Merge pull request #478 from Jleagle/master

Patreon Provider

README.md

@@ -43,8 +43,8 @@ $ go get github.com/markbates/goth
 * Intercom
 * Kakao
 * Lastfm
-* Linkedin
 * LINE
+* Linkedin
 * Mailru
 * Meetup
 * MicrosoftOnline
@@ -54,6 +54,7 @@ $ go get github.com/markbates/goth
 * OneDrive
 * OpenID Connect (auto discovery)
 * Oura
+* Patreon
 * Paypal
 * SalesForce
 * Shopify
@@ -70,8 +71,8 @@ $ go get github.com/markbates/goth
 * Typetalk
 * Uber
 * VK
-* Wepay
 * WeCom
+* Wepay
 * Xero
 * Yahoo
 * Yammer

examples/main.go

@@ -46,6 +46,7 @@ import (
 	"github.com/markbates/goth/providers/okta"
 	"github.com/markbates/goth/providers/onedrive"
 	"github.com/markbates/goth/providers/openidConnect"
+	"github.com/markbates/goth/providers/patreon"
 	"github.com/markbates/goth/providers/paypal"
 	"github.com/markbates/goth/providers/salesforce"
 	"github.com/markbates/goth/providers/seatalk"
@@ -147,6 +148,7 @@ func main() {
 		mastodon.New(os.Getenv("MASTODON_KEY"), os.Getenv("MASTODON_SECRET"), "http://localhost:3000/auth/mastodon/callback", "read:accounts"),
 		wecom.New(os.Getenv("WECOM_CORP_ID"), os.Getenv("WECOM_SECRET"), os.Getenv("WECOM_AGENT_ID"), "http://localhost:3000/auth/wecom/callback"),
 		zoom.New(os.Getenv("ZOOM_KEY"), os.Getenv("ZOOM_SECRET"), "http://localhost:3000/auth/zoom/callback", "read:user"),
+		patreon.New(os.Getenv("PATREON_KEY"), os.Getenv("PATREON_SECRET"), "http://localhost:3000/auth/patreon/callback"),
 	)
 
 	// OpenID Connect is based on OpenID Connect Auto Discovery URL (https://openid.net/specs/openid-connect-discovery-1_0-17.html)
@@ -159,6 +161,10 @@ func main() {
 
 	m := make(map[string]string)
 	m["amazon"] = "Amazon"
+	m["apple"] = "Apple"
+	m["auth0"] = "Auth0"
+	m["azuread"] = "Azure AD"
+	m["battlenet"] = "Battlenet"
 	m["bitbucket"] = "Bitbucket"
 	m["box"] = "Box"
 	m["dailymotion"] = "Dailymotion"
@@ -174,48 +180,45 @@ func main() {
 	m["gitlab"] = "Gitlab"
 	m["google"] = "Google"
 	m["gplus"] = "Google Plus"
-	m["shopify"] = "Shopify"
-	m["soundcloud"] = "SoundCloud"
-	m["spotify"] = "Spotify"
-	m["steam"] = "Steam"
-	m["stripe"] = "Stripe"
-	m["tiktok"] = "TikTok"
-	m["twitch"] = "Twitch"
-	m["uber"] = "Uber"
-	m["wepay"] = "Wepay"
-	m["yahoo"] = "Yahoo"
-	m["yammer"] = "Yammer"
 	m["heroku"] = "Heroku"
 	m["instagram"] = "Instagram"
 	m["intercom"] = "Intercom"
 	m["kakao"] = "Kakao"
 	m["lastfm"] = "Last FM"
-	m["linkedin"] = "Linkedin"
 	m["line"] = "LINE"
-	m["onedrive"] = "Onedrive"
-	m["azuread"] = "Azure AD"
+	m["linkedin"] = "Linkedin"
+	m["mastodon"] = "Mastodon"
+	m["meetup"] = "Meetup.com"
 	m["microsoftonline"] = "Microsoft Online"
-	m["battlenet"] = "Battlenet"
+	m["naver"] = "Naver"
+	m["nextcloud"] = "NextCloud"
+	m["okta"] = "Okta"
+	m["onedrive"] = "Onedrive"
+	m["openid-connect"] = "OpenID Connect"
+	m["patreon"] = "Patreon"
 	m["paypal"] = "Paypal"
+	m["salesforce"] = "Salesforce"
+	m["seatalk"] = "SeaTalk"
+	m["shopify"] = "Shopify"
+	m["slack"] = "Slack"
+	m["soundcloud"] = "SoundCloud"
+	m["spotify"] = "Spotify"
+	m["steam"] = "Steam"
+	m["strava"] = "Strava"
+	m["stripe"] = "Stripe"
+	m["tiktok"] = "TikTok"
+	m["twitch"] = "Twitch"
 	m["twitter"] = "Twitter"
 	m["twitterv2"] = "Twitter"
-	m["salesforce"] = "Salesforce"
 	m["typetalk"] = "Typetalk"
-	m["slack"] = "Slack"
-	m["meetup"] = "Meetup.com"
-	m["auth0"] = "Auth0"
-	m["openid-connect"] = "OpenID Connect"
-	m["xero"] = "Xero"
+	m["uber"] = "Uber"
 	m["vk"] = "VK"
-	m["naver"] = "Naver"
-	m["yandex"] = "Yandex"
-	m["nextcloud"] = "NextCloud"
-	m["seatalk"] = "SeaTalk"
-	m["apple"] = "Apple"
-	m["strava"] = "Strava"
-	m["okta"] = "Okta"
-	m["mastodon"] = "Mastodon"
 	m["wecom"] = "WeCom"
+	m["wepay"] = "Wepay"
+	m["xero"] = "Xero"
+	m["yahoo"] = "Yahoo"
+	m["yammer"] = "Yammer"
+	m["yandex"] = "Yandex"
 	m["zoom"] = "Zoom"
 
