Example 16 with OAuthProblemException
use of org.apache.amber.oauth2.common.exception.OAuthProblemException in project entando-core by entando.
the class AuthEndpointServlet method doGet.
@Override
protected void doGet(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
OAuthAuthzRequest oauthRequest = null;
OAuthIssuerImpl oauthIssuerImpl = new OAuthIssuerImpl(new MD5Generator());
IApiOAuthorizationCodeManager codeManager = (IApiOAuthorizationCodeManager) ApsWebApplicationUtils.getBean(SystemConstants.OAUTH2_AUTHORIZATION_CODE_MANAGER, request);
try {
oauthRequest = new OAuthAuthzRequest(request);
if (validateClient(oauthRequest, request, response)) {
// build response according to response_type
String responseType = oauthRequest.getParam(OAuth.OAUTH_RESPONSE_TYPE) == null ? OAuth.OAUTH_RESPONSE_TYPE : oauthRequest.getParam(OAuth.OAUTH_RESPONSE_TYPE);
OAuthASResponse.OAuthAuthorizationResponseBuilder builder = OAuthASResponse.authorizationResponse(request, HttpServletResponse.SC_FOUND);
final String authorizationCode = oauthIssuerImpl.authorizationCode();
final int expires = 3;
AuthorizationCode authCode = new AuthorizationCode();
authCode.setAuthorizationCode(authorizationCode);
// gets a calendar using the default time zone and locale.
Calendar calendar = Calendar.getInstance();
calendar.add(Calendar.SECOND, expires);
authCode.setExpires(calendar.getTimeInMillis());
authCode.setClientId(oauthRequest.getClientId());
authCode.setSource(request.getRemoteAddr());
codeManager.addAuthorizationCode(authCode);
if (responseType.equals(ResponseType.CODE.toString())) {
builder.setCode(authorizationCode);
}
if (responseType.equals(ResponseType.TOKEN.toString())) {
builder.setAccessToken(authorizationCode);
builder.setExpiresIn((long) expires);
}
String redirectURI = oauthRequest.getParam(OAuth.OAUTH_REDIRECT_URI);
final OAuthResponse resp = builder.location(redirectURI).buildQueryMessage();
final int status = resp.getResponseStatus();
response.setStatus(status);
response.sendRedirect(resp.getLocationUri());
} else {
logger.warn("OAuth2 authentication failed");
response.sendError(HttpServletResponse.SC_UNAUTHORIZED);
}
} catch (OAuthSystemException ex) {
logger.error("System exception {} ", ex.getMessage());
response.sendError(HttpServletResponse.SC_INTERNAL_SERVER_ERROR);
} catch (OAuthProblemException ex) {
logger.error("OAuth2 error {} ", ex.getMessage());
response.sendError(HttpServletResponse.SC_UNAUTHORIZED);
} catch (IOException e) {
logger.error("IOException {} ", e);
}
}
Also used :
AuthorizationCode(org.entando.entando.aps.system.services.oauth2.model.AuthorizationCode)
OAuthSystemException(org.apache.oltu.oauth2.common.exception.OAuthSystemException)
Calendar(java.util.Calendar)
IOException(java.io.IOException)
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthIssuerImpl(org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl)
OAuthAuthzRequest(org.apache.oltu.oauth2.as.request.OAuthAuthzRequest)
IApiOAuthorizationCodeManager(org.entando.entando.aps.system.services.oauth2.IApiOAuthorizationCodeManager)
MD5Generator(org.apache.oltu.oauth2.as.issuer.MD5Generator)
OAuthASResponse(org.apache.oltu.oauth2.as.response.OAuthASResponse)
Example 17 with OAuthProblemException
use of org.apache.amber.oauth2.common.exception.OAuthProblemException in project BIMserver by opensourceBIM.
the class JsonHandler method getServiceMap.
