|||
|
- request = webkit_navigation_action_get_request (action);
|
|||
|
- requested_uri = webkit_uri_request_get_uri (request);
|
|||
|
- redirect_uri = goa_oauth_provider_get_callback_uri (data->provider);
|
|||
|
-
|
|||
|
- if (!g_str_has_prefix (requested_uri, redirect_uri))
|
|||
|
- goto default_behaviour;
|
|||
|
-
|
|||
|
- uri = soup_uri_new (requested_uri);
|
|||
|
- query = soup_uri_get_query (uri);
|
|||
|
-
|
|||
|
- if (query != NULL)
|
|||
|
- {
|
|||
|
- key_value_pairs = soup_form_decode (query);
|
|||
|
-
|
|||
|
- data->oauth_verifier = g_strdup (g_hash_table_lookup (key_value_pairs, "oauth_verifier"));
|
|||
|
- if (data->oauth_verifier != NULL)
|
|||
|
- response_id = GTK_RESPONSE_OK;
|
|||
|
-
|
|||
|
- g_hash_table_unref (key_value_pairs);
|
|||
|
- }
|
|||
|
-
|
|||
|
- if (data->oauth_verifier != NULL)
|
|||
|
- goto ignore_request;
|
|||
|
-
|
|||
|
- /* TODO: The only OAuth1 provider is Flickr. It doesn't send any
|
|||
|
- * error code and only redirects to the URI specified in the Flickr
|
|||
|
- * App Garden. Re-evaluate when the situation changes.
|
|||
|
- */
|
|||
|
- response_id = GTK_RESPONSE_CANCEL;
|
|||
|
- goto ignore_request;
|
|||
|
-
|
|||
|
- ignore_request:
|
|||
|
- g_assert (response_id != GTK_RESPONSE_NONE);
|
|||
|
- gtk_dialog_response (data->dialog, response_id);
|
|||
|
- webkit_policy_decision_ignore (decision);
|
|||
|
- return TRUE;
|
|||
|
-
|
|||
|
- default_behaviour:
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-rest_proxy_call_cb (RestProxyCall *call, const GError *error, GObject *weak_object, gpointer user_data)
|
|||
|
-{
|
|||
|
- IdentifyData *data = user_data;
|
|||
|
- g_main_loop_quit (data->loop);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-get_tokens_and_identity (GoaOAuthProvider *provider,
|
|||
|
- gboolean add_account,
|
|||
|
- const gchar *existing_identity,
|
|||
|
- GtkDialog *dialog,
|
|||
|
- GtkBox *vbox,
|
|||
|
- gchar **out_access_token,
|
|||
|
- gchar **out_access_token_secret,
|
|||
|
- gint *out_access_token_expires_in,
|
|||
|
- gchar **out_session_handle,
|
|||
|
- gint *out_session_handle_expires_in,
|
|||
|
- gchar **out_identity,
|
|||
|
- gchar **out_presentation_identity,
|
|||
|
- gchar **out_password,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *url = NULL;
|
|||
|
- IdentifyData data;
|
|||
|
- gchar *escaped_request_token = NULL;
|
|||
|
- RestProxy *proxy = NULL;
|
|||
|
- RestProxyCall *call = NULL;
|
|||
|
- SoupLogger *logger = NULL;
|
|||
|
- GHashTable *f;
|
|||
|
- GtkWidget *embed;
|
|||
|
- GtkWidget *grid;
|
|||
|
- GtkWidget *spinner;
|
|||
|
- GtkWidget *web_view;
|
|||
|
- gchar **request_params = NULL;
|
|||
|
- guint n;
|
|||
|
-
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), FALSE);
|
|||
|
- g_return_val_if_fail ((!add_account && existing_identity != NULL && existing_identity[0] != '\0')
|
|||
|
- || (add_account && existing_identity == NULL), FALSE);
|
|||
|
- g_return_val_if_fail (GTK_IS_DIALOG (dialog), FALSE);
|
|||
|
- g_return_val_if_fail (GTK_IS_BOX (vbox), FALSE);
|
|||
|
- g_return_val_if_fail (error == NULL || *error == NULL, FALSE);
|
|||
|
-
|
|||
|
- /* TODO: check with NM whether we're online, if not - return error */
|
|||
|
-
|
|||
|
- memset (&data, '\0', sizeof (IdentifyData));
|
|||
|
- data.provider = provider;
|
|||
|
- data.dialog = dialog;
|
|||
|
- data.loop = g_main_loop_new (NULL, FALSE);
|
|||
|
- data.existing_identity = existing_identity;
|
|||
|
-
|
|||
|
- proxy = oauth_proxy_new (goa_oauth_provider_get_consumer_key (provider),
|
|||
|
- goa_oauth_provider_get_consumer_secret (provider),
|
|||
|
- goa_oauth_provider_get_request_uri (provider), FALSE);
|
|||
|
- logger = goa_soup_logger_new (SOUP_LOGGER_LOG_BODY, -1);
|
|||
|
- rest_proxy_add_soup_feature (proxy, SOUP_SESSION_FEATURE (logger));
|
|||
|
-
|
|||
|
- call = rest_proxy_new_call (proxy);
|
|||
|
- rest_proxy_call_set_method (call, "POST");
|
|||
|
- rest_proxy_call_add_param (call, "oauth_callback", goa_oauth_provider_get_callback_uri (provider));
|
|||
|
-
|
|||
|
- request_params = goa_oauth_provider_get_request_uri_params (provider);
|
|||
|
- if (request_params != NULL)
|
|||
|
- {
|
|||
|
- g_assert (g_strv_length (request_params) % 2 == 0);
|
|||
|
- for (n = 0; request_params[n] != NULL; n += 2)
|
|||
|
- rest_proxy_call_add_param (call, request_params[n], request_params[n+1]);
|
|||
|
- }
|
|||
|
- if (!rest_proxy_call_async (call, rest_proxy_call_cb, NULL, &data, &data.error))
|
|||
|
- {
|
|||
|
- g_prefix_error (&data.error, _("Error getting a Request Token: "));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- goa_utils_set_dialog_title (GOA_PROVIDER (provider), dialog, add_account);
|
|||
|
-
|
|||
|
- grid = gtk_grid_new ();
|
|||
|
- gtk_orientable_set_orientation (GTK_ORIENTABLE (grid), GTK_ORIENTATION_VERTICAL);
|
|||
|
- gtk_grid_set_row_spacing (GTK_GRID (grid), 12);
|
|||
|
- gtk_container_add (GTK_CONTAINER (vbox), grid);
|
|||
|
-
|
|||
|
- spinner = gtk_spinner_new ();
|
|||
|
- gtk_widget_set_hexpand (spinner, TRUE);
|
|||
|
- gtk_widget_set_halign (spinner, GTK_ALIGN_CENTER);
|
|||
|
- gtk_widget_set_vexpand (spinner, TRUE);
|
|||
|
- gtk_widget_set_valign (spinner, GTK_ALIGN_CENTER);
|
|||
|
- gtk_widget_set_size_request (GTK_WIDGET (spinner), 24, 24);
|
|||
|
- gtk_spinner_start (GTK_SPINNER (spinner));
|
|||
|
- gtk_container_add (GTK_CONTAINER (grid), spinner);
|
|||
|
- gtk_widget_show_all (GTK_WIDGET (vbox));
|
|||
|
-
|
|||
|
- g_main_loop_run (data.loop);
|
|||
|
- gtk_container_remove (GTK_CONTAINER (grid), spinner);
|
|||
|
-
|
|||
|
- if (rest_proxy_call_get_status_code (call) != 200)
|
|||
|
- {
|
|||
|
- gchar *msg;
|
|||
|
-
|
|||
|
- msg = goa_oauth_provider_parse_request_token_error (provider, call);
|
|||
|
- if (msg == NULL)
|
|||
|
- /* Translators: the %d is a HTTP status code and the %s is a textual description of it */
|
|||
|
- msg = g_strdup_printf (_("Expected status 200 for getting a Request Token, instead got status %d (%s)"),
|
|||
|
- rest_proxy_call_get_status_code (call),
|
|||
|
- rest_proxy_call_get_status_message (call));
|
|||
|
-
|
|||
|
- g_set_error_literal (&data.error, GOA_ERROR, GOA_ERROR_FAILED, msg);
|
|||
|
- g_free (msg);
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
- f = soup_form_decode (rest_proxy_call_get_payload (call));
|
|||
|
- data.request_token = g_strdup (g_hash_table_lookup (f, "oauth_token"));
|
|||
|
- data.request_token_secret = g_strdup (g_hash_table_lookup (f, "oauth_token_secret"));
|
|||
|
- g_hash_table_unref (f);
|
|||
|
- if (data.request_token == NULL || data.request_token_secret == NULL)
|
|||
|
- {
|
|||
|
- g_set_error (&data.error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Missing request_token or request_token_secret headers in response"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- escaped_request_token = g_uri_escape_string (data.request_token, NULL, TRUE);
|
|||
|
- url = goa_oauth_provider_build_authorization_uri (provider,
|
|||
|
- goa_oauth_provider_get_authorization_uri (provider),
|
|||
|
- escaped_request_token);
|
|||
|
-
|
|||
|
- web_view = goa_web_view_new (GOA_PROVIDER (provider), existing_identity);
|
|||
|
- gtk_widget_set_hexpand (web_view, TRUE);
|
|||
|
- gtk_widget_set_vexpand (web_view, TRUE);
|
|||
|
- embed = goa_web_view_get_view (GOA_WEB_VIEW (web_view));
|
|||
|
-
|
|||
|
- if (goa_oauth_provider_get_use_mobile_browser (provider))
|
|||
|
- goa_web_view_fake_mobile (GOA_WEB_VIEW (web_view));
|
|||
|
-
|
|||
|
- webkit_web_view_load_uri (WEBKIT_WEB_VIEW (embed), url);
|
|||
|
- g_signal_connect (embed,
|
|||
|
- "decide-policy",
|
|||
|
- G_CALLBACK (on_web_view_decide_policy),
|
|||
|
- &data);
|
|||
|
- g_signal_connect (web_view, "deny-click", G_CALLBACK (on_web_view_deny_click), &data);
|
|||
|
- g_signal_connect (web_view, "password-submit", G_CALLBACK (on_web_view_password_submit), &data);
|
|||
|
-
|
|||
|
- gtk_container_add (GTK_CONTAINER (grid), web_view);
|
|||
|
- gtk_window_set_default_size (GTK_WINDOW (dialog), -1, -1);
|
|||
|
-
|
|||
|
- gtk_widget_show_all (GTK_WIDGET (vbox));
|
|||
|
- gtk_dialog_run (GTK_DIALOG (dialog));
|
|||
|
-
|
|||
|
- if (data.oauth_verifier == NULL)
|
|||
|
- {
|
|||
|
- if (data.error == NULL)
|
|||
|
- {
|
|||
|
- g_set_error (&data.error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_DIALOG_DISMISSED,
|
|||
|
- _("Dialog was dismissed"));
|
|||
|
- }
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
- g_assert (data.error == NULL);
|
|||
|
-
|
|||
|
- /* OK, we are done interacting with the user ... but before we can
|
|||
|
- * make up our mind, there are two more RPC calls to make and these
|
|||
|
- * call may take some time. So hide the dialog immediately.
|
|||
|
- */
|
|||
|
- gtk_widget_hide (GTK_WIDGET (dialog));
|
|||
|
-
|
|||
|
- /* OK, we now have the request token... we can exchange that for a
|
|||
|
- * (short-lived) access token and session_handle (used to refresh the
|
|||
|
- * access token)..
