authkeeper 0.1.1 → 0.1.3

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 2616ca82fd0778b03efe16f617048f00d06306695be3c5f269299d23cd4f1d50
-  data.tar.gz: c0877dd71503826030c4c679a6cd4139f658ee1be5c643ba2389e2fab9120812
+  metadata.gz: 3fb703b887c4415e68a9ed91bea0a41cf1c682ccf20742d18c26700205f37a72
+  data.tar.gz: f9ff63172357aab12de6252c5c58a764ec9e354921fc9199826d0876778ecbfb
 SHA512:
-  metadata.gz: f6e170db4dd20e031d29135a962388ba4a83ec6ea3ae460a180763d9416f9f7e7215b0b152c2c10df202a9e20c31cca0a10fe10d26c0b93ff7f6b8b145a568f3
-  data.tar.gz: '000585f7ae8e44ba54ab52c15accfbc8bc689bc1a21cad5964353f7ddac9e3ce5774e50fe5b1b910b768f1d83200155d1e6b044856d929ef288939d4ca4ea945'
+  metadata.gz: 633d17c8e59833d357dca0861cbfef908813a8668102ddff1e6760cc6e9aa3dc1fe249b3f7a194f4324d7c1722b97ba2684c2ed14b88993afea003943630bb73
+  data.tar.gz: 902eef36cfcee239262871e13d1fd1eace8eca90f0b99449541d31ae46e94002c8943cc492d2b823861e2b2dff1c04f44bb5b51a68cef236b6a8a88553eb16c6

data/app/controllers/authkeeper/omniauth_callbacks_controller.rb

@@ -12,6 +12,7 @@ module Authkeeper
     TELEGRAM = 'telegram'
     GOOGLE = 'google'
     YANDEX = 'yandex'
+    VK = 'vk'
 
     skip_before_action :verify_authenticity_token
     skip_before_action :authenticate, only: %i[create]
@@ -49,20 +50,16 @@ module Authkeeper
     end
 
     def auth
-      @auth ||= provider_service(params[:provider]).call(params: params)[:result]
+      @auth ||=
+        provider_service(params[:provider]).call(params: params.merge(oauth_data))[:result]
     end
 
-    def provider_service(provider)
-      Authkeeper::Container.resolve("services.providers.#{provider}")
+    def oauth_data
+      Rails.cache.read("oauth_data_#{params[:state]}") || {}
     end
 
-    def sign_in(user)
-      user_session = Authkeeper.configuration.user_session_model.constantize.create!(user: user)
-      cookies[Authkeeper.configuration.access_token_name] = {
-        value: generate_token.call(user_session: user_session)[:result],
-        domain: Authkeeper.configuration.domain,
-        expires: 1.week.from_now
-      }.compact
+    def provider_service(provider)
+      Authkeeper::Container.resolve("services.providers.#{provider}")
     end
   end
 end

data/app/helpers/authkeeper/application_helper.rb

@@ -2,12 +2,13 @@
 
 module Authkeeper
   module ApplicationHelper
-    def omniauth_link(provider)
+    def omniauth_link(provider, oauth_data=nil)
       case provider
       when :github then github_oauth_link
       when :gitlab then gitlab_oauth_link
       when :google then google_oauth_link
       when :yandex then yandex_oauth_link
+      when :vk then vk_oauth_link(oauth_data)
       end
     end
 
@@ -29,6 +30,10 @@ module Authkeeper
     def yandex_oauth_link
       "https://oauth.yandex.ru/authorize?response_type=code&client_id=#{value(:yandex, :client_id)}"
     end
+
+    def vk_oauth_link(oauth_data)
+      "https://id.vk.com/authorize?scope=email&response_type=code&client_id=#{value(:vk, :client_id)}&code_challenge=#{oauth_data[:code_challenge]}&code_challenge_method=S256&redirect_uri=#{value(:vk, :redirect_url)}&state=#{oauth_data[:state]}"
+    end
     # rubocop: enable Layout/LineLength
 
     def value(provider, key)

data/app/lib/authkeeper/vk_auth_api/client.rb

@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+module Authkeeper
+  module VkAuthApi
+    class Client < HttpService::Client
+      include Requests::FetchAccessToken
+      include Requests::Info
+
+      BASE_URL = 'https://id.vk.com/'
+
+      option :url, default: proc { BASE_URL }
+    end
+  end
+end

data/app/lib/authkeeper/vk_auth_api/requests/fetch_access_token.rb

@@ -0,0 +1,29 @@
+# frozen_string_literal: true
+
+require 'uri'
+
+module Authkeeper
+  module VkAuthApi
+    module Requests
+      module FetchAccessToken
+        def fetch_access_token(client_id:, redirect_url:, device_id:, code:, state:, code_verifier:)
+          post(
+            path: 'oauth2/auth',
+            body: URI.encode_www_form({
+              grant_type: 'authorization_code',
+              client_id: client_id,
+              device_id: device_id,
+              code: code,
+              state: state,
+              redirect_uri: redirect_url,
+              code_verifier: code_verifier
+            }),
+            headers: {
+              'Content-Type' => 'application/x-www-form-urlencoded'
+            }
+          )
+        end
+      end
+    end
+  end
+end

data/app/lib/authkeeper/vk_auth_api/requests/info.rb

@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+
+module Authkeeper
+  module VkAuthApi
+    module Requests
+      module Info
+        def info(access_token:, client_id:)
+          post(
+            path: 'oauth2/user_info',
+            body: {
+              access_token: access_token,
+              client_id: client_id
+            }
+          )
+        end
+      end
+    end
+  end
+end

