com.nimbusds.oauth2.sdk.AuthorizationCodeGrant Maven / Gradle / Ivy
package com.nimbusds.oauth2.sdk;
import java.net.URI;
import java.net.URISyntaxException;
import java.util.LinkedHashMap;
import java.util.Map;
import net.jcip.annotations.Immutable;
/**
* Authorisation code grant. Used in access token requests with an
* authorisation code.
*
* Related specifications:
*
*
* - OAuth 2.0 (RFC 6749), section 4.1.3.
*
*/
@Immutable
public class AuthorizationCodeGrant extends AuthorizationGrant {
/**
* The grant type.
*/
public static final GrantType GRANT_TYPE = GrantType.AUTHORIZATION_CODE;
/**
* The authorisation code received from the authorisation server.
*/
private final AuthorizationCode code;
/**
* The conditionally required redirection URI in the initial
* authorisation request.
*/
private final URI redirectURI;
/**
* Creates a new authorisation code grant.
*
* @param code The authorisation code. Must not be {@code null}.
* @param redirectURI The redirection URI of the original authorisation
* request. Required if the {redirect_uri}
* parameter was included in the authorisation
* request, else {@code null}.
*/
public AuthorizationCodeGrant(final AuthorizationCode code,
final URI redirectURI) {
super(GRANT_TYPE);
if (code == null)
throw new IllegalArgumentException("The authorisation code must not be null");
this.code = code;
this.redirectURI = redirectURI;
}
/**
* Gets the authorisation code.
*
* @return The authorisation code.
*/
public AuthorizationCode getAuthorizationCode() {
return code;
}
/**
* Gets the redirection URI of the original authorisation request.
*
* @return The redirection URI, {@code null} if the
* {@code redirect_uri} parameter was not included in the
* original authorisation request.
*/
public URI getRedirectionURI() {
return redirectURI;
}
@Override
public Map toParameters() {
Map params = new LinkedHashMap<>();
params.put("grant_type", GRANT_TYPE.getValue());
params.put("code", code.getValue());
if (redirectURI != null)
params.put("redirect_uri", redirectURI.toString());
return params;
}
/**
* Parses an authorisation code grant from the specified parameters.
*
* Example:
*
*
* grant_type=authorization_code
* code=SplxlOBeZQQYbYS6WxSbIA
* redirect_uri=https://Fclient.example.com/cb
*
*
* @param params The parameters.
*
* @return The authorisation code grant.
*
* @throws ParseException If parsing failed.
*/
public static AuthorizationCodeGrant parse(final Map params)
throws ParseException {
// Parse grant type
String grantTypeString = params.get("grant_type");
if (grantTypeString == null)
throw new ParseException("Missing \"grant_type\" parameter", OAuth2Error.INVALID_REQUEST);
if (! GrantType.parse(grantTypeString).equals(GRANT_TYPE))
throw new ParseException("The \"grant_type\" must be " + GRANT_TYPE, OAuth2Error.UNSUPPORTED_GRANT_TYPE);
// Parse authorisation code
String codeString = params.get("code");
if (codeString == null || codeString.trim().isEmpty())
throw new ParseException("Missing or empty \"code\" parameter", OAuth2Error.INVALID_REQUEST);
AuthorizationCode code = new AuthorizationCode(codeString);
// Parse optional redirection URI
String redirectURIString = params.get("redirect_uri");
URI redirectURI = null;
if (redirectURIString != null) {
try {
redirectURI = new URI(redirectURIString);
} catch (URISyntaxException e) {
throw new ParseException("Invalid \"redirect_uri\" parameter: " + e.getMessage(), OAuth2Error.INVALID_REQUEST, e);
}
}
return new AuthorizationCodeGrant(code, redirectURI);
}
}