Search in sources :

Example 1 with AuthHttpClient

use of com.amazonaws.mobileconnectors.cognitoauth.util.AuthHttpClient in project aws-sdk-android by aws-amplify.

the class AuthClient method getTokens.

/**
 * Internal method to exchange code for tokens.
 * <p>
 *     Checks if the Uri contains a <b>state</b> query parameter. The FQDN for Cognito UI
 *     Web-Page contains a state. This method considers Uri's without a state parameter as
 *     <b><logout</b> redirect.
 *     Checks if the value of the contained state variable is valid. This is necessary to ensure
 *     that the SDK is parsing response from a known source. The SDK reads cache for proof-key
 *     stored with the value of the state in the Uri. If a stored proof-key is found, the Uri
 *     contains response from a request it generated.
 *     Checks if the Uri contains an error query parameter. An error query parameter indicates
 *     that the last request failed. This method invokes
 *     {@link AuthHandler#onFailure(Exception)} callback to report failure.
 *     When the above tests succeed, this method makes an http call to Amazon Cognito token
 *     end-point to exchange code for tokens.
 * </p>
 * @param uri Required: The redirect uri from the service.
 * @param callback Required: {@link AuthHandler}.
 */
private void getTokens(final Uri uri, final AuthHandler callback) {
    new Thread(new Runnable() {

        final Handler handler = new Handler(context.getMainLooper());

        Runnable returnCallback = new Runnable() {

            @Override
            public void run() {
                callback.onFailure(new InvalidParameterException());
            }
        };

        @Override
        public void run() {
            final Uri fqdn = new Uri.Builder().scheme(ClientConstants.DOMAIN_SCHEME).authority(pool.getAppWebDomain()).appendPath(ClientConstants.DOMAIN_PATH_OAUTH2).appendPath(ClientConstants.DOMAIN_PATH_TOKEN_ENDPOINT).build();
            String callbackState = uri.getQueryParameter(ClientConstants.DOMAIN_QUERY_PARAM_STATE);
            if (callbackState != null) {
                Set<String> tokenScopes = LocalDataManager.getCachedScopes(pool.awsKeyValueStore, context, callbackState);
                String proofKeyPlain = LocalDataManager.getCachedProofKey(pool.awsKeyValueStore, context, callbackState);
                if (proofKeyPlain == null) {
                    // The state value is unknown, exit.
                    return;
                }
                final String errorText = uri.getQueryParameter(ClientConstants.DOMAIN_QUERY_PARAM_ERROR);
                if (errorText != null) {
                    returnCallback = new Runnable() {

                        @Override
                        public void run() {
                            callback.onFailure(new AuthServiceException(errorText));
                        }
                    };
                } else {
                    // Make http POST call
                    final AuthHttpClient httpClient = new AuthHttpClient();
                    Map<String, String> httpHeaderParams = getHttpHeader();
                    Map<String, String> httpBodyParams = generateTokenExchangeRequest(uri, proofKeyPlain);
                    try {
                        String response = httpClient.httpPost(new URL(fqdn.toString()), httpHeaderParams, httpBodyParams);
                        final AuthUserSession session = AuthHttpResponseParser.parseHttpResponse(response);
                        userId = session.getUsername();
                        // Cache tokens if successful
                        LocalDataManager.cacheSession(pool.awsKeyValueStore, context, pool.getAppId(), userId, session, tokenScopes);
                        // Return tokens
                        returnCallback = new Runnable() {

                            @Override
                            public void run() {
                                callback.onSuccess(session);
                            }
                        };
                    } catch (final Exception e) {
                        returnCallback = new Runnable() {

                            @Override
                            public void run() {
                                callback.onFailure(e);
                            }
                        };
                    }
                }
            } else {
                if (cookiesCleared != null) {
                    cookiesCleared.countDown();
                    Log.d(TAG, "Sign-out was successful.");
                }
                // User sign-out.
                returnCallback = new Runnable() {

                    @Override
                    public void run() {
                        callback.onSignout();
                    }
                };
            }
            handler.post(returnCallback);
        }
    }).start();
}
Also used : AuthServiceException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthServiceException) AuthHttpClient(com.amazonaws.mobileconnectors.cognitoauth.util.AuthHttpClient) Handler(android.os.Handler) AuthHandler(com.amazonaws.mobileconnectors.cognitoauth.handlers.AuthHandler) Uri(android.net.Uri) URL(java.net.URL) AuthServiceException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthServiceException) AuthClientException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthClientException) BrowserNotInstalledException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.BrowserNotInstalledException) InvalidParameterException(java.security.InvalidParameterException) AuthInvalidGrantException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthInvalidGrantException) AuthNavigationException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthNavigationException) InvalidParameterException(java.security.InvalidParameterException)

Example 2 with AuthHttpClient

use of com.amazonaws.mobileconnectors.cognitoauth.util.AuthHttpClient in project aws-sdk-android by aws-amplify.

the class AuthClient method refreshSession.