 	var keys []string

providers/patreon/patreon.go

@@ -0,0 +1,220 @@
+package patreon
+
+import (
+	"bytes"
+	"encoding/json"
+	"fmt"
+	"io"
+	"io/ioutil"
+	"net/http"
+	"time"
+
+	"github.com/markbates/goth"
+	"golang.org/x/oauth2"
+)
+
+const (
+	// AuthorizationURL specifies Patreon's OAuth2 authorization endpoint (see https://tools.ietf.org/html/rfc6749#section-3.1).
+	// See Example_refreshToken for examples.
+	authorizationURL = "https://www.patreon.com/oauth2/authorize"
+
+	// AccessTokenURL specifies Patreon's OAuth2 token endpoint (see https://tools.ietf.org/html/rfc6749#section-3.2).
+	// See Example_refreshToken for examples.
+	tokenURL = "https://www.patreon.com/api/oauth2/token"
+
+	profileURL = "https://www.patreon.com/api/oauth2/v2/identity"
+)
+
+//goland:noinspection GoUnusedConst
+const (
+	// ScopeIdentity provides read access to data about the user. See the /identity endpoint documentation for details about what data is available.
+	ScopeIdentity = "identity"
+
+	// ScopeIdentityEmail provides read access to the user’s email.
+	ScopeIdentityEmail = "identity[email]"
+
+	// ScopeIdentityMemberships provides read access to the user’s memberships.
+	ScopeIdentityMemberships = "identity.memberships"
+
+	// ScopeCampaigns provides read access to basic campaign data. See the /campaign endpoint documentation for details about what data is available.
+	ScopeCampaigns = "campaigns"
+
+	// ScopeCampaignsWebhook provides read, write, update, and delete access to the campaign’s webhooks created by the client.
+	ScopeCampaignsWebhook = "w:campaigns.webhook"
+
+	// ScopeCampaignsMembers provides read access to data about a campaign’s members. See the /members endpoint documentation for details about what data is available. Also allows the same information to be sent via webhooks created by your client.
+	ScopeCampaignsMembers = "campaigns.members"
+
+	// ScopeCampaignsMembersEmail provides read access to the member’s email. Also allows the same information to be sent via webhooks created by your client.
+	ScopeCampaignsMembersEmail = "campaigns.members[email]"
+
+	// ScopeCampaignsMembersAddress provides read access to the member’s address, if an address was collected in the pledge flow. Also allows the same information to be sent via webhooks created by your client.
+	ScopeCampaignsMembersAddress = "campaigns.members.address"
+
+	// ScopeCampaignsPosts provides read access to the posts on a campaign.
+	ScopeCampaignsPosts = "campaigns.posts"
+)
+
+// New creates a new Patreon provider and sets up important connection details.
+// You should always call `patreon.New` to get a new provider.  Never try to
+// create one manually.
+func New(clientKey, secret, callbackURL string, scopes ...string) *Provider {
+	return NewCustomisedURL(clientKey, secret, callbackURL, authorizationURL, tokenURL, profileURL, scopes...)
+}
+
+// NewCustomisedURL is similar to New(...) but can be used to set custom URLs to connect to
+func NewCustomisedURL(clientKey, secret, callbackURL, authURL, tokenURL, profileURL string, scopes ...string) *Provider {
+	p := &Provider{
+		ClientKey:    clientKey,
+		Secret:       secret,
+		CallbackURL:  callbackURL,
+		providerName: "patreon",
+		profileURL:   profileURL,
+	}
+	p.config = newConfig(p, authURL, tokenURL, scopes)
+	return p
+}
+
+// Provider is the implementation of `goth.Provider` for accessing Patreon.
+type Provider struct {
+	ClientKey    string
+	Secret       string
+	CallbackURL  string
+	HTTPClient   *http.Client
+	config       *oauth2.Config
+	providerName string
+	authURL      string
+	tokenURL     string
+	profileURL   string