private ServiceMap getServiceMap(HttpServletRequest httpRequest, BimServer bimServer, String methodName, String token, String oAuthCode) throws UserException {
if (token == null) {
token = httpRequest == null ? null : (String) httpRequest.getSession().getAttribute("token");
}
if (token == null) {
token = oAuthCode;
}
if (token == null) {
if (httpRequest != null) {
try {
OAuthAccessResourceRequest oauthRequest = new OAuthAccessResourceRequest(httpRequest, ParameterStyle.HEADER);
token = oauthRequest.getAccessToken();
} catch (OAuthSystemException e) {
} catch (OAuthProblemException e) {
}
}
}
if (token == null) {
return null;
}
ServiceMap serviceMap = bimServer.getServiceFactory().get(token, AccessMethod.JSON);
return serviceMap;
}
Also used :
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthAccessResourceRequest(org.apache.oltu.oauth2.rs.request.OAuthAccessResourceRequest)
ServiceMap(org.bimserver.webservices.ServiceMap)
OAuthSystemException(org.apache.oltu.oauth2.common.exception.OAuthSystemException)
Example 18 with OAuthProblemException
use of org.apache.amber.oauth2.common.exception.OAuthProblemException in project BIMserver by opensourceBIM.
the class SendUrl method main.
public static void main(String[] args) {
try {
OAuthClientRequest request = OAuthClientRegistrationRequest.location("https://thisisanexperimentalserver.com/oauth/register/", OAuthRegistration.Type.PUSH).setName("Zapier").setUrl("https://zapier.com/dashboard/auth/oauth/return/App56192API").setDescription("App Description").setRedirectURL("https://zapier.com/dashboard/auth/oauth/return/App56192API").buildJSONMessage();
OAuthRegistrationClient oauthclient = new OAuthRegistrationClient(new org.bimserver.webservices.impl.URLConnectionClient());
OAuthClientRegistrationResponse response = oauthclient.clientInfo(request);
System.out.println(response.getClientId());
System.out.println(response.getClientSecret());
} catch (OAuthSystemException e) {
e.printStackTrace();
} catch (IOException e) {
e.printStackTrace();
} catch (OAuthProblemException e) {
e.printStackTrace();
}
}
Also used :
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthRegistrationClient(org.apache.oltu.oauth2.ext.dynamicreg.client.OAuthRegistrationClient)
OAuthClientRegistrationResponse(org.apache.oltu.oauth2.ext.dynamicreg.client.response.OAuthClientRegistrationResponse)
OAuthSystemException(org.apache.oltu.oauth2.common.exception.OAuthSystemException)
IOException(java.io.IOException)
OAuthClientRequest(org.apache.oltu.oauth2.client.request.OAuthClientRequest)
Example 19 with OAuthProblemException
use of org.apache.amber.oauth2.common.exception.OAuthProblemException in project structr by structr.
the class StructrOAuthClient method getCode.
private static String getCode(final HttpServletRequest request) {
OAuthAuthzResponse oar;
try {
logger.info("Trying to get authorization code from request {}", request);
oar = OAuthAuthzResponse.oauthCodeAuthzResponse(request);
String code = oar.getCode();
logger.info("Got code {} from authorization request", code);
return oar.getCode();
} catch (OAuthProblemException e) {
logger.error("Could not read authorization request: {}, {}", new Object[] { e.getError(), e.getDescription() });
}
return null;
}
Also used :
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthAuthzResponse(org.apache.oltu.oauth2.client.response.OAuthAuthzResponse)
Example 20 with OAuthProblemException
use of org.apache.amber.oauth2.common.exception.OAuthProblemException in project dq-easy-cloud by dq-open-cloud.
the class EcAuthorizeController method authorize.
