• Home
• org.dmfs
• oauth2-essentials
• 0.3
• source code
• BasicOAuth2Client.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.dmfs.oauth2.client.BasicOAuth2Client Maven / Gradle / Ivy

/*
 * Copyright (C) 2016 Marten Gajda 
 *
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 * 
 *     http://www.apache.org/licenses/LICENSE-2.0
 * 
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

package org.dmfs.oauth2.client;

import java.io.IOException;
import java.net.URI;
import java.security.SecureRandom;

import org.dmfs.httpessentials.client.HttpRequest;
import org.dmfs.httpessentials.client.HttpRequestExecutor;
import org.dmfs.httpessentials.exceptions.ProtocolError;
import org.dmfs.httpessentials.exceptions.ProtocolException;
import org.dmfs.httpessentials.exceptions.RedirectionException;
import org.dmfs.httpessentials.exceptions.UnexpectedStatusException;
import org.dmfs.rfc5545.Duration;


/**
 * Basic implementation of an {@link OAuth2Client}.
 * 
 * @author Marten Gajda 
 */
public final class BasicOAuth2Client implements OAuth2Client
{
	private final static String STATE_CHARS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789_-";

	private final OAuth2AuthorizationProvider mProvider;
	private final OAuth2ClientCredentials mCredentials;
	private final URI mRedirectUri;


	public BasicOAuth2Client(OAuth2AuthorizationProvider provider, OAuth2ClientCredentials credentials, URI redirectUri)
	{
		mProvider = provider;
		mCredentials = credentials;
		mRedirectUri = redirectUri;
	}


	@Override
	public OAuth2AccessToken accessToken(HttpRequest tokenRequest, HttpRequestExecutor executor) throws RedirectionException,
		UnexpectedStatusException, IOException, ProtocolError, ProtocolException
	{
		return mProvider.accessToken(mCredentials.authenticatedRequest(tokenRequest), executor);
	}


	@Override
	public URI authorizationUrl(OAuth2AuthorizationRequest authorizationRequest)
	{
		return mProvider.authorizationUrl(authorizationRequest.withClientId(mCredentials.clientId()).withRedirectUri(mRedirectUri));
	}


	@Override
	public URI redirectUri()
	{
		return mRedirectUri;
	}


	@Override
	public Duration defaultTokenTtl()
	{
		return mProvider.defaultTokenTtl();
	}


	/**
	 * {@inheritDoc}
	 * 

	 * Note: Client on platforms with insecure {@link SecureRandom} implementations should decorate this implementation and return a secure random string.
	 */
	@Override
	public String generatedRandomState()
	{
		StringBuilder result = new StringBuilder(64);
		SecureRandom random = new SecureRandom();
		for (int i = 0, count = result.capacity(); i < count; ++i)
		{
			result.append(STATE_CHARS.charAt(random.nextInt(STATE_CHARS.length())));
		}
		return result.toString();
	}
}