Example 1 with ClientRegistrationEntity
use of com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity in project oauth2-server by gw2auth.
the class ClientRegistrationServiceImpl method addRedirectUri.
@Override
public ClientRegistration addRedirectUri(long accountId, UUID clientId, String redirectUri) {
if (!this.redirectUriValidator.validate(redirectUri)) {
throw new ClientRegistrationServiceException(ClientRegistrationServiceException.INVALID_REDIRECT_URI, HttpStatus.BAD_REQUEST);
}
ClientRegistrationEntity clientRegistrationEntity = this.clientRegistrationRepository.findByAccountIdIdAndClientId(accountId, clientId).orElseThrow(() -> new ClientRegistrationServiceException(ClientRegistrationServiceException.NOT_FOUND, HttpStatus.NOT_FOUND));
clientRegistrationEntity.redirectUris().add(redirectUri);
clientRegistrationEntity = this.clientRegistrationRepository.save(clientRegistrationEntity);
return ClientRegistration.fromEntity(clientRegistrationEntity);
}
Also used :
ClientRegistrationEntity(com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity)
Example 2 with ClientRegistrationEntity
use of com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity in project oauth2-server by gw2auth.
the class ClientRegistrationServiceImpl method removeRedirectUri.
@Override
public ClientRegistration removeRedirectUri(long accountId, UUID clientId, String redirectUri) {
ClientRegistrationEntity clientRegistrationEntity = this.clientRegistrationRepository.findByAccountIdIdAndClientId(accountId, clientId).orElseThrow(() -> new ClientRegistrationServiceException(ClientRegistrationServiceException.NOT_FOUND, HttpStatus.NOT_FOUND));
clientRegistrationEntity.redirectUris().remove(redirectUri);
if (clientRegistrationEntity.redirectUris().isEmpty()) {
throw new ClientRegistrationServiceException(ClientRegistrationServiceException.NOT_ENOUGH_REDIRECT_URIS, HttpStatus.BAD_REQUEST);
}
clientRegistrationEntity = this.clientRegistrationRepository.save(clientRegistrationEntity);
return ClientRegistration.fromEntity(clientRegistrationEntity);
}
Also used :
ClientRegistrationEntity(com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity)
Example 3 with ClientRegistrationEntity
use of com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity in project oauth2-server by gw2auth.
the class ApplicationControllerTest method getApplicationSummary.
@Test
public void getApplicationSummary() throws Exception {
final long accountId = this.accountRepository.save(new AccountEntity(null, Instant.now())).id();
final int accounts = 102;
final int apiTokens = 3;
final int verifiedGw2Accounts = 5;
final int clientRegistrations = 12;
// this must be less than clientRegistrations! (only to keep the testcase simple)
final int clientAuthorizations = 10;
for (int i = 0; i < accounts; i++) {
this.accountRepository.save(new AccountEntity(null, Instant.now()));
}
for (int i = 0; i < apiTokens; i++) {
this.testHelper.createApiToken(accountId, UUID.randomUUID(), Set.of(), "Name");
}
for (int i = 0; i < verifiedGw2Accounts; i++) {
this.gw2AccountVerificationRepository.save(new Gw2AccountVerificationEntity(UUID.randomUUID(), accountId));
}
final Queue<ClientRegistrationEntity> clientRegistrationEntities = new LinkedList<>();
for (int i = 0; i < clientRegistrations; i++) {
clientRegistrationEntities.add(this.clientRegistrationRepository.save(new ClientRegistrationEntity(null, accountId, Instant.now(), "Name", UUID.randomUUID(), "", Set.of(), Set.of("http://127.0.0.1/"))));
}
for (int i = 0; i < clientAuthorizations; i++) {
this.clientConsentRepository.save(new ClientConsentEntity(accountId, clientRegistrationEntities.poll().id(), UUID.randomUUID(), Set.of("dummy")));
}
// add one client authorization without scopes (that should not be counted)
this.clientConsentRepository.save(new ClientConsentEntity(accountId, clientRegistrationEntities.poll().id(), UUID.randomUUID(), Set.of()));
this.mockMvc.perform(get("/api/application/summary")).andExpect(status().isOk()).andExpect(// we create one dummy account who owns everything else
jsonPath("$.accounts").value(Integer.toString(accounts + 1))).andExpect(jsonPath("$.apiTokens").value(Integer.toString(apiTokens))).andExpect(jsonPath("$.verifiedGw2Accounts").value(Integer.toString(verifiedGw2Accounts))).andExpect(jsonPath("$.clientRegistrations").value(Integer.toString(clientRegistrations))).andExpect(jsonPath("$.clientAuthorizations").value(Integer.toString(clientAuthorizations)));
}
Also used :
ClientRegistrationEntity(com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity)
Gw2AccountVerificationEntity(com.gw2auth.oauth2.server.repository.verification.Gw2AccountVerificationEntity)
AccountEntity(com.gw2auth.oauth2.server.repository.account.AccountEntity)
LinkedList(java.util.LinkedList)
ClientConsentEntity(com.gw2auth.oauth2.server.repository.client.consent.ClientConsentEntity)
Test(org.junit.jupiter.api.Test)
SpringBootTest(org.springframework.boot.test.context.SpringBootTest)
Example 4 with ClientRegistrationEntity
use of com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity in project oauth2-server by gw2auth.
