Crim
diff --git a/‎CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 18 additions & 2 deletions b/‎README.md‎
Lines changed: 18 additions & 2 deletions
diff --git a/‎pom.xml‎
Lines changed: 1 addition & 1 deletion b/‎pom.xml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/main/java/com/darksci/pardot/api/ConfigurationBuilder.java‎
Lines changed: 113 additions & 44 deletions b/‎src/main/java/com/darksci/pardot/api/ConfigurationBuilder.java‎
Lines changed: 113 additions & 44 deletions
diff --git a/‎src/main/java/com/darksci/pardot/api/Example.java‎
Lines changed: 99 additions & 1 deletion b/‎src/main/java/com/darksci/pardot/api/Example.java‎
Lines changed: 99 additions & 1 deletion
@@ -2,6 +2,10 @@
 The format is based on [Keep a Changelog](http://keepachangelog.com/)
 and this project adheres to [Semantic Versioning](http://semver.org/).
 
+## 3.2.0 (02/09/2021)
+- [ISSUE-68](https://github.com/Crim/pardot-java-client/issues/68) Add authentication method for grant_type=authorization_code using previously retrieved refresh_token.  See `ConfigurationBuilder.withSsoRefreshTokenLogin()`
+- [ISSUE-70](https://github.com/Crim/pardot-java-client/issues/70) Adds ability to override the OAuth authentication endpoint when doing SSO authentication.  See optional parameter `AuthorizationServer` on the `ConfigurationBuilder.withSsoRefreshTokenLogin()` and `ConfigurationBuilder.withSsoLogin()` methods.
+
 ## 3.1.0 (10/23/2020)
 - [ISSUE-65](https://github.com/Crim/pardot-java-client/issues/65) Adds missing Query options to `ProspectQuerytRequest` for `withUpdatedAfter()` and `withUpdatedBefore()`.
 
 
@@ -30,7 +30,7 @@ This client library is released on Maven Central.  Add a new dependency to your
 <dependency>
     <groupId>com.darksci</groupId>
     <artifactId>pardot-api-client</artifactId>
-    <version>3.1.0</version>
+    <version>3.2.0</version>
 </dependency>
 ```
 
@@ -43,6 +43,7 @@ Example Code using Salesforce SSO Authentication:
  * such as using an outbound proxy (authenticated or not).
  */
 final ConfigurationBuilder configuration = Configuration.newBuilder()
+    // This configures the client using the 'password' authentication flow.    
     .withSsoLogin(
         "YourSalesforceUsername",
         "YourSalesforcePassword",
@@ -51,6 +52,19 @@ final ConfigurationBuilder configuration = Configuration.newBuilder()
         "YourPardotBusinessUnitId"
     );
 
+/*
+ * Alternatively, if you want to use the authorization_code authentication flow,
+ * you can configure the client using a previously acquired refresh_token:
+ */
+Configuration.newBuilder()
+    // This configures the client using the 'authorization_code' authentication flow.    
+    .withSsoRefreshTokenLogin(
+        "PreviousAcquiredRefreshTokenHere",
+        "YourConnectedAppClientId",
+        "YourConnectedAppClientSecret",
+        "YourPardotBusinessUnitId"
+    );  
+
 /*
  * Optionally you can explicitly select which API version to use. If none is explicitly selected
  * the library will default to version 3, but the library will automatically upgrade to version
@@ -110,7 +124,9 @@ try (final PardotClient client = new PardotClient(configuration)) {
 Official Documentation: [Authentication](https://developer.pardot.com/kb/authentication/)
 
 - Authenticating with Pardot's API using your Salesforce SSO Username, Password, and Connected Application details. [See Example](src/main/java/com/darksci/pardot/api/Example.java#L37).
-- Legacy authentication using your Pardot Username, Password, and User Token. [See Example](src/main/java/com/darksci/pardot/api/Example.java#L98). 
+- Authenticating with Pardot's API using a Salesforce SSO refresh_token and Connected Application details. [See Example](src/main/java/com/darksci/pardot/api/Example.java#L103).
+- Authenticating with Pardot's API using Salesforce SSO against Test / Sandbox orgs. [See Example](src/main/java/com/darksci/pardot/api/Example.java#L155).
+- Legacy authentication using your Pardot Username, Password, and User Token. [See Example](src/main/java/com/darksci/pardot/api/Example.java#L196). 
