wonderwall/pkg/router/handler.go

package router

import (
	"sync"

	"github.com/rs/zerolog"
	"golang.org/x/oauth2"

	"github.com/nais/wonderwall/pkg/config"
	"github.com/nais/wonderwall/pkg/crypto"
	"github.com/nais/wonderwall/pkg/openid"
	"github.com/nais/wonderwall/pkg/session"
)

type Handler struct {
	Config        config.Config
	Crypter       crypto.Crypter
	OauthConfig   oauth2.Config
	Provider      openid.Provider
	SecureCookies bool
	Sessions      session.Store
	lock          sync.Mutex
	Httplogger    zerolog.Logger
}

func NewHandler(
	cfg config.Config,
	crypter crypto.Crypter,
	httplogger zerolog.Logger,
	provider openid.Provider,
	sessionStore session.Store,
) (*Handler, error) {
	oauthConfig := oauth2.Config{
		ClientID: provider.GetClientConfiguration().GetClientID(),
		Endpoint: oauth2.Endpoint{
			AuthURL:  provider.GetOpenIDConfiguration().AuthorizationEndpoint,
			TokenURL: provider.GetOpenIDConfiguration().TokenEndpoint,
		},
		RedirectURL: provider.GetClientConfiguration().GetRedirectURI(),
		Scopes:      provider.GetClientConfiguration().GetScopes(),
	}

	return &Handler{
		Config:        cfg,
		Crypter:       crypter,
		Httplogger:    httplogger,
		lock:          sync.Mutex{},
		OauthConfig:   oauthConfig,
		Provider:      provider,
		Sessions:      sessionStore,
		SecureCookies: true,
	}, nil
}

func (h *Handler) WithSecureCookie(enabled bool) *Handler {
	h.SecureCookies = enabled
	return h
}