From 4d4af26d85b90cc495172f2fd31186bad500aabb Mon Sep 17 00:00:00 2001 From: "talwinder.kaur" Date: Mon, 27 Jul 2020 14:41:48 -0400 Subject: [PATCH] feat: setup UI endpoint to serve the UI closes #39 Signed-off-by: talwinder.kaur --- cmd/auth-rest/startcmd/start.go | 32 +++++++++++++++++++--- package-lock.json | 35 ++++++++++++++++++++++++ pkg/restapi/operation/operations.go | 34 ++++++++++++++++++++--- pkg/restapi/operation/operations_test.go | 24 ++++++++++++++++ 4 files changed, 117 insertions(+), 8 deletions(-) create mode 100644 package-lock.json diff --git a/cmd/auth-rest/startcmd/start.go b/cmd/auth-rest/startcmd/start.go index 2dc2eae..693e641 100644 --- a/cmd/auth-rest/startcmd/start.go +++ b/cmd/auth-rest/startcmd/start.go @@ -79,6 +79,11 @@ const ( " For CouchDB, include the username:password@ text if required." + " Alternatively, this can be set with the following environment variable: " + databaseURLEnvKey + staticFilesPathFlagName = "static-path" + staticFilesPathFlagUsage = "Path to the folder where the static files are to be hosted under " + uiEndpoint + "." + + "Alternatively, this can be set with the following environment variable: " + staticFilesPathEnvKey + staticFilesPathEnvKey = "AUTH_REST_STATIC_FILES" + databasePrefixFlagName = "database-prefix" databasePrefixEnvKey = "AUTH_REST_DATABASE_PREFIX" databasePrefixFlagShorthand = "p" @@ -129,6 +134,7 @@ const ( const ( // api + uiEndpoint = "/ui" healthCheckEndpoint = "/healthcheck" ) @@ -143,6 +149,7 @@ type authRestParameters struct { tlsParams *tlsParams oidcParams *oidcParams bootstrapParams *bootstrapParams + staticFiles string } type tlsParams struct { @@ -311,6 +318,7 @@ func createFlags(startCmd *cobra.Command) { startCmd.Flags().StringP(tlsServeCertPathFlagName, "", "", tlsServeCertPathFlagUsage) startCmd.Flags().StringP(tlsServeKeyPathFlagName, "", "", tlsServeKeyPathFlagUsage) startCmd.Flags().StringP(logLevelFlagName, logLevelFlagShorthand, "", logLevelPrefixFlagUsage) + startCmd.Flags().StringP(staticFilesPathFlagName, "", "", staticFilesPathFlagUsage) startCmd.Flags().StringP(databaseTypeFlagName, databaseTypeFlagShorthand, "", databaseTypeFlagUsage) startCmd.Flags().StringP(databaseURLFlagName, databaseURLFlagShorthand, "", databaseURLFlagUsage) startCmd.Flags().StringP(databasePrefixFlagName, databasePrefixFlagShorthand, "", databasePrefixFlagUsage) @@ -340,7 +348,6 @@ func startAuthService(parameters *authRestParameters, srv server) error { logger.Debugf("root ca's %v", rootCAs) router := mux.NewRouter() - // health check router.HandleFunc(healthCheckEndpoint, healthCheckHandler).Methods(http.MethodGet) @@ -368,12 +375,16 @@ func startAuthService(parameters *authRestParameters, srv server) error { router.HandleFunc(handler.Path(), handler.Handle()).Methods(handler.Method()) } - logger.Infof(`Starting hub-auth REST server with the following parameters: -Host URL: %s -Database type: %s + logger.Infof(`Starting hub-auth REST server with the following parameters:Host URL: %s Database type: %s Database URL: %s Database prefix: %s`, parameters.hostURL, parameters.databaseType, parameters.databaseURL, parameters.databasePrefix) + // static frontend + router.PathPrefix(uiEndpoint). + Subrouter(). + Methods(http.MethodGet). + HandlerFunc(uiHandler(parameters.staticFiles, http.ServeFile)) + return srv.ListenAndServeTLS( parameters.hostURL, parameters.tlsParams.serveCertPath, @@ -382,6 +393,19 @@ Database prefix: %s`, parameters.hostURL, parameters.databaseType, parameters.da ) } +func uiHandler( + basePath string, + fileServer func(http.ResponseWriter, *http.Request, string)) func(http.ResponseWriter, *http.Request) { + return func(w http.ResponseWriter, r *http.Request) { + if r.URL.Path == uiEndpoint { + fileServer(w, r, strings.ReplaceAll(basePath+"/index.html", "//", "/")) + return + } + + fileServer(w, r, strings.ReplaceAll(basePath+"/"+r.URL.Path[len(uiEndpoint):], "//", "/")) + } +} + func getOIDCParams(cmd *cobra.Command) (*oidcParams, error) { params := &oidcParams{} diff --git a/package-lock.json b/package-lock.json new file mode 100644 index 0000000..1f21ebc --- /dev/null +++ b/package-lock.json @@ -0,0 +1,35 @@ +{ + "requires": true, + "lockfileVersion": 