Class: Warden::OAuth2::Strategies::Client

Inherits:

Base

• Object
• Strategies::Base
• Base
• Warden::OAuth2::Strategies::Client

Defined in:

lib/warden/oauth2/strategies/client.rb

Direct Known Subclasses

ClientCredentials, RefreshToken, ResourceOwnerPasswordCredentials

Instance Attribute Summary

• #client ⇒ Object readonly

  Returns the value of attribute client.

• #client_id ⇒ Object readonly

  Returns the value of attribute client_id.

• #client_secret ⇒ Object readonly

  Returns the value of attribute client_secret.

Attributes inherited from Base

#error_description

Instance Method Summary

• #authenticate! ⇒ Object
• #client_authenticated ⇒ Object
• #client_from_http_basic ⇒ Object
• #client_from_request_params ⇒ Object
• #error_status ⇒ Object
• #model ⇒ Object
• #public_client? ⇒ Boolean

Methods inherited from Base

#store?

Instance Attribute Details

#client ⇒ Object (readonly)

Returns the value of attribute client.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def client
  @client
end

#client_id ⇒ Object (readonly)

Returns the value of attribute client_id.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def client_id
  @client_id
end

#client_secret ⇒ Object (readonly)

Returns the value of attribute client_secret.

# File 'lib/warden/oauth2/strategies/client.rb', line 8

def client_secret
  @client_secret
end

Instance Method Details

#authenticate! ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 10

def authenticate!
  @client = client_from_http_basic || client_from_request_params

  if self.client
    fail 'invalid_scope' and return if scope && client.respond_to?(:scope) && !client.scope?(scope)
    client_authenticated
  else
    fail 'invalid_client'
  end
end

#client_authenticated ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 49

def client_authenticated
  success! self.client
end

#client_from_http_basic ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 21

def client_from_http_basic
  return nil unless (env.keys & Rack::Auth::AbstractRequest::AUTHORIZATION_KEYS).any?
  @client_id, @client_secret = *Rack::Auth::Basic::Request.new(env).credentials
  model.locate(self.client_id, self.client_secret)
end

#client_from_request_params ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 27

def client_from_request_params
  @client_id, @client_secret = params['client_id'], params['client_secret']
  return nil unless self.client_id
  model.locate(@client_id, @client_secret)
end

#error_status ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 37

def error_status
  case message
    when 'invalid_client', 'invalid_token' then 401
    when 'invalid_scope' then 403
    else 400
  end
end

#model ⇒ Object

# File 'lib/warden/oauth2/strategies/client.rb', line 45

def model
  raise 'Model should be defined in a child strategy'
end

#public_client? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/warden/oauth2/strategies/client.rb', line 33

def public_client?
  client && !client_secret
end