Example 91 with Client
use of org.apache.cxf.rs.security.oauth2.common.Client in project cxf by apache.
the class OAuth2FiltersTest method getLocationUsingAuthorizationCodeGrant.
private static URI getLocationUsingAuthorizationCodeGrant(WebClient client) {
client.type("application/json").accept("application/json");
OAuthAuthorizationData authzData = client.get(OAuthAuthorizationData.class);
// Now call "decision" to get the authorization code grant
client.path("decision");
client.type("application/x-www-form-urlencoded");
Form form = new Form();
form.param("session_authenticity_token", authzData.getAuthenticityToken());
form.param("client_id", authzData.getClientId());
form.param("redirect_uri", authzData.getRedirectUri());
if (authzData.getProposedScope() != null) {
form.param("scope", authzData.getProposedScope());
}
form.param("state", authzData.getState());
form.param("oauthDecision", "allow");
return client.post(form).getLocation();
}
Also used :
Form(javax.ws.rs.core.Form)
OAuthAuthorizationData(org.apache.cxf.rs.security.oauth2.common.OAuthAuthorizationData)
Example 92 with Client
use of org.apache.cxf.rs.security.oauth2.common.Client in project cxf by apache.
the class PartnerService method echoBookXml.
@POST
@Path("/books")
@Produces(MediaType.APPLICATION_XML)
@Consumes(MediaType.APPLICATION_XML)
public Book echoBookXml(Book book) {
String address = "https://localhost:" + BookServerOAuth2Filters.PORT + "/secured/bookstore/books";
WebClient client = WebClient.create(address).type(MediaType.APPLICATION_XML).accept(MediaType.APPLICATION_XML).authorization(new ClientAccessToken(BEARER_AUTHORIZATION_SCHEME, context.getToken().getTokenKey()));
// Now make a service invocation with the access token
return client.post(book, Book.class);
}Example 93 with Client
use of org.apache.cxf.rs.security.oauth2.common.Client in project cxf by apache.
the class AuthorizationGrantTest method testSAMLAuthorizationGrant.
@org.junit.Test
public void testSAMLAuthorizationGrant() throws Exception {
String address = "https://localhost:" + port + "/services/";
WebClient client = WebClient.create(address, OAuth2TestUtils.setupProviders(), "consumer-id", "this-is-a-secret", null);
// Create the SAML Assertion
String assertion = OAuth2TestUtils.createToken(address + "token");
// Get Access Token
client.type("application/x-www-form-urlencoded").accept("application/json");
client.path("token");
Form form = new Form();
form.param("grant_type", "urn:ietf:params:oauth:grant-type:saml2-bearer");
form.param("assertion", Base64UrlUtility.encode(assertion));
form.param("client_id", "consumer-id");
ClientAccessToken accessToken = client.post(form, ClientAccessToken.class);
assertNotNull(accessToken.getTokenKey());
assertNotNull(accessToken.getRefreshToken());
if (isAccessTokenInJWTFormat()) {
validateAccessToken(accessToken.getTokenKey());
}
}
Also used :
Form(javax.ws.rs.core.Form)
ClientAccessToken(org.apache.cxf.rs.security.oauth2.common.ClientAccessToken)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
Example 94 with Client
use of org.apache.cxf.rs.security.oauth2.common.Client in project cxf by apache.
the class AuthorizationGrantTest method testAuthorizationCodeGrantRefreshWithoutScope.
// Here we don't specify a scope in the refresh token call
@org.junit.Test
public void testAuthorizationCodeGrantRefreshWithoutScope() throws Exception {
String address = "https://localhost:" + port + "/services/";
WebClient client = WebClient.create(address, OAuth2TestUtils.setupProviders(), "alice", "security", null);
// Save the Cookie for the second request...
WebClient.getConfig(client).getRequestContext().put(org.apache.cxf.message.Message.MAINTAIN_SESSION, Boolean.TRUE);
// Get Authorization Code
String code = OAuth2TestUtils.getAuthorizationCode(client, "read_balance");
assertNotNull(code);
// Now get the access token
client = WebClient.create(address, OAuth2TestUtils.setupProviders(), "consumer-id", "this-is-a-secret", null);
// Save the Cookie for the second request...
