Bitstackers
diff --git a/‎bin/authserver.dart‎
Lines changed: 1 addition & 2 deletions b/‎bin/authserver.dart‎
Lines changed: 1 addition & 2 deletions
diff --git a/‎lib/auth_server/router.dart‎
Lines changed: 47 additions & 27 deletions b/‎lib/auth_server/router.dart‎
Lines changed: 47 additions & 27 deletions
diff --git a/‎lib/auth_server/router/invalidate.dart‎
Lines changed: 13 additions & 9 deletions b/‎lib/auth_server/router/invalidate.dart‎
Lines changed: 13 additions & 9 deletions
diff --git a/‎lib/auth_server/router/login.dart‎
Lines changed: 27 additions & 8 deletions b/‎lib/auth_server/router/login.dart‎
Lines changed: 27 additions & 8 deletions
diff --git a/‎lib/auth_server/router/oauthcallback.dart‎
Lines changed: 83 additions & 69 deletions b/‎lib/auth_server/router/oauthcallback.dart‎
Lines changed: 83 additions & 69 deletions
@@ -7,7 +7,6 @@ import 'package:logging/logging.dart';
 import '../lib/auth_server/configuration.dart' as auth;
 import '../lib/configuration.dart';
 import '../lib/auth_server/database.dart';
-import 'package:openreception_framework/httpserver.dart' as http;
 import '../lib/auth_server/router.dart' as router;
 import '../lib/auth_server/token_vault.dart';
 import '../lib/auth_server/token_watcher.dart' as watcher;
@@ -37,7 +36,7 @@ void main(List<String> args) {
         .then((_) => startDatabase())
         .then((_) => watcher.setup())
         .then((_) => vault.loadFromDirectory(auth.config.serverTokenDir))
-        .then((_) => http.start(auth.config.httpport, router.setup))
+        .then((_) => router.start())
         .catchError(log.shout);
     }
   } on ArgumentError catch(e) {
 
@@ -1,20 +1,23 @@
 library authenticationserver.router;
 
 import 'dart:async';
-import 'dart:io';
 import 'dart:convert';
+import 'dart:io' as IO;
 
-import 'package:http/http.dart' as http;
-import 'package:route/server.dart';
+import 'package:logging/logging.dart';
+
+import 'package:openreception_framework/service-io.dart' as _transport;
+
+import 'package:shelf/shelf.dart' as shelf;
+import 'package:shelf/shelf_io.dart' as shelf_io;
+import 'package:shelf_route/shelf_route.dart' as shelf_route;
+import 'package:shelf_cors/shelf_cors.dart' as shelf_cors;
 
-//import 'cache.dart' as cache;
 import 'configuration.dart';
 import 'database.dart' as db;
 import 'googleauth.dart';
 import 'token_watcher.dart' as watcher;
 import 'token_vault.dart';
-import 'package:openreception_framework/httpserver.dart';
-import 'package:openreception_framework/common.dart';
 
 part 'router/invalidate.dart';
 part 'router/login.dart';
@@ -24,25 +27,42 @@ part 'router/validate.dart';
 
 part 'router/refresher.dart';
 
