globuzma/canaille-globuzma
1
0
Fork 0
forked from Github-Mirrors/canaille
Code Pull requests Activity

chore: demo client registration

Browse source
This commit is contained in:
Éloi Rivard 2023-12-24 12:08:06 +01:00
parent 772a364128
commit 14a93ad104
No known key found for this signature in database
GPG key ID: 7EDA204EA57DD184
9 changed files with 39 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

20
demo/client/__init__.py
View file

@ -25,6 +25,24 @@ def setup_routes(app):
"index.html", user=session.get("user"), name=app.config["NAME"] "index.html", user=session.get("user"), name=app.config["NAME"]
) )
@app.route("/register")
def register():
return oauth.canaille.authorize_redirect(
url_for("register_callback", _external=True), prompt="create"
)
@app.route("/register_callback")
def register_callback():
try:
token = oauth.canaille.authorize_access_token()
session["user"] = token.get("userinfo")
session["id_token"] = token["id_token"]
flash("You account has been successfully created.", "success")
except AuthlibBaseError as exc:
flash(f"An error happened during registration: {exc.description}", "error")
return redirect(url_for("index"))
@app.route("/login") @app.route("/login")
def login(): def login():
return oauth.canaille.authorize_redirect( return oauth.canaille.authorize_redirect(
@ -39,7 +57,7 @@ def setup_routes(app):
session["id_token"] = token["id_token"] session["id_token"] = token["id_token"]
flash("You have been successfully logged in.", "success") flash("You have been successfully logged in.", "success")
except AuthlibBaseError as exc: except AuthlibBaseError as exc:
flash(f"You have not been logged in: {exc.description}", "error") flash(f"An error happened during login: {exc.description}", "error")
return redirect(url_for("index")) return redirect(url_for("index"))

8
demo/client/templates/index.html
View file

@ -118,7 +118,7 @@
</a> </a>
<a class="ui huge negative button" href="{{ url_for('logout') }}"> <a class="ui huge negative button" href="{{ url_for('logout') }}">
Log out Log out
<i class="right arrow icon"></i> <i class="sign out icon"></i>
</a> </a>
</div> </div>
{% else %} {% else %}
@ -126,9 +126,13 @@
<a href="{{ config.OAUTH_AUTH_SERVER }}" target="_blank" class="ui huge button"> <a href="{{ config.OAUTH_AUTH_SERVER }}" target="_blank" class="ui huge button">
Identity server Identity server
</a> </a>
<a class="ui huge primary button" href="{{ url_for('register') }}">
Sign up
<i class="handshake icon"></i>
</a>
<a class="ui huge primary button" href="{{ url_for('login') }}"> <a class="ui huge primary button" href="{{ url_for('login') }}">
Sign in Sign in
<i class="right arrow icon"></i> <i class="sign in icon"></i>
</a> </a>
</div> </div>
{% endif %} {% endif %}

2
demo/conf-docker/canaille-ldap.toml
View file

@ -43,7 +43,7 @@ FAVICON = "/static/img/canaille-c.webp"
# By default, this is true if SMTP is configured, else this is false. # By default, this is true if SMTP is configured, else this is false.
# If explicitely set to true and SMTP is disabled, the email field # If explicitely set to true and SMTP is disabled, the email field
# will be read-only. # will be read-only.
# EMAIL_CONFIRMATION = EMAIL_CONFIRMATION = false
# If ENABLE_REGISTRATION is true, then users can freely create an account # If ENABLE_REGISTRATION is true, then users can freely create an account
# at this instance. If email verification is available, users must confirm # at this instance. If email verification is available, users must confirm

2
demo/conf-docker/canaille-memory.toml
View file

@ -43,7 +43,7 @@ FAVICON = "/static/img/canaille-c.webp"
# By default, this is true if SMTP is configured, else this is false. # By default, this is true if SMTP is configured, else this is false.
# If explicitely set to true and SMTP is disabled, the email field # If explicitely set to true and SMTP is disabled, the email field
# will be read-only. # will be read-only.
# EMAIL_CONFIRMATION = EMAIL_CONFIRMATION = false
# If ENABLE_REGISTRATION is true, then users can freely create an account # If ENABLE_REGISTRATION is true, then users can freely create an account
# at this instance. If email verification is available, users must confirm # at this instance. If email verification is available, users must confirm

