zitadel/internal/api/ui/login/login_success_handler.go

package login

import (
	"context"
	"net/http"

	"github.com/zitadel/zitadel/internal/domain"
	caos_errs "github.com/zitadel/zitadel/internal/errors"
)

const (
	tmplLoginSuccess = "login_success"
)

type loginSuccessData struct {
	userData
	RedirectURI string `schema:"redirect-uri"`
}

func (l *Login) redirectToLoginSuccess(w http.ResponseWriter, r *http.Request, id string) {
	http.Redirect(w, r, l.renderer.pathPrefix+EndpointLoginSuccess+"?authRequestID="+id, http.StatusFound)
}

func (l *Login) handleLoginSuccess(w http.ResponseWriter, r *http.Request) {
	authRequest, _ := l.getAuthRequest(r)
	if authRequest == nil {
		l.renderSuccessAndCallback(w, r, nil, nil)
		return
	}
	for _, step := range authRequest.PossibleSteps {
		if step.Type() != domain.NextStepLoginSucceeded && step.Type() != domain.NextStepRedirectToCallback {
			l.renderNextStep(w, r, authRequest)
			return
		}
	}
	l.renderSuccessAndCallback(w, r, authRequest, nil)
}

func (l *Login) renderSuccessAndCallback(w http.ResponseWriter, r *http.Request, authReq *domain.AuthRequest, err error) {
	var errID, errMessage string
	if err != nil {
		errID, errMessage = l.getErrorMessage(r, err)
	}
	data := loginSuccessData{
		userData: l.getUserData(r, authReq, "LoginSuccess.Title", "", errID, errMessage),
	}
	if authReq != nil {
		data.RedirectURI, err = l.authRequestCallback(r.Context(), authReq)
		if err != nil {
			l.renderInternalError(w, r, authReq, err)
			return
		}
	}
	l.renderer.RenderTemplate(w, r, l.getTranslator(r.Context(), authReq), l.renderer.Templates[tmplLoginSuccess], data, nil)
}

func (l *Login) redirectToCallback(w http.ResponseWriter, r *http.Request, authReq *domain.AuthRequest) {
	callback, err := l.authRequestCallback(r.Context(), authReq)
	if err != nil {
		l.renderInternalError(w, r, authReq, err)
		return
	}
	http.Redirect(w, r, callback, http.StatusFound)
}

func (l *Login) authRequestCallback(ctx context.Context, authReq *domain.AuthRequest) (string, error) {
	switch authReq.Request.(type) {
	case *domain.AuthRequestOIDC:
		return l.oidcAuthCallbackURL(ctx, authReq.ID), nil
	case *domain.AuthRequestSAML:
		return l.samlAuthCallbackURL(ctx, authReq.ID), nil
	default:
		return "", caos_errs.ThrowInternal(nil, "LOGIN-rhjQF", "Errors.AuthRequest.RequestTypeNotSupported")
	}
}
feat: run on a single port (#3163) * start v2 * start * run * some cleanup * remove v2 pkg again * simplify * webauthn * remove unused config * fix login path in Dockerfile * fix asset_generator.go * health handler * fix grpc web * refactor * merge * build new main.go * run new main.go * update logging pkg * fix error msg * update logging * cleanup * cleanup * go mod tidy * change localDevMode * fix customEndpoints * update logging * comments * change local flag to external configs * fix location generated go code * fix Co-authored-by: fforootd <florian@caos.ch> 2022-02-14 17:22:30 +01:00			`package login`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00
			`import (`
feat: allow skip of success page for native apps (#5627) add possibility to return to callback directly after login without rendering the successful login page 2023-04-11 17:07:32 +02:00			`"context"`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`"net/http"`

chore(v2): move to new org (#3499) * chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com> 2022-04-27 01:01:45 +02:00			`"github.com/zitadel/zitadel/internal/domain"`
feat(saml): implementation of saml for ZITADEL v2 (#3618) 2022-09-12 17:18:08 +01:00			`caos_errs "github.com/zitadel/zitadel/internal/errors"`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`)`

			`const (`
			`tmplLoginSuccess = "login_success"`
			`)`

			`type loginSuccessData struct {`
			`userData`
			RedirectURI string `schema:"redirect-uri"`
			`}`

			`func (l Login) redirectToLoginSuccess(w http.ResponseWriter, r http.Request, id string) {`
			`http.Redirect(w, r, l.renderer.pathPrefix+EndpointLoginSuccess+"?authRequestID="+id, http.StatusFound)`
			`}`

			`func (l Login) handleLoginSuccess(w http.ResponseWriter, r http.Request) {`
			`authRequest, _ := l.getAuthRequest(r)`
feat: display login succeeded page only for native apps (#2839) 2021-12-14 09:47:49 +01:00			`if authRequest == nil {`
			`l.renderSuccessAndCallback(w, r, nil, nil)`
fix: panics (#2993) * add missing return Signed-off-by: Livio Amstutz <livio.a@gmail.com> * add nil pointer check Signed-off-by: Livio Amstutz <livio.a@gmail.com> 2022-01-12 15:31:11 +01:00			`return`
feat: display login succeeded page only for native apps (#2839) 2021-12-14 09:47:49 +01:00			`}`
			`for _, step := range authRequest.PossibleSteps {`
			`if step.Type() != domain.NextStepLoginSucceeded && step.Type() != domain.NextStepRedirectToCallback {`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`l.renderNextStep(w, r, authRequest)`
			`return`
			`}`
			`}`
			`l.renderSuccessAndCallback(w, r, authRequest, nil)`
			`}`

