Sha256: be525c15039f29f9068d440e45d06722c15a6e00849131d6f670b600e27844a8

Contents?: true

Size: 1.47 KB

Versions: 7

Compression:

Stored size: 1.47 KB

Contents

module Doorkeeper
  module OAuth
    class AuthorizationCodeRequest < BaseRequest
      validate :attributes,   error: :invalid_request
      validate :client,       error: :invalid_client
      validate :grant,        error: :invalid_grant
      # @see https://tools.ietf.org/html/rfc6749#section-5.2
      validate :redirect_uri, error: :invalid_grant

      attr_accessor :server, :grant, :client, :redirect_uri, :access_token

      def initialize(server, grant, client, parameters = {})
        @server = server
        @client = client
        @grant  = grant
        @redirect_uri = parameters[:redirect_uri]
      end

      private

      def before_successful_response
        grant.transaction do
          grant.lock!
          raise Errors::InvalidGrantReuse if grant.revoked?

          grant.revoke
          find_or_create_access_token(grant.application,
                                      grant.resource_owner_id,
                                      grant.scopes,
                                      server)
        end
        super
      end

      def validate_attributes
        redirect_uri.present?
      end

      def validate_client
        !!client
      end

      def validate_grant
        return false unless grant && grant.application_id == client.id
        grant.accessible?
      end

      def validate_redirect_uri
        Helpers::URIChecker.valid_for_authorization?(
          redirect_uri,
          grant.redirect_uri
        )
      end
    end
  end
end

Version data entries

7 entries across 7 versions & 1 rubygems

Version Path
doorkeeper-4.4.3 lib/doorkeeper/oauth/authorization_code_request.rb
doorkeeper-4.4.2 lib/doorkeeper/oauth/authorization_code_request.rb
doorkeeper-4.4.1 lib/doorkeeper/oauth/authorization_code_request.rb
doorkeeper-4.4.0 lib/doorkeeper/oauth/authorization_code_request.rb
doorkeeper-4.3.2 lib/doorkeeper/oauth/authorization_code_request.rb
doorkeeper-4.3.1 lib/doorkeeper/oauth/authorization_code_request.rb
doorkeeper-4.3.0 lib/doorkeeper/oauth/authorization_code_request.rb