Audacity 3.2.0
OAuthService.cpp
Go to the documentation of this file.
1/* SPDX-License-Identifier: GPL-2.0-or-later */
2/*!********************************************************************
3
4 Audacity: A Digital Audio Editor
5
6 OAuthService.cpp
7
8 Dmitry Vedenko
9
10**********************************************************************/
11
12#include "OAuthService.h"
13
14#include <cassert>
15#include <cctype>
16
17#include <rapidjson/document.h>
18#include <rapidjson/writer.h>
19
20#include "CodeConversions.h"
21#include "Prefs.h"
22
23#include "IResponse.h"
24#include "NetworkManager.h"
25#include "Request.h"
26
27#include "ServiceConfig.h"
28
29#include "UrlDecode.h"
30
31#include "BasicUI.h"
32#include "ExportUtils.h"
33
34#include "StringUtils.h"
35
36namespace audacity::cloud::audiocom
37{
38namespace
39{
40
41StringSetting refreshToken { L"/cloud/audiocom/refreshToken", "" };
42
43const std::string_view uriPrefix = "audacity://link";
44const std::string_view usernamePrefix = "username=";
45const std::string_view passwordPrefix = "password=";
46const std::string_view tokenPrefix = "token=";
47const std::string_view authorizationCodePrefix = "authorization_code=";
48
49void WriteCommonFields(
50 rapidjson::Document& document, std::string_view grantType, std::string_view scope)
51{
52 using namespace rapidjson;
53
54 document.AddMember(
55 "grant_type", StringRef(grantType.data(), grantType.size()),
56 document.GetAllocator());
57
58 const auto clientID = GetServiceConfig().GetOAuthClientID();
59 const auto clientSecret = GetServiceConfig().GetOAuthClientSecret();
60
61 document.AddMember(
62 "client_id",
63 Value(clientID.data(), clientID.size(), document.GetAllocator()),
64 document.GetAllocator());
65
66 document.AddMember(
67 "client_secret",
68 Value(clientSecret.data(), clientSecret.size(), document.GetAllocator()),
69 document.GetAllocator());
70
71 document.AddMember(
72 "scope", StringRef(scope.data(), scope.size()), document.GetAllocator());
73}
74
75} // namespace
76
77void OAuthService::ValidateAuth(
78 std::function<void(std::string_view)> completedHandler, AudiocomTrace trace,
79 bool silent)
80{
81 if (HasAccessToken() || !HasRefreshToken())
82 {
83 if (completedHandler)
84 completedHandler(GetAccessToken());
85 return;
86 }
87
88 AuthoriseRefreshToken(
89 GetServiceConfig(), trace, std::move(completedHandler), silent);
90}
91
92bool OAuthService::HandleLinkURI(
93 std::string_view uri, AudiocomTrace trace,
94 std::function<void(std::string_view)> completedHandler)
95{
96 if (!IsPrefixedInsensitive(uri, uriPrefix))
97 {
98 if (completedHandler)
99 completedHandler({});
100 return false;
101 }
102
103 // It was observed, that sometimes link is passed as audacity://link/
104 // This is valid trace URI point of view, but we need to handle it separately
105 const auto argsStart = uri.find("?");
106
107 if (argsStart == std::string_view::npos)
108 {
109 if (completedHandler)
110 completedHandler({});
111 return false;
112 }
113
114 // Length is handled in IsPrefixed
115 auto args = uri.substr(argsStart + 1);
116
117 std::string_view token;
118 std::string_view username;
119 std::string_view password;
120 std::string_view authorizationCode;
121
122 while (!args.empty())
123 {
124 const auto nextArg = args.find('&');
125
126 const auto arg = args.substr(0, nextArg);
127 args = nextArg == std::string_view::npos ? "" : args.substr(nextArg + 1);
128
129 if (IsPrefixed(arg, usernamePrefix))
130 username = arg.substr(usernamePrefix.length());
131 else if (IsPrefixed(arg, passwordPrefix))
132 password = arg.substr(passwordPrefix.length());
133 else if (IsPrefixed(arg, tokenPrefix))
134 token = arg.substr(tokenPrefix.length());
135 else if (IsPrefixed(arg, authorizationCodePrefix))
136 authorizationCode = arg.substr(authorizationCodePrefix.length());
137 }
138
139 // We have a prioritized list of authorization methods
