Skip to content

Commit

Permalink
feat: after registration code verification hook
Browse files Browse the repository at this point in the history
  • Loading branch information
Benehiko committed Jul 17, 2023
1 parent 85a7885 commit c2a15e3
Show file tree
Hide file tree
Showing 15 changed files with 292 additions and 420 deletions.
14 changes: 9 additions & 5 deletions driver/config/config.go
Original file line number Diff line number Diff line change
Expand Up @@ -224,8 +224,9 @@ type (
Config json.RawMessage `json:"config"`
}
SelfServiceStrategy struct {
Enabled bool `json:"enabled"`
Config json.RawMessage `json:"config"`
Enabled bool `json:"enabled"`
Config json.RawMessage `json:"config"`
AllowedFlows []string `json:"allowed_flows"`
}
Schema struct {
ID string `json:"id" koanf:"id"`
Expand Down Expand Up @@ -727,10 +728,13 @@ func (p *Config) SelfServiceStrategy(ctx context.Context, strategy string) *Self
config = c
}

enabledKey := fmt.Sprintf("%s.%s.enabled", ViperKeySelfServiceStrategyConfig, strategy)
basePath := fmt.Sprintf("%s.%s", ViperKeySelfServiceStrategyConfig, strategy)

enabledKey := fmt.Sprintf("%s.enabled", basePath)
s := &SelfServiceStrategy{
Enabled: pp.Bool(enabledKey),
Config: json.RawMessage(config),
Enabled: pp.Bool(enabledKey),
Config: json.RawMessage(config),
AllowedFlows: pp.Strings(fmt.Sprintf("%s.allowed_flows", basePath)),
}

// The default value can easily be overwritten by setting e.g. `{"selfservice": "null"}` which means that
Expand Down
23 changes: 18 additions & 5 deletions driver/registry_default.go
Original file line number Diff line number Diff line change
Expand Up @@ -96,11 +96,12 @@ type RegistryDefault struct {
persister persistence.Persister
migrationStatus popx.MigrationStatuses

hookVerifier *hook.Verifier
hookSessionIssuer *hook.SessionIssuer
hookSessionDestroyer *hook.SessionDestroyer
hookAddressVerifier *hook.AddressVerifier
hookShowVerificationUI *hook.ShowVerificationUIHook
hookVerifier *hook.Verifier
hookSessionIssuer *hook.SessionIssuer
hookSessionDestroyer *hook.SessionDestroyer
hookAddressVerifier *hook.AddressVerifier
hookShowVerificationUI *hook.ShowVerificationUIHook
hookCodeAddressVerifier *hook.CodeAddressVerifier

identityHandler *identity.Handler
identityValidator *identity.Validator
Expand Down Expand Up @@ -329,6 +330,12 @@ func (m *RegistryDefault) selfServiceStrategies() []interface{} {
func (m *RegistryDefault) RegistrationStrategies(ctx context.Context) (registrationStrategies registration.Strategies) {
for _, strategy := range m.selfServiceStrategies() {
if s, ok := strategy.(registration.Strategy); ok {
// the code method needs to be checked explicitly for registration
// TODO: we need to somehow check if the `code` strategy is enabled specifically for registration
// if s.ID() == identity.CredentialsTypeCodeAuth && m.Config().SelfServiceStrategy(ctx, string(s.ID())).RegistrationEnabled {
// registrationStrategies = append(registrationStrategies, s)
// continue
// }
if m.Config().SelfServiceStrategy(ctx, string(s.ID())).Enabled {
registrationStrategies = append(registrationStrategies, s)
}
Expand All @@ -351,6 +358,12 @@ func (m *RegistryDefault) AllRegistrationStrategies() registration.Strategies {
func (m *RegistryDefault) LoginStrategies(ctx context.Context) (loginStrategies login.Strategies) {
for _, strategy := range m.selfServiceStrategies() {
if s, ok := strategy.(login.Strategy); ok {
// the code method needs to be checked explicity for login
// TODO: we need to somwhow check if the `code` strategy is enabled specifically for login
// if s.ID() == identity.CredentialsTypeCodeAuth && m.Config().SelfServiceStrategy(ctx, string(s.ID())).LoginEnabled {
// loginStrategies = append(loginStrategies, s)
// continue
// }
if m.Config().SelfServiceStrategy(ctx, string(s.ID())).Enabled {
loginStrategies = append(loginStrategies, s)
}
Expand Down
7 changes: 7 additions & 0 deletions driver/registry_default_hooks.go
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,13 @@ func (m *RegistryDefault) HookVerifier() *hook.Verifier {
return m.hookVerifier
}

func (m *RegistryDefault) HookCodeAddressVerifier() *hook.CodeAddressVerifier {
if m.hookCodeAddressVerifier == nil {
m.hookCodeAddressVerifier = hook.NewCodeAddressVerifier(m)
}
return m.hookCodeAddressVerifier
}

func (m *RegistryDefault) HookSessionIssuer() *hook.SessionIssuer {
if m.hookSessionIssuer == nil {
m.hookSessionIssuer = hook.NewSessionIssuer(m)
Expand Down
6 changes: 6 additions & 0 deletions driver/registry_default_registration.go
Original file line number Diff line number Diff line change
Expand Up @@ -28,6 +28,12 @@ func (m *RegistryDefault) PostRegistrationPostPersistHooks(ctx context.Context,
initialHookCount = 1
}

// TODO: this needs to be specific to the flow and not just the `code` general strategy
if m.Config().SelfServiceStrategy(ctx, identity.CredentialsTypeCodeAuth.String()).Enabled {
b = append(b, m.HookCodeAddressVerifier())
initialHookCount += 1
}

for _, v := range m.getHooks(string(credentialsType), m.Config().SelfServiceFlowRegistrationAfterHooks(ctx, string(credentialsType))) {
if hook, ok := v.(registration.PostHookPostPersistExecutor); ok {
b = append(b, hook)
Expand Down
Loading

0 comments on commit c2a15e3

Please sign in to comment.