Added get-token.py for oauth2 authentication in imapfetch.py

Signed-off-by: Janos SUTO <sj@acts.hu>
2024-11-08 00:31:58 +01:00 · 2022-12-01 18:03:13 +01:00 · 2022-12-01 18:03:13 +01:00 · d9c82c09a1
commit d9c82c09a1
parent 78121de7fa
2 changed files with 77 additions and 0 deletions
--- a/util/Makefile.in
+++ b/util/Makefile.in
@ -35,6 +35,7 @@ install:
 	$(INSTALL) -m 0755 $(srcdir)/daily-report.php $(DESTDIR)$(libexecdir)/piler
 	$(INSTALL) -m 0755 $(srcdir)/gmail-imap-import.php $(DESTDIR)$(libexecdir)/piler
 	$(INSTALL) -m 0755 $(srcdir)/generate_stats.php $(DESTDIR)$(libexecdir)/piler
+	$(INSTALL) -m 0755 $(srcdir)/get-token.py $(DESTDIR)$(libexecdir)/piler
 	$(INSTALL) -m 0755 $(srcdir)/healthcheck.sh $(DESTDIR)$(libexecdir)/piler
 	$(INSTALL) -m 0755 $(srcdir)/mailstat.php $(DESTDIR)$(libexecdir)/piler
 	$(INSTALL) -m 0755 $(srcdir)/sign.php $(DESTDIR)$(libexecdir)/piler
--- a/util/get-token.py
+++ b/util/get-token.py
@ -0,0 +1,76 @@
+#!/usr/bin/python3
+
+# Based on the https://github.com/UvA-FNWI/M365-IMAP project
+
+from msal import ConfidentialClientApplication, SerializableTokenCache
+import http.server
+import os
+import sys
+import threading
+import urllib.parse
+
+
+redirect_uri = "http://localhost:8745"
+
+ClientId = "c6843299-05c4-4c2e-9398-64dd42f14b6d"  # Fix this value only
+ClientSecret = ""
+Scopes = ['https://outlook.office.com/IMAP.AccessAsUser.All']
+AccessTokenFileName = "access_token"
+
+
+cache = SerializableTokenCache()
+app = ConfidentialClientApplication(ClientId,
+                                    client_credential=ClientSecret,
+                                    token_cache=cache, authority=None)
+
+url = app.get_authorization_request_url(Scopes, redirect_uri=redirect_uri)
+
+print("Navigate to the following url in a web browser:\n", url)
+
+
+class Handler(http.server.BaseHTTPRequestHandler):
+    def do_GET(self):
+        parsed_url = urllib.parse.urlparse(self.path)
+        parsed_query = urllib.parse.parse_qs(parsed_url.query)
+        global code
+        code = next(iter(parsed_query['code']), '')
+
+        response_body = b'Success. Look back at your terminal.\r\n'
+        self.send_response(200)
+        self.send_header('Content-Type', 'text/plain')
+        self.send_header('Content-Length', len(response_body))
+        self.end_headers()
+        self.wfile.write(response_body)
+
+        global httpd
+        t = threading.Thread(target=lambda: httpd.shutdown())
+        t.start()
+
+
+code = ''
+
+server_address = ('', 8745)
+httpd = http.server.HTTPServer(server_address, Handler)
+
+if not os.getenv('SSH_CONNECTION'):
+    httpd.serve_forever()
+
+if code == '':
+    print('After login, you will be redirected to a blank (or error) page ' +
+          'with a url containing an access code. Paste the url below.')
+    resp = input('Response url: ')
+
+    i = resp.find('code') + 5
+    code = resp[i: resp.find('&', i)] if i > 4 else resp
+
+token = app.acquire_token_by_authorization_code(code, Scopes,
+                                                redirect_uri=redirect_uri)
+
+if 'error' in token:
+    print(token)
+    sys.exit("Failed to get access token")
+
+# print(token['refresh_token'])
+
+with open(AccessTokenFileName, 'w') as f:
+    f.write(token['access_token'])