blob: 590be3b597e0693fcb60d9a295f350623de941e3 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
|
require 'net/http'
require 'bcrypt'
class Api::V1::AuthController < ApplicationController
class << self
end
def data
if !cookies[:session].nil?
puts cookies[:session]
#render json: Api::V1::AuthController.user_table[cookies[:session]]
result = User.find_by(access_token_digest: cookies[:session])
puts "--- RESULT: ---"
puts result
render json: result
else
puts "Not logged in"
render json: { info: "Not logged in" }, status: 401
end
end
def callback
# user logs in through github
# github redirects them to this endpoint with the token in the url as query params
# we need to use this token to exchange with github for user info(i.e username)
#puts "Code: #{params[:code]}" # this is the github token
#puts ENV["GITHUB_CLIENT_SECRET"]
#puts ENV["GITHUB_CLIENT_ID"]
access_token = get_access_token(params[:code])
user_data = JSON.parse(get_github_user_data(access_token))
#puts "------------------------- USER DATA: ------------------------- "
#pp user_data
id = user_data['id'].to_s
#puts "id: #{id}, at: #{access_token}"
access_token_digest = BCrypt::Password.create(access_token)
#cookies[:session] = access_token_digest
cookies[:session] = {
value: access_token_digest,
#domain: :all,
#same_site: :none,
secure: true
}
#user_params = {
# # access_token_digest: hashed_token,
# user_data: user_data
#}
#puts "USER DATA HERE NERD"
#puts user_data.class
user = User.find_or_create_by(identifier: id)
user.user_data = user_data
user.access_token_digest = access_token_digest
user.user_name = user_data["login"]
user.save
#redirect_to 'http://localhost:5173/', allow_other_host: true
redirect_to "#{ENV['ROOT_DOMAIN']}/closewindow", allow_other_host: true
end
private
def get_github_user_data(access_token)
uri = URI("https://api.github.com/user")
headers = { Authorization: "Bearer #{access_token}" }
response = Net::HTTP.get(
uri,
headers
)
puts "Response Body"
puts response
#if response.is_a?(Net::HTTPSuccess)
#if response.body.nil?
result = response
if !result["error"].nil?
puts "Error: #{result["error"]}"
puts response
# we had an error
# TODO
else
puts "huh?" if result.nil?
return result
end
#else
# puts "Error(body nil)"
# something went wrong?
# TODO
#end
end
def get_access_token(github_user_code)
uri = URI("https://github.com/login/oauth/access_token?client_id=#{ENV["GITHUB_CLIENT_ID"]}&client_secret=#{ENV["GITHUB_CLIENT_SECRET"]}&code=#{github_user_code}")
#uri = URI('https://github.com/login/oauth/access_token')
headers = {Accept: 'application/json'}
response = Net::HTTP.post(
uri,
nil,
headers
)
if response.is_a?(Net::HTTPSuccess)
result = JSON.parse(response.body)
if !result["error"].nil?
# we had an error
else
return result["access_token"]
end
else
# something went wrong?
# TODO
end
end
end
|
