public String getViewerId() { return delegate.getViewerId(); }
public String getViewerId() { return delegate.getViewerId(); }
public String getValue(SecurityToken token) { return token.getViewerId(); } public void loadFromMap(AbstractSecurityToken token, Map<String, String> map) {
public String getValue(SecurityToken token) { return token.getViewerId(); } public void loadFromMap(AbstractSecurityToken token, Map<String, String> map) {
public String getUserId(SecurityToken token) { switch(type) { case owner: return token.getOwnerId(); case viewer: case me: return token.getViewerId(); case userId: return userId; default: throw new IllegalStateException("The type field is not a valid enum: " + type); } }
public Set<UserId> getUsers() { List<String> ids = getListParameter(USER_ID); if (ids.isEmpty()) { Preconditions.checkArgument(token.getViewerId() != null, "No userId provided and viewer not available"); // Assume @me return ImmutableSet.of(UserId.fromJson("@me")); } ImmutableSet.Builder<UserId> userIds = ImmutableSet.builder(); for (String id : ids) { userIds.add(UserId.fromJson(id)); } return userIds.build(); }
public Set<UserId> getUsers() { List<String> ids = getListParameter(USER_ID); if (ids.isEmpty()) { Preconditions.checkArgument(token.getViewerId() != null, "No userId provided and viewer not available"); // Assume @me return ImmutableSet.of(UserId.fromJson("@me")); } ImmutableSet.Builder<UserId> userIds = ImmutableSet.builder(); for (String id : ids) { userIds.add(UserId.fromJson(id)); } return userIds.build(); }
protected static String getViewerId(HttpRequest request) { if (request.getAuthType() != AuthType.NONE && request.getOAuthArguments().getSignViewer()) { Preconditions.checkState(request.getSecurityToken() != null, "No Security Token set for request"); String viewerId = request.getSecurityToken().getViewerId(); return Objects.firstNonNull(viewerId, ""); } // Requests that don't use authentication can share the result. return null; }
protected static String getViewerId(HttpRequest request) { if (request.getAuthType() != AuthType.NONE && request.getOAuthArguments().getSignViewer()) { Preconditions.checkState(request.getSecurityToken() != null, "No Security Token set for request"); String viewerId = request.getSecurityToken().getViewerId(); return Objects.firstNonNull(viewerId, ""); } // Requests that don't use authentication can share the result. return null; }
protected static String getViewerId(HttpRequest request) { if (request.getAuthType() != AuthType.NONE && request.getAuthType() != AuthType.OAUTH2 && request.getOAuthArguments().getSignViewer()) { Preconditions.checkState(request.getSecurityToken() != null, "No Security Token set for request"); String viewerId = request.getSecurityToken().getViewerId(); return Objects.firstNonNull(viewerId, ""); } // Requests that don't use authentication can share the result. return null; }
protected static String getTokenOwner(HttpRequest request) { SecurityToken st = request.getSecurityToken(); if (request.getAuthType() != AuthType.NONE && st.getOwnerId() != null && st.getOwnerId().equals(st.getViewerId()) && request.getOAuthArguments().mayUseToken()) { return st.getOwnerId(); } // Requests that don't use authentication can share the result. return null; }
protected static String getTokenOwner(HttpRequest request) { SecurityToken st = request.getSecurityToken(); if (request.getAuthType() != AuthType.NONE && st.getOwnerId() != null && st.getOwnerId().equals(st.getViewerId()) && request.getOAuthArguments().mayUseToken()) { return st.getOwnerId(); } // Requests that don't use authentication can share the result. return null; }
