Audacity 3.2.0
OAuthService.cpp
Go to the documentation of this file.
1/* SPDX-License-Identifier: GPL-2.0-or-later */
2/*!********************************************************************
3
4 Audacity: A Digital Audio Editor
5
6 OAuthService.cpp
7
8 Dmitry Vedenko
9
10**********************************************************************/
11
12#include "OAuthService.h"
13
14#include <cassert>
15#include <cctype>
16
17#include <rapidjson/document.h>
18#include <rapidjson/writer.h>
19
20#include "CodeConversions.h"
21#include "Prefs.h"
22
23#include "IResponse.h"
24#include "NetworkManager.h"
25#include "Request.h"
26
27#include "ServiceConfig.h"
28
29#include "UrlDecode.h"
30
31#include "BasicUI.h"
32
33#include "StringUtils.h"
34
35namespace audacity::cloud::audiocom
36{
37namespace
38{
39
40StringSetting refreshToken { L"/cloud/audiocom/refreshToken", "" };
41
42const std::string_view uriPrefix = "audacity://link";
43const std::string_view usernamePrefix = "username=";
44const std::string_view passwordPrefix = "password=";
45const std::string_view tokenPrefix = "token=";
46const std::string_view authorizationCodePrefix = "authorization_code=";
47
48void WriteCommonFields(
49 rapidjson::Document& document, std::string_view grantType, std::string_view scope)
50{
51 using namespace rapidjson;
52
53 document.AddMember(
54 "grant_type", StringRef(grantType.data(), grantType.size()),
55 document.GetAllocator());
56
57 const auto clientID = GetServiceConfig().GetOAuthClientID();
58 const auto clientSecret = GetServiceConfig().GetOAuthClientSecret();
59
60 document.AddMember(
61 "client_id",
62 Value(clientID.data(), clientID.size(), document.GetAllocator()),
63 document.GetAllocator());
64
65 document.AddMember(
66 "client_secret",
67 Value(clientSecret.data(), clientSecret.size(), document.GetAllocator()),
68 document.GetAllocator());
69
70 document.AddMember(
71 "scope", StringRef(scope.data(), scope.size()), document.GetAllocator());
72}
73
74} // namespace
75
76void OAuthService::ValidateAuth(
77 std::function<void(std::string_view)> completedHandler, bool silent)
78{
79 if (HasAccessToken() || !HasRefreshToken())
80 {
81 if (completedHandler)
82 completedHandler(GetAccessToken());
83 return;
84 }
85
86 AuthoriseRefreshToken(GetServiceConfig(), std::move(completedHandler), silent);
87}
88
89bool OAuthService::HandleLinkURI(
90 std::string_view uri, std::function<void(std::string_view)> completedHandler)
91{
92 if (!IsPrefixedInsensitive(uri, uriPrefix))
93 {
94 if (completedHandler)
95 completedHandler({});
96 return false;
97 }
98
99 // It was observed, that sometimes link is passed as audacity://link/
100 // This is valid from URI point of view, but we need to handle it separately
101 const auto argsStart = uri.find("?");
102
103 if (argsStart == std::string_view::npos)
104 {
105 if (completedHandler)
106 completedHandler({});
107 return false;
108 }
109
110 // Length is handled in IsPrefixed
111 auto args = uri.substr(argsStart + 1);
112
113 std::string_view token;
114 std::string_view username;
115 std::string_view password;
116 std::string_view authorizationCode;
117
118 while (!args.empty())
119 {
120 const auto nextArg = args.find('&');
121
122 const auto arg = args.substr(0, nextArg);
123 args = nextArg == std::string_view::npos ? "" : args.substr(nextArg + 1);
124
125 if (IsPrefixed(arg, usernamePrefix))
126 username = arg.substr(usernamePrefix.length());
127 else if (IsPrefixed(arg, passwordPrefix))
128 password = arg.substr(passwordPrefix.length());
129 else if (IsPrefixed(arg, tokenPrefix))
130 token = arg.substr(tokenPrefix.length());
131 else if (IsPrefixed(arg, authorizationCodePrefix))
132 authorizationCode = arg.substr(authorizationCodePrefix.length());
133 }
134
