112 lines
3.5 KiB
C++
112 lines
3.5 KiB
C++
/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4; fill-column: 100 -*- */
|
|
/*
|
|
* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/.
|
|
*/
|
|
|
|
#include <config.h>
|
|
|
|
#include "Authorization.hpp"
|
|
#include "Protocol.hpp"
|
|
#include "Log.hpp"
|
|
#include <Exceptions.hpp>
|
|
|
|
#include <cstdlib>
|
|
#include <cassert>
|
|
#include <regex>
|
|
|
|
void Authorization::authorizeURI(Poco::URI& uri) const
|
|
{
|
|
if (_type == Authorization::Type::Token)
|
|
{
|
|
static const std::string key("access_token");
|
|
|
|
Poco::URI::QueryParameters queryParams = uri.getQueryParameters();
|
|
for (auto& param: queryParams)
|
|
{
|
|
if (param.first == key)
|
|
{
|
|
param.second = _data;
|
|
uri.setQueryParameters(queryParams);
|
|
return;
|
|
}
|
|
}
|
|
|
|
// it did not exist yet
|
|
uri.addQueryParameter(key, _data);
|
|
}
|
|
}
|
|
|
|
void Authorization::authorizeRequest(Poco::Net::HTTPRequest& request) const
|
|
{
|
|
switch (_type)
|
|
{
|
|
case Type::Token:
|
|
request.set("Authorization", "Bearer " + _data);
|
|
break;
|
|
case Type::Header:
|
|
{
|
|
// there might be more headers in here; like
|
|
// Authorization: Basic ....
|
|
// X-Something-Custom: Huh
|
|
// Split based on \n's or \r's and trim, to avoid nonsense in the
|
|
// headers
|
|
StringVector tokens(Util::tokenizeAnyOf(_data, "\n\r"));
|
|
for (auto it = tokens.begin(); it != tokens.end(); ++it)
|
|
{
|
|
std::string token = tokens.getParam(*it);
|
|
|
|
size_t separator = token.find_first_of(':');
|
|
if (separator != std::string::npos)
|
|
{
|
|
size_t headerStart = token.find_first_not_of(' ', 0);
|
|
size_t headerEnd = token.find_last_not_of(' ', separator - 1);
|
|
|
|
size_t valueStart = token.find_first_not_of(' ', separator + 1);
|
|
size_t valueEnd = token.find_last_not_of(' ');
|
|
|
|
// set the header
|
|
if (headerStart != std::string::npos && headerEnd != std::string::npos &&
|
|
valueStart != std::string::npos && valueEnd != std::string::npos)
|
|
{
|
|
size_t headerLength = headerEnd - headerStart + 1;
|
|
size_t valueLength = valueEnd - valueStart + 1;
|
|
|
|
request.set(token.substr(headerStart, headerLength), token.substr(valueStart, valueLength));
|
|
}
|
|
}
|
|
}
|
|
break;
|
|
}
|
|
default:
|
|
// assert(false);
|
|
throw BadRequestException("Invalid HTTP request type");
|
|
break;
|
|
}
|
|
}
|
|
|
|
Authorization Authorization::create(const Poco::URI::QueryParameters& queryParams)
|
|
{
|
|
// prefer the access_token
|
|
std::string decoded;
|
|
for (const auto& param : queryParams)
|
|
{
|
|
if (param.first == "access_token")
|
|
{
|
|
Poco::URI::decode(param.second, decoded);
|
|
return Authorization(Authorization::Type::Token, decoded);
|
|
}
|
|
|
|
if (param.first == "access_header")
|
|
Poco::URI::decode(param.second, decoded);
|
|
}
|
|
|
|
if (!decoded.empty())
|
|
return Authorization(Authorization::Type::Header, decoded);
|
|
|
|
return Authorization();
|
|
}
|
|
|
|
/* vim:set shiftwidth=4 softtabstop=4 expandtab: */
|