Merge pull request #1478 from nono/sharing-redirect

Redirection after a sharing was authorized

Author: nono

docs/sharing.md

@@ -34,6 +34,16 @@ If necessary, the application can list the permissions for the token by calling
 The owner of a cozy instance can send and synchronize documents to others cozy
 users.
 
+### Intents
+
+When a sharing is authorized, the user is redirected to their cozy on the
+application that was used for the sharing (when possible). It's possible to
+use a specific route to do so, via the intents. The application must declare
+an intent in its manifest for the action `SHARING`. The doctype of the intent
+must be the same as the doctype of the first rule of the sharing. In the
+redirect URL, the query string will have a `sharing` parameter with the
+sharing ID (but no intent parameter).
+
 ### Routes
 
 #### POST /sharings/

pkg/sharing/sharing.go

@@ -2,8 +2,11 @@ package sharing
 
 import (
 	"encoding/json"
+	"net/url"
+	"strings"
 	"time"
 
+	"github.com/cozy/cozy-stack/pkg/apps"
 	"github.com/cozy/cozy-stack/pkg/consts"
 	"github.com/cozy/cozy-stack/pkg/contacts"
 	"github.com/cozy/cozy-stack/pkg/couchdb"
@@ -466,4 +469,49 @@ func GetSharingsByDocType(inst *instance.Instance, docType string) (map[string]*
 	return sharings, nil
 }
 
+func findIntentForRedirect(inst *instance.Instance, app *apps.WebappManifest, doctype string) (*apps.Intent, string) {
+	action := "SHARING"
+	if app != nil {
+		if intent := app.FindIntent(action, doctype); intent != nil {
+			return intent, app.Slug()
+		}
+	}
+	var mans []apps.WebappManifest
+	err := couchdb.GetAllDocs(inst, consts.Apps, &couchdb.AllDocsRequest{}, &mans)
+	if err != nil {
+		return nil, ""
+	}
+	for _, man := range mans {
+		if intent := man.FindIntent(action, doctype); intent != nil {
+			return intent, man.Slug()
+		}
+	}
+	return nil, ""
+}
+
+// RedirectAfterAuthorizeURL returns the URL for the redirection after a user
+// has authorized a sharing.
+func (s *Sharing) RedirectAfterAuthorizeURL(inst *instance.Instance) *url.URL {
+	doctype := s.Rules[0].DocType
+	app, _ := apps.GetWebappBySlug(inst, s.AppSlug)
+
+	if intent, slug := findIntentForRedirect(inst, app, doctype); intent != nil {
+		u := inst.SubDomain(slug)
+		parts := strings.SplitN(intent.Href, "#", 2)
+		if len(parts[0]) > 0 {
+			u.Path = parts[0]
+		}
+		if len(parts) == 2 && len(parts[1]) > 0 {
+			u.Fragment = parts[1]
+		}
+		u.RawQuery = "sharing=" + s.SID
+		return u
+	}
+
+	if app == nil {
+		return inst.DefaultRedirection()
+	}
+	return inst.SubDomain(app.Slug())
+}
+
 var _ couchdb.Doc = &Sharing{}

web/auth/auth.go

@@ -722,7 +722,8 @@ func authorizeSharing(c echo.Context) error {
 	if err = s.SendAnswer(instance, params.state); err != nil {
 		return err
 	}
-	return c.Redirect(http.StatusSeeOther, instance.DefaultRedirection().String())
+	redirect := s.RedirectAfterAuthorizeURL(instance)
+	return c.Redirect(http.StatusSeeOther, redirect.String())
 }
 
 func authorizeAppForm(c echo.Context) error {