140 if (!authorizationCode.empty())
141 {
142 AuthoriseCode(
143 GetServiceConfig(), authorizationCode, trace,
144 std::move(completedHandler));
145 }
146 else if (!token.empty())
147 {
148 AuthoriseRefreshToken(
149 GetServiceConfig(), token, trace, std::move(completedHandler), false);
150 }
151 else if (!username.empty() && !password.empty())
152 {
153 AuthorisePassword(
154 GetServiceConfig(), audacity::UrlDecode(std::string(username)),
155 audacity::UrlDecode(std::string(password)), trace,
156 std::move(completedHandler));
157 }
158 else
159 {
160 if (completedHandler)
161 completedHandler({});
162
163 return false;
164 }
165
166 return true;
167}
168
169void OAuthService::UnlinkAccount(AudiocomTrace trace)
170{
171 std::lock_guard<std::recursive_mutex> lock(mMutex);
172
173 mAccessToken.clear();
174 refreshToken.Write({});
175 gPrefs->Flush();
176
177 // Unlink account is expected to be called only
178 // on UI thread
179 Publish({ {}, {}, trace, false });
180}
181
182void OAuthService::AuthorisePassword(
183 const ServiceConfig& config, std::string_view userName,
184 std::string_view password, AudiocomTrace trace,
185 std::function<void(std::string_view)> completedHandler)
186{
187 using namespace rapidjson;
188
189 Document document;
190 document.SetObject();
191
192 WriteCommonFields(document, "password", "all");
193
194 document.AddMember(
195 "username", StringRef(userName.data(), userName.size()),
196 document.GetAllocator());
197
198 document.AddMember(
199 "password", StringRef(password.data(), password.size()),
200 document.GetAllocator());
201
202 rapidjson::StringBuffer buffer;
203 rapidjson::Writer<rapidjson::StringBuffer> writer(buffer);
204 document.Accept(writer);
205
206 DoAuthorise(
207 config, { buffer.GetString(), buffer.GetSize() }, trace,
208 std::move(completedHandler), false);
209}
210
211void OAuthService::AuthoriseRefreshToken(
212 const ServiceConfig& config, std::string_view token, AudiocomTrace trace,
213 std::function<void(std::string_view)> completedHandler, bool silent)
214{
215 using namespace rapidjson;
216
217 Document document;
218 document.SetObject();
219
220 WriteCommonFields(document, "refresh_token", "");
221
222 document.AddMember(
223 "refresh_token", StringRef(token.data(), token.size()),
224 document.GetAllocator());
225
226 rapidjson::StringBuffer buffer;
227 rapidjson::Writer<rapidjson::StringBuffer> writer(buffer);
228 document.Accept(writer);
229
230 DoAuthorise(
231 config, { buffer.GetString(), buffer.GetSize() }, trace,
232 std::move(completedHandler), silent);
233}
234
235void OAuthService::AuthoriseRefreshToken(
236 const ServiceConfig& config, AudiocomTrace trace,
237 std::function<void(std::string_view)> completedHandler, bool silent)
238{
239 std::lock_guard<std::recursive_mutex> lock(mMutex);
240
241 AuthoriseRefreshToken(
242 config, audacity::ToUTF8(refreshToken.Read()), trace,
243 std::move(completedHandler), silent);
244}
245
246void OAuthService::AuthoriseCode(
247 const ServiceConfig& config, std::string_view authorizationCode,
248 AudiocomTrace trace, std::function<void(std::string_view)> completedHandler)
249{
250 using namespace rapidjson;
251
252 Document document;
253 document.SetObject();
254
255 WriteCommonFields(document, "authorization_code", "all");
256
257 document.AddMember(
258 "code", StringRef(authorizationCode.data(), authorizationCode.size()),
259 document.GetAllocator());
260
261 const auto redirectURI = config.GetOAuthRedirectURL();
262
263 document.AddMember(
264 "redirect_uri", StringRef(redirectURI.data(), redirectURI.size()),
265 document.GetAllocator());
266
267 rapidjson::StringBuffer buffer;
268 rapidjson::Writer<rapidjson::StringBuffer> writer(buffer);
269 document.Accept(writer);
270
271 DoAuthorise(
272 config, { buffer.GetString(), buffer.GetSize() }, trace,
273 std::move(completedHandler), false);
274}
275
276bool OAuthService::HasAccessToken() const
