如何使用oauth2在Go中实现隐式授予

go version go1.7.4 linux/amd64

I am trying get amazon alexa login using oauth2

package main

import (
    "context"
    "encoding/json"
    "fmt"
    "html/template"
    "io/ioutil"
    "log"
    "net/http"
    "net/url"

    "golang.org/x/oauth2"
    "gopkg.in/oauth2.v3/errors"
    "gopkg.in/oauth2.v3/manage"
    "gopkg.in/oauth2.v3/models"
    "gopkg.in/oauth2.v3/server"
    "gopkg.in/oauth2.v3/store"
    "gopkg.in/session.v1"
)

var (
    config = oauth2.Config{
        ClientID:     "222222",
        ClientSecret: "22222222",
        Scopes:       []string{"all"},
        RedirectURL:  "https://pitangui.amazon.com/spa/skill/account-linking-status.html?vendorId=xxxxxxxxxxxx",
        Endpoint: oauth2.Endpoint{
            AuthURL:  "/authorize",
            TokenURL: "/token",
        },
    }
    globalSessions *session.Manager
)

func init() {
    globalSessions, _ = session.NewManager("memory", `{"cookieName":"gosessionid","gclifetime":3600}`)
    go globalSessions.GC()
}

func mainHandler(w http.ResponseWriter, r *http.Request) {

    w.Write([]byte("hello world"))
    fmt.Println("loginHandler")
}

/*
Function Name : main()

Function Description :    This function is capable of running this application and listen for requests comming in

*/
func main() {
    http.HandleFunc("/home", mainHandler)

    // Listen to port 8080 and handle requests

    //------------------------------client.go--------------------------------------------//
    http.HandleFunc("/client", func(w http.ResponseWriter, r *http.Request) {
        log.Println("client")
        u := config.AuthCodeURL("xyz")
        http.Redirect(w, r, u, http.StatusFound)
    })
    http.HandleFunc("/oauth2", func(w http.ResponseWriter, r *http.Request) {
        log.Println("oauth2")
        log.Println("request url is", r.RequestURI)
        log.Println("request method", r.Method)
        requestbody, _ := ioutil.ReadAll(r.Body)
        log.Println("request body is", string(requestbody))
        log.Println("request body is", requestbody)
        r.ParseForm()
        state := r.Form.Get("state")
        if state != "xyz" {
            http.Error(w, "State invalid", http.StatusBadRequest)
            return
        }
        code := r.Form.Get("code")
        log.Println("code is", code)
        if code == "" {
            http.Error(w, "Code not found", http.StatusBadRequest)
            return
        }
        token, err := config.Exchange(context.Background(), code)
        if err != nil {
            http.Error(w, err.Error(), http.StatusInternalServerError)
            return
        }
        log.Println("w is:", *token)
        e := json.NewEncoder(w)
        e.SetIndent("", "  ")
        e.Encode(*token)
    })
    //------------------------------client.go--------------------------------------------//
    //------------------------------server.go--------------------------------------------//
    manager := manage.NewDefaultManager()
    // token store
    manager.MustTokenStorage(store.NewMemoryTokenStore())

    clientStore := store.NewClientStore()
    clientStore.Set("222222", &models.Client{
        ID:     "222222",
        Secret: "22222222",
        Domain: "",
    })
    manager.MapClientStorage(clientStore)

    srv := server.NewServer(server.NewConfig(), manager)
    srv.SetUserAuthorizationHandler(userAuthorizeHandler)

    srv.SetInternalErrorHandler(func(err error) (re *errors.Response) {
        log.Println("Internal Error:", err.Error())
        return
    })

    srv.SetResponseErrorHandler(func(re *errors.Response) {
        log.Println("Response Error:", re.Error.Error())
    })

    http.HandleFunc("/login", loginHandler)
    http.HandleFunc("/auth", authHandler)

    http.HandleFunc("/authorize", func(w http.ResponseWriter, r *http.Request) {
        log.Println("/authorize")
        requestbody, _ := ioutil.ReadAll(r.Body)
        log.Println("request body is", requestbody)
        log.Println("request url is", r.RequestURI)
        err := srv.HandleAuthorizeRequest(w, r)
        if err != nil {
            http.Error(w, err.Error(), http.StatusBadRequest)
        }
    })

    http.HandleFunc("/token", func(w http.ResponseWriter, r *http.Request) {
        log.Println("/token")

        err := srv.HandleTokenRequest(w, r)
        if err != nil {
            http.Error(w, err.Error(), http.StatusInternalServerError)
        }
    })
    //------------------------------server.go--------------------------------------------//
    http.ListenAndServe(":8080", nil)

