auth/internal/domain/client_id.go

package domain

import (
	"fmt"
	"net"
	"net/url"
	"strconv"
	"strings"
	"testing"

	"inet.af/netaddr"

	"source.toby3d.me/toby3d/auth/internal/common"
)

// ClientID is a URL client identifier.
type ClientID struct {
	clientID    *url.URL
	isLocalhost bool
}

//nolint:gochecknoglobals // slices cannot be constants
var (
	localhostIPv4 = netaddr.MustParseIP("127.0.0.1")
	localhostIPv6 = netaddr.MustParseIP("::1")
)

// ParseClientID parse string as client ID URL identifier.
//
//nolint:funlen,cyclop
func ParseClientID(src string) (*ClientID, error) {
	cid, err := url.Parse(src)
	if err != nil {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			err.Error(),
			"https://indieauth.net/source/#client-identifier",
		)
	}

	if cid.Scheme == "" {
		cid.Scheme = "https"
	}

	if !strings.EqualFold(cid.Scheme, "http") && !strings.EqualFold(cid.Scheme, "https") {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			"client identifier URL MUST have either an https or http scheme, got '"+cid.Scheme+"'",
			"https://indieauth.net/source/#client-identifier",
		)
	}

	if cid.Path == "" {
		cid.Path = "/"
	}

	if strings.Contains(cid.Path, "/.") || strings.Contains(cid.Path, "/..") {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			"client identifier URL MUST contain a path component and MUST NOT contain "+
				"single-dot or double-dot path segments, got '"+cid.Path+"'",
			"https://indieauth.net/source/#client-identifier",
		)
	}

	if cid.Fragment != "" {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			"client identifier URL MUST NOT contain a fragment component, got '"+cid.Fragment+"'",
			"https://indieauth.net/source/#client-identifier",
		)
	}

	if cid.User != nil {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			"client identifier URL MUST NOT contain a username or password component, got '"+
				cid.User.String()+"'",
			"https://indieauth.net/source/#client-identifier",
		)
	}

	domain := cid.Hostname()
	if domain == "" {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			"client host name MUST be domain name or a loopback interface, got '"+domain+"'",
			"https://indieauth.net/source/#client-identifier",
		)
	}

	ip, err := netaddr.ParseIP(domain)
	if err != nil {
		ipPort, err := netaddr.ParseIPPort(domain)
		if err != nil {
			resolvedAddr, err := net.LookupIP(domain)
			if err != nil {
				return nil, fmt.Errorf("cannot resolve client_id domain: %w", err)
			}

			ip, _ = netaddr.FromStdIP(resolvedAddr[0])
			isLocalhost := ip.Compare(localhostIPv4) == 0 || ip.Compare(localhostIPv6) == 0

			return &ClientID{
				clientID:    cid,
				isLocalhost: isLocalhost,
			}, nil
		}

		ip = ipPort.IP()
	}

	isLocalhost := ip.Compare(localhostIPv4) == 0 || ip.Compare(localhostIPv6) == 0

	if !ip.IsLoopback() && !isLocalhost {
		return nil, NewError(
			ErrorCodeInvalidRequest,
			"client identifier URL MUST NOT be IPv4 or IPv6 addresses except for IPv4 "+
				"127.0.0.1 or IPv6 [::1]",
			"https://indieauth.net/source/#client-identifier",
		)
	}

	return &ClientID{
		clientID:    cid,
		isLocalhost: isLocalhost,
	}, nil
}

// TestClientID returns valid random generated ClientID for tests.
func TestClientID(tb testing.TB, forceURL ...string) *ClientID {
	tb.Helper()

	in := "https://127.0.0.1/"

	if len(forceURL) > 0 {
		in = forceURL[0]
	}

	u, _ := url.Parse(in)

	return &ClientID{
		clientID:    u,
		isLocalhost: len(forceURL) < 1,
	}
}

// UnmarshalForm implements custom unmarshler for form values.
func (cid *ClientID) UnmarshalForm(v []byte) error {
	clientID, err := ParseClientID(string(v))
	if err != nil {
		return fmt.Errorf("ClientID: UnmarshalForm: %w", err)
	}

	*cid = *clientID

	return nil
}

// UnmarshalJSON implements custom unmarshler for JSON.
func (cid *ClientID) UnmarshalJSON(v []byte) error {
	src, err := strconv.Unquote(string(v))
	if err != nil {
		return fmt.Errorf("ClientID: UnmarshalJSON: %w", err)
	}

	clientID, err := ParseClientID(src)
	if err != nil {
		return fmt.Errorf("ClientID: UnmarshalJSON: %w", err)
	}

