Working redirects

rajsinghtech · rajsinghtech · commit 872c13764571 · 2025-01-25T22:27:45.000-06:00
diff --git a/main.go b/main.go
@@ -16,9 +16,12 @@ import (
 )
 
 type TokenResponse struct {
-	AccessToken string `json:"access_token"`
-	TokenType   string `json:"token_type"`
-	ExpiresIn   int    `json:"expires_in"`
+	AccessToken  string `json:"access_token"`
+	TokenType    string `json:"token_type"`
+	ExpiresIn    int    `json:"expires_in"`
+	RefreshToken string `json:"refresh_token,omitempty"`
+	IdToken      string `json:"id_token,omitempty"`
+	Scope        string `json:"scope,omitempty"`
 }
 
 type RegistrationResponse struct {
@@ -38,6 +41,13 @@ type TeslaAPIResponse struct {
 	Error    string                `json:"error"`
 }
 
+type AuthConfig struct {
+	ClientID    string `json:"client_id"`
+	RedirectURI string `json:"redirect_uri"`
+	State       string `json:"state"`
+	Scope       string `json:"scope"`
+}
+
 func generateToken() (*TokenResponse, error) {
 	data := url.Values{}
 	data.Set("grant_type", "client_credentials")
@@ -178,6 +188,76 @@ var (
 	domainName   []byte
 )
 
+func getBaseURL(c *fiber.Ctx) string {
+	protocol := "http"
+	if c.Protocol() == "https" || c.Get("X-Forwarded-Proto") == "https" {
+		protocol = "https"
+	}
+	return fmt.Sprintf("%s://%s", protocol, c.Hostname())
+}
+
+func getRedirectURI(c *fiber.Ctx) string {
+	host := c.Hostname()
+	// Use exact URIs as registered in Tesla Developer Portal
+	if host == "localhost" || host == "localhost:3000" || strings.HasPrefix(host, "127.0.0.1") {
+		return "http://localhost:3000/callback"
+	}
+	return "https://tesla.rajsingh.info/callback"
+}
+
+func generateAuthURL(c *fiber.Ctx) string {
+	redirectURI := getRedirectURI(c)
+	log.Printf("Using redirect URI: %s", redirectURI)
+
+	// Build the URL in the exact same order as the example
+	params := url.Values{}
+	params.Set("client_id", strings.TrimSpace(string(clientID)))
+	params.Set("locale", "en-US")
+	params.Set("prompt", "login")
+	params.Set("redirect_uri", redirectURI)
+	params.Set("response_type", "code")
+	params.Set("scope", "openid user_data vehicle_device_data vehicle_cmds vehicle_charging_cmds energy_device_data energy_cmds offline_access")
+	params.Set("state", "abc123") // Match the example's state value
+
+	authURL := fmt.Sprintf("https://auth.tesla.com/oauth2/v3/authorize?%s", params.Encode())
+	log.Printf("Generated auth URL: %s", authURL)
+	return authURL
+}
+
+func exchangeAuthCode(code string, c *fiber.Ctx) (*TokenResponse, error) {
+	redirectURI := getRedirectURI(c)
+	log.Printf("Using redirect URI for token exchange: %s", redirectURI)
+
+	data := url.Values{}
+	data.Set("grant_type", "authorization_code")
+	data.Set("client_id", strings.TrimSpace(string(clientID)))
+	data.Set("client_secret", strings.TrimSpace(string(clientSecret)))
+	data.Set("code", code)
+	data.Set("redirect_uri", redirectURI)
+	data.Set("audience", "https://fleet-api.prd.na.vn.cloud.tesla.com")
+
+	resp, err := http.PostForm("https://auth.tesla.com/oauth2/v3/token", data)
+	if err != nil {
+		return nil, err
+	}
+	defer resp.Body.Close()
+
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return nil, fmt.Errorf("error reading response: %v", err)
+	}
+
+	log.Printf("Token exchange response status: %d", resp.StatusCode)
+	log.Printf("Token exchange response body: %s", string(body))
+
+	var tokenResp TokenResponse
+	if err := json.NewDecoder(resp.Body).Decode(&tokenResp); err != nil {
+		return nil, err
+	}
+
+	return &tokenResp, nil
+}
+
 func main() {
 	var err error
 	// Read credentials
@@ -268,6 +348,53 @@ func main() {
 		})
 	})
 
