io.sphere.sdk.client.OAuthClient Maven / Gradle / Ivy
package io.sphere.sdk.client;
import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.ObjectMapper;
import java.util.Optional;
import com.google.common.util.concurrent.Futures;
import com.google.common.util.concurrent.ListenableFuture;
import com.ning.http.client.AsyncHttpClient;
import com.ning.http.client.Realm;
import com.ning.http.client.Response;
import io.sphere.sdk.utils.Log;
import java.io.IOException;
class OAuthClient {
private final AsyncHttpClient httpClient;
public OAuthClient(AsyncHttpClient httpClient) {
this.httpClient = httpClient;
}
/** Asynchronously gets access and refresh tokens for given user from the authorization server
* using the Resource owner credentials flow. */
public ListenableFuture getTokensForClient(
final String tokenEndpoint, final String clientId, final String clientSecret, final String scope)
{
try {
Realm basicAuthRealm = new Realm.RealmBuilder()
.setPrincipal(clientId)
.setPassword(clientSecret)
.setScheme(Realm.AuthScheme.BASIC)
.build();
final AsyncHttpClient.BoundRequestBuilder requestBuilder = httpClient.preparePost(tokenEndpoint)
.setRealm(basicAuthRealm)
.setHeader("Content-Type", "application/x-www-form-urlencoded")
.addQueryParameter("grant_type", "client_credentials")
.addQueryParameter("scope", scope);
return Futures.transform(new ListenableFutureAdapter<>(requestBuilder.execute()), (Response resp) -> parseResponse(resp, requestBuilder));
} catch (IOException e) {
throw new RuntimeException(e);//TODO
}
}
/** Parses Tokens from a response from the backend authorization service.
* @param resp Response from the authorization service.
* @param requestBuilder The request, used for error reporting. */
protected Tokens parseResponse(Response resp, AsyncHttpClient.BoundRequestBuilder requestBuilder) {
try {
if (Log.isDebugEnabled()) {
Log.debug(requestBuilder.build().toString() + "\n(auth server response not logged for security reasons)");
}
if (resp.getStatusCode() != 200) {
throw new AuthorizationException(requestBuilder.build().toString() + " " + resp);//TODO
}
JsonNode json = new ObjectMapper().readValue(resp.getResponseBody(), JsonNode.class);
String accessToken = json.path("access_token").textValue();
boolean hasExpiresIn = json.path("expires_in").isNumber();
Optional expiresIn = hasExpiresIn ? Optional.of(json.path("expires_in").longValue()) : Optional.empty();
String refreshToken = json.path("refresh_token").textValue();
return new Tokens(accessToken, refreshToken, expiresIn);
} catch (IOException e) {
throw new RuntimeException(e);//TODO
}
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy