/* * Copyright (c) 2023 Vaughn Nugent * * Library: VNLib * Package: VNLib.Plugins.Essentials.SocialOauth * File: OauthClientConfig.cs * * OauthClientConfig.cs is part of VNLib.Plugins.Essentials.SocialOauth which is part of the larger * VNLib collection of libraries and utilities. * * VNLib.Plugins.Essentials.SocialOauth is free software: you can redistribute it and/or modify * it under the terms of the GNU Affero General Public License as * published by the Free Software Foundation, either version 3 of the * License, or (at your option) any later version. * * VNLib.Plugins.Essentials.SocialOauth is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU Affero General Public License for more details. * * You should have received a copy of the GNU Affero General Public License * along with this program. If not, see https://www.gnu.org/licenses/. */ using System; using System.Threading.Tasks; using System.Collections.Generic; using VNLib.Utils.Extensions; using VNLib.Plugins.Essentials.Users; using VNLib.Plugins.Essentials.Accounts; using VNLib.Plugins.Extensions.Loading; using VNLib.Plugins.Extensions.Loading.Users; namespace VNLib.Plugins.Essentials.SocialOauth { public sealed class OauthClientConfig : IAsyncConfigurable { private readonly string ConfigName; public OauthClientConfig(PluginBase plugin, IConfigScope config) { ConfigName = config.ScopeName; EndpointPath = config["path"].GetString() ?? throw new KeyNotFoundException($"Missing required key 'path' in config {ConfigName}"); //Set discord account origin AccountOrigin = config["account_origin"].GetString() ?? throw new KeyNotFoundException($"Missing required key 'account_origin' in config {ConfigName}"); //Get the auth and token urls string authUrl = config["authorization_url"].GetString() ?? throw new KeyNotFoundException($"Missing required key 'authorization_url' in config {ConfigName}"); string tokenUrl = config["token_url"].GetString() ?? throw new KeyNotFoundException($"Missing required key 'token_url' in config {ConfigName}"); string userUrl = config["user_data_url"].GetString() ?? throw new KeyNotFoundException($"Missing required key 'user_data_url' in config {ConfigName}"); //Create the uris AccessCodeUrl = new(authUrl); AccessTokenUrl = new(tokenUrl); UserDataUrl = new(userUrl); AllowForLocalAccounts = config["allow_for_local"].GetBoolean(); AllowRegistration = config["allow_registration"].GetBoolean(); LoginNonceLifetime = config["valid_for_sec"].GetTimeSpan(TimeParseType.Seconds); NonceByteSize = config["nonce_size"].GetUInt32(); RandomPasswordSize = config["password_size"].GetInt32(); InitClaimValidFor = config["claim_valid_for_sec"].GetTimeSpan(TimeParseType.Seconds); Users = plugin.GetOrCreateSingleton(); Passwords = plugin.GetPasswords(); } public async Task ConfigureServiceAsync(PluginBase plugin) { //Get id/secret Task clientIdTask = plugin.TryGetSecretAsync($"{ConfigName}_client_id"); Task secretTask = plugin.TryGetSecretAsync($"{ConfigName}_client_secret"); await Task.WhenAll(secretTask, clientIdTask); using SecretResult? secret = await secretTask; using SecretResult? clientId = await clientIdTask; ClientID = clientId?.Result.ToString() ?? throw new KeyNotFoundException($"Missing {ConfigName} client id from config or vault"); ClientSecret = secret?.Result.ToString() ?? throw new KeyNotFoundException($"Missing the {ConfigName} client secret from config or vault"); } public string ClientID { get; private set; } = string.Empty; public string ClientSecret { get; private set; } = string.Empty; /// /// The user-account origin value. Specifies that the user account /// was created outside of the local account system /// public string AccountOrigin { get; } /// /// The URL to redirect the user to the OAuth2 service /// to begin the authentication process /// public Uri AccessCodeUrl { get; } /// /// The remote endoint to exchange codes for access tokens /// public Uri AccessTokenUrl { get; } /// /// The endpoint to get user-data object from /// public Uri UserDataUrl { get; } public TimeSpan LoginNonceLifetime { get; } /// /// The user store to create/get users from /// public IUserManager Users { get; } public IPasswordHashingProvider Passwords { get; } /// /// The endpoint route/path /// public string EndpointPath { get; } /// /// The size (in bytes) of the random generated nonce /// public uint NonceByteSize { get; } /// /// A value that specifies if locally created accounts are allowed /// to be logged in from an OAuth2 source /// public bool AllowForLocalAccounts { get; } /// /// A value that indicates if accounts that do not exist will be created /// and logged in immediatly, on successfull OAuth2 flow /// public bool AllowRegistration { get; } /// /// The size (in bytes) of the random password generated for new users /// public int RandomPasswordSize { get; } /// /// The initial time the login claim is valid for /// public TimeSpan InitClaimValidFor { get; } } }