+	// Add the authorization endpoint
+	app.Get("/auth", func(c *fiber.Ctx) error {
+		authURL := generateAuthURL(c)
+		log.Printf("Generated auth URL: %s", authURL)
+		return c.Redirect(authURL)
+	})
+
+	// Add the callback endpoint
+	app.Get("/callback", func(c *fiber.Ctx) error {
+		code := c.Query("code")
+		state := c.Query("state")
+
+		if state != "abc123" { // Match the state from the auth request
+			return c.Status(400).JSON(fiber.Map{
+				"error": "Invalid state parameter",
+			})
+		}
+
+		if code == "" {
+			return c.Status(400).JSON(fiber.Map{
+				"error": "No authorization code provided",
+			})
+		}
+
+		token, err := exchangeAuthCode(code, c)
+		if err != nil {
+			return c.Status(500).JSON(fiber.Map{
+				"error": "Failed to exchange authorization code: " + err.Error(),
+			})
+		}
+
+		// Check if the request accepts JSON
+		accepts := c.Accepts("application/json")
+		if accepts == "application/json" {
+			return c.JSON(fiber.Map{
+				"token":   token,
+				"message": "Successfully obtained user access token",
+			})
+		}
+
+		// Otherwise, render the success page
+		return c.Render("callback", fiber.Map{
+			"Title": "Authorization Successful",
+			"Token": token,
+		})
+	})
+
 	// Serve the main page
 	app.Get("/", func(c *fiber.Ctx) error {
 		return c.Render("index", fiber.Map{
diff --git a/views/callback.html b/views/callback.html
@@ -0,0 +1,99 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>{{.Title}}</title>
+    <style>
+        body {
+            margin: 0;
+            padding: 0;
+            font-family: "Gotham Medium", -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto, "Helvetica Neue", Arial, sans-serif;
+            background-color: #fff;
+            color: #171a20;
+        }
+        .container {
+            max-width: 1200px;
+            margin: 0 auto;
+            padding: 40px 20px;
+            text-align: center;
+        }
+        h1 {
+            font-size: 40px;
+            font-weight: 500;
+            margin-bottom: 30px;
+            color: #2e7d32;
+        }
+        .success-icon {
+            font-size: 64px;
+            color: #2e7d32;
+            margin-bottom: 20px;
+        }
+        .description {
+            max-width: 600px;
+            margin: 0 auto 40px;
+            font-size: 16px;
+            line-height: 1.5;
+            color: #393c41;
+        }
+        .token-display {
+            margin-top: 20px;
+            padding: 20px;
+            background-color: rgba(244, 244, 244, 0.65);
+            border-radius: 20px;
+            text-align: left;
+            word-break: break-all;
+            backdrop-filter: blur(8px);
+        }
+        .token-display h3 {
+            margin-top: 0;
+            margin-bottom: 15px;
+            color: #171a20;
+        }
+        .token-display pre {
+            margin: 0;
+            white-space: pre-wrap;
+            background-color: #fff;
+            padding: 15px;
+            border-radius: 12px;
+            border: 1px solid #ddd;
+        }
+        .tesla-button {
+            background-color: #3e6ae1;
+            color: #fff;
+            border: none;
+            padding: 16px 48px;
+            border-radius: 20px;
+            font-size: 15px;
+            font-weight: 500;
+            cursor: pointer;
+            transition: all 0.3s ease;
+            text-transform: uppercase;
+            letter-spacing: 0.5px;
+            margin: 10px;
+            min-width: 264px;
+            backdrop-filter: blur(8px);
+            box-shadow: inset 0 0 0 2px transparent;
+            text-decoration: none;
+            display: inline-block;
+        }
+        .tesla-button:hover {
+            background-color: #3457b1;
+        }
+    </style>
+</head>
+<body>
+    <div class="container">
+        <div class="success-icon">✓</div>
+        <h1>Authorization Successful</h1>
+        <p class="description">
+            Your Tesla account has been successfully connected. You can now use the Fleet Telemetry service.
+        </p>
+        <div class="token-display">
+            <h3>Authorization Details:</h3>
+            <pre>{{.Token | printf "%+v"}}</pre>
+        </div>
+        <a href="/" class="tesla-button">Return to Dashboard</a>
+    </div>
+</body>
+</html> 
diff --git a/views/index.html b/views/index.html
@@ -52,6 +52,12 @@
             background-color: #393c41;
             color: #fff;
         }
+        .tesla-button.highlight {
+            background-color: #e82127;
+        }
+        .tesla-button.highlight:hover {
+            background-color: #d01a1f;
+        }
         .description {
             max-width: 600px;
             margin: 0 auto 40px;
@@ -110,6 +116,12 @@
             border-radius: 20px;
             backdrop-filter: blur(8px);
         }
+        .section-divider {
+            width: 100%;
+            height: 1px;
+            background-color: #eee;
+            margin: 30px 0;
+        }
     </style>
 </head>
 <body>
@@ -129,6 +141,19 @@ <h1>Tesla Fleet Telemetry Operator</h1>
                 Download Public Key
             </button>
         </div>
+
+        <div class="section-divider"></div>
+
+        <div class="button-container">
+            <h2>User Authorization</h2>
+            <p class="description">
+                Authorize access to your Tesla vehicles to enable fleet telemetry.
+            </p>
+            <button class="tesla-button highlight" onclick="window.location.href='/auth'">
+                Authorize Tesla Account
+            </button>
+        </div>
+
         <div id="responseDisplay" class="response-display">
             <div class="response-section">
                 <h3>Partner Authentication Token:</h3>
@@ -142,12 +167,27 @@ <h3>Registration Response:</h3>
                 <h3>Verification Response:</h3>
                 <pre id="verificationContent"></pre>
             </div>
+            <div class="response-section" id="userTokenSection" style="display: none;">
+                <h3>User Authorization Token:</h3>
+                <pre id="userTokenContent"></pre>
+            </div>
         </div>
         <div id="errorMessage" class="error-message"></div>
         <div id="successMessage" class="success-message"></div>
     </div>
 
