Contents

module Doorkeeper::OAuth
  class PasswordAccessTokenRequest
    include Doorkeeper::Validations
    include Doorkeeper::OAuth::Helpers

    validate :client,         :error => :invalid_client
    validate :resource_owner, :error => :invalid_resource_owner
    validate :scopes,         :error => :invalid_scope

    attr_accessor :server, :resource_owner, :client, :access_token

    def initialize(server, client, resource_owner, parameters = {})
      @server          = server
      @resource_owner  = resource_owner
      @client          = client
      @original_scopes = parameters[:scope]
    end

    def authorize
      validate
      @response = if valid?
        issue_token
        TokenResponse.new access_token
      else
        ErrorResponse.from_request self
      end
    end

    def valid?
      self.error.nil?
    end

    def scopes
      @scopes ||= if @original_scopes.present?
        Doorkeeper::OAuth::Scopes.from_string(@original_scopes)
      else
        server.default_scopes
      end
    end

  private

    def issue_token
      @access_token = Doorkeeper::AccessToken.create!({
        :application_id     => client.id,
        :resource_owner_id  => resource_owner.id,
        :scopes             => scopes.to_s,
        :expires_in         => server.access_token_expires_in,
        :use_refresh_token  => server.refresh_token_enabled?
      })
    end

    def validate_client
      !!client
    end

    def validate_scopes
      return true unless @original_scopes.present?
      ScopeChecker.valid?(@original_scopes, @server.scopes)
    end

    def validate_resource_owner
      !!resource_owner
    end
  end
end

Version data entries

3 entries across 3 versions & 1 rubygems

Version	Path
doorkeeper-0.7.4	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-0.7.3	lib/doorkeeper/oauth/password_access_token_request.rb
doorkeeper-0.7.2	lib/doorkeeper/oauth/password_access_token_request.rb