Loading...
Searching...
No Matches
tenduke::oauth::pkce::OAuthPKCERequest Class Reference
#include <OAuthPKCERequest.h>
Detailed Description
PKCE-implementation of tenduke::oauth::OAuthRequest.
Inheritance diagram for tenduke::oauth::pkce::OAuthPKCERequest:
Public Member Functions | |
| OAuthPKCERequest (std::string scopes, std::string state, std::map< std::string, std::string > additionalParameters, std::string codeVerifier, std::shared_ptr< const tenduke::oauth::OAuthConfiguration > config, std::shared_ptr< const tenduke::http::HTTPClient > httpClient, std::shared_ptr< const tenduke::net::URLParser > urlParser, std::shared_ptr< const tenduke::json::JSONParser > jsonParser, std::shared_ptr< const tenduke::utl::Base64Encoder > base64Encoder, std::shared_ptr< const tenduke::crypto::MessageDigestFactory > messageDigestFactory, std::shared_ptr< tenduke::time::Clock > clock) | |
| Constructs new instance. | |
| std::string | buildAuthorizationRequestUrl () const override |
| Creates the initial authorization request URL. | |
| std::unique_ptr< tenduke::oauth::OAuthState > | handleCallback (const std::string &redirectUri) const override |
| Handles callback: performs consequent actions to authorize. | |
Protected Member Functions | |
| virtual std::map< std::string, std::string > | buildTokenRequestParameters (const std::string &code) const |
| Builds parameters for the token request. | |
| virtual std::map< std::string, std::string > | buildAuthorizationRequestParameters () const |
| Builds parameters for the authorization request. | |
| virtual void | createCodeChallenge (std::map< std::string, std::string > ¶meters) const |
| Creates PKCE code challenge and adds it to the provided parameters. | |
| virtual std::unique_ptr< tenduke::oauth::OAuthState > | handleSuccessfulCallback (const std::multimap< std::string, std::string > &queryParameters) const |
| Handles successful callback to redirect-uri from authorization request, performing the next steps to complete the authorization. | |
| virtual bool | isPKCERequest () const |
| Checks if this is PKCE-request. | |
| virtual std::unique_ptr< tenduke::oauth::OAuthTokenRequest > | createTokenRequest (const std::string &code) const |
| Creates the token request. | |
 Protected Member Functions inherited from tenduke::oauth::BaseOAuthRequest | |
| BaseOAuthRequest (const std::string &scopes, const std::map< std::string, std::string > &additionalParameters, const std::shared_ptr< const ::tenduke::oauth::OAuthConfiguration > &config, const std::shared_ptr< const ::tenduke::http::HTTPClient > &http, const std::shared_ptr< const ::tenduke::json::JSONParser > &parseJson, const std::shared_ptr<::tenduke::time::Clock > &clock) | |
| Constructs new instance. | |
| virtual std::map< std::string, std::string > | buildTokenRequestParameters () const |
| Builds base parameters for the token request. | |
| virtual std::unique_ptr<::tenduke::oauth::OAuthTokenRequest > | createTokenRequest () const |
| Creates the token request. | |
| virtual std::unique_ptr<::tenduke::oauth::OAuthState > | handleTokenResponse (std::unique_ptr<::tenduke::oauth::OAuthTokenResponse > response) const |
| Handles token response. | |
Additional Inherited Members | |
| Protected Attributes inherited from tenduke::oauth::BaseOAuthRequest | |
| const std::string | scopes |
| const std::map< std::string, std::string > | additionalParameters |
| const std::shared_ptr< const ::tenduke::oauth::OAuthConfiguration > | config |
| const std::shared_ptr< const ::tenduke::http::HTTPClient > | http |
| const std::shared_ptr< const ::tenduke::json::JSONParser > | parseJSON |
| const std::shared_ptr<::tenduke::time::Clock > | clock |
Constructor & Destructor Documentation
◆ OAuthPKCERequest()
| tenduke::oauth::pkce::OAuthPKCERequest::OAuthPKCERequest | ( | std::string | scopes, |
| std::string | state, | ||
| std::map< std::string, std::string > | additionalParameters, | ||
| std::string | codeVerifier, | ||
| std::shared_ptr< const tenduke::oauth::OAuthConfiguration > | config, | ||
| std::shared_ptr< const tenduke::http::HTTPClient > | httpClient, | ||
| std::shared_ptr< const tenduke::net::URLParser > | urlParser, | ||
| std::shared_ptr< const tenduke::json::JSONParser > | jsonParser, | ||
| std::shared_ptr< const tenduke::utl::Base64Encoder > | base64Encoder, | ||
| std::shared_ptr< const tenduke::crypto::MessageDigestFactory > | messageDigestFactory, | ||
| std::shared_ptr< tenduke::time::Clock > | clock | ||
| ) |
Constructs new instance.
