Skip to content

Commit 8b5da4d

Browse files
lpirolalpirola
committed
Habilita login com gov br
1 parent c4ebe25 commit 8b5da4d

File tree

5 files changed

+71
-7
lines changed

5 files changed

+71
-7
lines changed

.env.sample

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -36,3 +36,21 @@ AUTH_EMAIL_IMAGE=
3636
AUTH_LOGIN_ON_REGISTER=true
3737
STATUS_CREATE_AGENT=1
3838
AUTH_LOGIN_BY_CPF=false
39+
40+
AUTH_GOV_BR_ID=true
41+
AUTO_GOV_RESPONSE_TYPE=code
42+
AUTH_GOV_BR_CLIENT_ID=client_id
43+
AUTH_GOV_BR_CLIENT_SECRET=secret
44+
AUTH_GOV_BR_SCOPE=openid email profile phone govbr_confiabilidades
45+
AUTH_GOV_BR_REDIRECT_URI=https://gov.br/autenticacao/oauth2callback
46+
AUTH_GOV_BR_ENDPOINT=https://gov.br/authorize
47+
AUTH_GOV_BR_TOKEN_ENDPOINT=https://gov.br/token
48+
AUTH_GOV_BR_NONCE=mapas
49+
AUTH_GOV_BR_CODE_VERIFIER=vbQ71yzBAphMeargyG6EG_It9P6-kqSIrgRyT-hGwIQ
50+
AUTH_GOV_BR_CODE_CHALLENGE=wwheOwufT6pFeAuIaHo8QmMT4k6r2gh0N1X_zHQK7LU
51+
AUTH_GOV_BR_CODE_CHALLENGE_METHOD=S256
52+
AUTH_GOV_BR_USERINFO_ENDPOINT=https://gov.br/jwk
53+
AUTH_GOV_BR_STATE_SALT=mapas
54+
AUTH_GOV_BR_APPLY_SEAL_ID=1
55+
AUTH_GOV_BR_MENSSAGEM_AUTHENTICATED=Usuário já se autenticou pelo GovBr
56+
AUTH_GOV_BR_DICT_AGENT_FIELDS_UPDATE="['nomeCompleto' => 'full_name', 'name' => 'name', 'documento' => 'cpf', 'cpf' => 'cpf', 'emailPrivado' => 'email', 'telefone1' => 'phone_number']"

config/authentication.php

Lines changed: 30 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -13,12 +13,40 @@
1313
'wizard' => 'true',
1414
'timeout' => '24 hours',
1515
'strategies' => [
16-
'Facebook' => [
16+
'govbr' => [
17+
'client_id' => env('AUTH_GOV_BR_CLIENT_ID', null),
18+
'client_secret' => env('AUTH_GOV_BR_CLIENT_SECRET', null),
19+
'scope' => env('AUTH_GOV_BR_SCOPE', 'openid email profile phone govbr_confiabilidades'),
20+
'visible' => env('AUTH_GOV_BR_ID', true),
21+
'response_type' => 'code',
22+
'scope' => 'openid email profile phone govbr_confiabilidades',
23+
'redirect_uri' => 'https://experimente-minc.mapas.tec.br/autenticacao/autenticacao/govbr/oauth2callback',
24+
'auth_endpoint' => 'https://sso.staging.acesso.gov.br/authorize',
25+
'token_endpoint' => 'https://sso.staging.acesso.gov.br/token',
26+
'nonce' => 'abc',
27+
/*'userinfo_endpoint' => 'https://sso.staging.acesso.gov.br/jwk',*/
28+
'state_salt' => "mapasminc",
29+
'code_challenge_method' => 'S256',
30+
'code_challenge' => env('AUTH_GOV_CODE_CHALLENGE', 'wwheOwufT6pFeAuIaHo8QmMT4k6r2gh0N1X_zHQK7LU'),
31+
'code_verifier' => env('AUTH_GOV_CODE_VERIFIER', 'vbQ71yzBAphMeargyG6EG_It9P6-kqSIrgRyT-hGwIQ'),
32+
'applySealId' => 1,
33+
'menssagem_authenticated' => "",
34+
'dic_agent_fields_update' => [
35+
'nomeCompleto' => 'full_name',
36+
'name' => 'name',
37+
'documento' => 'cpf',
38+
'cpf' => 'cpf',
39+
'emailPrivado' => 'email',
40+
'telefone1' => 'phone_number',
41+
]
42+
],
43+
44+
'Facebook' => [
1745
'app_id' => env('AUTH_FACEBOOK_APP_ID', null),
1846
'app_secret' => env('AUTH_FACEBOOK_APP_SECRET', null),
1947
'scope' => env('AUTH_FACEBOOK_SCOPE', 'email'),
2048
],
21-
49+
2250
'Google' => [
2351
'client_id' => env('AUTH_GOOGLE_CLIENT_ID', null),
2452
'client_secret' => env('AUTH_GOOGLE_CLIENT_SECRET', null),