 
 ### Accounts
 Official Documentation: [Accounts](http://developer.pardot.com/kb/api-version-3/accounts/)
 
@@ -6,7 +6,7 @@
 
     <groupId>com.darksci</groupId>
     <artifactId>pardot-api-client</artifactId>
-    <version>3.1.0</version>
+    <version>3.2.0</version>
     <packaging>jar</packaging>
 
     <!-- Require Maven 3.5.0 -->
 
@@ -17,35 +17,30 @@
 
 package com.darksci.pardot.api;
 
+import com.darksci.pardot.api.auth.AuthorizationServer;
+import com.darksci.pardot.api.auth.PasswordSessionRefreshHandler;
+import com.darksci.pardot.api.auth.SessionRefreshHandler;
+import com.darksci.pardot.api.auth.SsoAccessTokenSessionRefreshHandler;
+import com.darksci.pardot.api.auth.SsoRefreshTokenSessionRefreshHandler;
+import com.darksci.pardot.api.auth.SsoSessionRefreshHandler;
 import com.darksci.pardot.api.config.Configuration;
-import com.darksci.pardot.api.config.LoginType;
 import com.darksci.pardot.api.config.PasswordLoginCredentials;
 import com.darksci.pardot.api.config.ProxyConfiguration;
+import com.darksci.pardot.api.config.SsoAccessTokenCredentials;
 import com.darksci.pardot.api.config.SsoLoginCredentials;
+import com.darksci.pardot.api.config.SsoRefreshTokenCredentials;
 import com.darksci.pardot.api.rest.interceptor.NoopRequestInterceptor;
 import com.darksci.pardot.api.rest.interceptor.RequestInterceptor;
 
 import java.util.Objects;
 
-import static com.darksci.pardot.api.config.LoginType.SSO;
-import static com.darksci.pardot.api.config.LoginType.USERNAME_PASSWORD;
-
 /**
  * Pardot API Client Configuration Builder.
  * Used to construct {@link Configuration} instances.
  */
 public class ConfigurationBuilder {
-    private LoginType loginType;
-
-    // Configuration properties for username password login
-    private String email;
-    private String password;
-    private String userKey;
-
-    // Configuration properties for SSO login.
-    private String ssoClientId;
-    private String ssoClientSecret;
-    private String businessUnitId;
+    // Authentication handler
+    private SessionRefreshHandler sessionRefreshHandler = null;
 
     // Optional Proxy Configuration
     private String proxyHost = null;
@@ -77,16 +72,13 @@ public class ConfigurationBuilder {
      *             Salesforce SSO Authentication: {@link ConfigurationBuilder#withSsoLogin}
      */
     public ConfigurationBuilder withUsernameAndPasswordLogin(final String username, final String password, final String userKey) {
-        this.loginType = USERNAME_PASSWORD;
-        this.email = Objects.requireNonNull(username);
-        this.password = Objects.requireNonNull(password);
-        this.userKey = Objects.requireNonNull(userKey);
-
-        return this;
+        return withCustomAuthenticationHandler(new PasswordSessionRefreshHandler(
+            new PasswordLoginCredentials(Objects.requireNonNull(username), Objects.requireNonNull(password), Objects.requireNonNull(userKey))
+        ));
     }
 
     /**
-     * For configuring authenticating to the Pardot API using legacy Username, Password, and UserKey values.
+     * For configuring authenticating to the Pardot API using the password OAuth2 authentication flow.
      *
      * @param username Salesforce username.
      * @param password Salesforce user's password.
@@ -96,12 +88,104 @@ public ConfigurationBuilder withUsernameAndPasswordLogin(final String username,
      * @return Builder instance.
      */
     public ConfigurationBuilder withSsoLogin(final String username, final String password, final String clientId, final String clientSecret, final String businessUnitId) {
-        this.loginType = SSO;
-        this.email = Objects.requireNonNull(username);
-        this.password = Objects.requireNonNull(password);
-        this.ssoClientId = Objects.requireNonNull(clientId);
-        this.ssoClientSecret = Objects.requireNonNull(clientSecret);
-        this.businessUnitId = Objects.requireNonNull(businessUnitId);
+        return withCustomAuthenticationHandler(new SsoSessionRefreshHandler(new SsoLoginCredentials(
+            Objects.requireNonNull(username),
+            Objects.requireNonNull(password),
+            Objects.requireNonNull(clientId),
+            Objects.requireNonNull(clientSecret),
+            Objects.requireNonNull(businessUnitId)
+        ), AuthorizationServer.DEFAULT_SALESFORCE));
+    }
+
+    /**
+     * For configuring authenticating to the Pardot API using the password OAuth2 authentication flow.
+     *
+     * @param username Salesforce username.
+     * @param password Salesforce user's password.
+     * @param clientId Connected Application client or consumer Id.
+     * @param clientSecret Connected Application client or consumer secret.
+     * @param businessUnitId Id of the Pardot business unit to connect to.
+     * @param authorizationServer Override the authorization server address.
+     * @return Builder instance.
