OAuthRequestTokenResource.java

/*
 * Copyright (c) 2009 Lockheed Martin Corporation
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *      http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package org.eurekastreams.server.service.restlets;

import java.io.IOException;
import java.net.URISyntaxException;
import java.util.List;

import net.oauth.OAuth;
import net.oauth.OAuthAccessor;
import net.oauth.OAuthConsumer;
import net.oauth.OAuthException;
import net.oauth.OAuthMessage;
import net.oauth.OAuthProblemException;
import net.oauth.OAuthValidator;
import net.oauth.SimpleOAuthValidator;
import net.oauth.OAuth.Parameter;

import org.apache.shindig.social.opensocial.oauth.OAuthDataStore;
import org.apache.shindig.social.opensocial.oauth.OAuthEntry;
import org.restlet.data.MediaType;
import org.restlet.data.Request;
import org.restlet.data.Status;
import org.restlet.resource.Representation;
import org.restlet.resource.ResourceException;
import org.restlet.resource.StringRepresentation;
import org.restlet.resource.Variant;

/**
 * REST endpoint class for generating OAuth request tokens.
 */
public class OAuthRequestTokenResource extends SmpResource
{
    /**
     * The oauth data store to communicate with.
     */
    private OAuthDataStore dataStore;

    /**
     * The validator for verifying properly constructed OAuth requests.
     */
    public static final OAuthValidator VALIDATOR = new SimpleOAuthValidator();

    /**
     * Setter.
     * 
     * @param inDataStore
     *            the dataStore to set
     */
    public void setDataStore(final OAuthDataStore inDataStore)
    {
        dataStore = inDataStore;
    }

    /**
     * Initialize.
     * 
     * @param request
     *            the restlet request.
     */
    @Override
    protected void initParams(final Request request)
    {
    }

    /**
     * Handle requests.
     * 
     * @param variant
     *            the variant to be retrieved.
     * @throws ResourceException
     *             thrown if a representation cannot be provided
     * @return a representation of the resource
     */
    @Override
    public Representation represent(final Variant variant) throws ResourceException
    {
        OAuthMessage requestMessage = new RestletRequestMessage(this.getRequest());

        try
        {
            String consumerKey = requestMessage.getConsumerKey();
            if (consumerKey == null)
            {
                throw new ResourceException(Status.CLIENT_ERROR_EXPECTATION_FAILED,
                        OAuth.Problems.OAUTH_PARAMETERS_ABSENT + OAuth.OAUTH_CONSUMER_KEY);
            }
            OAuthConsumer consumer = dataStore.getConsumer(consumerKey);

            if (consumer == null)
            {
                throw new ResourceException(Status.CLIENT_ERROR_EXPECTATION_FAILED,
                        OAuth.Problems.CONSUMER_KEY_UNKNOWN);
            }

            OAuthAccessor accessor = new OAuthAccessor(consumer);
            VALIDATOR.validateMessage(requestMessage, accessor);

            String callback = requestMessage.getParameter(OAuth.OAUTH_CALLBACK);
            /*
             * if (enableSignedCallbacks) { callback = requestMessage.getParameter(OAuth.OAUTH_CALLBACK);; } if
             * (callback == null && !enableOAuth10) { OAuthProblemException e = new
             * OAuthProblemException(OAuth.Problems.PARAMETER_ABSENT);
             * e.setParameter(OAuth.Problems.OAUTH_PARAMETERS_ABSENT, OAuth.OAUTH_CALLBACK); throw e; }
             */

            // generate request_token and secret
            OAuthEntry entry = dataStore.generateRequestToken(consumerKey, requestMessage
                    .getParameter(OAuth.OAUTH_VERSION), callback);

            List<Parameter> responseParams = OAuth.newList(OAuth.OAUTH_TOKEN, entry.getToken(), 
                    OAuth.OAUTH_TOKEN_SECRET, entry.getTokenSecret());
            if (callback != null)
            {
                responseParams.add(new Parameter(OAuth.OAUTH_CALLBACK_CONFIRMED, "true"));
            }

            Representation rep = new StringRepresentation(OAuth.formEncode(responseParams), MediaType.TEXT_PLAIN);
            return rep;
        }
        catch (IOException e)
        {
            throw new ResourceException(Status.CLIENT_ERROR_EXPECTATION_FAILED, "");
        }
        catch (URISyntaxException e)
        {
            throw new ResourceException(Status.CLIENT_ERROR_EXPECTATION_FAILED, "");
        }
        catch (OAuthProblemException e)
        {
            throw new ResourceException(Status.CLIENT_ERROR_EXPECTATION_FAILED, e.getProblem());
        }
        catch (OAuthException e)
        {
            throw new ResourceException(Status.CLIENT_ERROR_EXPECTATION_FAILED, e.getMessage());
        }
    }
}