Merge 114249337-one-password-token to master

Steve Powell · Steve Powell · commit bd76057fd9aa · 2016-05-20T17:24:20.000+01:00
[Completes #114249337]
diff --git a/cloudfoundry-client-spring/src/main/java/org/cloudfoundry/reactor/uaa/tokens/ReactorTokens.java b/cloudfoundry-client-spring/src/main/java/org/cloudfoundry/reactor/uaa/tokens/ReactorTokens.java
@@ -25,6 +25,8 @@
 import org.cloudfoundry.uaa.tokens.GetTokenByAuthorizationCodeResponse;
 import org.cloudfoundry.uaa.tokens.GetTokenByClientCredentialsRequest;
 import org.cloudfoundry.uaa.tokens.GetTokenByClientCredentialsResponse;
+import org.cloudfoundry.uaa.tokens.GetTokenByOneTimePasscodeRequest;
+import org.cloudfoundry.uaa.tokens.GetTokenByOneTimePasscodeResponse;
 import org.cloudfoundry.uaa.tokens.GetTokenByOpenIdRequest;
 import org.cloudfoundry.uaa.tokens.GetTokenByOpenIdResponse;
 import org.cloudfoundry.uaa.tokens.GetTokenByPasswordRequest;
@@ -82,6 +84,13 @@ public Mono<GetTokenByClientCredentialsResponse> getByClientCredentials(GetToken
             function((builder, validRequest) -> builder.pathSegment("oauth", "token").queryParam("grant_type", "client_credentials").queryParam("response_type", "token")));
     }
 
+    @Override
+    public Mono<GetTokenByOneTimePasscodeResponse> getByOneTimePasscode(GetTokenByOneTimePasscodeRequest request) {
+        return post(request, GetTokenByOneTimePasscodeResponse.class,
+            function((builder, validRequest) -> builder.pathSegment("oauth", "token").queryParam("grant_type", "password").queryParam("response_type", "token")),
+            function((outbound, validRequest) -> basicAuth(outbound, validRequest.getClientId(), validRequest.getClientSecret())));
+    }
+
     @Override
     public Mono<GetTokenByOpenIdResponse> getByOpenId(GetTokenByOpenIdRequest request) {
         return post(request, GetTokenByOpenIdResponse.class,
diff --git a/cloudfoundry-client-spring/src/test/java/org/cloudfoundry/reactor/uaa/tokens/ReactorTokensTest.java b/cloudfoundry-client-spring/src/test/java/org/cloudfoundry/reactor/uaa/tokens/ReactorTokensTest.java
@@ -26,6 +26,8 @@
 import org.cloudfoundry.uaa.tokens.GetTokenByAuthorizationCodeResponse;
 import org.cloudfoundry.uaa.tokens.GetTokenByClientCredentialsRequest;
 import org.cloudfoundry.uaa.tokens.GetTokenByClientCredentialsResponse;
+import org.cloudfoundry.uaa.tokens.GetTokenByOneTimePasscodeRequest;
+import org.cloudfoundry.uaa.tokens.GetTokenByOneTimePasscodeResponse;
 import org.cloudfoundry.uaa.tokens.GetTokenByOpenIdRequest;
 import org.cloudfoundry.uaa.tokens.GetTokenByOpenIdResponse;
 import org.cloudfoundry.uaa.tokens.GetTokenByPasswordRequest;
@@ -251,6 +253,52 @@ protected Mono<GetTokenByClientCredentialsResponse> invoke(GetTokenByClientCrede
 
     }
 
+    public static final class GetTokenByOneTimePasscode extends AbstractUaaApiTest<GetTokenByOneTimePasscodeRequest, GetTokenByOneTimePasscodeResponse> {
+
+        private final ReactorTokens tokens = new ReactorTokens(AUTHORIZATION_PROVIDER, CLIENT_ID, CLIENT_SECRET, HTTP_CLIENT, OBJECT_MAPPER, this.root);
+
+        @Override
+        protected InteractionContext getInteractionContext() {
+            return InteractionContext.builder()
+                .request(TestRequest.builder()
+                    .method(POST).path("/oauth/token?passcode=qcZNkd&token_format=opaque&grant_type=password&response_type=token")
+                    .build())
+                .response(TestResponse.builder()
+                    .status(OK)
+                    .payload("fixtures/uaa/tokens/GET_response_OT.json")
+                    .build())
+                .build();
+        }
+
+        @Override
+        protected GetTokenByOneTimePasscodeResponse getResponse() {
+            return GetTokenByOneTimePasscodeResponse.builder()
+                .accessToken("0ddcada64ef742a28badaf4750ef435f")
+                .tokenType("bearer")
+                .refreshToken("0ddcada64ef742a28badaf4750ef435f-r")
+                .expiresInSeconds(43199)
+                .scopes("scim.userids openid cloud_controller.read password.write cloud_controller.write")
+                .tokenId("0ddcada64ef742a28badaf4750ef435f")
+                .build();
+        }
+
+        @Override
+        protected GetTokenByOneTimePasscodeRequest getValidRequest() {
+            return GetTokenByOneTimePasscodeRequest.builder()
+                .clientId("app")
+                .clientSecret("appclientsecret")
+                .passcode("qcZNkd")
+                .tokenFormat(TokenFormat.OPAQUE)
+                .build();
+        }
+
+        @Override
+        protected Mono<GetTokenByOneTimePasscodeResponse> invoke(GetTokenByOneTimePasscodeRequest request) {
+            return this.tokens.getByOneTimePasscode(request);
+        }
+
+    }
+
     public static final class GetTokenByOpenId extends AbstractUaaApiTest<GetTokenByOpenIdRequest, GetTokenByOpenIdResponse> {
 
