Example 6 with OAuthResponse
use of org.apache.oltu.oauth2.common.message.OAuthResponse in project tesla by linking12.
the class TokenAuthorizeHandler method normalTokenResponse.
private void normalTokenResponse(AccessToken accessToken) throws OAuthSystemException {
final OAuthResponse oAuthResponse = createTokenResponse(accessToken, true);
LOG.debug("'token' response: {}", oAuthResponse);
WebUtils.writeOAuthQueryResponse(response, oAuthResponse);
}
Also used :
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
Example 7 with OAuthResponse
use of org.apache.oltu.oauth2.common.message.OAuthResponse in project tesla by linking12.
the class AuthorizationCodeTokenHandler method responseToken.
private void responseToken() throws OAuthSystemException {
AccessToken accessToken = oauthService.retrieveAuthorizationCodeAccessToken(clientDetails(), tokenRequest.getCode());
final OAuthResponse tokenResponse = createTokenResponse(accessToken, false);
LOG.debug("'authorization_code' response: {}", tokenResponse);
WebUtils.writeOAuthJsonResponse(response, tokenResponse);
}
Also used :
AccessToken(io.github.tesla.authz.domain.AccessToken)
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
Example 8 with OAuthResponse
use of org.apache.oltu.oauth2.common.message.OAuthResponse in project tesla by linking12.
the class RefreshTokenHandler method handleAfterValidation.
@Override
public void handleAfterValidation() throws OAuthProblemException, OAuthSystemException {
final String refreshToken = tokenRequest.getRefreshToken();
AccessToken accessToken = oauthService.changeAccessTokenByRefreshToken(refreshToken, tokenRequest.getClientId());
final OAuthResponse tokenResponse = createTokenResponse(accessToken, false);
LOG.debug("'refresh_token' response: {}", tokenResponse);
WebUtils.writeOAuthJsonResponse(response, tokenResponse);
}
Also used :
AccessToken(io.github.tesla.authz.domain.AccessToken)
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
Example 9 with OAuthResponse
use of org.apache.oltu.oauth2.common.message.OAuthResponse in project dq-easy-cloud by dq-open-cloud.
the class EcAuthorizeController method token.
@RequestMapping("/accessToken")
public HttpEntity token(HttpServletRequest request) throws URISyntaxException, OAuthSystemException {
// http://localhost:8100/authorize/accessToken?code=4d9e143db54db03d215161f207346cb6&grant_type=authorization_code&redirect_uri=https://www.baidu.com&client_secret=1&client_id=2
try {
// 构建OAuth请求
OAuthTokenRequest oauthRequest = new OAuthTokenRequest(request);
boolean checkClient = false;
// 检查提交的客户端id是否正确
if (checkClient) {
OAuthResponse response = OAuthASResponse.errorResponse(HttpServletResponse.SC_BAD_REQUEST).setError(OAuthError.TokenResponse.INVALID_CLIENT).setErrorDescription("异常").buildJSONMessage();
return new ResponseEntity(response.getBody(), HttpStatus.valueOf(response.getResponseStatus()));
}
// 检查客户端安全KEY是否正确
// checkClient = !oAuthService.checkClientSecret(oauthRequest.getClientSecret())
String clientSecret = oauthRequest.getClientSecret();
if ("".equals(clientSecret)) {
OAuthResponse response = OAuthASResponse.errorResponse(HttpServletResponse.SC_UNAUTHORIZED).setError(OAuthError.TokenResponse.UNAUTHORIZED_CLIENT).setErrorDescription("secret有误").buildJSONMessage();
return new ResponseEntity(response.getBody(), HttpStatus.valueOf(response.getResponseStatus()));
}
String authCode = oauthRequest.getParam(OAuth.OAUTH_CODE);
// 检查验证类型,此处只检查AUTHORIZATION_CODE类型,其他的还有PASSWORD或REFRESH_TOKEN
if (oauthRequest.getParam(OAuth.OAUTH_GRANT_TYPE).equals(GrantType.AUTHORIZATION_CODE.toString())) {
// if (!oAuthService.checkAuthCode(authCode)) {
if (!codeCache.containsKey(authCode)) {
OAuthResponse response = OAuthASResponse.errorResponse(HttpServletResponse.SC_BAD_REQUEST).setError(OAuthError.TokenResponse.INVALID_GRANT).setErrorDescription("错误的授权码").buildJSONMessage();