|
|||
|
- */
|
|||
|
-
|
|||
|
- /* TODO: run in worker thread */
|
|||
|
- data.access_token = get_tokens_sync (provider,
|
|||
|
- data.request_token,
|
|||
|
- data.request_token_secret,
|
|||
|
- NULL, /* session_handle */
|
|||
|
- data.oauth_verifier,
|
|||
|
- &data.access_token_secret,
|
|||
|
- &data.access_token_expires_in,
|
|||
|
- &data.session_handle,
|
|||
|
- &data.session_handle_expires_in,
|
|||
|
- NULL, /* GCancellable */
|
|||
|
- &data.error);
|
|||
|
- if (data.access_token == NULL)
|
|||
|
- {
|
|||
|
- g_prefix_error (&data.error, _("Error getting an Access Token: "));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- /* TODO: run in worker thread */
|
|||
|
- data.identity = goa_oauth_provider_get_identity_sync (provider,
|
|||
|
- data.access_token,
|
|||
|
- data.access_token_secret,
|
|||
|
- &data.presentation_identity,
|
|||
|
- NULL, /* TODO: GCancellable */
|
|||
|
- &data.error);
|
|||
|
- if (data.identity == NULL)
|
|||
|
- {
|
|||
|
- g_prefix_error (&data.error, _("Error getting identity: "));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_clear_object (&call);
|
|||
|
-
|
|||
|
- if (ret)
|
|||
|
- {
|
|||
|
- g_warn_if_fail (data.error == NULL);
|
|||
|
- if (out_access_token != NULL)
|
|||
|
- *out_access_token = g_strdup (data.access_token);
|
|||
|
- if (out_access_token_secret != NULL)
|
|||
|
- *out_access_token_secret = g_strdup (data.access_token_secret);
|
|||
|
- if (out_access_token_expires_in != NULL)
|
|||
|
- *out_access_token_expires_in = data.access_token_expires_in;
|
|||
|
- if (out_session_handle != NULL)
|
|||
|
- *out_session_handle = g_strdup (data.session_handle);
|
|||
|
- if (out_session_handle_expires_in != NULL)
|
|||
|
- *out_session_handle_expires_in = data.session_handle_expires_in;
|
|||
|
- if (out_identity != NULL)
|
|||
|
- *out_identity = g_strdup (data.identity);
|
|||
|
- if (out_presentation_identity != NULL)
|
|||
|
- *out_presentation_identity = g_strdup (data.presentation_identity);
|
|||
|
- if (out_password != NULL)
|
|||
|
- *out_password = g_strdup (data.password);
|
|||
|
- }
|
|||
|
- else
|
|||
|
- {
|
|||
|
- g_warn_if_fail (data.error != NULL);
|
|||
|
- g_propagate_error (error, data.error);
|
|||
|
- }
|
|||
|
-
|
|||
|
- g_free (data.password);
|
|||
|
- g_free (data.presentation_identity);
|
|||
|
- g_free (data.identity);
|
|||
|
- g_free (url);
|
|||
|
-
|
|||
|
- g_free (data.oauth_verifier);
|
|||
|
- g_clear_pointer (&data.loop, (GDestroyNotify) g_main_loop_unref);
|
|||
|
- g_free (data.access_token);
|
|||
|
- g_free (data.access_token_secret);
|
|||
|
- g_free (escaped_request_token);
|
|||
|
-
|
|||
|
- g_free (data.request_token);
|
|||
|
- g_free (data.request_token_secret);
|
|||
|
-
|
|||
|
- g_strfreev (request_params);
|
|||
|
- g_clear_object (&proxy);
|
|||
|
- g_clear_object (&logger);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-typedef struct
|
|||
|
-{
|
|||
|
- GError *error;
|
|||
|
- GMainLoop *loop;
|
|||
|
- gchar *account_object_path;
|
|||
|
-} AddData;
|
|||
|
-
|
|||
|
-static void
|
|||
|
-add_account_cb (GoaManager *manager,
|
|||
|
- GAsyncResult *res,
|
|||
|
- gpointer user_data)
|
|||
|
-{
|
|||
|
- AddData *data = user_data;
|
|||
|
- goa_manager_call_add_account_finish (manager,
|
|||
|
- &data->account_object_path,
|
|||
|
- res,
|
|||
|
- &data->error);
|
|||
|
- g_main_loop_quit (data->loop);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gint64
|
|||
|
-duration_to_abs_usec (gint duration_sec)
|
|||
|
-{
|
|||
|
- gint64 ret;
|
|||
|
- GTimeVal now;
|
|||
|
-
|
|||
|
- g_get_current_time (&now);
|
|||
|
- ret = ((gint64) now.tv_sec) * 1000L * 1000L + ((gint64) now.tv_usec);
|
|||
|
- ret += ((gint64) duration_sec) * 1000L * 1000L;
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gint
|
|||
|
-abs_usec_to_duration (gint64 abs_usec)
|
|||
|
-{
|
|||
|
- gint64 ret;
|
|||
|
- GTimeVal now;
|
|||
|
-
|
|||
|
- g_get_current_time (&now);
|
|||
|
- ret = abs_usec - (((gint64) now.tv_sec) * 1000L * 1000L + ((gint64) now.tv_usec));
|
|||
|
- ret /= 1000L * 1000L;
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static GoaObject *
|
|||
|
-goa_oauth_provider_add_account (GoaProvider *_provider,
|
|||
|
- GoaClient *client,
|
|||
|
- GtkDialog *dialog,
|
|||
|
- GtkBox *vbox,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GoaOAuthProvider *provider = GOA_OAUTH_PROVIDER (_provider);
|
|||
|
- GoaObject *ret = NULL;
|
|||
|
- gchar *access_token = NULL;
|
|||
|
- gchar *access_token_secret = NULL;
|
|||
|
- gint access_token_expires_in;
|
|||
|
- gchar *session_handle = NULL;
|
|||
|
- gint session_handle_expires_in;
|
|||
|
- gchar *identity = NULL;
|
|||
|
- gchar *presentation_identity = NULL;
|
|||
|
- gchar *password = NULL;
|
|||
|
- AddData data;
|
|||
|
- GVariantBuilder credentials;
|
|||
|
- GVariantBuilder details;
|
|||
|
-
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- g_return_val_if_fail (GOA_IS_CLIENT (client), NULL);
|
|||
|
- g_return_val_if_fail (GTK_IS_DIALOG (dialog), NULL);
|
|||
|
- g_return_val_if_fail (GTK_IS_BOX (vbox), NULL);
|
|||
|
- g_return_val_if_fail (error == NULL || *error == NULL, NULL);
|
|||
|
-
|
|||
|
- memset (&data, '\0', sizeof (AddData));
|
|||
|
- data.loop = g_main_loop_new (NULL, FALSE);
|
|||
|
-
|
|||
|
- if (!get_tokens_and_identity (provider,
|
|||
|
- TRUE,
|
|||
|
- NULL,
|
|||
|
- dialog,
|
|||
|
- vbox,
|
|||
|
- &access_token,
|
|||
|
- &access_token_secret,
|
|||
|
- &access_token_expires_in,
|
|||
|
- &session_handle,
|
|||
|
- &session_handle_expires_in,
|
|||
|
- &identity,
|
|||
|
- &presentation_identity,
|
|||
|
- &password,
|
|||
|
- &data.error))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- /* OK, got the identity... see if there's already an account
|
|||
|
- * of this type with the given identity
|
|||
|
- */
|
|||
|
- if (!goa_utils_check_duplicate (client,
|
|||
|
- identity,
|
|||
|
- presentation_identity,
|
|||
|
- goa_provider_get_provider_type (GOA_PROVIDER (provider)),
|
|||
|
- (GoaPeekInterfaceFunc) goa_object_peek_oauth_based,
|
|||
|
- &data.error))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- g_variant_builder_init (&credentials, G_VARIANT_TYPE_VARDICT);
|
|||
|
- g_variant_builder_add (&credentials, "{sv}", "access_token", g_variant_new_string (access_token));
|
|||
|
- g_variant_builder_add (&credentials, "{sv}", "access_token_secret", g_variant_new_string (access_token_secret));
|
|||
|
- if (access_token_expires_in > 0)
|
|||
|
- g_variant_builder_add (&credentials, "{sv}", "access_token_expires_at",
|
|||
|
- g_variant_new_int64 (duration_to_abs_usec (access_token_expires_in)));
|
|||
|
- if (session_handle != NULL)
|
|||
|
- g_variant_builder_add (&credentials, "{sv}", "session_handle", g_variant_new_string (session_handle));
|
|||
|
- if (session_handle_expires_in > 0)
|
|||
|
- g_variant_builder_add (&credentials, "{sv}", "session_handle_expires_at",
|
|||
|
- g_variant_new_int64 (duration_to_abs_usec (session_handle_expires_in)));
|
|||
|
- if (password != NULL)
|
|||
|
- g_variant_builder_add (&credentials, "{sv}", "password", g_variant_new_string (password));
|
|||
|
-
|
|||
|
- g_variant_builder_init (&details, G_VARIANT_TYPE ("a{ss}"));
|
|||
|
- goa_oauth_provider_add_account_key_values (provider, &details);
|
|||
|
-
|
|||
|
- /* we want the GoaClient to update before this method returns (so it
|
|||
|
- * can create a proxy for the new object) so run the mainloop while
|
|||
|
- * waiting for this to complete
|
|||
|
- */
|
|||
|
- goa_manager_call_add_account (goa_client_get_manager (client),
|
|||
|
- goa_provider_get_provider_type (GOA_PROVIDER (provider)),
|
|||
|
- identity,
|
|||
|
- presentation_identity,
|
|||
|
- g_variant_builder_end (&credentials),
|
|||
|
- g_variant_builder_end (&details),
|
|||
|
- NULL, /* GCancellable* */
|
|||
|
- (GAsyncReadyCallback) add_account_cb,
|
|||
|
- &data);
|
|||
|
- g_main_loop_run (data.loop);
|
|||
|
- if (data.error != NULL)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = GOA_OBJECT (g_dbus_object_manager_get_object (goa_client_get_object_manager (client),
|
|||
|
- data.account_object_path));
|
|||
|
-
|
|||
|
- out:
|
|||
|
- /* We might have an object even when data.error is set.
|
|||
|
- * eg., if we failed to store the credentials in the keyring.
|
|||
|
- */
|
|||
|
- if (data.error != NULL)
|
|||
|
- g_propagate_error (error, data.error);
|
|||
|
- else
|
|||
|
- g_assert (ret != NULL);
|
|||
|
-
|
|||
|
- g_free (identity);
|
|||
|
- g_free (presentation_identity);
|
|||
|
- g_free (password);
|
|||
|
- g_free (access_token);
|
|||
|
- g_free (access_token_secret);
|
|||
|
- g_free (session_handle);
|
|||
|
- g_free (data.account_object_path);
|
|||
|
- g_clear_pointer (&data.loop, (GDestroyNotify) g_main_loop_unref);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth_provider_refresh_account (GoaProvider *_provider,
|
|||
|
- GoaClient *client,
|
|||
|
- GoaObject *object,
|
|||
|
- GtkWindow *parent,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GoaOAuthProvider *provider = GOA_OAUTH_PROVIDER (_provider);
|
|||
|
- GoaAccount *account;
|
|||
|
- GtkWidget *dialog;
|
|||
|
- gchar *access_token = NULL;
|
|||
|
- gchar *access_token_secret = NULL;
|
|||
|
- gchar *password = NULL;
|
|||
|
- gint access_token_expires_in;
|
|||
|
- gchar *session_handle = NULL;
|
|||
|
- gint session_handle_expires_in;
|
|||
|
- gchar *identity = NULL;
|
|||
|
- const gchar *existing_identity;
|
|||
|
- const gchar *existing_presentation_identity;
|
|||
|
- GVariantBuilder builder;
|
|||
|
- gboolean ret = FALSE;
|
|||
|
-
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), FALSE);
|
|||
|
- g_return_val_if_fail (GOA_IS_CLIENT (client), FALSE);
|
|||
|
- g_return_val_if_fail (GOA_IS_OBJECT (object), FALSE);
|
|||
|
- g_return_val_if_fail (parent == NULL || GTK_IS_WINDOW (parent), FALSE);
|
|||
|
- g_return_val_if_fail (error == NULL || *error == NULL, FALSE);
|
|||
|
-
|
|||
|
- dialog = gtk_dialog_new_with_buttons (NULL,
|
|||
|
- parent,
|
|||
|
- GTK_DIALOG_MODAL
|
|||
|
- | GTK_DIALOG_DESTROY_WITH_PARENT
|
|||
|
- | GTK_DIALOG_USE_HEADER_BAR,
|
|||
|
- NULL,
|
|||
|
- NULL);
|
|||
|
- gtk_container_set_border_width (GTK_CONTAINER (dialog), 12);
|
|||
|
- gtk_window_set_resizable (GTK_WINDOW (dialog), FALSE);
|
|||
|
- gtk_widget_show_all (dialog);
|
|||
|
-
|
|||
|
- account = goa_object_peek_account (object);
|
|||
|
-
|
|||
|
- /* We abuse presentation identity here because for some providers
|
|||
|
- * identity can be a machine readable ID, which can not be used to
|
|||
|
- * log in via the provider's web interface.
|
|||
|
- */
|
|||
|
- existing_presentation_identity = goa_account_get_presentation_identity (account);
|
|||
|
- if (!get_tokens_and_identity (provider,
|
|||
|
- FALSE,
|
|||
|
- existing_presentation_identity,
|
|||
|
- GTK_DIALOG (dialog),
|
|||
|
- GTK_BOX (gtk_dialog_get_content_area (GTK_DIALOG (dialog))),
|
|||
|
- &access_token,
|
|||
|
- &access_token_secret,
|
|||
|
- &access_token_expires_in,
|
|||
|
- &session_handle,
|
|||
|
- &session_handle_expires_in,
|
|||
|
- &identity,
|
|||
|
- NULL, /* out_presentation_identity */
|
|||
|
- &password,
|
|||
|
- error))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- /* Changes made to the web interface by the providers can break our
|
|||
|
- * DOM parsing. So we should still query and check the identity
|
|||
|
- * afterwards.
|
|||
|
- */
|
|||
|
- existing_identity = goa_account_get_identity (account);
|
|||
|
- if (g_strcmp0 (identity, existing_identity) != 0)
|
|||
|
- {
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_FAILED,
|
|||
|
- _("Was asked to log in as %s, but logged in as %s"),
|
|||
|
- existing_identity,
|
|||
|
- identity);
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- g_variant_builder_init (&builder, G_VARIANT_TYPE_VARDICT);
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "access_token", g_variant_new_string (access_token));
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "access_token_secret", g_variant_new_string (access_token_secret));
|
|||
|
- if (access_token_expires_in > 0)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "access_token_expires_at",
|
|||
|
- g_variant_new_int64 (duration_to_abs_usec (access_token_expires_in)));
|
|||
|
- if (session_handle != NULL)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "session_handle", g_variant_new_string (session_handle));
|
|||
|
- if (session_handle_expires_in > 0)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "session_handle_expires_at",
|
|||
|
- g_variant_new_int64 (duration_to_abs_usec (session_handle_expires_in)));
|
|||
|
- if (password != NULL)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "password", g_variant_new_string (password));
|
|||
|
- /* TODO: run in worker thread */
|
|||
|
- if (!goa_utils_store_credentials_for_object_sync (GOA_PROVIDER (provider),
|
|||
|
- object,
|
|||
|
- g_variant_builder_end (&builder),
|
|||
|
- NULL, /* GCancellable */
|
|||
|
- error))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- goa_account_call_ensure_credentials (goa_object_peek_account (object),
|
|||
|
- NULL, /* GCancellable */
|
|||
|
- NULL, NULL); /* callback, user_data */
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- gtk_widget_destroy (dialog);
|
|||
|
-
|
|||
|
- g_free (identity);
|
|||
|
- g_free (access_token);
|
|||
|
- g_free (access_token_secret);
|
|||
|
- g_free (password);
|
|||
|
- g_free (session_handle);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static void
|
|||
|
-free_mutex (GMutex *mutex)
|
|||
|
-{
|
|||
|
- g_mutex_clear (mutex);
|
|||
|
- g_slice_free (GMutex, mutex);
|
|||
|
-}
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * goa_oauth_provider_get_access_token_sync:
|
|||
|
- * @provider: A #GoaOAuthProvider.
