Example 1 with OAuth20AuthorizationRequest
use of org.apereo.cas.support.oauth.web.response.OAuth20AuthorizationRequest in project cas by apereo.
the class OAuth20AuthorizeEndpointController method prepareAccessTokenRequestContext.
/**
* Build access token request context.
*
* @param authzRequest the authz request
* @param registeredService the registered service
* @param context the context
* @param service the service
* @param authentication the authentication
* @return the access token request context
* @throws Exception the exception
*/
protected AccessTokenRequestContext prepareAccessTokenRequestContext(final OAuth20AuthorizationRequest authzRequest, final OAuthRegisteredService registeredService, final JEEContext context, final Service service, final Authentication authentication) throws Exception {
var payloadBuilder = AccessTokenRequestContext.builder();
if (authzRequest.isSingleSignOnSessionRequired()) {
val tgt = getConfigurationContext().fetchTicketGrantingTicketFrom(context);
payloadBuilder = payloadBuilder.ticketGrantingTicket(tgt);
}
val redirectUri = OAuth20Utils.getRequestParameter(context, OAuth20Constants.REDIRECT_URI).map(String::valueOf).orElse(StringUtils.EMPTY);
val grantType = context.getRequestParameter(OAuth20Constants.GRANT_TYPE).map(String::valueOf).orElseGet(OAuth20GrantTypes.AUTHORIZATION_CODE::getType).toUpperCase();
val scopes = OAuth20Utils.parseRequestScopes(context);
val codeChallenge = context.getRequestParameter(OAuth20Constants.CODE_CHALLENGE).map(String::valueOf).orElse(StringUtils.EMPTY);
val codeChallengeMethod = context.getRequestParameter(OAuth20Constants.CODE_CHALLENGE_METHOD).map(String::valueOf).orElse(StringUtils.EMPTY).toUpperCase();
val userProfile = OAuth20Utils.getAuthenticatedUserProfile(context, getConfigurationContext().getSessionStore());
val claims = OAuth20Utils.parseRequestClaims(context);
val holder = payloadBuilder.service(service).authentication(authentication).registeredService(registeredService).grantType(OAuth20Utils.getGrantType(context)).responseType(OAuth20Utils.getResponseType(context)).codeChallenge(codeChallenge).codeChallengeMethod(codeChallengeMethod).scopes(scopes).clientId(authzRequest.getClientId()).redirectUri(redirectUri).userProfile(userProfile).claims(claims).responseMode(OAuth20Utils.getResponseModeType(context)).build();
context.getRequestParameters().keySet().forEach(key -> context.getRequestParameter(key).ifPresent(value -> holder.getParameters().put(key, value)));
LOGGER.debug("Building authorization response for grant type [{}] with scopes [{}] for client id [{}]", grantType, scopes, authzRequest.getClientId());
return holder;
}
Also used :
lombok.val(lombok.val)
RegisteredServiceAccessStrategyUtils(org.apereo.cas.services.RegisteredServiceAccessStrategyUtils)
StringUtils(org.apache.commons.lang3.StringUtils)
WebContext(org.pac4j.core.context.WebContext)
AuthenticationCredentialsThreadLocalBinder(org.apereo.cas.authentication.AuthenticationCredentialsThreadLocalBinder)
AccessTokenRequestContext(org.apereo.cas.support.oauth.web.response.accesstoken.ext.AccessTokenRequestContext)
LoggingUtils(org.apereo.cas.util.LoggingUtils)
HttpServletRequest(javax.servlet.http.HttpServletRequest)
Authentication(org.apereo.cas.authentication.Authentication)
OAuth20AuthorizationRequest(org.apereo.cas.support.oauth.web.response.OAuth20AuthorizationRequest)
GetMapping(org.springframework.web.bind.annotation.GetMapping)
OAuth20AuthorizationResponseBuilder(org.apereo.cas.support.oauth.web.response.callback.OAuth20AuthorizationResponseBuilder)
JEEContext(org.pac4j.core.context.JEEContext)
PostMapping(org.springframework.web.bind.annotation.PostMapping)
OAuth20Constants(org.apereo.cas.support.oauth.OAuth20Constants)
Unchecked(org.jooq.lambda.Unchecked)
OAuth20Utils(org.apereo.cas.support.oauth.util.OAuth20Utils)
AuditableContext(org.apereo.cas.audit.AuditableContext)
OAuth20GrantTypes(org.apereo.cas.support.oauth.OAuth20GrantTypes)
lombok.val(lombok.val)
HttpServletResponse(javax.servlet.http.HttpServletResponse)
OAuthRegisteredService(org.apereo.cas.support.oauth.services.OAuthRegisteredService)
ProfileManager(org.pac4j.core.profile.ProfileManager)
OrderComparator(org.springframework.core.OrderComparator)
Objects(java.util.Objects)
HttpStatus(org.springframework.http.HttpStatus)
ModelAndView(org.springframework.web.servlet.ModelAndView)
Slf4j(lombok.extern.slf4j.Slf4j)
Service(org.apereo.cas.authentication.principal.Service)
Optional(java.util.Optional)
PreventedException(org.apereo.cas.authentication.PreventedException)
OAuth20GrantTypes(org.apereo.cas.support.oauth.OAuth20GrantTypes)
Aggregations
Objects (java.util.Objects)1
Optional (java.util.Optional)1
HttpServletRequest (javax.servlet.http.HttpServletRequest)1
HttpServletResponse (javax.servlet.http.HttpServletResponse)1
Slf4j (lombok.extern.slf4j.Slf4j)1
lombok.val (lombok.val)1
StringUtils (org.apache.commons.lang3.StringUtils)1
AuditableContext (org.apereo.cas.audit.AuditableContext)1
Authentication (org.apereo.cas.authentication.Authentication)1
AuthenticationCredentialsThreadLocalBinder (org.apereo.cas.authentication.AuthenticationCredentialsThreadLocalBinder)1
PreventedException (org.apereo.cas.authentication.PreventedException)1
Service (org.apereo.cas.authentication.principal.Service)1
RegisteredServiceAccessStrategyUtils (org.apereo.cas.services.RegisteredServiceAccessStrategyUtils)1
OAuth20Constants (org.apereo.cas.support.oauth.OAuth20Constants)1
OAuth20GrantTypes (org.apereo.cas.support.oauth.OAuth20GrantTypes)1
OAuthRegisteredService (org.apereo.cas.support.oauth.services.OAuthRegisteredService)1
OAuth20Utils (org.apereo.cas.support.oauth.util.OAuth20Utils)1
OAuth20AuthorizationRequest (org.apereo.cas.support.oauth.web.response.OAuth20AuthorizationRequest)1
AccessTokenRequestContext (org.apereo.cas.support.oauth.web.response.accesstoken.ext.AccessTokenRequestContext)1
OAuth20AuthorizationResponseBuilder (org.apereo.cas.support.oauth.web.response.callback.OAuth20AuthorizationResponseBuilder)1
