Example 1 with FacebookClient
use of org.pac4j.oauth.client.FacebookClient in project cas by apereo.
the class DelegatedClientAuthenticationActionTests method verifyStartAuthentication.
@Test
public void verifyStartAuthentication() throws Exception {
final MockHttpServletResponse mockResponse = new MockHttpServletResponse();
final MockHttpServletRequest mockRequest = new MockHttpServletRequest();
mockRequest.setParameter(ThemeChangeInterceptor.DEFAULT_PARAM_NAME, MY_THEME);
mockRequest.setParameter(LocaleChangeInterceptor.DEFAULT_PARAM_NAME, MY_LOCALE);
mockRequest.setParameter(CasProtocolConstants.PARAMETER_METHOD, MY_METHOD);
final MockHttpSession mockSession = new MockHttpSession();
mockRequest.setSession(mockSession);
final ServletExternalContext servletExternalContext = mock(ServletExternalContext.class);
when(servletExternalContext.getNativeRequest()).thenReturn(mockRequest);
when(servletExternalContext.getNativeResponse()).thenReturn(mockResponse);
final MockRequestContext mockRequestContext = new MockRequestContext();
mockRequestContext.setExternalContext(servletExternalContext);
mockRequestContext.getFlowScope().put(CasProtocolConstants.PARAMETER_SERVICE, RegisteredServiceTestUtils.getService(MY_SERVICE));
final FacebookClient facebookClient = new FacebookClient(MY_KEY, MY_SECRET);
final TwitterClient twitterClient = new TwitterClient("3nJPbVTVRZWAyUgoUKQ8UA", "h6LZyZJmcW46Vu8R47MYfeXTSYGI30EqnWaSwVhFkbA");
final Clients clients = new Clients(MY_LOGIN_URL, facebookClient, twitterClient);
final DelegatedClientAuthenticationAction action = new DelegatedClientAuthenticationAction(clients, null, mock(CentralAuthenticationService.class), "theme", "locale", false);
final Event event = action.execute(mockRequestContext);
assertEquals("error", event.getId());
assertEquals(MY_THEME, mockSession.getAttribute(ThemeChangeInterceptor.DEFAULT_PARAM_NAME));
assertEquals(MY_LOCALE, mockSession.getAttribute(LocaleChangeInterceptor.DEFAULT_PARAM_NAME));
assertEquals(MY_METHOD, mockSession.getAttribute(CasProtocolConstants.PARAMETER_METHOD));
final MutableAttributeMap flowScope = mockRequestContext.getFlowScope();
final Set<DelegatedClientAuthenticationAction.ProviderLoginPageConfiguration> urls = (Set<DelegatedClientAuthenticationAction.ProviderLoginPageConfiguration>) flowScope.get(DelegatedClientAuthenticationAction.PAC4J_URLS);
assertFalse(urls.isEmpty());
assertSame(2, urls.size());
}
Also used :
TwitterClient(org.pac4j.oauth.client.TwitterClient)
Set(java.util.Set)
MockHttpServletRequest(org.springframework.mock.web.MockHttpServletRequest)
FacebookClient(org.pac4j.oauth.client.FacebookClient)
MockRequestContext(org.springframework.webflow.test.MockRequestContext)
Clients(org.pac4j.core.client.Clients)
CentralAuthenticationService(org.apereo.cas.CentralAuthenticationService)
ServletExternalContext(org.springframework.webflow.context.servlet.ServletExternalContext)
MutableAttributeMap(org.springframework.webflow.core.collection.MutableAttributeMap)
MockHttpSession(org.springframework.mock.web.MockHttpSession)
Event(org.springframework.webflow.execution.Event)
MockHttpServletResponse(org.springframework.mock.web.MockHttpServletResponse)
Test(org.junit.Test)
Example 2 with FacebookClient
use of org.pac4j.oauth.client.FacebookClient in project cas by apereo.
the class Pac4jAuthenticationEventExecutionPlanConfiguration method configureFacebookClient.
