Method: Google::Auth::WebUserAuthorizer.validate_callback_state

Defined in:: lib/googleauth/web_user_authorizer.rb

.validate_callback_state(state, request) ⇒ `Object`

Verifies the results of an authorization callback

Parameters:

state (Hash) —
Callback state
request (Rack::Request) —
Current request

Options Hash (state):

AUTH_CODE_KEY (String) —
The authorization code
ERROR_CODE_KEY (String) —
Error message if failed

Raises:

(Google::Auth::AuthorizationError) —
If the authorization code is missing, there's an error in the callback state, or the state token doesn't match

# File 'lib/googleauth/web_user_authorizer.rb', line 250

def self.validate_callback_state state, request
  if state[AUTH_CODE_KEY].nil?
    raise AuthorizationError.with_details(
      MISSING_AUTH_CODE_ERROR,
      credential_type_name: name,
      principal: principal
    )
  end

  if state[ERROR_CODE_KEY]
    raise AuthorizationError.with_details(
      format(AUTHORIZATION_ERROR, state[ERROR_CODE_KEY]),
      credential_type_name: name,
      principal: principal
    )
  elsif request.session[XSRF_KEY] != state[SESSION_ID_KEY]
    raise AuthorizationError.with_details(
      INVALID_STATE_TOKEN_ERROR,
      credential_type_name: name,
      principal: principal
    )
  end
end

Method: Google::Auth::WebUserAuthorizer.validate_callback_state

.validate_callback_state(state, request) ⇒ Object

.validate_callback_state(state, request) ⇒ `Object`