mirror of
https://github.com/pocketbase/pocketbase.git
synced 2024-11-28 18:11:17 +02:00
68 lines
1.7 KiB
Go
68 lines
1.7 KiB
Go
package auth
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
|
|
"golang.org/x/oauth2"
|
|
"golang.org/x/oauth2/microsoft"
|
|
)
|
|
|
|
var _ Provider = (*Microsoft)(nil)
|
|
|
|
// NameMicrosoft is the unique name of the Microsoft provider.
|
|
const NameMicrosoft string = "microsoft"
|
|
|
|
// Microsoft allows authentication via AzureADEndpoint OAuth2.
|
|
type Microsoft struct {
|
|
*baseProvider
|
|
}
|
|
|
|
// NewMicrosoftProvider creates new Microsoft AD provider instance with some defaults.
|
|
func NewMicrosoftProvider() *Microsoft {
|
|
endpoints := microsoft.AzureADEndpoint("")
|
|
return &Microsoft{&baseProvider{
|
|
ctx: context.Background(),
|
|
scopes: []string{"User.Read"},
|
|
authUrl: endpoints.AuthURL,
|
|
tokenUrl: endpoints.TokenURL,
|
|
userApiUrl: "https://graph.microsoft.com/v1.0/me",
|
|
}}
|
|
}
|
|
|
|
// FetchAuthUser returns an AuthUser instance based on the Microsoft's user api.
|
|
//
|
|
// API reference: https://learn.microsoft.com/en-us/azure/active-directory/develop/userinfo
|
|
// Graph explorer: https://developer.microsoft.com/en-us/graph/graph-explorer
|
|
func (p *Microsoft) FetchAuthUser(token *oauth2.Token) (*AuthUser, error) {
|
|
data, err := p.FetchRawUserData(token)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
rawUser := map[string]any{}
|
|
if err := json.Unmarshal(data, &rawUser); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
extracted := struct {
|
|
Id string `json:"id"`
|
|
Name string `json:"displayName"`
|
|
Email string `json:"mail"`
|
|
}{}
|
|
if err := json.Unmarshal(data, &extracted); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
user := &AuthUser{
|
|
Id: extracted.Id,
|
|
Name: extracted.Name,
|
|
Email: extracted.Email,
|
|
RawUser: rawUser,
|
|
AccessToken: token.AccessToken,
|
|
RefreshToken: token.RefreshToken,
|
|
}
|
|
|
|
return user, nil
|
|
}
|