auth
auth/authd/templates/simple.gotmpl
Implement postgres version of scopeStore. Update the authd server to use postgres as its scopeStore, instead of memstore. panic when starting the authd server if the CreateScopes call fails. This should, ideally, ignore ErrScopeAlreadyExists errors, but does not as of this commit. Update the simple.gotmpl template to properly display scopes, after switching to the Scope type instead of simply passing around the string the client supplied broke the template and I never bothered fixing it. Update the updateScopes method on the scopeStore (and the corresponding UpdateScopes method on the Context type) to be updateScope/UpdateScope. Operating on several scopes at a time like that is simply too challenging in SQL and I can't justify the complexity with a use case. Add a helper method to ScopeChange called Empty(), which returns true if the ScopeChange is full of nil values. Remove the ID from the ScopeChange type, because we're no longer accepting multiple ScopeChange types in UpdateScope, so we can supply that information outside the ScopeChange, which matches the rest of our update* methods. Correct our tests in scope_test.go to correctly use the updateScope method instead of the old updateScopes method. This generally just resulted in calling updateScope multiple times, as opposed to just once. Add a scope table initialization to the sql/postgres_init.sql script.
| paddy@100 | 1 {{ define "login" }}<html> |
| paddy@100 | 2 <head> |
| paddy@100 | 3 <title>Log in</title> |
| paddy@100 | 4 </head> |
| paddy@100 | 5 <body> |
| paddy@100 | 6 <h1>Please log into your account</h1>{{ if .errors }} |
| paddy@100 | 7 <h2>Errors:</h2> |
| paddy@100 | 8 <ul>{{ range .errors }} |
| paddy@100 | 9 <li>{{ . }}</li> |
| paddy@100 | 10 </ul>{{ end }}{{ end }} |
| paddy@100 | 11 <form method="POST"> |
| paddy@100 | 12 <p>Username: <input type="text" name="login"></p> |
| paddy@100 | 13 <p>Password: <input type="password" name="passphrase"></p> |
| paddy@100 | 14 <p><input type="submit"></p> |
| paddy@100 | 15 </form> |
| paddy@100 | 16 </body> |
| paddy@100 | 17 </html>{{ end }} |
| paddy@106 | 18 |
| paddy@106 | 19 {{ define "get_grant" }}<html> |
| paddy@106 | 20 <head> |
| paddy@106 | 21 <title>Grant access</title> |
| paddy@106 | 22 </head> |
| paddy@106 | 23 <body>{{ if .error }} |
| paddy@106 | 24 <h1>Error</h1> |
| paddy@106 | 25 <p>{{ .error }}</p>{{ end }}{{ if .internal_error }} |
| paddy@106 | 26 <h1>Error</h1> |
| paddy@106 | 27 <p>{{ .internal_error }}</p>{{ end }}{{ if not .error }}{{ if not .internal_error }}<h1>Grant access</h1> |
| paddy@152 | 28 <p>{{ .client.Name }} is requesting access to your account. if you grant it, you'll be redirected to {{ .redirectURL }}.{{ if .scopes }} Their access will be limited to:</p> |
| paddy@152 | 29 <ul>{{ range .scopes }} |
| paddy@152 | 30 <li>{{ .Name }}{{ if .Description }}: {{ .Description }}{{ end }}</li>{{ end }} |
| paddy@152 | 31 </ul>{{ end }} |
| paddy@152 | 32 <p>You are granting access for {{ .profile.Name }}.</p>{{ end }}{{ end }} |
| paddy@108 | 33 <form method="POST"> |
| paddy@108 | 34 <input type="submit" name="grant" value="approved"> |
| paddy@132 | 35 <input type="hidden" name="csrftoken" value="{{ .csrftoken }}"> |
| paddy@108 | 36 </form> |
| paddy@106 | 37 </body> |
| paddy@106 | 38 </html>{{ end }} |