277{
278 return !GetAccessToken().empty();
279}
280
281bool OAuthService::HasRefreshToken() const
282{
283 std::lock_guard<std::recursive_mutex> lock(mMutex);
284 return !refreshToken.Read().empty();
285}
286
287std::string OAuthService::GetAccessToken() const
288{
289 std::lock_guard<std::recursive_mutex> lock(mMutex);
290
291 if (Clock::now() < mTokenExpirationTime)
292 return mAccessToken;
293
294 return {};
295}
296
297void OAuthService::DoAuthorise(
298 const ServiceConfig& config, std::string_view payload, AudiocomTrace trace,
299 std::function<void(std::string_view)> completedHandler, bool silent)
300{
301 using namespace audacity::network_manager;
302
303 Request request(config.GetAPIUrl("/auth/token"));
304
305 request.setHeader(
306 common_headers::ContentType, common_content_types::ApplicationJson);
307
308 request.setHeader(
309 common_headers::Accept, common_content_types::ApplicationJson);
310
311 auto response = NetworkManager::GetInstance().doPost(
312 request, payload.data(), payload.size());
313
314 response->setRequestFinishedCallback(
315 [response, this, handler = std::move(completedHandler), silent,
316 trace](auto) {
317 const auto httpCode = response->getHTTPCode();
318 const auto body = response->readAll<std::string>();
319
320 if (httpCode != 200)
321 {
322 if (handler)
323 handler({});
324
325 // Token has expired?
326 if (httpCode == 422)
327 BasicUI::CallAfter([this, trace] { UnlinkAccount(trace); });
328 else
329 SafePublish({ {}, body, trace, false, silent });
330
331 return;
332 }
333
334 rapidjson::Document document;
335 document.Parse(body.data(), body.size());
336
337 if (!document.IsObject())
338 {
339 if (handler)
340 handler({});
341
342 SafePublish({ {}, body, trace, false, silent });
343 return;
344 }
345
346 const auto tokenType = document["token_type"].GetString();
347 const auto accessToken = document["access_token"].GetString();
348 const auto expiresIn = document["expires_in"].GetInt64();
349 const auto newRefreshToken = document["refresh_token"].GetString();
350
351 {
352 std::lock_guard<std::recursive_mutex> lock(mMutex);
353
354 mAccessToken = std::string(tokenType) + " " + accessToken;
355 mTokenExpirationTime =
356 Clock::now() + std::chrono::seconds(expiresIn);
357 }
358
359 BasicUI::CallAfter(
360 [token = std::string(newRefreshToken)]()
361 {
362 // At this point access token is already written,
363 // only refresh token is updated.
364 refreshToken.Write(token);
365 gPrefs->Flush();
366 });
367
368 if (handler)
369 handler(mAccessToken);
370
371 // The callback only needs the access token, so invoke it immediately.
372 // Networking is thread safe
373 SafePublish({ mAccessToken, {}, trace, true, silent });
374 });
375}
376
377void OAuthService::SafePublish(const AuthStateChangedMessage& message)
378{
379 BasicUI::CallAfter([this, message]() { Publish(message); });
380}
381
382OAuthService& GetOAuthService()
383{
384 static OAuthService service;
385 return service;
386}
387
388namespace
389{
390
391class OAuthServiceSettingsResetHandler final : public PreferencesResetHandler
392{
393public:
394 void OnSettingResetBegin() override
395 {
396 }
397
398 void OnSettingResetEnd() override
399 {
400 GetOAuthService().UnlinkAccount(AudiocomTrace::ignore);
401 refreshToken.Invalidate();
402 }
403};
404
405static PreferencesResetHandler::Registration<OAuthServiceSettingsResetHandler>
406 resetHandler;
407}
408
409} // namespace audacity::cloud::audiocom
BasicUI.h
Toolkit-neutral facade for basic user interface services.
CodeConversions.h
Declare functions to perform UTF-8 to std::wstring conversions.
AudiocomTrace
AudiocomTrace
Definition: ExportUtils.h:27
IResponse.h
Declare an interface for HTTP response.
NetworkManager.h
Declare a class for performing HTTP requests.
gPrefs
audacity::BasicSettings * gPrefs
Definition: Prefs.cpp:68
Request.h
Declare a class for constructing HTTP requests.
