Examples of OAuthServiceException

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

62
63
64
65
66
67
68
69
    public static String generateRandomTokenKey() throws OAuthServiceException {
        try {
            byte[] bytes = UUID.randomUUID().toString().getBytes("UTF-8");
            return new MD5SequenceGenerator().generate(bytes);
        } catch (Exception ex) {
            throw new OAuthServiceException(OAuthConstants.SERVER_ERROR, ex);
        }
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
            return;
        }
       
        String audienceParam = params.getFirst(OAuthConstants.CLIENT_AUDIENCE);
        if (audienceParam == null) {
            throw new OAuthServiceException(new OAuthError(OAuthConstants.INVALID_REQUEST));
        }
        // must be URL
        try {
            new URL(audienceParam);
        } catch (MalformedURLException ex) {
            throw new OAuthServiceException(new OAuthError(OAuthConstants.INVALID_REQUEST));
        }
       
        if (!audiences.contains(audienceParam)) {
            throw new OAuthServiceException(new OAuthError(OAuthConstants.ACCESS_DENIED));
        }
       
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

77
78
79
80
81
82
83
84
   
    private void checkIfGrantSupported(Client client, String requestedGrant) {
        if (!OAuthUtils.isGrantSupportedForClient(client,
                                                  canSupportPublicClients,
                                                  requestedGrant)) {
            throw new OAuthServiceException(OAuthConstants.UNAUTHORIZED_CLIENT);   
        }
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

103
104
105
106
107
108
109
110
111
112
113
                                                    UserSubject subject,
                                                    String requestedGrant,
                                                    List<String> requestedScope) {
        if (!OAuthUtils.validateScopes(requestedScope, client.getRegisteredScopes(),
                                       partialMatchScopeValidation)) {
            throw new OAuthServiceException(new OAuthError(OAuthConstants.INVALID_SCOPE));    
        }
        // Check if a pre-authorized  token available
        ServerAccessToken token = dataProvider.getPreauthorizedToken(
                                     client, requestedScope, subject, requestedGrant);
        if (token != null) {
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
        if (grant == null) {
            return null;
        }
        // check it has not expired, the client ids are the same
        if (OAuthUtils.isExpired(grant.getIssuedAt(), grant.getLifetime())) {
            throw new OAuthServiceException(OAuthConstants.INVALID_GRANT);
        }
        if (!grant.getClient().getClientId().equals(client.getClientId())) {
            throw new OAuthServiceException(OAuthConstants.INVALID_GRANT);
        }
        // redirect URIs must match too
        String expectedRedirectUri = grant.getRedirectUri();
        String providedRedirectUri = params.getFirst(OAuthConstants.REDIRECT_URI);
        if (providedRedirectUri != null) {
            if (expectedRedirectUri == null || !providedRedirectUri.equals(expectedRedirectUri)) {
                throw new OAuthServiceException(OAuthConstants.INVALID_REQUEST);
            }
        } else if (expectedRedirectUri == null && !isCanSupportPublicClients()
            || expectedRedirectUri != null
                && (client.getRedirectUris().size() != 1
                || !client.getRedirectUris().contains(expectedRedirectUri))) {
            throw new OAuthServiceException(OAuthConstants.INVALID_REQUEST);
        }
        return doCreateAccessToken(client, grant.getSubject(), grant.getApprovedScopes());
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
            throw new ClientWebApplicationException(ex);
        }
        if (200 == response.getStatus()) {
            ClientAccessToken token = fromMapToClientToken(map, defaultTokenType);
            if (token == null) {
                throw new OAuthServiceException(OAuthConstants.SERVER_ERROR);
            } else {
                return token;
            }
        } else if (400 == response.getStatus() && map.containsKey(OAuthConstants.ERROR_KEY)) {
            OAuthError error = new OAuthError(map.get(OAuthConstants.ERROR_KEY),
                                              map.get(OAuthConstants.ERROR_DESCRIPTION_KEY));
            error.setErrorUri(map.get(OAuthConstants.ERROR_URI_KEY));
            throw new OAuthServiceException(error);
        }
        throw new OAuthServiceException(OAuthConstants.SERVER_ERROR);
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

321
322
323
324
325
326
327
328
329
            MacAuthorizationScheme macAuthData = new MacAuthorizationScheme(httpProps, token);
            String macAlgo = token.getParameters().get(OAuthConstants.MAC_TOKEN_ALGORITHM);
            String macKey = token.getParameters().get(OAuthConstants.MAC_TOKEN_KEY);
            sb.append(macAuthData.toAuthorizationHeader(macAlgo, macKey));
        } else {
            throw new ClientWebApplicationException(new OAuthServiceException("Unsupported token type"));
        }
       
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

28
29
30
31
32
33
34
35
36
37
38
    public void verifyNonce(String tokenKey, String clientNonceString, String clientTimestampString)
        throws OAuthServiceException {
       
        if (StringUtils.isEmpty(clientNonceString)
            || StringUtils.isEmpty(clientTimestampString)) {
            throw new OAuthServiceException("Nonce or timestamp is not available");
        }
       
        long serverClock = System.currentTimeMillis();
        NonceHistory nonceHistory = nonceStore.getNonceHistory(tokenKey);
        boolean firstTimeRequest = false;
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

51
52
53
54
55
56
57
58
    }

    private static void checkNonceHistory(NonceHistory nonceHistory, final String clientNonceString,
                                          final long ts) throws OAuthServiceException {
        if (!nonceHistory.findMatchingNonces(clientNonceString, ts).isEmpty()) {
            throw new OAuthServiceException("Duplicate nonce");
        }
    }
View Full Code Here

Examples of org.apache.cxf.rs.security.oauth2.provider.OAuthServiceException

59
60
61
62
63
64
65
66
    private void checkAdjustedRequestTime(long serverClock, long clientTimestamp, NonceHistory nonceHistory) {
        long adjustedRequestTime = clientTimestamp + nonceHistory.getRequestTimeDelta();
        long requestDelta = Math.abs(serverClock - adjustedRequestTime);
        if (requestDelta > allowedWindow) {
            throw new OAuthServiceException("Timestamp is invalid");
        }
    }
View Full Code Here
TOP
Copyright © 2018 www.massapi.com. All rights reserved.
All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.