R/auth0.R
In curso-r/auth0: Authentication in Shiny with Auth0
Defines functions
use_auth0
auth0_config
auth0_info
auth0_state
auth0_server_verify
has_auth_code
auth0_api
auth0_app
Documented in
auth0_config
auth0_info
use_auth0
auth0_app <- function(app_url, app_name, key, secret) {
function(app_url) {
httr::oauth_app(appname = app_name, key = key, secret = secret, redirect_uri = app_url)
}
}
auth0_api <- function(auth0_url, request, access) {
httr::oauth_endpoint(base_url = auth0_url, request = request,
authorize = "authorize", access = access)
}
has_auth_code <- function(params, state) {
is.null(params$error) && !is.null(params$code) && params$state == state
}
auth0_server_verify <- function(session, app, api, state) {
u_search <- session[["clientData"]]$url_search
params <- shiny::parseQueryString(u_search)
if (has_auth_code(params, state)) {
cred <- httr::oauth2.0_access_token(api, app(redirect_uri), params$code)
token <- httr::oauth2.0_token(
app = app(redirect_uri), endpoint = api, cache = FALSE, credentials = cred,
user_params = list(grant_type = "authorization_code"))
userinfo_url <- sub("authorize", "userinfo", api$authorize)
resp <- httr::RETRY(
verb = "GET"
, url = userinfo_url
, httr::config(token = token)
, times = 5
)
assign("auth0_credentials", token$credentials, envir = session$userData)
assign("auth0_info", httr::content(resp, "parsed"), envir = session$userData)
}
}
auth0_state <- function(server) {
paste(sample(c(letters, LETTERS, 0:9), 10, replace = TRUE), collapse = "")
}
#' Information used to connect to Auth0.
#'
#' Creates a list containing all the important information to connect to Auth0
#' service's API.
#'
#' @param config path to the `_auth0.yml` file or the object returned by
#' [auth0_config]. If not informed, will try to find the file using
#' [auth0_find_config_file].
#'
#' @seealso [use_auth0] to create an `_auth0.yml` template.
#'
#' @return A list contaning scope, state, keys, OAuth2.0 app, endpoints,
#' audience and
#' remote URL. For compatibility reasons, `remote_url` can be either a parameter
#' in the root yaml or inside a `shiny_config` parameter.
#'
#' @export
auth0_info <- function(config) {
if (missing(config)) config <- auth0_config()
if (!is.list(config) && is.character(config)) config <- auth0_config(config)
scope <- config$auth0_config$scope
state <- auth0_state()
conf <- config$auth0_config
app <- auth0_app(app_name = config$name, key = conf$credentials$key, secret = conf$credentials$secret)
api <- auth0_api(conf$api_url, conf$request, conf$access)
audience <- conf$audience
rurl <- config$remote_url
# backward compatibility
if (is.null(rurl)) rurl <- config$shiny_config$remote_url
list(scope = scope, state = state, app = app, api = api, audience=audience,
remote_url = rurl)
}
#' Parse `_auth0.yml` file.
#'
#' Validates and creates a list of useful information from
#' the `_auth0.yml` file.
#'
#' @param config_file path to the `_auth0.yml` file. If not informed,
#' will try to find the file using [auth0_find_config_file].
#'
#' @return List containing all the information from the `_auth0.yml` file.
#'
#' @export
auth0_config <- function(config_file) {
if (missing(config_file)) config_file <- auth0_find_config_file()
config <- yaml::read_yaml(config_file, eval.expr = TRUE)
# standardise and validate auth0_config
if (is.null(config$auth0_config)) {
stop("Missing 'auth0_config' tag in YAML file.")
}
config_names <- names(unlist(config$auth0_config))
required_names <- c("api_url", "credentials.key", "credentials.secret")
missing_args <- setdiff(required_names, config_names)
s <- strrep("s", max(length(missing_args) - 1L, 0))
if (length(missing_args) > 0) {
msg <- sprintf("Missing '%s' tag%s in YAML file", paste(missing_args, collapse = "','"), s)
stop(msg)
}
# scope
scp <- config$auth0_config$scope
if (is.null(scp)) scp <- "openid profile"
defaults <- list(scope = scp, request = "oauth/token", access = "oauth/token")
for (nm in names(defaults)) {
if (!nm %in% config_names) {
config$auth0_config[[nm]] <- defaults[[nm]]
}
}
config
}
#' Auth0 configuration file
#'
#' Create an YAML containing information to connect with Auth0.
