X-Git-Url: https://git.octo.it/?a=blobdiff_plain;f=fitbit%2Ffitbit.go;h=c7a6aa7b184e71cf070c40e9bb6c2128c6960d34;hb=e45460a9cf2134526a755cfa0c8124282f8ccf92;hp=90457d2360000908b3c86d042eb639774eff0b21;hpb=304308a757d192b9b80455017bda1cb82889d346;p=kraftakt.git

diff --git a/fitbit/fitbit.go b/fitbit/fitbit.go
index 90457d2..c7a6aa7 100644
--- a/fitbit/fitbit.go
+++ b/fitbit/fitbit.go
@@ -17,23 +17,26 @@ import (
 	"google.golang.org/appengine/log"
 )
 
-var oauth2Config = &oauth2.Config{
-	ClientID:     "@FITBIT_CLIENT_ID@",
-	ClientSecret: "@FITBIT_CLIENT_SECRET@",
-	Endpoint:     oauth2fitbit.Endpoint,
-	RedirectURL:  "https://kraftakt.octo.it/fitbit/grant",
-	Scopes: []string{
-		"activity",
-		"heartrate",
-		"profile",
-		"sleep",
-	},
+
+func oauthConfig() *oauth2.Config {
+	return &oauth2.Config{
+		ClientID:     app.Config.FitbitClientID,
+		ClientSecret: app.Config.FitbitClientSecret,
+		Endpoint:     oauth2fitbit.Endpoint,
+		RedirectURL:  "https://kraftakt.octo.it/fitbit/grant",
+		Scopes: []string{
+			"activity",
+			"heartrate",
+			"profile",
+			"sleep",
+		},
+	}
 }
 
 const csrfToken = "@CSRFTOKEN@"
 
 func AuthURL() string {
-	return oauth2Config.AuthCodeURL(csrfToken, oauth2.AccessTypeOffline)
+	return oauthConfig().AuthCodeURL(csrfToken, oauth2.AccessTypeOffline)
 }
 
 func ParseToken(ctx context.Context, r *http.Request, u *app.User) error {
@@ -41,7 +44,7 @@ func ParseToken(ctx context.Context, r *http.Request, u *app.User) error {
 		return fmt.Errorf("invalid state parameter: %q", state)
 	}
 
-	tok, err := oauth2Config.Exchange(ctx, r.FormValue("code"))
+	tok, err := oauthConfig().Exchange(ctx, r.FormValue("code"))
 	if err != nil {
 		return err
 	}
@@ -56,7 +59,7 @@ func CheckSignature(ctx context.Context, payload []byte, rawSig string) bool {
 		return false
 	}
 
-	mac := hmac.New(sha1.New, []byte(oauth2Config.ClientSecret+"&"))
+	mac := hmac.New(sha1.New, []byte(oauthConfig().ClientSecret+"&"))
 	mac.Write(payload)
 	signatureWant := mac.Sum(nil)
 
@@ -141,7 +144,7 @@ func NewClient(ctx context.Context, fitbitUserID string, u *app.User) (*Client,
 		fitbitUserID = "-"
 	}
 
-	c, err := u.OAuthClient(ctx, "Fitbit", oauth2Config)
+	c, err := u.OAuthClient(ctx, "Fitbit", oauthConfig())
 	if err != nil {
 		return nil, err
 	}
@@ -197,6 +200,38 @@ func (c *Client) Subscribe(ctx context.Context, collection string) error {
 	return nil
 }
 
+func (c *Client) Unsubscribe(ctx context.Context) error {
+	subscriberID, err := c.appUser.ID(ctx)
+	if err != nil {
+		return err
+	}
+
+	url := fmt.Sprintf("https://api.fitbit.com/1/user/%s/apiSubscriptions/%s.json",
+		c.fitbitUserID, subscriberID)
+	req, err := http.NewRequest(http.MethodDelete, url, nil)
+	if err != nil {
+		return err
+	}
+
+	res, err := c.client.Do(req.WithContext(ctx))
+	if err != nil {
+		return err
+	}
+	defer res.Body.Close()
+
+	if res.StatusCode >= 400 && res.StatusCode != http.StatusConflict {
+		data, _ := ioutil.ReadAll(res.Body)
+		log.Errorf(ctx, "creating subscription failed: status %d %q", res.StatusCode, data)
+		return fmt.Errorf("deleting subscription failed")
+	}
+
+	return nil
+}
+
+func (c *Client) DeleteToken(ctx context.Context) error {
+	return c.appUser.DeleteToken(ctx, "Fitbit")
+}
+
 type Profile struct {
 	Name     string
 	Timezone *time.Location