NotificationsYou must be signed in to change notification settings
Fork1k
Star11.1k

Commit74ada5e

committed

refactor(oauth2): restructure oauth2 provider into modular package

- Rename identityprovider package to oauth2provider for clarity- Extract OAuth2 business logic from coderd/oauth2.go into focused modules: - apps.go: OAuth2 app management (CRUD operations) - app_secrets.go: OAuth2 app secrets management - metadata.go: OAuth2 server and resource metadata endpoints - registration.go: RFC 7591/7592 dynamic client registration- Update route handlers to delegate to oauth2provider functions- Preserve all existing API endpoints and Swagger documentation- Fix compilation issues and update middleware references- All tests passing with zero regressionsThis refactoring improves code organization and maintainability whilepreserving complete API compatibility.Change-Id: Ieef7cf3683ec93667f09a0d4894190a1e1a0b16eSigned-off-by: Thomas Kosiewski <tk@coder.com>

1 parent665993d commit74ada5eCopy full SHA for 74ada5e

File tree

17 files changed

+1088

-975

lines changed

coderd
- coderd.go
- oauth2.go
- oauth2_test.go
- oauth2provider
  - app_secrets.go
  - apps.go
  - authorize.go
  - metadata.go
  - middleware.go
  - oauth2providertest
  - pkce.go
  - pkce_test.go
  - registration.go
  - revoke.go
  - secrets.go
  - tokens.go

17 files changed

+1088

-975

lines changed

`‎coderd/coderd.go‎`

Lines changed: 16 additions & 15 deletions

Original file line number	Diff line number	Diff line change
`@@ -19,6 +19,7 @@ import (`
`19`	`19`	`"sync/atomic"`
`20`	`20`	`"time"`
`21`	`21`
	`22`	`+"github.com/coder/coder/v2/coderd/oauth2provider"`
`22`	`23`	`"github.com/coder/coder/v2/coderd/prebuilds"`
`23`	`24`
`24`	`25`	`"github.com/andybalholm/brotli"`
`@@ -913,9 +914,9 @@ func New(options Options) API {`
`913`	`914`	`}`
`914`	`915`
`915`	`916`	`// OAuth2 metadata endpoint for RFC 8414 discovery`
`916`		`-r.Get("/.well-known/oauth-authorization-server",api.oauth2AuthorizationServerMetadata)`
	`917`	`+r.Get("/.well-known/oauth-authorization-server",api.oauth2AuthorizationServerMetadata())`
`917`	`918`	`// OAuth2 protected resource metadata endpoint for RFC 9728 discovery`
`918`		`-r.Get("/.well-known/oauth-protected-resource",api.oauth2ProtectedResourceMetadata)`
	`919`	`+r.Get("/.well-known/oauth-protected-resource",api.oauth2ProtectedResourceMetadata())`
`919`	`920`
`920`	`921`	`// OAuth2 linking routes do not make sense under the /api/v2 path. These are`
`921`	`922`	`// for an external application to use Coder as an OAuth2 provider, not for`
`@@ -952,17 +953,17 @@ func New(options Options) API {`
`952`	`953`	`})`
`953`	`954`
`954`	`955`	`// RFC 7591 Dynamic Client Registration - Public endpoint`
`955`		`-r.Post("/register",api.postOAuth2ClientRegistration)`
	`956`	`+r.Post("/register",api.postOAuth2ClientRegistration())`
`956`	`957`
`957`	`958`	`// RFC 7592 Client Configuration Management - Protected by registration access token`
`958`	`959`	`r.Route("/clients/{client_id}",func(r chi.Router) {`
`959`	`960`	`r.Use(`
`960`	`961`	`// Middleware to validate registration access token`
`961`		`-api.requireRegistrationAccessToken,`
	`962`	`+oauth2provider.RequireRegistrationAccessToken(api.Database),`
`962`	`963`	`)`
`963`		`-r.Get("/",api.oauth2ClientConfiguration)// Read client configuration`
`964`		`-r.Put("/",api.putOAuth2ClientConfiguration)// Update client configuration`
`965`		`-r.Delete("/",api.deleteOAuth2ClientConfiguration)// Delete client`
	`964`	`+r.Get("/",api.oauth2ClientConfiguration())// Read client configuration`
	`965`	`+r.Put("/",api.putOAuth2ClientConfiguration())// Update client configuration`
	`966`	`+r.Delete("/",api.deleteOAuth2ClientConfiguration())// Delete client`
`966`	`967`	`})`
`967`	`968`	`})`
`968`	`969`
`@@ -1479,22 +1480,22 @@ func New(options Options) API {`
`1479`	`1480`	`httpmw.RequireExperimentWithDevBypass(api.Experiments,codersdk.ExperimentOAuth2),`
`1480`	`1481`	`)`
`1481`	`1482`	`r.Route("/apps",func(r chi.Router) {`
`1482`		`-r.Get("/",api.oAuth2ProviderApps)`
`1483`		`-r.Post("/",api.postOAuth2ProviderApp)`
	`1483`	`+r.Get("/",api.oAuth2ProviderApps())`
	`1484`	`+r.Post("/",api.postOAuth2ProviderApp())`
`1484`	`1485`
`1485`	`1486`	`r.Route("/{app}",func(r chi.Router) {`
`1486`	`1487`	`r.Use(httpmw.ExtractOAuth2ProviderApp(options.Database))`
`1487`		`-r.Get("/",api.oAuth2ProviderApp)`
`1488`		`-r.Put("/",api.putOAuth2ProviderApp)`
`1489`		`-r.Delete("/",api.deleteOAuth2ProviderApp)`
	`1488`	`+r.Get("/",api.oAuth2ProviderApp())`
	`1489`	`+r.Put("/",api.putOAuth2ProviderApp())`
	`1490`	`+r.Delete("/",api.deleteOAuth2ProviderApp())`
`1490`	`1491`
`1491`	`1492`	`r.Route("/secrets",func(r chi.Router) {`
`1492`		`-r.Get("/",api.oAuth2ProviderAppSecrets)`
`1493`		`-r.Post("/",api.postOAuth2ProviderAppSecret)`
	`1493`	`+r.Get("/",api.oAuth2ProviderAppSecrets())`
	`1494`	`+r.Post("/",api.postOAuth2ProviderAppSecret())`
`1494`	`1495`
`1495`	`1496`	`r.Route("/{secretID}",func(r chi.Router) {`
`1496`	`1497`	`r.Use(httpmw.ExtractOAuth2ProviderAppSecret(options.Database))`
`1497`		`-r.Delete("/",api.deleteOAuth2ProviderAppSecret)`
	`1498`	`+r.Delete("/",api.deleteOAuth2ProviderAppSecret())`
`1498`	`1499`	`})`
`1499`	`1500`	`})`
`1500`	`1501`	`})`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit74ada5e

File tree

17 files changed

17 files changed

`‎coderd/coderd.go‎`

0 commit comments