Class: Rack::OAuth2::Client

Inherits:

Object

• Object
• Rack::OAuth2::Client

Includes:

AttrOptional, AttrRequired

Defined in:

lib/rack/oauth2/client.rb,
lib/rack/oauth2/client/error.rb,
lib/rack/oauth2/client/grant.rb,
lib/rack/oauth2/client/grant/password.rb,
lib/rack/oauth2/client/grant/jwt_bearer.rb,
lib/rack/oauth2/client/grant/saml2_bearer.rb,
lib/rack/oauth2/client/grant/refresh_token.rb,
lib/rack/oauth2/client/grant/token_exchange.rb,
lib/rack/oauth2/client/grant/authorization_code.rb,
lib/rack/oauth2/client/grant/client_credentials.rb

Defined Under Namespace

Classes: Error, Grant

Instance Method Summary

• #access_token!(*args) ⇒ Object
• #authorization_code=(code) ⇒ Object
• #authorization_uri(params = {}) ⇒ Object
• #force_token_type!(token_type) ⇒ Object
• #initialize(attributes = {}) ⇒ Client constructor

  A new instance of Client.

• #jwt_bearer=(assertion) ⇒ Object
• #refresh_token=(token) ⇒ Object
• #resource_owner_credentials=(credentials) ⇒ Object
• #revoke!(*args) ⇒ Object
• #saml2_bearer=(assertion) ⇒ Object
• #subject_token=(subject_token, subject_token_type = URN::TokenType::JWT) ⇒ Object

Constructor Details

#initialize(attributes = {}) ⇒ Client

Returns a new instance of Client.

# File 'lib/rack/oauth2/client.rb', line 8

def initialize(attributes = {})
  (required_attributes + optional_attributes).each do |key|
    self.send :"#{key}=", attributes[key]
  end
  @grant = Grant::ClientCredentials.new
  @authorization_endpoint ||= '/oauth2/authorize'
  @token_endpoint ||= '/oauth2/token'
  attr_missing!
end

Instance Method Details

#access_token!(*args) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 71

def access_token!(*args)
  headers, params, http_client, options = authenticated_context_from(*args)
  params[:scope] = Array(options.delete(:scope)).join(' ') if options[:scope].present?
  params.merge! @grant.as_json
  params.merge! options
  handle_response do
    http_client.post(
      absolute_uri_for(token_endpoint),
      Util.compact_hash(params),
      headers
    ) do |req|
      yield req if block_given?
    end
  end
end

#authorization_code=(code) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 28

def authorization_code=(code)
  @grant = Grant::AuthorizationCode.new(
    code: code,
    redirect_uri: self.redirect_uri
  )
end

#authorization_uri(params = {}) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 18

def authorization_uri(params = {})
  params[:redirect_uri] ||= self.redirect_uri
  params[:response_type] ||= :code
  params[:response_type] = Array(params[:response_type]).join(' ')
  params[:scope] = Array(params[:scope]).join(' ')
  Util.redirect_uri absolute_uri_for(authorization_endpoint), :query, params.merge(
    client_id: self.identifier
  )
end

#force_token_type!(token_type) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 67

def force_token_type!(token_type)
  @forced_token_type = token_type.to_s
end

#jwt_bearer=(assertion) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 48

def jwt_bearer=(assertion)
  @grant = Grant::JWTBearer.new(
    assertion: assertion
  )
end

#refresh_token=(token) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 42

def refresh_token=(token)
  @grant = Grant::RefreshToken.new(
    refresh_token: token
  )
end

#resource_owner_credentials=(credentials) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 35

def resource_owner_credentials=(credentials)
  @grant = Grant::Password.new(
    username: credentials.first,
    password: credentials.last
  )
end

#revoke!(*args) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 87

def revoke!(*args)
  headers, params, http_client, options = authenticated_context_from(*args)

  params.merge! case
  when access_token = options.delete(:access_token)
    {
      token: access_token,
      token_type_hint: :access_token
    }
  when refresh_token = options.delete(:refresh_token)
    {
      token: refresh_token,
      token_type_hint: :refresh_token
    }
  when @grant.is_a?(Grant::RefreshToken)
    {
      token: @grant.refresh_token,
      token_type_hint: :refresh_token
    }
  when options[:token].blank?
    raise ArgumentError, 'One of "token", "access_token" and "refresh_token" is required'
  end
  params.merge! options

  handle_revocation_response do
    http_client.post(
      absolute_uri_for(revocation_endpoint),
      Util.compact_hash(params),
      headers
    ) do |req|
      yield req if block_given?
    end
  end
end

#saml2_bearer=(assertion) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 54

def saml2_bearer=(assertion)
  @grant = Grant::SAML2Bearer.new(
    assertion: assertion
  )
end

#subject_token=(subject_token, subject_token_type = URN::TokenType::JWT) ⇒ Object

# File 'lib/rack/oauth2/client.rb', line 60

def subject_token=(subject_token, subject_token_type = URN::TokenType::JWT)
  @grant = Grant::TokenExchange.new(
    subject_token: subject_token,
    subject_token_type: subject_token_type
  )
end