2024-10-10 15:41:01 +03:00
|
|
|
package auth
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"bytes"
|
|
|
|
|
"context"
|
|
|
|
|
"encoding/json"
|
|
|
|
|
"errors"
|
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
|
|
"github.com/pocketbase/pocketbase/tools/types"
|
|
|
|
|
"golang.org/x/oauth2"
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
func init() {
|
|
|
|
|
Providers[NameMonday] = wrapFactory(NewMondayProvider)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var _ Provider = (*Monday)(nil)
|
|
|
|
|
|
|
|
|
|
// NameMonday is the unique name of the Monday provider.
|
|
|
|
|
const NameMonday = "monday"
|
|
|
|
|
|
|
|
|
|
// Monday is an auth provider for monday.com.
|
|
|
|
|
type Monday struct {
|
|
|
|
|
BaseProvider
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// NewMondayProvider creates a new Monday provider instance with some defaults.
|
|
|
|
|
func NewMondayProvider() *Monday {
|
|
|
|
|
return &Monday{BaseProvider{
|
|
|
|
|
ctx: context.Background(),
|
|
|
|
|
displayName: "monday.com",
|
|
|
|
|
pkce: true,
|
|
|
|
|
scopes: []string{"me:read"},
|
|
|
|
|
authURL: "https://auth.monday.com/oauth2/authorize",
|
|
|
|
|
tokenURL: "https://auth.monday.com/oauth2/token",
|
|
|
|
|
userInfoURL: "https://api.monday.com/v2",
|
|
|
|
|
}}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// FetchAuthUser returns an AuthUser instance based on the Monday's user api.
|
|
|
|
|
//
|
|
|
|
|
// API reference: https://developer.monday.com/api-reference/reference/me
|
|
|
|
|
func (p *Monday) FetchAuthUser(token *oauth2.Token) (*AuthUser, error) {
|
2024-11-22 22:43:16 +02:00
|
|
|
data, err := p.FetchRawUserInfo(token)
|
2024-10-10 15:41:01 +03:00
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
rawUser := map[string]any{}
|
|
|
|
|
if err := json.Unmarshal(data, &rawUser); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
extracted := struct {
|
|
|
|
|
Data struct {
|
|
|
|
|
Me struct {
|
|
|
|
|
Id string `json:"id"`
|
|
|
|
|
Enabled bool `json:"enabled"`
|
|
|
|
|
Name string `json:"name"`
|
|
|
|
|
Email string `json:"email"`
|
|
|
|
|
IsVerified bool `json:"is_verified"`
|
|
|
|
|
Avatar string `json:"photo_small"`
|
|
|
|
|
} `json:"me"`
|
|
|
|
|
} `json:"data"`
|
|
|
|
|
}{}
|
|
|
|
|
if err := json.Unmarshal(data, &extracted); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !extracted.Data.Me.Enabled {
|
|
|
|
|
return nil, errors.New("the monday.com user account is not enabled")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
user := &AuthUser{
|
|
|
|
|
Id: extracted.Data.Me.Id,
|
|
|
|
|
Name: extracted.Data.Me.Name,
|
|
|
|
|
AvatarURL: extracted.Data.Me.Avatar,
|
|
|
|
|
RawUser: rawUser,
|
|
|
|
|
AccessToken: token.AccessToken,
|
|
|
|
|
RefreshToken: token.RefreshToken,
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if extracted.Data.Me.IsVerified {
|
|
|
|
|
user.Email = extracted.Data.Me.Email
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
user.Expiry, _ = types.ParseDateTime(token.Expiry)
|
|
|
|
|
|
|
|
|
|
return user, nil
|
|
|
|
|
}
|
|
|
|
|
|
2024-11-22 22:43:16 +02:00
|
|
|
// FetchRawUserInfo implements Provider.FetchRawUserInfo interface.
|
2024-10-10 15:41:01 +03:00
|
|
|
//
|
|
|
|
|
// monday.com doesn't have a UserInfo endpoint and information on the user
|
|
|
|
|
// is retrieved using their GraphQL API (https://developer.monday.com/api-reference/reference/me#queries)
|
2024-11-22 22:43:16 +02:00
|
|
|
func (p *Monday) FetchRawUserInfo(token *oauth2.Token) ([]byte, error) {
|
2024-10-10 15:41:01 +03:00
|
|
|
query := []byte(`{"query": "query { me { id enabled name email is_verified photo_small }}"}`)
|
|
|
|
|
bodyReader := bytes.NewReader(query)
|
|
|
|
|
|
|
|
|
|
req, err := http.NewRequestWithContext(p.ctx, "POST", p.userInfoURL, bodyReader)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
req.Header.Set("Content-Type", "application/json")
|
|
|
|
|
|
|
|
|
|
return p.sendRawUserInfoRequest(req, token)
|
|
|
|
|
}
|
