net.leanix.dropkit.apiclient.auth.ClientCredentialRefreshingOAuth Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of leanix-mtm-sdk-java Show documentation
Show all versions of leanix-mtm-sdk-java Show documentation
SDK for Java to access leanIX MTM REST API
package net.leanix.dropkit.apiclient.auth;
import net.leanix.dropkit.apiclient.ApiException;
import net.leanix.dropkit.apiclient.Pair;
import net.leanix.dropkit.apiclient.auth.responses.AccessTokenResponse;
import org.glassfish.jersey.internal.util.Base64;
import java.net.URI;
import java.nio.charset.Charset;
import java.util.List;
import java.util.Map;
import javax.ws.rs.client.Client;
import javax.ws.rs.core.HttpHeaders;
import javax.ws.rs.core.MediaType;
public class ClientCredentialRefreshingOAuth extends OAuth {
private static final Charset UTF8 = Charset.forName("UTF-8");
private boolean accessTokenSetManually = false;
Client jerseyClient;
URI tokenUrl;
AccessTokenResponse accessTokenResponse;
private String clientId;
private String clientSecret;
public void setClientCredentials(String clientId, String clientSecret, URI tokenUrl) {
this.clientId = clientId;
this.clientSecret = clientSecret;
this.tokenUrl = tokenUrl;
}
public void setClient(Client jerseyClient) {
this.jerseyClient = jerseyClient;
}
@Override
public void setAccessToken(String accessToken) {
// If the access token is set manually here, don't do the token refresh via client credential flow anymore.
accessTokenSetManually = (accessToken != null);
accessTokenResponse = null;
super.setAccessToken(accessToken);
}
@Override
public void applyToParams(List queryParams, Map headerParams) throws ApiException {
// If the access token is set manually, don't do the token refresh via client credential flow anymore.
// And, if no oauth2 url is specified we can skip fetching as well.
if (!accessTokenSetManually && tokenUrl != null) {
if (accessTokenResponse == null || accessTokenResponse.isExpired()) {
fetchToken();
// call super to avoid setting the "manually set" flag
super.setAccessToken(accessTokenResponse.getAccessToken());
}
}
super.applyToParams(queryParams, headerParams);
}
private void fetchToken() throws ApiException {
String basicAuthorizationHeader = buildBasicAuthorizationHeader();
try {
accessTokenResponse = jerseyClient
.target(tokenUrl)
.queryParam("grant_type", "client_credentials")
.request()
.accept(MediaType.APPLICATION_JSON)
.header(HttpHeaders.CONTENT_TYPE, MediaType.APPLICATION_FORM_URLENCODED)
.header(HttpHeaders.AUTHORIZATION, basicAuthorizationHeader)
.post(null, AccessTokenResponse.class);
} catch (RuntimeException ex) {
throw new ApiException("Failed to retrieve a new oauth token from " + tokenUrl, ex, 0, null);
}
}
private String buildBasicAuthorizationHeader() {
StringBuilder sb = new StringBuilder(512);
sb.append(clientId).append(':').append(clientSecret);
String userAndPw = sb.toString();
sb.setLength(0);
sb.append("Basic ").append(Base64.encodeAsString(userAndPw.getBytes(UTF8)));
return sb.toString();
}
}
© 2015 - 2025 Weber Informatics LLC | Privacy Policy