config/plugins.php

Lines changed: 4 additions & 4 deletions
Original file line numberDiff line numberDiff line change
@@ -2,9 +2,9 @@
22

33
return [
44
'plugins' => [
5-
'MultipleLocalAuth',
6-
'AdminLoginAsUser',
7-
'RecreatePCacheOnLogin',
8-
'SpamDetector'
5+
'MultipleLocalAuth',
6+
'AdminLoginAsUser',
7+
'RecreatePCacheOnLogin',
8+
'SpamDetector'
99
]
1010
];

docker-compose.yml

Lines changed: 18 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -36,6 +36,24 @@ x-defaults: &defaults
3636
STATUS_CREATE_AGENT: ${STATUS_CREATE_AGENT}
3737
AUTH_LOGIN_BY_CPF: ${AUTH_LOGIN_BY_CPF}
3838

39+
AUTH_GOV_BR_ID: ${AUTH_GOV_BR_ID}
40+
AUTO_GOV_RESPONSE_TYPE: ${AUTO_GOV_RESPONSE_TYPE}
41+
AUTH_GOV_BR_CLIENT_ID: ${AUTH_GOV_BR_CLIENT_ID}
42+
AUTH_GOV_BR_CLIENT_SECRET: ${AUTH_GOV_BR_CLIENT_SECRET}
43+
AUTH_GOV_BR_SCOPE: ${AUTH_GOV_BR_SCOPE}
44+
AUTH_GOV_BR_REDIRECT_URI: ${AUTH_GOV_BR_REDIRECT_URI}
45+
AUTH_GOV_BR_ENDPOINT: ${AUTH_GOV_BR_ENDPOINT}
46+
AUTH_GOV_BR_TOKEN_ENDPOINT: ${AUTH_GOV_BR_TOKEN_ENDPOINT}
47+
AUTH_GOV_BR_NONCE: ${AUTH_GOV_BR_NONCE}
48+
AUTH_GOV_BR_CODE_VERIFIER: ${AUTH_GOV_BR_CODE_VERIFIER}
49+
AUTH_GOV_BR_CODE_CHALLENGE: ${AUTH_GOV_BR_CODE_CHALLENGE}
50+
AUTH_GOV_BR_CODE_CHALLENGE_METHOD: ${AUTH_GOV_BR_CODE_CHALLENGE_METHOD}
51+
AUTH_GOV_BR_USERINFO_ENDPOINT: ${AUTH_GOV_BR_USERINFO_ENDPOINT}
52+
AUTH_GOV_BR_STATE_SALT: ${AUTH_GOV_BR_STATE_SALT}
53+
AUTH_GOV_BR_APPLY_SEAL_ID: ${AUTH_GOV_BR_APPLY_SEAL_ID}
54+
AUTH_GOV_BR_MENSSAGEM_AUTHENTICATED: ${AUTH_GOV_BR_MENSSAGEM_AUTHENTICATED}
55+
AUTH_GOV_BR_DICT_AGENT_FIELDS_UPDATE: ${AUTH_GOV_BR_DICT_AGENT_FIELDS_UPDATE}
56+
3957
services:
4058
backend:
4159
<<: *defaults

src/plugins/MultipleLocalAuth

0 commit comments

Comments
 (0)