+     */
+    public ConfigurationBuilder withSsoLogin(final String username, final String password, final String clientId, final String clientSecret, final String businessUnitId, final AuthorizationServer authorizationServer) {
+        return withCustomAuthenticationHandler(new SsoSessionRefreshHandler(new SsoLoginCredentials(
+            Objects.requireNonNull(username),
+            Objects.requireNonNull(password),
+            Objects.requireNonNull(clientId),
+            Objects.requireNonNull(clientSecret),
+            Objects.requireNonNull(businessUnitId)
+        ), authorizationServer));
+    }
+
+    /**
+     * For configuring authenticating to the Pardot API using a previously acquired refresh_token acquired using
+     * the access_code OAuth2 authentication flow.
+     *
+     * @param refreshToken Salesforce refresh_token.
+     * @param clientId Connected Application client or consumer Id.
+     * @param clientSecret Connected Application client or consumer secret.
+     * @param businessUnitId Id of the Pardot business unit to connect to.
+     * @return Builder instance.
+     */
+    public ConfigurationBuilder withSsoRefreshTokenLogin(final String refreshToken, final String clientId, final String clientSecret, final String businessUnitId) {
+        return withCustomAuthenticationHandler(new SsoRefreshTokenSessionRefreshHandler(new SsoRefreshTokenCredentials(
+            Objects.requireNonNull(refreshToken),
+            Objects.requireNonNull(clientId),
+            Objects.requireNonNull(clientSecret),
+            Objects.requireNonNull(businessUnitId)
+        ), AuthorizationServer.DEFAULT_SALESFORCE));
+    }
+
+    /**
+     * For configuring authenticating to the Pardot API using a refresh_token acquired using
+     * the access_code oauth2 authentication flow.
+     *
+     * @param refreshToken Salesforce refresh_token.
+     * @param clientId Connected Application client or consumer Id.
+     * @param clientSecret Connected Application client or consumer secret.
+     * @param businessUnitId Id of the Pardot business unit to connect to.
+     * @param authorizationServer Override the authorization server address.
+     * @return Builder instance.
+     */
+    public ConfigurationBuilder withSsoRefreshTokenLogin(final String refreshToken, final String clientId, final String clientSecret, final String businessUnitId, final AuthorizationServer authorizationServer) {
+        return withCustomAuthenticationHandler(new SsoRefreshTokenSessionRefreshHandler(new SsoRefreshTokenCredentials(
+            Objects.requireNonNull(refreshToken),
+            Objects.requireNonNull(clientId),
+            Objects.requireNonNull(clientSecret),
+            Objects.requireNonNull(businessUnitId)
+        ), authorizationServer));
+    }
+
+    /**
+     * For configuring authenticating to the Pardot API using a previously acquired access_token acquired using
+     * the access_code OAuth2 authentication flow.
+     *
+     * Note this authentication scheme has no provisions for renewing expired sessions automatically.
+     * See withSsoRefreshTokenLogin() method using a refresh_token.
+     *
+     * @param accessToken Salesforce access_token.
+     * @param clientId Connected Application client or consumer Id.
+     * @param clientSecret Connected Application client or consumer secret.
+     * @param businessUnitId Id of the Pardot business unit to connect to.
+     * @return Builder instance.
+     */
+    public ConfigurationBuilder withSsoAccessTokenLogin(final String accessToken, final String clientId, final String clientSecret, final String businessUnitId) {
+        return withCustomAuthenticationHandler(new SsoAccessTokenSessionRefreshHandler(new SsoAccessTokenCredentials(
+            Objects.requireNonNull(accessToken),
+            Objects.requireNonNull(clientId),
+            Objects.requireNonNull(clientSecret),
+            Objects.requireNonNull(businessUnitId)
+        )));
+    }
+
+    /**
+     * Allows for injecting a custom {@link SessionRefreshHandler} implementation.
+     * @param sessionRefreshHandler Interface for handling authentication to Pardot API.
+     * @return Builder instance.
+     */
+    public ConfigurationBuilder withCustomAuthenticationHandler(final SessionRefreshHandler sessionRefreshHandler) {
+        this.sessionRefreshHandler = Objects.requireNonNull(sessionRefreshHandler);
         return this;
     }
 
@@ -266,25 +350,10 @@ public Configuration build() {
                 proxyPassword
             );
         }
-        PasswordLoginCredentials passwordLoginCredentials = null;
-        SsoLoginCredentials ssoLoginCredentials = null;
-
-        switch (loginType) {
-            case SSO:
-                ssoLoginCredentials = new SsoLoginCredentials(email, password, ssoClientId, ssoClientSecret, businessUnitId);
-                break;
-            case USERNAME_PASSWORD:
-                passwordLoginCredentials = new PasswordLoginCredentials(email, password, userKey);
-                break;
-            default:
-                throw new IllegalStateException("Undefined Login type!");
-        }
 
         // Create instance.