135 // We have a prioritized list of authorization methods
136 if (!authorizationCode.empty())
137 {
138 AuthoriseCode(
139 GetServiceConfig(), authorizationCode, std::move(completedHandler));
140 }
141 else if (!token.empty())
142 {
143 AuthoriseRefreshToken(
144 GetServiceConfig(), token, std::move(completedHandler), false);
145 }
146 else if (!username.empty() && !password.empty())
147 {
148 AuthorisePassword(
149 GetServiceConfig(),
150 audacity::UrlDecode(std::string(username)),
151 audacity::UrlDecode(std::string(password)),
152 std::move(completedHandler));
153 }
154 else
155 {
156 if (completedHandler)
157 completedHandler({});
158
159 return false;
160 }
161
162 return true;
163}
164
165void OAuthService::UnlinkAccount()
166{
167 std::lock_guard<std::recursive_mutex> lock(mMutex);
168
169 mAccessToken.clear();
170 refreshToken.Write({});
171 gPrefs->Flush();
172
173 // Unlink account is expected to be called only
174 // on UI thread
175 Publish({ {}, {}, false });
176}
177
178void OAuthService::AuthorisePassword(
179 const ServiceConfig& config, std::string_view userName,
180 std::string_view password,
181 std::function<void(std::string_view)> completedHandler)
182{
183 using namespace rapidjson;
184
185 Document document;
186 document.SetObject();
187
188 WriteCommonFields(document, "password", "all");
189
190 document.AddMember(
191 "username", StringRef(userName.data(), userName.size()),
192 document.GetAllocator());
193
194 document.AddMember(
195 "password", StringRef(password.data(), password.size()),
196 document.GetAllocator());
197
198 rapidjson::StringBuffer buffer;
199 rapidjson::Writer<rapidjson::StringBuffer> writer(buffer);
200 document.Accept(writer);
201
202 DoAuthorise(
203 config, { buffer.GetString(), buffer.GetSize() },
204 std::move(completedHandler), false);
205}
206
207void OAuthService::AuthoriseRefreshToken(
208 const ServiceConfig& config, std::string_view token,
209 std::function<void(std::string_view)> completedHandler, bool silent)
210{
211 using namespace rapidjson;
212
213 Document document;
214 document.SetObject();
215
216 WriteCommonFields(document, "refresh_token", "");
217
218 document.AddMember(
219 "refresh_token", StringRef(token.data(), token.size()),
220 document.GetAllocator());
221
222 rapidjson::StringBuffer buffer;
223 rapidjson::Writer<rapidjson::StringBuffer> writer(buffer);
224 document.Accept(writer);
225
226 DoAuthorise(
227 config, { buffer.GetString(), buffer.GetSize() },
228 std::move(completedHandler), silent);
229}
230
231void OAuthService::AuthoriseRefreshToken(
232 const ServiceConfig& config,
233 std::function<void(std::string_view)> completedHandler, bool silent)
234{
235 std::lock_guard<std::recursive_mutex> lock(mMutex);
236
237 AuthoriseRefreshToken(
238 config, audacity::ToUTF8(refreshToken.Read()),
239 std::move(completedHandler), silent);
240}
241
242void OAuthService::AuthoriseCode(
243 const ServiceConfig& config, std::string_view authorizationCode,
244 std::function<void(std::string_view)> completedHandler)
245{
246 using namespace rapidjson;
247
248 Document document;
249 document.SetObject();
250
251 WriteCommonFields(document, "authorization_code", "all");
252
253 document.AddMember(
254 "code", StringRef(authorizationCode.data(), authorizationCode.size()),
255 document.GetAllocator());
256
257 const auto redirectURI = config.GetOAuthRedirectURL();
258
259 document.AddMember(
260 "redirect_uri", StringRef(redirectURI.data(), redirectURI.size()),
261 document.GetAllocator());
262
263 rapidjson::StringBuffer buffer;
264 rapidjson::Writer<rapidjson::StringBuffer> writer(buffer);
265 document.Accept(writer);
266
267 DoAuthorise(
268 config, { buffer.GetString(), buffer.GetSize() },
269 std::move(completedHandler), false);
270}
271
272bool OAuthService::HasAccessToken() const
