/** * Validate the given {@code message} as 3 Legged OAuth and get the {@link OAuthConsumer} * * @param message the {@link OAuthMessage} to validate * @return the {@link OAuthConsumer} * @throws Exception */ private OAuthConsumer validate3LOAuthMessage(OAuthMessage message, ServiceProviderToken token) throws Exception { if (token == null || !token.isAccessToken() || !token.getConsumer().getKey().equals(message.getConsumerKey())) { throw new OAuthProblemException(TOKEN_REJECTED); } if (token.hasExpired(clock)) { throw new OAuthProblemException(TOKEN_EXPIRED); } return ConsumerUtils.toOAuthConsumer(token); }
if (!token.isAccessToken()) { if (LOG.isDebugEnabled()) { LOG.debug(String.format("3-Legged-OAuth token rejected. Service Provider Token, for Consumer provided token [%s], is NOT an access token.", tokenStr));
public ServiceProviderToken getTokenForAuthorization(HttpServletRequest request) throws OAuthProblemException, IOException { OAuthMessage requestMessage = OAuthServlet.getMessage(request, null); requestMessage.requireParameters(OAUTH_TOKEN); ServiceProviderToken token; try { token = store.get(requestMessage.getToken()); } catch (InvalidTokenException e) { throw new OAuthProblemException(TOKEN_REJECTED); } if (token == null || token.isAccessToken()) { throw new OAuthProblemException(TOKEN_REJECTED); } if (token.getAuthorization() == Authorization.AUTHORIZED || token.getAuthorization() == Authorization.DENIED) { throw new OAuthProblemException(TOKEN_USED); } if (token.hasExpired(clock)) { throw new OAuthProblemException(TOKEN_EXPIRED); } return token; }
requestMessage.requireParameters(OAuth.OAUTH_TOKEN); token = ServiceProviderTokenStore.getStore().getToken(requestMessage.getToken()); if (token == null || token.isAccessToken()) { throw new OAuthProblemException(OAuth.Problems.TOKEN_REJECTED); } else if (token.getAuthorization() == ServiceProviderToken.Authorization.AUTHORIZED || token.getAuthorization() ==