|
|||
|
- * @object: A #GoaObject.
|
|||
|
- * @force_refresh: If set to %TRUE, forces a refresh of the access token, if possible.
|
|||
|
- * @out_access_token_secret: (out): The secret for the return access token.
|
|||
|
- * @out_access_token_expires_in: (out): Return location for how many seconds the returned token is valid for (0 if unknown) or %NULL.
|
|||
|
- * @cancellable: (allow-none): A #GCancellable or %NULL.
|
|||
|
- * @error: Return location for error or %NULL.
|
|||
|
- *
|
|||
|
- * Synchronously gets an access token for @object. The calling thread
|
|||
|
- * is blocked while the operation is pending.
|
|||
|
- *
|
|||
|
- * The resulting token is typically read from the local cache so most
|
|||
|
- * of the time only a local roundtrip to the storage for the token
|
|||
|
- * cache (e.g. <command>gnome-keyring-daemon</command>) is
|
|||
|
- * needed. However, the operation may involve refreshing the token
|
|||
|
- * with the service provider so a full network round-trip may be
|
|||
|
- * needed.
|
|||
|
- *
|
|||
|
- * Note that multiple calls are serialized to avoid multiple
|
|||
|
- * outstanding requests to the service provider.
|
|||
|
- *
|
|||
|
- * This operation may fail if e.g. unable to refresh the credentials
|
|||
|
- * or if network connectivity is not available. Note that even if a
|
|||
|
- * token is returned, the returned token isn't guaranteed to work -
|
|||
|
- * use goa_provider_ensure_credentials_sync() if you need
|
|||
|
- * stronger guarantees.
|
|||
|
- *
|
|||
|
- * Returns: The access token or %NULL if error is set. The returned
|
|||
|
- * string must be freed with g_free().
|
|||
|
- */
|
|||
|
-gchar *
|
|||
|
-goa_oauth_provider_get_access_token_sync (GoaOAuthProvider *provider,
|
|||
|
- GoaObject *object,
|
|||
|
- gboolean force_refresh,
|
|||
|
- gchar **out_access_token_secret,
|
|||
|
- gint *out_access_token_expires_in,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GVariant *credentials = NULL;
|
|||
|
- GVariantIter iter;
|
|||
|
- const gchar *key;
|
|||
|
- GVariant *value;
|
|||
|
- gchar *access_token = NULL;
|
|||
|
- gchar *access_token_secret = NULL;
|
|||
|
- gchar *session_handle = NULL;
|
|||
|
- gchar *access_token_for_refresh = NULL;
|
|||
|
- gchar *access_token_secret_for_refresh = NULL;
|
|||
|
- gchar *session_handle_for_refresh = NULL;
|
|||
|
- gchar *password = NULL;
|
|||
|
- gint access_token_expires_in = 0;
|
|||
|
- gint session_handle_expires_in = 0;
|
|||
|
- gboolean success = FALSE;
|
|||
|
- GVariantBuilder builder;
|
|||
|
- gchar *ret = NULL;
|
|||
|
- GMutex *lock;
|
|||
|
-
|
|||
|
- g_return_val_if_fail (GOA_IS_OAUTH_PROVIDER (provider), NULL);
|
|||
|
- g_return_val_if_fail (GOA_IS_OBJECT (object), NULL);
|
|||
|
- g_return_val_if_fail (cancellable == NULL || G_IS_CANCELLABLE (cancellable), NULL);
|
|||
|
- g_return_val_if_fail (error == NULL || *error == NULL, NULL);
|
|||
|
-
|
|||
|
- /* provider_lock is too coarse, use a per-object lock instead */
|
|||
|
- G_LOCK (provider_lock);
|
|||
|
- lock = g_object_get_data (G_OBJECT (object), "-goa-oauth-provider-get-access-token-lock");
|
|||
|
- if (lock == NULL)
|
|||
|
- {
|
|||
|
- lock = g_slice_new0 (GMutex);
|
|||
|
- g_mutex_init (lock);
|
|||
|
- g_object_set_data_full (G_OBJECT (object),
|
|||
|
- "-goa-oauth-provider-get-access-token-lock",
|
|||
|
- lock,
|
|||
|
- (GDestroyNotify) free_mutex);
|
|||
|
- }
|
|||
|
- G_UNLOCK (provider_lock);
|
|||
|
-
|
|||
|
- g_mutex_lock (lock);
|
|||
|
-
|
|||
|
- /* First, get the credentials from the keyring */
|
|||
|
- credentials = goa_utils_lookup_credentials_sync (GOA_PROVIDER (provider),
|
|||
|
- object,
|
|||
|
- cancellable,
|
|||
|
- error);
|
|||
|
- if (credentials == NULL)
|
|||
|
- {
|
|||
|
- if (error != NULL)
|
|||
|
- {
|
|||
|
- (*error)->domain = GOA_ERROR;
|
|||
|
- (*error)->code = GOA_ERROR_NOT_AUTHORIZED;
|
|||
|
- }
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- g_variant_iter_init (&iter, credentials);
|
|||
|
- while (g_variant_iter_next (&iter, "{&sv}", &key, &value))
|
|||
|
- {
|
|||
|
- if (g_strcmp0 (key, "access_token") == 0)
|
|||
|
- access_token = g_variant_dup_string (value, NULL);
|
|||
|
- else if (g_strcmp0 (key, "access_token_secret") == 0)
|
|||
|
- access_token_secret = g_variant_dup_string (value, NULL);
|
|||
|
- else if (g_strcmp0 (key, "access_token_expires_at") == 0)
|
|||
|
- access_token_expires_in = abs_usec_to_duration (g_variant_get_int64 (value));
|
|||
|
- else if (g_strcmp0 (key, "session_handle") == 0)
|
|||
|
- session_handle = g_variant_dup_string (value, NULL);
|
|||
|
- else if (g_strcmp0 (key, "session_handle_expires_at") == 0)
|
|||
|
- session_handle_expires_in = abs_usec_to_duration (g_variant_get_int64 (value));
|
|||
|
- else if (g_strcmp0 (key, "password") == 0)
|
|||
|
- password = g_variant_dup_string (value, NULL);
|
|||
|
- g_variant_unref (value);
|
|||
|
- }
|
|||
|
-
|
|||
|
- if (access_token == NULL || access_token_secret == NULL)
|
|||
|
- {
|
|||
|
- g_set_error (error,
|
|||
|
- GOA_ERROR,
|
|||
|
- GOA_ERROR_NOT_AUTHORIZED,
|
|||
|
- _("Credentials do not contain access_token or access_token_secret"));
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- /* if we can't refresh the token, just return it no matter what */
|
|||
|
- if (session_handle == NULL)
|
|||
|
- {
|
|||
|
- g_debug ("Returning locally cached credentials that cannot be refreshed");
|
|||
|
- success = TRUE;
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- /* If access_token is still "fresh enough" (e.g. more than ten
|
|||
|
- * minutes of life left in it), just return it unless we've been
|
|||
|
- * asked to forcibly refresh it
|
|||
|
- */
|
|||
|
- if (!force_refresh && access_token_expires_in > 10*60)
|
|||
|
- {
|
|||
|
- g_debug ("Returning locally cached credentials (expires in %d seconds)", access_token_expires_in);
|
|||
|
- success = TRUE;
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- g_debug ("Refreshing locally cached credentials (expires in %d seconds, force_refresh=%d)", access_token_expires_in, force_refresh);
|
|||
|
-
|
|||
|
- /* Otherwise, refresh it */
|
|||
|
- access_token_for_refresh = access_token; access_token = NULL;
|
|||
|
- access_token_secret_for_refresh = access_token_secret; access_token_secret = NULL;
|
|||
|
- session_handle_for_refresh = session_handle; session_handle = NULL;
|
|||
|
- access_token = get_tokens_sync (provider,
|
|||
|
- access_token_for_refresh,
|
|||
|
- access_token_secret_for_refresh,
|
|||
|
- session_handle_for_refresh,
|
|||
|
- NULL, /* verifier */
|
|||
|
- &access_token_secret,
|
|||
|
- &access_token_expires_in,
|
|||
|
- &session_handle,
|
|||
|
- &session_handle_expires_in,
|
|||
|
- cancellable,
|
|||
|
- error);
|
|||
|
- if (access_token == NULL)
|
|||
|
- {
|
|||
|
- if (error != NULL)
|
|||
|
- {
|
|||
|
- g_prefix_error (error, _("Failed to refresh access token (%s, %d): "),
|
|||
|
- g_quark_to_string ((*error)->domain), (*error)->code);
|
|||
|
- (*error)->code = is_authorization_error (*error) ? GOA_ERROR_NOT_AUTHORIZED : GOA_ERROR_FAILED;
|
|||
|
- (*error)->domain = GOA_ERROR;
|
|||
|
- }
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- /* Good. Now update the keyring with the refreshed credentials */
|
|||
|
- g_variant_builder_init (&builder, G_VARIANT_TYPE_VARDICT);
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "access_token", g_variant_new_string (access_token));
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "access_token_secret", g_variant_new_string (access_token_secret));
|
|||
|
- if (access_token_expires_in > 0)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "access_token_expires_at",
|
|||
|
- g_variant_new_int64 (duration_to_abs_usec (access_token_expires_in)));
|
|||
|
- if (session_handle != NULL)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "session_handle", g_variant_new_string (session_handle));
|
|||
|
- if (session_handle_expires_in > 0)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "session_handle_expires_at",
|
|||
|
- g_variant_new_int64 (duration_to_abs_usec (session_handle_expires_in)));
|
|||
|
- if (password != NULL)
|
|||
|
- g_variant_builder_add (&builder, "{sv}", "password", g_variant_new_string (password));
|
|||
|
-
|
|||
|
- /* TODO: run in worker thread */
|
|||
|
- if (!goa_utils_store_credentials_for_object_sync (GOA_PROVIDER (provider),
|
|||
|
- object,
|
|||
|
- g_variant_builder_end (&builder),
|
|||
|
- cancellable,
|
|||
|
- error))
|
|||
|
- {
|
|||
|
- if (error != NULL)
|
|||
|
- {
|
|||
|
- (*error)->domain = GOA_ERROR;
|
|||
|
- (*error)->code = GOA_ERROR_NOT_AUTHORIZED;
|
|||
|
- }
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- success = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- if (success)
|
|||
|
- {
|
|||
|
- ret = access_token; access_token = NULL;
|
|||
|
- g_assert (ret != NULL);
|
|||
|
- if (out_access_token_secret != NULL)
|
|||
|
- {
|
|||
|
- *out_access_token_secret = access_token_secret; access_token_secret = NULL;
|
|||
|
- }
|
|||
|
- if (out_access_token_expires_in != NULL)
|
|||
|
- *out_access_token_expires_in = access_token_expires_in;
|
|||
|
- }
|
|||
|
- g_free (access_token);
|
|||
|
- g_free (access_token_secret);
|
|||
|
- g_free (session_handle);
|
|||
|
- g_free (access_token_for_refresh);
|
|||
|
- g_free (access_token_secret_for_refresh);
|
|||
|
- g_free (session_handle_for_refresh);
|
|||
|
- g_free (password);
|
|||
|
- g_clear_pointer (&credentials, (GDestroyNotify) g_variant_unref);
|
|||
|
-
|
|||
|
- g_mutex_unlock (lock);
|
|||
|
-
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean on_handle_get_access_token (GoaOAuthBased *object,