- Parameters
-
scopes - state - additionalParameters - codeVerifier - config - httpClient - urlParser - jsonParser - base64Encoder - messageDigestFactory - clock -
Member Function Documentation
◆ buildAuthorizationRequestParameters()
|
protectedvirtual |
Builds parameters for the authorization request.
- Returns
- authorization request parameters
◆ buildAuthorizationRequestUrl()
|
overridevirtual |
Creates the initial authorization request URL.
Navigate browser to this URL.
Implements tenduke::oauth::OAuthBrowserAuthorizationRequest.
◆ buildTokenRequestParameters()
|
protectedvirtual |
Builds parameters for the token request.
- Parameters
-
code authorization code returned from the authorization request.
- Returns
- token request parameters
◆ createCodeChallenge()
|
protectedvirtual |
Creates PKCE code challenge and adds it to the provided parameters.
- Parameters
-
parameters -
◆ createTokenRequest()
|
protectedvirtual |
Creates the token request.
- Parameters
-
code authorization code returned from the authorization request.
- Returns
- the token request.
◆ handleCallback()
|
overridevirtual |
Handles callback: performs consequent actions to authorize.
In the flow, the OAuth-server signals success or error by navigating (using HTTP-redirect) to configured redirect-URI. You must listen the browser events to detect, when the redirect-URI is navigated to. Once you detect navigation to the redirect-URI, call this method with the complete redirect-URI.
The call is synchronous.
- Parameters
-
redirectURI -
- Returns
- the OAuth-state
- Exceptions
-
std::nested_exception when the there is some nested cause tenduke::http::HTTPException (or subclasses of it) when the server responds with HTTP error status code which does not indicate OAuth-error, e.g. 500 (internal server error) or 404 (not found = wrong endpoint configured) tenduke::json::JSONParsingException when server response is not valid JSON tenduke::oauth::OAuthException when the server response is not what we expected, e.g. - problems with the redirect-URI (missing or invalid "state", missing "code")
- The token response does not contain access_token
- The token response payload is not JSON-object
tenduke::oauth::OAuthServerError when the server responds with an error tenduke::net::NetworkingException (or subclasses of it) when networking error occurred, e.g. - tenduke::net::UnknownHostException if the host is not found
tenduke::net::URLException if problem parsing the redirectURI (should not happen, though) tenduke::net::MalformedURLException if the redirectURI is invalid
Implements tenduke::oauth::OAuthBrowserAuthorizationRequest.
◆ handleSuccessfulCallback()
|
protectedvirtual |
Handles successful callback to redirect-uri from authorization request, performing the next steps to complete the authorization.
- Parameters
-
queryParameters query parameters extracted from the callback to the redirect-uri
- Returns
- the new state
◆ isPKCERequest()
|
protectedvirtual |
Checks if this is PKCE-request.
- Returns
- -
The documentation for this class was generated from the following files:
- core/oidc/core/src/oauth/pkce/OAuthPKCERequest.h
- core/oidc/core/src/oauth/pkce/OAuthPKCERequest.cpp