private void configureFacebookClient(final Collection<BaseClient> properties) {
final Pac4jProperties.Facebook fb = casProperties.getAuthn().getPac4j().getFacebook();
if (StringUtils.isNotBlank(fb.getId()) && StringUtils.isNotBlank(fb.getSecret())) {
final FacebookClient client = new FacebookClient(fb.getId(), fb.getSecret());
if (StringUtils.isNotBlank(fb.getScope())) {
client.setScope(fb.getScope());
}
if (StringUtils.isNotBlank(fb.getFields())) {
client.setFields(fb.getFields());
}
properties.add(client);
}
}
Also used :
Pac4jProperties(org.apereo.cas.configuration.model.support.pac4j.Pac4jProperties)
FacebookClient(org.pac4j.oauth.client.FacebookClient)
Example 3 with FacebookClient
use of org.pac4j.oauth.client.FacebookClient in project cas by apereo.
the class DelegatedClientFactory method configureFacebookClient.
/**
* Configure facebook client.
*
* @param properties the properties
*/
protected void configureFacebookClient(final Collection<BaseClient> properties) {
final Pac4jDelegatedAuthenticationProperties.Facebook fb = pac4jProperties.getFacebook();
if (StringUtils.isNotBlank(fb.getId()) && StringUtils.isNotBlank(fb.getSecret())) {
final FacebookClient client = new FacebookClient(fb.getId(), fb.getSecret());
configureClient(client, fb);
if (StringUtils.isNotBlank(fb.getScope())) {
client.setScope(fb.getScope());
}
if (StringUtils.isNotBlank(fb.getFields())) {
client.setFields(fb.getFields());
}
LOGGER.debug("Created client [{}] with identifier [{}]", client.getName(), client.getKey());
properties.add(client);
}
}
Also used :
FacebookClient(org.pac4j.oauth.client.FacebookClient)
Pac4jDelegatedAuthenticationProperties(org.apereo.cas.configuration.model.support.pac4j.Pac4jDelegatedAuthenticationProperties)
Example 4 with FacebookClient
use of org.pac4j.oauth.client.FacebookClient in project pac4j by pac4j.
the class RunFacebookClient method getClient.
@Override
protected IndirectClient getClient() {
final FacebookClient facebookClient = new FacebookClient();
facebookClient.setKey("1002857006444390");
facebookClient.setSecret("c352c9668493d3f9ac3f0fa71f04c187");
facebookClient.setCallbackUrl(PAC4J_URL);
facebookClient.setScope("email,user_about_me,user_actions.books,user_actions.fitness,user_actions.music,user_actions.news," + "user_actions.video,user_birthday,user_education_history,user_events,user_friends,user_games_activity," + "user_hometown,user_likes,user_location,user_managed_groups,user_photos,user_posts,user_relationship_details," + "user_relationships,user_religion_politics,user_status,user_tagged_places,user_videos,user_website," + "user_work_history");
facebookClient.setFields(FacebookConfiguration.DEFAULT_FIELDS + ",friends,movies,music,books,likes,albums,events,groups,music.listens,picture");
facebookClient.setLimit(100);
return facebookClient;
}
Also used :
FacebookClient(org.pac4j.oauth.client.FacebookClient)
Example 5 with FacebookClient
use of org.pac4j.oauth.client.FacebookClient in project pac4j by pac4j.
the class PropertiesConfigFactoryTests method test.