}

func userAuthorizeHandler(w http.ResponseWriter, r *http.Request) (userID string, err error) {
    log.Println("userAuthorizeHandler")
    us, err := globalSessions.SessionStart(w, r)
    uid := us.Get("UserID")
    if uid == nil {
        if r.Form == nil {
            r.ParseForm()
        }
        us.Set("Form", r.Form)
        w.Header().Set("Location", "/login")
        w.WriteHeader(http.StatusFound)
        return
    }
    userID = uid.(string)
    us.Delete("UserID")
    return
}
func loginHandler(w http.ResponseWriter, r *http.Request) {

    // do whatever you need to do
    if r.Method == "POST" {
        fmt.Println("login post method")
        us, err := globalSessions.SessionStart(w, r)
        if err != nil {
            fmt.Println("err:", err)
            http.Error(w, err.Error(), http.StatusInternalServerError)
            return
        }
        us.Set("LoggedInUserID", "000000")
        w.Header().Set("Location", "/auth")
        w.WriteHeader(http.StatusFound)
        return
    }
    myvar := map[string]interface{}{"MyVar": "hiiiiiiiiiiii"}
    outputHTML(w, "static/login.html", myvar)
}

func authHandler(w http.ResponseWriter, r *http.Request) {
    log.Println("authHandler")
    log.Println("request url is", r.RequestURI)
    log.Println("request method", r.Method)
    requestbody, _ := ioutil.ReadAll(r.Body)
    log.Println("request body is", string(requestbody))
    log.Println("request body is", requestbody)
    us, err := globalSessions.SessionStart(w, r)
    if err != nil {
        http.Error(w, err.Error(), http.StatusInternalServerError)
        return
    }
    log.Println("LoggedInUserID:", us.Get("LoggedInUserID"))
    if us.Get("LoggedInUserID") == nil {
        w.Header().Set("Location", "/login")
        w.WriteHeader(http.StatusFound)
        return
    }
    if r.Method == "POST" {
        form := us.Get("Form").(url.Values)
        log.Println("form values entered are", form)
        u := new(url.URL)
        u.Path = "/authorize"
        u.RawQuery = form.Encode()
        w.Header().Set("Location", u.String())
        w.WriteHeader(http.StatusFound)
        us.Delete("Form")
        us.Set("UserID", us.Get("LoggedInUserID"))
        return
    }
    myvar := map[string]interface{}{"MyVar": "redirect url:" + "https://pitangui.amazon.com/spa/skill/account-linking-status.html?vendorId=M256OAZNG882Y2"}
    outputHTML(w, "static/auth.html", myvar)
}

func outputHTML(w http.ResponseWriter, filename string, data interface{}) {
    t, err := template.ParseFiles(filename)
    if err != nil {
        http.Error(w, err.Error(), 500)
        return
    }
    if err := t.Execute(w, data); err != nil {
        http.Error(w, err.Error(), 500)
        return
    }
}

I am able to achieve oauth by this example but now I want to implement implicit grant oauth2 with this example. Assuming this example is not implicit grant instead response_type=code

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dqbjvg2518 2017-04-20 20:48
关注
To achieve implicit grant you just need response_type and client_id. See RFC6749 . Here is the sample GET request

GET /authorize?response_type=token&client_id=s6BhdRkqt3&state=xyz &redirect_uri=https%3A%2F%2Fclient%2Eexample%2Ecom%2Fcb HTTP/1.1 Host: server.example.com

You can test it first using Curl. Here is the Curl

curl --data "response_type=token&client_id=227a1cb1&state=xyz" https://hosturl/oauth2/authorize
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

