Example 1 with OAuth2AuthorizationRequest
use of de.ids_mannheim.korap.oauth2.oltu.OAuth2AuthorizationRequest in project Kustvakt by KorAP.
the class OAuth2Controller method requestAuthorizationCode.
/**
* Requests an authorization code.
*
* Kustvakt supports authorization only with Kalamar as the
* authorization web-frontend or user interface. Thus
* authorization code request requires user authentication
* using authorization header.
*
* <br /><br />
* RFC 6749:
* If the client omits the scope parameter when requesting
* authorization, the authorization server MUST either process the
* request using a pre-defined default value or fail the request
* indicating an invalid scope.
*
* @param request
* HttpServletRequest
* @param form
* form parameters
* @return a redirect URL
*/
@POST
@Path("authorize")
@Consumes(MediaType.APPLICATION_FORM_URLENCODED)
public Response requestAuthorizationCode(@Context HttpServletRequest request, @Context SecurityContext context, @FormParam("state") String state, MultivaluedMap<String, String> form) {
TokenContext tokenContext = (TokenContext) context.getUserPrincipal();
String username = tokenContext.getUsername();
ZonedDateTime authTime = tokenContext.getAuthenticationTime();
try {
scopeService.verifyScope(tokenContext, OAuth2Scope.AUTHORIZE);
HttpServletRequest requestWithForm = new FormRequestWrapper(request, form);
OAuth2AuthorizationRequest authzRequest = new OAuth2AuthorizationRequest(requestWithForm);
String uri = authorizationService.requestAuthorizationCode(requestWithForm, authzRequest, username, authTime);
return responseHandler.sendRedirect(uri);
} catch (OAuthSystemException e) {
throw responseHandler.throwit(e, state);
} catch (OAuthProblemException e) {
throw responseHandler.throwit(e, state);
} catch (KustvaktException e) {
throw responseHandler.throwit(e, state);
}
}
Also used :
TokenContext(de.ids_mannheim.korap.security.context.TokenContext)
HttpServletRequest(javax.servlet.http.HttpServletRequest)
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
FormRequestWrapper(de.ids_mannheim.korap.web.utils.FormRequestWrapper)
KustvaktException(de.ids_mannheim.korap.exceptions.KustvaktException)
ZonedDateTime(java.time.ZonedDateTime)
OAuthSystemException(org.apache.oltu.oauth2.common.exception.OAuthSystemException)
OAuth2AuthorizationRequest(de.ids_mannheim.korap.oauth2.oltu.OAuth2AuthorizationRequest)
Path(javax.ws.rs.Path)
POST(javax.ws.rs.POST)
Consumes(javax.ws.rs.Consumes)
Aggregations
KustvaktException (de.ids_mannheim.korap.exceptions.KustvaktException)1
OAuth2AuthorizationRequest (de.ids_mannheim.korap.oauth2.oltu.OAuth2AuthorizationRequest)1
TokenContext (de.ids_mannheim.korap.security.context.TokenContext)1
FormRequestWrapper (de.ids_mannheim.korap.web.utils.FormRequestWrapper)1
ZonedDateTime (java.time.ZonedDateTime)1
HttpServletRequest (javax.servlet.http.HttpServletRequest)1
Consumes (javax.ws.rs.Consumes)1
POST (javax.ws.rs.POST)1
Path (javax.ws.rs.Path)1
OAuthProblemException (org.apache.oltu.oauth2.common.exception.OAuthProblemException)1
OAuthSystemException (org.apache.oltu.oauth2.common.exception.OAuthSystemException)1
