Manage OAuth2 error response for access token request (scribejava#696)

juherr · kullfar · commit e01064d909e9 · 2016-09-08T18:07:13.000+04:00
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/exceptions/OAuthRequestException.java b/scribejava-core/src/main/java/com/github/scribejava/core/exceptions/OAuthRequestException.java
@@ -0,0 +1,17 @@
+package com.github.scribejava.core.exceptions;
+
+import com.github.scribejava.core.model.OAuth2ErrorResponse;
+
+public class OAuthRequestException extends OAuthException {
+
+    private final OAuth2ErrorResponse error;
+
+    public OAuthRequestException(String message, OAuth2ErrorResponse error) {
+        super(message);
+        this.error = error;
+    }
+
+    public OAuth2ErrorResponse getError() {
+        return error;
+    }
+}
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/extractors/AbstractOAuth1TokenExtractor.java b/scribejava-core/src/main/java/com/github/scribejava/core/extractors/AbstractOAuth1TokenExtractor.java
@@ -1,9 +1,11 @@
 package com.github.scribejava.core.extractors;
 
+import java.io.IOException;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 import com.github.scribejava.core.exceptions.OAuthException;
 import com.github.scribejava.core.model.OAuth1Token;
+import com.github.scribejava.core.model.Response;
 import com.github.scribejava.core.utils.OAuthEncoder;
 import com.github.scribejava.core.utils.Preconditions;
 
@@ -23,12 +25,13 @@ public abstract class AbstractOAuth1TokenExtractor<T extends OAuth1Token> implem
      * {@inheritDoc}
      */
     @Override
-    public T extract(String response) {
-        Preconditions.checkEmptyString(response,
+    public T extract(Response response) throws IOException {
+        final String body = response.getBody();
+        Preconditions.checkEmptyString(body,
                 "Response body is incorrect. Can't extract a token from an empty string");
-        final String token = extract(response, Pattern.compile(OAUTH_TOKEN_REGEXP));
-        final String secret = extract(response, Pattern.compile(OAUTH_TOKEN_SECRET_REGEXP));
-        return createToken(token, secret, response);
+        final String token = extract(body, Pattern.compile(OAUTH_TOKEN_REGEXP));
+        final String secret = extract(body, Pattern.compile(OAUTH_TOKEN_SECRET_REGEXP));
+        return createToken(token, secret, body);
     }
 
     private String extract(String response, Pattern p) {
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/extractors/OAuth2AccessTokenExtractor.java b/scribejava-core/src/main/java/com/github/scribejava/core/extractors/OAuth2AccessTokenExtractor.java
@@ -1,9 +1,11 @@
 package com.github.scribejava.core.extractors;
 
+import java.io.IOException;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 import com.github.scribejava.core.exceptions.OAuthException;
 import com.github.scribejava.core.model.OAuth2AccessToken;
+import com.github.scribejava.core.model.Response;
 import com.github.scribejava.core.utils.OAuthEncoder;
 import com.github.scribejava.core.utils.Preconditions;
 
@@ -34,23 +36,24 @@ public static OAuth2AccessTokenExtractor instance() {
      * {@inheritDoc}
      */
     @Override
-    public OAuth2AccessToken extract(String response) {
-        Preconditions.checkEmptyString(response,
+    public OAuth2AccessToken extract(Response response) throws IOException {
+        final String body = response.getBody();
+        Preconditions.checkEmptyString(body,
                 "Response body is incorrect. Can't extract a token from an empty string");
 
-        final String accessToken = extractParameter(response, ACCESS_TOKEN_REGEX, true);
-        final String tokenType = extractParameter(response, TOKEN_TYPE_REGEX, false);
-        final String expiresInString = extractParameter(response, EXPIRES_IN_REGEX, false);
+        final String accessToken = extractParameter(body, ACCESS_TOKEN_REGEX, true);
+        final String tokenType = extractParameter(body, TOKEN_TYPE_REGEX, false);
+        final String expiresInString = extractParameter(body, EXPIRES_IN_REGEX, false);
         Integer expiresIn;
         try {
             expiresIn = expiresInString == null ? null : Integer.valueOf(expiresInString);
         } catch (NumberFormatException nfe) {
             expiresIn = null;
         }
-        final String refreshToken = extractParameter(response, REFRESH_TOKEN_REGEX, false);
-        final String scope = extractParameter(response, SCOPE_REGEX, false);
+        final String refreshToken = extractParameter(body, REFRESH_TOKEN_REGEX, false);
+        final String scope = extractParameter(body, SCOPE_REGEX, false);
 
