Package org.openmhealth.reference.domain

Source Code of org.openmhealth.reference.domain.AuthorizationCode

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
package org.openmhealth.reference.domain;

import java.util.Collections;
import java.util.HashSet;
import java.util.Set;
import java.util.UUID;

import org.joda.time.DateTime;
import org.openmhealth.reference.data.ThirdPartyBin;
import org.openmhealth.reference.exception.OmhException;

import com.fasterxml.jackson.annotation.JsonCreator;
import com.fasterxml.jackson.annotation.JsonProperty;

/**
* <p>
* The authorization code generated for a third-party to give to a user when
* attempting to gain authorization to some set of data.
* </p>
*
* <p>
* This class is immutable.
* </p>
*
* @author John Jenkins
*/
public class AuthorizationCode implements OmhObject {
  /**
   * The version of this class used for serialization purposes.
   */
  private static final long serialVersionUID = 1L;
 
  /**
   * The default number of milliseconds that a token should live.
   */
  public static final long DEFAULT_CODE_LIFETIME_MILLIS = 1000 * 60 * 5;

  /**
   * The JSON key for the identifier of a third-party that this token
   * references.
   */
  public static final String JSON_KEY_THIRD_PARTY = "third_party";

  /**
   * The JSON key for the code.
   */
  public static final String JSON_KEY_CODE = "code";
 
  /**
   * The JSON key for the time the token was created.
   */
  public static final String JSON_KEY_CREATION_TIME = "creation_time";
  /**
   * The JSON key for the time the token expires.
   */
  public static final String JSON_KEY_EXPIRATION_TIME = "expiration_time";
  /**
   * The JSON key for the list of scopes to which this key applies.
   */
  public static final String JSON_KEY_SCOPES = "scopes";
  /**
   * The JSON key for the state that was given to the server when the code
   * was created.
   */
  public static final String JSON_KEY_STATE = "state";
 
  /**
   * The unique identifier for the third-party to which this token applies.
   */
  @JsonProperty(JSON_KEY_THIRD_PARTY)
  private final String thirdParty;
  /**
   * The code value.
   */
  @JsonProperty(JSON_KEY_CODE)
  private final String code;
  /**
   * The number of milliseconds since the epoch at which time this token was
   * created.
   */
  @JsonProperty(JSON_KEY_CREATION_TIME)
  private final long creationTime;
  /**
   * The number of milliseconds since the epoch at which time this token
   * expires.
   */
  @JsonProperty(JSON_KEY_EXPIRATION_TIME)
  private final long expirationTime;
  /**
   * The set of scopes to which this token applies.
   */
  @JsonProperty(JSON_KEY_SCOPES)
  private final Set<String> scopes = new HashSet<String>();
  /**
   * The state given by the third-party when this code was created.
   */
  @JsonProperty(JSON_KEY_STATE)
  private final String state;

  /**
   * Creates a new, valid authorization code.
   *
   * @param thirdParty
   *        The third-party to which this token will apply.
   *
   * @param scopes
   *        The set of scopes, e.g. schema IDs, that apply to this
   *        authorization token.
   *
   * @throws OmhException
   *         A parameter is invalid.
   */
  public AuthorizationCode(
    final ThirdParty thirdParty,
    final Set<String> scopes,
    final String state)
    throws OmhException {
   
    // Validate the parameters.
    if(thirdParty == null) {
      throw new OmhException("The third-party is null.");
    }
    else if(scopes == null) {
      throw new OmhException("The scopes is null.");
    }
    else if(scopes.size() == 0) {
      throw
        new OmhException(
          "An authorization token cannot be created without any " +
            "scope.");
    }
   
    // Store the relevant information.
    this.thirdParty = thirdParty.getId();
    this.code = UUID.randomUUID().toString();
    this.creationTime = DateTime.now().getMillis();
    this.expirationTime =
      this.creationTime + DEFAULT_CODE_LIFETIME_MILLIS;
    this.scopes.addAll(scopes);
    this.state = state;
  }
 