如何使用oauth2在Go中实现隐式授予
2017-04-20 09:06

回答 1 已采纳 To achieve implicit grant you just need response_type and client_id. See RFC6749 . Here is the sam
在CakePHP3中使用OAuth 2 php
2016-11-28 17:02

回答 1 已采纳 You can use UseMuffin/OAuth2 plugin for this purpose. See https://github.com/UseMuffin/OAuth2 for
使用软件包“ golang.org/x/oauth2”对oauth2进行身份验证
2016-04-17 01:27

回答 1 已采纳 Follow up: I've used it and tweaked it several times and it does the job.
OAuth2Bin：OAuth 2.0授权框架的测试服务器
2021-02-06 04:29

在请求中使用固定参数（ client_id ， client_secret ）动态令牌生成基于IP的速率限制可使用JSON配置 Docker支持用Go写除外没有依赖动机创建它的动机是在测试缺少易于访问的OAuth 2.0服务器。许多服务...
如何在Golang中使用OAuth2正确获取Google电子邮件
2015-04-14 06:15

回答 1 已采纳 My bad, I should read the response.Body first, for example: response, err = client.Get(`https://a
如何使用GCE Go客户端oauth2身份验证实现自动身份验证
2018-01-06 05:52

回答 1 已采纳 Solved by using code example https://cloud.google.com/compute/docs/reference/latest/instances/ge
如何使用go在OAuth中编写重定向URL
2017-11-04 21:29

回答 1 已采纳 Heroku recommends using environment variables for most configuration, so you can use the os packag
osin：Golang OAuth2服务器库
2021-02-23 09:01

OSIN是用于Go语言的OAuth2服务器库，如和所指定。如所指定，它还包括对PKCE的支持，从而增加了公共OAuth客户端的代码交换流的安全性。使用它，您可以构建自己的OAuth2身份验证服务。该库实现了大多数规范，...
如何从Golang OAuth2中正确读取错误
2019-03-05 19:31

回答 2 已采纳 The expression: (*RetrieveError)(rErr) converts therErr's type from *internal.RetrieveError to
将Google oauth2与Go一起使用
2018-08-03 07:29

回答 1 已采纳 The way OAuth works is, 1) You register you application with the vendor in this case its Google,
如何在codeigniter中使用OAuth类？ php
2016-05-26 09:39

回答 1 已采纳 you doing mistake loading a class as library load it like this Non-existent class:OAuth solu
Oauth2
2023-06-03 17:15

Generalzy的博客现在，很多网站都提供了第三方登录的功能，在他们的官网中，都提供了如何接入第三方登录的文档。大多数网站提供的第三方登录都遵循OAuth协议，虽然大多数网站的细节处理都是不一致的，甚至会基于OAuth协议进行扩展，...
在golang中存储Oauth2凭据
2013-08-13 16:17

回答 1 已采纳 I think you want a CacheFile which you pass as the TokenCache. Here is some code ripped from a pr
Android授权代码流程中的oauth2
2020-09-11 17:38

weixin_26726521的博客 OAuth is an open standard for secure authentication, commonly used to grant websites or applications access to information on other platforms without giving them the passwords. OAuth是安全身份验证的...
oauth0 oauth2_进行中的oauth 2 0
2020-09-01 18:02

weixin_26748959的博客 oauth0 oauth2Access secure HTTP Services in Go在Go中访问安全的HTTP服务 OAuth 2.0 is how a third party application accesses user data in the cloud. The spec describes it this way: “The OAuth 2.0 ...
没有解决我的问题, 去提问

悬赏问题

¥15 Excel发现不可读取的内容
¥15 UE5#if WITH_EDITOR导致打包的功能不可用
¥15 关于#stm32#的问题：CANOpen的PDO同步传输问题
¥20 yolov5自定义Prune报错，如何解决？
¥15 电磁场的matlab仿真
¥15 mars2d在vue3中的引入问题
¥50 h5唤醒支付宝并跳转至向小荷包转账界面
¥15 算法题：数的划分，用记忆化DFS做WA求调
¥15 chatglm-6b应用到django项目中，模型加载失败
¥15 CreateBitmapFromWicBitmap内存释放问题。

如何使用oauth2在Go中实现隐式授予

1条回答 默认 最新

悬赏问题

1条回答默认最新