|
|||
|
- GDBusMethodInvocation *invocation,
|
|||
|
- gpointer user_data);
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth_provider_build_object (GoaProvider *provider,
|
|||
|
- GoaObjectSkeleton *object,
|
|||
|
- GKeyFile *key_file,
|
|||
|
- const gchar *group,
|
|||
|
- GDBusConnection *connection,
|
|||
|
- gboolean just_added,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GoaOAuthBased *oauth_based;
|
|||
|
- gchar *identity;
|
|||
|
-
|
|||
|
- identity = NULL;
|
|||
|
-
|
|||
|
- oauth_based = goa_object_get_oauth_based (GOA_OBJECT (object));
|
|||
|
- if (oauth_based != NULL)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- oauth_based = goa_oauth_based_skeleton_new ();
|
|||
|
- goa_oauth_based_set_consumer_key (oauth_based,
|
|||
|
- goa_oauth_provider_get_consumer_key (GOA_OAUTH_PROVIDER (provider)));
|
|||
|
- goa_oauth_based_set_consumer_secret (oauth_based,
|
|||
|
- goa_oauth_provider_get_consumer_secret (GOA_OAUTH_PROVIDER (provider)));
|
|||
|
- /* Ensure D-Bus method invocations run in their own thread */
|
|||
|
- g_dbus_interface_skeleton_set_flags (G_DBUS_INTERFACE_SKELETON (oauth_based),
|
|||
|
- G_DBUS_INTERFACE_SKELETON_FLAGS_HANDLE_METHOD_INVOCATIONS_IN_THREAD);
|
|||
|
- goa_object_skeleton_set_oauth_based (object, oauth_based);
|
|||
|
- g_signal_connect (oauth_based,
|
|||
|
- "handle-get-access-token",
|
|||
|
- G_CALLBACK (on_handle_get_access_token),
|
|||
|
- NULL);
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_object_unref (oauth_based);
|
|||
|
- g_free (identity);
|
|||
|
- return TRUE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-goa_oauth_provider_ensure_credentials_sync (GoaProvider *_provider,
|
|||
|
- GoaObject *object,
|
|||
|
- gint *out_expires_in,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error)
|
|||
|
-{
|
|||
|
- GoaOAuthProvider *provider = GOA_OAUTH_PROVIDER (_provider);
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *access_token = NULL;
|
|||
|
- gchar *access_token_secret = NULL;
|
|||
|
- gint access_token_expires_in;
|
|||
|
- gchar *identity = NULL;
|
|||
|
- gboolean force_refresh = FALSE;
|
|||
|
-
|
|||
|
- again:
|
|||
|
- access_token = goa_oauth_provider_get_access_token_sync (provider,
|
|||
|
- object,
|
|||
|
- force_refresh,
|
|||
|
- &access_token_secret,
|
|||
|
- &access_token_expires_in,
|
|||
|
- cancellable,
|
|||
|
- error);
|
|||
|
- if (access_token == NULL)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- identity = goa_oauth_provider_get_identity_sync (provider,
|
|||
|
- access_token,
|
|||
|
- access_token_secret,
|
|||
|
- NULL, /* out_presentation_identity */
|
|||
|
- cancellable,
|
|||
|
- error);
|
|||
|
- if (identity == NULL)
|
|||
|
- {
|
|||
|
- /* OK, try again, with forcing the locally cached credentials to be refreshed */
|
|||
|
- if (!force_refresh)
|
|||
|
- {
|
|||
|
- force_refresh = TRUE;
|
|||
|
- g_free (access_token); access_token = NULL;
|
|||
|
- g_free (access_token_secret); access_token_secret = NULL;
|
|||
|
- g_clear_error (error);
|
|||
|
- goto again;
|
|||
|
- }
|
|||
|
- else
|
|||
|
- {
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
- }
|
|||
|
-
|
|||
|
- /* TODO: maybe check with the identity we have */
|
|||
|
- ret = TRUE;
|
|||
|
- if (out_expires_in != NULL)
|
|||
|
- *out_expires_in = access_token_expires_in;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (identity);
|
|||
|
- g_free (access_token);
|
|||
|
- g_free (access_token_secret);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_oauth_provider_init (GoaOAuthProvider *client)
|
|||
|
-{
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_oauth_provider_class_init (GoaOAuthProviderClass *klass)
|
|||
|
-{
|
|||
|
- GoaProviderClass *provider_class;
|
|||
|
-
|
|||
|
- provider_class = GOA_PROVIDER_CLASS (klass);
|
|||
|
- provider_class->add_account = goa_oauth_provider_add_account;
|
|||
|
- provider_class->refresh_account = goa_oauth_provider_refresh_account;
|
|||
|
- provider_class->build_object = goa_oauth_provider_build_object;
|
|||
|
- provider_class->ensure_credentials_sync = goa_oauth_provider_ensure_credentials_sync;
|
|||
|
-
|
|||
|
- klass->build_authorization_uri = goa_oauth_provider_build_authorization_uri_default;
|
|||
|
- klass->get_use_mobile_browser = goa_oauth_provider_get_use_mobile_browser_default;
|
|||
|
- klass->is_deny_node = goa_oauth_provider_is_deny_node_default;
|
|||
|
- klass->is_password_node = goa_oauth_provider_is_password_node_default;
|
|||
|
- klass->get_request_uri_params = goa_oauth_provider_get_request_uri_params_default;
|
|||
|
- klass->add_account_key_values = goa_oauth_provider_add_account_key_values_default;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
-/* runs in a thread dedicated to handling @invocation */
|
|||
|
-static gboolean
|
|||
|
-on_handle_get_access_token (GoaOAuthBased *interface,
|
|||
|
- GDBusMethodInvocation *invocation,
|
|||
|
- gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaObject *object;
|
|||
|
- GoaAccount *account;
|
|||
|
- GoaProvider *provider;
|
|||
|
- GError *error;
|
|||
|
- const gchar *id;
|
|||
|
- const gchar *method_name;
|
|||
|
- const gchar *provider_type;
|
|||
|
- gchar *access_token = NULL;
|
|||
|
- gchar *access_token_secret = NULL;
|
|||
|
- gint access_token_expires_in;
|
|||
|
-
|
|||
|
- /* TODO: maybe log what app is requesting access */
|
|||
|
-
|
|||
|
- object = GOA_OBJECT (g_dbus_interface_get_object (G_DBUS_INTERFACE (interface)));
|
|||
|
- account = goa_object_peek_account (object);
|
|||
|
-
|
|||
|
- id = goa_account_get_id (account);
|
|||
|
- provider_type = goa_account_get_provider_type (account);
|
|||
|
- method_name = g_dbus_method_invocation_get_method_name (invocation);
|
|||
|
- g_debug ("Handling %s for account (%s, %s)", method_name, provider_type, id);
|
|||
|
-
|
|||
|
- provider = goa_provider_get_for_provider_type (provider_type);
|
|||
|
-
|
|||
|
- error = NULL;
|
|||
|
- access_token = goa_oauth_provider_get_access_token_sync (GOA_OAUTH_PROVIDER (provider),
|
|||
|
- object,
|
|||
|
- FALSE, /* force_refresh */
|
|||
|
- &access_token_secret,
|
|||
|
- &access_token_expires_in,
|
|||
|
- NULL, /* GCancellable* */
|
|||
|
- &error);
|
|||
|
- if (access_token == NULL)
|
|||
|
- {
|
|||
|
- g_dbus_method_invocation_take_error (invocation, error);
|
|||
|
- }
|
|||
|
- else
|
|||
|
- {
|
|||
|
- goa_oauth_based_complete_get_access_token (interface,
|
|||
|
- invocation,
|
|||
|
- access_token,
|
|||
|
- access_token_secret,
|
|||
|
- access_token_expires_in);
|
|||
|
- }
|
|||
|
- g_free (access_token);
|
|||
|
- g_free (access_token_secret);
|
|||
|
- g_object_unref (provider);
|
|||
|
- return TRUE; /* invocation was handled */
|
|||
|
-}
|
|||
|
diff --git a/src/goabackend/goaoauthprovider.h b/src/goabackend/goaoauthprovider.h
|
|||
|
deleted file mode 100644
|
|||
|
index d4ffa3c..0000000
|
|||
|
--- a/src/goabackend/goaoauthprovider.h
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,143 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2011 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#if !defined (__GOA_BACKEND_INSIDE_GOA_BACKEND_H__) && !defined (GOA_BACKEND_COMPILATION)
|
|||
|
-#error "Only <goabackend/goabackend.h> can be included directly."
|
|||
|
-#endif
|
|||
|
-
|
|||
|
-#ifndef __GOA_OAUTH_PROVIDER_H__
|
|||
|
-#define __GOA_OAUTH_PROVIDER_H__
|
|||
|
-
|
|||
|
-#include <goabackend/goaprovider.h>
|
|||
|
-#include <goabackend/goaprovider-priv.h>
|
|||
|
-#include <rest/rest-proxy-call.h>
|
|||
|
-#include <webkitdom/webkitdom.h>
|
|||
|
-
|
|||
|
-G_BEGIN_DECLS
|
|||
|
-
|
|||
|
-#define GOA_TYPE_OAUTH_PROVIDER (goa_oauth_provider_get_type ())
|
|||
|
-G_DECLARE_DERIVABLE_TYPE (GoaOAuthProvider, goa_oauth_provider, GOA, OAUTH_PROVIDER, GoaProvider);
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * GoaOAuthProvider:
|
|||
|
- *
|
|||
|
- * The #GoaOAuthProvider structure contains only private data and should
|
|||
|
- * only be accessed using the provided API.
|
|||
|
- */
|
|||
|
-
|
|||
|
-/**
|
|||
|
- * GoaOAuthProviderClass:
|
|||
|
- * @parent_class: The parent class.
|
|||
|
- * @get_consumer_key: Virtual function for goa_oauth_provider_get_consumer_key().
|
|||
|
- * @get_consumer_secret: Virtual function for goa_oauth_provider_get_consumer_secret().
|
|||
|
- * @get_request_uri: Virtual function for goa_oauth_provider_get_request_uri().
|
|||
|
- * @get_authorization_uri: Virtual function for goa_oauth_provider_get_authorization_uri().
|
|||
|
- * @get_token_uri: Virtual function for goa_oauth_provider_get_token_uri().
|
|||
|
- * @get_callback_uri: Virtual function for goa_oauth_provider_get_callback_uri().
|
|||
|
- * @get_identity_sync: Virtual function for goa_oauth_provider_get_identity_sync().
|
|||
|
- * @parse_request_token_error: Virtual function for goa_oauth_provider_parse_request_token_error().
|
|||
|
- * @build_authorization_uri: Virtual function for goa_oauth_provider_build_authorization_uri().
|
|||
|
- * @get_use_mobile_browser: Virtual function for goa_oauth_provider_get_use_mobile_browser().
|
|||
|
- * @get_request_uri_params: Virtual function for goa_oauth_provider_get_request_uri_params().
|
|||
|
- * @add_account_key_values: Virtual function for goa_oauth_provider_add_account_key_values().
|
|||
|
- * @is_deny_node: Virtual function for goa_oauth_provider_is_deny_node().
|
|||
|
- * @is_identity_node: Virtual function for goa_oauth_provider_is_identity_node().
|
|||
|
- * @is_password_node: Virtual function for goa_oauth_provider_is_password_node().
|
|||
|
- *
|
|||
|
- * Class structure for #GoaOAuthProvider.