WebClient.getConfig(client).getRequestContext().put(org.apache.cxf.message.Message.MAINTAIN_SESSION, Boolean.TRUE);
ClientAccessToken accessToken = OAuth2TestUtils.getAccessTokenWithAuthorizationCode(client, code);
assertNotNull(accessToken.getTokenKey());
assertNotNull(accessToken.getRefreshToken());
// Refresh the access token
client.type("application/x-www-form-urlencoded").accept("application/json");
Form form = new Form();
form.param("grant_type", "refresh_token");
form.param("refresh_token", accessToken.getRefreshToken());
form.param("client_id", "consumer-id");
accessToken = client.post(form, ClientAccessToken.class);
assertNotNull(accessToken.getTokenKey());
assertNotNull(accessToken.getRefreshToken());
if (isAccessTokenInJWTFormat()) {
validateAccessToken(accessToken.getTokenKey());
}
}
Also used :
Form(javax.ws.rs.core.Form)
ClientAccessToken(org.apache.cxf.rs.security.oauth2.common.ClientAccessToken)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
Example 95 with Client
use of org.apache.cxf.rs.security.oauth2.common.Client in project cxf by apache.
the class OIDCFlowTest method testAuthorizationCodeFlow.
@org.junit.Test
public void testAuthorizationCodeFlow() throws Exception {
String address = "https://localhost:" + port + "/services/";
WebClient client = WebClient.create(address, OAuth2TestUtils.setupProviders(), "alice", "security", null);
// Save the Cookie for the second request...
WebClient.getConfig(client).getRequestContext().put(org.apache.cxf.message.Message.MAINTAIN_SESSION, Boolean.TRUE);
// Get Authorization Code
String code = OAuth2TestUtils.getAuthorizationCode(client, "openid");
assertNotNull(code);
// Now get the access token
client = WebClient.create(address, "consumer-id", "this-is-a-secret", null);
ClientAccessToken accessToken = OAuth2TestUtils.getAccessTokenWithAuthorizationCode(client, code);
assertNotNull(accessToken.getTokenKey());
assertTrue(accessToken.getApprovedScope().contains("openid"));
String idToken = accessToken.getParameters().get("id_token");
assertNotNull(idToken);
validateIdToken(idToken, null);
if (isAccessTokenInJWTFormat()) {
validateAccessToken(accessToken.getTokenKey());
}
}
Also used :
ClientAccessToken(org.apache.cxf.rs.security.oauth2.common.ClientAccessToken)
WebClient(org.apache.cxf.jaxrs.client.WebClient)
Aggregations
WebClient (org.apache.cxf.jaxrs.client.WebClient)112
ClientAccessToken (org.apache.cxf.rs.security.oauth2.common.ClientAccessToken)100
Response (javax.ws.rs.core.Response)79
Client (org.apache.cxf.rs.security.oauth2.common.Client)75
Form (javax.ws.rs.core.Form)64
URL (java.net.URL)59
OAuthAuthorizationData (org.apache.cxf.rs.security.oauth2.common.OAuthAuthorizationData)36
ServerAccessToken (org.apache.cxf.rs.security.oauth2.common.ServerAccessToken)36
Test (org.junit.Test)35
OAuthServiceException (org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException)27
UserSubject (org.apache.cxf.rs.security.oauth2.common.UserSubject)25
AccessTokenRegistration (org.apache.cxf.rs.security.oauth2.common.AccessTokenRegistration)22
OAuthPermission (org.apache.cxf.rs.security.oauth2.common.OAuthPermission)21
JwsJwtCompactConsumer (org.apache.cxf.rs.security.jose.jws.JwsJwtCompactConsumer)16
JwtToken (org.apache.cxf.rs.security.jose.jwt.JwtToken)15
ArrayList (java.util.ArrayList)13
TokenIntrospection (org.apache.cxf.rs.security.oauth2.common.TokenIntrospection)12
RefreshToken (org.apache.cxf.rs.security.oauth2.tokens.refresh.RefreshToken)12
Book (org.apache.cxf.systest.jaxrs.security.Book)11
Consumes (javax.ws.rs.Consumes)8
