leviolson
/
msgraph2orgmode
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 0 Wiki Activity
Using the Microsoft Graph API to retrieve Calendar and convert to Orgmode compatible plain text.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
33 KiB
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
msgraph2orgmode/oauth2ms.py

216 lines
6.5 KiB
Raw Permalink Normal View History

Woohoo - a working calendar fetch from M$ graph and conversion to Orgmode!
3 years ago
 
  1. # Copyright 2020 Harish Krupo
  2. # Licensed under the Apache License, Version 2.0 (the "License");
  3. # you may not use this file except in compliance with the License.
  4. # You may obtain a copy of the License at
  5. #     http://www.apache.org/licenses/LICENSE-2.0
  6. # Unless required by applicable law or agreed to in writing, software
  7. # distributed under the License is distributed on an "AS IS" BASIS,
  8. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  9. # See the License for the specific language governing permissions and
  10. # limitations under the License.
  11. 

  12. from xdg.BaseDirectory import (
  13.         load_first_config,
  14.         save_data_path
  15.         )
  16. 

  17. import argparse
  18. import webbrowser
  19. import logging
  20. import json
  21. import msal
  22. 

  23. from http.server import HTTPServer, BaseHTTPRequestHandler
  24. from urllib.parse import urlparse, parse_qs, urlencode
  25. from wsgiref import simple_server
  26. import wsgiref.util
  27. import sys
  28. import uuid
  29. import pprint
  30. import os
  31. import atexit
  32. import base64
  33. import gnupg
  34. import io
  35. 

  36. pp = pprint.PrettyPrinter(indent=4)
  37. 

  38. credentials_file = save_data_path("oauth2ms") + "/credentials.bin"
  39. 

  40. _LOGGER = logging.getLogger(__name__)
  41. 

  42. APP_NAME = "oauth2ms"
  43. SUCCESS_MESSAGE = "Authorization complete."
  44. 

  45. 

  46. def load_config():
  47.     config_file = load_first_config(APP_NAME, "config.json")
  48.     if config_file is None:
  49.         print(f"Couldn't find configuration file. Config file must be at: $XDG_CONFIG_HOME/{APP_NAME}/config.json")
  50.         print("Current value of $XDG_CONFIG_HOME is {}".format(os.getenv("XDG_CONFIG_HOME")))
  51.         return None
  52.     return json.load(open(config_file, 'r'))
  53. 

  54. def build_msal_app(config, cache = None):
  55.     return msal.ConfidentialClientApplication(
  56.         config['client_id'],
  57.         authority="https://login.microsoftonline.com/" + config['tenant_id'],
  58.         client_credential=config['client_secret'], token_cache=cache)
  59. 

  60. def get_auth_url(config, cache, state):
  61.     return build_msal_app(config, cache).get_authorization_request_url(
  62.         config['scopes'],
  63.         state=state,
  64.         redirect_uri=config["redirect_uri"]);
  65. 

  66. class WSGIRequestHandler(wsgiref.simple_server.WSGIRequestHandler):
  67.     """Silence out the messages from the http server"""
  68.     def log_message(self, format, *args):
  69.         pass
  70. 

  71. class WSGIRedirectionApp(object):
  72.     """WSGI app to handle the authorization redirect.

  73. 

  74.     Stores the request URI and displays the given success message.
  75.     """

  76. 

  77.     def __init__(self, message):
  78.         self.last_request_uri = None
  79.         self._success_message = message
  80. 

  81.     def __call__(self, environ, start_response):
  82.         start_response("200 OK", [("Content-type", "text/plain; charset=utf-8")])
  83.         self.last_request_uri = wsgiref.util.request_uri(environ)
  84.         return [self._success_message.encode("utf-8")]
  85. 

  86. def validate_config(config):
  87.     conditionsBoth = [
  88.         "tenant_id" in config,
  89.         "client_id" in config,
  90.         "scopes" in config,
  91.     ]
  92. 

  93.     conditionsAuth = [
  94.         "redirect_host" in config,
  95.         "redirect_port" in config,
  96.         "redirect_path" in config,
  97.         "client_secret" in config
  98.     ]
  99. 

