R/api_slides_auth.R
In ladder: Get on to the Slides

Documented in ladder_api_key ladder_auth ladder_auth_configure ladder_deauth ladder_has_token ladder_oauth_client ladder_token ladder_user

## This file is the interface between ladder and the
## auth functionality in gargle.

# Initialization happens in .onLoad()
.auth <- NULL

## The roxygen comments for these functions are mostly generated from data
## in this list and template text maintained in gargle.
gargle_lookup_table <- list(
  PACKAGE     = "ladder",
  YOUR_STUFF  = "your presentations",
  PRODUCT     = "Google Slides",
  API         = "Slides API",
  PREFIX      = "ladder"
)

#' Authorize ladder
#'
#' @eval gargle:::PREFIX_auth_description(gargle_lookup_table)
#' @eval gargle:::PREFIX_auth_details(gargle_lookup_table)
#' @eval gargle:::PREFIX_auth_params()
#' @param scopes A character vector of scopes to request.
#'   Pick from those listed at <https://developers.google.com/identity/protocols/oauth2/scopes>.
#' @returns Called for side-effect. Returns invisible `NULL`.
#' @family auth functions
#' @export
#'
#' @examplesIf rlang::is_interactive()
#' # load/refresh existing credentials, if available
#' # otherwise, go to browser for authentication and authorization
#' ladder_auth()
#'
#' # see user associated with current token
#' ladder_user()
#'
#' # force use of a token associated with a specific email
#' ladder_auth(email = "jenny@example.com")
#' ladder_user()
#'
#' # force the OAuth web dance
#' ladder_auth(email = NA)
#'
#' # use a 'read only' scope, so it's impossible to edit or delete files
#' ladder_auth(scopes = "slides.readonly")
#'
#' # use a service account token
#' ladder_auth(path = "foofy-83ee9e7c9c48.json")
#'
ladder_auth <- function(email = gargle::gargle_oauth_email(),
                        path = NULL,
                        subject = NULL,
                        scopes = c(
                          "https://www.googleapis.com/auth/drive.file",
                          "https://www.googleapis.com/auth/presentations.currentonly"
                        ),
                        cache = gargle::gargle_oauth_cache(),
                        use_oob = gargle::gargle_oob_default(),
                        token = NULL) {
  cred <- gargle::token_fetch(
    scopes = scopes,
    app = if (is.null(ladder_oauth_client())) builtin_ladder_oauth_client() else ladder_oauth_client(),
    email = email,
    path = path,
    subject = subject,
    package = "ladder",
    cache = cache,
    use_oob = use_oob,
    token = token
  )
  if (!inherits(cred, "Token2.0")) {
    stop(
      "Can't get Google credentials.\n",
      "Are you running ladder in a non-interactive R session? Consider:\n",
      "  * Call `ladder_auth()` directly with all necessary specifics.\n",
      call. = FALSE
    )
  }
  .auth$set_cred(cred)
  .auth$set_auth_active(TRUE)

  invisible()
}

#' Suspend authorization
#'
#' @eval gargle:::PREFIX_deauth_description_with_api_key(gargle_lookup_table)
#'
#' @family auth functions
#' @returns Called for side-effect. Returns invisible `NULL`.
#' @export
#' @examplesIf interactive()
#' ladder_deauth()
#' ladder_user()
ladder_deauth <- function() {
  .auth$set_auth_active(FALSE)
  .auth$clear_cred()
  invisible()
}

#' Produce configured token
#'
#' @eval gargle:::PREFIX_token_description(gargle_lookup_table)
#' @eval gargle:::PREFIX_token_return()
#'
#' @family low-level API functions
#' @export
#' @examplesIf interactive()
#' ladder_token()
ladder_token <- function() {
  if (!ladder_has_token()) {
    ladder_auth()
  }
  httr::config(token = .auth$cred)
}

#' Is there a token on hand?
#'
#' @eval gargle:::PREFIX_has_token_description(gargle_lookup_table)
#' @eval gargle:::PREFIX_has_token_return()
#'
#' @family low-level API functions
#' @export
#'
#' @examples
#' ladder_has_token()
ladder_has_token <- function() {
  inherits(.auth$cred, "Token2.0")
}

#' Edit and view auth configuration
#'
#' @eval gargle:::PREFIX_auth_configure_description(gargle_lookup_table)
#' @eval gargle:::PREFIX_auth_configure_params()
#' @eval gargle:::PREFIX_auth_configure_return(gargle_lookup_table)
#'
#' @family auth functions
#' @export
#' @examples
#' # see and store the current user-configured OAuth client (probaby `NULL`)
#' (original_client <- ladder_oauth_client())
#'
#' # see and store the current user-configured API key (probaby `NULL`)
#' (original_api_key <- ladder_api_key())
#'
#' # the preferred way to configure your own client is via a JSON file
#' # downloaded from Google Developers Console
#' # this example JSON is indicative, but fake
#' path_to_json <- system.file(
#'   "extdata", "client_secret_installed.googleusercontent.com.json",
#'   package = "gargle"
#' )
#' ladder_auth_configure(path = path_to_json)
#'
#' # this is also obviously a fake API key
#' ladder_auth_configure(api_key = "the_key_I_got_for_a_google_API")
#'
#' # confirm the changes
#' ladder_oauth_client()
#' ladder_api_key()
#'
#' # restore original auth config
#' ladder_auth_configure(client = original_client, api_key = original_api_key)
ladder_auth_configure <- function(client, path, api_key, app) {
  if (!missing(client) && !missing(path)) {
    stop("Must supply exactly one of `client` or `path`, not both")
  }
  stopifnot(missing(api_key) || is.null(api_key) || rlang::is_string(api_key))

