Refine search
discoveries = consumerManager.discover(identityUrl); DiscoveryInformation information = consumerManager.associate(discoveries); req.getSession().setAttribute(DISCOVERY_INFO_KEY, information); authReq = consumerManager.authenticate(information, returnToUrl, realm);
/** * Gets the {@link ConsumerManager} that was configured or defaults to using a * {@link ConsumerManager} with the default constructor. * @return the {@link ConsumerManager} to use */ private ConsumerManager getConsumerManager() { if (this.consumerManager != null) { return this.consumerManager; } return new ConsumerManager(); }
ParameterList openidResp = new ParameterList(request.getParameterMap()); verification = consumerManager.verify(receivingURL.toString(), openidResp, discovered); Identifier verified = verification.getVerifiedId(); return new OpenIDAuthenticationToken(OpenIDAuthenticationStatus.FAILURE, id == null ? "Unknown" : id.getIdentifier(), "Verification status message: [" + verification.getStatusMsg() + "]", Collections.<OpenIDAttribute> emptyList()); verification.getAuthResponse(), attributesToFetch);
@SuppressWarnings("deprecation") @Test public void beginConsumptionCreatesExpectedSessionData() throws Exception { ConsumerManager mgr = mock(ConsumerManager.class); AuthRequest authReq = mock(AuthRequest.class); DiscoveryInformation di = mock(DiscoveryInformation.class); when(mgr.authenticate(any(DiscoveryInformation.class), any(), any())) .thenReturn(authReq); when(mgr.associate(any())).thenReturn(di); OpenID4JavaConsumer consumer = new OpenID4JavaConsumer(mgr, new MockAttributesFactory()); MockHttpServletRequest request = new MockHttpServletRequest(); consumer.beginConsumption(request, "", "", ""); assertThat(request.getSession().getAttribute( "SPRING_SECURITY_OPEN_ID_ATTRIBUTES_FETCH_LIST")).isEqualTo(attributes); assertThat( request.getSession().getAttribute(DiscoveryInformation.class.getName())).isEqualTo(di); // Check with empty attribute fetch list consumer = new OpenID4JavaConsumer(mgr, new NullAxFetchListFactory()); request = new MockHttpServletRequest(); consumer.beginConsumption(request, "", "", ""); }
_associations.load(discovered.getOPEndpoint().toString()); associate(discovered, _maxAssocAttempts); assoc = _associations.load(discovered.getOPEndpoint().toString()); returnToUrl = insertConsumerNonce(discovered.getOPEndpoint().toString(), returnToUrl);
String openIdMode = authParams.getParameterValue("openid.mode"); if ((openIdMode != null) && openIdMode.equals("id_res")) AuthSuccess authResponse = AuthSuccess.createAuthSuccess(authParams); if ((authResponse != null) && authResponse.isVersion2() && (authResponse.getIdentity() != null) && (authResponse.getClaimed() != null)) String providerId = authResponse.getIdentity(); Identifier responseClaimedId = openIDStep2ConsumerManager.getDiscovery().parseIdentifier(authResponse.getClaimed(), true); String responseEndpoint = authResponse.getOpEndpoint(); if (discovered.isVersion2() && discovered.hasClaimedIdentifier() && discovered.getClaimedIdentifier().equals(responseClaimedId) && discovered.getOPEndpoint().equals(responseEndpoint)) List<SecureDiscoveryInformation> discoveredInfos = openIDStep2ConsumerManager.getDiscovery().discover(responseClaimedId); if ((version != null) && version.equals(DiscoveryInformation.OPENID2_OP) && discoveredInfo.isVersion2() && discoveredInfo.getOPEndpoint().equals(responseEndpoint)) if (openIDStep2ConsumerManager.getPrivateAssociationStore().load(discoveredInfo.getOPEndpoint().toString(), authResponse.getHandle()) != null) results.verification = openIDStep2ConsumerManager.verify(authRequestURL, authParams, secureDiscovered); if ((results.verification.getAuthResponse() instanceof AuthSuccess) && (results.verification.getVerifiedId() != null)) UrlIdentifier verifiedClaimedId = new UrlIdentifier(results.verification.getVerifiedId().getIdentifier(), true); secureVerification = secureDiscovered.getClaimedIdentifier().getIdentifier().equals(verifiedClaimedId.getIdentifier());
ConsumerManager consumerManager = new ConsumerManager(); InMemoryOpenIDCache.INSTANCE.putConsumerManager(sessionToken, consumerManager); List discoveries = consumerManager.discover(identifier); DiscoveryInformation discovered = consumerManager.associate(discoveries); memento.setOpEndpoint(discovered.getOPEndpoint().toString()); AuthRequest authReq = consumerManager.authenticate(discovered, returnToUrl);
ParameterList response = new ParameterList(httpReq.getParameterMap()); VerificationResult verification = manager.verify(receivingURL.toString(), response, discovered); Identifier verified = verification.getVerifiedId(); if (verified != null) { AuthSuccess authSuccess = (AuthSuccess) verification.getAuthResponse(); if (authSuccess.hasExtension(AxMessage.OPENID_NS_AX)) { FetchResponse fetchResp = (FetchResponse) authSuccess.getExtension(AxMessage.OPENID_NS_AX);
lifeCycle = (OpenIDLifecycle) adapter; ParameterList responselist = new ParameterList(parameterMap); VerificationResult verification = this.consumerManager.verify(receivedURL, responselist, discovered); Identifier verified = verification.getVerifiedId(); if (verified != null) { AuthSuccess authSuccess = (AuthSuccess) verification.getAuthResponse(); new OpenIDLifecycleEvent(TYPE.SESSION, OP.ADD, CONST.OPENID.get(), authSuccess.getIdentity()), new OpenIDLifecycleEvent(TYPE.SESSION, OP.ADD, CONST.OPENID_CLAIMED.get(), authSuccess.getClaimed()),