-final Pattern anything = new UrlPattern(r'/(.*)');
-final Pattern loginUrl = new UrlPattern('/token/create');
-final Pattern oauthReturnUrl = new UrlPattern('/token/oauth2callback');
-final Pattern userUrl = new UrlPattern('/token/([0-9a-zA-Z]+)');
-final Pattern validateUrl = new UrlPattern('/token/([0-9a-zA-Z]+)/validate');
-final Pattern invalidateUrl = new UrlPattern('/token/([0-9a-zA-Z]+)/invalidate');
-
-final Pattern refreshUrl = new UrlPattern('/token/([0-9a-zA-Z]+)/refresh');
-
-void setup(HttpServer server) {
-  Router router = new Router(server);
-
-  router
-    ..serve(loginUrl, method: 'GET').listen(login)
-    ..serve(oauthReturnUrl, method: 'GET').listen(oauthCallback)
-    ..serve(userUrl, method: 'GET').listen(userinfo)
-    ..serve(validateUrl, method: 'GET').listen(validateToken)
-    ..serve(invalidateUrl, method: 'POST').listen(invalidateToken)
-    ..serve(anything, method: 'OPTIONS').listen(preFlight)
-    ..serve(refreshUrl, method: 'GET').listen(refresher)
-    ..defaultStream.listen(page404);
+const String libraryName = 'authserver.router';
+final Logger log = new Logger(libraryName);
+
+const Map corsHeaders = const {
+  'Access-Control-Allow-Origin': '*',
+  'Access-Control-Allow-Methods': 'GET, PUT, POST, DELETE'
+};
+
+_transport.Client httpClient = new _transport.Client();
+
+/// Simple access logging.
+void _accessLogger(String msg, bool isError) {
+  if (isError) {
+    log.severe(msg);
+  } else {
+    log.finest(msg);
+  }
+}
+
+Future<IO.HttpServer> start({String hostname: '0.0.0.0', int port: 4050}) {
+  var router = shelf_route.router()
+    ..get('/token/create', login)
+    ..get('/token/oauth2callback', oauthCallback)
+    ..get('/token/{token}', userinfo)
+    ..get('/token/{token}/validate', validateToken)
+    ..post('/token/{token}/invalidate', invalidateToken)
+    ..get('/token/{token}/refresh', login);
+
+  var handler = const shelf.Pipeline()
+      .addMiddleware(
+          shelf_cors.createCorsHeadersMiddleware(corsHeaders: corsHeaders))
+      .addMiddleware(shelf.logRequests(logger: _accessLogger))
+      .addHandler(router.handler);
+
+  log.fine('Serving interfaces:');
+  shelf_route.printRoutes(router, printer: log.fine);
+
+  return shelf_io.serve(handler, hostname, port);
 }
@@ -1,17 +1,21 @@
 part of authenticationserver.router;
 
-void invalidateToken(HttpRequest request) {
-  String token = request.uri.pathSegments.elementAt(1);
+shelf.Response invalidateToken(shelf.Request request) {
+  final String token = shelf_route.getPathParameter(request, 'token');
 
-  if(token != null && token.isNotEmpty) {
+  if (token != null && token.isNotEmpty) {
     try {
       vault.removeToken(token);
-      writeAndClose(request, '{}');
-    } catch(error) {
-      serverError(request, 'authenticationserver.router.invalidateToken: Failed to remove token "$token" $error');
+      return new shelf.Response.ok(JSON.encode(const {}));
+    } catch (error, stacktrace) {
+      log.severe(error, stacktrace);
+      return new shelf.Response.internalServerError(
+          body: 'authenticationserver.router.invalidateToken: '
+          'Failed to remove token "$token" $error');
     }
   } else {
-    serverError(request, 'authenticationserver.router.invalidateToken: No token parameter was specified');
+    return new shelf.Response.internalServerError(
+        body: 'authenticationserver.router.invalidateToken: '
+        'No token parameter was specified');
   }
-
-}
+}
@@ -1,26 +1,45 @@
 part of authenticationserver.router;
 
-void login(HttpRequest request) {
+shelf.Response login(shelf.Request request) {
+  final String returnUrlString =
+      request.url.queryParameters
+          .containsKey('returnurl')
+      ? request.url.queryParameters['returnurl']
+      : '';
+
+  log.finest('returnUrlString:$returnUrlString');
+
   try {
     //Because the library does not allow to set custom query parameters
     Map googleParameters = {
       'access_type': 'offline',
       'state': config.clientURL
     };
 
-    if(request.uri.queryParameters.containsKey('returnurl')) {
+    if (returnUrlString.isNotEmpty) {
       //validating the url by parsing it.
-      Uri returnUrl = Uri.parse(request.uri.queryParameters['returnurl']);
+      Uri returnUrl = Uri.parse(returnUrlString);
       googleParameters['state'] = returnUrl.toString();
     }
 
