From cfbe29e9a0ce538a58d78f04ac9e46df4ecae65d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jes=C3=BAs=20Espino?= <jespinog@gmail.com>
Date: Thu, 23 Mar 2017 18:04:16 +0100
Subject: [PATCH] Add callback url to jira importer

---
 taiga/front/urls.py            |  2 ++
 taiga/importers/jira/api.py    |  4 +++-
 taiga/importers/jira/common.py | 15 +++++++++++----
 3 files changed, 16 insertions(+), 5 deletions(-)

diff --git a/taiga/front/urls.py b/taiga/front/urls.py
index 393913e3..244e0a72 100644
--- a/taiga/front/urls.py
+++ b/taiga/front/urls.py
@@ -55,4 +55,6 @@ urls = {
     "project-transfer": "/project/{0}/transfer/{1}", # project.slug, project.transfer_token
 
     "project-admin": "/login?next=/project/{0}/admin/project-profile/details", # project.slug
+
+    "project-import-jira": "/project/new/import/jira?url={}",
 }
diff --git a/taiga/importers/jira/api.py b/taiga/importers/jira/api.py
index 905631d8..5606a732 100644
--- a/taiga/importers/jira/api.py
+++ b/taiga/importers/jira/api.py
@@ -214,6 +214,7 @@ class JiraImporterViewSet(viewsets.ViewSet):
 
         try:
             oauth_data = request.user.auth_data.get(key="jira-oauth")
+            oauth_verifier = request.DATA.get("oauth_verifier", None)
             oauth_token = oauth_data.extra['oauth_token']
             oauth_secret = oauth_data.extra['oauth_secret']
             server_url = oauth_data.extra['url']
@@ -225,7 +226,8 @@ class JiraImporterViewSet(viewsets.ViewSet):
                 settings.IMPORTERS.get('jira', {}).get('cert', None),
                 oauth_token,
                 oauth_secret,
-                True
+                oauth_verifier,
+                False
             )
         except Exception as e:
             raise exc.WrongArguments(_("Invalid or expired auth token"))
diff --git a/taiga/importers/jira/common.py b/taiga/importers/jira/common.py
index 3eaa6ee6..c4c6c3eb 100644
--- a/taiga/importers/jira/common.py
+++ b/taiga/importers/jira/common.py
@@ -17,12 +17,13 @@
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 
 import requests
-from urllib.parse import parse_qsl
+from urllib.parse import parse_qsl, quote_plus
 from oauthlib.oauth1 import SIGNATURE_RSA
 
 from requests_oauthlib import OAuth1
 from django.core.files.base import ContentFile
 from django.contrib.contenttypes.models import ContentType
+from django.conf import settings
 
 from taiga.users.models import User
 from taiga.projects.models import Points
@@ -46,6 +47,7 @@ from taiga.projects.history.models import HistoryEntry
 from taiga.projects.history.choices import HistoryType
 from taiga.mdrender.service import render as mdrender
 from taiga.importers import exceptions
+from taiga.front.templatetags.functions import resolve as resolve_front_url
 
 EPIC_COLORS = {
     "ghx-label-0": "#ffffff",
@@ -735,7 +737,9 @@ class JiraImporterCommon:
         if verify is None:
             verify = server.startswith('https')
 
-        oauth = OAuth1(consumer_key, signature_method=SIGNATURE_RSA, rsa_key=key_cert_data)
+        callback_uri = resolve_front_url("project-import-jira", quote_plus(server))
+        oauth = OAuth1(consumer_key, signature_method=SIGNATURE_RSA, rsa_key=key_cert_data, callback_uri=callback_uri)
+
         r = requests.post(
             server + '/plugins/servlet/oauth/request-token', verify=verify, auth=oauth)
         if r.status_code != 200:
@@ -751,13 +755,16 @@ class JiraImporterCommon:
         )
 
     @classmethod
-    def get_access_token(cls, server, consumer_key, key_cert_data, request_token, request_token_secret, verify=False):
+    def get_access_token(cls, server, consumer_key, key_cert_data, request_token, request_token_secret, request_verifier, verify=False):
+        callback_uri = resolve_front_url("project-import-jira", quote_plus(server))
         oauth = OAuth1(
             consumer_key,
             signature_method=SIGNATURE_RSA,
+            callback_uri=callback_uri,
             rsa_key=key_cert_data,
             resource_owner_key=request_token,
-            resource_owner_secret=request_token_secret
+            resource_owner_secret=request_token_secret,
+            verifier=request_verifier,
         )
         r = requests.post(server + '/plugins/servlet/oauth/access-token', verify=verify, auth=oauth)
         access = dict(parse_qsl(r.text))