@RequestMapping("/toAuthorize")
public Object authorize(Model model, HttpServletRequest request) throws URISyntaxException, OAuthSystemException {
// http://localhost:8100/authorize/toAuthorize?redirect_uri=https://www.baidu.com/&response_type=code&client_id=1&state=bb38108d1aaf567c72da0f1167e87142d0e20cb2bb24ec5a
try {
// 构建OAuth 授权请求
OAuthAuthzRequest oauthRequest = new OAuthAuthzRequest(request);
boolean checkClient = false;
// 检查传入的客户端id是否正确
if (checkClient) {
OAuthResponse response = OAuthASResponse.errorResponse(HttpServletResponse.SC_BAD_REQUEST).setError(OAuthError.TokenResponse.INVALID_CLIENT).setErrorDescription("非法用户").buildJSONMessage();
return new ResponseEntity(response.getBody(), HttpStatus.valueOf(response.getResponseStatus()));
}
Subject subject = SecurityUtils.getSubject();
// 如果用户没有登录,跳转到登陆页面
if (!subject.isAuthenticated()) {
if (!login(subject, request)) {
// model.addAttribute("client", clientService.findByClientId(oauthRequest.getClientId()));
return "oauth2login";
}
}
String username = (String) subject.getPrincipal();
// 生成授权码
String authorizationCode = null;
// responseType目前仅支持CODE,另外还有TOKEN
String responseType = oauthRequest.getParam(OAuth.OAUTH_RESPONSE_TYPE);
if (responseType.equals(ResponseType.CODE.toString())) {
OAuthIssuerImpl oauthIssuerImpl = new OAuthIssuerImpl(new MD5Generator());
authorizationCode = oauthIssuerImpl.authorizationCode();
codeCache.put(authorizationCode, "zhangsan");
// oAuthService.addAuthCode(authorizationCode, username);
}
// 进行OAuth响应构建
OAuthASResponse.OAuthAuthorizationResponseBuilder builder = OAuthASResponse.authorizationResponse(request, HttpServletResponse.SC_FOUND);
// 设置授权码
builder.setCode(authorizationCode);
// 得到到客户端重定向地址
String redirectURI = oauthRequest.getParam(OAuth.OAUTH_REDIRECT_URI);
// 构建响应
final OAuthResponse response = builder.location(redirectURI).buildQueryMessage();
// 根据OAuthResponse返回ResponseEntity响应
HttpHeaders headers = new HttpHeaders();
headers.setLocation(new URI(response.getLocationUri()));
return new ResponseEntity(headers, HttpStatus.valueOf(response.getResponseStatus()));
} catch (OAuthProblemException e) {
logger.error(e.getMessage(), e);
// 出错处理
String redirectUri = e.getRedirectUri();
if (OAuthUtils.isEmpty(redirectUri)) {
// 告诉客户端没有传入redirectUri直接报错
return new ResponseEntity("OAuth callback url needs to be provided by client!!!", HttpStatus.NOT_FOUND);
}
// 返回错误消息(如?error=)
final OAuthResponse response = OAuthASResponse.errorResponse(HttpServletResponse.SC_FOUND).error(e).location(redirectUri).buildQueryMessage();
HttpHeaders headers = new HttpHeaders();
headers.setLocation(new URI(response.getLocationUri()));
return new ResponseEntity(headers, HttpStatus.valueOf(response.getResponseStatus()));
}
}
Also used :
HttpHeaders(org.springframework.http.HttpHeaders)
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
URI(java.net.URI)
Subject(org.apache.shiro.subject.Subject)
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthIssuerImpl(org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl)
ResponseEntity(org.springframework.http.ResponseEntity)
OAuthAuthzRequest(org.apache.oltu.oauth2.as.request.OAuthAuthzRequest)
MD5Generator(org.apache.oltu.oauth2.as.issuer.MD5Generator)
OAuthASResponse(org.apache.oltu.oauth2.as.response.OAuthASResponse)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Aggregations
OAuthProblemException (org.apache.oltu.oauth2.common.exception.OAuthProblemException)20
OAuthSystemException (org.apache.oltu.oauth2.common.exception.OAuthSystemException)14
OAuthResponse (org.apache.oltu.oauth2.common.message.OAuthResponse)9
IOException (java.io.IOException)5
MD5Generator (org.apache.oltu.oauth2.as.issuer.MD5Generator)5
OAuthAccessResourceRequest (org.apache.oltu.oauth2.rs.request.OAuthAccessResourceRequest)5
RequestMapping (org.springframework.web.bind.annotation.RequestMapping)5
URI (java.net.URI)4
OAuthIssuerImpl (org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl)4
OAuthClientRequest (org.apache.oltu.oauth2.client.request.OAuthClientRequest)4
ServletException (javax.servlet.ServletException)3
OAuthTokenRequest (org.apache.oltu.oauth2.as.request.OAuthTokenRequest)3
BimserverDatabaseException (org.bimserver.BimserverDatabaseException)3
DatabaseSession (org.bimserver.database.DatabaseSession)3
ApsSystemException (com.agiletec.aps.system.exception.ApsSystemException)2
IUserManager (com.agiletec.aps.system.services.user.IUserManager)2
UserDetails (com.agiletec.aps.system.services.user.UserDetails)2
URISyntaxException (java.net.URISyntaxException)2
OAuthIssuer (org.apache.oltu.oauth2.as.issuer.OAuthIssuer)2
OAuthAuthzRequest (org.apache.oltu.oauth2.as.request.OAuthAuthzRequest)2
