Package org.springframework.security.oauth2.common.exceptions

Examples of org.springframework.security.oauth2.common.exceptions.InvalidClientException

81
82
83
84
85
86
87
88
89
90
91
    String pendingClientId = pendingOAuth2Request.getClientId();
    String clientId = tokenRequest.getClientId();
    if (clientId != null && !clientId.equals(pendingClientId)) {
      // just a sanity check.
      throw new InvalidClientException("Client ID mismatch");
    }

    // Secret is not required in the authorization request, so it won't be available
    // in the pendingAuthorizationRequest. We do want to check that a secret is provided
    // in the token request, but that happens elsewhere.
View Full Code Here
99
100
101
102
103
104
105
106
107
108
109
      clientId = authenticatedClient.getClientId();
    }
    else {
      // otherwise, make sure that they match
      if (!clientId.equals(authenticatedClient.getClientId())) {
        throw new InvalidClientException("Given client ID does not match authenticated client");
      }
    }
    String grantType = requestParameters.get(OAuth2Utils.GRANT_TYPE);

    Set<String> scopes = extractScopes(requestParameters, clientId);
View Full Code Here
77
78
79
80
81
82
83
84
  protected void validateGrantType(String grantType, ClientDetails clientDetails) {
    Collection<String> authorizedGrantTypes = clientDetails.getAuthorizedGrantTypes();
    if (authorizedGrantTypes != null && !authorizedGrantTypes.isEmpty()
        && !authorizedGrantTypes.contains(grantType)) {
      throw new InvalidClientException("Unauthorized grant type: " + grantType);
    }
  }
View Full Code Here
126
127
128
129
130
131
132
133
134
135
136
    if (!responseTypes.contains("token") && !responseTypes.contains("code")) {
      throw new UnsupportedResponseTypeException("Unsupported response types: " + responseTypes);
    }

    if (authorizationRequest.getClientId() == null) {
      throw new InvalidClientException("A client id must be provided");
    }

    try {

      if (!(principal instanceof Authentication) || !((Authentication) principal).isAuthenticated()) {
View Full Code Here
52
53
54
55
56
57
58
59
60
61
    converter = new JaxbOAuth2ExceptionMessageConverter();
  }

  @Test
  public void writeInvalidClient() throws IOException {
    OAuth2Exception oauthException = new InvalidClientException(DETAILS);
    String expected = createResponse(oauthException.getOAuth2ErrorCode());
    converter.write(oauthException, contentType, outputMessage);
    assertEquals(expected, getOutput());
  }
View Full Code Here
222
223
224
225
226
227
228
229
230
  @Test
  public void readInvalidClient() throws IOException {
    String accessToken = createResponse(OAuth2Exception.INVALID_CLIENT);
    when(inputMessage.getBody()).thenReturn(createInputStream(accessToken));
    @SuppressWarnings("unused")
    InvalidClientException result = (InvalidClientException) converter.read(InvalidClientException.class,
        inputMessage);
  }
View Full Code Here
56
57
58
59
60
61
62
63
64
65
66
67
    assertTrue("Wrong token: " + result, result.contains("\"expires_in\":"));
  }

  @Test
  public void testExceptionSerialization() throws Exception {
    InvalidClientException exception = new InvalidClientException("FOO");
    exception.addAdditionalInformation("foo", "bar");
    String result = new ObjectMapper().writeValueAsString(exception);
    // System.err.println(result);
    assertTrue("Wrong result: "+result, result.contains("\"error\":\"invalid_client\""));
    assertTrue("Wrong result: "+result, result.contains("\"error_description\":\"FOO\""));
    assertTrue("Wrong result: "+result, result.contains("\"foo\":\"bar\""));
View Full Code Here
130
131
132
133
134
135
136
137
138
  }

  @Test
  public void readValueInvalidClient() throws Exception {
    String accessToken = createResponse(OAuth2Exception.INVALID_CLIENT);
    InvalidClientException result = (InvalidClientException) mapper.readValue(accessToken, OAuth2Exception.class);
    assertEquals(DETAILS,result.getMessage());
    assertEquals(null,result.getAdditionalInformation());
  }
View Full Code Here
138
139
140
141
142
143
144
145
146
  }

  @Test
  public void readValueWithAdditionalDetails() throws Exception {
    String accessToken = "{\"error\": \"invalid_client\", \"error_description\": \"some detail\", \"foo\": \"bar\"}";
    InvalidClientException result = (InvalidClientException) mapper.readValue(accessToken, OAuth2Exception.class);
    assertEquals(DETAILS,result.getMessage());
    assertEquals("{foo=bar}",result.getAdditionalInformation().toString());
  }
View Full Code Here
51
52
53
54
55
56
57
58
59
60
61
  }

  @Test
  public void testCommenceWithOAuth2Exception() throws Exception {
    request.addHeader("Accept", MediaType.APPLICATION_JSON_VALUE);
    entryPoint.commence(request, response, new BadCredentialsException("Bad", new InvalidClientException(
        "Bad client")));
    assertEquals(HttpServletResponse.SC_UNAUTHORIZED, response.getStatus());
    assertEquals("{\"error\":\"invalid_client\",\"error_description\":\"Bad client\"}", response.getContentAsString());
    assertEquals(MediaType.APPLICATION_JSON_VALUE, response.getContentType());
    assertEquals(null, response.getErrorMessage());
View Full Code Here
TOP

Related Classes of org.springframework.security.oauth2.common.exceptions.InvalidClientException

  • client.ClientServerInteractionTests
  • com.springsource.greenhouse.settings.SettingsControllerTest
  • demo.Application
  • demo.Application$OAuth2Config
  • demo.Application$TokenEndpointSecurity
  • OAuth2AuthenticationReadConverter
  • org.codehaus.jackson.map.ObjectMapper
  • org.mitre.oauth2.introspectingfilter.IntrospectingTokenService
  • org.mitre.oauth2.repository.impl.JpaAuthorizationCodeRepository
  • org.mitre.oauth2.service.impl.DefaultIntrospectionResultAssembler
    • Copyright © 2018 www.massapicom. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.