1 files changed, 80 insertions, 45 deletions

diff --git a/perllib/FixMyStreet/App/Controller/Report/New.pm b/perllib/FixMyStreet/App/Controller/Report/New.pm
index 1b4c1b295..bab0f0fd0 100644
--- a/perllib/FixMyStreet/App/Controller/Report/New.pm
+++ b/perllib/FixMyStreet/App/Controller/Report/New.pm
@@ -391,6 +391,12 @@ sub report_import : Path('/import') {
     return 1;
 }
 
+sub oauth_callback : Private {
+    my ( $self, $c, $token_code ) = @_;
+    $c->stash->{oauth_report} = $token_code;
+    $c->detach('report_new');
+}
+
 =head2 initialize_report
 
 Create the report and set up some basics in it. If there is a partial report
@@ -436,9 +442,6 @@ sub initialize_report : Private {
                 # save the token to delete at the end
                 $c->stash->{partial_token} = $token if $report;
 
-                # Stash the photo IDs for "already got" display
-                $c->stash->{upload_fileid} = $report->get_photoset->data;
-
             } else {
                 # no point keeping it if it is done.
                 $token->delete;
@@ -446,18 +449,25 @@ sub initialize_report : Private {
         }
     }
 
-    if ( !$report ) {
+    if (!$report && $c->stash->{oauth_report}) {
+        my $auth_token = $c->forward( '/tokens/load_auth_token',
+            [ $c->stash->{oauth_report}, 'problem/social' ] );
+        $report = $c->model("DB::Problem")->new($auth_token->data);
+    }
 
-        # If we didn't find a partial then create a new one
+    if ($report) {
+        # Stash the photo IDs for "already got" display
+        $c->stash->{upload_fileid} = $report->get_photoset->data;
+    } else {
+        # If we didn't find one otherwise, start with a blank report
         $report = $c->model('DB::Problem')->new( {} );
+    }
 
-        # If we have a user logged in let's prefill some values for them.
-        if ( $c->user ) {
-            my $user = $c->user->obj;
-            $report->user($user);
-            $report->name( $user->name );
-        }
-
+    # If we have a user logged in let's prefill some values for them.
+    if (!$report->user && $c->user) {
+        my $user = $c->user->obj;
+        $report->user($user);
+        $report->name( $user->name );
     }
 
     if ( $c->get_param('first_name') && $c->get_param('last_name') ) {
@@ -989,6 +999,13 @@ sub check_for_errors : Private {
         delete $field_errors{name};
     }
 
+    # if using social login then we don't care about name and email errors
+    $c->stash->{is_social_user} = $c->get_param('facebook_sign_in') || $c->get_param('twitter_sign_in');
+    if ( $c->stash->{is_social_user} ) {
+        delete $field_errors{name};
+        delete $field_errors{email};
+    }
+
     # add the photo error if there is one.
     if ( my $photo_error = delete $c->stash->{photo_error} ) {
         $field_errors{photo} = $photo_error;
@@ -1002,6 +1019,19 @@ sub check_for_errors : Private {
     return;
 }
 
+# Store changes in token for when token is validated.
+sub tokenize_user : Private {
+    my ($self, $c, $report) = @_;
+    $c->stash->{token_data} = {
+        name => $report->user->name,
+        phone => $report->user->phone,
+        password => $report->user->password,
+        title => $report->user->title,
+    };
+    $c->stash->{token_data}{facebook_id} = $c->session->{oauth}{facebook_id}
+        if $c->get_param('oauth_need_email') && $c->session->{oauth}{facebook_id};
+}
+
 =head2 save_user_and_report
 
 Save the user and the report.
@@ -1013,7 +1043,41 @@ before or they are currently logged in. Otherwise discard any changes.
 
 sub save_user_and_report : Private {
     my ( $self, $c ) = @_;
-    my $report      = $c->stash->{report};
+    my $report = $c->stash->{report};
+
+    # If there was a photo add that
+    if ( my $fileid = $c->stash->{upload_fileid} ) {
+        $report->photo($fileid);
+    }
+
+    # Set a default if possible
+    $report->category( _('Other') ) unless $report->category;
+
+    # Set unknown to DB unknown
+    $report->bodies_str( undef ) if $report->bodies_str eq '-1';
+
+    # if there is a Message Manager message ID, pass it back to the client view
+    if ($c->cobrand->moniker eq 'fixmybarangay' && $c->get_param('external_source_id') =~ /^\d+$/) {
+        $c->stash->{external_source_id} = $c->get_param('external_source_id');
+        $report->external_source_id( $c->get_param('external_source_id') );
+        $report->external_source( $c->config->{MESSAGE_MANAGER_URL} ) ;
+    }
+
+    if ( $c->stash->{is_social_user} ) {
+        my $token = $c->model("DB::Token")->create( {
+            scope => 'problem/social',
+            data => { $report->get_inflated_columns },
+        } );
+
+        $c->stash->{detach_to} = '/report/new/oauth_callback';
+        $c->stash->{detach_args} = [$token->token];
+
+        if ( $c->get_param('facebook_sign_in') ) {
+            $c->detach('/auth/facebook_sign_in');
+        } elsif ( $c->get_param('twitter_sign_in') ) {
+            $c->detach('/auth/twitter_sign_in');
+        }
+    }
 
     # Save or update the user if appropriate
     if ( $c->cobrand->never_confirm_reports ) {
@@ -1023,15 +1087,10 @@ sub save_user_and_report : Private {
             $report->user->insert();
         }
         $report->confirm();
+
     } elsif ( !$report->user->in_storage ) {
         # User does not exist.
-        # Store changes in token for when token is validated.
-        $c->stash->{token_data} = {
-            name => $report->user->name,
-            phone => $report->user->phone,
-            password => $report->user->password,
-            title   => $report->user->title,
-        };
+        $c->forward('tokenize_user', [ $report ]);
         $report->user->name( undef );
         $report->user->phone( undef );
         $report->user->password( '', 1 );
@@ -1048,35 +1107,11 @@ sub save_user_and_report : Private {
     }
     else {
         # User exists and we are not logged in as them.
-        # Store changes in token for when token is validated.
-        $c->stash->{token_data} = {
-            name => $report->user->name,
-            phone => $report->user->phone,
-            password => $report->user->password,
-            title   => $report->user->title,
-        };
+        $c->forward('tokenize_user', [ $report ]);
         $report->user->discard_changes();
         $c->log->info($report->user->id . ' exists, but is not logged in for this report');
     }
 
-    # If there was a photo add that too
-    if ( my $fileid = $c->stash->{upload_fileid} ) {
-        $report->photo($fileid);
-    }
-
-    # Set a default if possible
-    $report->category( _('Other') ) unless $report->category;
-
-    # Set unknown to DB unknown
-    $report->bodies_str( undef ) if $report->bodies_str eq '-1';
-
-    # if there is a Message Manager message ID, pass it back to the client view
-    if ($c->cobrand->moniker eq 'fixmybarangay' && $c->get_param('external_source_id') =~ /^\d+$/) {
-        $c->stash->{external_source_id} = $c->get_param('external_source_id');
-        $report->external_source_id( $c->get_param('external_source_id') );
-        $report->external_source( $c->config->{MESSAGE_MANAGER_URL} ) ;
-    }
-    
     # save the report;
     $report->in_storage ? $report->update : $report->insert();