Polestar: simplify (evcc-io#17688)

GrimmiMeloni · Dec 12, 2024 · 51075e2 · 51075e2
1 parent 8704d32
commit 51075e2
Show file tree

Hide file tree

Showing 2 changed files with 25 additions and 84 deletions.
diff --git a/vehicle/polestar/identity.go b/vehicle/polestar/identity.go
@@ -1,15 +1,12 @@
 package polestar
 
 import (
-	"crypto/rand"
-	"crypto/sha256"
-	"encoding/base64"
+	"errors"
 	"fmt"
 	"net/http"
 	"net/http/cookiejar"
 	"net/url"
 	"strings"
-	"time"
 
 	"github.com/evcc-io/evcc/util"
 	"github.com/evcc-io/evcc/util/request"
@@ -29,7 +26,6 @@ const (
 type Identity struct {
 	*request.Helper
 	user, password string
-	jar            *cookiejar.Jar
 	log            *util.Logger
 }
 
@@ -42,15 +38,12 @@ func NewIdentity(log *util.Logger, user, password string) (*Identity, error) {
 		log:      log,
 	}
 
-	log.DEBUG.Printf("initializing polestar identity with user: %s", user)
-
 	jar, err := cookiejar.New(&cookiejar.Options{
 		PublicSuffixList: publicsuffix.List,
 	})
 	if err != nil {
 		return nil, err
 	}
-	v.jar = jar
 	v.Client.Jar = jar
 
 	token, err := v.login()
@@ -66,63 +59,38 @@ func NewIdentity(log *util.Logger, user, password string) (*Identity, error) {
 	return v, nil
 }
 
-// generates code verifier for PKCE
-func generateCodeVerifier() string {
-	b := make([]byte, 32)
-	rand.Read(b)
-	return strings.TrimRight(base64.URLEncoding.EncodeToString(b), "=")
-}
-
-// generates code challenge from verifier
-func generateCodeChallenge(verifier string) string {
-	hash := sha256.Sum256([]byte(verifier))
-	return strings.TrimRight(base64.URLEncoding.EncodeToString(hash[:]), "=")
-}
-
 func (v *Identity) login() (*oauth2.Token, error) {
-	state := lo.RandomString(16, lo.AlphanumericCharset)
-	codeVerifier := generateCodeVerifier()
-	codeChallenge := generateCodeChallenge(codeVerifier)
-
-	// Build authorization URI with all required scopes
-	authURL := fmt.Sprintf("%s/as/authorization.oauth2"+
-		"?client_id=%s"+
-		"&redirect_uri=%s"+
-		"&response_type=code"+
-		"&state=%s"+
-		"&scope=openid%%20profile%%20email"+
-		"&code_challenge=%s"+
-		"&code_challenge_method=S256",
-		OAuthURI, ClientID, RedirectURI, state, codeChallenge)
+	cv := oauth2.GenerateVerifier()
+
+	data := url.Values{
+		"client_id":             {ClientID},
+		"redirect_uri":          {RedirectURI},
+		"response_type":         {"code"},
+		"state":                 {lo.RandomString(16, lo.AlphanumericCharset)},
+		"scope":                 {"openid", "profile", "email"},
+		"code_challenge":        {oauth2.S256ChallengeFromVerifier(cv)},
+		"code_challenge_method": {"S256"},
+	}
 
 	// Get resume path with browser-like headers
-	req, err := request.New(http.MethodGet, authURL, nil, map[string]string{
+	uri := fmt.Sprintf("%s/as/authorization.oauth2?%s", OAuthURI, data.Encode())
+	req, _ := request.New(http.MethodGet, uri, nil, map[string]string{
 		"Accept": "application/json",
 	})
-	if err != nil {
-		return nil, err
-	}
 
 	resp, err := v.Do(req)
 	if err != nil {
 		return nil, err
 	}
-	v.log.TRACE.Printf("auth response URL: %s", resp.Request.URL.String())
 	resp.Body.Close()
 