         return new Configuration(
-            loginType,
-            ssoLoginCredentials,
-            passwordLoginCredentials,
+            sessionRefreshHandler,
             proxyConfiguration,
             pardotApiHost,
             pardotApiVersion,
 
@@ -17,6 +17,7 @@
 
 package com.darksci.pardot.api;
 
+import com.darksci.pardot.api.auth.AuthorizationServer;
 import com.darksci.pardot.api.config.Configuration;
 import com.darksci.pardot.api.request.DateParameter;
 import com.darksci.pardot.api.request.account.AccountReadRequest;
@@ -30,7 +31,7 @@
 public class Example {
 
     /**
-     * Example code using Salesforce SSO authetication.
+     * Example code using Salesforce SSO authentication.
      * This method of authenticating to the Pardot API is set to replace the old
      * Pardot Username and Password method of authentication and should be used moving forward.
      */
@@ -90,6 +91,103 @@ public static void example_salesforceSsoAuthentication() {
         client.close();
     }
 
+    /**
+     * Example code using Salesforce SSO authentication with a previously acquired refresh_token.
+     */
+    public static void example_salesforceSsoRefreshTokenAuthentication() {
+        /*
+         * Create a new configuration object with your Pardot credentials.
+         *
+         * This configuration also allows you to define some optional details on your connection,
+         * such as using an outbound proxy (authenticated or not).
+         */
+        final ConfigurationBuilder configuration = Configuration.newBuilder()
+            .withSsoRefreshTokenLogin(
+                "YourPreviouslyAcquiredRefreshToken",
+                "YourConnectedAppClientId",
+                "YourConnectedAppClientSecret",
+                "YourPardotBusinessUnitId"
+            );
+
+        /*
+         * Optionally you can explicitly select which API version to use. If none is explicitly selected
+         * the library will default to version 3, but the library will automatically upgrade to version
+         * 4 if required to do so.
+         */
+        configuration.withApiVersion3();
+
+        /* Or */
+        configuration.withApiVersion4();
+
+        /*
+         * Create an instance of PardotClient, passing your configuration.
+         */
+        final PardotClient client = new PardotClient(configuration);
+
+        /*
+         * The client will automatically authenticate when you make your first request, no need to
+         * explicitly login.
+         *
+         * Lets create a simple Account request, and execute it.
+         */
+        final AccountReadRequest accountReadRequest = new AccountReadRequest();
+        final Account account = client.accountRead(accountReadRequest);
+
+        /*
+         * Or lets do a more complex Campaign search.
+         */
+        final CampaignQueryRequest campaignQueryRequest = new CampaignQueryRequest()
+            .withUpdatedAfter(DateParameter.last7Days())
+            .withIdLessThan(1234L)
+            .withSortById()
+            .withSortOrderDescending();
+        final CampaignQueryResponse.Result campaignQueryResponse = client.campaignQuery(campaignQueryRequest);
+
+        /*
+         * And when you're done, call close on PardotClient.
+         */
+        client.close();
+    }
+
+    /**
+     * Example code using Salesforce SSO authentication against a sandbox/test org.
+     */
+    public static void example_salesforceSso_sandboxAuthorizationOrg() {
+
+        /**
+         * Create builder.
+         */
+        final ConfigurationBuilder configuration = Configuration.newBuilder();
+
+        /**
+         * You can pass an optional {@link AuthorizationServer} parameter to the SSO Authentication
+         * configuration methods.
+         *
+         * You can create your own instance by calling new AuthorizationServer("http://your.host.name.here", "/uri/here")
+         *    OR
+         * You can use one of the ready made instances:
+         *  - AuthorizationServer.DEFAULT_SALESFORCE (Used to authenticate against Production Orgs)
+         *  - AuthorizationServer.SANDBOX_SALESFORCE (Used to authenticate against Sandbox Instances)
+         */
+        configuration.withSsoLogin(
+            "YourSalesforceUsername",
+            "YourSalesforcePassword",
+            "YourConnectedAppClientId",
+            "YourConnectedAppClientSecret",
+            "YourPardotBusinessUnitId",
+            AuthorizationServer.SANDBOX_SALESFORCE
+        );
+
+        // SSO RefreshToken Login.
+        configuration.withSsoRefreshTokenLogin(
+            "YourPreviouslyAcquiredRefreshToken",
+            "YourConnectedAppClientId",
+            "YourConnectedAppClientSecret",
+            "YourPardotBusinessUnitId",
+            AuthorizationServer.SANDBOX_SALESFORCE
+        );
+    }
+
     /**
      * Example code using Pardot Username and Password Authentication.
      * This method of authenticating to the Pardot API to be removed around