auth/internal/auth/usecase/auth_ucase.go

package usecase

import (
	"context"
	"fmt"

	"source.toby3d.me/toby3d/auth/internal/auth"
	"source.toby3d.me/toby3d/auth/internal/domain"
	"source.toby3d.me/toby3d/auth/internal/profile"
	"source.toby3d.me/toby3d/auth/internal/random"
	"source.toby3d.me/toby3d/auth/internal/session"
)

type authUseCase struct {
	config   *domain.Config
	sessions session.Repository
	profiles profile.Repository
}

// NewAuthUseCase creates a new authentication use case.
func NewAuthUseCase(sessions session.Repository, profiles profile.Repository, config *domain.Config) auth.UseCase {
	return &authUseCase{
		config:   config,
		sessions: sessions,
		profiles: profiles,
	}
}

func (uc *authUseCase) Generate(ctx context.Context, opts auth.GenerateOptions) (string, error) {
	code, err := random.String(uc.config.Code.Length)
	if err != nil {
		return "", fmt.Errorf("cannot generate random code: %w", err)
	}

	var userInfo *domain.Profile

	// NOTE(toby3d): We request information about the profile only if there
	// is a corresponding Scope. However, the availability of this
	// information in the token is not guaranteed and is completely optional:
	// https://indieauth.net/source/#profile-information
	if opts.Scope.Has(domain.ScopeProfile) {
		if userInfo, err = uc.profiles.Get(ctx, opts.Me); err == nil &&
			userInfo.Email != nil && !opts.Scope.Has(domain.ScopeEmail) {
			userInfo.Email = nil
		}
	}

	if err = uc.sessions.Create(ctx, &domain.Session{
		ClientID:            opts.ClientID,
		Code:                code,
		CodeChallenge:       opts.CodeChallenge,
		CodeChallengeMethod: opts.CodeChallengeMethod,
		Me:                  opts.Me,
		Profile:             userInfo,
		RedirectURI:         opts.RedirectURI,
		Scope:               opts.Scope,
	}); err != nil {
		return "", fmt.Errorf("cannot save session in store: %w", err)
	}

	return code, nil
}

func (uc *authUseCase) Exchange(ctx context.Context, opts auth.ExchangeOptions) (*domain.Me, *domain.Profile, error) {
	session, err := uc.sessions.GetAndDelete(ctx, opts.Code)
	if err != nil {
		return nil, nil, fmt.Errorf("cannot find session in store: %w", err)
	}

	if opts.ClientID.String() != session.ClientID.String() {
		return nil, nil, auth.ErrMismatchClientID
	}

	if opts.RedirectURI.String() != session.RedirectURI.String() {
		return nil, nil, auth.ErrMismatchRedirectURI
	}

	if session.CodeChallenge != "" &&
		session.CodeChallengeMethod != domain.CodeChallengeMethodUndefined &&
		!session.CodeChallengeMethod.Validate(session.CodeChallenge, opts.CodeVerifier) {
		return nil, nil, auth.ErrMismatchPKCE
	}

	return session.Me, session.Profile, nil
}
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`package usecase`

			`import (`
			`"context"`
			`"fmt"`

:truck: Renamed module due project migration 2022-03-13 10:58:34 +00:00			`"source.toby3d.me/toby3d/auth/internal/auth"`
			`"source.toby3d.me/toby3d/auth/internal/domain"`
			`"source.toby3d.me/toby3d/auth/internal/profile"`
			`"source.toby3d.me/toby3d/auth/internal/random"`
			`"source.toby3d.me/toby3d/auth/internal/session"`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`)`

			`type authUseCase struct {`
			`config *domain.Config`
			`sessions session.Repository`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`profiles profile.Repository`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`

:recycle: Simplify error usage in auth package 2022-01-29 19:31:52 +00:00			`// NewAuthUseCase creates a new authentication use case.`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`func NewAuthUseCase(sessions session.Repository, profiles profile.Repository, config *domain.Config) auth.UseCase {`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`return &authUseCase{`
			`config: config,`
			`sessions: sessions,`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`profiles: profiles,`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`
			`}`

:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`func (uc *authUseCase) Generate(ctx context.Context, opts auth.GenerateOptions) (string, error) {`
			`code, err := random.String(uc.config.Code.Length)`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`if err != nil {`
			`return "", fmt.Errorf("cannot generate random code: %w", err)`
			`}`

:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`var userInfo *domain.Profile`

			`// NOTE(toby3d): We request information about the profile only if there`
			`// is a corresponding Scope. However, the availability of this`
			`// information in the token is not guaranteed and is completely optional:`
			`// https://indieauth.net/source/#profile-information`
			`if opts.Scope.Has(domain.ScopeProfile) {`
:art: Little code formatting 2022-02-17 21:53:39 +00:00			`if userInfo, err = uc.profiles.Get(ctx, opts.Me); err == nil &&`
			`userInfo.Email != nil && !opts.Scope.Has(domain.ScopeEmail) {`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`userInfo.Email = nil`
			`}`
			`}`

			`if err = uc.sessions.Create(ctx, &domain.Session{`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`ClientID: opts.ClientID,`
			`Code: code,`
			`CodeChallenge: opts.CodeChallenge,`
			`CodeChallengeMethod: opts.CodeChallengeMethod,`
			`Me: opts.Me,`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`Profile: userInfo,`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`RedirectURI: opts.RedirectURI,`
			`Scope: opts.Scope,`
			`}); err != nil {`
			`return "", fmt.Errorf("cannot save session in store: %w", err)`
			`}`

			`return code, nil`
			`}`

:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`func (uc authUseCase) Exchange(ctx context.Context, opts auth.ExchangeOptions) (domain.Me, *domain.Profile, error) {`
			`session, err := uc.sessions.GetAndDelete(ctx, opts.Code)`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`if err != nil {`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`return nil, nil, fmt.Errorf("cannot find session in store: %w", err)`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`

			`if opts.ClientID.String() != session.ClientID.String() {`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`return nil, nil, auth.ErrMismatchClientID`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`

			`if opts.RedirectURI.String() != session.RedirectURI.String() {`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`return nil, nil, auth.ErrMismatchRedirectURI`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`

:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`if session.CodeChallenge != "" &&`
			`session.CodeChallengeMethod != domain.CodeChallengeMethodUndefined &&`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`!session.CodeChallengeMethod.Validate(session.CodeChallenge, opts.CodeVerifier) {`
:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`return nil, nil, auth.ErrMismatchPKCE`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`

:sparkles: Added profiles data support 2022-02-17 16:10:52 +00:00			`return session.Me, session.Profile, nil`
:recycle: Refactored auth package 2022-01-13 20:49:41 +00:00			`}`