-	// Extract resume path from redirect URL
-	if resp.Request.URL == nil {
-		return nil, fmt.Errorf("no redirect url")
-	}
-
 	// First we get redirected to the login page
 	if strings.Contains(resp.Request.URL.Path, "/PolestarLogin/login") {
 		// Extract resumePath from the login URL
 		resumePath := resp.Request.URL.Query().Get("resumePath")
 		if resumePath == "" {
-			return nil, fmt.Errorf("resume path not found in login URL: %s", resp.Request.URL.String())
+			return nil, errors.New("missing resume path in login url")
 		}
-		v.log.TRACE.Printf("got resume path: %s", resumePath)
 
 		// Submit credentials directly to the login endpoint
 		loginURL := fmt.Sprintf("%s/as/%s/resume/as/authorization.ping", OAuthURI, resumePath)
@@ -132,64 +100,44 @@ func (v *Identity) login() (*oauth2.Token, error) {
 			"client_id":   []string{ClientID},
 		}
 
-		req, err = request.New(http.MethodPost, loginURL, strings.NewReader(data.Encode()), map[string]string{
+		req, _ = request.New(http.MethodPost, loginURL, strings.NewReader(data.Encode()), map[string]string{
 			"Content-Type": "application/x-www-form-urlencoded",
 			"Accept":       "application/json",
 		})
-		if err != nil {
-			return nil, err
-		}
 
 		resp, err = v.Do(req)
 		if err != nil {
 			return nil, err
 		}
-		v.log.TRACE.Printf("login response URL: %s", resp.Request.URL.String())
 		resp.Body.Close()
-
-		if resp.Request.URL == nil {
-			return nil, fmt.Errorf("no redirect url after login")
-		}
 	}
 
 	// After login, we should get the authorization code directly
-	query := resp.Request.URL.Query()
-	code := query.Get("code")
-	if code != "" {
-		v.log.TRACE.Printf("got authorization code directly")
-		goto exchange
+	code := resp.Request.URL.Query().Get("code")
+	if code == "" {
+		return nil, errors.New("missing authorization code")
 	}
 
-	return nil, fmt.Errorf("authorization code not found in URL: %s", resp.Request.URL.String())
-
-exchange:
 	// Exchange code for token
-	data := url.Values{
+	data = url.Values{
 		"grant_type":    []string{"authorization_code"},
 		"code":          []string{code},
-		"code_verifier": []string{codeVerifier},
+		"code_verifier": []string{cv},
 		"client_id":     []string{ClientID},
 		"redirect_uri":  []string{RedirectURI},
 	}
 
-	var token Token
-	req, err = request.New(http.MethodPost, OAuthURI+"/as/token.oauth2",
+	var token oauth2.Token
+	req, _ = request.New(http.MethodPost, OAuthURI+"/as/token.oauth2",
 		strings.NewReader(data.Encode()),
 		map[string]string{
 			"Content-Type": "application/x-www-form-urlencoded",
 			"Accept":       "application/json",
 		},
 	)
-	if err == nil {
-		err = v.DoJSON(req, &token)
-	}
 
-	return &oauth2.Token{
-		AccessToken:  token.AccessToken,
-		TokenType:    "Bearer",
-		RefreshToken: token.RefreshToken,
-		Expiry:       time.Now().Add(time.Duration(token.ExpiresIn) * time.Second),
-	}, err
+	err = v.DoJSON(req, &token)
+	return util.TokenWithExpiry(&token), err
 }
 
 // TokenSource implements oauth.TokenSource

diff --git a/vehicle/polestar/types.go b/vehicle/polestar/types.go
@@ -2,13 +2,6 @@ package polestar
 
 import "time"
 
-type Token struct {
-	AccessToken  string `json:"access_token"`
-	RefreshToken string `json:"refresh_token"`
-	ExpiresIn    int    `json:"expires_in"`
-	TokenType    string `json:"token_type"`
-}
-
 type ConsumerCar struct {
 	VIN                       string
 	InternalVehicleIdentifier string