/** * Used to revoke all access tokens issued by this service provider. * * @throws Exception */ public void revokeAllAccessTokens() throws Exception { for (TokenState state : tokenState.values()) { state.revokeToken(); } }
accessor.tokenSecret = state.getSecret(); validateMessage(accessor, info, false); if (state.getState() != State.APPROVED) { return makeOAuthProblemReport( OAuth.Problems.TOKEN_REVOKED, "User revoked permissions", responseBody = "User data is " + state.getUserData(); } else {
accessor.tokenSecret = state.getSecret(); validateMessage(accessor, info, false); if (state.getState() != State.APPROVED) { return makeOAuthProblemReport( OAuth.Problems.TOKEN_REVOKED, "User revoked permissions", responseBody = "User data is " + state.getUserData(); } else {
validateMessage(accessor, info, true); if (state.getState() == State.APPROVED_UNCLAIMED) { String sentVerifier = info.message.getParameter("oauth_verifier"); if (state.verifier != null && !state.verifier.equals(sentVerifier)) { HttpResponse.SC_UNAUTHORIZED); state.claimToken(); } else if (state.getState() == State.APPROVED) { HttpResponse.SC_UNAUTHORIZED); state.renewToken(); } else if (state.getState() == State.REVOKED){ return makeOAuthProblemReport(OAuth.Problems.TOKEN_REVOKED, "Revoked access token can't be renewed", HttpResponse.SC_UNAUTHORIZED); } else { throw new Exception("Token in weird state " + state.getState());
accessor.tokenSecret = state.getSecret(); validateMessage(accessor, info, false); if (state.getState() != State.APPROVED) { return makeOAuthProblemReport( OAuth.Problems.TOKEN_REVOKED, "User revoked permissions", responseBody = "User data is " + state.getUserData(); } else {
validateMessage(accessor, info, true); if (state.getState() == State.APPROVED_UNCLAIMED) { String sentVerifier = info.message.getParameter("oauth_verifier"); if (state.verifier != null && !state.verifier.equals(sentVerifier)) { HttpResponse.SC_UNAUTHORIZED); state.claimToken(); } else if (state.getState() == State.APPROVED) { HttpResponse.SC_UNAUTHORIZED); state.renewToken(); } else if (state.getState() == State.REVOKED){ return makeOAuthProblemReport(OAuth.Problems.TOKEN_REVOKED, "Revoked access token can't be renewed", HttpResponse.SC_UNAUTHORIZED); } else { throw new Exception("Token in weird state " + state.getState());
validateMessage(accessor, info, true); if (state.getState() == State.APPROVED_UNCLAIMED) { String sentVerifier = info.message.getParameter("oauth_verifier"); if (state.verifier != null && !state.verifier.equals(sentVerifier)) { HttpResponse.SC_UNAUTHORIZED); state.claimToken(); } else if (state.getState() == State.APPROVED) { HttpResponse.SC_UNAUTHORIZED); state.renewToken(); } else if (state.getState() == State.REVOKED){ return makeOAuthProblemReport(OAuth.Problems.TOKEN_REVOKED, "Revoked access token can't be renewed", HttpResponse.SC_UNAUTHORIZED); } else { throw new Exception("Token in weird state " + state.getState());
String callbackUrl = info.message.getParameter(OAuth.OAUTH_CALLBACK); tokenState.put( requestToken, new TokenState(requestTokenSecret, callbackUrl)); List<Parameter> responseParams = OAuth.newList( "oauth_token", requestToken,
String callbackUrl = info.message.getParameter(OAuth.OAUTH_CALLBACK); tokenState.put( requestToken, new TokenState(requestTokenSecret, callbackUrl)); List<Parameter> responseParams = OAuth.newList( "oauth_token", requestToken,
String callbackUrl = info.message.getParameter(OAuth.OAUTH_CALLBACK); tokenState.put( requestToken, new TokenState(requestTokenSecret, callbackUrl)); List<Parameter> responseParams = OAuth.newList( "oauth_token", requestToken,
