use crate::error::Result;
use crate::{
auth_server_builder, AuthAction, AuthConfig, AuthUrlProvider, AuthUser, GenericAuthAction,
};
use async_trait::async_trait;
use serde::{Deserialize, Serialize};
use serde_json::Value;
use serde_with::{formats::SpaceSeparator, serde_as, StringWithSeparator};
use std::collections::HashMap;
pub struct AuthorizationServer {
config: AuthConfig,
}
auth_server_builder!();
impl AuthUrlProvider for AuthorizationServer {
type AuthRequest = AuthRequest;
type TokenRequest = GetTokenRequest;
type UserInfoRequest = GetUserInfoRequest;
fn authorize_url(request: Self::AuthRequest) -> Result<String> {
let query = serde_urlencoded::to_string(request)?;
Ok(format!(
"https://openapi.baidu.com/oauth/2.0/authorize?response_type=CODE&{query}"
))
}
fn access_token_url(request: Self::TokenRequest) -> Result<String> {
let query = serde_urlencoded::to_string(request)?;
Ok(format!(
"https://openapi.baidu.com/oauth/2.0/token?grant_type=authorization_code&{query}"
))
}
fn user_info_url(request: Self::UserInfoRequest) -> Result<String> {
let query = serde_urlencoded::to_string(request)?;
Ok(format!(
"https://openapi.baidu.com/rest/2.0/passport/users/getInfo?{query}"
))
}
}
#[async_trait]
impl AuthAction for AuthorizationServer {
type AuthCallback = AuthCallback;
type AuthToken = TokenResponse;
type AuthUser = UserInfoResponse;
async fn get_access_token(&self, callback: Self::AuthCallback) -> Result<Self::AuthToken> {
let AuthConfig {
client_id,
client_secret,
redirect_uri,
..
} = &self.config;
let access_token_url = Self::access_token_url(GetTokenRequest {
client_id: client_id.to_string(),
client_secret: client_secret.clone().expect("client_secret is empty"),
code: callback.code,
redirect_uri: redirect_uri.to_string(),
})?;
Ok(reqwest::get(access_token_url).await?.json().await?)
}
async fn get_user_info(&self, token: Self::AuthToken) -> Result<Self::AuthUser> {
let user_info_url = Self::user_info_url(GetUserInfoRequest {
access_token: token.access_token,
get_unionid: Some(1),
})?;
Ok(reqwest::get(user_info_url).await?.json().await?)
}
}
#[async_trait]
impl GenericAuthAction for AuthorizationServer {
async fn authorize<S: Into<String> + Send>(&self, state: S) -> Result<String> {
let AuthConfig {
client_id,
redirect_uri,
scope,
..
} = &self.config;
Self::authorize_url(AuthRequest {
client_id: client_id.to_string(),
redirect_uri: redirect_uri.to_string(),
state: Some(state.into()),
scope: scope.clone().unwrap_or_default(),
..Default::default()
})
}
async fn login<S: Into<String> + Send>(&self, callback: S) -> Result<AuthUser> {
let callback: AuthCallback = serde_urlencoded::from_str(&callback.into())?;
let token = self.get_access_token(callback).await?;
let user = self.get_user_info(token.clone()).await?;
Ok(AuthUser {
user_id: user.openid,
name: user.username.unwrap_or_default(),
access_token: token.access_token,
refresh_token: token.refresh_token,
expires_in: token.expires_in,
extra: user.extra,
})
}
}
#[serde_as]
#[derive(Debug, Default, Serialize, Deserialize)]
pub struct AuthRequest {
client_id: String,
redirect_uri: String,
#[serde_as(as = "StringWithSeparator::<SpaceSeparator, String>")]
scope: Vec<String>,
state: Option<String>,
display: Option<DisplayStyle>,
force_login: Option<i8>,
confirm_login: Option<i8>,
login_type: Option<String>,
qrext_clientid: Option<String>,
bgurl: Option<String>,
#[serde(rename = "qrcodeW")]
qrcode_width: Option<u32>,
#[serde(rename = "qrcodeH")]
qrcode_height: Option<u32>,
qrcode: Option<i8>,
qrloginfrom: Option<String>,
#[serde(rename = "userReg")]
user_reg: Option<i8>,
#[serde(rename = "appTip")]
app_tip: Option<String>,
#[serde(rename = "appName")]
app_name: Option<String>,
}
#[derive(Debug, Serialize, Deserialize)]
#[serde(rename_all = "lowercase")]
pub enum DisplayStyle {
Page,
Popup,
Dialog,
Mobile,
Pad,
Tv,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct AuthCallback {
code: String,
state: String,
}
#[derive(Debug, Serialize)]
pub struct GetTokenRequest {
client_id: String,
client_secret: String,
code: String,
redirect_uri: String,
}
#[derive(Default, Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct TokenResponse {
pub access_token: String,
pub expires_in: i64,
pub refresh_token: String,
pub scope: String,
pub session_key: String,
pub session_secret: String,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct RefreshTokenRequest {
grant_type: String,
client_id: String,
client_secret: String,
refresh_token: String,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct GetUserInfoRequest {
access_token: String,
get_unionid: Option<i8>,
}
#[derive(Default, Debug, Clone, PartialEq, Serialize, Deserialize)]
pub struct UserInfoResponse {
pub openid: String,
pub username: Option<String>,
#[serde(flatten)]
pub extra: HashMap<String, Value>,
}