• Home
• io.sphere.sdk.jvm
• java-client
• 1.0.0-M9
• source code
• OAuthClient.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.sphere.sdk.client.OAuthClient Maven / Gradle / Ivy

package io.sphere.sdk.client;

import com.fasterxml.jackson.databind.JsonNode;
import com.fasterxml.jackson.databind.ObjectMapper;
import java.util.Optional;
import com.ning.http.client.AsyncHttpClient;
import com.ning.http.client.Realm;
import com.ning.http.client.Response;

import java.io.IOException;
import java.util.concurrent.CompletableFuture;

import static io.sphere.sdk.utils.SphereInternalLogger.*;
import static java.lang.String.format;

class OAuthClient {
    private final AsyncHttpClient httpClient;

    public OAuthClient(AsyncHttpClient httpClient) {
        this.httpClient = httpClient;
    }

    /** Asynchronously gets access and refresh tokens for given user from the authorization server
     *  using the Resource owner credentials flow. */
    public CompletableFuture getTokensForClient(
            final String tokenEndpoint, final String clientId, final String clientSecret, final String scope) {
        if (!httpClient.isClosed()) {
            try {
                Realm basicAuthRealm = new Realm.RealmBuilder()
                        .setPrincipal(clientId)
                        .setPassword(clientSecret)
                        .setScheme(Realm.AuthScheme.BASIC)
                        .build();
                final AsyncHttpClient.BoundRequestBuilder requestBuilder = httpClient.preparePost(tokenEndpoint)
                        .setRealm(basicAuthRealm)
                        .setHeader("Content-Type", "application/x-www-form-urlencoded")
                        .addQueryParameter("grant_type", "client_credentials")
                        .addQueryParameter("scope", scope);

                final CompletableFuture tokensCompletableFuture;
                if (httpClient.isClosed()) {
                    tokensCompletableFuture = new CompletableFuture<>();
                    tokensCompletableFuture.completeExceptionally(new IllegalStateException("client already closed"));
                } else {
                    tokensCompletableFuture = CompletableFutureUtils.wrap(requestBuilder.execute()).thenApply((Response resp) -> parseResponse(resp, requestBuilder));
                }
                return tokensCompletableFuture;
            } catch (IOException e) {
                throw new RuntimeException(e);//TODO
            }
        } else {
            throw new IllegalStateException(format("Http client %s is already closed.", httpClient));
        }
    }

    /** Parses Tokens from a response from the backend authorization service.
     *  @param resp Response from the authorization service.
     *  @param requestBuilder The request, used for error reporting. */
    protected Tokens parseResponse(Response resp, AsyncHttpClient.BoundRequestBuilder requestBuilder) {
        try {
            getLogger("oauth").debug(() -> requestBuilder.build().toString() + "\n(auth server response not logged for security reasons)");
            if (resp.getStatusCode() != 200) {
                throw new AuthorizationException(requestBuilder.build().toString() + " " + resp);//TODO
            }
            JsonNode json = new ObjectMapper().readValue(resp.getResponseBody(), JsonNode.class);
            String accessToken = json.path("access_token").textValue();
            boolean hasExpiresIn = json.path("expires_in").isNumber();
            Optional expiresIn = hasExpiresIn ? Optional.of(json.path("expires_in").longValue()) : Optional.empty();
            String refreshToken = json.path("refresh_token").textValue();
            return new Tokens(accessToken, refreshToken, expiresIn);
        } catch (IOException e) {
            throw new RuntimeException(e);//TODO
        }
    }
}