data/app/services/authkeeper/providers/vk.rb

@@ -0,0 +1,72 @@
+# frozen_string_literal: true
+
+module Authkeeper
+  module Providers
+    class Vk
+      include AuthkeeperDeps[
+        auth_client: 'api.vk.auth_client'
+      ]
+
+      def call(params: {})
+        auth_info = fetch_auth_info(params)
+        # {
+        #   "refresh_token" => "vk2.a.",
+        #   "access_token" => "vk2.a.",
+        #   "id_token" => "",
+        #   "token_type" => "Bearer",
+        #   "expires_in" => 3600,
+        #   "user_id" => 176780000,
+        #   "state" => "ce4a09792e2cc8065a96074906709765",
+        #   "scope" => "vkid.personal_info email"
+        # }
+
+        user_info = fetch_user_info(auth_info['access_token'])
+        # {
+        #   "user" => {
+        #     "user_id" => "176780000",
+        #     "first_name" => "",
+        #     "last_name" => "",
+        #     "avatar" => "",
+        #     "email" => "",
+        #     "sex" => 2,
+        #     "verified" => false,
+        #     "birthday" => "01.01.2000"
+        #   }
+        # }
+
+        {
+          result: {
+            auth_info: auth_info.symbolize_keys,
+            user_info: {
+              uid: user_info.dig('user', 'user_id'),
+              provider: 'vk',
+              email: user_info.dig('user', 'email'),
+              phone_number: "+#{user_info.dig('user', 'phone')}"
+            }
+          }
+        }
+      end
+
+      private
+
+      def fetch_auth_info(params)
+        auth_client.fetch_access_token(
+          client_id: omniauth_config[:client_id],
+          redirect_url: omniauth_config[:redirect_url],
+          device_id: params[:device_id],
+          code: params[:code],
+          state: params[:state],
+          code_verifier: params[:code_verifier]
+        )
+      end
+
+      def fetch_user_info(access_token)
+        auth_client.info(access_token: access_token, client_id: omniauth_config[:client_id])
+      end
+
+      def omniauth_config
+        @omniauth_config ||= Authkeeper.configuration.omniauth_configs[:vk]
+      end
+    end
+  end
+end

data/lib/authkeeper/container.rb

@@ -25,12 +25,14 @@ module Authkeeper
     register('api.google.client') { Authkeeper::GoogleApi::Client.new }
     register('api.yandex.auth_client') { Authkeeper::YandexAuthApi::Client.new }
     register('api.yandex.client') { Authkeeper::YandexApi::Client.new }
+    register('api.vk.auth_client') { Authkeeper::VkAuthApi::Client.new }
 
     register('services.providers.github') { Authkeeper::Providers::Github.new }
     register('services.providers.gitlab') { Authkeeper::Providers::Gitlab.new }
     register('services.providers.telegram') { Authkeeper::Providers::Telegram.new }
     register('services.providers.google') { Authkeeper::Providers::Google.new }
     register('services.providers.yandex') { Authkeeper::Providers::Yandex.new }
+    register('services.providers.vk') { Authkeeper::Providers::Vk.new }
 
     register('services.fetch_session') { Authkeeper::FetchSessionService.new }
     register('services.generate_token') { Authkeeper::GenerateTokenService.new }

data/lib/authkeeper/controllers/authentication.rb

@@ -49,6 +49,15 @@ module Authkeeper
       end
 
       def access_token_name = Authkeeper.configuration.access_token_name
+
+      def sign_in(user)
+        user_session = Authkeeper.configuration.user_session_model.constantize.create!(user: user)
+        cookies[Authkeeper.configuration.access_token_name] = {
+          value: Authkeeper::Container['services.generate_token'].call(user_session: user_session)[:result],
+          domain: Authkeeper.configuration.domain,
+          expires: 1.week.from_now
+        }.compact
+      end
     end
   end
 end

data/lib/authkeeper/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Authkeeper
-  VERSION = '0.1.1'
+  VERSION = '0.1.3'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: authkeeper
 version: !ruby/object:Gem::Version
-  version: 0.1.1
+  version: 0.1.3
 platform: ruby
 authors:
 - Bogdanov Anton
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2024-11-20 00:00:00.000000000 Z
+date: 2024-11-29 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: rails
@@ -52,6 +52,9 @@ files:
 - app/lib/authkeeper/google_auth_api/client.rb
 - app/lib/authkeeper/google_auth_api/requests/fetch_access_token.rb
 - app/lib/authkeeper/jwt_encoder.rb
+- app/lib/authkeeper/vk_auth_api/client.rb
+- app/lib/authkeeper/vk_auth_api/requests/fetch_access_token.rb
+- app/lib/authkeeper/vk_auth_api/requests/info.rb
 - app/lib/authkeeper/yandex_api/client.rb
 - app/lib/authkeeper/yandex_api/requests/info.rb
 - app/lib/authkeeper/yandex_auth_api/client.rb
@@ -64,6 +67,7 @@ files:
 - app/services/authkeeper/providers/gitlab.rb
 - app/services/authkeeper/providers/google.rb
 - app/services/authkeeper/providers/telegram.rb
+- app/services/authkeeper/providers/vk.rb
 - app/services/authkeeper/providers/yandex.rb
 - app/views/layouts/authkeeper/application.html.erb
 - config/routes.rb