@Test
public void test() {
final Map<String, String> properties = new HashMap<>();
properties.put(FACEBOOK_ID, ID);
properties.put(FACEBOOK_SECRET, SECRET);
properties.put(TWITTER_ID, ID);
properties.put(TWITTER_SECRET, SECRET);
properties.put(CAS_LOGIN_URL, CALLBACK_URL);
properties.put(CAS_PROTOCOL, CasProtocol.CAS20.toString());
properties.put(SAML_KEYSTORE_PASSWORD, PASSWORD);
properties.put(SAML_PRIVATE_KEY_PASSWORD, PASSWORD);
properties.put(SAML_KEYSTORE_PATH, PATH);
properties.put(SAML_IDENTITY_PROVIDER_METADATA_PATH, PATH);
properties.put(SAML_DESTINATION_BINDING_TYPE, SAMLConstants.SAML2_REDIRECT_BINDING_URI);
properties.put(SAML_KEYSTORE_ALIAS, VALUE);
properties.put(OIDC_ID, ID);
properties.put(OIDC_SECRET, SECRET);
properties.put(OIDC_DISCOVERY_URI, CALLBACK_URL);
properties.put(OIDC_USE_NONCE, "true");
properties.put(OIDC_PREFERRED_JWS_ALGORITHM, "RS384");
properties.put(OIDC_MAX_CLOCK_SKEW, "60");
properties.put(OIDC_CLIENT_AUTHENTICATION_METHOD, "CLIENT_SECRET_POST");
properties.put(OIDC_CUSTOM_PARAM_KEY + "1", KEY);
properties.put(OIDC_CUSTOM_PARAM_VALUE + "1", VALUE);
properties.put(CAS_LOGIN_URL.concat(".1"), LOGIN_URL);
properties.put(CAS_PROTOCOL.concat(".1"), CasProtocol.CAS30.toString());
properties.put(OIDC_TYPE.concat(".1"), "google");
properties.put(OIDC_ID.concat(".1"), ID);
properties.put(OIDC_SECRET.concat(".1"), SECRET);
properties.put(ANONYMOUS, "whatever the value");
properties.put(FORMCLIENT_LOGIN_URL, LOGIN_URL);
properties.put(FORMCLIENT_AUTHENTICATOR, "testUsernamePassword");
properties.put(INDIRECTBASICAUTH_AUTHENTICATOR.concat(".2"), "testUsernamePassword");
properties.put(LDAP_TYPE, "direct");
properties.put(LDAP_URL, "ldap://localhost:" + PORT);
properties.put(LDAP_USE_SSL, "false");
properties.put(LDAP_USE_START_TLS, "false");
properties.put(LDAP_DN_FORMAT, CN + "=%s," + BASE_PEOPLE_DN);
properties.put(LDAP_USERS_DN, BASE_PEOPLE_DN);
properties.put(LDAP_PRINCIPAL_ATTRIBUTE_ID, CN);
properties.put(LDAP_ATTRIBUTES, SN + "," + ROLE);
properties.put(FORMCLIENT_LOGIN_URL.concat(".2"), PAC4J_BASE_URL);
properties.put(FORMCLIENT_AUTHENTICATOR.concat(".2"), "ldap");
properties.put(SPRING_ENCODER_TYPE.concat(".4"), "standard");
properties.put(SPRING_ENCODER_STANDARD_SECRET.concat(".4"), SALT);
properties.put(DB_JDBC_URL, "jdbc:h2:mem:test");
properties.put(DB_USERNAME, Pac4jConstants.USERNAME);
properties.put(DB_PASSWORD, Pac4jConstants.PASSWORD);
properties.put(DB_USERNAME_ATTRIBUTE, Pac4jConstants.USERNAME);
properties.put(DB_USER_PASSWORD_ATTRIBUTE, Pac4jConstants.PASSWORD);
properties.put(DB_ATTRIBUTES, FIRSTNAME);
properties.put(DB_PASSWORD_ENCODER, "encoder.spring.4");
properties.put(INDIRECTBASICAUTH_AUTHENTICATOR.concat(".5"), "db");
properties.put(REST_URL.concat(".3"), PAC4J_BASE_URL);
properties.put(DIRECTBASICAUTH_AUTHENTICATOR.concat(".7"), "rest.3");
LdapServer ldapServer = null;
try {
ldapServer = new LdapServer();
ldapServer.start();
new DbServer();
final PropertiesConfigFactory factory = new PropertiesConfigFactory(CALLBACK_URL, properties);
final Config config = factory.build();
final Clients clients = config.getClients();
assertEquals(13, clients.getClients().size());
final FacebookClient fbClient = (FacebookClient) clients.findClient("FacebookClient");
