|
Spring Social | ||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.social.oauth2.OAuth2Template
public class OAuth2Template
OAuth2Operations implementation that uses REST-template to make the OAuth calls.
Constructor Summary | |
---|---|
OAuth2Template(java.lang.String clientId,
java.lang.String clientSecret,
java.lang.String authorizeUrl,
java.lang.String accessTokenUrl)
Constructs an OAuth2Template for a given set of client credentials. |
|
OAuth2Template(java.lang.String clientId,
java.lang.String clientSecret,
java.lang.String authorizeUrl,
java.lang.String authenticateUrl,
java.lang.String accessTokenUrl)
Constructs an OAuth2Template for a given set of client credentials. |
Method Summary | |
---|---|
AccessGrant |
authenticateClient()
Retrieves the client access grant using OAuth 2 client password flow. |
AccessGrant |
authenticateClient(java.lang.String scope)
Retrieves the client access grant using OAuth 2 client password flow. |
java.lang.String |
buildAuthenticateUrl(GrantType grantType,
OAuth2Parameters parameters)
Construct the URL to redirect the user to for authentication. |
java.lang.String |
buildAuthorizeUrl(GrantType grantType,
OAuth2Parameters parameters)
Construct the URL to redirect the user to for authorization. |
protected AccessGrant |
createAccessGrant(java.lang.String accessToken,
java.lang.String scope,
java.lang.String refreshToken,
java.lang.Integer expiresIn,
java.util.Map<java.lang.String,java.lang.Object> response)
Creates an AccessGrant given the response from the access token exchange with the provider. |
protected org.springframework.web.client.RestTemplate |
createRestTemplate()
Creates the RestTemplate used to communicate with the provider's OAuth 2 API. |
AccessGrant |
exchangeCredentialsForAccess(java.lang.String username,
java.lang.String password,
org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
Exchanges user credentials for an access grant using OAuth2's Resource Owner Credentials Grant (aka, "password" grant). |
AccessGrant |
exchangeForAccess(java.lang.String authorizationCode,
java.lang.String redirectUri,
org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
Exchange the authorization code for an access grant. |
protected org.springframework.web.client.RestTemplate |
getRestTemplate()
|
protected AccessGrant |
postForAccessGrant(java.lang.String accessTokenUrl,
org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> parameters)
Posts the request for an access grant to the provider. |
AccessGrant |
refreshAccess(java.lang.String refreshToken,
org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
Refreshes a previous access grant. |
AccessGrant |
refreshAccess(java.lang.String refreshToken,
java.lang.String scope,
org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
Refreshes a previous access grant. |
void |
setRequestFactory(org.springframework.http.client.ClientHttpRequestFactory requestFactory)
Set the request factory on the underlying RestTemplate. |
void |
setUseParametersForClientAuthentication(boolean useParametersForClientAuthentication)
Set to true to pass client credentials to the provider as parameters instead of using HTTP Basic authentication. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public OAuth2Template(java.lang.String clientId, java.lang.String clientSecret, java.lang.String authorizeUrl, java.lang.String accessTokenUrl)
clientId
- the client IDclientSecret
- the client secretauthorizeUrl
- the base URL to redirect to when doing authorization code or implicit grant authorizationaccessTokenUrl
- the URL at which an authorization code, refresh token, or user credentials may be exchanged for an access token.public OAuth2Template(java.lang.String clientId, java.lang.String clientSecret, java.lang.String authorizeUrl, java.lang.String authenticateUrl, java.lang.String accessTokenUrl)
clientId
- the client IDclientSecret
- the client secretauthorizeUrl
- the base URL to redirect to when doing authorization code or implicit grant authorizationauthenticateUrl
- the URL to redirect to when doing authentication via authorization code grantaccessTokenUrl
- the URL at which an authorization code, refresh token, or user credentials may be exchanged for an access tokenMethod Detail |
---|
public void setUseParametersForClientAuthentication(boolean useParametersForClientAuthentication)
useParametersForClientAuthentication
- public void setRequestFactory(org.springframework.http.client.ClientHttpRequestFactory requestFactory)
public java.lang.String buildAuthorizeUrl(GrantType grantType, OAuth2Parameters parameters)
OAuth2Operations
buildAuthorizeUrl
in interface OAuth2Operations
grantType
- specifies whether to use client-side or server-side OAuth flowparameters
- authorization parameters needed to build the URL
public java.lang.String buildAuthenticateUrl(GrantType grantType, OAuth2Parameters parameters)
OAuth2Operations
buildAuthenticateUrl
in interface OAuth2Operations
grantType
- specifies whether to use client-side or server-side OAuth flowparameters
- authorization parameters needed to build the URL
public AccessGrant exchangeForAccess(java.lang.String authorizationCode, java.lang.String redirectUri, org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
OAuth2Operations
exchangeForAccess
in interface OAuth2Operations
authorizationCode
- the authorization code returned by the provider upon user authorizationredirectUri
- the authorization callback url; this value must match the redirectUri registered with the provideradditionalParameters
- any additional parameters to be sent when exchanging the authorization code for an access grant. Should not be encoded.
