OAuth2Manager.java | searchcode

/modules/dxp/apps/document-library-opener/document-library-opener-onedrive-web/src/main/java/com/liferay/document/library/opener/onedrive/web/internal/oauth/OAuth2Manager.java

https://github.com/vilmospapp/liferay-portal · Java · 190 lines · 129 code · 45 blank · 16 comment · 5 complexity · 94a191db046e85b3f36e8e7b35810183 MD5 · raw file


/**
 * Copyright (c) 2000-present Liferay, Inc. All rights reserved.
 *
 * The contents of this file are subject to the terms of the Liferay Enterprise
 * Subscription License ("License"). You may not use this file except in
 * compliance with the License. You can obtain a copy of the License by
 * contacting Liferay, Inc. See the License for the specific language governing
 * permissions and limitations under the License, including but not limited to
 * distribution rights of the Software.
 *
 *
 *
 */

package com.liferay.document.library.opener.onedrive.web.internal.oauth;

import com.github.scribejava.apis.MicrosoftAzureActiveDirectory20Api;
import com.github.scribejava.core.builder.ServiceBuilder;
import com.github.scribejava.core.builder.ServiceBuilderOAuth20;
import com.github.scribejava.core.oauth.OAuth20Service;

import com.liferay.document.library.opener.onedrive.web.internal.configuration.DLOneDriveCompanyConfiguration;
import com.liferay.portal.kernel.exception.PortalException;
import com.liferay.portal.kernel.module.configuration.ConfigurationException;
import com.liferay.portal.kernel.module.configuration.ConfigurationProvider;
import com.liferay.portal.kernel.util.Portal;

import java.io.IOException;

import java.util.Optional;
import java.util.concurrent.ExecutionException;

import org.osgi.service.component.annotations.Component;
import org.osgi.service.component.annotations.Reference;

/**
 * @author Cristina González
 */
@Component(service = OAuth2Manager.class)
public class OAuth2Manager {

	public AccessToken createAccessToken(
			long companyId, long userId, String code, String portalURL)
		throws Exception {

		try (OAuth20Service oAuth20Service = _createOAuth20Service(
				companyId, _getRedirectURI(portalURL))) {

			AccessToken accessToken = new AccessToken(
				oAuth20Service.getAccessToken(code));

			_accessTokenStore.add(companyId, userId, accessToken);

			return accessToken;
		}
		catch (IOException ioException) {
			throw new PortalException(ioException);
		}
	}

	public Optional<AccessToken> getAccessTokenOptional(
			long companyId, long userId)
		throws PortalException {

		Optional<AccessToken> accessTokenOptional =
			_accessTokenStore.getAccessTokenOptional(companyId, userId);

		if (!accessTokenOptional.isPresent()) {
			return Optional.empty();
		}

		AccessToken accessToken = accessTokenOptional.get();

		if (!accessToken.isValid()) {
			return _refreshOAuth2AccessToken(companyId, userId, accessToken);
		}

		return Optional.of(accessToken);
	}

	public String getAuthorizationURL(
			long companyId, String portalURL, String state)
		throws PortalException {

		try (OAuth20Service oAuth20Service = _createOAuth20Service(
				companyId, _getRedirectURI(portalURL))) {

			return oAuth20Service.getAuthorizationUrl(state);
		}
		catch (IOException ioException) {
			throw new PortalException(ioException);
		}
	}

	public boolean hasAccessToken(long companyId, long userId)
		throws PortalException {

		Optional<AccessToken> accessTokenOptional = getAccessTokenOptional(
			companyId, userId);

		return accessTokenOptional.isPresent();
	}

	public void revokeOAuth2AccessToken(long companyId, long userId) {
		Optional<AccessToken> accessTokenOptional =
			_accessTokenStore.getAccessTokenOptional(companyId, userId);

		if (!accessTokenOptional.isPresent()) {
			return;
		}

		_accessTokenStore.delete(companyId, userId);
	}

	private OAuth20Service _createOAuth20Service(
			long companyId, String redirectURL)
		throws PortalException {

		DLOneDriveCompanyConfiguration dlOneDriveCompanyConfiguration =
			_getDLOneDriveCompanyConfiguration(companyId);

		ServiceBuilderOAuth20 serviceBuilderOAuth20 = new ServiceBuilder(
			dlOneDriveCompanyConfiguration.clientId()
		).apiSecret(
			dlOneDriveCompanyConfiguration.clientSecret()
		).callback(
			redirectURL
		).withScope(
			"https://graph.microsoft.com/.default"
		).apiKey(
			dlOneDriveCompanyConfiguration.clientId()
		);

		try (OAuth20Service oAuth20Service = serviceBuilderOAuth20.build(
				MicrosoftAzureActiveDirectory20Api.custom(
					dlOneDriveCompanyConfiguration.tenant()))) {

			return oAuth20Service;
		}
		catch (Exception exception) {
			throw new PortalException(
				"Unable to create OAuth20Service", exception);
		}
	}

	private DLOneDriveCompanyConfiguration _getDLOneDriveCompanyConfiguration(
			long companyId)
		throws ConfigurationException {

		return _configurationProvider.getCompanyConfiguration(
			DLOneDriveCompanyConfiguration.class, companyId);
	}

	private String _getRedirectURI(String portalURL) {
		return portalURL + Portal.PATH_MODULE +
			"/document_library/onedrive/oauth2";
	}

	private Optional<AccessToken> _refreshOAuth2AccessToken(
			long companyId, long userId, AccessToken accessToken)
		throws PortalException {

		if (accessToken.getRefreshToken() == null) {
			return Optional.empty();
		}

		try (OAuth20Service oAuth20Service = _createOAuth20Service(
				companyId, null)) {

			AccessToken newAccessToken = new AccessToken(
				oAuth20Service.refreshAccessToken(
					accessToken.getRefreshToken()));

			_accessTokenStore.add(companyId, userId, newAccessToken);

			return Optional.of(newAccessToken);
		}
		catch (ExecutionException | InterruptedException | IOException
					exception) {

			throw new PortalException(exception);
		}
	}

	private final AccessTokenStore _accessTokenStore = new AccessTokenStore();

	@Reference
	private ConfigurationProvider _configurationProvider;

}

Tech Fingerprint

Alerts (1)

'throws Exception' Declaring 'throws Exception' is too broad. Declare specific checked exceptions that the method might throw, allowing callers to handle them appropriately.
44