|
|||
|
- */
|
|||
|
-struct _GoaOAuthProviderClass
|
|||
|
-{
|
|||
|
- GoaProviderClass parent_class;
|
|||
|
-
|
|||
|
- /* pure virtual */
|
|||
|
- const gchar *(*get_consumer_key) (GoaOAuthProvider *provider);
|
|||
|
- const gchar *(*get_consumer_secret) (GoaOAuthProvider *provider);
|
|||
|
- const gchar *(*get_request_uri) (GoaOAuthProvider *provider);
|
|||
|
- const gchar *(*get_authorization_uri) (GoaOAuthProvider *provider);
|
|||
|
- const gchar *(*get_token_uri) (GoaOAuthProvider *provider);
|
|||
|
- const gchar *(*get_callback_uri) (GoaOAuthProvider *provider);
|
|||
|
-
|
|||
|
- gchar *(*get_identity_sync) (GoaOAuthProvider *provider,
|
|||
|
- const gchar *access_token,
|
|||
|
- const gchar *access_token_secret,
|
|||
|
- gchar **out_presentation_identity,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error);
|
|||
|
-
|
|||
|
- gchar *(*parse_request_token_error) (GoaOAuthProvider *provider,
|
|||
|
- RestProxyCall *call);
|
|||
|
-
|
|||
|
- /* virtual but with default implementation */
|
|||
|
- gchar *(*build_authorization_uri) (GoaOAuthProvider *provider,
|
|||
|
- const gchar *authorization_uri,
|
|||
|
- const gchar *escaped_oauth_token);
|
|||
|
- gboolean (*get_use_mobile_browser) (GoaOAuthProvider *provider);
|
|||
|
- gchar **(*get_request_uri_params) (GoaOAuthProvider *provider);
|
|||
|
- void (*add_account_key_values) (GoaOAuthProvider *provider,
|
|||
|
- GVariantBuilder *builder);
|
|||
|
-
|
|||
|
- /* pure virtual */
|
|||
|
- gboolean (*is_identity_node) (GoaOAuthProvider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-
|
|||
|
- /* virtual but with default implementation */
|
|||
|
- gboolean (*is_deny_node) (GoaOAuthProvider *provider,
|
|||
|
- WebKitDOMNode *node);
|
|||
|
- gboolean (*is_password_node) (GoaOAuthProvider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-};
|
|||
|
-
|
|||
|
-const gchar *goa_oauth_provider_get_consumer_key (GoaOAuthProvider *provider);
|
|||
|
-const gchar *goa_oauth_provider_get_consumer_secret (GoaOAuthProvider *provider);
|
|||
|
-const gchar *goa_oauth_provider_get_request_uri (GoaOAuthProvider *provider);
|
|||
|
-gchar **goa_oauth_provider_get_request_uri_params (GoaOAuthProvider *provider);
|
|||
|
-const gchar *goa_oauth_provider_get_authorization_uri (GoaOAuthProvider *provider);
|
|||
|
-const gchar *goa_oauth_provider_get_token_uri (GoaOAuthProvider *provider);
|
|||
|
-const gchar *goa_oauth_provider_get_callback_uri (GoaOAuthProvider *provider);
|
|||
|
-gchar *goa_oauth_provider_get_identity_sync (GoaOAuthProvider *provider,
|
|||
|
- const gchar *access_token,
|
|||
|
- const gchar *access_token_secret,
|
|||
|
- gchar **out_presentation_identity,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error);
|
|||
|
-gboolean goa_oauth_provider_is_deny_node (GoaOAuthProvider *provider,
|
|||
|
- WebKitDOMNode *node);
|
|||
|
-gboolean goa_oauth_provider_is_identity_node (GoaOAuthProvider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-gboolean goa_oauth_provider_is_password_node (GoaOAuthProvider *provider,
|
|||
|
- WebKitDOMHTMLInputElement *element);
|
|||
|
-gchar *goa_oauth_provider_parse_request_token_error (GoaOAuthProvider *provider,
|
|||
|
- RestProxyCall *call);
|
|||
|
-gchar *goa_oauth_provider_get_access_token_sync (GoaOAuthProvider *provider,
|
|||
|
- GoaObject *object,
|
|||
|
- gboolean force_refresh,
|
|||
|
- gchar **out_access_token_secret,
|
|||
|
- gint *out_access_token_expires_in,
|
|||
|
- GCancellable *cancellable,
|
|||
|
- GError **error);
|
|||
|
-gchar *goa_oauth_provider_build_authorization_uri (GoaOAuthProvider *provider,
|
|||
|
- const gchar *authorization_uri,
|
|||
|
- const gchar *escaped_oauth_token);
|
|||
|
-gboolean goa_oauth_provider_get_use_mobile_browser (GoaOAuthProvider *provider);
|
|||
|
-void goa_oauth_provider_add_account_key_values (GoaOAuthProvider *provider,
|
|||
|
- GVariantBuilder *builder);
|
|||
|
-
|
|||
|
-G_END_DECLS
|
|||
|
-
|
|||
|
-#endif /* __GOA_OAUTH_PROVIDER_H__ */
|
|||
|
diff --git a/src/goabackend/goapocketprovider.c b/src/goabackend/goapocketprovider.c
|
|||
|
index 38f9863..0d1a8ce 100644
|
|||
|
--- a/src/goabackend/goapocketprovider.c
|
|||
|
+++ b/src/goabackend/goapocketprovider.c
|
|||
|
@@ -185,32 +185,6 @@ build_authorization_uri (GoaOAuth2Provider *oauth2_provider,
|
|||
|
return url;
|
|||
|
}
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-decide_navigation_policy (GoaOAuth2Provider *oauth2_provider,
|
|||
|
- WebKitWebView *web_view,
|
|||
|
- WebKitNavigationPolicyDecision *decision)
|
|||
|
-{
|
|||
|
- GoaPocketProvider *self = GOA_POCKET_PROVIDER (oauth2_provider);
|
|||
|
- WebKitNavigationAction *action;
|
|||
|
- WebKitURIRequest *request;
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- const gchar *uri;
|
|||
|
-
|
|||
|
- action = webkit_navigation_policy_decision_get_navigation_action (decision);
|
|||
|
- request = webkit_navigation_action_get_request (action);
|
|||
|
- uri = webkit_uri_request_get_uri (request);
|
|||
|
- if (!g_str_has_prefix (uri, "https://getpocket.com/a/"))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- webkit_uri_request_set_uri (request, self->authorization_uri);
|
|||
|
- webkit_web_view_load_request (web_view, request);
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
process_redirect_url (GoaOAuth2Provider *oauth2_provider,
|
|||
|
const gchar *redirect_url,
|
|||
|
@@ -279,68 +253,6 @@ get_identity_sync (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-is_deny_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMNode *node)
|
|||
|
-{
|
|||
|
- WebKitDOMElement *element;
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *id = NULL;
|
|||
|
- gchar *class = NULL;
|
|||
|
- gchar *text = NULL;
|
|||
|
-
|
|||
|
- if (!WEBKIT_DOM_IS_ELEMENT (node))
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- element = WEBKIT_DOM_ELEMENT (node);
|
|||
|
-
|
|||
|
- /* Desktop version */
|
|||
|
- id = webkit_dom_element_get_id (element);
|
|||
|
- if (g_strcmp0 (id, "denyButton") == 0)
|
|||
|
- {
|
|||
|
- ret = TRUE;
|
|||
|
- goto out;
|
|||
|
- }
|
|||
|
-
|
|||
|
- /* Mobile version */
|
|||
|
- class = webkit_dom_element_get_class_name (element);
|
|||
|
- if (g_strcmp0 (class, "toolbarButton") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- /* FIXME: This only seems to work if we don't click on the "Sign Up"
|
|||
|
- * button, does the check need to be done again? */
|
|||
|
- text = webkit_dom_node_get_text_content (node);
|
|||
|
- if (g_strcmp0 (text, "Cancel") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (id);
|
|||
|
- g_free (class);
|
|||
|
- g_free (text);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *name;
|
|||
|
-
|
|||
|
- name = webkit_dom_html_input_element_get_name (element);
|
|||
|
- if (g_strcmp0 (name, "feed_id") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
-out:
|
|||
|
- g_free (name);
|
|||
|
- return ret;
|
|||
|
-
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
build_object (GoaProvider *provider,
|
|||
|
GoaObjectSkeleton *object,
|
|||
|
@@ -431,15 +343,12 @@ goa_pocket_provider_class_init (GoaPocketProviderClass *klass)
|
|||
|
provider_class->build_object = build_object;
|
|||
|
|
|||
|
oauth2_class->build_authorization_uri = build_authorization_uri;
|
|||
|
- oauth2_class->decide_navigation_policy = decide_navigation_policy;
|
|||
|
oauth2_class->get_authorization_uri = get_authorization_uri;
|
|||
|
oauth2_class->get_token_uri = get_token_uri;
|
|||
|
oauth2_class->get_redirect_uri = get_redirect_uri;
|
|||
|
oauth2_class->get_client_id = get_client_id;
|
|||
|
oauth2_class->get_client_secret = get_client_secret;
|
|||
|
oauth2_class->get_identity_sync = get_identity_sync;
|
|||
|
- oauth2_class->is_deny_node = is_deny_node;
|
|||
|
- oauth2_class->is_identity_node = is_identity_node;
|
|||
|
oauth2_class->add_account_key_values = add_account_key_values;
|
|||
|
oauth2_class->process_redirect_url = process_redirect_url;
|
|||
|
}
|
|||
|
diff --git a/src/goabackend/goaprovider.c b/src/goabackend/goaprovider.c
|
|||
|
index c8f7f0d..fe8ce22 100644
|
|||
|
--- a/src/goabackend/goaprovider.c
|
|||
|
+++ b/src/goabackend/goaprovider.c
|
|||
|
@@ -28,7 +28,6 @@
|
|||
|
#include "goafacebookprovider.h"
|
|||
|
#include "goaimapsmtpprovider.h"
|
|||
|
#include "goaowncloudprovider.h"
|
|||
|
-#include "goaflickrprovider.h"
|
|||
|
#include "goafoursquareprovider.h"
|
|||
|
#include "goawindowsliveprovider.h"
|
|||
|
#include "goatelepathyfactory.h"
|
|||
|
@@ -968,9 +967,6 @@ static struct
|
|||
|
#ifdef GOA_WINDOWS_LIVE_ENABLED
|
|||
|
{ GOA_WINDOWS_LIVE_NAME, goa_windows_live_provider_get_type },
|
|||
|
#endif
|
|||
|
-#ifdef GOA_FLICKR_ENABLED
|
|||
|
- { GOA_FLICKR_NAME, goa_flickr_provider_get_type },
|
|||
|
-#endif
|
|||
|
#ifdef GOA_POCKET_ENABLED
|
|||
|
{ GOA_POCKET_NAME, goa_pocket_provider_get_type },
|
|||
|
#endif
|
|||
|
diff --git a/src/goabackend/goatodoistprovider.c b/src/goabackend/goatodoistprovider.c
|
|||
|
index d97c33c..7f17a59 100644
|
|||
|
--- a/src/goabackend/goatodoistprovider.c
|
|||
|
+++ b/src/goabackend/goatodoistprovider.c
|
|||
|
@@ -133,33 +133,6 @@ build_authorization_uri (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *element_type = NULL;
|
|||
|
- gchar *id = NULL;
|
|||
|
- gchar *name = NULL;
|
|||
|
-
|
|||
|
- g_object_get (element, "type", &element_type, NULL);
|
|||
|
- if (g_strcmp0 (element_type, "email") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- id = webkit_dom_element_get_id (WEBKIT_DOM_ELEMENT (element));
|
|||
|
- if (g_strcmp0 (id, "email") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (element_type);
|
|||
|
- g_free (id);
|
|||
|
- g_free (name);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static gchar *
|
|||
|
get_identity_sync (GoaOAuth2Provider *oauth2_provider,
|
|||
|
const gchar *access_token,
|
|||
|
@@ -337,6 +310,5 @@ goa_todoist_provider_class_init (GoaTodoistProviderClass *klass)
|
|||
|
oauth2_class->get_client_secret = get_client_secret;
|
|||
|
oauth2_class->get_scope = get_scope;
|
|||
|
oauth2_class->get_identity_sync = get_identity_sync;
|
|||
|
- oauth2_class->is_identity_node = is_identity_node;
|
|||
|
oauth2_class->add_account_key_values = add_account_key_values;
|
|||
|
}
|
|||
|
diff --git a/src/goabackend/goawebextension.c b/src/goabackend/goawebextension.c
|
|||
|
deleted file mode 100644
|
|||
|
index 6a25ab9..0000000
|
|||
|
--- a/src/goabackend/goawebextension.c
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,273 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2015 Damián Nohales
|
|||
|
- * Copyright © 2015 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#include "config.h"
|
|||
|
-
|
|||
|
-#include <webkitdom/webkitdom.h>
|
|||
|
-
|
|||
|
-#include "goaoauthprovider.h"
|
|||
|
-#include "goaoauth2provider.h"
|
|||
|
-#include "goaoauth2provider-web-extension.h"
|
|||
|
-#include "goaprovider.h"
|
|||
|
-#include "goawebextension.h"
|
|||
|
-
|
|||
|
-struct _GoaWebExtension
|
|||
|
-{
|
|||
|
- GObject parent;
|
|||
|
- GoaProvider *provider;
|
|||
|
- WebKitWebExtension *wk_extension;
|
|||
|
- gchar *existing_identity;
|
|||
|
- gchar *provider_type;
|
|||
|
-};
|
|||
|
-
|
|||
|
-struct _GoaWebExtensionClass
|
|||
|
-{
|
|||
|
- GObjectClass parent;
|
|||
|
-};
|
|||
|
-
|
|||
|
-enum
|
|||
|
-{
|
|||
|
- PROP_0,
|