return new ResponseEntity(response.getBody(), HttpStatus.valueOf(response.getResponseStatus()));
}
}
// 生成Access Token
OAuthIssuer oauthIssuerImpl = new OAuthIssuerImpl(new MD5Generator());
final String accessToken = oauthIssuerImpl.accessToken();
final String refreshToken = oauthIssuerImpl.refreshToken();
// oAuthService.addAccessToken(accessToken, oAuthService.getUsernameByAuthCode(authCode));
tokenCache.put(accessToken, codeCache.get(authCode));
// 生成OAuth响应
OAuthResponse response = OAuthASResponse.tokenResponse(HttpServletResponse.SC_OK).setAccessToken(accessToken).setRefreshToken(refreshToken).setExpiresIn(String.valueOf(7200)).setTokenType(TokenType.BEARER.toString()).buildJSONMessage();
// 根据OAuthResponse生成ResponseEntity
return new ResponseEntity(response.getBody(), HttpStatus.valueOf(response.getResponseStatus()));
} catch (OAuthProblemException e) {
logger.error(e.getMessage(), e);
// 构建错误响应
OAuthResponse res = OAuthASResponse.errorResponse(HttpServletResponse.SC_BAD_REQUEST).error(e).buildJSONMessage();
return new ResponseEntity(res.getBody(), HttpStatus.valueOf(res.getResponseStatus()));
}
}
Also used :
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthIssuerImpl(org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl)
ResponseEntity(org.springframework.http.ResponseEntity)
OAuthTokenRequest(org.apache.oltu.oauth2.as.request.OAuthTokenRequest)
MD5Generator(org.apache.oltu.oauth2.as.issuer.MD5Generator)
OAuthIssuer(org.apache.oltu.oauth2.as.issuer.OAuthIssuer)
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
RequestMapping(org.springframework.web.bind.annotation.RequestMapping)
Example 10 with OAuthResponse
use of org.apache.oltu.oauth2.common.message.OAuthResponse in project BIMserver by opensourceBIM.
the class OAuthAccessTokenServlet method service.
@Override
public void service(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
OAuthTokenRequest oauthRequest = null;
OAuthIssuer oauthIssuerImpl = new OAuthIssuerImpl(new MD5Generator());
if (!request.getContentType().equals("application/x-www-form-urlencoded")) {
response.setStatus(405);
PrintWriter pw = response.getWriter();
pw.print("ContentType must be application/x-www-form-urlencoded");
pw.flush();
pw.close();
return;
}
try {
oauthRequest = new OAuthTokenRequest(request);
OAuthAuthorizationCode code = null;
try (DatabaseSession session = getBimServer().getDatabase().createSession(OperationType.READ_ONLY)) {
String codeAsString = oauthRequest.getCode();
code = session.querySingle(StorePackage.eINSTANCE.getOAuthAuthorizationCode_Code(), codeAsString);
validateClient(oauthRequest);
String resourceUrl = "";
Authorization auth = code.getAuthorization();
org.bimserver.webservices.authorization.Authorization authorization = null;
if (auth instanceof SingleProjectAuthorization) {
SingleProjectAuthorization singleProjectAuthorization = (SingleProjectAuthorization) auth;
authorization = new org.bimserver.webservices.authorization.SingleProjectAuthorization(getBimServer(), code.getUser().getOid(), singleProjectAuthorization.getProject().getOid());
} else if (auth instanceof RunServiceAuthorization) {
RunServiceAuthorization runServiceAuthorization = (RunServiceAuthorization) auth;
authorization = new org.bimserver.webservices.authorization.RunServiceAuthorization(getBimServer(), code.getUser().getOid(), runServiceAuthorization.getService().getOid());
resourceUrl = getBimServer().getServerSettingsCache().getServerSettings().getSiteAddress() + "/services/" + runServiceAuthorization.getService().getOid();
} else {
throw new Exception("Unknown auth");
}
String accessToken = authorization.asHexToken(getBimServer().getEncryptionKey());
String refreshToken = oauthIssuerImpl.refreshToken();
OAuthTokenResponseBuilder builder = OAuthASResponse.tokenResponse(HttpServletResponse.SC_OK).setAccessToken(accessToken).setExpiresIn("3600").setRefreshToken(refreshToken);
