PageRenderTime 34ms CodeModel.GetById 22ms RepoModel.GetById 1ms app.codeStats 0ms

/src/core/tokens.lisp

http://github.com/skypher/cl-oauth
Lisp | 137 lines | 100 code | 23 blank | 14 comment | 5 complexity | 7f29ce260275e75823387a86a6b4e0a9 MD5 | raw file
Possible License(s): LGPL-3.0 
    

  1. 

  2. (in-package :oauth)
    3. 

  3. 

  4. ;;; section 6.
    5. 

  5. ;;;
    6. 

  6. ;;;  OAuth Authentication is done in three steps:
    7. 

  7. ;;;
    8. 

  8. ;;;    1. The Consumer obtains an unauthorized Request Token.
    9. 

  9. ;;;    2. The User authorizes the Request Token.
    10. 

  10. ;;;    3. The Consumer exchanges the Request Token for an Access Token.
    11. 

  11. ;;;
    12. 

  12. 

  13. ;;; TODO: token registry GC
    14. 

  14. 

  15. ;;; default token values
    16. 

  16. (let ((random-state (make-random-state t)))
    17. 

  17.   (defun random-key ()
    18. 

  18.     (format nil "~36,25,'0r" (random (expt 36 25) random-state)))
    19. 

  19. 

  20.   (defun random-secret ()
    21. 

  21.     (format nil "~36,25,'0r" (random (expt 36 25) random-state)))
    22. 

  22. 

  23.   (defun random-verification-code ()
    24. 

  24.     (format nil "~36,25,'0r" (random (expt 36 25) random-state))))
    25. 

  25. 

  26. 

  27. ;;; token base class
    28. 

  28. (defclass token ()
    29. 

  29.   ((key :type string
    30. 

  30.         :reader token-key
    31. 

  31.         :initarg :key
    32. 

  32.         :initform (random-key))
    33. 

  33.    (secret :type string
    34. 

  34.            :reader token-secret
    35. 

  35.            :initarg :secret
    36. 

  36.            :initform (random-secret))
    37. 

  37.    (user-data :type list
    38. 

  38.               :accessor token-user-data
    39. 

  39.               :initarg :user-data
    40. 

  40.               :initform nil
    41. 

  41.               :documentation "Application-specific data associated
    42. 

  42.               with this token; an alist.")))
    43. 

    44. 

  44. (defmethod print-object ((obj token) stream)
    45. 

  45.   "Faking STRUCT-like output. It would probably be better to use
    46. 

  46.   the pretty printer; the code for sb-kernel::%default-structure-pretty-print
    47. 

  47.   will be a useful template."
    48. 

  48.   (print-unreadable-object (obj stream :type t :identity (not *print-pretty*))
    49. 

  49.     (loop for slotname in (mapcar #'c2mop:slot-definition-name
    50. 

  50.                                   (c2mop:class-slots (class-of obj)))
    51. 

  51.           do (progn
    52. 

  52.                (terpri stream)
    53. 

  53.                (write "  " :stream stream :escape nil)
    54. 

  54.                (prin1 (intern (symbol-name slotname) :keyword) stream)
    55. 

  55.                (write " " :stream stream :escape nil)
    56. 

  56.                (prin1 (if (slot-boundp obj slotname)
    57. 

  57.                         (slot-value obj slotname)
    58. 

  58.                         "(unbound)")
    59. 

  59.                       stream)))))
    60. 

  60. 

  61. 

  62. ;;; consumer tokens
    63. 

  63. (defclass consumer-token (token)
    64. 

  64.   ((last-timestamp :type integer
    65. 

  65.                    :accessor consumer-token-last-timestamp
    66. 

  66.                    :initform 0)))
    67. 

  67. 

  68. (defun make-consumer-token (&rest args)
    69. 

  69.   (apply #'make-instance 'consumer-token args))
    70. 

  70. 

  71. 

  72. (defclass consumer-ref-mixin ()
    73. 

  73.   ((consumer :type consumer-token
    74. 

  74.              :accessor token-consumer
    75. 

  75.              :initarg :consumer
    76. 

  76.              :documentation "The Consumer that originally requested this
    77. 

  77.              token."))
    78. 

  78.   (:documentation "Mixin for classes that refer to a consumer."))
    79. 

  79. 

  80. 

  81. ;;; request tokens
    82. 

  82. (defclass request-token (token consumer-ref-mixin)
    83. 

  83.   ((callback-uri :type (or puri:uri null)
    84. 

  84.                  :reader request-token-callback-uri
    85. 

  85.                  :initarg :callback-uri
    86. 

  86.                  :initform nil
    87. 

  87.                  :documentation "Callback URI for this request token.
    88. 

  88.                  NIL means oob.")
    89. 

  89.    (verification-code :type (or string null)
    90. 

  90.                       :accessor request-token-verification-code
    91. 

  91.                       :initarg :verification-code
    92. 

  92.                       :initform (random-verification-code)
    93. 

  93.                       :documentation "Might be NIL for OAuth 1.0")
    94. 

  94.    (authorized-p :type boolean
    95. 

  95.                  :accessor request-token-authorized-p
    96. 

  96.                  :initform nil)))
    97. 

  97. 

  98. (defun make-request-token (&rest args)
    99. 

  99.   (apply #'make-instance 'request-token args))
    100. 

  100. 

  101. 

  102. ;;; access tokens
    103. 

  103. (defclass access-token (token consumer-ref-mixin)
    104. 

  104.   ((session-handle :type (or string null)
    105. 

  105.                    :reader access-token-session-handle
    106. 

  106.                    :initarg :session-handle
    107. 

  107.                    :initform nil)
    108. 

  108.    (expires :type (or integer null)
    109. 

  109.             :reader access-token-expires
    110. 

  110.             :initarg :expires
    111. 

  111.             :initform nil
    112. 

  112.             :documentation "Universal time when this token expires.")
    113. 

  113.    (authorization-expires
    114. 

  114.      :type (or integer null)
    115. 

  115.      :reader access-token-authorization-expires
    116. 

  116.      :initarg :authorization-expires
    117. 

  117.      :initform nil
    118. 

  118.      :documentation "Universal time when this token's session expires.")
    119. 

  119.    (origin-uri
    120. 

  120.      :type (or puri:uri string null)
    121. 

  121.      :reader access-token-origin-uri
    122. 

  122.      :initarg :origin-uri
    123. 

  123.      :initform nil
    124. 

  124.      :documentation "URI this access token has been obtained from.
    125. 

  125.                      Needed for refresh.")))
    126. 

    127. 

  127. 

  128. (defun make-access-token (&rest args)
    129. 

  129.   (apply #'make-instance 'access-token args))
    130. 

  130. 

  131. (defun access-token-expired-p (access-token)
    132. 

  132.   (and (access-token-session-handle access-token)
    133. 

  133.        (or (aand (access-token-expires access-token)
    134. 

  134.                  (> (get-universal-time) it))
    135. 

  135.            (aand (access-token-authorization-expires access-token)
    136. 

  136.                  (> (get-universal-time) it)))))
    137. 

  137. 

  138.