public AccessGrant exchangeCredentialsForAccess(java.lang.String username, java.lang.String password, org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
OAuth2Operations
exchangeCredentialsForAccess
in interface OAuth2Operations
username
- the user's username on the providerpassword
- the user's password on the provideradditionalParameters
- any additional parameters to be sent when exchanging the credentials for an access grant. Should not be encoded.
public AccessGrant refreshAccess(java.lang.String refreshToken, java.lang.String scope, org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
OAuth2Operations
refreshAccess
in interface OAuth2Operations
refreshToken
- the refresh token from the previous access grant.scope
- optional scope to narrow to when refreshing access; if null, the existing scope is preserved.additionalParameters
- any additional parameters to be sent when refreshing a previous access grant. Should not be encoded.
public AccessGrant refreshAccess(java.lang.String refreshToken, org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> additionalParameters)
OAuth2Operations
refreshAccess
in interface OAuth2Operations
refreshToken
- the refresh token from the previous access grant.additionalParameters
- any additional parameters to be sent when refreshing a previous access grant. Should not be encoded.
public AccessGrant authenticateClient()
OAuth2Operations
authenticateClient
in interface OAuth2Operations
public AccessGrant authenticateClient(java.lang.String scope)
OAuth2Operations
authenticateClient
in interface OAuth2Operations
scope
- optional scope to get for the access grant
protected org.springframework.web.client.RestTemplate createRestTemplate()
RestTemplate
used to communicate with the provider's OAuth 2 API.
This implementation creates a RestTemplate with a minimal set of HTTP message converters (FormHttpMessageConverter
and MappingJacksonHttpMessageConverter
).
May be overridden to customize how the RestTemplate is created.
For example, if the provider returns data in some format other than JSON for form-encoded, you might override to register an appropriate message converter.
protected AccessGrant postForAccessGrant(java.lang.String accessTokenUrl, org.springframework.util.MultiValueMap<java.lang.String,java.lang.String> parameters)
AccessGrant
.
Since the OAuth 2 specification indicates that an access token response should be in JSON format, there's often no need to override this method.
If all you need to do is capture provider-specific data in the response, you should override createAccessGrant() instead.
However, in the event of a provider whose access token response is non-JSON, you may need to override this method to request that the response be bound to something other than a Map.
For example, if the access token response is given as form-encoded, this method should be overridden to call RestTemplate.postForObject() asking for the response to be bound to a MultiValueMap (whose contents can then be used to create an AccessGrant).
accessTokenUrl
- the URL of the provider's access token endpoint.parameters
- the parameters to post to the access token endpoint.
protected AccessGrant createAccessGrant(java.lang.String accessToken, java.lang.String scope, java.lang.String refreshToken, java.lang.Integer expiresIn, java.util.Map<java.lang.String,java.lang.Object> response)
AccessGrant
given the response from the access token exchange with the provider.
May be overridden to create a custom AccessGrant that captures provider-specific information from the access token response.
accessToken
- the access token value received from the providerscope
- the scope of the access tokenrefreshToken
- a refresh token value received from the providerexpiresIn
- the time (in seconds) remaining before the access token expires.response
- all parameters from the response received in the access token exchange.
AccessGrant
protected org.springframework.web.client.RestTemplate getRestTemplate()
|
Spring Social | ||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |