protected String[] decodeRememberMeTokens(Cookie cookie) { String encodedTokenString = cookie.getValue(); for (int j = 0; j < encodedTokenString.length() % 4; j++) { encodedTokenString = encodedTokenString + "="; } if(!Base64.isBase64(encodedTokenString)) { log.debug("The remember-me cookie is not a valid base64 string"); return null; } String decodedTokenString = Base64.decode(encodedTokenString); String[] tokens = Strings.split(decodedTokenString, ':'); if(tokens.length != 3){ return null; } return tokens; }
protected String[] extractClientCredentials(Request request, Response response) { String authorization = request.getHeader(Headers.AUTHORIZATION); if(!Strings.isEmpty(authorization)){ if(!authorization.startsWith("Basic")){ error(response, 400, INVALID_REQUEST, "invalid Authorization header"); return null; } String base64Token = Strings.trim(authorization.substring("Basic".length())); String token = Base64.decode(base64Token); String[] idAndSecret = Strings.split(token,":"); if(idAndSecret.length != 2){ error(response, 400, INVALID_REQUEST, "invalid Authorization header"); return null; } return new String[]{idAndSecret[0],idAndSecret[1]}; } return new String[]{request.getParameter("client_id"), request.getParameter("client_secret")}; }
String data = Base64.decode(encoded); String[] parts = Strings.split(data,':'); if(parts.length != 3) {
String token = Base64.decode(base64Token); String[] idAndSecret = Strings.split(token, ":"); if (idAndSecret.length != 2) {
String token = Base64.decode(base64Token); String[] idAndSecret = Strings.split(token,":"); if(idAndSecret.length != 2){