|||
|
- PROP_EXISTING_IDENTITY,
|
|||
|
- PROP_PROVIDER_TYPE,
|
|||
|
- PROP_WK_EXTENSION
|
|||
|
-};
|
|||
|
-
|
|||
|
-G_DEFINE_TYPE (GoaWebExtension, goa_web_extension, G_TYPE_OBJECT)
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_extension_dom_node_deny_click_cb (WebKitDOMNode *element, WebKitDOMEvent *event, gpointer user_data)
|
|||
|
-{
|
|||
|
- WebKitDOMDOMWindow *dom_window = WEBKIT_DOM_DOM_WINDOW (user_data);
|
|||
|
- webkit_dom_dom_window_webkit_message_handlers_post_message (dom_window, "deny-click", "");
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_extension_dom_node_password_submit_cb (WebKitDOMNode *element, WebKitDOMEvent *event, gpointer user_data)
|
|||
|
-{
|
|||
|
- WebKitDOMDOMWindow *dom_window = WEBKIT_DOM_DOM_WINDOW (user_data);
|
|||
|
- WebKitDOMHTMLInputElement *password_node;
|
|||
|
- gchar *password;
|
|||
|
-
|
|||
|
- password_node = WEBKIT_DOM_HTML_INPUT_ELEMENT (g_object_get_data (G_OBJECT (dom_window), "goa-password-node"));
|
|||
|
- password = webkit_dom_html_input_element_get_value (password_node);
|
|||
|
- webkit_dom_dom_window_webkit_message_handlers_post_message (dom_window, "password-submit", password);
|
|||
|
- g_free (password);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_extension_document_loaded_cb (WebKitWebPage *web_page, gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaWebExtension *self = GOA_WEB_EXTENSION (user_data);
|
|||
|
- WebKitDOMDocument *document;
|
|||
|
- WebKitDOMDOMWindow *dom_window;
|
|||
|
- WebKitDOMHTMLCollection *elements = NULL;
|
|||
|
- gulong element_count;
|
|||
|
- gulong i;
|
|||
|
-
|
|||
|
- document = webkit_web_page_get_dom_document (web_page);
|
|||
|
- elements = webkit_dom_document_get_elements_by_tag_name_as_html_collection (document, "*");
|
|||
|
- element_count = webkit_dom_html_collection_get_length (elements);
|
|||
|
-
|
|||
|
- dom_window = webkit_dom_document_get_default_view (document);
|
|||
|
-
|
|||
|
- for (i = 0; i < element_count; i++)
|
|||
|
- {
|
|||
|
- WebKitDOMNode *element = webkit_dom_html_collection_item (elements, i);
|
|||
|
-
|
|||
|
- if ((GOA_IS_OAUTH_PROVIDER (self->provider)
|
|||
|
- && goa_oauth_provider_is_deny_node (GOA_OAUTH_PROVIDER (self->provider), element))
|
|||
|
- || (GOA_IS_OAUTH2_PROVIDER (self->provider)
|
|||
|
- && goa_oauth2_provider_is_deny_node (GOA_OAUTH2_PROVIDER (self->provider), element)))
|
|||
|
- {
|
|||
|
- webkit_dom_event_target_add_event_listener (WEBKIT_DOM_EVENT_TARGET (element),
|
|||
|
- "click",
|
|||
|
- G_CALLBACK (web_extension_dom_node_deny_click_cb),
|
|||
|
- FALSE,
|
|||
|
- dom_window);
|
|||
|
- }
|
|||
|
- else if (self->existing_identity != NULL
|
|||
|
- && self->existing_identity[0] != '\0'
|
|||
|
- && WEBKIT_DOM_IS_HTML_INPUT_ELEMENT (element)
|
|||
|
- && ((GOA_IS_OAUTH_PROVIDER (self->provider)
|
|||
|
- && goa_oauth_provider_is_identity_node (GOA_OAUTH_PROVIDER (self->provider),
|
|||
|
- WEBKIT_DOM_HTML_INPUT_ELEMENT (element)))
|
|||
|
- || (GOA_IS_OAUTH2_PROVIDER (self->provider)
|
|||
|
- && goa_oauth2_provider_is_identity_node (GOA_OAUTH2_PROVIDER (self->provider),
|
|||
|
- WEBKIT_DOM_HTML_INPUT_ELEMENT (element)))))
|
|||
|
- {
|
|||
|
- webkit_dom_html_input_element_set_value (WEBKIT_DOM_HTML_INPUT_ELEMENT (element),
|
|||
|
- self->existing_identity);
|
|||
|
- webkit_dom_html_input_element_set_read_only (WEBKIT_DOM_HTML_INPUT_ELEMENT (element), TRUE);
|
|||
|
- }
|
|||
|
- else if (WEBKIT_DOM_IS_HTML_INPUT_ELEMENT (element)
|
|||
|
- && ((GOA_IS_OAUTH_PROVIDER (self->provider)
|
|||
|
- && goa_oauth_provider_is_password_node (GOA_OAUTH_PROVIDER (self->provider),
|
|||
|
- WEBKIT_DOM_HTML_INPUT_ELEMENT (element)))
|
|||
|
- || (GOA_IS_OAUTH2_PROVIDER (self->provider)
|
|||
|
- && goa_oauth2_provider_is_password_node (GOA_OAUTH2_PROVIDER (self->provider),
|
|||
|
- WEBKIT_DOM_HTML_INPUT_ELEMENT (element)))))
|
|||
|
- {
|
|||
|
- WebKitDOMHTMLFormElement *form;
|
|||
|
-
|
|||
|
- form = webkit_dom_html_input_element_get_form (WEBKIT_DOM_HTML_INPUT_ELEMENT (element));
|
|||
|
- if (form != NULL)
|
|||
|
- {
|
|||
|
- g_object_set_data_full (G_OBJECT (dom_window),
|
|||
|
- "goa-password-node",
|
|||
|
- g_object_ref (element),
|
|||
|
- g_object_unref);
|
|||
|
- webkit_dom_event_target_add_event_listener (WEBKIT_DOM_EVENT_TARGET (form),
|
|||
|
- "submit",
|
|||
|
- G_CALLBACK (web_extension_dom_node_password_submit_cb),
|
|||
|
- FALSE,
|
|||
|
- dom_window);
|
|||
|
- }
|
|||
|
- }
|
|||
|
- }
|
|||
|
-
|
|||
|
- g_clear_object (&elements);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_extension_page_created_cb (GoaWebExtension *self, WebKitWebPage *web_page)
|
|||
|
-{
|
|||
|
- g_signal_connect_object (web_page, "document-loaded", G_CALLBACK (web_extension_document_loaded_cb), self, 0);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_extension_constructed (GObject *object)
|
|||
|
-{
|
|||
|
- GoaWebExtension *self = GOA_WEB_EXTENSION (object);
|
|||
|
-
|
|||
|
- G_OBJECT_CLASS (goa_web_extension_parent_class)->constructed (object);
|
|||
|
-
|
|||
|
- self->provider = goa_provider_get_for_provider_type (self->provider_type);
|
|||
|
-
|
|||
|
- g_signal_connect_object (self->wk_extension,
|
|||
|
- "page-created",
|
|||
|
- G_CALLBACK (web_extension_page_created_cb),
|
|||
|
- self,
|
|||
|
- G_CONNECT_SWAPPED);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_extension_dispose (GObject *object)
|
|||
|
-{
|
|||
|
- GoaWebExtension *self = GOA_WEB_EXTENSION (object);
|
|||
|
-
|
|||
|
- g_clear_object (&self->provider);
|
|||
|
- g_clear_object (&self->wk_extension);
|
|||
|
-
|
|||
|
- G_OBJECT_CLASS (goa_web_extension_parent_class)->dispose (object);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_extension_finalize (GObject *object)
|
|||
|
-{
|
|||
|
- GoaWebExtension *self = GOA_WEB_EXTENSION (object);
|
|||
|
-
|
|||
|
- g_free (self->existing_identity);
|
|||
|
- g_free (self->provider_type);
|
|||
|
-
|
|||
|
- G_OBJECT_CLASS (goa_web_extension_parent_class)->finalize (object);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_extension_set_property (GObject *object, guint prop_id, const GValue *value, GParamSpec *pspec)
|
|||
|
-{
|
|||
|
- GoaWebExtension *self = GOA_WEB_EXTENSION (object);
|
|||
|
-
|
|||
|
- switch (prop_id)
|
|||
|
- {
|
|||
|
- case PROP_EXISTING_IDENTITY:
|
|||
|
- self->existing_identity = g_value_dup_string (value);
|
|||
|
- break;
|
|||
|
-
|
|||
|
- case PROP_PROVIDER_TYPE:
|
|||
|
- self->provider_type = g_value_dup_string (value);
|
|||
|
- break;
|
|||
|
-
|
|||
|
- case PROP_WK_EXTENSION:
|
|||
|
- self->wk_extension = WEBKIT_WEB_EXTENSION (g_value_dup_object (value));
|
|||
|
- break;
|
|||
|
-
|
|||
|
- default:
|
|||
|
- G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec);
|
|||
|
- break;
|
|||
|
- }
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_extension_class_init (GoaWebExtensionClass *klass)
|
|||
|
-{
|
|||
|
- GObjectClass *object_class = G_OBJECT_CLASS (klass);
|
|||
|
-
|
|||
|
- object_class->constructed = goa_web_extension_constructed;
|
|||
|
- object_class->dispose = goa_web_extension_dispose;
|
|||
|
- object_class->finalize = goa_web_extension_finalize;
|
|||
|
- object_class->set_property = goa_web_extension_set_property;
|
|||
|
-
|
|||
|
- g_object_class_install_property (object_class,
|
|||
|
- PROP_EXISTING_IDENTITY,
|
|||
|
- g_param_spec_string ("existing-identity",
|
|||
|
- "A GoaAccount identity",
|
|||
|
- "The user name with which we want to prefill the form",
|
|||
|
- NULL,
|
|||
|
- G_PARAM_WRITABLE |
|
|||
|
- G_PARAM_CONSTRUCT_ONLY |
|
|||
|
- G_PARAM_STATIC_STRINGS));
|
|||
|
-
|
|||
|
- g_object_class_install_property (object_class,
|
|||
|
- PROP_PROVIDER_TYPE,
|
|||
|
- g_param_spec_string ("provider-type",
|
|||
|
- "A GoaProvider type",
|
|||
|
- "The provider type that is represented by this view",
|
|||
|
- NULL,
|
|||
|
- G_PARAM_WRITABLE |
|
|||
|
- G_PARAM_CONSTRUCT_ONLY |
|
|||
|
- G_PARAM_STATIC_STRINGS));
|
|||
|
-
|
|||
|
- g_object_class_install_property (object_class,
|
|||
|
- PROP_WK_EXTENSION,
|
|||
|
- g_param_spec_object ("wk-extension",
|
|||
|
- "A WebKitWebExtension",
|
|||
|
- "The associated WebKitWebExtension",
|
|||
|
- WEBKIT_TYPE_WEB_EXTENSION,
|
|||
|
- G_PARAM_WRITABLE |
|
|||
|
- G_PARAM_CONSTRUCT_ONLY |
|
|||
|
- G_PARAM_STATIC_STRINGS));
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_extension_init (GoaWebExtension *self)
|
|||
|
-{
|
|||
|
-}
|
|||
|
-
|
|||
|
-GoaWebExtension *
|
|||
|
-goa_web_extension_new (WebKitWebExtension *wk_extension,
|
|||
|
- const gchar *provider_type,
|
|||
|
- const gchar *existing_identity)
|
|||
|
-{
|
|||
|
- return g_object_new (GOA_TYPE_WEB_EXTENSION,
|
|||
|
- "existing-identity", existing_identity,
|
|||
|
- "provider-type", provider_type,
|
|||
|
- "wk-extension", wk_extension,
|
|||
|
- NULL);
|
|||
|
-}
|
|||
|
diff --git a/src/goabackend/goawebextension.h b/src/goabackend/goawebextension.h
|
|||
|
deleted file mode 100644
|
|||
|
index 4a8cf8f..0000000
|
|||
|
--- a/src/goabackend/goawebextension.h
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,42 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2015 Damián Nohales
|
|||
|
- * Copyright © 2015 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#ifndef __GOA_WEB_EXTENSION_H__
|
|||
|
-#define __GOA_WEB_EXTENSION_H__
|
|||
|
-
|
|||
|
-#include <glib-object.h>
|
|||
|
-#include <webkit2/webkit-web-extension.h>
|
|||
|
-
|
|||
|
-G_BEGIN_DECLS
|
|||
|
-
|
|||
|
-#define GOA_TYPE_WEB_EXTENSION (goa_web_extension_get_type())
|
|||
|
-#define GOA_WEB_EXTENSION(obj) (G_TYPE_CHECK_INSTANCE_CAST ((obj), GOA_TYPE_WEB_EXTENSION, GoaWebExtension))
|
|||
|
-#define GOA_IS_WEB_EXTENSION(obj) (G_TYPE_CHECK_INSTANCE_TYPE ((obj), GOA_TYPE_WEB_EXTENSION))
|
|||
|
-
|
|||
|
-typedef struct _GoaWebExtension GoaWebExtension;
|
|||
|
-typedef struct _GoaWebExtensionClass GoaWebExtensionClass;
|
|||
|
-
|
|||
|
-GType goa_web_extension_get_type (void);
|
|||
|
-GoaWebExtension *goa_web_extension_new (WebKitWebExtension *wk_extension,
|
|||
|
- const gchar *provider_type,
|
|||
|
- const gchar *existing_identity);
|
|||
|
-
|
|||
|
-G_END_DECLS
|
|||
|
-
|
|||
|
-#endif /* __GOA_WEB_EXTENSION_H__ */
|
|||
|
diff --git a/src/goabackend/goawebextensionmain.c b/src/goabackend/goawebextensionmain.c
|
|||
|
deleted file mode 100644
|
|||
|
index 4fc91e5..0000000
|
|||
|
--- a/src/goabackend/goawebextensionmain.c
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,53 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*- */
|
|||
|
-/*
|
|||
|
- * Copyright © 2015 Damián Nohales
|
|||
|
- * Copyright © 2015 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#include "config.h"
|
|||
|
-
|
|||
|
-#include <gmodule.h>
|
|||
|
-#include <webkit2/webkit-web-extension.h>
|
|||
|
-
|
|||
|
-#include "goawebextension.h"
|
|||
|
-
|
|||
|
-static GoaWebExtension *the_extension;
|
|||
|
-
|
|||
|
-/* Silence -Wmissing-prototypes */
|
|||
|
-void webkit_web_extension_initialize (WebKitWebExtension *wk_extension);
|
|||
|
-void webkit_web_extension_initialize_with_user_data (WebKitWebExtension *wk_extension, GVariant *user_data);
|
|||
|
-
|
|||
|
-G_MODULE_EXPORT void
|
|||
|
-webkit_web_extension_initialize (WebKitWebExtension *wk_extension)
|
|||
|
-{
|
|||
|
- g_warning ("Error initializing web extension: user data not set");
|