assertEquals(ID, fbClient.getKey());
assertEquals(SECRET, fbClient.getSecret());
assertNotNull(clients.findClient("AnonymousClient"));
final TwitterClient twClient = (TwitterClient) clients.findClient("TwitterClient");
assertEquals(ID, twClient.getKey());
assertEquals(SECRET, twClient.getSecret());
final CasClient casClient = (CasClient) clients.findClient("CasClient");
assertEquals(CALLBACK_URL, casClient.getConfiguration().getLoginUrl());
assertEquals(CasProtocol.CAS20, casClient.getConfiguration().getProtocol());
final SAML2Client saml2client = (SAML2Client) clients.findClient("SAML2Client");
assertNotNull(saml2client);
final SAML2ClientConfiguration saml2Config = saml2client.getConfiguration();
assertEquals(SAMLConstants.SAML2_REDIRECT_BINDING_URI, saml2Config.getDestinationBindingType());
assertEquals(VALUE, saml2Config.getKeyStoreAlias());
final OidcClient oidcClient = (OidcClient) clients.findClient("OidcClient");
assertNotNull(oidcClient);
assertEquals(ClientAuthenticationMethod.CLIENT_SECRET_POST.toString(), oidcClient.getConfiguration().getClientAuthenticationMethod().toString().toLowerCase());
final CasClient casClient1 = (CasClient) clients.findClient("CasClient.1");
assertEquals(CasProtocol.CAS30, casClient1.getConfiguration().getProtocol());
final GoogleOidcClient googleOidcClient = (GoogleOidcClient) clients.findClient("GoogleOidcClient.1");
googleOidcClient.init();
assertEquals(ID, googleOidcClient.getConfiguration().getClientId());
assertEquals(SECRET, googleOidcClient.getConfiguration().getSecret());
assertEquals("https://accounts.google.com/.well-known/openid-configuration", googleOidcClient.getConfiguration().getDiscoveryURI());
assertEquals(CALLBACK_URL + "?client_name=GoogleOidcClient.1", googleOidcClient.getCallbackUrlResolver().compute(googleOidcClient.getUrlResolver(), googleOidcClient.getCallbackUrl(), googleOidcClient.getName(), MockWebContext.create()));
final FormClient formClient = (FormClient) clients.findClient("FormClient");
assertEquals(LOGIN_URL, formClient.getLoginUrl());
assertTrue(formClient.getAuthenticator() instanceof SimpleTestUsernamePasswordAuthenticator);
final FormClient formClient2 = (FormClient) clients.findClient("FormClient.2");
assertEquals(PAC4J_BASE_URL, formClient2.getLoginUrl());
assertTrue(formClient2.getAuthenticator() instanceof LdapProfileService);
final LdapProfileService ldapAuthenticator = (LdapProfileService) formClient2.getAuthenticator();
final UsernamePasswordCredentials ldapCredentials = new UsernamePasswordCredentials(GOOD_USERNAME, PASSWORD);
ldapAuthenticator.validate(ldapCredentials, MockWebContext.create());
assertNotNull(ldapCredentials.getUserProfile());
final IndirectBasicAuthClient indirectBasicAuthClient = (IndirectBasicAuthClient) clients.findClient("IndirectBasicAuthClient.2");
assertEquals("authentication required", indirectBasicAuthClient.getRealmName());
assertTrue(indirectBasicAuthClient.getAuthenticator() instanceof SimpleTestUsernamePasswordAuthenticator);
final IndirectBasicAuthClient indirectBasicAuthClient2 = (IndirectBasicAuthClient) clients.findClient("IndirectBasicAuthClient.5");
assertTrue(indirectBasicAuthClient2.getAuthenticator() instanceof DbProfileService);
