1
0
Fork 0
mirror of https://we.phorge.it/source/phorge.git synced 2025-01-17 10:11:10 +01:00

Straighten out absolute/relative URIs in login providers

Summary:
Ref T4339. Login providers use absolute URIs, but the ones that rely on local form submits should not, because we want to include CSRF tokens where applicable.

Instead, make the default be relative URIs and turn them into absolute ones for the callback proivders.

Test Plan: Clicked, like, every login button.

Reviewers: btrahan

Reviewed By: btrahan

CC: aran

Maniphest Tasks: T4339

Differential Revision: https://secure.phabricator.com/D8045
This commit is contained in:
epriestley 2014-01-23 14:03:44 -08:00
parent a2515921b6
commit 24544b1a2f
12 changed files with 14 additions and 15 deletions

View file

@ -259,8 +259,7 @@ abstract class PhabricatorAuthProvider {
public function getLoginURI() { public function getLoginURI() {
$app = PhabricatorApplication::getByClass('PhabricatorApplicationAuth'); $app = PhabricatorApplication::getByClass('PhabricatorApplicationAuth');
$uri = $app->getApplicationURI('/login/'.$this->getProviderKey().'/'); return $app->getApplicationURI('/login/'.$this->getProviderKey().'/');
return PhabricatorEnv::getURI($uri);
} }
public function getSettingsURI() { public function getSettingsURI() {

View file

@ -25,7 +25,7 @@ abstract class PhabricatorAuthProviderOAuth extends PhabricatorAuthProvider {
$adapter->setClientSecret( $adapter->setClientSecret(
new PhutilOpaqueEnvelope( new PhutilOpaqueEnvelope(
$config->getProperty(self::PROPERTY_APP_SECRET))); $config->getProperty(self::PROPERTY_APP_SECRET)));
$adapter->setRedirectURI($this->getLoginURI()); $adapter->setRedirectURI(PhabricatorEnv::getURI($this->getLoginURI()));
return $adapter; return $adapter;
} }

View file

@ -30,7 +30,7 @@ abstract class PhabricatorAuthProviderOAuth1 extends PhabricatorAuthProvider {
if (strlen($secret)) { if (strlen($secret)) {
$adapter->setConsumerSecret(new PhutilOpaqueEnvelope($secret)); $adapter->setConsumerSecret(new PhutilOpaqueEnvelope($secret));
} }
$adapter->setCallbackURI($this->getLoginURI()); $adapter->setCallbackURI(PhabricatorEnv::getURI($this->getLoginURI()));
return $adapter; return $adapter;
} }

View file

@ -21,7 +21,7 @@ final class PhabricatorAuthProviderOAuth1JIRA
"**Step 1 of 2**: Provide the name and URI for your JIRA install.\n\n". "**Step 1 of 2**: Provide the name and URI for your JIRA install.\n\n".
"In the next step, you will configure JIRA."); "In the next step, you will configure JIRA.");
} else { } else {
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"**Step 2 of 2**: In this step, you will configure JIRA.\n\n". "**Step 2 of 2**: In this step, you will configure JIRA.\n\n".
"**Create a JIRA Application**: Log into JIRA and go to ". "**Create a JIRA Application**: Log into JIRA and go to ".

View file

@ -8,7 +8,7 @@ final class PhabricatorAuthProviderOAuth1Twitter
} }
public function getConfigurationHelp() { public function getConfigurationHelp() {
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"To configure Twitter OAuth, create a new application here:". "To configure Twitter OAuth, create a new application here:".

View file

@ -8,7 +8,7 @@ final class PhabricatorAuthProviderOAuthAmazon
} }
public function getConfigurationHelp() { public function getConfigurationHelp() {
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
$uri = new PhutilURI(PhabricatorEnv::getProductionURI('/')); $uri = new PhutilURI(PhabricatorEnv::getProductionURI('/'));
$https_note = null; $https_note = null;

View file

@ -9,7 +9,7 @@ final class PhabricatorAuthProviderOAuthAsana
public function getConfigurationHelp() { public function getConfigurationHelp() {
$app_uri = PhabricatorEnv::getProductionURI('/'); $app_uri = PhabricatorEnv::getProductionURI('/');
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"To configure Asana OAuth, create a new application here:". "To configure Asana OAuth, create a new application here:".

View file

@ -8,7 +8,7 @@ final class PhabricatorAuthProviderOAuthDisqus
} }
public function getConfigurationHelp() { public function getConfigurationHelp() {
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"To configure Disqus OAuth, create a new application here:". "To configure Disqus OAuth, create a new application here:".

View file

@ -9,7 +9,7 @@ final class PhabricatorAuthProviderOAuthGitHub
public function getConfigurationHelp() { public function getConfigurationHelp() {
$uri = PhabricatorEnv::getProductionURI('/'); $uri = PhabricatorEnv::getProductionURI('/');
$callback_uri = $this->getLoginURI(); $callback_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"To configure GitHub OAuth, create a new GitHub Application here:". "To configure GitHub OAuth, create a new GitHub Application here:".
@ -38,7 +38,7 @@ final class PhabricatorAuthProviderOAuthGitHub
public function getLoginURI() { public function getLoginURI() {
// TODO: Clean this up. See PhabricatorAuthOldOAuthRedirectController. // TODO: Clean this up. See PhabricatorAuthOldOAuthRedirectController.
return PhabricatorEnv::getURI('/oauth/github/login/'); return '/oauth/github/login/';
} }
} }

View file

@ -8,7 +8,7 @@ final class PhabricatorAuthProviderOAuthGoogle
} }
public function getConfigurationHelp() { public function getConfigurationHelp() {
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"To configure Google OAuth, create a new 'API Project' here:". "To configure Google OAuth, create a new 'API Project' here:".
@ -38,7 +38,7 @@ final class PhabricatorAuthProviderOAuthGoogle
public function getLoginURI() { public function getLoginURI() {
// TODO: Clean this up. See PhabricatorAuthOldOAuthRedirectController. // TODO: Clean this up. See PhabricatorAuthOldOAuthRedirectController.
return PhabricatorEnv::getURI('/oauth/google/login/'); return '/oauth/google/login/';
} }
} }

View file

@ -8,7 +8,7 @@ final class PhabricatorAuthProviderOAuthTwitch
} }
public function getConfigurationHelp() { public function getConfigurationHelp() {
$login_uri = $this->getLoginURI(); $login_uri = PhabricatorEnv::getURI($this->getLoginURI());
return pht( return pht(
"To configure Twitch.tv OAuth, create a new application here:". "To configure Twitch.tv OAuth, create a new application here:".

View file

@ -29,7 +29,7 @@ final class PhabricatorAuthProviderPersona
Javelin::initBehavior( Javelin::initBehavior(
'persona-login', 'persona-login',
array( array(
'loginURI' => $this->getLoginURI(), 'loginURI' => PhabricatorEnv::getURI($this->getLoginURI()),
)); ));
return $this->renderStandardLoginButton( return $this->renderStandardLoginButton(