Search in sources :

Example 1 with AuthorizationUrlWithPKCE

use of com.github.scribejava.core.pkce.AuthorizationUrlWithPKCE in project scribejava by scribejava.

the class Google20WithPKCEExample method main.

public static void main(String... args) throws IOException, InterruptedException, ExecutionException {
    // Replace these with your client id and secret
    final String clientId = "your client id";
    final String clientSecret = "your client secret";
    final String secretState = "secret" + new Random().nextInt(999_999);
    final OAuth20Service service = new ServiceBuilder(clientId).apiSecret(clientSecret).scope(// replace with desired scope
    "profile").state(secretState).callback("http://example.com/callback").build(GoogleApi20.instance());
    final Scanner in = new Scanner(System.in, "UTF-8");
    System.out.println("=== " + NETWORK_NAME + "'s OAuth Workflow ===");
    System.out.println();
    // Obtain the Authorization URL
    System.out.println("Fetching the Authorization URL...");
    // pass access_type=offline to get refresh token
    // https://developers.google.com/identity/protocols/OAuth2WebServer#preparing-to-start-the-oauth-20-flow
    final Map<String, String> additionalParams = new HashMap<>();
    additionalParams.put("access_type", "offline");
    // force to reget refresh token (if usera are asked not the first time)
    additionalParams.put("prompt", "consent");
    final AuthorizationUrlWithPKCE authUrlWithPKCE = service.getAuthorizationUrlWithPKCE(additionalParams);
    System.out.println("Got the Authorization URL!");
    System.out.println("Now go and authorize ScribeJava here:");
    System.out.println(authUrlWithPKCE.getAuthorizationUrl());
    System.out.println("And paste the authorization code here");
    System.out.print(">>");
    final String code = in.nextLine();
    System.out.println();
    System.out.println("And paste the state from server here. We have set 'secretState'='" + secretState + "'.");
    System.out.print(">>");
    final String value = in.nextLine();
    if (secretState.equals(value)) {
        System.out.println("State value does match!");
    } else {
        System.out.println("Ooops, state value does not match!");
        System.out.println("Expected = " + secretState);
        System.out.println("Got      = " + value);
        System.out.println();
    }
    // Trade the Request Token and Verfier for the Access Token
    System.out.println("Trading the Request Token for an Access Token...");
    OAuth2AccessToken accessToken = service.getAccessToken(code, authUrlWithPKCE.getPkce().getCodeVerifier());
    System.out.println("Got the Access Token!");
    System.out.println("(The raw response looks like this: " + accessToken.getRawResponse() + "')");
    System.out.println("Refreshing the Access Token...");
    accessToken = service.refreshAccessToken(accessToken.getRefreshToken());
    System.out.println("Refreshed the Access Token!");
    System.out.println("(The raw response looks like this: " + accessToken.getRawResponse() + "')");
    System.out.println();
    // Now let's go and ask for a protected resource!
    System.out.println("Now we're going to access a protected resource...");
    while (true) {
        System.out.println("Paste fieldnames to fetch (leave empty to get profile, 'exit' to stop example)");
        System.out.print(">>");
        final String query = in.nextLine();
        System.out.println();
        final String requestUrl;
        if ("exit".equals(query)) {
            break;
        } else if (query == null || query.isEmpty()) {
            requestUrl = PROTECTED_RESOURCE_URL;
        } else {
            requestUrl = PROTECTED_RESOURCE_URL + "?fields=" + query;
        }
        final OAuthRequest request = new OAuthRequest(Verb.GET, requestUrl);
        service.signRequest(accessToken, request);
        final Response response = service.execute(request);
        System.out.println();
        System.out.println(response.getCode());
        System.out.println(response.getBody());
        System.out.println();
    }
}
Also used : OAuthRequest(com.github.scribejava.core.model.OAuthRequest) Response(com.github.scribejava.core.model.Response) Scanner(java.util.Scanner) Random(java.util.Random) HashMap(java.util.HashMap) OAuth2AccessToken(com.github.scribejava.core.model.OAuth2AccessToken) AuthorizationUrlWithPKCE(com.github.scribejava.core.pkce.AuthorizationUrlWithPKCE) OAuth20Service(com.github.scribejava.core.oauth.OAuth20Service) ServiceBuilder(com.github.scribejava.core.builder.ServiceBuilder)

Aggregations

ServiceBuilder (com.github.scribejava.core.builder.ServiceBuilder)1 OAuth2AccessToken (com.github.scribejava.core.model.OAuth2AccessToken)1 OAuthRequest (com.github.scribejava.core.model.OAuthRequest)1 Response (com.github.scribejava.core.model.Response)1 OAuth20Service (com.github.scribejava.core.oauth.OAuth20Service)1 AuthorizationUrlWithPKCE (com.github.scribejava.core.pkce.AuthorizationUrlWithPKCE)1 HashMap (java.util.HashMap)1 Random (java.util.Random)1 Scanner (java.util.Scanner)1