	*cid = *clientID

	return nil
}

// MarshalForm implements custom marshler for JSON.
func (cid ClientID) MarshalJSON() ([]byte, error) {
	return []byte(strconv.Quote(cid.String())), nil
}

// IsEqual checks what cid is equal to provided v.
func (cid ClientID) IsEqual(v ClientID) bool {
	return cid.clientID.String() == v.clientID.String()
}

// URL returns url.URL representation of client ID.
func (cid ClientID) URL() *url.URL {
	out, _ := url.Parse(cid.clientID.String())

	return out
}

func (cid ClientID) IsLocalhost() bool {
	return cid.isLocalhost
}

// String returns string representation of client ID.
func (cid ClientID) String() string {
	if cid.clientID == nil {
		return ""
	}

	return cid.clientID.String()
}

func (cid ClientID) GoString() string {
	if cid.clientID == nil {
		return "domain.ClientID(" + common.Und + ")"
	}

	return "domain.ClientID(" + cid.clientID.String() + ")"
}
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`package domain`

			`import (`
			`"fmt"`
:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`"net"`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`"net/url"`
:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`"strconv"`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`"strings"`
			`"testing"`

			`"inet.af/netaddr"`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00
			`"source.toby3d.me/toby3d/auth/internal/common"`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`)`

			`// ClientID is a URL client identifier.`
			`type ClientID struct {`
:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`clientID *url.URL`
			`isLocalhost bool`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:art: Format GolangCI-Lint comments 2022-12-26 14:09:34 +00:00			`//nolint:gochecknoglobals // slices cannot be constants`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`var (`
			`localhostIPv4 = netaddr.MustParseIP("127.0.0.1")`
			`localhostIPv6 = netaddr.MustParseIP("::1")`
			`)`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`// ParseClientID parse string as client ID URL identifier.`
:art: Format GolangCI-Lint comments 2022-12-26 14:09:34 +00:00			`//`
			`//nolint:funlen,cyclop`
:art: Format domain package code 2022-01-29 17:50:45 +00:00			`func ParseClientID(src string) (*ClientID, error) {`
:recycle: Refactored ClientID domain contents, translated fasthttp.URI to url.URL 2023-01-02 00:32:13 +00:00			`cid, err := url.Parse(src)`
			`if err != nil {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
			`err.Error(),`
			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:art: Format some domains 2024-05-06 13:05:17 +00:00			`if cid.Scheme == "" {`
			`cid.Scheme = "https"`
			`}`

			`if !strings.EqualFold(cid.Scheme, "http") && !strings.EqualFold(cid.Scheme, "https") {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`"client identifier URL MUST have either an https or http scheme, got '"+cid.Scheme+"'",`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`if cid.Path == "" {`
			`cid.Path = "/"`
			`}`

			`if strings.Contains(cid.Path, "/.") \|\| strings.Contains(cid.Path, "/..") {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
			`"client identifier URL MUST contain a path component and MUST NOT contain "+`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`"single-dot or double-dot path segments, got '"+cid.Path+"'",`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:recycle: Refactored ClientID domain contents, translated fasthttp.URI to url.URL 2023-01-02 00:32:13 +00:00			`if cid.Fragment != "" {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`"client identifier URL MUST NOT contain a fragment component, got '"+cid.Fragment+"'",`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:recycle: Refactored ClientID domain contents, translated fasthttp.URI to url.URL 2023-01-02 00:32:13 +00:00			`if cid.User != nil {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`"client identifier URL MUST NOT contain a username or password component, got '"+`
			`cid.User.String()+"'",`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:recycle: Refactored ClientID domain contents, translated fasthttp.URI to url.URL 2023-01-02 00:32:13 +00:00			`domain := cid.Hostname()`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`if domain == "" {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`"client host name MUST be domain name or a loopback interface, got '"+domain+"'",`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

			`ip, err := netaddr.ParseIP(domain)`
			`if err != nil {`
			`ipPort, err := netaddr.ParseIPPort(domain)`
			`if err != nil {`
:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`resolvedAddr, err := net.LookupIP(domain)`
			`if err != nil {`
			`return nil, fmt.Errorf("cannot resolve client_id domain: %w", err)`
			`}`

			`ip, _ = netaddr.FromStdIP(resolvedAddr[0])`
			`isLocalhost := ip.Compare(localhostIPv4) == 0 \|\| ip.Compare(localhostIPv6) == 0`

			`return &ClientID{`
			`clientID: cid,`
			`isLocalhost: isLocalhost,`
			`}, nil`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