protected static String getTokenOwner(HttpRequest request) { SecurityToken st = request.getSecurityToken(); if (request.getAuthType() != AuthType.NONE && request.getAuthType() != AuthType.OAUTH2 && st.getOwnerId() != null && st.getOwnerId().equals(st.getViewerId()) && request.getOAuthArguments().mayUseToken()) { return st.getOwnerId(); } // Requests that don't use authentication can share the result. return null; }
private BasicOAuthStoreTokenIndex makeBasicOAuthStoreTokenIndex( SecurityToken securityToken, String serviceName, String tokenName) { BasicOAuthStoreTokenIndex tokenKey = new BasicOAuthStoreTokenIndex(); tokenKey.setGadgetUri(securityToken.getAppUrl()); tokenKey.setModuleId(securityToken.getModuleId()); tokenKey.setServiceName(serviceName); tokenKey.setTokenName(tokenName); tokenKey.setUserId(securityToken.getViewerId()); return tokenKey; }
private BasicOAuthStoreTokenIndex makeBasicOAuthStoreTokenIndex( SecurityToken securityToken, String serviceName, String tokenName) { BasicOAuthStoreTokenIndex tokenKey = new BasicOAuthStoreTokenIndex(); tokenKey.setGadgetUri(securityToken.getAppUrl()); tokenKey.setModuleId(securityToken.getModuleId()); tokenKey.setServiceName(serviceName); tokenKey.setTokenName(tokenName); tokenKey.setUserId(securityToken.getViewerId()); return tokenKey; }
private BasicOAuthStoreTokenIndex makeBasicOAuthStoreTokenIndex( SecurityToken securityToken, String serviceName, String tokenName) { BasicOAuthStoreTokenIndex tokenKey = new BasicOAuthStoreTokenIndex(); tokenKey.setGadgetUri(securityToken.getAppUrl()); tokenKey.setModuleId(securityToken.getModuleId()); tokenKey.setServiceName(serviceName); tokenKey.setTokenName(tokenName); tokenKey.setUserId(securityToken.getViewerId()); return tokenKey; }
public static BlobCrypterSecurityToken fromToken(SecurityToken token) { BlobCrypterSecurityToken interpretedToken = new BlobCrypterSecurityToken(token.getContainer(), token.getDomain(), token.getActiveUrl(), null); interpretedToken .setAppId(token.getAppId()) .setAppUrl(token.getAppUrl()) .setExpiresAt(token.getExpiresAt()) .setModuleId(token.getModuleId()) .setOwnerId(token.getOwnerId()) .setTrustedJson(token.getTrustedJson()) .setViewerId(token.getViewerId()); return interpretedToken; } }
public static BlobCrypterSecurityToken fromToken(SecurityToken token) { BlobCrypterSecurityToken interpretedToken = new BlobCrypterSecurityToken(token.getContainer(), token.getDomain(), token.getActiveUrl(), null); interpretedToken .setAppId(token.getAppId()) .setAppUrl(token.getAppUrl()) .setExpiresAt(token.getExpiresAt()) .setModuleId(token.getModuleId()) .setOwnerId(token.getOwnerId()) .setTrustedJson(token.getTrustedJson()) .setViewerId(token.getViewerId()); return interpretedToken; } }
@Test public void testBasicDecoder() throws Exception { DefaultSecurityTokenCodec codec = new DefaultSecurityTokenCodec( new FakeContainerConfig("insecure")); String token = "o:v:app:domain:appurl:12345:container"; Map<String, String> parameters = Collections.singletonMap( SecurityTokenCodec.SECURITY_TOKEN_NAME, token); SecurityToken st = codec.createToken(parameters); assertEquals("o", st.getOwnerId()); assertEquals("v", st.getViewerId()); assertEquals("appurl", st.getAppUrl()); assertEquals("container", st.getContainer()); }
@Test public void testBasicDecoder() throws Exception { DefaultSecurityTokenCodec codec = new DefaultSecurityTokenCodec( new FakeContainerConfig("insecure")); String token = "o:v:app:domain:appurl:12345:container"; Map<String, String> parameters = Collections.singletonMap( SecurityTokenCodec.SECURITY_TOKEN_NAME, token); SecurityToken st = codec.createToken(parameters); assertEquals("o", st.getOwnerId()); assertEquals("v", st.getViewerId()); assertEquals("appurl", st.getAppUrl()); assertEquals("container", st.getContainer()); }