  100.     if not all(conditionsBoth):
  101.         print("Invalid config")
  102.         print("Config must contain the keys: " +
  103.             "tenant_id, client_id, scopes");
  104.         return False
  105.     else:
  106.         return True
  107. 

  108. 

  109. def build_new_app_state():
  110.     cache = msal.SerializableTokenCache()
  111.     config = load_config()
  112.     if config is None:
  113.         return None
  114. 

  115.     if not validate_config(config):
  116.         return None
  117. 

  118. 

  119.     state = str(uuid.uuid4())
  120.     redirect_path = config["redirect_path"]
  121.     # Remove / at the end if present, and path is not just /
  122.     if redirect_path != "/" and redirect_path[-1] == "/":
  123.         redirect_path = redirect_path[:-1]
  124. 

  125.     config["redirect_uri"] = "http://" + config['redirect_host'] + ":" + config['redirect_port'] + redirect_path
  126.     auth_url = get_auth_url(config, cache, state)
  127.     wsgi_app = WSGIRedirectionApp(SUCCESS_MESSAGE)
  128.     http_server = simple_server.make_server(config['redirect_host'],
  129.                                                 int(config['redirect_port']),
  130.                                                 wsgi_app,
  131.                                                 handler_class=WSGIRequestHandler)
  132. 

  133.     webbrowser.open(auth_url, new=2, autoraise=True)
  134. 

  135.     http_server.handle_request()
  136. 

  137.     auth_response = wsgi_app.last_request_uri
  138.     http_server.server_close()
  139.     parsed_auth_response = parse_qs(auth_response)
  140. 

  141.     code_key = config["redirect_uri"] + "?code"
  142.     if code_key not in parsed_auth_response:
  143.         return None
  144. 

  145.     auth_code = parsed_auth_response[code_key]
  146. 

  147.     result = build_msal_app(config, cache).acquire_token_by_authorization_code(
  148.         auth_code,
  149.         scopes=config['scopes'],
  150.         redirect_uri=config["redirect_uri"]);
  151. 

  152.     if result.get("access_token") is None:
  153.         print("Something went wrong during authorization")
  154.         print(f"Server returned: {result}")
  155.         return None
  156. 

  157.     token = result["access_token"]
  158.     app = {}
  159.     app['config'] = config
  160.     app['cache'] = cache
  161.     return app, token
  162. 

  163. def fetch_token_from_cache(app):
  164.     config = app['config']
  165.     cache = app['cache']
  166.     cca = build_msal_app(config, cache)
  167.     accounts = cca.get_accounts()
  168.     if cca.get_accounts:
  169.         result = cca.acquire_token_silent(config['scopes'], account=accounts[0])
  170.         return result["access_token"]
  171.     else:
  172.         None
  173. 

  174. def build_app_state_from_credentials():
  175.     # If the file is missing return None
  176.     if not os.path.exists(credentials_file):
  177.         return None
  178. 

  179.     credentials = open(credentials_file, "r").read()
  180. 

  181.     # Make sure it is a valid json object
  182.     try:
  183.         config = json.loads(credentials)
  184.     except:
  185.         print("Not a valild json file or it is ecrypted. Maybe add/remove the -e arugment?")
  186.         sys.exit(1)
  187. 

  188.     # We don't have a token cache?
  189.     if config.get("token_cache") is None:
  190.         return None
  191. 

  192.     app_state = {};
  193.     cache = msal.SerializableTokenCache()
  194.     cache.deserialize(config["token_cache"])
  195.     app_state["config"] = config
  196.     app_state["cache"] = cache
  197.     return app_state
  198. 

  199. token = None
  200. app_state = build_app_state_from_credentials()
  201. if app_state is None:
  202.     app_state, token = build_new_app_state()
  203. 

  204. if app_state is None:
  205.     print("Something went wrong!")
  206.     sys.exit(1)
  207. 

  208. if token is None:
  209.     token = fetch_token_from_cache(app_state)
  210. 

  211. cache = app_state['cache']
  212. if cache.has_state_changed:
  213.     config = app_state["config"]
  214.     config["token_cache"] = cache.serialize()
  215.     config_json = json.dumps(config)
  216.     open(credentials_file, "w").write(config_json)