-    Uri authUrl = googleAuthUrl(config.clientId, config.clientSecret, config.redirectUri);
+    Uri authUrl =
+        googleAuthUrl(config.clientId, config.clientSecret, config.redirectUri);
 
     googleParameters.addAll(authUrl.queryParameters);
-    Uri googleOauthRequestUrl = new Uri(scheme: authUrl.scheme, host: authUrl.host, port: authUrl.port, path: authUrl.path, queryParameters: googleParameters, fragment: authUrl.fragment);
-    request.response.redirect(googleOauthRequestUrl);
+    Uri googleOauthRequestUrl = new Uri(
+        scheme: authUrl.scheme,
+        host: authUrl.host,
+        port: authUrl.port,
+        path: authUrl.path,
+        queryParameters: googleParameters,
+        fragment: authUrl.fragment);
+
+    log.finest('Redirecting to $googleOauthRequestUrl');
 
-  } catch(error) {
-    serverError(request, 'authenticationserver.router.login: $error');
+    return new shelf.Response.found(googleOauthRequestUrl);
+  } catch (error, stacktrace) {
+    log.severe(error, stacktrace);
+    return new shelf.Response.internalServerError(
+        body: 'Failed log in error:$error');
   }
 }
@@ -1,85 +1,99 @@
 part of authenticationserver.router;
 
-void oauthCallback(HttpRequest request) {
-  try {
-    //State is used as a return URL.
-    String state = queryParameter(request.uri, 'state');
-    if(state == null) {
-      serverError(request, 'authenticationserver.router.oauthCallback() State parameter is missing "${request.uri}"');
-      return;
-    }
-    Uri returnUrl = Uri.parse(state);
-    Map postBody =
-      {
-        "grant_type": "authorization_code",
-        "code": request.uri.queryParameters['code'],
-        "redirect_uri": config.redirectUri.toString(),
-        "client_id": config.clientId,
-        "client_secret": config.clientSecret
-      };
-    String body = mapToUrlFormEncodedPostBody(postBody);
-    logger.debug('authenticationserver.router.oauthCallback() Sending request to google. "${tokenEndpoint}" body "${body}"');
-
-    //Now we have the "code" which will be exchanged to a token.
-    http.post(tokenEndpoint, headers: {'content-type':'application/x-www-form-urlencoded'}, body: postBody)
-      .then((http.Response response) {
-      Map json = JSON.decode(response.body);
-
-      if(json.containsKey('error')) {
-        serverError(request, 'authenticationserver.router.oauthCallback() Authtication failed. "${json}"');
+Future<shelf.Response> oauthCallback(shelf.Request request) {
+  final String stateString = request.url.queryParameters.containsKey('state')
+      ? request.url.queryParameters['state']
+      : '';
 
