/* http-oauth - OAuth Extensions to jdk.httpserver Copyright (C) 2021 Ulrich Hilger This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details. You should have received a copy of the GNU Affero General Public License along with this program. If not, see . */ package de.uhilger.httpserver.oauth; import com.sun.net.httpserver.HttpContext; import com.sun.net.httpserver.HttpExchange; import de.uhilger.httpserver.base.HttpHelper; import static de.uhilger.httpserver.oauth.BearerLoginHandler.ATTR_AUTHENTICATOR; import java.io.IOException; /** * Einen abgelaufenen Token mit Hilfe eines Refresh Token erneuern * * Gemaess * https://www.oauth.com/oauth2-servers/making-authenticated-requests/refreshing-an-access-token/ * sieht die HTTP Anfrage zum Refresh wie folgt aus: * * POST /oauth/token HTTP/1.1 * Host: authorization-server.com * * grant_type=refresh_token * &refresh_token=xxxxxxxxxxx * &client_id=xxxxxxxxxx * &client_secret=xxxxxxxxxx * * @author Ulrich Hilger * @version 1, 08.06.2021 */ public class BearerRefreshHandler extends BearerLoginHandler { @Override public void handle(HttpExchange exchange) throws IOException { HttpHelper h = new HttpHelper(); String body = h.bodyLesen(exchange); String[] parts = body.split("&"); for(String part : parts) { String[] keyVals = part.split("="); if(keyVals[0].equalsIgnoreCase("refresh_token")) { HttpContext context = exchange.getHttpContext(); Object o = context.getAttributes().get(ATTR_AUTHENTICATOR); if (o instanceof BearerAuthenticator) { BearerAuthenticator auth = (BearerAuthenticator) o; LoginResponse response = auth.refresh(keyVals[1]); handleLoginResponse(exchange, response); } } } } }