Merge pull request #96 from Esri/vj/oauth

OAuth sample.

Author: tschie

src/main/java/com/esri/samples/portal/oauth/AuthenticationDialog.java

@@ -0,0 +1,77 @@
+/*
+ * Copyright 2016 Esri.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+
+package com.esri.samples.portal.oauth;
+
+import javafx.fxml.FXML;
+import javafx.fxml.FXMLLoader;
+import javafx.scene.control.Alert;
+import javafx.scene.control.ButtonType;
+import javafx.scene.control.Dialog;
+import javafx.scene.control.TextField;
+
+import com.esri.arcgisruntime.security.OAuthConfiguration;
+
+/**
+ * Custom dialog for getting an OAuthConfiguration.
+ */
+class AuthenticationDialog extends Dialog<OAuthConfiguration> {
+
+  @FXML
+  private TextField portalURL;
+  @FXML
+  private TextField clientID;
+  @FXML
+  private TextField redirectURI;
+  @FXML
+  private ButtonType cancelButton;
+  @FXML
+  private ButtonType continueButton;
+
+  AuthenticationDialog() {
+    FXMLLoader loader = new FXMLLoader(getClass().getResource("/fxml/oauth_auth_dialog.fxml"));
+    loader.setRoot(this);
+    loader.setController(this);
+
+    setTitle("Authenticate");
+
+    try {
+      loader.load();
+    } catch (Exception e) {
+      e.printStackTrace();
+    }
+
+    setResultConverter(dialogButton -> {
+      if (dialogButton == continueButton) {
+        if (!portalURL.getText().equals("") && !clientID.getText().equals("") && !redirectURI.getText().equals("")) {
+          try {
+            return new OAuthConfiguration(portalURL.getText(), clientID.getText(), redirectURI.getText());
+          } catch (Exception e) {
+            Alert alert = new Alert(Alert.AlertType.ERROR);
+            alert.setContentText(e.getMessage());
+            alert.show();
+          }
+        } else {
+          Alert alert = new Alert(Alert.AlertType.ERROR);
+          alert.setContentText("missing credentials");
+          alert.show();
+        }
+      }
+      return null;
+    });
+  }
+
+}

