You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

155 lines
3.8 KiB

7 years ago
// Copyright 2017 Drone.IO Inc. All rights reserved.
// Use of this source code is governed by a BSD-style
// license that can be found in the LICENSE file.
package main
import (
7 years ago
7 years ago
var (
provider = flag.String("provider", "github", "")
providerURL = flag.String("provider-url", "", "")
clientID = flag.String("client-id", "", "")
clientSecret = flag.String("client-secret", "", "")
consumerKey = flag.String("consumer-key", "", "")
consumerRsa = flag.String("consumer-private-key", "", "")
7 years ago
redirectURL = flag.String("redirect-url", "http://localhost:8080/login", "")
address = flag.String("address", ":8080", "")
help = flag.Bool("help", false, "")
func main() {
flag.Usage = usage
if *help {
var middleware login.Middleware
7 years ago
switch *provider {
case "gogs", "gitea":
middleware = &gogs.Config{
Login: "/login/form",
Server: *providerURL,
7 years ago
case "gitlab":
middleware = &gitlab.Config{
ClientID: *clientID,
ClientSecret: *clientSecret,
RedirectURL: *redirectURL,
Scope: []string{"read_user", "api"},
7 years ago
case "github":
middleware = &github.Config{
ClientID: *clientID,
ClientSecret: *clientSecret,
Scope: []string{"repo", "user", "read:org"},
7 years ago
case "bitbucket":
middleware = &bitbucket.Config{
ClientID: *clientID,
ClientSecret: *clientSecret,
RedirectURL: *redirectURL,
case "stash":
privateKey, err := stash.ParsePrivateKeyFile(*consumerRsa)
if err != nil {
6 years ago
log.Fatalf("Cannot parse Private Key. %s", err)
middleware = &stash.Config{
Address: *providerURL,
CallbackURL: *redirectURL,
ConsumerKey: *consumerKey,
PrivateKey: privateKey,
7 years ago
// handles the authorization flow and displays the
// authorization results at completion.
http.Handle("/login/form", http.HandlerFunc(form))
http.Handle("/login", middleware.Handler(
7 years ago
// redirects the user to the login handler.
http.Handle("/", http.RedirectHandler("/login", http.StatusSeeOther))
http.ListenAndServe(*address, nil)
// returns the login credentials.
func details(w http.ResponseWriter, r *http.Request) {
ctx := r.Context()
err := login.ErrorFrom(ctx)
if err != nil {
fmt.Fprintf(w, failure, err)
token := login.TokenFrom(ctx)
fmt.Fprintf(w, success, token.Access, token.Refresh)
7 years ago
// display the login form.
func form(w http.ResponseWriter, r *http.Request) {
w.Header().Set("Content-Type", "text/html")
fmt.Fprint(w, loginForm)
// html page displayed to collect credentials.
var loginForm = `
<form method="POST" action="/login">
<input type="text" name="username" />
<input type="password" name="password" />
<input type="submit" />
// html page displayed on success.
var success = `
<h1>Access Token</h1>
<h1>Refresh / Secret Token</h1>
7 years ago
// html page displayed on failure.
var failure = `
func usage() {
fmt.Println(`Usage: go run main.go [OPTION]...
--provider provider (github, gitlab, gogs, gitea, bitbucket)
--provider-url provider url (gitea, gogs, stash only)
--client-id oauth2 client id
--client-secret oauth2 client secret
--consumer-key oauth1 consumer key
--consumer-private-key oauth1 consumer rsa private key file
--redirect-url oauth redirect url
--address http server address (:8080)
--help display this help and exit`)
7 years ago