273{
274 return !GetAccessToken().empty();
275}
276
277bool OAuthService::HasRefreshToken() const
278{
279 std::lock_guard<std::recursive_mutex> lock(mMutex);
280 return !refreshToken.Read().empty();
281}
282
283std::string OAuthService::GetAccessToken() const
284{
285 std::lock_guard<std::recursive_mutex> lock(mMutex);
286
287 if (Clock::now() < mTokenExpirationTime)
288 return mAccessToken;
289
290 return {};
291}
292
293void OAuthService::DoAuthorise(
294 const ServiceConfig& config, std::string_view payload,
295 std::function<void(std::string_view)> completedHandler, bool silent)
296{
297 using namespace audacity::network_manager;
298
299 Request request(config.GetAPIUrl("/auth/token"));
300
301 request.setHeader(
302 common_headers::ContentType, common_content_types::ApplicationJson);
303
304 request.setHeader(
305 common_headers::Accept, common_content_types::ApplicationJson);
306
307 auto response = NetworkManager::GetInstance().doPost(
308 request, payload.data(), payload.size());
309
310 response->setRequestFinishedCallback(
311 [response, this, handler = std::move(completedHandler), silent](auto)
312 {
313 const auto httpCode = response->getHTTPCode();
314 const auto body = response->readAll<std::string>();
315
316 if (httpCode != 200)
317 {
318 if (handler)
319 handler({});
320
321 // Token has expired?
322 if (httpCode == 422)
323 BasicUI::CallAfter([this] { UnlinkAccount(); });
324 else
325 SafePublish({ {}, body, false, silent });
326
327 return;
328 }
329
330 rapidjson::Document document;
331 document.Parse(body.data(), body.size());
332
333 if (!document.IsObject())
334 {
335 if (handler)
336 handler({});
337
338 SafePublish({ {}, body, false, silent });
339 return;
340 }
341
342 const auto tokenType = document["token_type"].GetString();
343 const auto accessToken = document["access_token"].GetString();
344 const auto expiresIn = document["expires_in"].GetInt64();
345 const auto newRefreshToken = document["refresh_token"].GetString();
346
347 {
348 std::lock_guard<std::recursive_mutex> lock(mMutex);
349
350 mAccessToken = std::string(tokenType) + " " + accessToken;
351 mTokenExpirationTime =
352 Clock::now() + std::chrono::seconds(expiresIn);
353 }
354
355 BasicUI::CallAfter(
356 [token = std::string(newRefreshToken)]()
357 {
358 // At this point access token is already written,
359 // only refresh token is updated.
360 refreshToken.Write(token);
361 gPrefs->Flush();
362 });
363
364 if (handler)
365 handler(mAccessToken);
366
367 // The callback only needs the access token, so invoke it immediately.
368 // Networking is thread safe
369 SafePublish({ mAccessToken, {}, true, silent });
370 });
371}
372
373void OAuthService::SafePublish(const AuthStateChangedMessage& message)
374{
375 BasicUI::CallAfter([this, message]() { Publish(message); });
376}
377
378OAuthService& GetOAuthService()
379{
380 static OAuthService service;
381 return service;
382}
383
384namespace
385{
386
387class OAuthServiceSettingsResetHandler final : public PreferencesResetHandler
388{
389public:
390 void OnSettingResetBegin() override
391 {
392 }
393
394 void OnSettingResetEnd() override
395 {
396 GetOAuthService().UnlinkAccount();
397 refreshToken.Invalidate();
398 }
399};
400
401static PreferencesResetHandler::Registration<OAuthServiceSettingsResetHandler>
402 resetHandler;
403}
404
405} // namespace audacity::cloud::audiocom
BasicUI.h
Toolkit-neutral facade for basic user interface services.
CodeConversions.h
Declare functions to perform UTF-8 to std::wstring conversions.
IResponse.h
Declare an interface for HTTP response.
NetworkManager.h
Declare a class for performing HTTP requests.
gPrefs
audacity::BasicSettings * gPrefs
Definition: Prefs.cpp:68
Request.h
Declare a class for constructing HTTP requests.