#'
#' @param path Directory name. Should be the root of the shiny app
#' you want to add this functionality
#' @param file File name. Defaults to `_auth0.yml`.
#' @param overwrite Will only overwrite existing path if `TRUE`.
#'
#' @details The YAML configuration file has required parameters and extra
#' parameters.
#'
#' The required parameters are:
#' - `auth0_config` is a list contaning at least:
#' - `api_url`: Your account at Auth0 (e.g. https://jonhdoe.auth0.com).
#' It is the "Domain" in Auth0 application settings.
#' - `credentials`: Your credentials to access Auth0 API, including
#' - `key`: the Client ID in Auth0 application settings.
#' - `secret`: the Client Secret in Auth0 application settings.
#'
#' The extra parameters are:
#' - `remote_url`: If you are using Shiny-Server or ShinyApps IO service.
#' - `scope`: The information that Auth0 app will access.
#' Defaults to "openid profile".
#' - `request`: Endpoit to request a token. Defaults to "oauth/token"
#' - `access`: Endpoit to access. Defaults to "oauth/token"
#'
#' @export
use_auth0 <- function(path = ".", file = "_auth0.yml", overwrite = FALSE) {
f <- paste0(normalizePath(path), "/", file)
if (file.exists(f) && !overwrite) {
stop("File exists and overwrite is FALSE.")
}
ks <- list(key = 'Sys.getenv("AUTH0_KEY")', secret = 'Sys.getenv("AUTH0_SECRET")')
api_url <- "paste0('https://', Sys.getenv('AUTH0_USER'), '.auth0.com')"
attr(ks[[1]], "tag") <- "!expr"
attr(ks[[2]], "tag") <- "!expr"
attr(api_url, "tag") <- "!expr"
yaml_list <- list(
name = "myApp",
remote_url = "",
auth0_config = list(api_url = api_url, credentials = ks))
yaml::write_yaml(yaml_list, f)
}
curso-r/auth0 documentation built on Feb. 18, 2024, 6:05 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions use_auth0 auth0_config auth0_info auth0_state auth0_server_verify has_auth_code auth0_api auth0_app
Documented in auth0_config auth0_info use_auth0
auth0_app <- function(app_url, app_name, key, secret) {
function(app_url) {
httr::oauth_app(appname = app_name, key = key, secret = secret, redirect_uri = app_url)
}
}
auth0_api <- function(auth0_url, request, access) {
httr::oauth_endpoint(base_url = auth0_url, request = request,
authorize = "authorize", access = access)
}
has_auth_code <- function(params, state) {
is.null(params$error) && !is.null(params$code) && params$state == state
}
auth0_server_verify <- function(session, app, api, state) {
u_search <- session[["clientData"]]$url_search
params <- shiny::parseQueryString(u_search)
if (has_auth_code(params, state)) {
cred <- httr::oauth2.0_access_token(api, app(redirect_uri), params$code)
token <- httr::oauth2.0_token(
app = app(redirect_uri), endpoint = api, cache = FALSE, credentials = cred,
user_params = list(grant_type = "authorization_code"))
userinfo_url <- sub("authorize", "userinfo", api$authorize)
resp <- httr::RETRY(
verb = "GET"
, url = userinfo_url
, httr::config(token = token)
, times = 5
)
assign("auth0_credentials", token$credentials, envir = session$userData)
assign("auth0_info", httr::content(resp, "parsed"), envir = session$userData)
}
}
auth0_state <- function(server) {
paste(sample(c(letters, LETTERS, 0:9), 10, replace = TRUE), collapse = "")
}
#' Information used to connect to Auth0.
#'
#' Creates a list containing all the important information to connect to Auth0
#' service's API.
#'
#' @param config path to the `_auth0.yml` file or the object returned by
#' [auth0_config]. If not informed, will try to find the file using
#' [auth0_find_config_file].
#'
#' @seealso [use_auth0] to create an `_auth0.yml` template.
