...

author: Gregor Kleen <gkleen@yggdrasil.li> 2023-09-23 15:33:30 +0200
committer: Gregor Kleen <gkleen@yggdrasil.li> 2023-09-23 15:33:30 +0200
commit: 3832bf5daed8b4a3fc87153590131730daa4e88c (patch)
tree: 49b30717e86de623d00cec243ef84138e339716c /overlays/spm/lib/Spm
parent: 83549be4db488711263808a54afd2652d6d99ca9 (diff)
download: nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar
nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar.gz
nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar.bz2
nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar.xz
nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.zip
1 files changed, 30 insertions, 1 deletions
diff --git a/overlays/spm/lib/Spm/Api.hs b/overlays/spm/lib/Spm/Api.hs
index 04dff2c9..8285cc55 100644
--- a/overlays/spm/lib/Spm/Api.hs
+++ b/overlays/spm/lib/Spm/Api.hs
@@ -5,6 +5,7 @@ module Spm.Api
  , SpmMailbox, SpmDomain
  , SpmLocal(..), SpmExtension(..)
  , SpmMapping(..), SpmMappingState(..), SpmMappingListingItem(..), SpmMappingListing(..)
+  , SpmJWTClaims(..), _spmjwtLocal, _SpmJWTLocal
  , _SpmMappingText, _SpmMappingStateReject
  , spmMappingAncestors
  , SpmApi, spmApi
@@ -24,18 +25,21 @@ import Type.Reflection (Typeable)
 import Control.Lens
+import Control.Monad (guard)
 import Data.CaseInsensitive (CI)
 import qualified Data.CaseInsensitive as CI
 import Data.CaseInsensitive.Instances ()
 import Crypto.JOSE.JWK (JWKSet)
-import Crypto.JWT (SignedJWT)
+import Crypto.JWT (SignedJWT, ClaimsSet, HasClaimsSet(..), emptyClaimsSet)
 import Crypto.JWT.Instances ()
 import Data.UUID (UUID)
 import Data.UUID.Instances ()
 import qualified Data.Aeson as JSON
+import qualified Data.Aeson.Lens as JSON
 import Data.Aeson.TH (deriveJSON)
 import Data.Aeson.Casing
@@ -163,6 +167,31 @@ deriveJSON (aesonPrefix trainCase) ''SpmMappingListingItem
 instance ToJSON SpmMappingListing where
  toJSON SpmMappingListing{..} = JSON.object [ "mappings" JSON..= unSpmMappingListing ]
+data SpmJWTClaims = SpmJWTClaims
+  { spmjwtStdClaims :: ClaimsSet
+  , spmjwtLocal :: SpmLocal
+  } deriving stock (Eq, Show, Generic, Typeable)
+makeLensesFor [("spmjwtStdClaims", "_stdClaims"), ("spmjwtLocal", "_spmjwtLocal")] ''SpmJWTClaims
+instance HasClaimsSet SpmJWTClaims where
+  claimsSet = _stdClaims
+_SpmJWTLocal :: (Wrapped l, Unwrapped l ~ Unwrapped SpmLocal) => Prism' SpmJWTClaims l
+_SpmJWTLocal = prism' toClaims fromClaims
+  where toClaims (view $ _Wrapped' . _Unwrapped' -> spmjwtLocal) = SpmJWTClaims{..}
+          where spmjwtStdClaims = emptyClaimsSet
+        fromClaims SpmJWTClaims{..} = view (_Wrapped' . _Unwrapped') spmjwtLocal <$ guard (spmjwtStdClaims == emptyClaimsSet)
+instance JSON.ToJSON SpmJWTClaims where
+  toJSON SpmJWTClaims{..} = JSON.toJSON spmjwtStdClaims
+    & JSON._Object . at "li.yggdrasil.local" .~ Just (JSON.toJSON spmjwtLocal)
+instance JSON.FromJSON SpmJWTClaims where
+  parseJSON = JSON.withObject "SpmJWTClaims" $ \o -> SpmJWTClaims
+    <$> JSON.parseJSON (JSON._Object # o)
+    <*> o JSON..: "li.yggdrasil.local"
 type SpmApi = "whoami" :> Get '[PlainText, JSON] SpmMailbox
         :<|> "domain" :> Get '[PlainText, JSON] SpmDomain
author	Gregor Kleen <gkleen@yggdrasil.li>	2023-09-23 15:33:30 +0200
committer	Gregor Kleen <gkleen@yggdrasil.li>	2023-09-23 15:33:30 +0200
commit	3832bf5daed8b4a3fc87153590131730daa4e88c (patch)
tree	49b30717e86de623d00cec243ef84138e339716c /overlays/spm/lib/Spm
parent	83549be4db488711263808a54afd2652d6d99ca9 (diff)
download	nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar.gz nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar.bz2 nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.tar.xz nixos-3832bf5daed8b4a3fc87153590131730daa4e88c.zip