| Matthias Andreas Benkard | 832a54e | 2019-01-29 09:27:38 +0100 | [diff] [blame^] | 1 | // Copyright 2015 go-swagger maintainers |
| 2 | // |
| 3 | // Licensed under the Apache License, Version 2.0 (the "License"); |
| 4 | // you may not use this file except in compliance with the License. |
| 5 | // You may obtain a copy of the License at |
| 6 | // |
| 7 | // http://www.apache.org/licenses/LICENSE-2.0 |
| 8 | // |
| 9 | // Unless required by applicable law or agreed to in writing, software |
| 10 | // distributed under the License is distributed on an "AS IS" BASIS, |
| 11 | // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| 12 | // See the License for the specific language governing permissions and |
| 13 | // limitations under the License. |
| 14 | |
| 15 | package spec |
| 16 | |
| 17 | import ( |
| 18 | "encoding/json" |
| 19 | |
| 20 | "github.com/go-openapi/jsonpointer" |
| 21 | "github.com/go-openapi/swag" |
| 22 | ) |
| 23 | |
| 24 | const ( |
| 25 | basic = "basic" |
| 26 | apiKey = "apiKey" |
| 27 | oauth2 = "oauth2" |
| 28 | implicit = "implicit" |
| 29 | password = "password" |
| 30 | application = "application" |
| 31 | accessCode = "accessCode" |
| 32 | ) |
| 33 | |
| 34 | // BasicAuth creates a basic auth security scheme |
| 35 | func BasicAuth() *SecurityScheme { |
| 36 | return &SecurityScheme{SecuritySchemeProps: SecuritySchemeProps{Type: basic}} |
| 37 | } |
| 38 | |
| 39 | // APIKeyAuth creates an api key auth security scheme |
| 40 | func APIKeyAuth(fieldName, valueSource string) *SecurityScheme { |
| 41 | return &SecurityScheme{SecuritySchemeProps: SecuritySchemeProps{Type: apiKey, Name: fieldName, In: valueSource}} |
| 42 | } |
| 43 | |
| 44 | // OAuth2Implicit creates an implicit flow oauth2 security scheme |
| 45 | func OAuth2Implicit(authorizationURL string) *SecurityScheme { |
| 46 | return &SecurityScheme{SecuritySchemeProps: SecuritySchemeProps{ |
| 47 | Type: oauth2, |
| 48 | Flow: implicit, |
| 49 | AuthorizationURL: authorizationURL, |
| 50 | }} |
| 51 | } |
| 52 | |
| 53 | // OAuth2Password creates a password flow oauth2 security scheme |
| 54 | func OAuth2Password(tokenURL string) *SecurityScheme { |
| 55 | return &SecurityScheme{SecuritySchemeProps: SecuritySchemeProps{ |
| 56 | Type: oauth2, |
| 57 | Flow: password, |
| 58 | TokenURL: tokenURL, |
| 59 | }} |
| 60 | } |
| 61 | |
| 62 | // OAuth2Application creates an application flow oauth2 security scheme |
| 63 | func OAuth2Application(tokenURL string) *SecurityScheme { |
| 64 | return &SecurityScheme{SecuritySchemeProps: SecuritySchemeProps{ |
| 65 | Type: oauth2, |
| 66 | Flow: application, |
| 67 | TokenURL: tokenURL, |
| 68 | }} |
| 69 | } |
| 70 | |
| 71 | // OAuth2AccessToken creates an access token flow oauth2 security scheme |
| 72 | func OAuth2AccessToken(authorizationURL, tokenURL string) *SecurityScheme { |
| 73 | return &SecurityScheme{SecuritySchemeProps: SecuritySchemeProps{ |
| 74 | Type: oauth2, |
| 75 | Flow: accessCode, |
| 76 | AuthorizationURL: authorizationURL, |
| 77 | TokenURL: tokenURL, |
| 78 | }} |
| 79 | } |
| 80 | |
| 81 | type SecuritySchemeProps struct { |
| 82 | Description string `json:"description,omitempty"` |
| 83 | Type string `json:"type"` |
| 84 | Name string `json:"name,omitempty"` // api key |
| 85 | In string `json:"in,omitempty"` // api key |
| 86 | Flow string `json:"flow,omitempty"` // oauth2 |
| 87 | AuthorizationURL string `json:"authorizationUrl,omitempty"` // oauth2 |
| 88 | TokenURL string `json:"tokenUrl,omitempty"` // oauth2 |
| 89 | Scopes map[string]string `json:"scopes,omitempty"` // oauth2 |
| 90 | } |
| 91 | |
| 92 | // AddScope adds a scope to this security scheme |
| 93 | func (s *SecuritySchemeProps) AddScope(scope, description string) { |
| 94 | if s.Scopes == nil { |
| 95 | s.Scopes = make(map[string]string) |
| 96 | } |
| 97 | s.Scopes[scope] = description |
| 98 | } |
| 99 | |
| 100 | // SecurityScheme allows the definition of a security scheme that can be used by the operations. |
| 101 | // Supported schemes are basic authentication, an API key (either as a header or as a query parameter) |
| 102 | // and OAuth2's common flows (implicit, password, application and access code). |
| 103 | // |
| 104 | // For more information: http://goo.gl/8us55a#securitySchemeObject |
| 105 | type SecurityScheme struct { |
| 106 | VendorExtensible |
| 107 | SecuritySchemeProps |
| 108 | } |
| 109 | |
| 110 | // JSONLookup implements an interface to customize json pointer lookup |
| 111 | func (s SecurityScheme) JSONLookup(token string) (interface{}, error) { |
| 112 | if ex, ok := s.Extensions[token]; ok { |
| 113 | return &ex, nil |
| 114 | } |
| 115 | |
| 116 | r, _, err := jsonpointer.GetForToken(s.SecuritySchemeProps, token) |
| 117 | return r, err |
| 118 | } |
| 119 | |
| 120 | // MarshalJSON marshal this to JSON |
| 121 | func (s SecurityScheme) MarshalJSON() ([]byte, error) { |
| 122 | b1, err := json.Marshal(s.SecuritySchemeProps) |
| 123 | if err != nil { |
| 124 | return nil, err |
| 125 | } |
| 126 | b2, err := json.Marshal(s.VendorExtensible) |
| 127 | if err != nil { |
| 128 | return nil, err |
| 129 | } |
| 130 | return swag.ConcatJSON(b1, b2), nil |
| 131 | } |
| 132 | |
| 133 | // UnmarshalJSON marshal this from JSON |
| 134 | func (s *SecurityScheme) UnmarshalJSON(data []byte) error { |
| 135 | if err := json.Unmarshal(data, &s.SecuritySchemeProps); err != nil { |
| 136 | return err |
| 137 | } |
| 138 | if err := json.Unmarshal(data, &s.VendorExtensible); err != nil { |
| 139 | return err |
| 140 | } |
| 141 | return nil |
| 142 | } |