-        return new OAuth2AccessToken(accessToken, tokenType, expiresIn, refreshToken, scope, response);
+        return new OAuth2AccessToken(accessToken, tokenType, expiresIn, refreshToken, scope, body);
     }
 
     private static String extractParameter(String response, String regex, boolean required) throws OAuthException {
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/extractors/OAuth2AccessTokenJsonExtractor.java b/scribejava-core/src/main/java/com/github/scribejava/core/extractors/OAuth2AccessTokenJsonExtractor.java
@@ -1,9 +1,13 @@
 package com.github.scribejava.core.extractors;
 
+import java.io.IOException;
+import java.net.URI;
 import java.util.regex.Matcher;
 import java.util.regex.Pattern;
 import com.github.scribejava.core.exceptions.OAuthException;
 import com.github.scribejava.core.model.OAuth2AccessToken;
+import com.github.scribejava.core.model.OAuth2ErrorResponse;
+import com.github.scribejava.core.model.Response;
 import com.github.scribejava.core.utils.Preconditions;
 
 /**
@@ -16,6 +20,9 @@ public class OAuth2AccessTokenJsonExtractor implements TokenExtractor<OAuth2Acce
     private static final String EXPIRES_IN_REGEX = "\"expires_in\"\\s*:\\s*\"?(\\d*?)\"?\\D";
     private static final String REFRESH_TOKEN_REGEX = "\"refresh_token\"\\s*:\\s*\"(\\S*?)\"";
     private static final String SCOPE_REGEX = "\"scope\"\\s*:\\s*\"(\\S*?)\"";
+    private static final String ERROR_REGEX = "\"error\"\\s*:\\s*\"(\\S*?)\"";
+    private static final String ERROR_DESCRIPTION_REGEX = "\"error_description\"\\s*:\\s*\"([^\"]*?)\"";
+    private static final String ERROR_URI_REGEX = "\"error_uri\"\\s*:\\s*\"(\\S*?)\"";
 
     protected OAuth2AccessTokenJsonExtractor() {
     }
@@ -30,10 +37,34 @@ public static OAuth2AccessTokenJsonExtractor instance() {
     }
 
     @Override
-    public OAuth2AccessToken extract(String response) {
-        Preconditions.checkEmptyString(response,
+    public OAuth2AccessToken extract(Response response) throws IOException {
+        final String body = response.getBody();
+        Preconditions.checkEmptyString(body,
                 "Response body is incorrect. Can't extract a token from an empty string");
 
+        if (response.getCode() != 200) {
+            generateError(response.getBody());
+        }
+        return createToken(body);
+    }
+
+    // Related documentation: https://tools.ietf.org/html/rfc6749#section-5.2
+    private static void generateError(String response) {
+        final String errorInString = extractParameter(response, ERROR_REGEX, true);
+        final String errorDescription = extractParameter(response, ERROR_DESCRIPTION_REGEX, false);
+        final String errorUriInString = extractParameter(response, ERROR_URI_REGEX, false);
+        URI errorUri;
+        try {
+            errorUri = errorUriInString == null ? null : URI.create(errorUriInString);
+        } catch (IllegalArgumentException iae) {
+            errorUri = null;
+        }
+
+        throw new OAuth2ErrorResponse(OAuth2ErrorResponse.OAuthError.valueOf(errorInString), errorDescription,
+                errorUri, response);
+    }
+
+    private OAuth2AccessToken createToken(String response) {
         final String accessToken = extractParameter(response, ACCESS_TOKEN_REGEX, true);
         final String tokenType = extractParameter(response, TOKEN_TYPE_REGEX, false);
         final String expiresInString = extractParameter(response, EXPIRES_IN_REGEX, false);
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/extractors/TokenExtractor.java b/scribejava-core/src/main/java/com/github/scribejava/core/extractors/TokenExtractor.java
@@ -1,7 +1,11 @@
 package com.github.scribejava.core.extractors;
 
+import com.github.scribejava.core.exceptions.OAuthException;
+import com.github.scribejava.core.model.Response;
 import com.github.scribejava.core.model.Token;
 
