mirror of
https://github.com/freckle/yesod-auth-oauth2.git
synced 2026-04-22 18:57:43 +02:00
Adds Auth0 oauth2 plugin
This commit is contained in:
Haisheng W - M
patrick brisbin
parent
e7a9149210
commit
bd5df8e8a5
53
src/Yesod/Auth/OAuth2/Auth0.hs
Normal file
53
src/Yesod/Auth/OAuth2/Auth0.hs
Normal file
@ -0,0 +1,53 @@
|
|||||||
|
{-# LANGUAGE OverloadedStrings #-}
|
||||||
|
-- |
|
||||||
|
-- OAuth2 plugin for <https://auth0.com>
|
||||||
|
--
|
||||||
|
-- * Authenticates against specific auth0 tenant
|
||||||
|
-- * Uses Auth0 user id (a.k.a [sub](https://auth0.com/docs/api/authentication#get-user-info)) as credentials identifier
|
||||||
|
--
|
||||||
|
module Yesod.Auth.OAuth2.Auth0
|
||||||
|
(oauth2Auth0HostScopes
|
||||||
|
, defaultAuth0Scopes) where
|
||||||
|
|
||||||
|
import Data.Aeson as Aeson
|
||||||
|
import qualified Data.Text as T
|
||||||
|
import Yesod.Auth.OAuth2.Prelude
|
||||||
|
import Prelude
|
||||||
|
|
||||||
|
-- | https://auth0.com/docs/api/authentication#get-user-info
|
||||||
|
newtype User = User T.Text
|
||||||
|
|
||||||
|
instance FromJSON User where
|
||||||
|
parseJSON = withObject "User" $ \o ->
|
||||||
|
User <$> o .: "sub"
|
||||||
|
|
||||||
|
-- | https://auth0.com/docs/get-started/apis/scopes/openid-connect-scopes#standard-claims
|
||||||
|
defaultAuth0Scopes :: [Text]
|
||||||
|
defaultAuth0Scopes = ["openid"]
|
||||||
|
|
||||||
|
pluginName :: Text
|
||||||
|
pluginName = "auth0"
|
||||||
|
|
||||||
|
oauth2Auth0HostScopes :: YesodAuth m => URI -> [Text] -> Text -> Text -> AuthPlugin m
|
||||||
|
oauth2Auth0HostScopes host scopes clientId clientSecret =
|
||||||
|
authOAuth2 pluginName oauth2 $ \manager token -> do
|
||||||
|
(User uid, userResponse) <-
|
||||||
|
authGetProfile pluginName manager token (host `withPath` "/userinfo")
|
||||||
|
pure
|
||||||
|
Creds
|
||||||
|
{ credsPlugin = pluginName,
|
||||||
|
credsIdent = uid,
|
||||||
|
credsExtra = setExtra token userResponse
|
||||||
|
}
|
||||||
|
where
|
||||||
|
oauth2 =
|
||||||
|
OAuth2
|
||||||
|
{ oauth2ClientId = clientId,
|
||||||
|
oauth2ClientSecret = Just clientSecret,
|
||||||
|
oauth2AuthorizeEndpoint =
|
||||||
|
host
|
||||||
|
`withPath` "/authorize"
|
||||||
|
`withQuery` [scopeParam " " scopes],
|
||||||
|
oauth2TokenEndpoint = host `withPath` "/oauth/token",
|
||||||
|
oauth2RedirectUri = Nothing
|
||||||
|
}
|
||||||
@ -4,7 +4,7 @@ cabal-version: 1.12
|
|||||||
--
|
--
|
||||||
-- see: https://github.com/sol/hpack
|
-- see: https://github.com/sol/hpack
|
||||||
--
|
--
|
||||||
-- hash: 233909874fdbdbd71fa70c49f5a4223b4150b85d9415dbbed7fde2fff9e5ebcf
|
-- hash: a1a4e1ae0e3bbc0c5aea847e950613465bc5361c9bd1a1beedb20d7259b0ad8f
|
||||||
|
|
||||||
name: yesod-auth-oauth2
|
name: yesod-auth-oauth2
|
||||||
version: 0.7.0.1
|
version: 0.7.0.1
|
||||||
@ -39,6 +39,7 @@ library
|
|||||||
UnliftIO.Except
|
UnliftIO.Except
|
||||||
URI.ByteString.Extension
|
URI.ByteString.Extension
|
||||||
Yesod.Auth.OAuth2
|
Yesod.Auth.OAuth2
|
||||||
|
Yesod.Auth.OAuth2.Auth0
|
||||||
Yesod.Auth.OAuth2.AzureAD
|
Yesod.Auth.OAuth2.AzureAD
|
||||||
Yesod.Auth.OAuth2.BattleNet
|
Yesod.Auth.OAuth2.BattleNet
|
||||||
Yesod.Auth.OAuth2.Bitbucket
|
Yesod.Auth.OAuth2.Bitbucket
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user