|||
|
-}
|
|||
|
-
|
|||
|
-G_MODULE_EXPORT void
|
|||
|
-webkit_web_extension_initialize_with_user_data (WebKitWebExtension *wk_extension, GVariant *user_data)
|
|||
|
-{
|
|||
|
- const gchar *existing_identity;
|
|||
|
- const gchar *provider_type;
|
|||
|
-
|
|||
|
- g_variant_get (user_data, "(&s&s)", &provider_type, &existing_identity);
|
|||
|
- the_extension = goa_web_extension_new (wk_extension, provider_type, existing_identity);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void __attribute__((destructor))
|
|||
|
-goa_web_extension_shutdown (void)
|
|||
|
-{
|
|||
|
- g_clear_object (&the_extension);
|
|||
|
-}
|
|||
|
diff --git a/src/goabackend/goawebview.c b/src/goabackend/goawebview.c
|
|||
|
deleted file mode 100644
|
|||
|
index b7af122..0000000
|
|||
|
--- a/src/goabackend/goawebview.c
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,501 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*-
|
|||
|
- *
|
|||
|
- * Copyright © 2015 Damián Nohales
|
|||
|
- * Copyright © 2012 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-/* Based on code by the Epiphany team.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#include "config.h"
|
|||
|
-
|
|||
|
-#include <glib.h>
|
|||
|
-#include <glib/gi18n-lib.h>
|
|||
|
-#include <JavaScriptCore/JavaScript.h>
|
|||
|
-#include <libsoup/soup.h>
|
|||
|
-#include <webkit2/webkit2.h>
|
|||
|
-
|
|||
|
-#include "goawebview.h"
|
|||
|
-#include "nautilus-floating-bar.h"
|
|||
|
-
|
|||
|
-struct _GoaWebView
|
|||
|
-{
|
|||
|
- GtkOverlay parent_instance;
|
|||
|
- GoaProvider *provider;
|
|||
|
- GtkWidget *floating_bar;
|
|||
|
- GtkWidget *progress_bar;
|
|||
|
- GtkWidget *web_view;
|
|||
|
- WebKitUserContentManager *user_content_manager;
|
|||
|
- WebKitWebContext *context;
|
|||
|
- gchar *existing_identity;
|
|||
|
- gulong clear_notify_progress_id;
|
|||
|
- gulong notify_load_status_id;
|
|||
|
- gulong notify_progress_id;
|
|||
|
-};
|
|||
|
-
|
|||
|
-struct _GoaWebViewClass
|
|||
|
-{
|
|||
|
- GtkOverlayClass parent_class;
|
|||
|
-};
|
|||
|
-
|
|||
|
-enum
|
|||
|
-{
|
|||
|
- PROP_0,
|
|||
|
- PROP_EXISTING_IDENTITY,
|
|||
|
- PROP_PROVIDER
|
|||
|
-};
|
|||
|
-
|
|||
|
-enum
|
|||
|
-{
|
|||
|
- DENY_CLICK,
|
|||
|
- PASSWORD_SUBMIT,
|
|||
|
- LAST_SIGNAL
|
|||
|
-};
|
|||
|
-
|
|||
|
-static guint signals[LAST_SIGNAL] = { 0 };
|
|||
|
-
|
|||
|
-G_DEFINE_TYPE (GoaWebView, goa_web_view, GTK_TYPE_OVERLAY)
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-web_view_clear_notify_progress_cb (gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (user_data);
|
|||
|
-
|
|||
|
- gtk_widget_hide (self->progress_bar);
|
|||
|
- self->clear_notify_progress_id = 0;
|
|||
|
- return FALSE;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static char *
|
|||
|
-web_view_create_loading_title (const gchar *url)
|
|||
|
-{
|
|||
|
- SoupURI *uri;
|
|||
|
- const gchar *hostname;
|
|||
|
- gchar *title;
|
|||
|
-
|
|||
|
- g_return_val_if_fail (url != NULL && url[0] != '\0', NULL);
|
|||
|
-
|
|||
|
- uri = soup_uri_new (url);
|
|||
|
- hostname = soup_uri_get_host (uri);
|
|||
|
- /* translators: %s here is the address of the web page */
|
|||
|
- title = g_strdup_printf (_("Loading “%s”…"), hostname);
|
|||
|
- soup_uri_free (uri);
|
|||
|
-
|
|||
|
- return title;
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_view_floating_bar_update (GoaWebView *self, const gchar *text)
|
|||
|
-{
|
|||
|
- nautilus_floating_bar_set_label (NAUTILUS_FLOATING_BAR (self->floating_bar), text);
|
|||
|
-
|
|||
|
- if (text == NULL || text[0] == '\0')
|
|||
|
- {
|
|||
|
- gtk_widget_hide (self->floating_bar);
|
|||
|
- gtk_widget_set_halign (self->floating_bar, GTK_ALIGN_START);
|
|||
|
- }
|
|||
|
- else
|
|||
|
- gtk_widget_show (self->floating_bar);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_view_initialize_web_extensions_cb (GoaWebView *self)
|
|||
|
-{
|
|||
|
- GVariant *data;
|
|||
|
- const gchar *existing_identity;
|
|||
|
- const gchar *provider_type;
|
|||
|
-
|
|||
|
- webkit_web_context_set_web_extensions_directory (self->context, PACKAGE_WEB_EXTENSIONS_DIR);
|
|||
|
-
|
|||
|
- if (self->provider == NULL)
|
|||
|
- return;
|
|||
|
-
|
|||
|
- provider_type = goa_provider_get_provider_type (self->provider);
|
|||
|
- existing_identity = (self->existing_identity == NULL) ? "" : self->existing_identity;
|
|||
|
- data = g_variant_new ("(ss)", provider_type, existing_identity);
|
|||
|
- webkit_web_context_set_web_extensions_initialization_user_data (self->context, data);
|
|||
|
-}
|
|||
|
-
|
|||
|
-#ifdef GOA_INSPECTOR_ENABLED
|
|||
|
-static void
|
|||
|
-web_view_inspector_closed_cb (WebKitWebInspector *inspector)
|
|||
|
-{
|
|||
|
- GtkWidget *window;
|
|||
|
- WebKitWebViewBase *inspector_web_view;
|
|||
|
-
|
|||
|
- inspector_web_view = webkit_web_inspector_get_web_view (inspector);
|
|||
|
- window = gtk_widget_get_toplevel (GTK_WIDGET (inspector_web_view));
|
|||
|
- if (gtk_widget_is_toplevel (window))
|
|||
|
- gtk_widget_destroy (window);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static gboolean
|
|||
|
-web_view_inspector_open_window_cb (WebKitWebInspector *inspector)
|
|||
|
-{
|
|||
|
- GtkWidget *window;
|
|||
|
- GtkWindowGroup *group;
|
|||
|
- WebKitWebViewBase *inspector_web_view;
|
|||
|
-
|
|||
|
- group = gtk_window_group_new ();
|
|||
|
-
|
|||
|
- window = gtk_window_new (GTK_WINDOW_TOPLEVEL);
|
|||
|
- gtk_window_resize (GTK_WINDOW (window), 800, 600);
|
|||
|
- gtk_window_group_add_window (group, GTK_WINDOW (window));
|
|||
|
- g_object_unref (group);
|
|||
|
-
|
|||
|
- inspector_web_view = webkit_web_inspector_get_web_view (inspector);
|
|||
|
- gtk_container_add (GTK_CONTAINER (window), GTK_WIDGET (inspector_web_view));
|
|||
|
-
|
|||
|
- gtk_widget_show_all (window);
|
|||
|
- gtk_window_present (GTK_WINDOW (window));
|
|||
|
-
|
|||
|
- return GDK_EVENT_STOP;
|
|||
|
-}
|
|||
|
-#endif /* GOA_INSPECTOR_ENABLED */
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_view_load_changed_cb (WebKitWebView *web_view,
|
|||
|
- WebKitLoadEvent load_event,
|
|||
|
- gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (user_data);
|
|||
|
-
|
|||
|
- switch (load_event)
|
|||
|
- {
|
|||
|
- case WEBKIT_LOAD_STARTED:
|
|||
|
- case WEBKIT_LOAD_COMMITTED:
|
|||
|
- {
|
|||
|
- const gchar *uri;
|
|||
|
- gchar *title;
|
|||
|
-
|
|||
|
- uri = webkit_web_view_get_uri (web_view);
|
|||
|
- title = web_view_create_loading_title (uri);
|
|||
|
-
|
|||
|
- web_view_floating_bar_update (self, title);
|
|||
|
- g_free (title);
|
|||
|
- break;
|
|||
|
- }
|
|||
|
-
|
|||
|
- case WEBKIT_LOAD_REDIRECTED:
|
|||
|
- /* TODO: Update the loading uri */
|
|||
|
- break;
|
|||
|
-
|
|||
|
- case WEBKIT_LOAD_FINISHED:
|
|||
|
- web_view_floating_bar_update (self, NULL);
|
|||
|
- break;
|
|||
|
-
|
|||
|
- default:
|
|||
|
- break;
|
|||
|
- }
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_view_notify_estimated_load_progress_cb (GObject *object,
|
|||
|
- GParamSpec *pspec,
|
|||
|
- gpointer user_data)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (user_data);
|
|||
|
- WebKitWebView *web_view = WEBKIT_WEB_VIEW (object);
|
|||
|
- gboolean loading;
|
|||
|
- const gchar *uri;
|
|||
|
- gdouble progress;
|
|||
|
-
|
|||
|
- if (self->clear_notify_progress_id != 0)
|
|||
|
- {
|
|||
|
- g_source_remove (self->clear_notify_progress_id);
|
|||
|
- self->clear_notify_progress_id = 0;
|
|||
|
- }
|
|||
|
-
|
|||
|
- uri = webkit_web_view_get_uri (web_view);
|
|||
|
- if (!uri || g_str_equal (uri, "about:blank"))
|
|||
|
- return;
|
|||
|
-
|
|||
|
- progress = webkit_web_view_get_estimated_load_progress (web_view);
|
|||
|
- loading = webkit_web_view_is_loading (web_view);
|
|||
|
-
|
|||
|
- if (progress == 1.0 || !loading)
|
|||
|
- self->clear_notify_progress_id = g_timeout_add (500, web_view_clear_notify_progress_cb, self);
|
|||
|
- else
|
|||
|
- gtk_widget_show (self->progress_bar);
|
|||
|
-
|
|||
|
- gtk_progress_bar_set_fraction (GTK_PROGRESS_BAR (self->progress_bar),
|
|||
|
- (loading || progress == 1.0) ? progress : 0.0);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_view_script_message_received_deny_click_cb (GoaWebView *self)
|
|||
|
-{
|
|||
|
- g_signal_emit (self, signals[DENY_CLICK], 0);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-web_view_script_message_received_password_submit_cb (GoaWebView *self, WebKitJavascriptResult *js_result)
|
|||
|
-{
|
|||
|
- JSGlobalContextRef js_context;
|
|||
|
- JSStringRef js_string;
|
|||
|
- JSValueRef js_value;
|
|||
|
- gsize max_size;
|
|||
|
-
|
|||
|
- js_value = webkit_javascript_result_get_value (js_result);
|
|||
|
- js_context = webkit_javascript_result_get_global_context (js_result);
|
|||
|
- js_string = JSValueToStringCopy (js_context, js_value, NULL);
|
|||
|
- max_size = JSStringGetMaximumUTF8CStringSize (js_string);
|
|||
|
- if (max_size > 0)
|
|||
|
- {
|
|||
|
- gchar *password;
|
|||
|
-
|
|||
|
- password = g_malloc0 (max_size);
|
|||
|
- JSStringGetUTF8CString (js_string, password, max_size);
|
|||
|
- g_signal_emit (self, signals[PASSWORD_SUBMIT], 0, password);
|
|||
|
- g_free (password);
|
|||
|
- }
|
|||
|
-
|
|||
|
- JSStringRelease (js_string);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_view_constructed (GObject *object)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (object);
|
|||
|
- const gchar *const *language_names;
|
|||
|
-
|
|||
|
- G_OBJECT_CLASS (goa_web_view_parent_class)->constructed (object);
|
|||
|
-
|
|||
|
- self->context = webkit_web_context_new ();
|
|||
|
- language_names = g_get_language_names ();
|
|||
|
- webkit_web_context_set_preferred_languages (self->context, language_names);
|
|||
|
- g_signal_connect_swapped (self->context,
|
|||
|
- "initialize-web-extensions",
|
|||
|
- G_CALLBACK (web_view_initialize_web_extensions_cb),
|
|||
|
- self);
|
|||
|
-
|
|||
|
- self->user_content_manager = webkit_user_content_manager_new ();
|
|||
|
- g_signal_connect_swapped (self->user_content_manager,
|
|||
|
- "script-message-received::deny-click",
|
|||
|
- G_CALLBACK (web_view_script_message_received_deny_click_cb),
|
|||
|
- self);
|
|||
|
- g_signal_connect_swapped (self->user_content_manager,
|
|||
|
- "script-message-received::password-submit",
|
|||
|
- G_CALLBACK (web_view_script_message_received_password_submit_cb),
|
|||
|
- self);
|
|||
|
- webkit_user_content_manager_register_script_message_handler (self->user_content_manager, "deny-click");
|
|||
|
- webkit_user_content_manager_register_script_message_handler (self->user_content_manager, "password-submit");
|
|||
|
-
|
|||
|
- self->web_view = GTK_WIDGET (g_object_new (WEBKIT_TYPE_WEB_VIEW,
|
|||
|
- "user-content-manager", self->user_content_manager,
|
|||
|
- "web-context", self->context,
|
|||
|
- NULL));
|
|||
|
- gtk_widget_set_size_request (self->web_view, 500, 400);
|
|||
|
- gtk_container_add (GTK_CONTAINER (self), self->web_view);
|
|||
|
-
|
|||
|
-#ifdef GOA_INSPECTOR_ENABLED
|
|||
|
- {
|
|||
|
- WebKitSettings *settings;
|
|||
|
- WebKitWebInspector *inspector;
|
|||
|
-
|
|||
|
- /* Setup the inspector */
|
|||
|
- settings = webkit_web_view_get_settings (WEBKIT_WEB_VIEW (self->web_view));
|
|||
|
- g_object_set (settings, "enable-developer-extras", TRUE, NULL);
|
|||
|
-
|
|||
|
- inspector = webkit_web_view_get_inspector (WEBKIT_WEB_VIEW (self->web_view));
