• Home
• io.github.springsocialmicrosoft
• spring-social-microsoft-partnercenter
• 9.1.0
• source code
• AzureADMultiTenantOAuthOperations.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.springframework.social.partnercenter.security.AzureADMultiTenantOAuthOperations Maven / Gradle / Ivy

package org.springframework.social.partnercenter.security;

import java.io.UnsupportedEncodingException;
import java.net.URLDecoder;
import java.util.Map;
import java.util.stream.Collectors;

import org.springframework.social.oauth2.AccessGrant;
import org.springframework.social.oauth2.OAuth2Parameters;
import org.springframework.social.partnercenter.connect.PartnerCenterJWT;
import org.springframework.social.partnercenter.http.logging.LogLevel;
import org.springframework.util.MultiValueMap;

import com.google.common.base.Charsets;
import com.google.common.base.Splitter;

public interface AzureADMultiTenantOAuthOperations {
    String buildAuthorizeUrl(String redirectUri, String state);

    String buildAuthorizeUrl(OAuth2Parameters additionalParams);

    /**
     * Exchange the authorization code for a refresh token
     * @param authorizationCode the authorization code returned by the provider upon user authorization
     * @param partnerTenantId the tenantId of the tenant that is being authorized
     * @param redirectUri the authorization callback url; this value must match the redirectUri registered with the provider
     * @param additionalParameters any additional parameters to be sent when exchanging the authorization code for an access grant. Should not be encoded.
     * @return the access grant.
     */
    String exchangeForRefreshToken(String authorizationCode, String partnerTenantId, String redirectUri, MultiValueMap additionalParameters);

    /**
     * Exchange the refresh token for an access token
     * @param refreshToken the refresh token returned by {@link #exchangeForRefreshToken}
     * @param partnerTenantId the tenantId of the tenant that is being authorized
     * @param resource the resource for the access grant
     * @return the access grant.
     */
    AccessGrant exchangeRefreshTokenForAccess(String refreshToken, String resource, String partnerTenantId);

    /**
     * adds request and response logging to restTemplate
     * @param logLevel level at which logging will be written
     */
    void enableSlf4j(LogLevel logLevel);

    boolean isSlf4jEnabled();

    static DelegatedAccessGrant extractDelegatedAccessGrant(String body) {
        final Map response = Splitter.on('&').trimResults().withKeyValueSeparator("=").split(body)
                .entrySet().stream().collect(Collectors.toMap(Map.Entry::getKey, e -> urlDecode(e.getValue())));

        final String code = response.get("code");
        final PartnerCenterJWT partnerJWT = PartnerCenterJWT.fromTokenString(response.get("id_token"));

        String state = response.get("state");
        return new DelegatedAccessGrant(code, state, partnerJWT.getTid());
    }

    static String urlDecode(String param) {
        try {
            return URLDecoder.decode(param, Charsets.UTF_8.toString());
        } catch (UnsupportedEncodingException e) {
            throw new RuntimeException(e);
        }
    }
}