)
const (
- csrfToken = "@CSRFTOKEN@"
- userID = "me"
+ userID = "me"
dataTypeNameCalories = "com.google.calories.expended"
dataTypeNameDistance = "com.google.distance.delta"
}
}
+func AuthURL(ctx context.Context, u *app.User) string {
+ return oauthConfig().AuthCodeURL(u.Sign("Google"), oauth2.AccessTypeOffline)
+}
+
func Application(ctx context.Context) *fitness.Application {
return &fitness.Application{
Name: "Kraftakt",
}
}
-func AuthURL() string {
- return oauthConfig().AuthCodeURL(csrfToken, oauth2.AccessTypeOffline)
-}
-
func ParseToken(ctx context.Context, r *http.Request, u *app.User) error {
- if state := r.FormValue("state"); state != csrfToken {
+ if state := r.FormValue("state"); state != u.Sign("Google") {
return fmt.Errorf("invalid state parameter: %q", state)
}