summaryrefslogtreecommitdiffstats
path: root/extensions/GitHubAuth/Extension.pm
blob: d68934be42dd7b22fc4ed1d8e75c37e128bbbef4 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
#
# This Source Code Form is "Incompatible With Secondary Licenses", as
# defined by the Mozilla Public License, v. 2.0.

package Bugzilla::Extension::GitHubAuth;

use 5.10.1;
use strict;
use parent qw(Bugzilla::Extension);

use Bugzilla::Extension::GitHubAuth::Client;
use Bugzilla::Extension::GitHubAuth::Util qw(target_uri);

use Bugzilla::Error;
use Bugzilla::Util qw(trick_taint);
use List::Util qw(first);
use URI;
use URI::QueryParam;

our $VERSION = '0.01';

BEGIN {
    # Monkey-patch can() on Bugzilla::Auth::Login::CGI so that our own fail_nodata gets called.
    # Our fail_nodata behaves like CGI's, so this shouldn't be a problem for CGI-based logins.

    *Bugzilla::Auth::Login::CGI::can = sub {
        my ($stack, $method) = @_;

        return undef if $method eq 'fail_nodata';
        return $stack->UNIVERSAL::can($method);
    };
}

sub install_before_final_checks {
    Bugzilla::Group->create({
        name        => 'no-github-auth',
        description => 'Group containing groups whose members may not use GitHubAuth to log in',
        isbuggroup  => 0,
    }) unless Bugzilla::Group->new({ name => 'no-github-auth' });
}

sub template_before_create {
    my ($self, $args) = @_;

    return if Bugzilla->user->id && !Bugzilla->cgi->param('logout');

    $args->{config}{VARIABLES}{github_auth} = {
        login => sub {
            return Bugzilla::Extension::GitHubAuth::Client->login_uri(target_uri());
        },
    };
}

sub attachment_should_redirect_login {
    my ($self, $args) = @_;
    my $cgi = Bugzilla->cgi;

    if ($cgi->param('github_state') || $cgi->param('github_email')) {
        ${$args->{do_redirect}} = 1;
    }
}

sub auth_login_methods {
    my ($self, $args) = @_;
    my $modules = $args->{'modules'};
    if (exists $modules->{'GitHubAuth'}) {
        $modules->{'GitHubAuth'} = 'Bugzilla/Extension/GitHubAuth/Login.pm';
    }
}

sub auth_verify_methods {
    my ($self, $args) = @_;
    my $modules = $args->{'modules'};
    if (exists $modules->{'GitHubAuth'}) {
        $modules->{'GitHubAuth'} = 'Bugzilla/Extension/GitHubAuth/Verify.pm';
    }
}

sub config_modify_panels {
    my ($self, $args) = @_;
    my $auth_panel_params = $args->{panels}{auth}{params};

    my $user_info_class = first { $_->{name} eq 'user_info_class' } @$auth_panel_params;
    if ($user_info_class) {
        push @{ $user_info_class->{choices} }, "GitHubAuth,CGI", "Persona,GitHubAuth,CGI";
    }

    my $user_verify_class = first { $_->{name} eq 'user_verify_class' } @$auth_panel_params;
    if ($user_verify_class) {
        unshift @{ $user_verify_class->{choices} }, "GitHubAuth";
    }
}

sub config_add_panels {
    my ($self, $args) = @_;
    my $modules = $args->{panel_modules};
    $modules->{GitHubAuth} = "Bugzilla::Extension::GitHubAuth::Config";
}

__PACKAGE__->NAME;