ClientAuthResource.java

package com.github.hburgmeier.jerseyoauth2.testsuite.base.resource;

import java.util.Arrays;
import java.util.HashSet;
import java.util.Set;

import javax.inject.Inject;
import javax.servlet.http.HttpServletRequest;
import javax.ws.rs.POST;
import javax.ws.rs.Path;
import javax.ws.rs.Produces;
import javax.ws.rs.QueryParam;
import javax.ws.rs.core.Context;
import javax.ws.rs.core.MediaType;

import org.apache.commons.lang3.StringUtils;

import com.github.hburgmeier.jerseyoauth2.api.user.IUser;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.IConfiguration;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.client.ClientServiceException;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.client.IAuthorizedClientApp;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.client.IClientService;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.client.IPendingClientToken;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.client.IRegisteredClientApp;
import com.github.hburgmeier.jerseyoauth2.authsrv.api.user.IUserService;
import com.github.hburgmeier.jerseyoauth2.testsuite.base.ClientAuthEntity;

@Path("/clientAuth")
public class ClientAuthResource {

	private final IClientService clientService;
	private final IUserService userService;
	private final IConfiguration configuration;
	
	@Inject
	public ClientAuthResource(IClientService clientService, final IUserService userService, final IConfiguration configuration) {
		super();
		this.clientService = clientService;
		this.userService = userService;
		this.configuration = configuration;
	}

	@POST
	@Produces({MediaType.APPLICATION_JSON})
	public ClientAuthEntity authorize(@QueryParam("client_id") String clientId, 
			@QueryParam("scope") String scope, 
			@QueryParam("user_name") String userName,
			@Context HttpServletRequest request) throws ClientServiceException
	{
		IUser user = userService.getCurrentUser(request);
		
		IRegisteredClientApp clientApp = clientService.getRegisteredClient(clientId);
		Set<String> authScopes = configuration.getDefaultScopes();
		if (scope!=null)
		{
			String[] scopes = scope.split(" ");
			if (!(scopes.length==1 && StringUtils.isEmpty(scopes[0])))
				authScopes = new HashSet<String>(Arrays.asList(scopes));
		}
		IAuthorizedClientApp authorizedClient = clientService.authorizeClient(user, clientApp, authScopes);
		IPendingClientToken clientAuthorization = clientService.createPendingClientToken(authorizedClient);
		return new ClientAuthEntity(clientAuthorization);
	}
	
}