Class: Warden::OAuth2::Strategies::Client

Inherits:

Base

• Object
• Strategies::Base
• Base
• Warden::OAuth2::Strategies::Client

Defined in:

lib/warden/oauth2/strategies/client.rb

Direct Known Subclasses

ClientCredentials, ResourceOwnerPasswordCredentials

Instance Attribute Summary

• #client ⇒ Object readonly

  Returns the value of attribute client.

• #client_id ⇒ Object readonly

  Returns the value of attribute client_id.

• #client_secret ⇒ Object readonly

  Returns the value of attribute client_secret.

• #error_description ⇒ Object readonly

  Returns the value of attribute error_description.

Instance Method Summary

• #authenticate! ⇒ Object
• #client_from_http_basic ⇒ Object
• #client_from_request_params ⇒ Object
• #error_status ⇒ Object
• #public_client? ⇒ Boolean

Methods inherited from Base

#store?

Instance Attribute Details

#client ⇒ Object (readonly)

Returns the value of attribute client.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def client
  @client
end

#client_id ⇒ Object (readonly)

Returns the value of attribute client_id.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def client_id
  @client_id
end

#client_secret ⇒ Object (readonly)

Returns the value of attribute client_secret.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def client_secret
  @client_secret
end

#error_description ⇒ Object

Returns the value of attribute error_description.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def error_description
  @error_description
end

Instance Method Details

#authenticate! ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 10

def authenticate!
  @client = client_from_http_basic || client_from_request_params

  if self.client
    fail "invalid_scope" and return if scope && client.respond_to?(:scope) && !client.scope?(scope)
    client_authenticated
  else
    fail "invalid_client"
  end
end

#client_from_http_basic ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 21

def client_from_http_basic
  return nil unless (env.keys & Rack::Auth::AbstractRequest::AUTHORIZATION_KEYS).any?
  @client_id, @client_secret = *Rack::Auth::Basic::Request.new(env).credentials
  model.locate(self.client_id, self.client_secret)
end

#client_from_request_params ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 27

def client_from_request_params
  @client_id, @client_secret = params['client_id'], params['client_secret']
  return nil unless self.client_id
  model.locate(@client_id, @client_secret)
end

#error_status ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 37

def error_status
  case message
    when "invalid_client" then 401
    when "invalid_scope" then 403
    else 400
  end
end

#public_client? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/warden/oauth2/strategies/client.rb', line 33

def public_client?
  client && !client_secret
end