+import java.io.IOException;
+
 /**
  * Simple command object that extracts a concrete {@link Token} from a String
  * @param <T> concrete type of Token
@@ -14,5 +18,5 @@ public interface TokenExtractor<T extends Token> {
      * @param response the contents of the response
      * @return OAuth access token
      */
-    T extract(String response);
+    T extract(Response response) throws IOException, OAuthException;
 }
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/model/OAuth2ErrorResponse.java b/scribejava-core/src/main/java/com/github/scribejava/core/model/OAuth2ErrorResponse.java
@@ -0,0 +1,51 @@
+package com.github.scribejava.core.model;
+
+import com.github.scribejava.core.exceptions.OAuthException;
+
+import java.net.URI;
+
+/**
+ * Representing <a href="https://tools.ietf.org/html/rfc6749#section-5.2">"5.2. Error Response"</a>
+ */
+public class OAuth2ErrorResponse extends OAuthException {
+
+    public enum OAuthError {
+        invalid_request, invalid_client, invalid_grant, unauthorized_client, unsupported_grant_type, invalid_scope
+    }
+
+    private final OAuthError error;
+    private final String errorDescription;
+    private final URI errorUri;
+    private final String rawResponse;
+
+    public OAuth2ErrorResponse(OAuthError error, String errorDescription, URI errorUri, String rawResponse) {
+        super(generateMessage(error, errorDescription, errorUri, rawResponse));
+        if (error == null) {
+            throw new IllegalArgumentException("error must not be null");
+        }
+        this.error = error;
+        this.errorDescription = errorDescription;
+        this.errorUri = errorUri;
+        this.rawResponse = rawResponse;
+    }
+
+    private static String generateMessage(OAuthError error, String errorDescription, URI errorUri, String rawResponse) {
+        return rawResponse;
+    }
+
+    public OAuthError getError() {
+        return error;
+    }
+
+    public String getErrorDescription() {
+        return errorDescription;
+    }
+
+    public URI getErrorUri() {
+        return errorUri;
+    }
+
+    public String getRawResponse() {
+        return rawResponse;
+    }
+}
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/oauth/OAuth10aService.java b/scribejava-core/src/main/java/com/github/scribejava/core/oauth/OAuth10aService.java
@@ -48,7 +48,7 @@ public final OAuth1RequestToken getRequestToken() throws IOException {
 
         config.log("response status code: " + response.getCode());
         config.log("response body: " + body);
-        return api.getRequestTokenExtractor().extract(body);
+        return api.getRequestTokenExtractor().extract(response);
     }
 
     public final Future<OAuth1RequestToken> getRequestTokenAsync(
@@ -61,7 +61,7 @@ public final Future<OAuth1RequestToken> getRequestTokenAsync(
         return request.sendAsync(callback, new OAuthRequestAsync.ResponseConverter<OAuth1RequestToken>() {
             @Override
             public OAuth1RequestToken convert(Response response) throws IOException {
-                return getApi().getRequestTokenExtractor().extract(response.getBody());
+                return getApi().getRequestTokenExtractor().extract(response);
             }
         });
     }
@@ -97,7 +97,7 @@ public final OAuth1AccessToken getAccessToken(OAuth1RequestToken requestToken, S
         final OAuthRequest request = new OAuthRequest(api.getAccessTokenVerb(), api.getAccessTokenEndpoint(), this);
         prepareAccessTokenRequest(request, requestToken, oauthVerifier);
         final Response response = request.send();
-        return api.getAccessTokenExtractor().extract(response.getBody());
+        return api.getAccessTokenExtractor().extract(response);
     }
 
     /**
@@ -119,7 +119,7 @@ public final Future<OAuth1AccessToken> getAccessTokenAsync(OAuth1RequestToken re
         return request.sendAsync(callback, new OAuthRequestAsync.ResponseConverter<OAuth1AccessToken>() {
             @Override
             public OAuth1AccessToken convert(Response response) throws IOException {
-                return getApi().getAccessTokenExtractor().extract(response.getBody());
+                return getApi().getAccessTokenExtractor().extract(response);
             }
         });
     }
diff --git a/scribejava-core/src/main/java/com/github/scribejava/core/oauth/OAuth20Service.java b/scribejava-core/src/main/java/com/github/scribejava/core/oauth/OAuth20Service.java
@@ -34,7 +34,7 @@ public OAuth20Service(DefaultApi20 api, OAuthConfig config) {
 
     //sync version, protected to facilitate mocking
     protected OAuth2AccessToken sendAccessTokenRequestSync(OAuthRequest request) throws IOException {
-        return api.getAccessTokenExtractor().extract(request.send().getBody());
+        return api.getAccessTokenExtractor().extract(request.send());
     }
 
     //async version, protected to facilitate mocking
@@ -44,7 +44,7 @@ protected Future<OAuth2AccessToken> sendAccessTokenRequestAsync(OAuthRequestAsyn
         return request.sendAsync(callback, new OAuthRequestAsync.ResponseConverter<OAuth2AccessToken>() {
             @Override
             public OAuth2AccessToken convert(Response response) throws IOException {
-                return getApi().getAccessTokenExtractor().extract(response.getBody());
+                return getApi().getAccessTokenExtractor().extract(response);
             }
         });
     }
diff --git a/scribejava-core/src/test/java/com/github/scribejava/core/extractors/OAuth1AccessTokenExtractorTest.java b/scribejava-core/src/test/java/com/github/scribejava/core/extractors/OAuth1AccessTokenExtractorTest.java
@@ -1,9 +1,14 @@
 package com.github.scribejava.core.extractors;
 