the class ClientAuthorizationControllerTest method getClientAuthorizations.
@WithGw2AuthLogin
public void getClientAuthorizations(MockHttpSession session) throws Exception {
final long accountId = AuthenticationHelper.getUser(session).orElseThrow().getAccountId();
// create client
final ClientRegistrationEntity client = this.testHelper.createClientRegistration(accountId, "Client");
// create consent
this.testHelper.createClientConsent(accountId, client.id(), Set.of(Gw2ApiPermission.ACCOUNT.oauth2(), ClientConsentService.GW2AUTH_VERIFIED_SCOPE));
// create 2 authorizations
final ClientAuthorizationEntity authorization1 = this.testHelper.createClientAuthorization(accountId, client.id(), Set.of(Gw2ApiPermission.ACCOUNT.oauth2()));
final ClientAuthorizationEntity authorization2 = this.testHelper.createClientAuthorization(accountId, client.id(), Set.of(Gw2ApiPermission.ACCOUNT.oauth2(), ClientConsentService.GW2AUTH_VERIFIED_SCOPE));
// insert tokens for these authorizations
final ApiTokenEntity tokenA = this.testHelper.createApiToken(accountId, UUID.randomUUID(), Gw2ApiPermission.all(), "Token A");
final ApiTokenEntity tokenB = this.testHelper.createApiToken(accountId, UUID.randomUUID(), Gw2ApiPermission.all(), "Token B");
final ApiTokenEntity tokenC = this.testHelper.createApiToken(accountId, UUID.randomUUID(), Gw2ApiPermission.all(), "Token C");
final ApiTokenEntity tokenD = this.testHelper.createApiToken(accountId, UUID.randomUUID(), Gw2ApiPermission.all(), "Token D");
this.testHelper.createClientAuthorizationTokens(accountId, authorization1.id(), tokenA.gw2AccountId(), tokenD.gw2AccountId());
this.testHelper.createClientAuthorizationTokens(accountId, authorization2.id(), tokenA.gw2AccountId(), tokenB.gw2AccountId(), tokenC.gw2AccountId());
// query api
final String jsonResponse = this.mockMvc.perform(get("/api/client/authorization/{clientId}", client.clientId()).session(session)).andExpect(status().isOk()).andReturn().getResponse().getContentAsString();
final ObjectMapper mapper = new ObjectMapper();
final JsonNode node = mapper.readTree(jsonResponse);
assertTrue(node.isArray());
assertEquals(2, node.size());
for (int i = 0; i < node.size(); i++) {
final JsonNode authorizationNode = node.get(i);
final String id = authorizationNode.get("id").textValue();
final ClientAuthorizationEntity authorization;
final Map<UUID, ApiTokenEntity> apiTokens;
if (id.equals(authorization1.id())) {
authorization = authorization1;
apiTokens = Map.of(tokenA.gw2AccountId(), tokenA, tokenD.gw2AccountId(), tokenD);
} else if (id.equals(authorization2.id())) {
authorization = authorization2;
apiTokens = Map.of(tokenA.gw2AccountId(), tokenA, tokenB.gw2AccountId(), tokenB, tokenC.gw2AccountId(), tokenC);
} else {
fail("unknown authorization id found in response");
throw new IllegalStateException("");
}
assertInstantEquals(authorization.creationTime(), authorizationNode.get("creationTime").textValue());
assertInstantEquals(authorization.lastUpdateTime(), authorizationNode.get("lastUpdateTime").textValue());
assertEquals(authorization.displayName(), authorizationNode.get("displayName").textValue());
// authorized scopes
final Set<String> expectedAuthorizedScopes = new HashSet<>(authorization.authorizedScopes());
final JsonNode gw2ApiPermissionsNode = authorizationNode.get("authorizedGw2ApiPermissions");
assertTrue(gw2ApiPermissionsNode.isArray());
for (int j = 0; j < gw2ApiPermissionsNode.size(); j++) {
