package openidConnect import ( "encoding/json" "errors" "github.com/markbates/goth" "golang.org/x/oauth2" "strings" "time" ) // Session stores data during the auth process with the OpenID Connect provider. type Session struct { AuthURL string AccessToken string RefreshToken string ExpiresAt time.Time IDToken string } // GetAuthURL will return the URL set by calling the `BeginAuth` function on the OpenID Connect provider. func (s Session) GetAuthURL() (string, error) { if s.AuthURL == "" { return "", errors.New("an AuthURL has not be set") } return s.AuthURL, nil } // Authorize the session with the OpenID Connect provider and return the access token to be stored for future use. func (s *Session) Authorize(provider goth.Provider, params goth.Params) (string, error) { p := provider.(*Provider) token, err := p.config.Exchange(oauth2.NoContext, params.Get("code")) if err != nil { return "", err } if !token.Valid() { return "", errors.New("Invalid token received from provider") } s.AccessToken = token.AccessToken s.RefreshToken = token.RefreshToken s.ExpiresAt = token.Expiry s.IDToken = token.Extra("id_token").(string) return token.AccessToken, err } // Marshal the session into a string func (s Session) Marshal() string { b, _ := json.Marshal(s) return string(b) } func (s Session) String() string { return s.Marshal() } // UnmarshalSession will unmarshal a JSON string into a session. func (p *Provider) UnmarshalSession(data string) (goth.Session, error) { sess := &Session{} err := json.NewDecoder(strings.NewReader(data)).Decode(sess) return sess, err }