IsPrefixedInsensitive
bool IsPrefixedInsensitive(const HayType &hay, const PrefixType &prefix)
Definition: StringUtils.h:146
IsPrefixed
bool IsPrefixed(const HayType &hay, const PrefixType &prefix)
Definition: StringUtils.h:129
UrlDecode.h
Declare a function to decode an URL encode string.
Observer::Publisher< AuthStateChangedMessage >::Publish
CallbackReturn Publish(const AuthStateChangedMessage &message)
Send a message to connected callbacks.
Definition: Observer.h:207
PreferencesResetHandler
Allows custom logic for preferences reset event.
Definition: Prefs.h:563
Setting::Write
bool Write(const T &value)
Write value to config and return true if successful.
Definition: Prefs.h:259
Setting::Invalidate
void Invalidate() override
Definition: Prefs.h:289
Setting::Read
bool Read(T *pVar) const
overload of Read returning a boolean that is true if the value was previously defined *‍/
Definition: Prefs.h:207
StringSetting
Specialization of Setting for strings.
Definition: Prefs.h:370
audacity::BasicSettings::Flush
virtual bool Flush() noexcept=0
audacity::cloud::audiocom::OAuthService
Service responsible for OAuth authentication against the audio.com service.
Definition: OAuthService.h:43
audacity::cloud::audiocom::OAuthService::HandleLinkURI
bool HandleLinkURI(std::string_view uri, AudiocomTrace, std::function< void(std::string_view)> completedHandler)
Handle the OAuth callback.
Definition: OAuthService.cpp:92
audacity::cloud::audiocom::OAuthService::AuthoriseRefreshToken
void AuthoriseRefreshToken(const ServiceConfig &config, std::string_view refreshToken, AudiocomTrace, std::function< void(std::string_view)> completedHandler, bool silent)
Definition: OAuthService.cpp:211
audacity::cloud::audiocom::OAuthService::SafePublish
void SafePublish(const AuthStateChangedMessage &message)
Definition: OAuthService.cpp:377
audacity::cloud::audiocom::OAuthService::DoAuthorise
void DoAuthorise(const ServiceConfig &config, std::string_view payload, AudiocomTrace, std::function< void(std::string_view)> completedHandler, bool silent)
Definition: OAuthService.cpp:297
audacity::cloud::audiocom::OAuthService::ValidateAuth
void ValidateAuth(std::function< void(std::string_view)> completedHandler, AudiocomTrace, bool silent)
Attempt to authorize the user.
Definition: OAuthService.cpp:77
audacity::cloud::audiocom::OAuthService::AuthorisePassword
void AuthorisePassword(const ServiceConfig &config, std::string_view userName, std::string_view password, AudiocomTrace, std::function< void(std::string_view)> completedHandler)
Definition: OAuthService.cpp:182
audacity::cloud::audiocom::OAuthService::UnlinkAccount
void UnlinkAccount(AudiocomTrace)
Removes access and refresh token, notifies about the logout.
Definition: OAuthService.cpp:169
audacity::cloud::audiocom::OAuthService::AuthoriseCode
void AuthoriseCode(const ServiceConfig &config, std::string_view authorizationCode, AudiocomTrace, std::function< void(std::string_view)> completedHandler)
Definition: OAuthService.cpp:246
audacity::cloud::audiocom::OAuthService::HasAccessToken
bool HasAccessToken() const
Indicates, that service has a valid access token, i. e. that the user is authorized.
Definition: OAuthService.cpp:276
audacity::cloud::audiocom::OAuthService::GetAccessToken
std::string GetAccessToken() const
Return the current access token, if any.
Definition: OAuthService.cpp:287
audacity::cloud::audiocom::ServiceConfig
Configuration for the audio.com.
Definition: ServiceConfig.h:25
audacity::cloud::audiocom::ServiceConfig::GetOAuthRedirectURL
std::string GetOAuthRedirectURL() const
OAuth2 redirect URL. Only used to satisfy the protocol.
Definition: ServiceConfig.cpp:158
audacity::cloud::audiocom::ServiceConfig::GetOAuthClientSecret
std::string GetOAuthClientSecret() const
OAuth2 client secret.
Definition: ServiceConfig.cpp:153
audacity::cloud::audiocom::ServiceConfig::GetAPIUrl
std::string GetAPIUrl(std::string_view apiURI) const
Helper to construct the full URLs for the API.