IsPrefixedInsensitive
bool IsPrefixedInsensitive(const HayType &hay, const PrefixType &prefix)
Definition: StringUtils.h:146
IsPrefixed
bool IsPrefixed(const HayType &hay, const PrefixType &prefix)
Definition: StringUtils.h:129
UrlDecode.h
Declare a function to decode an URL encode string.
Observer::Publisher< AuthStateChangedMessage >::Publish
CallbackReturn Publish(const AuthStateChangedMessage &message)
Send a message to connected callbacks.
Definition: Observer.h:207
PreferencesResetHandler
Allows custom logic for preferences reset event.
Definition: Prefs.h:563
Setting::Write
bool Write(const T &value)
Write value to config and return true if successful.
Definition: Prefs.h:259
Setting::Invalidate
void Invalidate() override
Definition: Prefs.h:289
Setting::Read
bool Read(T *pVar) const
overload of Read returning a boolean that is true if the value was previously defined *‍/
Definition: Prefs.h:207
StringSetting
Specialization of Setting for strings.
Definition: Prefs.h:370
audacity::BasicSettings::Flush
virtual bool Flush() noexcept=0
audacity::cloud::audiocom::OAuthService
Service responsible for OAuth authentication against the audio.com service.
Definition: OAuthService.h:40
audacity::cloud::audiocom::OAuthService::AuthoriseCode
void AuthoriseCode(const ServiceConfig &config, std::string_view authorizationCode, std::function< void(std::string_view)> completedHandler)
Definition: OAuthService.cpp:242
audacity::cloud::audiocom::OAuthService::UnlinkAccount
void UnlinkAccount()
Removes access and refresh token, notifies about the logout.
Definition: OAuthService.cpp:165
audacity::cloud::audiocom::OAuthService::SafePublish
void SafePublish(const AuthStateChangedMessage &message)
Definition: OAuthService.cpp:373
audacity::cloud::audiocom::OAuthService::ValidateAuth
void ValidateAuth(std::function< void(std::string_view)> completedHandler, bool silent)
Attempt to authorize the user.
Definition: OAuthService.cpp:76
audacity::cloud::audiocom::OAuthService::HandleLinkURI
bool HandleLinkURI(std::string_view uri, std::function< void(std::string_view)> completedHandler)
Handle the OAuth callback.
Definition: OAuthService.cpp:89
audacity::cloud::audiocom::OAuthService::AuthorisePassword
void AuthorisePassword(const ServiceConfig &config, std::string_view userName, std::string_view password, std::function< void(std::string_view)> completedHandler)
Definition: OAuthService.cpp:178
audacity::cloud::audiocom::OAuthService::DoAuthorise
void DoAuthorise(const ServiceConfig &config, std::string_view payload, std::function< void(std::string_view)> completedHandler, bool silent)
Definition: OAuthService.cpp:293
audacity::cloud::audiocom::OAuthService::HasAccessToken
bool HasAccessToken() const
Indicates, that service has a valid access token, i. e. that the user is authorized.
Definition: OAuthService.cpp:272
audacity::cloud::audiocom::OAuthService::AuthoriseRefreshToken
void AuthoriseRefreshToken(const ServiceConfig &config, std::string_view refreshToken, std::function< void(std::string_view)> completedHandler, bool silent)
Definition: OAuthService.cpp:207
audacity::cloud::audiocom::OAuthService::GetAccessToken
std::string GetAccessToken() const
Return the current access token, if any.
Definition: OAuthService.cpp:283
audacity::cloud::audiocom::ServiceConfig
Configuration for the audio.com.
Definition: ServiceConfig.h:23
audacity::cloud::audiocom::ServiceConfig::GetOAuthRedirectURL
std::string GetOAuthRedirectURL() const
OAuth2 redirect URL. Only used to satisfy the protocol.
Definition: ServiceConfig.cpp:118
audacity::cloud::audiocom::ServiceConfig::GetOAuthClientSecret
std::string GetOAuthClientSecret() const
OAuth2 client secret.
Definition: ServiceConfig.cpp:113
audacity::cloud::audiocom::ServiceConfig::GetAPIUrl
std::string GetAPIUrl(std::string_view apiURI) const
Helper to construct the full URLs for the API.
