Packages
boruta
1.0.3
3.0.0-beta.4
3.0.0-beta.3
3.0.0-beta.2
3.0.0-beta.1
2.3.6
2.3.5
2.3.4
2.3.3
2.3.2
2.3.1
2.3.0
2.2.2
2.2.1
2.2.0
2.1.5
2.1.4
2.1.3
2.1.2
2.1.1
2.1.0
2.0.1
2.0.0
2.0.0-rc.1
2.0.0-rc.0
1.2.1
1.2.0
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0
1.0.0-rc.3
1.0.0-rc.2
1.0.0-rc.1
1.0.0-rc.0
0.2.1
0.2.0
0.1.1
0.1.0
0.1.0-rc.5
0.1.0-rc.4
0.1.0-rc.3
0.1.0-rc.2
0.1.0-rc.1
Core of an OAuth/OpenID Connect provider enabling authorization in your applications.
Current section
Files
Jump to
Current section
Files
lib/boruta/oauth/request/token.ex
defmodule Boruta.Oauth.Request.Token do
@moduledoc false
import Boruta.Oauth.Request.Base
alias Boruta.BasicAuth
alias Boruta.Oauth.AuthorizationCodeRequest
alias Boruta.Oauth.ClientCredentialsRequest
alias Boruta.Oauth.Error
alias Boruta.Oauth.PasswordRequest
alias Boruta.Oauth.TokenRequest
alias Boruta.Oauth.Validator
@spec request(conn :: Plug.Conn.t() | map()) ::
{:error,
%Error{
:error => :invalid_request,
:error_description => String.t(),
:format => nil,
:redirect_uri => nil,
:status => :bad_request
}}
| {:ok, oauth_request :: %AuthorizationCodeRequest{}
| %ClientCredentialsRequest{}
| %AuthorizationCodeRequest{}
| %TokenRequest{}
| %PasswordRequest{}}
def request(%{
req_headers: req_headers,
body_params: %{} = body_params
}) when is_list(req_headers) and length(req_headers) > 1 do
case authorization_header(req_headers) do
{:ok, authorization_header} ->
request(%{
req_headers: [{"authorization", authorization_header}],
body_params: %{} = body_params
})
{:error, _reason} ->
request(%{body_params: %{} = body_params})
end
end
def request(%{req_headers: [{"authorization", "Basic " <> _ = authorization_header}], body_params: %{} = body_params}) do
with {:ok, [client_id, client_secret]} <- BasicAuth.decode(authorization_header),
{:ok, params} <- Validator.validate(
:token,
Enum.into(body_params, %{"client_id" => client_id, "client_secret" => client_secret})
) do
build_request(params)
else
{:error, error} ->
{:error, %Error{status: :bad_request, error: :invalid_request, error_description: error}}
end
end
def request(%{body_params: %{} = body_params}) do
case Validator.validate(:token, body_params) do
{:ok, params} ->
build_request(params)
{:error, error_description} ->
{:error, %Error{status: :bad_request, error: :invalid_request, error_description: error_description}}
end
end
def request(%{}) do
{:error, %Error{status: :bad_request, error: :invalid_request, error_description: "Must provide body_params."}}
end
end