✨ 集成Gitlab

src/main/java/me/zhyd/oauth/config/AuthSource.java

@@ -568,6 +568,7 @@ public enum AuthSource {
             return "https://qyapi.weixin.qq.com/cgi-bin/user/getuserinfo";
         }
     },
+
     /**
      * 酷家乐
      *
@@ -593,6 +594,28 @@ public enum AuthSource {
         public String refresh() {
             return "https://oauth.kujiale.com/oauth2/auth/token/refresh";
         }
+    },
+
+    /**
+     * Gitlab
+     *
+     * @since 1.11.0
+     */
+    GITLAB {
+        @Override
+        public String authorize() {
+            return "https://gitlab.com/oauth/authorize";
+        }
+
+        @Override
+        public String accessToken() {
+            return "https://gitlab.com/oauth/token";
+        }
+
+        @Override
+        public String userInfo() {
+            return "https://gitlab.com/api/v4/user";
+        }
     };
 
     /**

src/main/java/me/zhyd/oauth/request/AuthGithubRequest.java

@@ -34,9 +34,9 @@ public class AuthGithubRequest extends AuthDefaultRequest {
     protected AuthToken getAccessToken(AuthCallback authCallback) {
         HttpResponse response = doPostAuthorizationCode(authCallback.getCode());
         Map<String, String> res = GlobalAuthUtil.parseStringToMap(response.body());
-        if (res.containsKey("error")) {
-            throw new AuthException(res.get("error") + ":" + res.get("error_description"));
-        }
+
+        this.checkResponse(res.containsKey("error"), res.get("error_description"));
+
         return AuthToken.builder()
             .accessToken(res.get("access_token"))
             .scope(res.get("scope"))
@@ -48,9 +48,9 @@ public class AuthGithubRequest extends AuthDefaultRequest {
     protected AuthUser getUserInfo(AuthToken authToken) {
         HttpResponse response = doGetUserInfo(authToken);
         JSONObject object = JSONObject.parseObject(response.body());
-        if (object.containsKey("error")) {
-            throw new AuthException(object.getString("error_description"));
-        }
+
+        this.checkResponse(object.containsKey("error"), object.getString("error_description"));
+
         return AuthUser.builder()
             .uuid(object.getString("id"))
             .username(object.getString("login"))
@@ -67,4 +67,10 @@ public class AuthGithubRequest extends AuthDefaultRequest {
             .build();
     }
 
+    private void checkResponse(boolean error, String error_description) {
+        if (error) {
+            throw new AuthException(error_description);
+        }
+    }
+
 }

src/main/java/me/zhyd/oauth/request/AuthGitlabRequest.java

@@ -0,0 +1,95 @@
+package me.zhyd.oauth.request;
+
+import cn.hutool.http.HttpResponse;
+import com.alibaba.fastjson.JSONObject;
+import me.zhyd.oauth.cache.AuthStateCache;
+import me.zhyd.oauth.config.AuthConfig;
+import me.zhyd.oauth.config.AuthSource;
+import me.zhyd.oauth.enums.AuthUserGender;
+import me.zhyd.oauth.exception.AuthException;
+import me.zhyd.oauth.model.AuthCallback;
+import me.zhyd.oauth.model.AuthToken;
+import me.zhyd.oauth.model.AuthUser;
+import me.zhyd.oauth.utils.UrlBuilder;
+
+/**
+ * Gitlab登录
+ *
+ * @author yadong.zhang (yadong.zhang0415(a)gmail.com)
+ * @since 1.11.0
+ */
+public class AuthGitlabRequest extends AuthDefaultRequest {
+
+    public AuthGitlabRequest(AuthConfig config) {
+        super(config, AuthSource.GITLAB);
+    }
+
+    public AuthGitlabRequest(AuthConfig config, AuthStateCache authStateCache) {
+        super(config, AuthSource.GITLAB, authStateCache);
+    }
+
+    @Override
+    protected AuthToken getAccessToken(AuthCallback authCallback) {
+        HttpResponse response = doPostAuthorizationCode(authCallback.getCode());
+        JSONObject object = JSONObject.parseObject(response.body());
+
+        this.checkResponse(object);
+
+        return AuthToken.builder()
+            .accessToken(object.getString("access_token"))
+            .refreshToken(object.getString("refresh_token"))
+            .idToken(object.getString("id_token"))
+            .tokenType(object.getString("token_type"))
+            .scope(object.getString("scope"))
+            .build();
+    }
+
+    @Override
+    protected AuthUser getUserInfo(AuthToken authToken) {
+        HttpResponse response = doGetUserInfo(authToken);
+        JSONObject object = JSONObject.parseObject(response.body());
+
+        this.checkResponse(object);
+
+        return AuthUser.builder()
+            .uuid(object.getString("id"))
+            .username(object.getString("username"))
+            .nickname(object.getString("name"))
+            .avatar(object.getString("avatar_url"))
+            .blog(object.getString("web_url"))
+            .company(object.getString("organization"))
+            .location(object.getString("location"))
+            .email(object.getString("email"))
+            .remark(object.getString("bio"))
+            .gender(AuthUserGender.UNKNOWN)
+            .token(authToken)
+            .source(source)
+            .build();
+    }
+
+    private void checkResponse(JSONObject object) {
+        // oauth/token 验证异常
+        if (object.containsKey("error")) {
+            throw new AuthException(object.getString("error_description"));
+        }
+        // user 验证异常
+        if (object.containsKey("message")) {
+            throw new AuthException(object.getString("message"));
+        }
+    }
+
+    /**
+     * 返回带{@code state}参数的授权url，授权回调时会带上这个{@code state}
+     *
+     * @param state state 验证授权流程的参数，可以防止csrf
+     * @return 返回授权地址
+     * @since 1.11.0
+     */
+    @Override
+    public String authorize(String state) {
+        return UrlBuilder.fromBaseUrl(super.authorize(state))
+            .queryParam("scope", "read_user+openid+profile+email")
+            .build();
+    }
+
+}