|
|||
|
- g_signal_connect (inspector, "closed", G_CALLBACK (web_view_inspector_closed_cb), NULL);
|
|||
|
- g_signal_connect (inspector, "open-window", G_CALLBACK (web_view_inspector_open_window_cb), NULL);
|
|||
|
- }
|
|||
|
-#endif /* GOA_INSPECTOR_ENABLED */
|
|||
|
-
|
|||
|
- /* statusbar is hidden by default */
|
|||
|
- self->floating_bar = nautilus_floating_bar_new (NULL, FALSE);
|
|||
|
- gtk_widget_set_halign (self->floating_bar, GTK_ALIGN_START);
|
|||
|
- gtk_widget_set_valign (self->floating_bar, GTK_ALIGN_END);
|
|||
|
- gtk_widget_set_no_show_all (self->floating_bar, TRUE);
|
|||
|
- gtk_overlay_add_overlay (GTK_OVERLAY (self), self->floating_bar);
|
|||
|
-
|
|||
|
- self->progress_bar = gtk_progress_bar_new ();
|
|||
|
- gtk_style_context_add_class (gtk_widget_get_style_context (self->progress_bar),
|
|||
|
- GTK_STYLE_CLASS_OSD);
|
|||
|
- gtk_widget_set_halign (self->progress_bar, GTK_ALIGN_FILL);
|
|||
|
- gtk_widget_set_valign (self->progress_bar, GTK_ALIGN_START);
|
|||
|
- gtk_overlay_add_overlay (GTK_OVERLAY (self), self->progress_bar);
|
|||
|
-
|
|||
|
- self->notify_progress_id = g_signal_connect (self->web_view,
|
|||
|
- "notify::estimated-load-progress",
|
|||
|
- G_CALLBACK (web_view_notify_estimated_load_progress_cb),
|
|||
|
- self);
|
|||
|
- self->notify_load_status_id = g_signal_connect (self->web_view,
|
|||
|
- "load_changed",
|
|||
|
- G_CALLBACK (web_view_load_changed_cb),
|
|||
|
- self);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_view_dispose (GObject *object)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (object);
|
|||
|
-
|
|||
|
- g_clear_object (&self->user_content_manager);
|
|||
|
- g_clear_object (&self->context);
|
|||
|
-
|
|||
|
- if (self->clear_notify_progress_id != 0)
|
|||
|
- {
|
|||
|
- g_source_remove (self->clear_notify_progress_id);
|
|||
|
- self->clear_notify_progress_id = 0;
|
|||
|
- }
|
|||
|
-
|
|||
|
- if (self->notify_load_status_id != 0)
|
|||
|
- {
|
|||
|
- g_signal_handler_disconnect (self->web_view, self->notify_load_status_id);
|
|||
|
- self->notify_load_status_id = 0;
|
|||
|
- }
|
|||
|
-
|
|||
|
- if (self->notify_progress_id != 0)
|
|||
|
- {
|
|||
|
- g_signal_handler_disconnect (self->web_view, self->notify_progress_id);
|
|||
|
- self->notify_progress_id = 0;
|
|||
|
- }
|
|||
|
-
|
|||
|
- G_OBJECT_CLASS (goa_web_view_parent_class)->dispose (object);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_view_finalize (GObject *object)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (object);
|
|||
|
-
|
|||
|
- g_free (self->existing_identity);
|
|||
|
-
|
|||
|
- if (self->provider != NULL)
|
|||
|
- g_object_remove_weak_pointer (G_OBJECT (self->provider), (gpointer *) &self->provider);
|
|||
|
-
|
|||
|
- G_OBJECT_CLASS (goa_web_view_parent_class)->finalize (object);
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_view_set_property (GObject *object, guint prop_id, const GValue *value, GParamSpec *pspec)
|
|||
|
-{
|
|||
|
- GoaWebView *self = GOA_WEB_VIEW (object);
|
|||
|
-
|
|||
|
- switch (prop_id)
|
|||
|
- {
|
|||
|
- case PROP_EXISTING_IDENTITY:
|
|||
|
- self->existing_identity = g_value_dup_string (value);
|
|||
|
- break;
|
|||
|
-
|
|||
|
- case PROP_PROVIDER:
|
|||
|
- self->provider = GOA_PROVIDER (g_value_get_object (value));
|
|||
|
- if (self->provider != NULL)
|
|||
|
- g_object_add_weak_pointer (G_OBJECT (self->provider), (gpointer *) &self->provider);
|
|||
|
- break;
|
|||
|
-
|
|||
|
- default:
|
|||
|
- G_OBJECT_WARN_INVALID_PROPERTY_ID (object, prop_id, pspec);
|
|||
|
- break;
|
|||
|
- }
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_view_init (GoaWebView *self)
|
|||
|
-{
|
|||
|
-}
|
|||
|
-
|
|||
|
-static void
|
|||
|
-goa_web_view_class_init (GoaWebViewClass *klass)
|
|||
|
-{
|
|||
|
- GObjectClass *object_class;
|
|||
|
-
|
|||
|
- object_class = G_OBJECT_CLASS (klass);
|
|||
|
- object_class->constructed = goa_web_view_constructed;
|
|||
|
- object_class->dispose = goa_web_view_dispose;
|
|||
|
- object_class->finalize = goa_web_view_finalize;
|
|||
|
- object_class->set_property = goa_web_view_set_property;
|
|||
|
-
|
|||
|
- g_object_class_install_property (object_class,
|
|||
|
- PROP_EXISTING_IDENTITY,
|
|||
|
- g_param_spec_string ("existing-identity",
|
|||
|
- "A GoaAccount identity",
|
|||
|
- "The user name with which we want to prefill the form",
|
|||
|
- NULL,
|
|||
|
- G_PARAM_WRITABLE |
|
|||
|
- G_PARAM_CONSTRUCT_ONLY |
|
|||
|
- G_PARAM_STATIC_STRINGS));
|
|||
|
-
|
|||
|
- g_object_class_install_property (object_class,
|
|||
|
- PROP_PROVIDER,
|
|||
|
- g_param_spec_object ("provider",
|
|||
|
- "A GoaProvider",
|
|||
|
- "The provider that is represented by this view",
|
|||
|
- GOA_TYPE_PROVIDER,
|
|||
|
- G_PARAM_WRITABLE |
|
|||
|
- G_PARAM_CONSTRUCT_ONLY |
|
|||
|
- G_PARAM_STATIC_STRINGS));
|
|||
|
-
|
|||
|
- signals[DENY_CLICK] = g_signal_new ("deny-click",
|
|||
|
- G_TYPE_FROM_CLASS (klass),
|
|||
|
- G_SIGNAL_RUN_LAST,
|
|||
|
- 0,
|
|||
|
- NULL,
|
|||
|
- NULL,
|
|||
|
- g_cclosure_marshal_VOID__VOID,
|
|||
|
- G_TYPE_NONE,
|
|||
|
- 0);
|
|||
|
-
|
|||
|
- signals[PASSWORD_SUBMIT] = g_signal_new ("password-submit",
|
|||
|
- G_TYPE_FROM_CLASS (klass),
|
|||
|
- G_SIGNAL_RUN_LAST,
|
|||
|
- 0,
|
|||
|
- NULL,
|
|||
|
- NULL,
|
|||
|
- g_cclosure_marshal_VOID__STRING,
|
|||
|
- G_TYPE_NONE,
|
|||
|
- 1,
|
|||
|
- G_TYPE_STRING);
|
|||
|
-}
|
|||
|
-
|
|||
|
-GtkWidget *
|
|||
|
-goa_web_view_new (GoaProvider *provider, const gchar *existing_identity)
|
|||
|
-{
|
|||
|
- return g_object_new (GOA_TYPE_WEB_VIEW, "provider", provider, "existing-identity", existing_identity, NULL);
|
|||
|
-}
|
|||
|
-
|
|||
|
-GtkWidget *
|
|||
|
-goa_web_view_get_view (GoaWebView *self)
|
|||
|
-{
|
|||
|
- return self->web_view;
|
|||
|
-}
|
|||
|
-
|
|||
|
-void
|
|||
|
-goa_web_view_fake_mobile (GoaWebView *self)
|
|||
|
-{
|
|||
|
- WebKitSettings *settings;
|
|||
|
-
|
|||
|
- settings = webkit_web_view_get_settings (WEBKIT_WEB_VIEW (self->web_view));
|
|||
|
-
|
|||
|
- /* This is based on the HTC Wildfire's user agent. Some
|
|||
|
- * providers, like Google, refuse to provide the mobile
|
|||
|
- * version of their authentication pages otherwise. eg.,
|
|||
|
- * in Google's case, passing btmpl=mobile does not help.
|
|||
|
- *
|
|||
|
- * The actual user agent used by a HTC Wildfire is:
|
|||
|
- * Mozilla/5.0 (Linux; U; Android 2.2.1; en-us; HTC Wildfire
|
|||
|
- * Build/FRG83D) AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0
|
|||
|
- * Mobile Safari/533.1
|
|||
|
- *
|
|||
|
- * Also note that the user agents of some mobile browsers may
|
|||
|
- * not work. eg., Nokia N9.
|
|||
|
- */
|
|||
|
- webkit_settings_set_user_agent (settings,
|
|||
|
- "Mozilla/5.0 (GNOME; not Android) "
|
|||
|
- "AppleWebKit/533.1 (KHTML, like Gecko) Version/4.0 Mobile");
|
|||
|
-}
|
|||
|
diff --git a/src/goabackend/goawebview.h b/src/goabackend/goawebview.h
|
|||
|
deleted file mode 100644
|
|||
|
index 4b415cd..0000000
|
|||
|
--- a/src/goabackend/goawebview.h
|
|||
|
+++ /dev/null
|
|||
|
@@ -1,43 +0,0 @@
|
|||
|
-/* -*- mode: C; c-file-style: "gnu"; indent-tabs-mode: nil; -*-
|
|||
|
- *
|
|||
|
- * Copyright © 2012 – 2017 Red Hat, Inc.
|
|||
|
- *
|
|||
|
- * This library is free software; you can redistribute it and/or
|
|||
|
- * modify it under the terms of the GNU Lesser General Public
|
|||
|
- * License as published by the Free Software Foundation; either
|
|||
|
- * version 2 of the License, or (at your option) any later version.
|
|||
|
- *
|
|||
|
- * This library is distributed in the hope that it will be useful,
|
|||
|
- * but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
|
- * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
|
|||
|
- * Lesser General Public License for more details.
|
|||
|
- *
|
|||
|
- * You should have received a copy of the GNU Lesser General
|
|||
|
- * Public License along with this library; if not, see <http://www.gnu.org/licenses/>.
|
|||
|
- */
|
|||
|
-
|
|||
|
-#ifndef __GOA_WEB_VIEW_H__
|
|||
|
-#define __GOA_WEB_VIEW_H__
|
|||
|
-
|
|||
|
-#include <gtk/gtk.h>
|
|||
|
-
|
|||
|
-#include "goaprovider.h"
|
|||
|
-
|
|||
|
-G_BEGIN_DECLS
|
|||
|
-
|
|||
|
-#define GOA_TYPE_WEB_VIEW (goa_web_view_get_type ())
|
|||
|
-#define GOA_WEB_VIEW(object) (G_TYPE_CHECK_INSTANCE_CAST ((object), GOA_TYPE_WEB_VIEW, GoaWebView))
|
|||
|
-#define GOA_IS_WEB_VIEW(object) (G_TYPE_CHECK_INSTANCE_TYPE ((object), GOA_TYPE_WEB_VIEW))
|
|||
|
-
|
|||
|
-typedef struct _GoaWebView GoaWebView;
|
|||
|
-typedef struct _GoaWebViewClass GoaWebViewClass;
|
|||
|
-
|
|||
|
-GType goa_web_view_get_type (void) G_GNUC_CONST;
|
|||
|
-GtkWidget *goa_web_view_new (GoaProvider *provider,
|
|||
|
- const gchar *existing_identity);
|
|||
|
-GtkWidget *goa_web_view_get_view (GoaWebView *self);
|
|||
|
-void goa_web_view_fake_mobile (GoaWebView *self);
|
|||
|
-
|
|||
|
-G_END_DECLS
|
|||
|
-
|
|||
|
-#endif /* __GOA_WEB_VIEW_H__ */
|
|||
|
diff --git a/src/goabackend/goawindowsliveprovider.c b/src/goabackend/goawindowsliveprovider.c
|
|||
|
index 10c2dcf..2135fbd 100644
|
|||
|
--- a/src/goabackend/goawindowsliveprovider.c
|
|||
|
+++ b/src/goabackend/goawindowsliveprovider.c
|
|||
|
@@ -94,7 +94,8 @@ get_token_uri (GoaOAuth2Provider *oauth2_provider)
|
|||
|
static const gchar *
|
|||
|
get_redirect_uri (GoaOAuth2Provider *oauth2_provider)
|
|||
|
{
|
|||
|
- return "https://login.live.com/oauth20_desktop.srf";
|
|||
|
+ /* See: https://learn.microsoft.com/en-us/entra/identity-platform/reply-url */
|
|||
|
+ return "goa-oauth2://localhost/"GOA_WINDOWS_LIVE_CLIENT_ID;
|
|||
|
}
|
|||
|
|
|||
|
static const gchar *
|
|||
|
@@ -234,36 +235,6 @@ get_identity_sync (GoaOAuth2Provider *oauth2_provider,
|
|||
|
|
|||
|
/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
|
|||
|
-static gboolean
|
|||
|
-is_identity_node (GoaOAuth2Provider *oauth2_provider, WebKitDOMHTMLInputElement *element)
|
|||
|
-{
|
|||
|
- gboolean ret = FALSE;
|
|||
|
- gchar *element_type = NULL;
|
|||
|
- gchar *name = NULL;
|
|||
|
-
|
|||
|
- /* FIXME: This does not show up in
|
|||
|
- * webkit_dom_document_get_elements_by_tag_name, but can be
|
|||
|
- * seen in the inspector. Needs further investigation.
|
|||
|
- */
|
|||
|
-
|
|||
|
- g_object_get (element, "type", &element_type, NULL);
|
|||
|
- if (g_strcmp0 (element_type, "email") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- name = webkit_dom_html_input_element_get_name (element);
|
|||
|
- if (g_strcmp0 (name, "login") != 0)
|
|||
|
- goto out;
|
|||
|
-
|
|||
|
- ret = TRUE;
|
|||
|
-
|
|||
|
- out:
|
|||
|
- g_free (element_type);
|
|||
|
- g_free (name);
|
|||
|
- return ret;
|
|||
|
-}
|
|||
|
-
|
|||
|
-/* ---------------------------------------------------------------------------------------------------- */
|
|||
|
-
|
|||
|
static gboolean
|
|||
|
build_object (GoaProvider *provider,
|
|||
|
GoaObjectSkeleton *object,
|
|||
|
@@ -390,6 +361,5 @@ goa_windows_live_provider_class_init (GoaWindowsLiveProviderClass *klass)
|
|||
|
oauth2_class->get_client_id = get_client_id;
|
|||
|
oauth2_class->get_client_secret = get_client_secret;
|
|||
|
oauth2_class->get_identity_sync = get_identity_sync;
|
|||
|
- oauth2_class->is_identity_node = is_identity_node;
|
|||
|
oauth2_class->add_account_key_values = add_account_key_values;
|
|||
|
}
|