@Test(expected = InvalidRequestException.class) public void testApproveWithModifiedResponseTypes() { AuthorizationRequest authorizationRequest = getAuthorizationRequest( "foo", "http://anywhere.com", "state-1234", "read", Collections.singleton("code")); model.put("authorizationRequest", authorizationRequest); model.put("org.springframework.security.oauth2.provider.endpoint.AuthorizationEndpoint.ORIGINAL_AUTHORIZATION_REQUEST", uaaAuthorizationEndpoint.unmodifiableMap(authorizationRequest)); authorizationRequest.setResponseTypes(Collections.singleton("implicit")); // Modify authorization request Map<String, String> approvalParameters = new HashMap<>(); approvalParameters.put("user_oauth_approval", "true"); uaaAuthorizationEndpoint.approveOrDeny(approvalParameters, model, sessionStatus, principal); }
AuthorizationRequest authorizationRequest = new AuthorizationRequest(); authorizationRequest.setRedirectUri("http://example.com/somepath"); authorizationRequest.setResponseTypes(new HashSet<String>() {
logger.info("Mismatch between request object and regular parameter for response_type, using request object"); request.setResponseTypes(responseTypes);
@Test public void testCreateAccessTokenAuthcodeGrant() { AuthorizationRequest authorizationRequest = new AuthorizationRequest(CLIENT_ID, tokenSupport.requestedAuthScopes); authorizationRequest.setResourceIds(new HashSet<>(tokenSupport.resourceIds)); Map<String, String> azParameters = new HashMap<>(authorizationRequest.getRequestParameters()); azParameters.put(GRANT_TYPE, GRANT_TYPE_AUTHORIZATION_CODE); authorizationRequest.setRequestParameters(azParameters); authorizationRequest.setResponseTypes(Sets.newHashSet("id_token")); Authentication userAuthentication = tokenSupport.defaultUserAuthentication; OAuth2Authentication authentication = new OAuth2Authentication(authorizationRequest.createOAuth2Request(), userAuthentication); Approval approval = new Approval() .setUserId(tokenSupport.userId) .setClientId(CLIENT_ID) .setScope(OPENID) .setExpiresAt(new Date()) .setStatus(ApprovalStatus.APPROVED); tokenSupport.approvalStore.addApproval(approval, IdentityZone.getUaa().getId()); OAuth2AccessToken accessToken = tokenServices.createAccessToken(authentication); CompositeToken castAccessToken = (CompositeToken) accessToken; assertThat(castAccessToken.getIdTokenValue(), is(notNullValue())); validateAccessAndRefreshToken(accessToken); }
authorizationRequest.setRedirectUri(TEST_REDIRECT_URI); authorizationRequest.setScope(new ArrayList<>(Arrays.asList("openid"))); authorizationRequest.setResponseTypes(new TreeSet<>(Arrays.asList("code", "id_token"))); authorizationRequest.setState(state); session.setAttribute("authorizationRequest", authorizationRequest);
authorizationRequest.setRedirectUri(TEST_REDIRECT_URI); authorizationRequest.setScope(new ArrayList<>(Arrays.asList("openid"))); authorizationRequest.setResponseTypes(new TreeSet<>(Arrays.asList("code", "id_token"))); authorizationRequest.setState(state);
logger.info("Mismatch between request object and regular parameter for response_type, using request object"); request.setResponseTypes(responseTypes);