defmodule Mix.Tasks.Hubic do
@moduledoc ~s"""
Gets the access and refresh token for access the hubic api
and returns them as a map to assist setting up the
configuration file `secret.prod.exs`
use Mix.Task
alias ExOvh.Hubic.Defaults
@hubic_auth_uri Defaults.hubic()[:auth_uri]
@hubic_token_uri Defaults.hubic()[:token_uri]
@timeout 20_000
# Public
def run(args) do
LoggingUtils.log_return(args, :debug)
opts_map = parse_args(args)
LoggingUtils.log_return(opts_map, :debug)
IO.inspect(opts_map, pretty: :true)
Mix.Shell.IO.info("The details in the map above will be used to get the hubic refresh token.")
if Mix.Shell.IO.yes?("Do you want to proceed?") do
Application.start(:ibrowse, :permanent)
Application.start(:httpotion, :permanent)
options = get_auth_code(opts_map) |> get_refresh_token() |> remove_private()
message = "
client_id: \"#{options.client_id}\",
client_secret: \"#{options.client_secret}\",
refresh_token: \"#{options.refresh_token}\",
redirect_uri: \"#{options.redirect_uri}\"
# Private
defp parse_args(args) do
{opts, _, _} = OptionParser.parse(args)
LoggingUtils.log_return(opts, :debug)
{opts, opts_map} = opts
|> has_required_args()
|> parsers_login()
|> parsers_password()
|> parsers_client_id()
|> parsers_client_secret()
|> parsers_redirect_uri()
defp has_required_args(opts) do
login = Keyword.get(opts, :login, :nil)
if login === :nil do
raise "Task requires login argument"
password = Keyword.get(opts, :password, :nil)
if password === :nil do
raise "Task requires password argument"
client_id = Keyword.get(opts, :clientid, :nil)
if client_id === :nil do
raise "Task requires client_id argument"
client_secret = Keyword.get(opts, :clientsecret, :nil)
if client_secret === :nil do
raise "Task requires client_secret argument"
redirect_uri = Keyword.get(opts, :redirecturi, :nil)
if redirect_uri === :nil do
raise "Task requires redirect_uri argument"
{opts, %{}}
defp parsers_login({opts, acc}), do: {opts, Map.merge(acc, %{login: Keyword.fetch!(opts, :login)}) }
defp parsers_password({opts, acc}), do: {opts, Map.merge(acc, %{ password: Keyword.fetch!(opts, :password)}) }
defp parsers_client_id({opts, acc}), do: {opts, Map.merge(acc, %{ client_id: Keyword.fetch!(opts, :clientid)}) }
defp parsers_client_secret({opts, acc}), do: {opts, Map.merge(acc, %{ client_secret: Keyword.fetch!(opts, :clientsecret)}) }
defp parsers_redirect_uri({opts, acc}), do: {opts, Map.merge(acc, %{ redirect_uri: Keyword.fetch!(opts, :redirecturi)}) }
# - Summary: Gets the authorisation code when the refresh token is not provided in config.exs by the user
# - Makes a request to the @hubic_auth_uri with the client id and scopes for the code
# - Autocompletes the form information to acquire the code
# - Sends the application/x-www-form-urlencoded information to the @hubic_auth_uri on behalf of the user
# - Parses and returns the authorisation code inside the opts_map
defp get_auth_code(opts_map) do
LoggingUtils.log_mod_func_line(__ENV__, :debug)
query_string = "?client_id=" <> opts_map.client_id <>
"&redirect_uri=" <> URI.encode(opts_map.redirect_uri) <>
"&scope=" <> "usage.r,account.r,getAllLinks.r,credentials.r,sponsorCode.r,activate.w,sponsored.r,links.drw" <>
"&response_type=" <> "code" <>
"&state=" <> SecureRandom.urlsafe_base64(10)
options = [ timeout: @timeout ]
uri = @hubic_auth_uri <> query_string
%HTTPotion.Response{body: resp_body, headers: headers, status_code: status} = HTTPotion.request(:get, uri, options)
inputs = get_validated_inputs(resp_body)
{req_body, _, _} = Enum.reduce(inputs, {"", 1, Enum.count(inputs)}, fn({"input", input, _}, acc) ->
name = :proplists.get_value("name", input)
value = ""
{name, value} =
case name do
"login" ->
value = opts_map.login
{name, value}
"user_pwd" ->
value = opts_map.password
{name, value}
_ ->
value = :proplists.get_value("value", input)
{name, value}
param = name <> "=" <> value
{acc, index, max} = acc
if index === max do
acc = acc <> param
acc = acc <> param <> "&"
{acc, index + 1, max}
resp = HTTPotion.request(:post, @hubic_auth_uri, [body: req_body, headers: ["Content-Type": "application/x-www-form-urlencoded"]])
if resp.status_code !== 302, do: raise "Error getting hubic authorisation code with hubic config settings \n #{resp}"
resp =
body: resp.body,
headers: resp.headers |> Enum.into(%{}),
status_code: resp.status_code
code = resp.headers
|> Map.get(:Location)
|> URI.parse
|> Map.get(:query)
|> URI.decode_query
|> Map.get("code")
Map.merge(opts_map, %{ auth_code: code })
defp get_validated_inputs(resp_body) do
LoggingUtils.log_mod_func_line(__ENV__, :debug)
inputs = Floki.find(resp_body, "form input[type=text], form input[type=password], form input[type=checkbox], form input[type=hidden]")
|> List.flatten()
if Enum.any?(inputs, fn(input) -> input === [] end) do
raise "Inputs should not be empty"
#- Adds the refresh_token to the opts_map
@spec get_refresh_token(opts_map :: map) :: map
def get_refresh_token(opts_map) do
LoggingUtils.log_mod_func_line(__ENV__, :debug)
auth_credentials = opts_map.client_id <> ":" <> opts_map.client_secret
auth_credentials_base64 = Base.encode64(auth_credentials)
req_body = "code=" <> opts_map.auth_code <>
"&redirect_uri=" <> URI.encode(opts_map.redirect_uri) <>
headers = [
"Content-Type": "application/x-www-form-urlencoded",
"Authorization": "Basic " <> auth_credentials_base64
req_options = [
body: req_body,
headers: headers,
timeout: @timeout
resp = HTTPotion.request(:post, @hubic_token_uri, req_options)
now_milli_seconds = :os.system_time(:milli_seconds)
body =
body: resp.body |> Poison.decode!(),
headers: resp.headers |> Enum.into(%{}),
status_code: resp.status_code
|> LoggingUtils.log_return(:debug)
|> Map.get(:body)
if Map.has_key?(body, "error") do
error = Map.get(resp, "error") <> " :: " <> Map.get(resp, "error_description")
raise error
refresh_token = Map.get(body, "refresh_token")
refresh_token_expiry = now_milli_seconds + Map.get(body, "expires_in")
#Map.merge(opts_map, %{ refresh_token: refresh_token, refresh_token_expiry: refresh_token_expiry })
Map.merge(opts_map, %{ refresh_token: refresh_token })
defp remove_private(opts_map) do
opts_map |> Map.delete(:login) |> Map.delete(:password) |> Map.delete(:auth_code)