Merge pull request #134 from warcooft/feat-29-7

feat: Handles deauthentication actions by users.
datamweb · Jul 29, 2024 · 9b4e5db
2 parents 1f36be9 + 0b5df6a
commit 9b4e5db
Show file tree

Hide file tree

Showing 5 changed files with 15 additions and 1 deletion.
diff --git a/src/Controllers/OAuthController.php b/src/Controllers/OAuthController.php
@@ -21,6 +21,8 @@
 
 class OAuthController extends BaseController implements ControllersInterface
 {
+    private const ACCESS_DENIED = 'access_denied';
+
     public function redirectOAuth(string $oauthName): RedirectResponse
     {
         // if user login
@@ -50,11 +52,19 @@ public function redirectOAuth(string $oauthName): RedirectResponse
     public function callBack(): RedirectResponse
     {
         // if user after callback request url
-        if (! session('oauth_name')) {
+        if (! $oauth_name = session('oauth_name')) {
             return redirect()->to(config('Auth')->logoutRedirect())->with('error', lang('ShieldOAuthLang.Callback.oauth_class_not_set'));
         }
         $allGet = $this->request->getGet();
 
+        // if permission is denied or was cancelled by user.
+        if (isset($allGet['error']) && $allGet['error'] === self::ACCESS_DENIED) {
+            $OAuth     = ucfirst($oauth_name);
+            $oauthName = lang("ShieldOAuthLang.{$OAuth}.{$oauth_name}");
+
+            return redirect()->to(config('Auth')->logoutRedirect())->with('error', lang('ShieldOAuthLang.Callback.access_denied', [$oauthName]));
+        }
+
         // if api have error
         if (isset($allGet['error'])) {
             return redirect()->to(config('Auth')->logoutRedirect())->with('error', lang('ShieldOAuthLang.unknown'));

diff --git a/src/Language/en/ShieldOAuthLang.php b/src/Language/en/ShieldOAuthLang.php
@@ -19,6 +19,7 @@
         'oauth_class_not_set' => 'An error occurred, it seems that the OAuth Class is not set.',
         'anti_forgery'        => 'Your request has been detected as fake. we are sorry!',
         'account_not_found'   => 'There is no account registered with the email "{0}".',
+        'access_denied'       => 'Authentication cancelled! You declined {0} permissions.',
     ],
 
     // ShieldOAuthButton in views

diff --git a/src/Language/fa/ShieldOAuthLang.php b/src/Language/fa/ShieldOAuthLang.php
@@ -19,6 +19,7 @@
         'oauth_class_not_set' => 'خطای رخ داد، به نظر میرسد کلاس OAuth مورد نظر به درستی تنظیم نشده است.',
         'anti_forgery'        => 'متاسفانه، تلاش شما ، یک درخواست جعلی تشخیص داده شد.',
         'account_not_found'   => 'هیچ حسابی با ایمیل "{0}" ثبت نشده است.',
+        'access_denied'       => 'تأیید اعتبار لغو شد! شما دسترسی‌های {0} را رد کردید.',
     ],
 
     // ShieldOAuthButton in views

diff --git a/src/Language/fr/ShieldOAuthLang.php b/src/Language/fr/ShieldOAuthLang.php
@@ -19,6 +19,7 @@
         'oauth_class_not_set' => 'Une erreur s’est produite, il semble que la classe OAuth n’est pas définie.',
         'anti_forgery'        => 'Votre demande a été détectée comme erronée. Nous sommes désolés!',
         'account_not_found'   => 'Il n\'y a pas de compte enregistré avec l\'email "{0}".',
+        'access_denied'       => 'Authentification annulée ! Vous avez refusé les autorisations {0}.',
     ],
 
     // ShieldOAuthButton in views

diff --git a/src/Language/id/ShieldOAuthLang.php b/src/Language/id/ShieldOAuthLang.php