feat: Add chromedp and rod-based OAuth authorization methods.

2026-02-01 09:19:53 +08:00
parent 76ff32e83c
commit d05c19a8d5
2 changed files with 50 additions and 34 deletions
--- a/backend/internal/auth/chromedp.go
+++ b/backend/internal/auth/chromedp.go
@@ -49,11 +49,14 @@ func CompleteWithChromedp(authURL, email, password, teamID string, headless bool
 	ctx, cancel := chromedp.NewContext(allocCtx)
 	defer cancel()

-	ctx, cancel = context.WithTimeout(ctx, 120*time.Second)
+	// 增加超时时间到 180 秒
+	ctx, cancel = context.WithTimeout(ctx, 180*time.Second)
 	defer cancel()

 	var callbackURL string

+	// 只在代理需要认证时才启用 Fetch 域
+	if proxyServer != "" && proxyUser != "" {
 		chromedp.ListenTarget(ctx, func(ev interface{}) {
 			switch ev := ev.(type) {
 			case *fetch.EventRequestPaused:
@@ -82,8 +85,13 @@ func CompleteWithChromedp(authURL, email, password, teamID string, headless bool
 					}
 					_ = fetch.ContinueWithAuth(reqID, resp).Do(ctx)
 				}()
+			}
+		})
+	}

-		case *network.EventRequestWillBeSent:
+	// 监听回调 URL
+	chromedp.ListenTarget(ctx, func(ev interface{}) {
+		if ev, ok := ev.(*network.EventRequestWillBeSent); ok {
 			url := ev.Request.URL
 			if strings.Contains(url, "localhost") && strings.Contains(url, "code=") {
 				callbackURL = url
@@ -91,13 +99,19 @@ func CompleteWithChromedp(authURL, email, password, teamID string, headless bool
 		}
 	})

-	err := chromedp.Run(ctx,
-		// Handle proxy auth (407) in headless mode.
-		fetch.Enable().WithHandleAuthRequests(true),
+	// 构建运行任务
+	tasks := []chromedp.Action{
 		network.Enable(),
 		chromedp.Navigate(authURL),
 		chromedp.WaitReady("body"),
-	)
+	}
+
+	// 只在代理需要认证时才启用 Fetch 域
+	if proxyServer != "" && proxyUser != "" {
+		tasks = append([]chromedp.Action{fetch.Enable().WithHandleAuthRequests(true)}, tasks...)
+	}
+
+	err := chromedp.Run(ctx, tasks...)
 	if err != nil {
 		return "", fmt.Errorf("访问失败: %v", err)
 	}
--- a/backend/internal/auth/rod.go
+++ b/backend/internal/auth/rod.go
@@ -123,7 +123,8 @@ func (r *RodAuth) Close() {
 func (r *RodAuth) CompleteOAuth(authURL, email, password, teamID string) (string, error) {
 	// Handle proxy auth (407) in headless mode.
 	// When Fetch domain is enabled without patterns, requests will be paused and must be continued.
-	if r.proxy != "" {
+	// 只在代理需要认证时才启用 Fetch 域
+	if r.proxy != "" && r.proxyUser != "" {
 		authBrowser, cancel := r.browser.WithCancel()
 		defer cancel()

@@ -160,7 +161,8 @@ func (r *RodAuth) CompleteOAuth(authURL, email, password, teamID string) (string
 	}
 	defer page.Close()

-	page = page.Timeout(45 * time.Second)
+	// 增加超时时间到 90 秒
+	page = page.Timeout(90 * time.Second)

 	if err := page.Navigate(authURL); err != nil {
 		return "", fmt.Errorf("访问授权URL失败: %v", err)