  /**
   * Creates an authorization code presumably from an existing one since all
   * of the fields are given. To create a new code, it is recommended that
   * {@link #AuthorizationCode(ThirdParty, Set, String)} be used.
   *
   * @param thirdParty
   *        The unique identifier for the third-party to which this token
   *        pertains.
   *
   * @param code
   *        The code value for this authorization token.
   *
   * @param creationTime
   *        The number of milliseconds since the epoch at which time this
   *        token was created.
   *
   * @param expirationTime
   *        The number of milliseconds since the epoch at which time this
   *        token expires.
   *
   * @param scopes
   *        The set of scopes for this token.
   *
   * @param state
   *        The state given by the third-party when this code was created.
   *
   * @throws OmhException
   *         A parameter is invalid.
   *
   * @see #AuthorizationCode(ThirdParty, Set, String)
   */
  @JsonCreator
  public AuthorizationCode(
    @JsonProperty(JSON_KEY_THIRD_PARTY) final String thirdParty,
    @JsonProperty(JSON_KEY_CODE) final String code,
    @JsonProperty(JSON_KEY_CREATION_TIME) final long creationTime,
    @JsonProperty(JSON_KEY_EXPIRATION_TIME) final long expirationTime,
    @JsonProperty(JSON_KEY_SCOPES) final Set<String> scopes,
    @JsonProperty(JSON_KEY_STATE) final String state)
    throws OmhException {

    // Validate the third-party.
    if(thirdParty == null) {
      throw new OmhException("The third-party is null.");
    }
    else {
      this.thirdParty = thirdParty;
    }
   
    // Validate the code.
    if(code == null) {
      throw new OmhException("The code is null.");
    }
    else {
      this.code = code;
    }
   
    // Validate the creation time.
    DateTime creationTimeDateTime = new DateTime(creationTime);
    if(creationTimeDateTime.isAfterNow()) {
      throw
        new OmhException(
          "The token's creation time cannot be in the future.");
    }
    else {
      this.creationTime = creationTime;
    }
   
    // Validate the expiration time.
    if(creationTimeDateTime.isAfter(expirationTime)) {
      throw
        new OmhException(
          "The token's expiration time cannot be before its " +
            "creation time.");
    }
    else {
      this.expirationTime = expirationTime;
    }
   
    // Validate the scopes.
    if(scopes == null) {
      throw new OmhException("The scopes set is null.");
    }
    else if(scopes.size() == 0) {
      throw
        new OmhException(
          "An authorization token cannot be created without any " +
            "scope.");
    }
    else {
      this.scopes.addAll(scopes);
    }
   
    // The state can be anything, so we don't validate it.
    this.state = state;
  }
 
  /**
   * Returns the unique identifier for the third-party entity.
   *
   * @return The unique identifier for the third-party entity.
   */
  public String getThirdPartyId() {
    return thirdParty;
  }
 
  /**
   * Returns the third-party associated with this authorization code.
   *
   * @return The third-party associated with this authorization code.
   */
  public ThirdParty getThirdParty() {
    return ThirdPartyBin.getInstance().getThirdParty(thirdParty);
  }

  /**
   * Returns the code.
   *
   * @return The code.
   */
  public String getCode() {
    return code;
  }
 
  /**
   * Returns the time at which the code was created.
   *
   * @return The time, in milliseconds since the epoch, when this code was
   *        created.
   */
  public long getCreationTime() {
    return creationTime;
  }
 
  /**
   * Returns the time at which the code expires.
   *
   * @return The time, in milliseconds since the epoch, when this code
   *         expires.
   */
  public long getExpirationTime() {
    return expirationTime;
  }
 
  /**
   * Returns the set of scopes.
   *
   * @return The, unmodifiable, set of scopes.
   */
  public Set<String> getScopes() {
    return Collections.unmodifiableSet(scopes);
  }
 
  /**
   * Returns the state given by the third-party when this request was made.
   *
   * @return The state that is being passed around while the authorization is
   *         being verified.
   */
  public String getState() {
    return state;
  }
}
TOP

Related Classes of org.openmhealth.reference.domain.AuthorizationCode

  • org.joda.time.DateTime
  • org.openmhealth.reference.data.sql.SqlAuthorizationCodeBin
  • org.openmhealth.reference.servlet.Version1
  • org.openmhealth.reference.exception.OmhException
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.