         private final ReactorTokens tokens = new ReactorTokens(AUTHORIZATION_PROVIDER, CLIENT_ID, CLIENT_SECRET, HTTP_CLIENT, OBJECT_MAPPER, this.root);
diff --git a/cloudfoundry-client-spring/src/test/resources/fixtures/uaa/tokens/GET_response_OT.json b/cloudfoundry-client-spring/src/test/resources/fixtures/uaa/tokens/GET_response_OT.json
@@ -0,0 +1,8 @@
+{
+  "access_token": "0ddcada64ef742a28badaf4750ef435f",
+  "token_type": "bearer",
+  "refresh_token": "0ddcada64ef742a28badaf4750ef435f-r",
+  "expires_in": 43199,
+  "scope": "scim.userids openid cloud_controller.read password.write cloud_controller.write",
+  "jti": "0ddcada64ef742a28badaf4750ef435f"
+}
diff --git a/cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/AbstractGetTokenByOneTimePasscodeRequest.java b/cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/AbstractGetTokenByOneTimePasscodeRequest.java
@@ -0,0 +1,55 @@
+/*
+ * Copyright 2013-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.cloudfoundry.uaa.tokens;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import org.cloudfoundry.Nullable;
+import org.cloudfoundry.QueryParameter;
+import org.immutables.value.Value;
+
+/**
+ * The request payload for the get token by one-time passcode operation
+ */
+@Value.Immutable
+abstract class AbstractGetTokenByOneTimePasscodeRequest {
+
+    /**
+     * The client identifier
+     */
+    @JsonIgnore
+    abstract String getClientId();
+
+    /**
+     * The client's secret passphrase
+     */
+    @JsonIgnore
+    abstract String getClientSecret();
+
+    /**
+     * The passcode
+     */
+    @QueryParameter("passcode")
+    abstract String getPasscode();
+
+    /**
+     * The token format
+     */
+    @Nullable
+    @QueryParameter("token_format")
+    abstract TokenFormat getTokenFormat();
+
+}
diff --git a/cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/AbstractGetTokenByOneTimePasscodeResponse.java b/cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/AbstractGetTokenByOneTimePasscodeResponse.java
@@ -0,0 +1,36 @@
+/*
+ * Copyright 2013-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.cloudfoundry.uaa.tokens;
+
+import com.fasterxml.jackson.annotation.JsonProperty;
+import com.fasterxml.jackson.databind.annotation.JsonDeserialize;
+import org.immutables.value.Value;
+
+/**
+ * The response from the get token by passcode operation
+ */
+@JsonDeserialize
+@Value.Immutable
+abstract class AbstractGetTokenByOneTimePasscodeResponse extends AbstractToken {
+
+    /**
+     * The refresh token
+     */
+    @JsonProperty("refresh_token")
+    abstract String getRefreshToken();
+
+}
diff --git a/cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/Tokens.java b/cloudfoundry-client/src/main/java/org/cloudfoundry/uaa/tokens/Tokens.java
@@ -55,6 +55,14 @@ public interface Tokens {
      */
     Mono<GetTokenByOpenIdResponse> getByOpenId(GetTokenByOpenIdRequest request);
 
+    /**
+     * Makes the <a href="http://docs.cloudfoundry.com/uaa/#one-time-passcode">One-time Passcode</a> request
+     *
+     * @param request the One Time Passcode token request
+     * @return the response from the One Time Passcode token request
+     */
+    Mono<GetTokenByOneTimePasscodeResponse> getByOneTimePasscode(GetTokenByOneTimePasscodeRequest request);
+
     /**
      * Makes the <a href="http://docs.cloudfoundry.com/uaa/#password-grant">Password Grant</a> request
      *
diff --git a/cloudfoundry-client/src/test/java/org/cloudfoundry/uaa/tokens/GetTokenByOneTimePasscodeRequestTest.java b/cloudfoundry-client/src/test/java/org/cloudfoundry/uaa/tokens/GetTokenByOneTimePasscodeRequestTest.java
@@ -0,0 +1,69 @@
+/*
+ * Copyright 2013-2016 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package org.cloudfoundry.uaa.tokens;
+
+import org.junit.Test;
+
+public final class GetTokenByOneTimePasscodeRequestTest {
+
+    @Test(expected = IllegalStateException.class)
+    public void noClientId() {
+        GetTokenByOneTimePasscodeRequest.builder()
+            .clientSecret("test-client-secret")
+            .passcode("test-passcode")
+            .tokenFormat(TokenFormat.OPAQUE)
+            .build();
+    }
+
+    @Test(expected = IllegalStateException.class)
+    public void noClientSecret() {
+        GetTokenByOneTimePasscodeRequest.builder()
+            .clientId("test-client-id")
+            .passcode("test-passcode")
+            .tokenFormat(TokenFormat.OPAQUE)
+            .build();
+    }
+
+    @Test(expected = IllegalStateException.class)
+    public void noPasscode() {
+        GetTokenByOneTimePasscodeRequest.builder()
+            .clientId("test-client-id")
+            .clientSecret("test-client-secret")
+            .tokenFormat(TokenFormat.OPAQUE)
+            .build();
+    }
+
+    @Test
+    public void validMax() {
+        GetTokenByOneTimePasscodeRequest.builder()
+            .clientId("test-client-id")
+            .clientSecret("test-client-secret")
+            .passcode("test-passcode")
+            .tokenFormat(TokenFormat.OPAQUE)
+            .build();
+    }
+
+    @Test
+    public void validMin() {
+        GetTokenByOneTimePasscodeRequest.builder()
+            .clientId("test-client-id")
+            .clientSecret("test-client-secret")
+            .passcode("test-passcode")
+            .build();
+    }
+
+}