final DbProfileService dbAuthenticator = (DbProfileService) indirectBasicAuthClient2.getAuthenticator();
assertNotNull(dbAuthenticator);
final UsernamePasswordCredentials dbCredentials = new UsernamePasswordCredentials(GOOD_USERNAME, PASSWORD);
dbAuthenticator.validate(dbCredentials, MockWebContext.create());
assertNotNull(dbCredentials.getUserProfile());
final DirectBasicAuthClient directBasicAuthClient = (DirectBasicAuthClient) clients.findClient("DirectBasicAuthClient.7");
assertNotNull(directBasicAuthClient);
final RestAuthenticator restAuthenticator = (RestAuthenticator) directBasicAuthClient.getAuthenticator();
assertEquals(PAC4J_BASE_URL, restAuthenticator.getUrl());
} finally {
if (ldapServer != null) {
ldapServer.stop();
}
}
}
Also used :
TwitterClient(org.pac4j.oauth.client.TwitterClient)
HashMap(java.util.HashMap)
Config(org.pac4j.core.config.Config)
FacebookClient(org.pac4j.oauth.client.FacebookClient)
FormClient(org.pac4j.http.client.indirect.FormClient)
SAML2ClientConfiguration(org.pac4j.saml.client.SAML2ClientConfiguration)
GoogleOidcClient(org.pac4j.oidc.client.GoogleOidcClient)
DirectBasicAuthClient(org.pac4j.http.client.direct.DirectBasicAuthClient)
Clients(org.pac4j.core.client.Clients)
RestAuthenticator(org.pac4j.http.credentials.authenticator.RestAuthenticator)
UsernamePasswordCredentials(org.pac4j.core.credentials.UsernamePasswordCredentials)
LdapServer(org.pac4j.ldap.test.tools.LdapServer)
OidcClient(org.pac4j.oidc.client.OidcClient)
GoogleOidcClient(org.pac4j.oidc.client.GoogleOidcClient)
DbProfileService(org.pac4j.sql.profile.service.DbProfileService)
DbServer(org.pac4j.sql.test.tools.DbServer)
SAML2Client(org.pac4j.saml.client.SAML2Client)
CasClient(org.pac4j.cas.client.CasClient)
SimpleTestUsernamePasswordAuthenticator(org.pac4j.http.credentials.authenticator.test.SimpleTestUsernamePasswordAuthenticator)
LdapProfileService(org.pac4j.ldap.profile.service.LdapProfileService)
IndirectBasicAuthClient(org.pac4j.http.client.indirect.IndirectBasicAuthClient)
Test(org.junit.Test)
Aggregations
FacebookClient (org.pac4j.oauth.client.FacebookClient)10
Clients (org.pac4j.core.client.Clients)6
MockHttpServletRequest (org.springframework.mock.web.MockHttpServletRequest)5
MockHttpServletResponse (org.springframework.mock.web.MockHttpServletResponse)5
ServletExternalContext (org.springframework.webflow.context.servlet.ServletExternalContext)5
Test (org.junit.Test)4
CentralAuthenticationService (org.apereo.cas.CentralAuthenticationService)3
OAuth20Credentials (org.pac4j.oauth.credentials.OAuth20Credentials)3
MutableAttributeMap (org.springframework.webflow.core.collection.MutableAttributeMap)3
Event (org.springframework.webflow.execution.Event)3
MockRequestContext (org.springframework.webflow.test.MockRequestContext)3
Set (java.util.Set)2
lombok.val (lombok.val)2
ClientCredential (org.apereo.cas.authentication.principal.ClientCredential)2
Service (org.apereo.cas.authentication.principal.Service)2
TicketGrantingTicket (org.apereo.cas.ticket.TicketGrantingTicket)2
TwitterClient (org.pac4j.oauth.client.TwitterClient)2
MockServletContext (org.springframework.mock.web.MockServletContext)2
HashMap (java.util.HashMap)1
AuditableExecution (org.apereo.cas.audit.AuditableExecution)1
