io.micronaut.security.oauth2.routes.DefaultOauthController Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of micronaut-security-oauth2 Show documentation
Show all versions of micronaut-security-oauth2 Show documentation
Official Security Solution for Micronaut
/*
* Copyright 2017-2019 original authors
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
package io.micronaut.security.oauth2.routes;
import io.micronaut.context.annotation.EachBean;
import io.micronaut.context.annotation.Parameter;
import io.micronaut.context.event.ApplicationEventPublisher;
import io.micronaut.http.HttpRequest;
import io.micronaut.http.HttpResponse;
import io.micronaut.http.HttpStatus;
import io.micronaut.security.authentication.AuthenticationFailed;
import io.micronaut.security.authentication.AuthenticationResponse;
import io.micronaut.security.authentication.UserDetails;
import io.micronaut.security.event.LoginFailedEvent;
import io.micronaut.security.event.LoginSuccessfulEvent;
import io.micronaut.security.handlers.LoginHandler;
import io.micronaut.security.handlers.RedirectingLoginHandler;
import io.micronaut.security.oauth2.client.OauthClient;
import io.reactivex.Flowable;
import org.reactivestreams.Publisher;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;
import java.util.Map;
/**
* Default implementation of {@link OauthController}.
*
* @author James Kleeh
* @since 1.2.0
*/
@EachBean(OauthClient.class)
public class DefaultOauthController implements OauthController {
private static final Logger LOG = LoggerFactory.getLogger(DefaultOauthController.class);
private final OauthClient oauthClient;
private final LoginHandler loginHandler;
private final ApplicationEventPublisher eventPublisher;
/**
* @param oauthClient The oauth client
* @param loginHandler The login handler
* @param eventPublisher The event publisher
*/
DefaultOauthController(@Parameter OauthClient oauthClient,
RedirectingLoginHandler loginHandler,
ApplicationEventPublisher eventPublisher) {
this.oauthClient = oauthClient;
this.loginHandler = loginHandler;
this.eventPublisher = eventPublisher;
}
@Override
public OauthClient getClient() {
return oauthClient;
}
@Override
public Publisher login(HttpRequest request) {
if (LOG.isTraceEnabled()) {
LOG.trace("Received login request for provider [{}]", oauthClient.getName());
}
return oauthClient.authorizationRedirect(request);
}
@Override
public Publisher callback(HttpRequest> request) {
if (LOG.isTraceEnabled()) {
LOG.trace("Received callback from oauth provider [{}]", oauthClient.getName());
}
Publisher authenticationResponse = oauthClient.onCallback(request);
return Flowable.fromPublisher(authenticationResponse).map(response -> {
if (response.isAuthenticated()) {
UserDetails userDetails = (UserDetails) response;
if (LOG.isTraceEnabled()) {
LOG.trace("Authentication succeeded. User [{}] is now logged in", userDetails.getUsername());
}
eventPublisher.publishEvent(new LoginSuccessfulEvent(userDetails));
return loginHandler.loginSuccess(userDetails, request);
} else {
AuthenticationFailed authenticationFailed = (AuthenticationFailed) response;
if (LOG.isTraceEnabled()) {
LOG.trace("Authentication failed: {}", authenticationFailed.getMessage().orElse("unknown reason"));
}
eventPublisher.publishEvent(new LoginFailedEvent(authenticationFailed));
return loginHandler.loginFailed(authenticationFailed);
}
}).defaultIfEmpty(HttpResponse.status(HttpStatus.UNAUTHORIZED));
}
}