-      } else {
-        json['expiresAt'] = dateTimeToJson(new DateTime.now().add(config.tokenexpiretime));
-        return getUserInfo(json['access_token']).then((Map userData) {
-          if(userData == null || userData.isEmpty) {
-            logger.debug('authenticationserver.router.oauthCallback() token:"${json['access_token']}" userdata:"${userData}"');
-            request.response.statusCode = 403;
-            writeAndClose(request, JSON.encode({'status': 'Forbidden!'}));
-
-          } else {
-            json['identity'] = userData;
-
-            String cacheObject = JSON.encode(json);
-            String hash = Sha256Token(cacheObject);
-
-            try {
-              vault.insertToken(hash, json);
-              Map queryParameters = {'settoken' : hash};
-              request.response.redirect(new Uri(
-                  scheme: returnUrl.scheme,
-                  userInfo: returnUrl.userInfo,
-                  host: returnUrl.host,
-                  port: returnUrl.port,
-                  path: returnUrl.path,
-                  queryParameters: queryParameters));
-
-            } catch(error) {
-              serverError(request, 'authenticationserver.router.oauthCallback uri ${request.uri} error: "${error}" data: "$json"');
-            }
+  if (stateString.isEmpty) {
+    return new Future.value(new shelf.Response.internalServerError(
+        body: 'State parameter is missing "${request.url}"'));
+  }
+
+  log.finest('stateString:$stateString');
+
+
+  final Uri returnUrl = Uri.parse(stateString);
+  final Map postBody = {
+    "grant_type": "authorization_code",
+    "code": request.url.queryParameters['code'],
+    "redirect_uri": config.redirectUri.toString(),
+    "client_id": config.clientId,
+    "client_secret": config.clientSecret
+  };
+
+  log.finest(
+      'Sending request to google. "${tokenEndpoint}" body "${postBody}"');
+
+  //Now we have the "code" which will be exchanged to a token.
+  return httpClient.postForm(tokenEndpoint, postBody).then((String response) {
+    Map json = JSON.decode(response);
+
+    if (json.containsKey('error')) {
+      return new shelf.Response.internalServerError(
+          body: 'authenticationserver.router.oauthCallback() '
+          'Authentication failed. "${json}"');
+    } else {
+      ///FIXME: Change to use format from framework AND update the dummy tokens.
+      json['expiresAt'] =
+          new DateTime.now().add(config.tokenexpiretime).toString();
+      return getUserInfo(json['access_token']).then((Map userData) {
+        if (userData == null || userData.isEmpty) {
+          log.finest('authenticationserver.router.oauthCallback() '
+              'token:"${json['access_token']}" userdata:"${userData}"');
+
+          return new shelf.Response.forbidden(
+              JSON.encode(const {'status': 'Forbidden'}));
+        } else {
+          json['identity'] = userData;
+
+          String cacheObject = JSON.encode(json);
+          String hash = Sha256Token(cacheObject);
+
+          try {
+            vault.insertToken(hash, json);
+            Map queryParameters = {'settoken': hash};
+
+            return new shelf.Response.found(new Uri(
+                scheme: returnUrl.scheme,
+                userInfo: returnUrl.userInfo,
+                host: returnUrl.host,
+                port: returnUrl.port,
+                path: returnUrl.path,
+                queryParameters: queryParameters));
+          } catch (error, stackTrace) {
+            log.severe(error, stackTrace);
+
+            return new shelf.Response.internalServerError(
+                body: 'authenticationserver.router.oauthCallback '
+                'uri ${request.url} error: "${error}" data: "$json"');
           }
-        }).catchError((error) {
-          logger.error('authenticationserver.router.oauthCallback() requested userInfo error "${error}"');
-          request.response.statusCode = 403;
-          writeAndClose(request, JSON.encode({'status': 'Forbidden.'}));
-        });
-      }
+        }
+      }).catchError((error, stackTrace) {
+        log.severe(error, stackTrace);
+        return new shelf.Response.forbidden(
+            JSON.encode(const {'status': 'Forbidden'}));
+      });
+    }
+  }).catchError((error, stackTrace) {
+    log.severe(error, stackTrace);
 
-    }).catchError((error) => serverError(request, 'authenticationserver.router.oauthCallback uri ${request.uri} error: "${error}"'));
-  } catch(e) {
-    serverError(request, 'authenticationserver.router.oauthCallback() error "${e}" Url "${request.uri}"');
-  }
+    return new shelf.Response.internalServerError(
+        body: 'authenticationserver.router.oauthCallback uri ${request.url} error: "${error}"');
+  });
 }
 
 /**
  * Asks google for the user data, for the user bound to the [access_token].
  */
 Future<Map> getUserInfo(String access_token) {
-  String url = 'https://www.googleapis.com/oauth2/v1/userinfo?alt=json&access_token=${access_token}';
+  Uri url = Uri.parse('https://www.googleapis.com/oauth2/'
+      'v1/userinfo?alt=json&access_token=${access_token}');
 
-  return http.get(url).then((http.Response response) {
-    Map googleProfile = JSON.decode(response.body);
+  return httpClient.get(url).then((String response) {
+    Map googleProfile = JSON.decode(response);
     return db.getUser(googleProfile['email']).then((Map agent) {
-      if(agent.isNotEmpty) {
+      if (agent.isNotEmpty) {
         agent['remote_attributes'] = googleProfile;
         return agent;
       } else {