2016-10-17 07:05:18 -04:00
|
|
|
! Copyright (C) 2016 Björn Lindqvist.
|
|
|
|
|
! See http://factorcode.org/license.txt for BSD license.
|
2016-10-18 05:09:59 -04:00
|
|
|
USING: accessors assocs calendar combinators http.client io
|
2017-01-22 17:44:33 -05:00
|
|
|
json.reader kernel make math.order sequences unicode urls
|
|
|
|
|
webbrowser ;
|
2016-10-17 07:05:18 -04:00
|
|
|
IN: oauth2
|
|
|
|
|
|
2016-10-18 05:09:59 -04:00
|
|
|
: console-prompt ( query -- str/f )
|
|
|
|
|
write flush readln [ blank? ] trim
|
|
|
|
|
dup "" = [ drop f ] [ ] if ;
|
|
|
|
|
|
|
|
|
|
: post-json-request ( params token-uri -- assoc )
|
|
|
|
|
<post-request> dup header>> "application/json" "Accept" rot set-at
|
|
|
|
|
http-request nip json> ;
|
|
|
|
|
|
|
|
|
|
TUPLE: tokens access refresh expiry ;
|
|
|
|
|
|
|
|
|
|
: assoc>expiry ( json -- expiry )
|
|
|
|
|
"expires_in" of [ seconds now time+ ] [ f ] if* ;
|
|
|
|
|
|
|
|
|
|
: assoc>tokens ( json -- tokens )
|
|
|
|
|
[ "access_token" of ]
|
|
|
|
|
[ "refresh_token" of ]
|
|
|
|
|
[ assoc>expiry ] tri tokens boa ;
|
|
|
|
|
|
|
|
|
|
: access-expired? ( tokens -- ? )
|
|
|
|
|
expiry>> [ now before? ] [ f ] if* ;
|
|
|
|
|
|
|
|
|
|
: update-tokens ( tokens1 tokens2 -- tokens1 )
|
|
|
|
|
2dup expiry>> >>expiry drop access>> >>access ;
|
|
|
|
|
|
2016-10-17 07:05:18 -04:00
|
|
|
TUPLE: oauth2
|
|
|
|
|
auth-uri
|
|
|
|
|
token-uri
|
|
|
|
|
redirect-uri
|
|
|
|
|
client-id
|
|
|
|
|
client-secret
|
|
|
|
|
scope
|
|
|
|
|
extra-params ;
|
|
|
|
|
|
2016-10-18 05:09:59 -04:00
|
|
|
: tokens-params ( oauth2 code -- params )
|
|
|
|
|
[
|
|
|
|
|
"code" ,,
|
|
|
|
|
{
|
|
|
|
|
[ client-id>> "client_id" ,, ]
|
|
|
|
|
[ client-secret>> "client_secret" ,, ]
|
|
|
|
|
[ redirect-uri>> "redirect_uri" ,, ]
|
|
|
|
|
[ extra-params>> %% ]
|
|
|
|
|
} cleave
|
|
|
|
|
"authorization_code" "grant_type" ,,
|
|
|
|
|
] { } make ;
|
2016-10-17 07:05:18 -04:00
|
|
|
|
2016-10-18 05:09:59 -04:00
|
|
|
: refresh-params ( oauth2 refresh -- params )
|
2016-10-17 07:05:18 -04:00
|
|
|
[
|
2016-10-18 05:09:59 -04:00
|
|
|
"refresh_token" ,,
|
|
|
|
|
[ client-id>> "client_id" ,, ]
|
|
|
|
|
[ client-secret>> "client_secret" ,, ]
|
|
|
|
|
[ extra-params>> %% ] tri
|
|
|
|
|
"refresh_token" "grant_type" ,,
|
|
|
|
|
] { } make ;
|
2016-10-17 07:05:18 -04:00
|
|
|
|
|
|
|
|
: auth-params ( oauth2 -- params )
|
|
|
|
|
[
|
2016-10-18 05:09:59 -04:00
|
|
|
{
|
|
|
|
|
[ client-id>> "client_id" ,, ]
|
|
|
|
|
[ scope>> "scope" ,, ]
|
|
|
|
|
[ redirect-uri>> "redirect_uri" ,, ]
|
|
|
|
|
[ extra-params>> %% ]
|
|
|
|
|
} cleave
|
|
|
|
|
"code" "response_type" ,,
|
|
|
|
|
"offline" "access_type" ,,
|
|
|
|
|
] { } make ;
|
2016-10-17 07:05:18 -04:00
|
|
|
|
|
|
|
|
: oauth2>auth-uri ( oauth2 -- uri )
|
2017-01-22 17:44:33 -05:00
|
|
|
[ auth-uri>> >url ] [ auth-params ] bi set-query-params ;
|
2016-10-17 07:05:18 -04:00
|
|
|
|
|
|
|
|
! Other flows can be useful to support too.
|
2016-10-18 05:09:59 -04:00
|
|
|
: console-flow ( oauth2 -- tokens/f )
|
|
|
|
|
dup oauth2>auth-uri open-url
|
|
|
|
|
"Enter verification code: " console-prompt
|
|
|
|
|
[
|
|
|
|
|
dupd tokens-params swap token-uri>> post-json-request
|
|
|
|
|
assoc>tokens
|
|
|
|
|
] [ drop f ] if* ;
|
|
|
|
|
|
|
|
|
|
: refresh-flow ( oauth2 tokens -- tokens' )
|
|
|
|
|
dupd refresh>> refresh-params swap token-uri>> post-json-request
|
|
|
|
|
assoc>tokens ;
|
2016-10-17 07:05:18 -04:00
|
|
|
|
|
|
|
|
! Using the token to access secured resources.
|
|
|
|
|
: add-token ( request url -- )
|
|
|
|
|
"Bearer " prepend "Authorization" rot header>> set-at ;
|
|
|
|
|
|
2016-10-18 05:09:59 -04:00
|
|
|
: oauth-http-get ( url access-token -- response data )
|
2016-10-17 07:05:18 -04:00
|
|
|
[ <get-request> dup ] dip add-token http-request ;
|
