strava_auth.py

#!/usr/bin/env python
"""
A basic authorization server.  Run this with your Strava Client ID and Client Secret and access from your
browser (because the Strava OAuth page uses javascript) in order to get a resulting access token.  That access
token can then be used to initialize a Client that can read (and/or write) data from the Strava API.

You must run this from a virtualenv that has stravalib installed.

Example Usage:

  (env) shell$ python strava_auth.py --port=8000 --client-id=123 --client-secret=deadbeefdeadbeefdeadbeefdeadbeefdeadbeef

  Then connect in your browser to http://localhost:8000/

  The redirected response (from Strava) will deliver a code that can be exchanged for a token.  The access token will be
  presented in the browser after the exchange.  Save this value into your config (e.g. into your test.ini) to run
  functional tests.
"""
import os
import sys
import argparse
import logging
from socketserver import ThreadingTCPServer
from http.server import SimpleHTTPRequestHandler
from urllib.parse import urlparse, parse_qs
from stravalib import Client

if getattr(sys, 'frozen', False):
    # If we're running as a pyinstaller bundle
    SCRIPT_DIR = os.path.dirname(sys.executable)
else:
    SCRIPT_DIR = os.path.dirname(os.path.realpath(__file__))

class StravaAuthHTTPServer(ThreadingTCPServer):

    def __init__(self, server_address, RequestHandlerClass, client_id, client_secret):
        ThreadingTCPServer.__init__(self, server_address, RequestHandlerClass)
        self.logger = logging.getLogger('auth_server.http')
        self.client_id = client_id
        self.client_secret = client_secret


class RequestHandler(SimpleHTTPRequestHandler):

    def do_GET(self):

        client = Client()

        if self.path.startswith('/authorization'):
            self.send_response(200)
            self.send_header("Content-type", "text/html")
            self.end_headers()

            code = parse_qs(urlparse(self.path).query).get('code')
            if code:
                code = code[0]
                token_response = client.exchange_code_for_token(client_id=self.server.client_id,
                                                                client_secret=self.server.client_secret,
                                                                code=code)
                access_token = token_response['access_token']
                refresh_token = token_response['refresh_token']
                expires_at = token_response['expires_at']
                self.server.logger.info("Exchanged code {} for access token {}".format(code, access_token))
                self.wfile.write("<html><head><script>function download() {".encode())
                self.wfile.write("var text = `{}\n".format(self.server.client_id).encode())
                self.wfile.write("{}\n".format(self.server.client_secret).encode())
                self.wfile.write("{}\n".format(access_token).encode())
                self.wfile.write("{}\n".format(refresh_token).encode())
                self.wfile.write("{}\n`;".format(expires_at).encode())
                self.wfile.write("var pom = document.createElement('a');".encode())
                self.wfile.write("pom.setAttribute('href', 'data:text/plain;charset=utf-8,' + encodeURIComponent(text));".encode())
                self.wfile.write("pom.setAttribute('download', 'strava_token.txt');".encode())
                self.wfile.write("pom.style.display = 'none'; document.body.appendChild(pom);".encode())
                self.wfile.write("pom.click(); document.body.removeChild(pom); }".encode())
                self.wfile.write("</script></head><body>Access token obtained successfully<br><br>".encode())
                self.wfile.write("<button onclick=\"download()\">Download</button></body></html>".encode())
                with open('%s/strava_token.txt' % SCRIPT_DIR, 'w') as f:
                    f.write(str(self.server.client_id) + '\n')
                    f.write(self.server.client_secret + '\n')
                    f.write(access_token + '\n')
                    f.write(refresh_token + '\n')
                    f.write(str(expires_at) + '\n')
            else:
                self.server.logger.error("No code param received.")
                self.wfile.write("ERROR: No code param recevied.\n".encode())
        else:
            url = client.authorization_url(client_id=self.server.client_id,
                                           redirect_uri='http://localhost:{}/authorization'.format(self.server.server_address[1]),
                                           scope=['activity:write'])

            self.send_response(302)
            self.send_header("Content-type", "text/plain")
            self.send_header('Location', url)
            self.end_headers()
            self.wfile.write("Redirect to URL: {}\n".format(url).encode())


def main(port, client_id, client_secret):

    logging.basicConfig(level=logging.INFO, format='%(levelname)-8s %(message)s')

    logger = logging.getLogger('auth_responder')
    logger.info('Listening on localhost:%s' % port)

    server = StravaAuthHTTPServer(('', port), RequestHandler, client_id=client_id, client_secret=client_secret)
    server.serve_forever()


if __name__ == "__main__":

    parser = argparse.ArgumentParser(description="Run a local web server to receive authorization responses from Strava.")

    parser.add_argument('-p', '--port', help='Which port to bind to',
                        action='store', type=int, default=8000)
    parser.add_argument('--client-id', help='Strava API Client ID',
                        action='store', type=int, required=True)
    parser.add_argument('--client-secret', help='Strava API Client Secret',
                        action='store', required=True)
    args = parser.parse_args()

    main(port=args.port, client_id=args.client_id, client_secret=args.client_secret)