Added oauth2 access endpoint override option

2025-04-14 22:36:37 +02:00
parent f56f592c4c
commit 0b0c9304b1
2 changed files with 17 additions and 9 deletions
--- a/Moonlight.ApiServer/Configuration/AppConfiguration.cs
+++ b/Moonlight.ApiServer/Configuration/AppConfiguration.cs
@@ -41,6 +41,7 @@ public class AppConfiguration
            public string ClientId { get; set; } = Formatter.GenerateString(8);
            public string ClientSecret { get; set; } = Formatter.GenerateString(32);
            public string? AuthorizationEndpoint { get; set; }
+            public string? AccessEndpoint { get; set; }
            public string? AuthorizationRedirect { get; set; }
        }
    }
--- a/Moonlight.ApiServer/Http/Controllers/Auth/AuthController.cs
+++ b/Moonlight.ApiServer/Http/Controllers/Auth/AuthController.cs
@@ -40,7 +40,7 @@ public class AuthController : Controller
        RedirectUri = string.IsNullOrEmpty(Configuration.Authentication.OAuth2.AuthorizationRedirect)
            ? Configuration.PublicUrl
            : Configuration.Authentication.OAuth2.AuthorizationRedirect;
-        
+
        EndpointUri = string.IsNullOrEmpty(Configuration.Authentication.OAuth2.AuthorizationEndpoint)
            ? Configuration.PublicUrl + "/oauth2/authorize"
            : Configuration.Authentication.OAuth2.AuthorizationEndpoint;
@@ -65,14 +65,21 @@ public class AuthController : Controller
    public async Task<LoginCompleteResponse> Complete([FromBody] LoginCompleteRequest request)
    {
        // TODO: Make modular
-        
+
        // Create http client to call the auth provider
        using var httpClient = new HttpClient();
-        httpClient.BaseAddress = new Uri(Configuration.PublicUrl);
-        httpClient.DefaultRequestHeaders.Add("Authorization", $"Basic {Configuration.Authentication.OAuth2.ClientSecret}");
        
+        httpClient.BaseAddress = new Uri(
+            string.IsNullOrEmpty(Configuration.Authentication.OAuth2.AccessEndpoint)
+                ? Configuration.PublicUrl
+                : Configuration.Authentication.OAuth2.AccessEndpoint
+        );
+        
+        httpClient.DefaultRequestHeaders.Add("Authorization",
+            $"Basic {Configuration.Authentication.OAuth2.ClientSecret}");
+
        var httpApiClient = new HttpApiClient(httpClient);
-        
+
        // Call the auth provider
        OAuth2HandleResponse handleData;

@@ -96,7 +103,7 @@ public class AuthController : Controller

            throw new HttpApiException("Unable to request user data", 500);
        }
-        
+
        // Handle the returned data
        var userId = handleData.UserId;

@@ -106,10 +113,10 @@ public class AuthController : Controller

        if (user == null)
            throw new HttpApiException("Unable to load user data", 500);
-        
+
        //
        var permissions = JsonSerializer.Deserialize<string[]>(user.PermissionsJson) ?? [];
-        
+
        // Generate token
        var securityTokenDescriptor = new SecurityTokenDescriptor()
        {
@@ -157,7 +164,7 @@ public class AuthController : Controller
        var user = await UserRepository.Get().FirstAsync(x => x.Id == userId);

        var permissions = JsonSerializer.Deserialize<string[]>(user.PermissionsJson) ?? [];
-        
+
        return new()
        {
            Email = user.Email,