ParameterList authResponseParams = new ParameterList(request.getParameterMap()); VerificationResult verificationResult = consumerManager.verify(returnToURL, authResponseParams, discovered); Identifier verified = verificationResult.getVerifiedId(); AuthSuccess authSuccess = (AuthSuccess) verificationResult.getAuthResponse(); if (authSuccess.hasExtension(AxMessage.OPENID_NS_AX)) { String[] attrArray = attributesRequestor.getRequestedAttributes(authSuccess.getIdentity()); FetchResponse fetchResp; try { fetchResp = (FetchResponse) authSuccess.getExtension(AxMessage.OPENID_NS_AX); } catch (MessageException e) {
public SampleConsumer(String returnToUrl) throws ConsumerException { // configure the return_to URL where your application will receive // the authentication responses from the OpenID provider this.returnToUrl = returnToUrl; // instantiate a ConsumerManager object manager = new ConsumerManager(); manager.setAssociations(new InMemoryConsumerAssociationStore()); manager.setNonceVerifier(new InMemoryNonceVerifier(5000)); // for a working demo, not enforcing RP realm discovery // since this new feature is not deployed manager.getRealmVerifier().setEnforceRpId(false); }
@SuppressWarnings("serial") @Test public void successfulVerificationReturnsExpectedAuthentication() throws Exception { ConsumerManager mgr = mock(ConsumerManager.class); OpenID4JavaConsumer consumer = new OpenID4JavaConsumer(mgr, new NullAxFetchListFactory()); VerificationResult vr = mock(VerificationResult.class); DiscoveryInformation di = mock(DiscoveryInformation.class); Identifier id = new Identifier() { public String getIdentifier() { return "id"; } }; Message msg = mock(Message.class); when( mgr.verify(any(), any(ParameterList.class), any(DiscoveryInformation.class))).thenReturn(vr); when(vr.getVerifiedId()).thenReturn(id); when(vr.getAuthResponse()).thenReturn(msg); MockHttpServletRequest request = new MockHttpServletRequest(); request.getSession().setAttribute(DiscoveryInformation.class.getName(), di); request.getSession().setAttribute( "SPRING_SECURITY_OPEN_ID_ATTRIBUTES_FETCH_LIST", attributes); OpenIDAuthenticationToken auth = consumer.endConsumption(request); assertThat(auth.getStatus()).isEqualTo(OpenIDAuthenticationStatus.SUCCESS); }
public OpenIDManager(OpenIDRequest theReq) { this.request = theReq; consumerManager = new ConsumerManager(); consumerManager.setAssociations(new InMemoryConsumerAssociationStore()); consumerManager.setNonceVerifier(new InMemoryNonceVerifier(5000)); userString = request.getURL(); }
@Test public void messageOrConsumerAuthenticationExceptionRaisesOpenIDException() throws Exception { ConsumerManager mgr = mock(ConsumerManager.class); OpenID4JavaConsumer consumer = new OpenID4JavaConsumer(mgr, new NullAxFetchListFactory()); when(mgr.authenticate(ArgumentMatchers.<DiscoveryInformation>any(), any(), any())) .thenThrow(new MessageException("msg"), new ConsumerException("msg")); try { consumer.beginConsumption(new MockHttpServletRequest(), "", "", ""); fail("OpenIDConsumerException was not thrown"); } catch (OpenIDConsumerException expected) { } try { consumer.beginConsumption(new MockHttpServletRequest(), "", "", ""); fail("OpenIDConsumerException was not thrown"); } catch (OpenIDConsumerException expected) { } }
new ParameterList(httpReq.getParameterMap()); VerificationResult verification = manager.verify(receivingURL.toString(), response, discovered); Identifier verified = verification.getVerifiedId(); if (verified != null) {
@Test(expected = OpenIDConsumerException.class) public void discoveryExceptionRaisesOpenIDException() throws Exception { ConsumerManager mgr = mock(ConsumerManager.class); OpenID4JavaConsumer consumer = new OpenID4JavaConsumer(mgr, new NullAxFetchListFactory()); when(mgr.discover(any())).thenThrow(new DiscoveryException("msg")); consumer.beginConsumption(new MockHttpServletRequest(), "", "", ""); }
private DiscoveryInformation performDiscovery(String openId) { try { ConsumerManager consumerManager = getConsumerManager(); List<?> discoveries = consumerManager.discover(openId); return consumerManager.associate(discoveries); } catch (DiscoveryException e) { throw new WicketRuntimeException("discovery failed", e); } }
import java.util.List; import org.openid4java.consumer.ConsumerManager; import org.openid4java.discovery.DiscoveryException; import org.openid4java.discovery.DiscoveryInformation; public class XRDSConsumer { public static void main(String[] args) { ConsumerManager manager = new ConsumerManager(); try { //get XRDS from Google discovery url List<DiscoveryInformation> discoveries = manager.discover("https://www.google.com/accounts/o8/id"); for(DiscoveryInformation info: discoveries) { //will get something like: https://www.google.com/accounts/o8/ud System.out.println(info.getOPEndpoint()); } } catch (DiscoveryException e) { e.printStackTrace(); } } }
results.verification = openIDConsumerManager.verify(authRequestURL, authParams, discovered); results.verifiedIdentifier = results.verification.getVerifiedId();