/** * Used to fake a browser visit to approve a token. * * @return a redirect URL, which may or may not include an oauth verifier */ public String browserVisit(String url) throws Exception { ParsedUrl parsed = new ParsedUrl(url); String requestToken = parsed.getQueryParam("oauth_token"); TokenState state = tokenState.get(requestToken); state.approveToken(); // Not part of the OAuth spec, just a handy thing for testing. state.setUserData(parsed.getQueryParam("user_data")); if (state.callbackUrl != null) { UriBuilder callback = UriBuilder.parse(state.callbackUrl); callback.addQueryParameter(OAuth.OAUTH_VERIFIER, state.verifier); return callback.toString(); } return null; }
/** * Used to fake a browser visit to approve a token. * * @return a redirect URL, which may or may not include an oauth verifier */ public String browserVisit(String url) throws Exception { ParsedUrl parsed = new ParsedUrl(url); String requestToken = parsed.getQueryParam("oauth_token"); TokenState state = tokenState.get(requestToken); state.approveToken(); // Not part of the OAuth spec, just a handy thing for testing. state.setUserData(parsed.getQueryParam("user_data")); if (state.callbackUrl != null) { UriBuilder callback = UriBuilder.parse(state.callbackUrl); callback.addQueryParameter(OAuth.OAUTH_VERIFIER, state.verifier); return callback.toString(); } return null; }
/** * Used to fake a browser visit to approve a token. * * @return a redirect URL, which may or may not include an oauth verifier */ public String browserVisit(String url) throws Exception { ParsedUrl parsed = new ParsedUrl(url); String requestToken = parsed.getQueryParam("oauth_token"); TokenState state = tokenState.get(requestToken); state.approveToken(); // Not part of the OAuth spec, just a handy thing for testing. state.setUserData(parsed.getQueryParam("user_data")); if (state.callbackUrl != null) { UriBuilder callback = UriBuilder.parse(state.callbackUrl); callback.addQueryParameter(OAuth.OAUTH_VERIFIER, state.verifier); return callback.toString(); } return null; }
/** * Generate a preapproved request token for the specified user data. * * @param userData * @return the request token and secret */ public TokenPair getPreapprovedToken(String userData) { String requestToken = Crypto.getRandomString(16); String requestTokenSecret = Crypto.getRandomString(16); TokenState state = new TokenState(requestTokenSecret, null); state.approveToken(); state.setUserData(userData); tokenState.put(requestToken, state); return new TokenPair(requestToken, requestTokenSecret); }
/** * Generate a preapproved request token for the specified user data. * * @param userData * @return the request token and secret */ public TokenPair getPreapprovedToken(String userData) { String requestToken = Crypto.getRandomString(16); String requestTokenSecret = Crypto.getRandomString(16); TokenState state = new TokenState(requestTokenSecret, null); state.approveToken(); state.setUserData(userData); tokenState.put(requestToken, state); return new TokenPair(requestToken, requestTokenSecret); }
/** * Generate a preapproved request token for the specified user data. * * @param userData * @return the request token and secret */ public TokenPair getPreapprovedToken(String userData) { String requestToken = Crypto.getRandomString(16); String requestTokenSecret = Crypto.getRandomString(16); TokenState state = new TokenState(requestTokenSecret, null); state.approveToken(); state.setUserData(userData); tokenState.put(requestToken, state); return new TokenPair(requestToken, requestTokenSecret); }
/** * Used to revoke all access tokens issued by this service provider. * * @throws Exception */ public void revokeAllAccessTokens() throws Exception { for (TokenState state : tokenState.values()) { state.revokeToken(); } }
/** * Used to revoke all access tokens issued by this service provider. * * @throws Exception */ public void revokeAllAccessTokens() throws Exception { for (TokenState state : tokenState.values()) { state.revokeToken(); } }