1, + "dependencies": { + "axios": { + "version": "0.19.2", + "resolved": "https://registry.npmjs.org/axios/-/axios-0.19.2.tgz", + "integrity": "sha512-fjgm5MvRHLhx+osE2xoekY70AhARk3a6hkN+3Io1jc00jtquGvxYlKlsFUhmUET0V5te6CcZI7lcv2Ym61mjHA==", + "requires": { + "follow-redirects": "1.5.10" + } + }, + "debug": { + "version": "3.1.0", + "resolved": "https://registry.npmjs.org/debug/-/debug-3.1.0.tgz", + "integrity": "sha512-OX8XqP7/1a9cqkxYw2yXss15f26NKWBpDXQd0/uK/KPqdQhxbPa994hnzjcE2VqQpDslf55723cKPUOGSmMY3g==", + "requires": { + "ms": "2.0.0" + } + }, + "follow-redirects": { + "version": "1.5.10", + "resolved": "https://registry.npmjs.org/follow-redirects/-/follow-redirects-1.5.10.tgz", + "integrity": "sha512-0V5l4Cizzvqt5D44aTXbFZz+FtyXV1vrDN6qrelxtfYQKW0KO0W2T/hkE8xvGa/540LkZlkaUjO4ailYTFtHVQ==", + "requires": { + "debug": "=3.1.0" + } + }, + "ms": { + "version": "2.0.0", + "resolved": "https://registry.npmjs.org/ms/-/ms-2.0.0.tgz", + "integrity": "sha1-VgiurfwAvmwpAd9fmGF4jeDVl8g=" + } + } +} diff --git a/pkg/restapi/operation/operations.go b/pkg/restapi/operation/operations.go index 1aa1f80..7f0859e 100644 --- a/pkg/restapi/operation/operations.go +++ b/pkg/restapi/operation/operations.go @@ -13,6 +13,7 @@ import ( "errors" "fmt" "net/http" + "net/url" "github.com/coreos/go-oidc" "github.com/google/uuid" @@ -33,6 +34,9 @@ const ( transientStoreName = "hub-auth-rest-transient" bootstrapStoreName = "bootstrap-data" + + // redirect url parameter + userProfile = "up" ) var logger = log.New("hub-auth-restapi") @@ -116,6 +120,7 @@ type Operation struct { oidcClientID string oidcClientSecret string oidcCallbackURL string + uiEndpoint string oauth2ConfigFunc func(...string) oauth2Config bootstrapStore storage.Store bootstrapConfig *BootstrapConfig @@ -129,6 +134,7 @@ type Config struct { OIDCClientID string OIDCClientSecret string OIDCCallbackURL string + UIEndpoint string TransientStoreProvider storage.Provider StoreProvider storage.Provider BootstrapConfig *BootstrapConfig @@ -329,7 +335,15 @@ func (c *Operation) handleOIDCCallback(w http.ResponseWriter, r *http.Request) { return } - handleAuthResult(w, r, userProfile) + profileBytes, err := json.Marshal(userProfile) + if err != nil { + c.writeErrorResponse(w, http.StatusInternalServerError, + fmt.Sprintf("failed to marshal user profile data : %s", err)) + + return + } + + c.handleAuthResult(w, r, profileBytes) } // TODO onboard user at key server and SDS: https://github.com/trustbloc/hub-auth/issues/38 @@ -388,9 +402,21 @@ func (c *Operation) handleBootstrapDataRequest(w http.ResponseWriter, r *http.Re } } -// TODO redirect to the UI: https://github.com/trustbloc/hub-auth/issues/39 -func handleAuthResult(w http.ResponseWriter, r *http.Request, _ *user.Profile) { - http.Redirect(w, r, "", http.StatusFound) +func (c *Operation) handleAuthResult(w http.ResponseWriter, r *http.Request, profileBytes []byte) { + handle := url.QueryEscape(uuid.New().String()) + + err := c.transientStore.Put(handle, profileBytes) + if err != nil { + c.writeErrorResponse(w, + http.StatusInternalServerError, fmt.Sprintf("failed to write handle to transient store: %s", err)) + + return + } + + redirectURL := fmt.Sprintf("%s?%s=%s", c.uiEndpoint, userProfile, handle) + + http.Redirect(w, r, redirectURL, http.StatusFound) + logger.Debugf("redirected to: %s", redirectURL) } func handleAuthError(w http.ResponseWriter, status int, msg string) { diff --git a/pkg/restapi/operation/operations_test.go b/pkg/restapi/operation/operations_test.go index 5a5d63e..6f417fe 100644 --- a/pkg/restapi/operation/operations_test.go +++ b/pkg/restapi/operation/operations_test.go @@ -411,6 +411,30 @@ func TestHandleOIDCCallback(t *testing.T) { svc.handleOIDCCallback(result, newOIDCCallback(state, "code")) require.Equal(t, http.StatusInternalServerError, result.Code) }) + t.Run("PUT error while storing user info while handling callback user", func(t *testing.T) { + id := uuid.New().String() + state := uuid.New().String() + config := config(t) + + config.TransientStoreProvider = &mockstorage.Provider{ + Stores: map[string]storage.Store{ + transientStoreName: &mockstore.MockStore{ + Store: map[string][]byte{ + id: []byte("{}"), + }, + ErrGet: storage.ErrValueNotFound, + ErrPut: errors.New("generic"), + }, + }, + } + + svc, err := New(config) + require.NoError(t, err) + + result := httptest.NewRecorder() + svc.handleAuthResult(result, newOIDCCallback(state, "code"), nil) + require.Equal(t, http.StatusInternalServerError, result.Code) + }) } func TestHandleBootstrapDataRequest(t *testing.T) {