Definition: ServiceConfig.cpp:123
audacity::cloud::audiocom::ServiceConfig::GetOAuthClientID
std::string GetOAuthClientID() const
OAuth2 client ID.
Definition: ServiceConfig.cpp:108
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::OAuthServiceSettingsResetHandler
Definition: OAuthService.cpp:388
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::OAuthServiceSettingsResetHandler::OnSettingResetBegin
void OnSettingResetBegin() override
Happens before preferences reset.
Definition: OAuthService.cpp:390
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::OAuthServiceSettingsResetHandler::OnSettingResetEnd
void OnSettingResetEnd() override
Happens after preferences reset.
Definition: OAuthService.cpp:394
audacity::network_manager::NetworkManager::GetInstance
static NetworkManager & GetInstance()
Definition: NetworkManager.cpp:40
audacity::network_manager::NetworkManager::doPost
ResponsePtr doPost(const Request &request, const void *data, size_t size)
Definition: NetworkManager.cpp:67
audacity::network_manager::Request
Definition: Request.h:28
audacity::network_manager::Request::setHeader
Request & setHeader(const std::string &name, std::string value)
Definition: Request.cpp:46
BasicUI::CallAfter
void CallAfter(Action action)
Schedule an action to be done later, and in the main thread.
Definition: BasicUI.cpp:213
Tuple::detail::npos
constexpr size_t npos(-1)
anonymous_namespace{wxCommandTargets.cpp}::scope
static CommandContext::TargetFactory::SubstituteInUnique< InteractiveOutputTargets > scope
Definition: wxCommandTargets.cpp:190
audacity::cloud::audiocom::anonymous_namespace{AuthorizationHandler.cpp}::handler
AuthorizationHandler handler
Definition: AuthorizationHandler.cpp:33
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::resetHandler
static PreferencesResetHandler::Registration< OAuthServiceSettingsResetHandler > resetHandler
Definition: OAuthService.cpp:402
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::usernamePrefix
const std::string_view usernamePrefix
Definition: OAuthService.cpp:43
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::passwordPrefix
const std::string_view passwordPrefix
Definition: OAuthService.cpp:44
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::refreshToken
StringSetting refreshToken
Definition: OAuthService.cpp:40
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::tokenPrefix
const std::string_view tokenPrefix
Definition: OAuthService.cpp:45
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::authorizationCodePrefix
const std::string_view authorizationCodePrefix
Definition: OAuthService.cpp:46
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::uriPrefix
const std::string_view uriPrefix
Definition: OAuthService.cpp:42
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::WriteCommonFields
void WriteCommonFields(rapidjson::Document &document, std::string_view grantType, std::string_view scope)
Definition: OAuthService.cpp:48
audacity::cloud::audiocom::anonymous_namespace{UserService.cpp}::userName
StringSetting userName
Definition: UserService.cpp:45
audacity::cloud::audiocom::GetOAuthService
OAuthService & GetOAuthService()
Returns the instance of the OAuthService.
Definition: OAuthService.cpp:378
audacity::cloud::audiocom::GetServiceConfig
const ServiceConfig & GetServiceConfig()
Returns the instance of the ServiceConfig.
Definition: ServiceConfig.cpp:321
audacity::network_manager::common_content_types::ApplicationJson
const std::string ApplicationJson
Definition: HeadersList.cpp:58
audacity::network_manager::common_headers::Accept
const std::string Accept
Definition: HeadersList.cpp:37
audacity::network_manager::common_headers::ContentType
const std::string ContentType
Definition: HeadersList.cpp:45
audacity::network_manager
Definition: NetworkUtils.h:18
audacity::ToUTF8
std::string ToUTF8(const std::wstring &wstr)
Definition: CodeConversions.cpp:19
audacity::UrlDecode
std::string UrlDecode(const std::string &url)
Definition: UrlDecode.cpp:18
PreferencesResetHandler::Registration
Performs single-time global handler registration.
Definition: Prefs.h:570
audacity::cloud::audiocom::AuthStateChangedMessage
Message that is sent when authorization state changes.
Definition: OAuthService.h:27
Generated by doxygen 1.9.3