bigbluebutton-Github/bbb-graphql-middleware/internal/bbb_web/client.go

package bbb_web

import (
	"encoding/json"
	"fmt"
	"io/ioutil"
	"net/http"
	"net/http/cookiejar"
	"os"
	"strings"
	"time"

	log "github.com/sirupsen/logrus"
)

// authHookUrl is the authentication hook URL obtained from an environment variable.
var authHookUrl = os.Getenv("BBB_GRAPHQL_MIDDLEWARE_AUTH_HOOK_URL")

// BBBWebClient handles the web requests for authentication and returns a map of response headers.
func BBBWebClient(browserConnectionId string, sessionToken string, cookies []*http.Cookie) (map[string]string, error) {
	logger := log.WithField("_routine", "BBBWebClient").WithField("browserConnectionId", browserConnectionId)
	logger.Debug("Starting BBBWebClient")
	defer logger.Debug("Finished BBBWebClient")

	// Create a new HTTP client with a cookie jar.
	jar, err := cookiejar.New(nil)
	if err != nil {
		return nil, fmt.Errorf("failed to create cookie jar: %v", err)
	}
	client := &http.Client{Jar: jar}

	// Check if the authentication hook URL is set.
	if authHookUrl == "" {
		return nil, fmt.Errorf("BBB_GRAPHQL_MIDDLEWARE_AUTH_HOOK_URL not set")
	}

	// Create a new HTTP request to the authentication hook URL.
	req, err := http.NewRequest("GET", authHookUrl, nil)
	if err != nil {
		return nil, err
	}

	// Add cookies to the request.
	for _, cookie := range cookies {
		req.AddCookie(cookie)
	}

	// Wait for SessionToken to be provided.
	for sessionToken == "" {
		time.Sleep(150 * time.Millisecond)
	}

	// Execute the HTTP request to obtain user session variables (like X-Hasura-Role)
	req.Header.Set("x-session-token", sessionToken)
	req.Header.Set("User-Agent", "hasura-graphql-engine")
	resp, err := client.Do(req)
	if err != nil {
		return nil, err
	}
	defer resp.Body.Close()

	respBody, err := ioutil.ReadAll(resp.Body)
	if err != nil {
		return nil, err
	}

	var respBodyAsMap map[string]string
	if err := json.Unmarshal(respBody, &respBodyAsMap); err != nil {
		return nil, err
	}

	// Check the response status.
	response, ok := respBodyAsMap["response"]
	if !ok {
		return nil, fmt.Errorf("response key not found in the parsed object")
	}
	if response != "authorized" {
		return nil, fmt.Errorf("auth token not authorized")
	}

	// Normalize the response header keys.
	normalizedResponse := make(map[string]string)
	for key, value := range respBodyAsMap {
		if strings.HasPrefix(strings.ToLower(key), "x-hasura") {
			normalizedResponse[strings.ToLower(key)] = value
		}
	}

	return normalizedResponse, nil
}
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`package bbb_web`

			`import (`
			`"encoding/json"`
			`"fmt"`
			`"io/ioutil"`
			`"net/http"`
			`"net/http/cookiejar"`
			`"os"`
			`"strings"`
			`"time"`
improve code 2024-05-02 22:06:37 +08:00
			`log "github.com/sirupsen/logrus"`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`)`

improve code 2024-05-02 22:06:37 +08:00			`// authHookUrl is the authentication hook URL obtained from an environment variable.`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`var authHookUrl = os.Getenv("BBB_GRAPHQL_MIDDLEWARE_AUTH_HOOK_URL")`

improve code 2024-05-02 22:06:37 +08:00			`// BBBWebClient handles the web requests for authentication and returns a map of response headers.`
Refactor (gql-middleware): Introduces `clientSessionUUID` and validations (error handling) (#20353) 2024-05-30 04:43:17 +08:00			`func BBBWebClient(browserConnectionId string, sessionToken string, cookies []*http.Cookie) (map[string]string, error) {`
			`logger := log.WithField("_routine", "BBBWebClient").WithField("browserConnectionId", browserConnectionId)`
improve code 2024-05-02 22:06:37 +08:00			`logger.Debug("Starting BBBWebClient")`
			`defer logger.Debug("Finished BBBWebClient")`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00
improve code 2024-05-02 22:06:37 +08:00			`// Create a new HTTP client with a cookie jar.`
			`jar, err := cookiejar.New(nil)`
			`if err != nil {`
			`return nil, fmt.Errorf("failed to create cookie jar: %v", err)`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`
improve code 2024-05-02 22:06:37 +08:00			`client := &http.Client{Jar: jar}`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00
improve code 2024-05-02 22:06:37 +08:00			`// Check if the authentication hook URL is set.`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`if authHookUrl == "" {`
improve code 2024-05-02 22:06:37 +08:00			`return nil, fmt.Errorf("BBB_GRAPHQL_MIDDLEWARE_AUTH_HOOK_URL not set")`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`

improve code 2024-05-02 22:06:37 +08:00			`// Create a new HTTP request to the authentication hook URL.`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`req, err := http.NewRequest("GET", authHookUrl, nil)`
			`if err != nil {`
			`return nil, err`
			`}`

improve code 2024-05-02 22:06:37 +08:00			`// Add cookies to the request.`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`for _, cookie := range cookies {`
			`req.AddCookie(cookie)`
			`}`

improve code 2024-05-02 22:06:37 +08:00			`// Wait for SessionToken to be provided.`
Refactor (gql-middleware): Introduces `clientSessionUUID` and validations (error handling) (#20353) 2024-05-30 04:43:17 +08:00			`for sessionToken == "" {`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`time.Sleep(150 * time.Millisecond)`
			`}`

improve code 2024-05-02 22:06:37 +08:00			`// Execute the HTTP request to obtain user session variables (like X-Hasura-Role)`
Refactor (gql-middleware): Introduces `clientSessionUUID` and validations (error handling) (#20353) 2024-05-30 04:43:17 +08:00			`req.Header.Set("x-session-token", sessionToken)`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`req.Header.Set("User-Agent", "hasura-graphql-engine")`
			`resp, err := client.Do(req)`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer resp.Body.Close()`

improve code 2024-05-02 22:06:37 +08:00			`respBody, err := ioutil.ReadAll(resp.Body)`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`if err != nil {`
			`return nil, err`
			`}`

improve code 2024-05-02 22:06:37 +08:00			`var respBodyAsMap map[string]string`
			`if err := json.Unmarshal(respBody, &respBodyAsMap); err != nil {`
			`return nil, err`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`

improve code 2024-05-02 22:06:37 +08:00			`// Check the response status.`
			`response, ok := respBodyAsMap["response"]`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`if !ok {`
improve code 2024-05-02 22:06:37 +08:00			`return nil, fmt.Errorf("response key not found in the parsed object")`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`
			`if response != "authorized" {`
improve code 2024-05-02 22:06:37 +08:00			`return nil, fmt.Errorf("auth token not authorized")`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`

improve code 2024-05-02 22:06:37 +08:00			`// Normalize the response header keys.`
			`normalizedResponse := make(map[string]string)`
			`for key, value := range respBodyAsMap {`
			`if strings.HasPrefix(strings.ToLower(key), "x-hasura") {`
			`normalizedResponse[strings.ToLower(key)] = value`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`
			`}`

improve code 2024-05-02 22:06:37 +08:00			`return normalizedResponse, nil`
Graphql-middleware itself will handle mutations and forward to Graphql-actions 2024-05-02 21:45:32 +08:00			`}`