Examples of com.nimbusds.oauth2.sdk.ResponseType

• com.nimbusds.oauth2.sdk.ResponseType
  Authorisation response type. Can be single-valued or multiple-valued.

  The following helper methods can be used to find out the OAuth 2.0 protocol flow that a particular response type implies:

  • {@link #impliesImplicitFlow}
  • {@link #impliesCodeFlow}

  Example response type implying an authorisation code flow:

   ResponseType() rt = new ResponseType(); rt.add(ResponseType.Value.CODE); 

  Example response type from OpenID Connect specifying an ID token and an access token (implies implicit flow):

   ResponseType() rt = new ResponseType(); rt.add(OIDCResponseTypeValue.ID_TOKEN); rt.add(ResponseType.Value.TOKEN); 

  Related specifications:

  • OAuth 2.0 (RFC 6749), sections 3.1.1 and 4.1.1.
  • OAuth 2.0 Multiple Response Type Encoding Practices.

  public void testResolveNone()
    throws Exception {

    AuthenticationRequest authRequest = new AuthenticationRequest(
      new URI("https://c2id.com/login"),
      new ResponseType("code"),
      Scope.parse("openid profile"),
      new ClientID("abc"),
      new URI("https://example.com/in"),
      new State(),
      new Nonce());

    List<ACR> acrValues = new ArrayList<>();
    acrValues.add(new ACR("1"));
    acrValues.add(new ACR("2"));

    AuthenticationRequest authRequest = new AuthenticationRequest.Builder(
      new ResponseType("code"),
      new Scope("openid", "profile"),
      new ClientID("123"),
      new URI("https://example.com/in")).
      acrValues(acrValues).
      build();

    essentialACRs.add("A");
    essentialACRs.add("B");
    claims.addIDTokenClaim("acr", ClaimRequirement.ESSENTIAL, null, essentialACRs);

    AuthenticationRequest authRequest = new AuthenticationRequest.Builder(
      new ResponseType("code"),
      new Scope("openid", "profile"),
      new ClientID("123"),
      new URI("https://example.com/in")).
      claims(claims).
      build();

    essentialACRs.add("A");
    essentialACRs.add("B");
    claims.addIDTokenClaim("acr", ClaimRequirement.VOLUNTARY, null, essentialACRs);

    AuthenticationRequest authRequest = new AuthenticationRequest.Builder(
      new ResponseType("code"),
      new Scope("openid", "profile"),
      new ClientID("123"),
      new URI("https://example.com/in")).
      claims(claims).
      build();

    essentialACRs.add("A");
    essentialACRs.add("B");
    claims.addIDTokenClaim("acr", ClaimRequirement.ESSENTIAL, null, essentialACRs);

    AuthenticationRequest authRequest = new AuthenticationRequest.Builder(
      new ResponseType("code"),
      new Scope("openid", "profile"),
      new ClientID("123"),
      new URI("https://example.com/in")).
      acrValues(acrValues).
      claims(claims).

public class OIDCResponseTypeValidatorTest extends TestCase {


  public void testPass() {

    ResponseType rt = new ResponseType();
    rt.add(ResponseType.Value.CODE);

    OIDCResponseTypeValidator.validate(rt);
  }

  }


  public void testEmptyResponseType() {

    ResponseType rt = new ResponseType();

    try {
      OIDCResponseTypeValidator.validate(rt);

      fail("Failed to raise exception");

  }


  public void testTokenOnlyResponseType() {

    ResponseType rt = new ResponseType();
    rt.add(ResponseType.Value.TOKEN);

    try {
      OIDCResponseTypeValidator.validate(rt);

      fail("Failed to raise exception");

  }


  public void testUnsupportedResponseType() {

    ResponseType rt = new ResponseType();
    rt.add(new ResponseType.Value("abc"));

    try {
      OIDCResponseTypeValidator.validate(rt);

      fail("Failed to raise exception");

  }


  public void testCodeTokenIDTokenResponseType() {

    ResponseType rt = new ResponseType();
    rt.add(ResponseType.Value.CODE);
    rt.add(ResponseType.Value.TOKEN);
    rt.add(OIDCResponseTypeValue.ID_TOKEN);

    OIDCResponseTypeValidator.validate(rt);
  }