Skip to content

S
sso
Commit 57d14644 authored by Quxl's avatar Quxl
Browse files
Options

x

parent ba192c5a
Hide whitespace changes
Inline Side-by-side
Showing with 31 additions and 22 deletions
src/main/java/com/egolm/sso/oauth/OAuthApi.java
View file @ 57d14644
......@@ -23,17 +23,17 @@ import com.alibaba.fastjson.JSONObject;
public interface OAuthApi {
OAuthConfig getOAuthConfig();
HttpServletRequest getHttpServletRequest();
HttpServletResponse getHttpServletResponse();
final String OAUTH_TOKEN_SESSION = "OAUTH2_TOKEN_SESSION_KEY";
default boolean isLogin() {
HttpServletRequest request = this.getHttpServletRequest();
HttpSession session = request.getSession();
OAuthToken token = (OAuthToken)session.getAttribute(OAUTH_TOKEN_SESSION);
OAuthToken token = (OAuthToken) session.getAttribute(OAUTH_TOKEN_SESSION);
return token != null;
}
......@@ -41,20 +41,25 @@ public interface OAuthApi {
try {
HttpServletResponse response = this.getHttpServletResponse();
OAuthConfig config = this.getOAuthConfig();
UrlBuilder split = new UrlBuilder(config.getAuthorizeUrl()).setParameter("scope", config.getScope()).setParameter("response_type", OAuth.OAUTH_CODE).setParameter("realm", config.getRealm()).setParameter("client_id", config.getClientId()).setParameter("redirect_uri", config.getRediretUrl());
UrlBuilder split = new UrlBuilder(config.getAuthorizeUrl())
.setParameter("scope", config.getScope())
.setParameter("response_type", OAuth.OAUTH_CODE)
.setParameter("realm", config.getRealm())
.setParameter("client_id", config.getClientId())
.setParameter("redirect_uri", config.getRediretUrl());
String urlString = split.toUrlString();
response.sendRedirect(urlString);
} catch (Exception e) {
throw new OAuthApiException(e.getMessage(), e);
}
}
default void doLogin() {
default void doLogin() {
try {
HttpServletRequest request = this.getHttpServletRequest();
HttpSession session = request.getSession();
OAuthToken token = (OAuthToken)session.getAttribute(OAUTH_TOKEN_SESSION);
if(token == null) {
OAuthToken token = (OAuthToken) session.getAttribute(OAUTH_TOKEN_SESSION);
if (token == null) {
OAuthConfig config = this.getOAuthConfig();
OAuthAuthzResponse oauthAuthzResponse = OAuthAuthzResponse.oauthCodeAuthzResponse(request);
String code = oauthAuthzResponse.getCode();
......@@ -66,7 +71,8 @@ public interface OAuthApi {
builder.setCode(code);
OAuthClientRequest oauthClientRequest = builder.buildQueryMessage();
OAuthClient oAuthClient = new OAuthClient(new URLConnectionClient());
OAuthJSONAccessTokenResponse oAuthResponse = oAuthClient.accessToken(oauthClientRequest, OAuth.HttpMethod.POST);
OAuthJSONAccessTokenResponse oAuthResponse = oAuthClient.accessToken(oauthClientRequest,
OAuth.HttpMethod.POST);
String accessToken = oAuthResponse.getAccessToken();
String refreshToken = oAuthResponse.getRefreshToken();
Long expiresIn = oAuthResponse.getExpiresIn();
......@@ -75,25 +81,25 @@ public interface OAuthApi {
token = new OAuthToken(accessToken, refreshToken, idToken, tokenType, expiresIn);
session.setAttribute(OAUTH_TOKEN_SESSION, token);
} else {
throw new OAuthApiException("OAuthToken already exists");
throw new OAuthApiException("OAuthToken already exists");
}
} catch (Exception e) {
throw new OAuthApiException(e.getMessage(), e);
}
}
default void doLogout() {
default void doLogout() {
HttpServletRequest request = this.getHttpServletRequest();
HttpSession session = request.getSession();
session.removeAttribute(OAUTH_TOKEN_SESSION);
session.invalidate();
}
default void refresh() {
try {
HttpServletRequest request = this.getHttpServletRequest();
HttpSession session = request.getSession();
OAuthToken token = (OAuthToken)session.getAttribute(OAUTH_TOKEN_SESSION);
OAuthToken token = (OAuthToken) session.getAttribute(OAUTH_TOKEN_SESSION);
OAuthConfig config = this.getOAuthConfig();
TokenRequestBuilder builder = OAuthClientRequest.tokenLocation(config.getAccessTokenUrl());
builder.setGrantType(GrantType.REFRESH_TOKEN);
......@@ -102,7 +108,8 @@ public interface OAuthApi {
builder.setClientSecret(config.getClientSecret());
OAuthClientRequest oauthClientRequest = builder.buildQueryMessage();
OAuthClient oAuthClient = new OAuthClient(new URLConnectionClient());
OAuthJSONAccessTokenResponse oAuthResponse = oAuthClient.accessToken(oauthClientRequest, OAuth.HttpMethod.POST);
OAuthJSONAccessTokenResponse oAuthResponse = oAuthClient.accessToken(oauthClientRequest,
OAuth.HttpMethod.POST);
String accessToken = oAuthResponse.getAccessToken();
String refreshToken = oAuthResponse.getRefreshToken();
Long expiresIn = oAuthResponse.getExpiresIn();
......@@ -114,7 +121,7 @@ public interface OAuthApi {
throw new OAuthApiException(e.getMessage(), e);
}
}
default String doPost(String url, Map<String, String> headers, JSONObject data) {
try {
String accept = "application/json";
......@@ -129,13 +136,15 @@ public interface OAuthApi {
headers.put("X-SE-IFW-ApplicationName", applicationName);
HttpServletRequest request = this.getHttpServletRequest();
HttpSession session = request.getSession();
OAuthToken token = (OAuthToken)session.getAttribute(OAUTH_TOKEN_SESSION);
OAuthToken token = (OAuthToken) session.getAttribute(OAUTH_TOKEN_SESSION);
OAuthClient oAuthClient = new OAuthClient(new URLConnectionClient());
String accessToken = token.getAccessToken();
OAuthClientRequest clientRequest = new OAuthBearerClientRequest(url).setAccessToken(accessToken).buildQueryMessage();
OAuthClientRequest clientRequest = new OAuthBearerClientRequest(url).setAccessToken(accessToken)
.buildQueryMessage();
clientRequest.setBody(data.toString());
clientRequest.setHeaders(headers);
OAuthResourceResponse resourceResponse = oAuthClient.resource(clientRequest, "POST", OAuthResourceResponse.class);
OAuthResourceResponse resourceResponse = oAuthClient.resource(clientRequest, "POST",
OAuthResourceResponse.class);
String resBody = resourceResponse.getBody();
return resBody;
} catch (OAuthProblemException e) {
......@@ -145,5 +154,5 @@ public interface OAuthApi {
throw new OAuthApiException(e.getMessage(), e);
}
}
}
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment