Source Code of com.cloudbees.api.TokenGenerator

package com.cloudbees.api;

import com.cloudbees.api.cr.Credential;
import com.cloudbees.api.oauth.OauthClient;
import com.cloudbees.api.oauth.OauthClientException;
import com.cloudbees.api.oauth.OauthToken;
import com.cloudbees.api.oauth.TokenRequest;
import com.google.common.cache.CacheBuilder;

import java.io.IOException;
import java.net.HttpURLConnection;
import java.util.Arrays;
import java.util.Collection;
import java.util.logging.Logger;

import static java.util.logging.Level.FINE;

/**
 * Base interface for various token generators.
 *
 * @author Kohsuke Kawaguchi
 */
public abstract class TokenGenerator {
    /**
     * Creates a OAuth token for the current user (used to create {@link BeesClient})
     *
     * @return OauthToken. always non-null if there was error such as invalid credentials
     * @throws OauthClientException if there is any error during token validation
     */
    public abstract OauthToken createToken(TokenRequest tokenRequest) throws OauthClientException;

    /**
     * Creates a {@link Credential} that will authenticate requests by creating a token according to
     * the argument given.
     *
     * <p>
     * This method works like {@code createToken(r).asCredential()}, in that it authenticates
     * requests by a token. The key difference is that the token generation gets deferred until
     * the request is actually made, and the {@link #createToken(TokenRequest)} gets called
     * every time the authentication is necessary.
     *
     * <p>
     * This is useful if you intend to use {@link Credential} for longer than the expiration of
     * access token (which is 1 hour as of this writing). It is strongly advised that you do
     * this with a cached {@link TokenGenerator}, if you are making requests frequently. Doing
     * so will avoid the repeated REST calls to GC.
     *
     * @param r
     *      The returned {@link Credential} object will hold the reference to this {@link TokenRequest}
     *      in order to create tokens at a later point. Therefore once you pass a {@link TokenRequest}
     *      to this method, do not change it.
     */
    public Credential asCredential(final TokenRequest r) {
        return new Credential() {
            @Override
            public void authorizeRequest(HttpURLConnection con) throws IOException {
                try {
                    createToken(r).asCredential().authorizeRequest(con);
                } catch (OauthClientException e) {
                    throw (IOException)new IOException("Failed to authenticate the request").initCause(e);
                }
            }
        };
    }

    /**
     * OAuth client application can use this method to create an OAuth token with arbitrary scopes
     * that belongs to the user who registered the application.
     *
     * The created token will be tied only to the account that the OAuth client application is registered with,
     * even if the user who registered it may have access to other accounts.
     *
     * <p>
     * For this method to work, {@link BeesClient} should be called with OAuth client ID and secret.
     *
     * @see <a href="http://wiki.cloudbees.com/bin/view/RUN/OAuth#HServerApplication">Wiki</a>
     *
     * @return never null. In case of a problem, an exception will be thrown.
     */
    public abstract OauthToken createOAuthClientToken(Collection<String> scopes) throws OauthClientException;

    /**
     * Overloaded version of {@link #createOAuthClientToken(Collection)}
     */
    public final OauthToken createOAuthClientToken(String... scopes) throws OauthClientException {
        return createOAuthClientToken(Arrays.asList(scopes));
    }

    /**
     * Wraps this {@link CachedTokenGenerator} by adding caching.
     */
    public TokenGenerator withCache(CacheBuilder<Object,Object> builder) {
        return new CachedTokenGenerator(builder,this);
    }

    /**
     * Wraps this {@link CachedTokenGenerator} by adding some reasonable default caching behaviour.
     */
    public TokenGenerator withCache() {
        return withCache(CacheBuilder.newBuilder().maximumSize(65536));
    }

    /**
     * Wraps the {@link OauthClient} into {@link TokenValidator} without any decoration.
     *
     * The resulting validator does no caching.
     */
    public static TokenGenerator from(final OauthClient client) {
        return new TokenGenerator() {
            @Override
            public OauthToken createToken(TokenRequest tokenRequest) throws OauthClientException {
                if (LOGGER.isLoggable(FINE)) {
                    LOGGER.log(FINE, "Creating a token: "+tokenRequest);
                }
                return client.createToken(tokenRequest);
            }

            @Override
            public OauthToken createOAuthClientToken(Collection<String> scopes) throws OauthClientException {
                if (LOGGER.isLoggable(FINE)) {
                    LOGGER.log(FINE, "Creating an OAuth client token: "+scopes);
                }
                return client.createOAuthClientToken(scopes);
            }
        };
    }

    public static TokenGenerator from(BeesClient bees) {
        return from(bees.getOauthClient());
    }

    private static final Logger LOGGER = Logger.getLogger(TokenGenerator.class.getName());
}