2
demo/conf-docker/canaille-sql.toml
View file

@ -43,7 +43,7 @@ FAVICON = "/static/img/canaille-c.webp"
# By default, this is true if SMTP is configured, else this is false. # By default, this is true if SMTP is configured, else this is false.
# If explicitely set to true and SMTP is disabled, the email field # If explicitely set to true and SMTP is disabled, the email field
# will be read-only. # will be read-only.
# EMAIL_CONFIRMATION = EMAIL_CONFIRMATION = false
# If ENABLE_REGISTRATION is true, then users can freely create an account # If ENABLE_REGISTRATION is true, then users can freely create an account
# at this instance. If email verification is available, users must confirm # at this instance. If email verification is available, users must confirm

2
demo/conf/canaille-ldap.toml
View file

@ -43,7 +43,7 @@ FAVICON = "/static/img/canaille-c.webp"
# By default, this is true if SMTP is configured, else this is false. # By default, this is true if SMTP is configured, else this is false.
# If explicitely set to true and SMTP is disabled, the email field # If explicitely set to true and SMTP is disabled, the email field
# will be read-only. # will be read-only.
# EMAIL_CONFIRMATION = EMAIL_CONFIRMATION = false
# If ENABLE_REGISTRATION is true, then users can freely create an account # If ENABLE_REGISTRATION is true, then users can freely create an account
# at this instance. If email verification is available, users must confirm # at this instance. If email verification is available, users must confirm

2
demo/conf/canaille-memory.toml
View file

@ -43,7 +43,7 @@ FAVICON = "/static/img/canaille-c.webp"
# By default, this is true if SMTP is configured, else this is false. # By default, this is true if SMTP is configured, else this is false.
# If explicitely set to true and SMTP is disabled, the email field # If explicitely set to true and SMTP is disabled, the email field
# will be read-only. # will be read-only.
# EMAIL_CONFIRMATION = EMAIL_CONFIRMATION = false
# If ENABLE_REGISTRATION is true, then users can freely create an account # If ENABLE_REGISTRATION is true, then users can freely create an account
# at this instance. If email verification is available, users must confirm # at this instance. If email verification is available, users must confirm

2
demo/conf/canaille-sql.toml
View file

@ -43,7 +43,7 @@ FAVICON = "/static/img/canaille-c.webp"
# By default, this is true if SMTP is configured, else this is false. # By default, this is true if SMTP is configured, else this is false.
# If explicitely set to true and SMTP is disabled, the email field # If explicitely set to true and SMTP is disabled, the email field
# will be read-only. # will be read-only.
# EMAIL_CONFIRMATION = EMAIL_CONFIRMATION = false
# If ENABLE_REGISTRATION is true, then users can freely create an account # If ENABLE_REGISTRATION is true, then users can freely create an account
# at this instance. If email verification is available, users must confirm # at this instance. If email verification is available, users must confirm

10
demo/demoapp.py
View file

@ -107,7 +107,10 @@ def populate(app):
client_name="Client1", client_name="Client1",
contacts=["admin@mydomain.tld"], contacts=["admin@mydomain.tld"],
client_uri="http://localhost:5001", client_uri="http://localhost:5001",
redirect_uris=["http://localhost:5001/login_callback"], redirect_uris=[
"http://localhost:5001/login_callback",
"http://localhost:5001/register_callback",
],
post_logout_redirect_uris=["http://localhost:5001/logout_callback"], post_logout_redirect_uris=["http://localhost:5001/logout_callback"],
tos_uri="http://localhost:5001/tos", tos_uri="http://localhost:5001/tos",
policy_uri="http://localhost:5001/policy", policy_uri="http://localhost:5001/policy",
@ -127,7 +130,10 @@ def populate(app):
contacts=["admin@mydomain.tld"], contacts=["admin@mydomain.tld"],
client_uri="http://localhost:5002", client_uri="http://localhost:5002",
redirect_uris=["http://localhost:5002/login_callback"], redirect_uris=["http://localhost:5002/login_callback"],
post_logout_redirect_uris=["http://localhost:5002/logout_callback"], post_logout_redirect_uris=[
"http://localhost:5002/logout_callback",
"http://localhost:5002/register_callback",
],
tos_uri="http://localhost:5002/tos", tos_uri="http://localhost:5002/tos",
policy_uri="http://localhost:5002/policy", policy_uri="http://localhost:5002/policy",
grant_types=["authorization_code", "refresh_token"], grant_types=["authorization_code", "refresh_token"],