2016-11-15 07:56:29 -08:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2016-10-22 10:38:47 -07:00
|
|
|
class Oauth::AuthorizationsController < Doorkeeper::AuthorizationsController
|
2016-10-23 03:05:55 -07:00
|
|
|
skip_before_action :authenticate_resource_owner!
|
|
|
|
|
2016-10-22 10:38:47 -07:00
|
|
|
before_action :store_current_location
|
2016-10-23 03:05:55 -07:00
|
|
|
before_action :authenticate_resource_owner!
|
2017-12-11 15:54:40 -08:00
|
|
|
before_action :set_pack
|
2019-12-29 19:38:30 -08:00
|
|
|
before_action :set_cache_headers
|
2016-10-22 10:38:47 -07:00
|
|
|
|
2022-11-17 12:31:52 -08:00
|
|
|
content_security_policy do |p|
|
|
|
|
p.form_action(false)
|
|
|
|
end
|
|
|
|
|
2017-04-07 17:30:50 -07:00
|
|
|
include Localized
|
|
|
|
|
2016-10-22 10:38:47 -07:00
|
|
|
private
|
|
|
|
|
|
|
|
def store_current_location
|
|
|
|
store_location_for(:user, request.url)
|
|
|
|
end
|
2017-12-11 15:54:40 -08:00
|
|
|
|
|
|
|
def set_pack
|
2017-12-11 16:14:41 -08:00
|
|
|
use_pack 'auth'
|
2017-12-11 15:54:40 -08:00
|
|
|
end
|
2018-09-11 07:51:26 -07:00
|
|
|
|
2018-09-08 19:10:44 -07:00
|
|
|
def render_success
|
|
|
|
if skip_authorization? || (matching_token? && !truthy_param?('force_login'))
|
|
|
|
redirect_or_render authorize_response
|
|
|
|
elsif Doorkeeper.configuration.api_only
|
|
|
|
render json: pre_auth
|
|
|
|
else
|
|
|
|
render :new
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def truthy_param?(key)
|
|
|
|
ActiveModel::Type::Boolean.new.cast(params[key])
|
|
|
|
end
|
2019-12-29 19:38:30 -08:00
|
|
|
|
|
|
|
def set_cache_headers
|
2023-04-19 07:07:29 -07:00
|
|
|
response.cache_control.replace(private: true, no_store: true)
|
2019-12-29 19:38:30 -08:00
|
|
|
end
|
2016-10-22 10:38:47 -07:00
|
|
|
end
|