""" WordPress OAuth2 Routes Handles WordPress.com OAuth2 authentication flow. """ from fastapi import APIRouter, Depends, HTTPException, status, Query from fastapi.responses import RedirectResponse, HTMLResponse from typing import Dict, Any, Optional from pydantic import BaseModel from loguru import logger from services.integrations.wordpress_oauth import WordPressOAuthService from middleware.auth_middleware import get_current_user router = APIRouter(prefix="/wp", tags=["WordPress OAuth"]) # Initialize OAuth service oauth_service = WordPressOAuthService() # Pydantic Models class WordPressOAuthResponse(BaseModel): auth_url: str state: str class WordPressCallbackResponse(BaseModel): success: bool message: str blog_url: Optional[str] = None blog_id: Optional[str] = None class WordPressStatusResponse(BaseModel): connected: bool sites: list total_sites: int @router.get("/auth/url", response_model=WordPressOAuthResponse) async def get_wordpress_auth_url( user: Dict[str, Any] = Depends(get_current_user) ): """Get WordPress OAuth2 authorization URL.""" try: user_id = user.get('id') if not user_id: raise HTTPException(status_code=status.HTTP_400_BAD_REQUEST, detail="User ID not found.") auth_data = oauth_service.generate_authorization_url(user_id) if not auth_data: raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail="WordPress OAuth is not properly configured. Please check that WORDPRESS_CLIENT_ID and WORDPRESS_CLIENT_SECRET environment variables are set with valid WordPress.com application credentials." ) return WordPressOAuthResponse(**auth_data) except Exception as e: logger.error(f"Error generating WordPress OAuth URL: {e}") raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail="Failed to generate WordPress OAuth URL." ) @router.get("/callback") async def handle_wordpress_callback( code: str = Query(..., description="Authorization code from WordPress"), state: str = Query(..., description="State parameter for security"), error: Optional[str] = Query(None, description="Error from WordPress OAuth") ): """Handle WordPress OAuth2 callback.""" try: if error: logger.error(f"WordPress OAuth error: {error}") html_content = f""" WordPress.com Connection Failed

Connection Failed

There was an error connecting to WordPress.com.

You can close this window and try again.

""" return HTMLResponse(content=html_content, headers={ "Cross-Origin-Opener-Policy": "unsafe-none", "Cross-Origin-Embedder-Policy": "unsafe-none" }) if not code or not state: logger.error("Missing code or state parameter in WordPress OAuth callback") html_content = """ WordPress.com Connection Failed

Connection Failed

Missing required parameters.

You can close this window and try again.

""" return HTMLResponse(content=html_content, headers={ "Cross-Origin-Opener-Policy": "unsafe-none", "Cross-Origin-Embedder-Policy": "unsafe-none" }) # Exchange code for token result = oauth_service.handle_oauth_callback(code, state) if not result or not result.get('success'): logger.error("Failed to exchange WordPress OAuth code for token") html_content = """ WordPress.com Connection Failed

Connection Failed

Failed to exchange authorization code for access token.

You can close this window and try again.

""" return HTMLResponse(content=html_content) # Return success page with postMessage script blog_url = result.get('blog_url', '') html_content = f""" WordPress.com Connection Successful

Connection Successful!

Your WordPress.com site has been connected successfully.

You can close this window now.

""" return HTMLResponse(content=html_content, headers={ "Cross-Origin-Opener-Policy": "unsafe-none", "Cross-Origin-Embedder-Policy": "unsafe-none" }) except Exception as e: logger.error(f"Error handling WordPress OAuth callback: {e}") html_content = """ WordPress.com Connection Failed

Connection Failed

An unexpected error occurred during connection.

You can close this window and try again.

""" return HTMLResponse(content=html_content, headers={ "Cross-Origin-Opener-Policy": "unsafe-none", "Cross-Origin-Embedder-Policy": "unsafe-none" }) @router.get("/status", response_model=WordPressStatusResponse) async def get_wordpress_oauth_status( user: Dict[str, Any] = Depends(get_current_user) ): """Get WordPress OAuth connection status.""" try: user_id = user.get('id') if not user_id: raise HTTPException(status_code=status.HTTP_400_BAD_REQUEST, detail="User ID not found.") status_data = oauth_service.get_connection_status(user_id) return WordPressStatusResponse(**status_data) except Exception as e: logger.error(f"Error getting WordPress OAuth status: {e}") raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail="Failed to get WordPress connection status." ) @router.delete("/disconnect/{token_id}") async def disconnect_wordpress_site( token_id: int, user: Dict[str, Any] = Depends(get_current_user) ): """Disconnect a WordPress site.""" try: user_id = user.get('id') if not user_id: raise HTTPException(status_code=status.HTTP_400_BAD_REQUEST, detail="User ID not found.") success = oauth_service.revoke_token(user_id, token_id) if not success: raise HTTPException( status_code=status.HTTP_404_NOT_FOUND, detail="WordPress token not found or could not be disconnected." ) return {"success": True, "message": f"WordPress site disconnected successfully."} except Exception as e: logger.error(f"Error disconnecting WordPress site: {e}") raise HTTPException( status_code=status.HTTP_500_INTERNAL_SERVER_ERROR, detail="Failed to disconnect WordPress site." ) @router.get("/health") async def wordpress_oauth_health(): """WordPress OAuth health check.""" return { "status": "healthy", "service": "wordpress_oauth", "timestamp": "2024-01-01T00:00:00Z", "version": "1.0.0" }