Definition: ServiceConfig.cpp:163
audacity::cloud::audiocom::ServiceConfig::GetOAuthClientID
std::string GetOAuthClientID() const
OAuth2 client ID.
Definition: ServiceConfig.cpp:148
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::OAuthServiceSettingsResetHandler
Definition: OAuthService.cpp:392
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::OAuthServiceSettingsResetHandler::OnSettingResetBegin
void OnSettingResetBegin() override
Happens before preferences reset.
Definition: OAuthService.cpp:394
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::OAuthServiceSettingsResetHandler::OnSettingResetEnd
void OnSettingResetEnd() override
Happens after preferences reset.
Definition: OAuthService.cpp:398
audacity::network_manager::NetworkManager::GetInstance
static NetworkManager & GetInstance()
Definition: NetworkManager.cpp:40
audacity::network_manager::NetworkManager::doPost
ResponsePtr doPost(const Request &request, const void *data, size_t size)
Definition: NetworkManager.cpp:67
audacity::network_manager::Request
Definition: Request.h:28
audacity::network_manager::Request::setHeader
Request & setHeader(const std::string &name, std::string value)
Definition: Request.cpp:46
BasicUI::CallAfter
void CallAfter(Action action)
Schedule an action to be done later, and in the main thread.
Definition: BasicUI.cpp:214
Tuple::detail::npos
constexpr size_t npos(-1)
anonymous_namespace{wxCommandTargets.cpp}::scope
static CommandContext::TargetFactory::SubstituteInUnique< InteractiveOutputTargets > scope
Definition: wxCommandTargets.cpp:190
audacity::cloud::audiocom::anonymous_namespace{AuthorizationHandler.cpp}::handler
AuthorizationHandler handler
Definition: AuthorizationHandler.cpp:33
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::resetHandler
static PreferencesResetHandler::Registration< OAuthServiceSettingsResetHandler > resetHandler
Definition: OAuthService.cpp:406
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::usernamePrefix
const std::string_view usernamePrefix
Definition: OAuthService.cpp:44
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::passwordPrefix
const std::string_view passwordPrefix
Definition: OAuthService.cpp:45
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::refreshToken
StringSetting refreshToken
Definition: OAuthService.cpp:41
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::tokenPrefix
const std::string_view tokenPrefix
Definition: OAuthService.cpp:46
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::authorizationCodePrefix
const std::string_view authorizationCodePrefix
Definition: OAuthService.cpp:47
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::uriPrefix
const std::string_view uriPrefix
Definition: OAuthService.cpp:43
audacity::cloud::audiocom::anonymous_namespace{OAuthService.cpp}::WriteCommonFields
void WriteCommonFields(rapidjson::Document &document, std::string_view grantType, std::string_view scope)
Definition: OAuthService.cpp:49
audacity::cloud::audiocom::anonymous_namespace{UserService.cpp}::userName
StringSetting userName
Definition: UserService.cpp:45
audacity::cloud::audiocom::GetOAuthService
OAuthService & GetOAuthService()
Returns the instance of the OAuthService.
Definition: OAuthService.cpp:382
audacity::cloud::audiocom::GetServiceConfig
const ServiceConfig & GetServiceConfig()
Returns the instance of the ServiceConfig.
Definition: ServiceConfig.cpp:373
audacity::network_manager::common_content_types::ApplicationJson
const std::string ApplicationJson
Definition: HeadersList.cpp:58
audacity::network_manager::common_headers::Accept
const std::string Accept
Definition: HeadersList.cpp:37
audacity::network_manager::common_headers::ContentType
const std::string ContentType
Definition: HeadersList.cpp:45
audacity::network_manager
Definition: NetworkUtils.h:18
audacity::ToUTF8
std::string ToUTF8(const std::wstring &wstr)
Definition: CodeConversions.cpp:19
audacity::UrlDecode
std::string UrlDecode(const std::string &url)
Definition: UrlDecode.cpp:18
PreferencesResetHandler::Registration
Performs single-time global handler registration.
Definition: Prefs.h:570
audacity::cloud::audiocom::AuthStateChangedMessage
Message that is sent when authorization state changes.
Definition: OAuthService.h:29
Generated by doxygen 1.9.3