#'
#' @return A list contaning scope, state, keys, OAuth2.0 app, endpoints,
#' audience and
#' remote URL. For compatibility reasons, `remote_url` can be either a parameter
#' in the root yaml or inside a `shiny_config` parameter.
#'
#' @export
auth0_info <- function(config) {
if (missing(config)) config <- auth0_config()
if (!is.list(config) && is.character(config)) config <- auth0_config(config)
scope <- config$auth0_config$scope
state <- auth0_state()
conf <- config$auth0_config
app <- auth0_app(app_name = config$name, key = conf$credentials$key, secret = conf$credentials$secret)
api <- auth0_api(conf$api_url, conf$request, conf$access)
audience <- conf$audience
rurl <- config$remote_url
# backward compatibility
if (is.null(rurl)) rurl <- config$shiny_config$remote_url
list(scope = scope, state = state, app = app, api = api, audience=audience,
remote_url = rurl)
}
#' Parse `_auth0.yml` file.
#'
#' Validates and creates a list of useful information from
#' the `_auth0.yml` file.
#'
#' @param config_file path to the `_auth0.yml` file. If not informed,
#' will try to find the file using [auth0_find_config_file].
#'
#' @return List containing all the information from the `_auth0.yml` file.
#'
#' @export
auth0_config <- function(config_file) {
if (missing(config_file)) config_file <- auth0_find_config_file()
config <- yaml::read_yaml(config_file, eval.expr = TRUE)
# standardise and validate auth0_config
if (is.null(config$auth0_config)) {
stop("Missing 'auth0_config' tag in YAML file.")
}
config_names <- names(unlist(config$auth0_config))
required_names <- c("api_url", "credentials.key", "credentials.secret")
missing_args <- setdiff(required_names, config_names)
s <- strrep("s", max(length(missing_args) - 1L, 0))
if (length(missing_args) > 0) {
msg <- sprintf("Missing '%s' tag%s in YAML file", paste(missing_args, collapse = "','"), s)
stop(msg)
}
# scope
scp <- config$auth0_config$scope
if (is.null(scp)) scp <- "openid profile"
defaults <- list(scope = scp, request = "oauth/token", access = "oauth/token")
for (nm in names(defaults)) {
if (!nm %in% config_names) {
config$auth0_config[[nm]] <- defaults[[nm]]
}
}
config
}
#' Auth0 configuration file
#'
#' Create an YAML containing information to connect with Auth0.
#'
#' @param path Directory name. Should be the root of the shiny app
#' you want to add this functionality
#' @param file File name. Defaults to `_auth0.yml`.
#' @param overwrite Will only overwrite existing path if `TRUE`.
#'
#' @details The YAML configuration file has required parameters and extra
#' parameters.
#'
#' The required parameters are:
#' - `auth0_config` is a list contaning at least:
#' - `api_url`: Your account at Auth0 (e.g. https://jonhdoe.auth0.com).
#' It is the "Domain" in Auth0 application settings.
#' - `credentials`: Your credentials to access Auth0 API, including
#' - `key`: the Client ID in Auth0 application settings.
#' - `secret`: the Client Secret in Auth0 application settings.
#'
#' The extra parameters are:
#' - `remote_url`: If you are using Shiny-Server or ShinyApps IO service.
#' - `scope`: The information that Auth0 app will access.
#' Defaults to "openid profile".
#' - `request`: Endpoit to request a token. Defaults to "oauth/token"
#' - `access`: Endpoit to access. Defaults to "oauth/token"
#'
#' @export
use_auth0 <- function(path = ".", file = "_auth0.yml", overwrite = FALSE) {
f <- paste0(normalizePath(path), "/", file)
if (file.exists(f) && !overwrite) {
stop("File exists and overwrite is FALSE.")
}
ks <- list(key = 'Sys.getenv("AUTH0_KEY")', secret = 'Sys.getenv("AUTH0_SECRET")')
api_url <- "paste0('https://', Sys.getenv('AUTH0_USER'), '.auth0.com')"
attr(ks[[1]], "tag") <- "!expr"
attr(ks[[2]], "tag") <- "!expr"
attr(api_url, "tag") <- "!expr"
yaml_list <- list(
name = "myApp",
remote_url = "",
auth0_config = list(api_url = api_url, credentials = ks))
yaml::write_yaml(yaml_list, f)
}
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.