OAuth2 server subsite for Yesod web apps

[[ 🗃 ^vlBxr dvara ]] :: [📥 Inbox] [📤 Outbox] [🐤 Followers] [🤝 Collaborators] [🛠 Changes]

Clone

HTTPS: darcs clone https://vervis.peers.community/repos/vlBxr

SSH: darcs clone USERNAME@vervis.peers.community:vlBxr

Tags

TODO

src / Dvara /

Class.hs

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71

{- This file is part of Dvara.
 -
 - Written in 2020 by fr33domlover <fr33domlover@riseup.net>.
 -
 - ♡ Copying is an act of love. Please copy, reuse and share.
 -
 - The author(s) have dedicated all copyright and related and neighboring
 - rights to this software to the public domain worldwide. This software is
 - distributed without any warranty.
 -
 - You should have received a copy of the CC0 Public Domain Dedication along
 - with this software. If not, see
 - <http://creativecommons.org/publicdomain/zero/1.0/>.
 -}

{-# LANGUAGE FlexibleContexts  #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE QuasiQuotes       #-}
{-# LANGUAGE TypeFamilies      #-}

module Dvara.Class
    ( DvaraScope (..)
    , YesodAuthDvara (..)
    )
where

import Data.List.NonEmpty (NonEmpty)
import Data.Text (Text)
import Network.HTTP.Types.Method
import Yesod.Auth
import Yesod.Core

import qualified Data.List.NonEmpty as NE
import qualified Data.Text as T

import Dvara.Types

class Eq a => DvaraScope a where
    renderScope   :: a -> Text
    parseScope    :: Text -> Either String a
    defaultScopes :: NonEmpty a
    selfScopes    :: NonEmpty a

class (YesodAuth site, DvaraScope (YesodAuthDvaraScope site)) => YesodAuthDvara site where
    data YesodAuthDvaraScope site

    renderAuthId        :: site -> AuthId site -> Text
    parseAuthId         :: site -> Text -> Either String (AuthId site)
    authorizationWidget :: Text -> NonEmpty (YesodAuthDvaraScope site) -> Route site -> [(Text, Text)] -> WidgetFor site ()
    authorizationWidget name scopes route params = do
        [whamlet|
            <p>
              The application #{name} is requesting
              access to your account, with the following scopes:
              #{T.unwords $ NE.toList $ NE.map renderScope scopes}.
            ^{buttonW POST "[Accept]" route params}
            <p>
              [Deny]
        |]
        where
        buttonW :: StdMethod -> Text -> Route site -> [(Text, Text)] -> WidgetFor site ()
        buttonW method content route params = do
            let tokenKey = defaultCsrfParamName
            mtoken <- reqToken <$> getRequest
            [whamlet|
                <form method=POST action=@?{(route, params)}>
                  <input type=hidden name=_method value=#{show method}>
                  $maybe n <- mtoken
                    <input type=hidden name=#{tokenKey} value=#{n}>
                  <input type=submit value="#{content}">
            |]
[See repo JSON]