brut/bincio-activity
1
0
Fork 0
Code Issues Pull Requests Actions 8 Packages Projects Releases Wiki Activity

fix for strava auth

Browse Source
This commit is contained in:
Davide Scaini
2026-04-10 18:01:32 +02:00
parent f67e7552fd
commit e2765ea012
3 changed files with 12 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
bincio/serve/cli.py
+4 -1
View File
@@ -19,9 +19,10 @@ console = Console()
@click.option("--strava-client-id", default=None, envvar="STRAVA_CLIENT_ID", help="Strava OAuth client ID (enables per-user Strava sync)") @click.option("--strava-client-id", default=None, envvar="STRAVA_CLIENT_ID", help="Strava OAuth client ID (enables per-user Strava sync)")
@click.option("--strava-client-secret", default=None, envvar="STRAVA_CLIENT_SECRET", help="Strava OAuth client secret") @click.option("--strava-client-secret", default=None, envvar="STRAVA_CLIENT_SECRET", help="Strava OAuth client secret")
@click.option("--max-users", default=None, type=int, help="Override max users for this instance (0 = unlimited; updates the DB setting)") @click.option("--max-users", default=None, type=int, help="Override max users for this instance (0 = unlimited; updates the DB setting)")
@click.option("--public-url", default=None, envvar="PUBLIC_URL", help="Public base URL (e.g. https://yourdomain.com). Required for Strava OAuth to work behind a reverse proxy.")
def serve(data_dir: str, site_dir: Optional[str], host: str, port: int, def serve(data_dir: str, site_dir: Optional[str], host: str, port: int,
strava_client_id: Optional[str], strava_client_secret: Optional[str], strava_client_id: Optional[str], strava_client_secret: Optional[str],
max_users: Optional[int]) -> None: max_users: Optional[int], public_url: Optional[str]) -> None:
"""Start the bincio multi-user application server. """Start the bincio multi-user application server.
Handles auth, user management, and write operations. Handles auth, user management, and write operations.
@@ -51,6 +52,8 @@ def serve(data_dir: str, site_dir: Optional[str], host: str, port: int,
srv.strava_client_id = strava_client_id srv.strava_client_id = strava_client_id
if strava_client_secret: if strava_client_secret:
srv.strava_client_secret = strava_client_secret srv.strava_client_secret = strava_client_secret
if public_url:
srv.public_url = public_url
db = open_db(dd) db = open_db(dd)
current_limit = get_setting(db, "max_users") current_limit = get_setting(db, "max_users")
bincio/serve/server.py
+5 -1
View File
@@ -48,6 +48,7 @@ data_dir: Path | None = None
site_dir: Path | None = None # for post-write rebuild trigger site_dir: Path | None = None # for post-write rebuild trigger
strava_client_id: str = "" strava_client_id: str = ""
strava_client_secret: str = "" strava_client_secret: str = ""
public_url: str = "" # e.g. "https://yourdomain.com" — used for OAuth redirect URIs
_db = None # sqlite3.Connection, opened lazily _db = None # sqlite3.Connection, opened lazily
@@ -674,6 +675,9 @@ async def strava_auth_url(request: Request, bincio_session: Optional[str] = Cook
raise HTTPException(400, "Strava client ID not configured on this server") raise HTTPException(400, "Strava client ID not configured on this server")
state = secrets.token_urlsafe(16) state = secrets.token_urlsafe(16)
_strava_oauth_states.add(state) _strava_oauth_states.add(state)
if public_url:
redirect_uri = public_url.rstrip("/") + "/api/strava/callback"
else:
redirect_uri = str(request.url_for("strava_callback")) redirect_uri = str(request.url_for("strava_callback"))
from bincio.extract.strava_api import auth_url from bincio.extract.strava_api import auth_url
return JSONResponse({"url": auth_url(strava_client_id, redirect_uri, state=state)}) return JSONResponse({"url": auth_url(strava_client_id, redirect_uri, state=state)})
@@ -687,7 +691,7 @@ async def strava_callback(
state: str = "", state: str = "",
bincio_session: Optional[str] = Cookie(default=None), bincio_session: Optional[str] = Cookie(default=None),
) -> RedirectResponse: ) -> RedirectResponse:
site_origin = str(request.base_url).rstrip("/") site_origin = public_url.rstrip("/") if public_url else str(request.base_url).rstrip("/")
if error or not code: if error or not code:
return RedirectResponse(f"{site_origin}/?strava=error") return RedirectResponse(f"{site_origin}/?strava=error")
if state not in _strava_oauth_states: if state not in _strava_oauth_states:
docs/deployment/vps.md
+2 -1
View File
@@ -114,7 +114,8 @@ ExecStart=/root/.local/bin/uv run bincio serve \
--data-dir /var/bincio/data \ --data-dir /var/bincio/data \
--site-dir /opt/bincio/site \ --site-dir /opt/bincio/site \
--host 127.0.0.1 \ --host 127.0.0.1 \
--port 4041 --port 4041 \
--public-url https://yourdomain.com
EnvironmentFile=/etc/bincio/secrets.env EnvironmentFile=/etc/bincio/secrets.env
Restart=always Restart=always
RestartSec=5 RestartSec=5