			`func (l Login) renderSuccessAndCallback(w http.ResponseWriter, r http.Request, authReq *domain.AuthRequest, err error) {`
fix: err id as title (shown on hover) (#1895) 2021-06-18 10:31:53 +02:00			`var errID, errMessage string`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`if err != nil {`
fix: err id as title (shown on hover) (#1895) 2021-06-18 10:31:53 +02:00			`errID, errMessage = l.getErrorMessage(r, err)`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`}`
			`data := loginSuccessData{`
feat: remove org (#4148) * feat(command): remove org * refactor: imports, unused code, error handling * reduce org removed in action * add org deletion to projections * add org removal to projections * add org removal to projections * org removed projection * lint import * projections * fix: table names in tests * fix: table names in tests * logging * add org state * fix(domain): add Owner removed to object details * feat(ListQuery): add with owner removed * fix(org-delete): add bool to functions to select with owner removed * fix(org-delete): add bools to user grants with events to determine if dependencies lost owner * fix(org-delete): add unit tests for owner removed and org removed events * fix(org-delete): add handling of org remove for grants and members * fix(org-delete): correction of unit tests for owner removed * fix(org-delete): update projections, unit tests and get functions * fix(org-delete): add change date to authnkeys and owner removed to org metadata * fix(org-delete): include owner removed for login names * fix(org-delete): some column fixes in projections and build for queries with owner removed * indexes * fix(org-delete): include review changes * fix(org-delete): change user projection name after merge * fix(org-delete): include review changes for project grant where no project owner is necessary * fix(org-delete): include auth and adminapi tables with owner removed information * fix(org-delete): cleanup username and orgdomain uniqueconstraints when org is removed * fix(org-delete): add permissions for org.remove * remove unnecessary unique constraints * fix column order in primary keys * fix(org-delete): include review changes * fix(org-delete): add owner removed indexes and chang setup step to create tables * fix(org-delete): move PK order of instance_id and change added user_grant from review * fix(org-delete): no params for prepareUserQuery * change to step 6 * merge main * fix(org-delete): OldUserName rename to private * fix linting * cleanup * fix: remove org test * create prerelease * chore: delete org-delete as prerelease Co-authored-by: Stefan Benz <stefan@caos.ch> Co-authored-by: Livio Spring <livio.a@gmail.com> Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com> Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com> 2022-11-30 17:01:17 +01:00			`userData: l.getUserData(r, authReq, "LoginSuccess.Title", "", errID, errMessage),`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`}`
			`if authReq != nil {`
feat: allow skip of success page for native apps (#5627) add possibility to return to callback directly after login without rendering the successful login page 2023-04-11 17:07:32 +02:00			`data.RedirectURI, err = l.authRequestCallback(r.Context(), authReq)`
			`if err != nil {`
			`l.renderInternalError(w, r, authReq, err)`
			`return`
feat(saml): implementation of saml for ZITADEL v2 (#3618) 2022-09-12 17:18:08 +01:00			`}`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`}`
feat: complete dynamic domain handling (#3482) * feat: dynamic issuer * feat: default language from context * remove zitadel docs from defaults * remove ConsoleOverwriteDir * remove notification endpoints from defaults * custom domains in emails * remove (external) domain * external domain completely removed, console handling fixed * fix test * fix defaults.yaml 2022-04-25 11:16:36 +02:00			`l.renderer.RenderTemplate(w, r, l.getTranslator(r.Context(), authReq), l.renderer.Templates[tmplLoginSuccess], data, nil)`
feat: login success page (#1849) * feat: login success page * fix: script import on mfa verify 2021-06-10 14:18:07 +02:00			`}`
feat: display login succeeded page only for native apps (#2839) 2021-12-14 09:47:49 +01:00
			`func (l Login) redirectToCallback(w http.ResponseWriter, r http.Request, authReq *domain.AuthRequest) {`
feat: allow skip of success page for native apps (#5627) add possibility to return to callback directly after login without rendering the successful login page 2023-04-11 17:07:32 +02:00			`callback, err := l.authRequestCallback(r.Context(), authReq)`
			`if err != nil {`
			`l.renderInternalError(w, r, authReq, err)`
			`return`
			`}`
			`http.Redirect(w, r, callback, http.StatusFound)`
			`}`

			`func (l Login) authRequestCallback(ctx context.Context, authReq domain.AuthRequest) (string, error) {`
feat(saml): implementation of saml for ZITADEL v2 (#3618) 2022-09-12 17:18:08 +01:00			`switch authReq.Request.(type) {`
			`case *domain.AuthRequestOIDC:`
feat: allow skip of success page for native apps (#5627) add possibility to return to callback directly after login without rendering the successful login page 2023-04-11 17:07:32 +02:00			`return l.oidcAuthCallbackURL(ctx, authReq.ID), nil`
feat(saml): implementation of saml for ZITADEL v2 (#3618) 2022-09-12 17:18:08 +01:00			`case *domain.AuthRequestSAML:`
feat: allow skip of success page for native apps (#5627) add possibility to return to callback directly after login without rendering the successful login page 2023-04-11 17:07:32 +02:00			`return l.samlAuthCallbackURL(ctx, authReq.ID), nil`
feat(saml): implementation of saml for ZITADEL v2 (#3618) 2022-09-12 17:18:08 +01:00			`default:`
feat: allow skip of success page for native apps (#5627) add possibility to return to callback directly after login without rendering the successful login page 2023-04-11 17:07:32 +02:00			`return "", caos_errs.ThrowInternal(nil, "LOGIN-rhjQF", "Errors.AuthRequest.RequestTypeNotSupported")`
feat(saml): implementation of saml for ZITADEL v2 (#3618) 2022-09-12 17:18:08 +01:00			`}`
feat: display login succeeded page only for native apps (#2839) 2021-12-14 09:47:49 +01:00			`}`