/******************************************************************************
* Copyright © 2013-2016 The Nxt Core Developers. *
* *
* See the AUTHORS.txt, DEVELOPER-AGREEMENT.txt and LICENSE.txt files at *
* the top-level directory of this distribution for the individual copyright *
* holder information and the developer policies on copyright and licensing. *
* *
* Unless otherwise agreed in a custom licensing agreement, no part of the *
* Nxt software, including this file, may be copied, modified, propagated, *
* or distributed except according to the terms contained in the LICENSE.txt *
* file. *
* *
* Removal or modification of this copyright notice is prohibited. *
* *
******************************************************************************/
package nxt.user;
import nxt.Token;
import org.json.simple.JSONObject;
import org.json.simple.JSONStreamAware;
import javax.servlet.http.HttpServletRequest;
import java.io.IOException;
import static nxt.user.JSONResponses.INVALID_SECRET_PHRASE;
public final class GenerateAuthorizationToken extends UserServlet.UserRequestHandler {
static final GenerateAuthorizationToken instance = new GenerateAuthorizationToken();
private GenerateAuthorizationToken() {}
@Override
JSONStreamAware processRequest(HttpServletRequest req, User user) throws IOException {
String secretPhrase = req.getParameter("secretPhrase");
if (! user.getSecretPhrase().equals(secretPhrase)) {
return INVALID_SECRET_PHRASE;
}
String tokenString = Token.generateToken(secretPhrase, req.getParameter("website").trim());
JSONObject response = new JSONObject();
response.put("response", "showAuthorizationToken");
response.put("token", tokenString);
return response;
}
@Override
boolean requirePost() {
return true;
}
}