			`ip = ipPort.IP()`
			`}`

:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`isLocalhost := ip.Compare(localhostIPv4) == 0 \|\| ip.Compare(localhostIPv6) == 0`

			`if !ip.IsLoopback() && !isLocalhost {`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`return nil, NewError(`
			`ErrorCodeInvalidRequest,`
			`"client identifier URL MUST NOT be IPv4 or IPv6 addresses except for IPv4 "+`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`"127.0.0.1 or IPv6 [::1]",`
:rotating_light: Removed linter warnings 2022-02-01 17:27:48 +00:00			`"https://indieauth.net/source/#client-identifier",`
			`)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`return &ClientID{`
:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`clientID: cid,`
			`isLocalhost: isLocalhost,`
:art: Format domain package code 2022-01-29 17:50:45 +00:00			`}, nil`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`// TestClientID returns valid random generated ClientID for tests.`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`func TestClientID(tb testing.TB, forceURL ...string) *ClientID {`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`tb.Helper()`

:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`in := "https://127.0.0.1/"`

:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`if len(forceURL) > 0 {`
			`in = forceURL[0]`
			`}`

:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`u, _ := url.Parse(in)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00
:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`return &ClientID{`
			`clientID: u,`
			`isLocalhost: len(forceURL) < 1,`
			`}`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`// UnmarshalForm implements custom unmarshler for form values.`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`func (cid *ClientID) UnmarshalForm(v []byte) error {`
:truck: Renamed NewClientID to ParseClientID 2022-01-29 14:45:49 +00:00			`clientID, err := ParseClientID(string(v))`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`if err != nil {`
:art: Format of the exist code before refactoring 2022-02-15 20:07:39 +00:00			`return fmt.Errorf("ClientID: UnmarshalForm: %w", err)`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`cid = clientID`

			`return nil`
			`}`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`// UnmarshalJSON implements custom unmarshler for JSON.`
:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`func (cid *ClientID) UnmarshalJSON(v []byte) error {`
			`src, err := strconv.Unquote(string(v))`
			`if err != nil {`
:art: Format of the exist code before refactoring 2022-02-15 20:07:39 +00:00			`return fmt.Errorf("ClientID: UnmarshalJSON: %w", err)`
:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`}`

:truck: Renamed NewClientID to ParseClientID 2022-01-29 14:45:49 +00:00			`clientID, err := ParseClientID(src)`
:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`if err != nil {`
:art: Format of the exist code before refactoring 2022-02-15 20:07:39 +00:00			`return fmt.Errorf("ClientID: UnmarshalJSON: %w", err)`
:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`}`

			`cid = clientID`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00
			`return nil`
			`}`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`// MarshalForm implements custom marshler for JSON.`
:art: Format code of domains 2022-01-12 18:04:40 +00:00			`func (cid ClientID) MarshalJSON() ([]byte, error) {`
			`return []byte(strconv.Quote(cid.String())), nil`
			`}`

:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`// IsEqual checks what cid is equal to provided v.`
			`func (cid ClientID) IsEqual(v ClientID) bool {`
			`return cid.clientID.String() == v.clientID.String()`
			`}`

:art: Format domain package code 2022-01-29 17:50:45 +00:00			`// URL returns url.URL representation of client ID.`
:art: Format code of domains 2022-01-12 18:04:40 +00:00			`func (cid ClientID) URL() *url.URL {`
:recycle: Refactored ClientID domain contents, translated fasthttp.URI to url.URL 2023-01-02 00:32:13 +00:00			`out, _ := url.Parse(cid.clientID.String())`

			`return out`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`

:alien: Resolve ClientID hostname, ignore localhost fetching 2023-08-05 02:52:26 +00:00			`func (cid ClientID) IsLocalhost() bool {`
			`return cid.isLocalhost`
			`}`

:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`// String returns string representation of client ID.`
:art: Format code of domains 2022-01-12 18:04:40 +00:00			`func (cid ClientID) String() string {`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00			`if cid.clientID == nil {`
			`return ""`
			`}`

:label: Improved exists domains 2021-12-29 20:08:30 +00:00			`return cid.clientID.String()`
:label: Created ClientID domain 2021-12-25 18:55:35 +00:00			`}`
:recycle: Drop HTTP delivery framework replaced 'valyala/fasthttp' to native 'net/http' package, close #4 2023-01-14 21:27:37 +00:00
			`func (cid ClientID) GoString() string {`
			`if cid.clientID == nil {`
			`return "domain.ClientID(" + common.Und + ")"`
			`}`

			`return "domain.ClientID(" + cid.clientID.String() + ")"`
			`}`