Contents

# frozen_string_literal: true

module Doorkeeper
  module OAuth
    class PasswordAccessTokenRequest < BaseRequest
      include OAuth::Helpers

      validate :client,         error: :invalid_client
      validate :resource_owner, error: :invalid_grant
      validate :scopes,         error: :invalid_scope

      attr_accessor :server, :client, :resource_owner, :parameters,
                    :access_token

      def initialize(server, client, resource_owner, parameters = {})
        @server          = server
        @resource_owner  = resource_owner
        @client          = client
        @parameters      = parameters
        @original_scopes = parameters[:scope]
        @grant_type      = Doorkeeper::OAuth::PASSWORD
      end

      private

      def before_successful_response
        find_or_create_access_token(client, resource_owner.id, scopes, server)
        super
      end

      def validate_scopes
        client_scopes = client.try(:scopes)
        return true if scopes.blank?

        ScopeChecker.valid?(
          scope_str: scopes.to_s,
          server_scopes: server.scopes,
          app_scopes: client_scopes,
          grant_type: grant_type
        )
      end

      def validate_resource_owner
        !resource_owner.nil?
      end

      def validate_client
        !parameters[:client_id] || client.present?
      end
    end
  end
end

Version data entries

7 entries across 7 versions & 1 rubygems

Version	Path
doorkeeper-5.1.2	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-5.1.1	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-5.2.0.rc2	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-5.2.0.rc1	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-5.1.0	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-5.1.0.rc2	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-5.1.0.rc1	lib/doorkeeper/oauth/password_access_token_request.rb