yesod-auth-oauth2/example/Main.hs

{-# LANGUAGE MultiParamTypeClasses #-}
{-# LANGUAGE OverloadedStrings #-}
{-# LANGUAGE QuasiQuotes #-}
{-# LANGUAGE RecordWildCards #-}
{-# LANGUAGE TemplateHaskell #-}
{-# LANGUAGE TypeApplications #-}
{-# LANGUAGE TypeFamilies #-}

module Main where

import Data.Aeson
import Data.Aeson.Encode.Pretty
import Data.ByteString.Lazy (fromStrict, toStrict)
import qualified Data.Map as M
import Data.Maybe (fromJust)
import Data.String (IsString(fromString))
import Data.Text (Text, pack)
import qualified Data.Text as T
import Data.Text.Encoding (decodeUtf8)
import LoadEnv
import Network.HTTP.Conduit
import Network.Wai.Handler.Warp (runEnv)
import System.Environment (getEnv)
import Yesod
import Yesod.Auth
import Yesod.Auth.OAuth2.Auth0
import Yesod.Auth.OAuth2.AzureAD
import Yesod.Auth.OAuth2.AzureADv2
import Yesod.Auth.OAuth2.BattleNet
import Yesod.Auth.OAuth2.Bitbucket
import Yesod.Auth.OAuth2.ClassLink
import Yesod.Auth.OAuth2.EveOnline
import Yesod.Auth.OAuth2.GitHub
import Yesod.Auth.OAuth2.GitLab
import Yesod.Auth.OAuth2.Google
import Yesod.Auth.OAuth2.Nylas
import Yesod.Auth.OAuth2.Salesforce
import Yesod.Auth.OAuth2.Slack
import Yesod.Auth.OAuth2.Spotify
import Yesod.Auth.OAuth2.Twitch
import Yesod.Auth.OAuth2.Upcase
import Yesod.Auth.OAuth2.WordPressDotCom

data App = App
  { appHttpManager :: Manager
  , appAuthPlugins :: [AuthPlugin App]
  }

mkYesod "App" [parseRoutes|
    / RootR GET
    /auth AuthR Auth getAuth
|]

instance Yesod App where
    -- see https://github.com/thoughtbot/yesod-auth-oauth2/issues/87
  approot = ApprootStatic "http://localhost:3000"

instance YesodAuth App where
  type AuthId App = Text
  loginDest _ = RootR
  logoutDest _ = RootR

  -- Disable any attempt to read persisted authenticated state
  maybeAuthId = return Nothing

  -- Copy the Creds response into the session for viewing after
  authenticate c = do
    mapM_ (uncurry setSession)
      $ [("credsIdent", credsIdent c), ("credsPlugin", credsPlugin c)]
      ++ credsExtra c

    return $ Authenticated "1"

  authPlugins = appAuthPlugins

instance RenderMessage App FormMessage where
  renderMessage _ _ = defaultFormMessage

-- brittany-disable-next-binding

getRootR :: Handler Html
getRootR = do
    sess <- getSession

    let
        prettify
            = decodeUtf8
            . toStrict
            . encodePretty
            . fromJust
            . decode @Value
            . fromStrict

        mCredsIdent = decodeUtf8 <$> M.lookup "credsIdent" sess
        mCredsPlugin = decodeUtf8 <$> M.lookup "credsPlugin" sess
        mAccessToken = decodeUtf8 <$> M.lookup "accessToken" sess
        mUserResponse = prettify <$> M.lookup "userResponse" sess

    defaultLayout [whamlet|
        <h1>Yesod Auth OAuth2 Example
        <h2>
            <a href=@{AuthR LoginR}>Log in

        <h2>Credentials

        <h3>Plugin / Ident
        <p>#{show mCredsPlugin} / #{show mCredsIdent}

        <h3>Access Token
        <p>#{show mAccessToken}

        <h3>User Response
        <pre>
            $maybe userResponse <- mUserResponse
                #{userResponse}
    |]

mkFoundation :: IO App
mkFoundation = do
  loadEnv

  auth0Host <- getEnv "AUTH0_HOST"
  azureTenant <- getEnv "AZURE_ADV2_TENANT_ID"

  appHttpManager <- newManager tlsManagerSettings
  appAuthPlugins <- sequence
      -- When Providers are added, add them here and update .env.example.
      -- Nothing else should need changing.
      --
      -- FIXME: oauth2BattleNet is quite annoying!
      --
    [ loadPlugin oauth2AzureAD "AZURE_AD"
    , loadPlugin (oauth2AzureADv2 $ pack azureTenant) "AZURE_ADV2"
    , loadPlugin (oauth2Auth0Host $ fromString auth0Host) "AUTH0"
    , loadPlugin (oauth2BattleNet [whamlet|TODO|] "en") "BATTLE_NET"
    , loadPlugin oauth2Bitbucket "BITBUCKET"
    , loadPlugin oauth2ClassLink "CLASSLINK"
    , loadPlugin (oauth2Eve Plain) "EVE_ONLINE"
    , loadPlugin oauth2GitHub "GITHUB"
    , loadPlugin oauth2GitLab "GITLAB"
    , loadPlugin oauth2Google "GOOGLE"
    , loadPlugin oauth2Nylas "NYLAS"
    , loadPlugin oauth2Salesforce "SALES_FORCE"
    , loadPlugin oauth2Slack "SLACK"
    , loadPlugin (oauth2Spotify []) "SPOTIFY"
    , loadPlugin oauth2Twitch "TWITCH"
    , loadPlugin oauth2WordPressDotCom "WORDPRESS_DOT_COM"
    , loadPlugin oauth2Upcase "UPCASE"
    ]

  return App { .. }
 where
  loadPlugin f prefix = do
    clientId <- getEnv $ prefix <> "_CLIENT_ID"
    clientSecret <- getEnv $ prefix <> "_CLIENT_SECRET"
    pure $ f (T.pack clientId) (T.pack clientSecret)

main :: IO ()
main = runEnv 3000 =<< toWaiApp =<< mkFoundation