+}
+
+// Name gets the name used to retrieve this provider later.
+func (p *Provider) Name() string {
+	return p.providerName
+}
+
+// SetName is to update the name of the provider (needed in case of multiple providers of 1 type)
+func (p *Provider) SetName(name string) {
+	p.providerName = name
+}
+
+func (p *Provider) Client() *http.Client {
+	return goth.HTTPClientWithFallBack(p.HTTPClient)
+}
+
+// Debug is a no-op for the Patreon package.
+func (p *Provider) Debug(debug bool) {}
+
+// BeginAuth asks Patreon for an authentication end-point.
+func (p *Provider) BeginAuth(state string) (goth.Session, error) {
+	return &Session{
+		AuthURL: p.config.AuthCodeURL(state),
+	}, nil
+}
+
+// FetchUser will go to Patreon and access basic information about the user.
+func (p *Provider) FetchUser(session goth.Session) (goth.User, error) {
+	sess := session.(*Session)
+	user := goth.User{
+		AccessToken:  sess.AccessToken,
+		Provider:     p.Name(),
+		RefreshToken: sess.RefreshToken,
+		ExpiresAt:    sess.ExpiresAt,
+	}
+
+	if user.AccessToken == "" {
+		// data is not yet retrieved since accessToken is still empty
+		return user, fmt.Errorf("%s cannot get user information without accessToken", p.providerName)
+	}
+
+	req, err := http.NewRequest("GET", p.profileURL, nil)
+	if err != nil {
+		return user, err
+	}
+
+	req.Header.Add("authorization", "Bearer "+sess.AccessToken)
+	response, err := p.Client().Do(req)
+	if err != nil {
+		return user, err
+	}
+	defer response.Body.Close()
+
+	if response.StatusCode != http.StatusOK {
+		return user, fmt.Errorf("%s responded with a %d trying to fetch user information", p.providerName, response.StatusCode)
+	}
+
+	bits, err := ioutil.ReadAll(response.Body)
+	if err != nil {
+		return user, err
+	}
+
+	err = json.NewDecoder(bytes.NewReader(bits)).Decode(&user.RawData)
+	if err != nil {
+		return user, err
+	}
+
+	err = userFromReader(bytes.NewReader(bits), &user)
+
+	return user, err
+}
+
+// RefreshTokenAvailable refresh token is provided by auth provider or not
+func (p *Provider) RefreshTokenAvailable() bool {
+	return true
+}
+
+// RefreshToken get new access token based on the refresh token
+func (p *Provider) RefreshToken(refreshToken string) (*oauth2.Token, error) {
+	token := &oauth2.Token{RefreshToken: refreshToken}
+	ts := p.config.TokenSource(goth.ContextForClient(p.Client()), token)
+	newToken, err := ts.Token()
+	if err != nil {
+		return nil, err
+	}
+	return newToken, err
+}
+
+func newConfig(provider *Provider, authURL, tokenURL string, scopes []string) *oauth2.Config {
+	c := &oauth2.Config{
+		ClientID:     provider.ClientKey,
+		ClientSecret: provider.Secret,
+		RedirectURL:  provider.CallbackURL,
+		Endpoint: oauth2.Endpoint{
+			AuthURL:  authURL,
+			TokenURL: tokenURL,
+		},
+		Scopes: []string{},
+	}
+
+	if len(scopes) > 0 {
+		for _, scope := range scopes {
+			c.Scopes = append(c.Scopes, scope)
+		}
+	}
+	return c
+}
+
+func userFromReader(r io.Reader, user *goth.User) error {
+	u := struct {
+		Data struct {
+			Attributes struct {
+				Created  time.Time `json:"created"`
+				Email    string    `json:"email"`
+				FullName string    `json:"full_name"`
+				ImageURL string    `json:"image_url"`
+				Vanity   string    `json:"vanity"`
+			} `json:"attributes"`
+			ID string `json:"id"`
+		} `json:"data"`
+	}{}
+	err := json.NewDecoder(r).Decode(&u)
+	if err != nil {
+		return err
+	}
+	user.Email = u.Data.Attributes.Email
+	user.Name = u.Data.Attributes.FullName
+	user.NickName = u.Data.Attributes.Vanity
+	user.UserID = u.Data.ID
+	user.AvatarURL = u.Data.Attributes.ImageURL
+	return nil
+}