Example 1 with DefaultAuthenticationResult
use of org.apereo.cas.authentication.DefaultAuthenticationResult in project cas by apereo.
the class AccessTokenPasswordGrantRequestExtractor method extract.
@Override
public AccessTokenRequestDataHolder extract(final HttpServletRequest request, final HttpServletResponse response) {
final String clientId = request.getParameter(OAuth20Constants.CLIENT_ID);
final Set<String> scopes = OAuth20Utils.parseRequestScopes(request);
LOGGER.debug("Locating OAuth registered service by client id [{}]", clientId);
final OAuthRegisteredService registeredService = OAuth20Utils.getRegisteredOAuthServiceByClientId(this.servicesManager, clientId);
LOGGER.debug("Located OAuth registered service [{}]", registeredService);
final J2EContext context = Pac4jUtils.getPac4jJ2EContext(request, response);
final ProfileManager manager = Pac4jUtils.getPac4jProfileManager(request, response);
final Optional<UserProfile> profile = manager.get(true);
if (!profile.isPresent()) {
throw new UnauthorizedServiceException("OAuth user profile cannot be determined");
}
final UserProfile uProfile = profile.get();
LOGGER.debug("Creating matching service request based on [{}]", registeredService);
final boolean requireServiceHeader = oAuthProperties.getGrants().getResourceOwner().isRequireServiceHeader();
if (requireServiceHeader) {
LOGGER.debug("Using request headers to identify and build the target service url");
}
final Service service = this.authenticationBuilder.buildService(registeredService, context, requireServiceHeader);
LOGGER.debug("Authenticating the OAuth request indicated by [{}]", service);
final Authentication authentication = this.authenticationBuilder.build(uProfile, registeredService, context, service);
final AuditableContext audit = AuditableContext.builder().service(service).authentication(authentication).registeredService(registeredService).retrievePrincipalAttributesFromReleasePolicy(Boolean.TRUE).build();
final AuditableExecutionResult accessResult = this.registeredServiceAccessStrategyEnforcer.execute(audit);
accessResult.throwExceptionIfNeeded();
final AuthenticationResult result = new DefaultAuthenticationResult(authentication, requireServiceHeader ? service : null);
final TicketGrantingTicket ticketGrantingTicket = this.centralAuthenticationService.createTicketGrantingTicket(result);
return new AccessTokenRequestDataHolder(service, authentication, registeredService, ticketGrantingTicket, getGrantType(), scopes);
}
Also used :
ProfileManager(org.pac4j.core.profile.ProfileManager)
AuditableContext(org.apereo.cas.audit.AuditableContext)
UserProfile(org.pac4j.core.profile.UserProfile)
OAuthRegisteredService(org.apereo.cas.support.oauth.services.OAuthRegisteredService)
TicketGrantingTicket(org.apereo.cas.ticket.TicketGrantingTicket)
UnauthorizedServiceException(org.apereo.cas.services.UnauthorizedServiceException)
CentralAuthenticationService(org.apereo.cas.CentralAuthenticationService)
OAuthRegisteredService(org.apereo.cas.support.oauth.services.OAuthRegisteredService)
Service(org.apereo.cas.authentication.principal.Service)
J2EContext(org.pac4j.core.context.J2EContext)
DefaultAuthenticationResult(org.apereo.cas.authentication.DefaultAuthenticationResult)
AuthenticationResult(org.apereo.cas.authentication.AuthenticationResult)
DefaultAuthenticationResult(org.apereo.cas.authentication.DefaultAuthenticationResult)
Authentication(org.apereo.cas.authentication.Authentication)
AuditableExecutionResult(org.apereo.cas.audit.AuditableExecutionResult)
Aggregations
CentralAuthenticationService (org.apereo.cas.CentralAuthenticationService)1
AuditableContext (org.apereo.cas.audit.AuditableContext)1
AuditableExecutionResult (org.apereo.cas.audit.AuditableExecutionResult)1
Authentication (org.apereo.cas.authentication.Authentication)1
AuthenticationResult (org.apereo.cas.authentication.AuthenticationResult)1
DefaultAuthenticationResult (org.apereo.cas.authentication.DefaultAuthenticationResult)1
Service (org.apereo.cas.authentication.principal.Service)1
UnauthorizedServiceException (org.apereo.cas.services.UnauthorizedServiceException)1
OAuthRegisteredService (org.apereo.cas.support.oauth.services.OAuthRegisteredService)1
TicketGrantingTicket (org.apereo.cas.ticket.TicketGrantingTicket)1
J2EContext (org.pac4j.core.context.J2EContext)1
ProfileManager (org.pac4j.core.profile.ProfileManager)1
UserProfile (org.pac4j.core.profile.UserProfile)1