     <script>
+        // Check for callback response in URL hash or search params
+        window.onload = function() {
+            const urlParams = new URLSearchParams(window.location.search);
+            const code = urlParams.get('code');
+            const state = urlParams.get('state');
+            
+            if (code && state) {
+                displayUserToken({ code, state });
+            }
+        }
+
         async function generateToken() {
             const responseDisplay = document.getElementById('responseDisplay');
             const tokenContent = document.getElementById('tokenContent');
@@ -214,6 +254,21 @@ <h3>Verification Response:</h3>
                 responseDisplay.style.display = 'none';
             }
         }
+
+        function displayUserToken(data) {
+            const responseDisplay = document.getElementById('responseDisplay');
+            const userTokenSection = document.getElementById('userTokenSection');
+            const userTokenContent = document.getElementById('userTokenContent');
+            const successMessage = document.getElementById('successMessage');
+            const errorMessage = document.getElementById('errorMessage');
+
+            userTokenContent.textContent = JSON.stringify(data, null, 2);
+            userTokenSection.style.display = 'block';
+            responseDisplay.style.display = 'block';
+            successMessage.textContent = 'User authorization successful!';
+            successMessage.style.display = 'block';
+            errorMessage.style.display = 'none';
+        }
     </script>
 </body>
 </html> 