+import com.github.scribejava.core.model.Response;
 import org.junit.Before;
 import org.junit.Test;
 import com.github.scribejava.core.exceptions.OAuthException;
 import com.github.scribejava.core.model.OAuth1Token;
+
+import java.io.IOException;
+import java.util.Collections;
+
 import static org.junit.Assert.assertEquals;
 
 public class OAuth1AccessTokenExtractorTest {
@@ -16,58 +21,63 @@ public void setUp() {
     }
 
     @Test
-    public void shouldExtractTokenFromOAuthStandardResponse() {
+    public void shouldExtractTokenFromOAuthStandardResponse() throws IOException {
         final String response = "oauth_token=hh5s93j4hdidpola&oauth_token_secret=hdhd0244k9j7ao03";
-        final OAuth1Token extracted = extractor.extract(response);
+        final OAuth1Token extracted = extractor.extract(ok(response));
         assertEquals("hh5s93j4hdidpola", extracted.getToken());
         assertEquals("hdhd0244k9j7ao03", extracted.getTokenSecret());
     }
 
     @Test
-    public void shouldExtractTokenFromInvertedOAuthStandardResponse() {
+    public void shouldExtractTokenFromInvertedOAuthStandardResponse() throws IOException {
         final String response = "oauth_token_secret=hh5s93j4hdidpola&oauth_token=hdhd0244k9j7ao03";
-        final OAuth1Token extracted = extractor.extract(response);
+        final OAuth1Token extracted = extractor.extract(ok(response));
         assertEquals("hh5s93j4hdidpola", extracted.getTokenSecret());
         assertEquals("hdhd0244k9j7ao03", extracted.getToken());
     }
 
     @Test
-    public void shouldExtractTokenFromResponseWithCallbackConfirmed() {
+    public void shouldExtractTokenFromResponseWithCallbackConfirmed() throws IOException {
         final String response = "oauth_token=hh5s93j4hdidpola&oauth_token_secret=hdhd0244k9j7ao03"
                 + "&callback_confirmed=true";
-        final OAuth1Token extracted = extractor.extract(response);
+        final OAuth1Token extracted = extractor.extract(ok(response));
         assertEquals("hh5s93j4hdidpola", extracted.getToken());
         assertEquals("hdhd0244k9j7ao03", extracted.getTokenSecret());
     }
 
     @Test
-    public void shouldExtractTokenWithEmptySecret() {
+    public void shouldExtractTokenWithEmptySecret() throws IOException {
         final String response = "oauth_token=hh5s93j4hdidpola&oauth_token_secret=";
-        final OAuth1Token extracted = extractor.extract(response);
+        final OAuth1Token extracted = extractor.extract(ok(response));
         assertEquals("hh5s93j4hdidpola", extracted.getToken());
         assertEquals("", extracted.getTokenSecret());
     }
 
     @Test(expected = OAuthException.class)
-    public void shouldThrowExceptionIfTokenIsAbsent() {
+    public void shouldThrowExceptionIfTokenIsAbsent() throws IOException {
         final String response = "oauth_secret=hh5s93j4hdidpola&callback_confirmed=true";
-        extractor.extract(response);
+        extractor.extract(ok(response));
     }
 
     @Test(expected = OAuthException.class)
-    public void shouldThrowExceptionIfSecretIsAbsent() {
+    public void shouldThrowExceptionIfSecretIsAbsent() throws IOException {
         final String response = "oauth_token=hh5s93j4hdidpola&callback_confirmed=true";
-        extractor.extract(response);
+        extractor.extract(ok(response));
     }
 
     @Test(expected = IllegalArgumentException.class)
-    public void shouldThrowExceptionIfResponseIsNull() {
-        extractor.extract(null);
+    public void shouldThrowExceptionIfResponseIsNull() throws IOException {
+        extractor.extract(ok(null));
     }
 
