platform/packages/auth_twitter/lib/angel_auth_twitter.dart

148 lines
4.9 KiB
Dart
Raw Permalink Normal View History

2016-12-23 02:07:47 +00:00
import 'dart:async';
2019-04-11 14:28:51 +00:00
import 'dart:convert';
2016-12-23 02:07:47 +00:00
import 'package:angel_auth/angel_auth.dart';
import 'package:angel_framework/angel_framework.dart';
2019-03-02 00:03:48 +00:00
import 'package:http/http.dart' as http;
2019-03-23 04:22:20 +00:00
import 'package:oauth/oauth.dart' as oauth;
2019-03-02 00:03:48 +00:00
import 'package:path/path.dart' as p;
import 'package:twitter/twitter.dart';
2016-12-23 02:07:47 +00:00
2019-03-23 04:22:20 +00:00
/// Authenticates users by connecting to Twitter's API.
2019-03-02 00:03:48 +00:00
class TwitterStrategy<User> extends AuthStrategy<User> {
/// The options defining how to connect to the third-party.
final ExternalAuthOptions options;
2016-12-23 02:07:47 +00:00
2019-03-02 00:03:48 +00:00
/// A callback that uses Twitter to authenticate a [User].
///
/// As always, return `null` if authentication fails.
final FutureOr<User> Function(Twitter, RequestContext, ResponseContext)
verifier;
2016-12-23 02:07:47 +00:00
2019-04-11 14:28:51 +00:00
/// A callback that is triggered when an OAuth2 error occurs (i.e. the user declines to login);
final FutureOr<dynamic> Function(
TwitterAuthorizationException, RequestContext, ResponseContext) onError;
2019-03-02 00:03:48 +00:00
/// The root of Twitter's API. Defaults to `'https://api.twitter.com'`.
final Uri baseUrl;
2016-12-23 02:07:47 +00:00
2019-03-23 04:22:20 +00:00
oauth.Client _client;
2016-12-23 02:07:47 +00:00
2019-03-23 04:22:20 +00:00
/// The underlying [oauth.Client] used to query Twitter.
oauth.Client get client => _client;
2016-12-23 02:07:47 +00:00
2019-04-11 14:28:51 +00:00
TwitterStrategy(this.options, this.verifier, this.onError,
2019-03-23 04:22:20 +00:00
{http.BaseClient client, Uri baseUrl})
2021-06-20 13:29:23 +00:00
: baseUrl = baseUrl ?? Uri.parse('https://api.twitter.com') {
2019-03-23 04:22:20 +00:00
var tokens = oauth.Tokens(
consumerId: options.clientId, consumerKey: options.clientSecret);
_client = oauth.Client(tokens, client: client);
2016-12-23 02:07:47 +00:00
}
2019-03-23 04:22:20 +00:00
/// Handle a response from Twitter.
Future<Map<String, String>> handleUrlEncodedResponse(http.Response rs) async {
2019-03-02 00:03:48 +00:00
var body = rs.body;
2016-12-23 02:07:47 +00:00
2019-03-02 00:03:48 +00:00
if (rs.statusCode != 200) {
2019-04-11 14:28:51 +00:00
var err = json.decode(rs.body) as Map;
var errors = err['errors'] as List;
if (errors.isNotEmpty) {
throw TwitterAuthorizationException(
errors[0]['message'] as String, false);
} else {
throw StateError(
'Twitter returned an error response without an error message: ${rs.body}');
}
2016-12-23 02:07:47 +00:00
}
2019-03-02 00:03:48 +00:00
return Uri.splitQueryString(body);
2016-12-23 02:07:47 +00:00
}
2019-03-23 04:22:20 +00:00
/// Get an access token.
Future<Map<String, String>> getAccessToken(String token, String verifier) {
return _client.post(
baseUrl.replace(path: p.join(baseUrl.path, 'oauth/access_token')),
2019-04-11 14:28:51 +00:00
headers: {
'accept': 'application/json'
},
2019-03-23 04:22:20 +00:00
body: {
'oauth_token': token,
'oauth_verifier': verifier
}).then(handleUrlEncodedResponse);
// var request = await createRequest("oauth/access_token",
// method: "POST", data: {"verifier": verifier}, accessToken: token);
2016-12-23 02:07:47 +00:00
}
2019-03-23 04:22:20 +00:00
/// Get a request token.
Future<Map<String, String>> getRequestToken() {
return _client.post(
baseUrl.replace(path: p.join(baseUrl.path, 'oauth/request_token')),
2019-04-11 14:28:51 +00:00
headers: {
'accept': 'application/json'
},
2019-03-23 04:22:20 +00:00
body: {
2021-06-26 13:13:43 +00:00
'oauth_callback': options.redirectUri.toString()
2019-03-23 04:22:20 +00:00
}).then(handleUrlEncodedResponse);
2016-12-23 02:07:47 +00:00
}
@override
2019-03-02 00:03:48 +00:00
Future<User> authenticate(RequestContext req, ResponseContext res,
2016-12-23 02:07:47 +00:00
[AngelAuthOptions options]) async {
2019-04-11 14:28:51 +00:00
try {
if (options != null) {
var result = await authenticateCallback(req, res, options);
2021-06-26 13:13:43 +00:00
if (result is User) {
2019-04-11 14:28:51 +00:00
return result;
2021-06-26 13:13:43 +00:00
} else {
2019-04-11 14:28:51 +00:00
return null;
2021-06-26 13:13:43 +00:00
}
2019-04-11 14:28:51 +00:00
} else {
var result = await getRequestToken();
var token = result['oauth_token'];
var url = baseUrl.replace(
path: p.join(baseUrl.path, 'oauth/authorize'),
queryParameters: {'oauth_token': token});
2021-06-26 13:13:43 +00:00
await res.redirect(url);
2019-04-11 14:28:51 +00:00
return null;
}
} on TwitterAuthorizationException catch (e) {
var result = await onError(e, req, res);
await req.app.executeHandler(result, req, res);
await res.close();
2019-03-02 00:03:48 +00:00
return null;
2016-12-23 02:07:47 +00:00
}
}
2019-04-11 14:28:51 +00:00
Future authenticateCallback(
2016-12-23 02:07:47 +00:00
RequestContext req, ResponseContext res, AngelAuthOptions options) async {
2019-04-11 14:28:51 +00:00
try {
if (req.queryParameters.containsKey('denied')) {
throw TwitterAuthorizationException(
'The user denied the Twitter authorization attempt.', true);
}
var token = req.queryParameters['oauth_token'] as String;
var verifier = req.queryParameters['oauth_verifier'] as String;
var loginData = await getAccessToken(token, verifier);
var twitter = Twitter(this.options.clientId, this.options.clientSecret,
loginData['oauth_token'], loginData['oauth_token_secret']);
return await this.verifier(twitter, req, res);
} on TwitterAuthorizationException catch (e) {
return await onError(e, req, res);
}
2016-12-23 02:07:47 +00:00
}
}
2019-04-11 14:28:51 +00:00
class TwitterAuthorizationException implements Exception {
/// The message associated with this exception.
final String message;
/// Whether the user denied the authorization attempt.
final bool isDenial;
TwitterAuthorizationException(this.message, this.isDenial);
@override
String toString() => 'TwitterAuthorizationException: $message';
}