builder.setParam("resource_url", resourceUrl);
if (auth instanceof SingleProjectAuthorization) {
builder.setParam("poid", "" + ((SingleProjectAuthorization) code.getAuthorization()).getProject().getOid());
} else if (auth instanceof RunServiceAuthorization) {
builder.setParam("soid", "" + ((RunServiceAuthorization) code.getAuthorization()).getService().getOid());
}
OAuthResponse r = builder.buildJSONMessage();
response.setStatus(r.getResponseStatus());
response.setContentType("application/json");
PrintWriter pw = response.getWriter();
pw.print(r.getBody());
pw.flush();
pw.close();
} catch (BimserverDatabaseException e) {
LOGGER.error("", e);
}
} catch (OAuthProblemException ex) {
LOGGER.error("", ex);
try {
OAuthResponse r = OAuthResponse.errorResponse(401).error(ex).buildJSONMessage();
response.setStatus(r.getResponseStatus());
PrintWriter pw = response.getWriter();
pw.print(r.getBody());
pw.flush();
pw.close();
} catch (OAuthSystemException e) {
LOGGER.error("", ex);
}
} catch (Exception e) {
LOGGER.error("", e);
}
}
Also used :
DatabaseSession(org.bimserver.database.DatabaseSession)
OAuthSystemException(org.apache.oltu.oauth2.common.exception.OAuthSystemException)
OAuthTokenRequest(org.apache.oltu.oauth2.as.request.OAuthTokenRequest)
SingleProjectAuthorization(org.bimserver.models.store.SingleProjectAuthorization)
RunServiceAuthorization(org.bimserver.models.store.RunServiceAuthorization)
OAuthResponse(org.apache.oltu.oauth2.common.message.OAuthResponse)
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
ServletException(javax.servlet.ServletException)
IOException(java.io.IOException)
OAuthSystemException(org.apache.oltu.oauth2.common.exception.OAuthSystemException)
BimserverDatabaseException(org.bimserver.BimserverDatabaseException)
Authorization(org.bimserver.models.store.Authorization)
RunServiceAuthorization(org.bimserver.models.store.RunServiceAuthorization)
SingleProjectAuthorization(org.bimserver.models.store.SingleProjectAuthorization)
OAuthProblemException(org.apache.oltu.oauth2.common.exception.OAuthProblemException)
OAuthIssuerImpl(org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl)
BimserverDatabaseException(org.bimserver.BimserverDatabaseException)
OAuthTokenResponseBuilder(org.apache.oltu.oauth2.as.response.OAuthASResponse.OAuthTokenResponseBuilder)
MD5Generator(org.apache.oltu.oauth2.as.issuer.MD5Generator)
OAuthIssuer(org.apache.oltu.oauth2.as.issuer.OAuthIssuer)
OAuthAuthorizationCode(org.bimserver.models.store.OAuthAuthorizationCode)
PrintWriter(java.io.PrintWriter)
Aggregations
OAuthResponse (org.apache.oltu.oauth2.common.message.OAuthResponse)22
OAuthProblemException (org.apache.oltu.oauth2.common.exception.OAuthProblemException)10
MD5Generator (org.apache.oltu.oauth2.as.issuer.MD5Generator)6
OAuthIssuerImpl (org.apache.oltu.oauth2.as.issuer.OAuthIssuerImpl)5
OAuthSystemException (org.apache.oltu.oauth2.common.exception.OAuthSystemException)5
RequestMapping (org.springframework.web.bind.annotation.RequestMapping)5
AccessToken (io.github.tesla.authz.domain.AccessToken)4
IOException (java.io.IOException)4
OAuthASResponse (org.apache.oltu.oauth2.as.response.OAuthASResponse)4
ClientDetails (io.github.tesla.authz.domain.ClientDetails)3
URI (java.net.URI)3
ServletException (javax.servlet.ServletException)3
OAuthIssuer (org.apache.oltu.oauth2.as.issuer.OAuthIssuer)3
OAuthAuthzRequest (org.apache.oltu.oauth2.as.request.OAuthAuthzRequest)3
OAuthTokenRequest (org.apache.oltu.oauth2.as.request.OAuthTokenRequest)3
BimserverDatabaseException (org.bimserver.BimserverDatabaseException)3
DatabaseSession (org.bimserver.database.DatabaseSession)3
RunServiceAuthorization (org.bimserver.models.store.RunServiceAuthorization)3
AbstractClientDetailsValidator (io.github.tesla.authz.controller.oauth2.validator.AbstractClientDetailsValidator)2
PrintWriter (java.io.PrintWriter)2