     @Test(expected = IllegalArgumentException.class)
-    public void shouldThrowExceptionIfResponseIsEmptyString() {
+    public void shouldThrowExceptionIfResponseIsEmptyString() throws IOException {
         final String response = "";
-        extractor.extract(response);
+        extractor.extract(ok(response));
+    }
+
+    private static Response ok(String body) {
+        return new Response(200, /* message */ null, /* headers */ Collections.<String, String>emptyMap(),
+                body, /* stream */ null);
     }
 }
diff --git a/scribejava-core/src/test/java/com/github/scribejava/core/extractors/OAuth2AccessTokenExtractorTest.java b/scribejava-core/src/test/java/com/github/scribejava/core/extractors/OAuth2AccessTokenExtractorTest.java
diff --git a/scribejava-core/src/test/java/com/github/scribejava/core/extractors/OAuth2AccessTokenJsonExtractorTest.java b/scribejava-core/src/test/java/com/github/scribejava/core/extractors/OAuth2AccessTokenJsonExtractorTest.java

Original file line number	Diff line number	Diff line change
`@@ -48,7 +48,7 @@ public final OAuth1RequestToken getRequestToken() throws IOException {`
`48`	`48`
`49`	`49`	`config.log("response status code: " + response.getCode());`
`50`	`50`	`config.log("response body: " + body);`
`51`		`- return api.getRequestTokenExtractor().extract(body);`
	`51`	`+ return api.getRequestTokenExtractor().extract(response);`
`52`	`52`	`}`
`53`	`53`
`54`	`54`	`public final Future<OAuth1RequestToken> getRequestTokenAsync(`
`@@ -61,7 +61,7 @@ public final Future<OAuth1RequestToken> getRequestTokenAsync(`
`61`	`61`	`return request.sendAsync(callback, new OAuthRequestAsync.ResponseConverter<OAuth1RequestToken>() {`
`62`	`62`	`@Override`
`63`	`63`	`public OAuth1RequestToken convert(Response response) throws IOException {`
`64`		`- return getApi().getRequestTokenExtractor().extract(response.getBody());`
	`64`	`+ return getApi().getRequestTokenExtractor().extract(response);`
`65`	`65`	`}`
`66`	`66`	`});`
`67`	`67`	`}`
`@@ -97,7 +97,7 @@ public final OAuth1AccessToken getAccessToken(OAuth1RequestToken requestToken, S`
`97`	`97`	`final OAuthRequest request = new OAuthRequest(api.getAccessTokenVerb(), api.getAccessTokenEndpoint(), this);`
`98`	`98`	`prepareAccessTokenRequest(request, requestToken, oauthVerifier);`
`99`	`99`	`final Response response = request.send();`
`100`		`- return api.getAccessTokenExtractor().extract(response.getBody());`
	`100`	`+ return api.getAccessTokenExtractor().extract(response);`
`101`	`101`	`}`
`102`	`102`
`103`	`103`	`/**`
`@@ -119,7 +119,7 @@ public final Future<OAuth1AccessToken> getAccessTokenAsync(OAuth1RequestToken re`
`119`	`119`	`return request.sendAsync(callback, new OAuthRequestAsync.ResponseConverter<OAuth1AccessToken>() {`
`120`	`120`	`@Override`
`121`	`121`	`public OAuth1AccessToken convert(Response response) throws IOException {`
`122`		`- return getApi().getAccessTokenExtractor().extract(response.getBody());`
	`122`	`+ return getApi().getAccessTokenExtractor().extract(response);`
`123`	`123`	`}`
`124`	`124`	`});`
`125`	`125`	`}`
Original file line number	Diff line number	Diff line change
`@@ -34,7 +34,7 @@ public OAuth20Service(DefaultApi20 api, OAuthConfig config) {`
`34`	`34`
`35`	`35`	`//sync version, protected to facilitate mocking`
`36`	`36`	`protected OAuth2AccessToken sendAccessTokenRequestSync(OAuthRequest request) throws IOException {`
`37`		`- return api.getAccessTokenExtractor().extract(request.send().getBody());`
	`37`	`+ return api.getAccessTokenExtractor().extract(request.send());`
`38`	`38`	`}`
`39`	`39`
`40`	`40`	`//async version, protected to facilitate mocking`
`@@ -44,7 +44,7 @@ protected Future<OAuth2AccessToken> sendAccessTokenRequestAsync(OAuthRequestAsyn`
`44`	`44`	`return request.sendAsync(callback, new OAuthRequestAsync.ResponseConverter<OAuth2AccessToken>() {`
`45`	`45`	`@Override`
`46`	`46`	`public OAuth2AccessToken convert(Response response) throws IOException {`
`47`		`- return getApi().getAccessTokenExtractor().extract(response.getBody());`
	`47`	`+ return getApi().getAccessTokenExtractor().extract(response);`
`48`	`48`	`}`
`49`	`49`	`});`
`50`	`50`	`}`