  if (!missing(path)) {
    stopifnot(rlang::is_string(path))
    client <- gargle::gargle_oauth_client_from_json(path)
  }
  stopifnot(missing(client) || is.null(client) || inherits(client, "gargle_oauth_client"))

  if (!missing(client) || !missing(path)) {
    .auth$set_client(client)
  }

  if (!missing(api_key)) {
    .auth$set_api_key(api_key)
  }

  invisible(.auth)
}

#' @export
#' @rdname ladder_auth_configure
ladder_api_key <- function() {
  .auth$api_key
}

#' @export
#' @rdname ladder_auth_configure
ladder_oauth_client <- function() {
  .auth$client
}
#' Get info on current user
#'
#' @eval gargle:::PREFIX_user_description()
#' @eval gargle:::PREFIX_user_seealso()
#' @eval gargle:::PREFIX_user_return()
#'
#' @returns Returns the username associated with the current token or
#' `NULL` if not authenticated.
#' @export
#' @examples
#' \dontrun{
#' ladder_user()
#' }
ladder_user <- function() {
  if (ladder_has_token()) {
    gargle::token_email(ladder_token())
  } else {
    NULL
  }
}


#' Built-in oauth client
#' @noRd
#' @param type The type of OAuth client to use. Either "installed" or "web".
builtin_ladder_oauth_client <- function(type = NULL) {
  if (is.null(type) || is.na(type)) {
    type <- gargle::gargle_oauth_client_type()
  }
  check_string(type)
  type <- rlang::arg_match(type, values = c("installed", "web"))

  switch(type,
    web = gargle::gargle_oauth_client_from_json(
      # path = system.file("web.json", package = "ladder")),
      path = gargle::secret_decrypt_json(
        path = system.file("web.json.enc", package = "ladder"),
        key = I("DwRpLbD_jXSFKxhjwrgHQg")
      )
    ),
    installed = gargle::gargle_oauth_client_from_json(
      path = gargle::secret_decrypt_json(
        path = system.file("installed.json.enc", package = "ladder"),
        key = I("DwRpLbD_jXSFKxhjwrgHQg")
      )
    )
  )
}


ladder_auth_internal <- function(account = c("testing"),
                                 scopes = NULL) {
  account <- match.arg(account)
  can_decrypt <- gargle::secret_has_key("LADDER_KEY")
  online <- !is.null(curl::nslookup("slides.googleapis.com", error = FALSE))
  if (!can_decrypt || !online) {
    if (!can_decrypt) {
      stop(gluestick("Can't decrypt the {{account}} service account token."))
    } else if (!online) {
      stop("We don't appear to be online. Or maybe the slides API is down?")
    }
  }

  filename <- gluestick("ladder-{{account}}.json")

  scopes <- scopes %||% c(
    "https://www.googleapis.com/auth/drive.file",
    "https://www.googleapis.com/auth/presentations.currentonly"
  )
  ladder_auth(
    scopes = scopes,
    path = gargle::secret_decrypt_json(
      system.file("secret", filename, package = "ladder"),
      "LADDER_KEY"
    )
  )
  ladder_user()
  invisible(TRUE)
}

#' Authenticate with a WIF Token from Github Actions
#' @param ... Arguments passed to `gargle::credentials_github_actions()`.
# ladder_auth_gha_workflow <- function(...) {
#   # Proposed addition to gargle
#   token <- gargle::credentials_github_actions(...)
#   .auth$set_cred(token)
# }

Any scripts or data that you put into this service are public.

ladder documentation built on June 8, 2025, 11:29 a.m.

rdrr.io home R language documentation Run R code online

CRAN packages Bioconductor packages R-Forge packages GitHub packages

Note that we can't provide technical support on individual packages. You should contact the package authors for that.

ladder
Get on to the Slides

R/api_slides_auth.R
In ladder: Get on to the Slides

Defines functions ladder_auth_internal builtin_ladder_oauth_client ladder_user ladder_oauth_client ladder_api_key ladder_auth_configure ladder_has_token ladder_token ladder_deauth ladder_auth

Documented in ladder_api_key ladder_auth ladder_auth_configure ladder_deauth ladder_has_token ladder_oauth_client ladder_token ladder_user

Try the ladder package in your browser

R Package Documentation

Browse R Packages

We want your feedback!

ladder Get on to the Slides

R/api_slides_auth.R In ladder: Get on to the Slides

Defines functions ladder_auth_internal builtin_ladder_oauth_client ladder_user ladder_oauth_client ladder_api_key ladder_auth_configure ladder_has_token ladder_token ladder_deauth ladder_auth

Documented in ladder_api_key ladder_auth ladder_auth_configure ladder_deauth ladder_has_token ladder_oauth_client ladder_token ladder_user

Try the ladder package in your browser

R Package Documentation

Browse R Packages

We want your feedback!

ladder
Get on to the Slides

R/api_slides_auth.R
In ladder: Get on to the Slides