/**
 * Internal method to refresh tokens.
 * <p>
 *     Makes an http call to Amazon Cognito token end-point to refresh token. On successful
 *     token refresh, the refresh tokens is retained.
 * </p>
 * @param session Required: The android application {@link Context}.
 * @param redirectUri Required: The redirect Uri, which will be launched after authentication.
 * @param tokenScopes Required: A {@link Set<String>} specifying all scopes for the tokens.
 * @param callback Required: {@link AuthHandler}.
 * @param showSignInIfExpired true if the web UI should launch when the refresh token is expired
 * @param browserPackage String specifying the browser package to launch the specified url.
 * @param activity The activity to launch the sign in experience from.
 *                 This must not be null if showSignInIfExpired is true.
 */
private void refreshSession(final AuthUserSession session, final String redirectUri, final Set<String> tokenScopes, final AuthHandler callback, final boolean showSignInIfExpired, final String browserPackage, final Activity activity) {
    new Thread(new Runnable() {

        final Handler handler = new Handler(context.getMainLooper());

        Runnable returnCallback;

        @Override
        public void run() {
            final Uri fqdn = new Uri.Builder().scheme(ClientConstants.DOMAIN_SCHEME).authority(pool.getAppWebDomain()).appendPath(ClientConstants.DOMAIN_PATH_OAUTH2).appendPath(ClientConstants.DOMAIN_PATH_TOKEN_ENDPOINT).build();
            // Make http POST call
            final AuthHttpClient httpClient = new AuthHttpClient();
            Map<String, String> httpHeaderParams = getHttpHeader();
            Map<String, String> httpBodyParams = generateTokenRefreshRequest(redirectUri, session);
            try {
                String response = httpClient.httpPost(new URL(fqdn.toString()), httpHeaderParams, httpBodyParams);
                AuthUserSession parsedSession = AuthHttpResponseParser.parseHttpResponse(response);
                final AuthUserSession refreshedSession = new AuthUserSession(parsedSession.getIdToken(), parsedSession.getAccessToken(), session.getRefreshToken());
                final String username = refreshedSession.getUsername();
                // Cache session
                LocalDataManager.cacheSession(pool.awsKeyValueStore, context, pool.getAppId(), username, refreshedSession, pool.getScopes());
                // Return tokens
                returnCallback = new Runnable() {

                    @Override
                    public void run() {
                        callback.onSuccess(refreshedSession);
                    }
                };
            } catch (final AuthInvalidGrantException invg) {
                if (showSignInIfExpired) {
                    returnCallback = new Runnable() {

                        @Override
                        public void run() {
                            launchCognitoAuth(redirectUri, tokenScopes, activity, browserPackage);
                        }
                    };
                } else {
                    returnCallback = new Runnable() {

                        @Override
                        public void run() {
                            userHandler.onFailure(invg);
                        }
                    };
                }
            } catch (final Exception e) {
                returnCallback = new Runnable() {

                    @Override
                    public void run() {
                        callback.onFailure(e);
                    }
                };
            }
            handler.post(returnCallback);
        }
    }).start();
}
Also used : AuthHttpClient(com.amazonaws.mobileconnectors.cognitoauth.util.AuthHttpClient) Handler(android.os.Handler) AuthHandler(com.amazonaws.mobileconnectors.cognitoauth.handlers.AuthHandler) AuthInvalidGrantException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthInvalidGrantException) Uri(android.net.Uri) URL(java.net.URL) AuthServiceException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthServiceException) AuthClientException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthClientException) BrowserNotInstalledException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.BrowserNotInstalledException) InvalidParameterException(java.security.InvalidParameterException) AuthInvalidGrantException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthInvalidGrantException) AuthNavigationException(com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthNavigationException)

Aggregations

Uri (android.net.Uri)2 Handler (android.os.Handler)2 AuthClientException (com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthClientException)2 AuthInvalidGrantException (com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthInvalidGrantException)2 AuthNavigationException (com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthNavigationException)2 AuthServiceException (com.amazonaws.mobileconnectors.cognitoauth.exceptions.AuthServiceException)2 BrowserNotInstalledException (com.amazonaws.mobileconnectors.cognitoauth.exceptions.BrowserNotInstalledException)2 AuthHandler (com.amazonaws.mobileconnectors.cognitoauth.handlers.AuthHandler)2 AuthHttpClient (com.amazonaws.mobileconnectors.cognitoauth.util.AuthHttpClient)2 URL (java.net.URL)2 InvalidParameterException (java.security.InvalidParameterException)2