• Home
• org.http4k
• http4k-security-oauth
• 5.41.0.0
• source code
• PkceChallengeAndVerifier.kt

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.http4k.security.PkceChallengeAndVerifier.kt Maven / Gradle / Ivy

package org.http4k.security

import java.security.MessageDigest
import java.security.SecureRandom
import java.util.*
import kotlin.random.Random
import kotlin.random.asKotlinRandom

data class PkceChallengeAndVerifier(val challenge: String, val verifier: String) {
    companion object {
        val SECURE_PKCE = { create(SecureRandom().asKotlinRandom()) }

        fun create(random: Random, verifierLength: Int = 128): PkceChallengeAndVerifier {
            // See https://www.oauth.com/oauth2-servers/pkce/authorization-request
            val codeVerifier = buildString {
                val codeChars = ('A'..'Z') + ('a'..'z') + ('0'..'9') + listOf('-', '.', '_', '~')
                repeat(verifierLength) {
                    append(codeChars[random.nextInt(codeChars.size)])
                }
            }
            val codeChallenge = codeVerifier.toByteArray()
                .let { MessageDigest.getInstance("SHA-256").digest(it) }
                .let { String(Base64.getEncoder().encode(it)) }
                .replace("+", "-").replace("/", "_").trimEnd('=')

            return PkceChallengeAndVerifier(codeChallenge, codeVerifier)
        }
    }
}

typealias PkceGenerator = () -> PkceChallengeAndVerifier