final String gw2ApiPermissionStr = gw2ApiPermissionsNode.get(j).textValue();
final Gw2ApiPermission gw2ApiPermission = Gw2ApiPermission.fromGw2(gw2ApiPermissionStr).orElseThrow();
if (!expectedAuthorizedScopes.remove(gw2ApiPermission.oauth2())) {
fail("received gw2 api permission which is not present in the entity");
}
}
if (authorizationNode.get("authorizedVerifiedInformation").booleanValue()) {
if (!expectedAuthorizedScopes.remove(ClientConsentService.GW2AUTH_VERIFIED_SCOPE)) {
fail("received verified scope but it is not present in the entity");
}
}
assertTrue(expectedAuthorizedScopes.isEmpty());
// tokens
final Map<UUID, ApiTokenEntity> expectedApiTokens = new HashMap<>(apiTokens);
final JsonNode tokensNode = authorizationNode.get("tokens");
assertTrue(tokensNode.isArray());
for (int j = 0; j < tokensNode.size(); j++) {
final JsonNode tokenNode = tokensNode.get(j);
final ApiTokenEntity expectedApiToken = expectedApiTokens.remove(UUID.fromString(tokenNode.get("gw2AccountId").textValue()));
assertNotNull(expectedApiToken);
assertEquals(expectedApiToken.displayName(), tokenNode.get("displayName").textValue());
}
assertTrue(expectedApiTokens.isEmpty());
}
}
Also used :
ApiTokenEntity(com.gw2auth.oauth2.server.repository.apitoken.ApiTokenEntity)
Gw2ApiPermission(com.gw2auth.oauth2.server.service.Gw2ApiPermission)
ClientRegistrationEntity(com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity)
JsonNode(com.fasterxml.jackson.databind.JsonNode)
ClientAuthorizationEntity(com.gw2auth.oauth2.server.repository.client.authorization.ClientAuthorizationEntity)
ObjectMapper(com.fasterxml.jackson.databind.ObjectMapper)
Example 5 with ClientRegistrationEntity
use of com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity in project oauth2-server by gw2auth.
the class ClientConsentControllerTest method getClientConsents.
@WithGw2AuthLogin
public void getClientConsents(MockHttpSession session) throws Exception {
final long accountId = AuthenticationHelper.getUser(session).orElseThrow().getAccountId();
final ClientRegistrationEntity clientRegistrationA = this.testHelper.createClientRegistration(accountId, "Name");
final ClientRegistrationEntity clientRegistrationC = this.testHelper.createClientRegistration(accountId, "Name");
final ClientConsentEntity clientConsentA = this.testHelper.createClientConsent(accountId, clientRegistrationA.id(), Set.of(Gw2ApiPermission.ACCOUNT.oauth2(), ClientConsentService.GW2AUTH_VERIFIED_SCOPE));
final ClientConsentEntity clientConsentB = this.testHelper.createClientConsent(accountId, clientRegistrationC.id(), Set.of(Gw2ApiPermission.ACCOUNT.oauth2(), Gw2ApiPermission.GUILDS.oauth2()));
final String jsonResponse = this.mockMvc.perform(get("/api/client/consent").session(session)).andExpect(status().isOk()).andExpect(jsonPath("$.length()").value(2)).andReturn().getResponse().getContentAsString();
final ObjectMapper mapper = new ObjectMapper();
final JsonNode node = mapper.readTree(jsonResponse);
assertTrue(node.isArray());
boolean foundAuthorizationA = false;
boolean foundAuthorizationC = false;
for (int i = 0; i < node.size(); i++) {
final JsonNode element = node.get(i);
final JsonNode clientRegistrationNode = element.get("clientRegistration");
final ClientRegistrationEntity clientRegistration;
final ClientConsentEntity clientConsent;
if (clientRegistrationNode.get("clientId").textValue().equals(clientRegistrationA.clientId().toString())) {
if (foundAuthorizationA) {
fail("authorization A appeared at least twice in the response");
return;
} else {
foundAuthorizationA = true;
clientRegistration = clientRegistrationA;
clientConsent = clientConsentA;
}
} else if (clientRegistrationNode.get("clientId").textValue().equals(clientRegistrationC.clientId().toString())) {
if (foundAuthorizationC) {
fail("authorization C appeared at least twice in the response");
return;
} else {
foundAuthorizationC = true;
clientRegistration = clientRegistrationC;
clientConsent = clientConsentB;
}
} else {
fail("unknown authorization appeared in response");
return;
}
// registration
assertInstantEquals(clientRegistration.creationTime(), clientRegistrationNode.get("creationTime").textValue());
assertEquals(clientRegistration.displayName(), clientRegistrationNode.get("displayName").textValue());
// accountsub
assertEquals(clientConsent.accountSub().toString(), element.get("accountSub").textValue());
// authorized scopes
final Set<String> expectedScopes = new HashSet<>(clientConsent.authorizedScopes());
final JsonNode authorizedGw2ApiPermissionsNode = element.get("authorizedGw2ApiPermissions");
assertTrue(authorizedGw2ApiPermissionsNode.isArray());
for (int j = 0; j < authorizedGw2ApiPermissionsNode.size(); j++) {
final Gw2ApiPermission gw2ApiPermission = Gw2ApiPermission.fromGw2(authorizedGw2ApiPermissionsNode.get(j).textValue()).orElseThrow();
if (!expectedScopes.remove(gw2ApiPermission.oauth2())) {
fail("got unexpected scope in authorization");
}
}
if (element.get("authorizedVerifiedInformation").booleanValue()) {
if (!expectedScopes.remove(ClientConsentService.GW2AUTH_VERIFIED_SCOPE)) {
fail("got unexpected scope in authorization");
}
}
assertTrue(expectedScopes.isEmpty());
}
assertTrue(foundAuthorizationA);
assertTrue(foundAuthorizationC);
}
Also used :
Gw2ApiPermission(com.gw2auth.oauth2.server.service.Gw2ApiPermission)
ClientRegistrationEntity(com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity)
JsonNode(com.fasterxml.jackson.databind.JsonNode)
ObjectMapper(com.fasterxml.jackson.databind.ObjectMapper)
ClientConsentEntity(com.gw2auth.oauth2.server.repository.client.consent.ClientConsentEntity)
Aggregations
ClientRegistrationEntity (com.gw2auth.oauth2.server.repository.client.registration.ClientRegistrationEntity)15
ClientConsentEntity (com.gw2auth.oauth2.server.repository.client.consent.ClientConsentEntity)8
JsonNode (com.fasterxml.jackson.databind.JsonNode)6
ObjectMapper (com.fasterxml.jackson.databind.ObjectMapper)5
ApiTokenEntity (com.gw2auth.oauth2.server.repository.apitoken.ApiTokenEntity)5
ClientAuthorizationEntity (com.gw2auth.oauth2.server.repository.client.authorization.ClientAuthorizationEntity)2
Gw2AccountVerificationEntity (com.gw2auth.oauth2.server.repository.verification.Gw2AccountVerificationEntity)2
Gw2ApiPermission (com.gw2auth.oauth2.server.service.Gw2ApiPermission)2
AccountEntity (com.gw2auth.oauth2.server.repository.account.AccountEntity)1
AccountFederationEntity (com.gw2auth.oauth2.server.repository.account.AccountFederationEntity)1
ClientConsentLogEntity (com.gw2auth.oauth2.server.repository.client.consent.ClientConsentLogEntity)1
LinkedList (java.util.LinkedList)1
Test (org.junit.jupiter.api.Test)1
SpringBootTest (org.springframework.boot.test.context.SpringBootTest)1
AuthorizationGrantType (org.springframework.security.oauth2.core.AuthorizationGrantType)1
Transactional (org.springframework.transaction.annotation.Transactional)1