src/main/java/com/esri/samples/portal/oauth/OAuth.png

@@ -0,0 +1,117 @@
+/*
+ * Copyright 2016 Esri.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+package com.esri.samples.portal.oauth;
+
+import java.util.concurrent.CountDownLatch;
+
+import javafx.application.Platform;
+import javafx.scene.Scene;
+import javafx.scene.web.WebEngine;
+import javafx.scene.web.WebView;
+import javafx.stage.Modality;
+import javafx.stage.Stage;
+
+import com.esri.arcgisruntime.security.AuthenticationChallenge;
+import com.esri.arcgisruntime.security.AuthenticationChallengeHandler;
+import com.esri.arcgisruntime.security.AuthenticationChallengeResponse;
+import com.esri.arcgisruntime.security.AuthenticationChallengeResponse.Action;
+import com.esri.arcgisruntime.security.AuthenticationManager;
+import com.esri.arcgisruntime.security.OAuthConfiguration;
+import com.esri.arcgisruntime.security.OAuthTokenCredential;
+import com.esri.arcgisruntime.security.OAuthTokenCredentialRequest;
+
+/**
+ * Handler to be used when accessing a secured resource.
+ */
+final class OAuthChallengeHandler implements AuthenticationChallengeHandler {
+
+  /**
+   * Handles challenge before accessing a secured resource.
+   *
+   * @param challenge the authentication challenge to handle
+   * @return the AuthenticationChallengeResponse indicating which action to take
+   */
+  @Override
+  public AuthenticationChallengeResponse handleChallenge(AuthenticationChallenge challenge) {
+    try {
+      // get config such as clientId from the authentication manager
+      OAuthConfiguration config = AuthenticationManager.getOAuthConfiguration(challenge.getRemoteResource().getUri());
+
+      // get the authorization code by sending user to the authorization screen
+      String authorizationUrl = OAuthTokenCredentialRequest.getAuthorizationUrl(
+          config.getPortalUrl(), config.getClientId(), config.getRedirectUri(), 0);
+      String authorizationCode = OAuthChallenge.getAuthorizationCode(authorizationUrl);
+
+      // use the authorization code to get a token
+      OAuthTokenCredentialRequest request = new OAuthTokenCredentialRequest(
+          config.getPortalUrl(), null, config.getClientId(),null, authorizationCode);
+      OAuthTokenCredential credential = request.executeAsync().get();
+      return new AuthenticationChallengeResponse(Action.CONTINUE_WITH_CREDENTIAL, credential);
+    } catch (Exception e) {
+      return new AuthenticationChallengeResponse(Action.CANCEL, null);
+    }
+  }
+}
+
+/**
+ * This utility class provides a method to display the Authorization Screen as part of the OAuthSample workflow.
+ */
+final class OAuthChallenge {
+
+  /**
+   * Displays the Authorization Screen prompt to enter user credentials.
+   *
+   * @param authorizationUrl URL of the Authorization Screen
+   * @return authorization code
+   * @throws Exception if something goes wrong during authorization
+   */
+  static String getAuthorizationCode(String authorizationUrl) throws Exception {
+    StringBuilder authorizationCode = new StringBuilder();
+    CountDownLatch authorizationCodeLatch = new CountDownLatch(1);
+
+    Platform.runLater(() -> {
+      // display the authorization screen as a web view
+      WebView browser = new WebView();
+      Stage dialog = new Stage();
+      dialog.initModality(Modality.APPLICATION_MODAL);
+      dialog.setScene(new Scene(browser, 450, 450));
+      dialog.show();
+      WebEngine webEngine = browser.getEngine();
+      webEngine.load(authorizationUrl);
+
+      // read the HTTP response to user action
+      webEngine.setOnStatusChanged(event -> {
+        // extract code or error from the location in HTTP response
+        if (event.getSource() instanceof WebEngine) {
+          String location = webEngine.getLocation();
+          if (location.contains("code=")) {
+            authorizationCode.append(location.split("code=")[1]);
+            authorizationCodeLatch.countDown();
+            dialog.close();
+          } else if (location.contains("error=")) {
+            authorizationCodeLatch.countDown();
+            dialog.close();
+          }
+        }
+      });
+    });
+
+    // wait for authorization response
+    authorizationCodeLatch.await();
+
+    return authorizationCode.toString();
+  }
+}

src/main/java/com/esri/samples/portal/oauth/OAuthChallengeHandler.java

@@ -0,0 +1,99 @@
+/*
+ * Copyright 2016 Esri.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+
+package com.esri.samples.portal.oauth;
+
+import java.text.SimpleDateFormat;
+
+import com.esri.arcgisruntime.loadable.LoadStatus;
+import com.esri.arcgisruntime.portal.Portal;
+import com.esri.arcgisruntime.security.AuthenticationManager;
+import com.esri.arcgisruntime.security.OAuthConfiguration;
+
+import javafx.fxml.FXML;
+import javafx.scene.control.Alert;
+import javafx.scene.control.Dialog;
+import javafx.scene.control.Label;
+import javafx.scene.control.TextField;
+
+public class OAuthController {
+
+  @FXML private TextField portalURL;
+  @FXML private TextField clientId;
+  @FXML private TextField redirectUri;
+  @FXML private Label fullName;
+  @FXML private Label username;
+  @FXML private Label email;
+  @FXML private Label memberSince;
+  @FXML private Label role;
+
+  private SimpleDateFormat formatter;
+
+  @FXML
+  private void initialize() {
+    formatter = new SimpleDateFormat("MMM dd, yyyy");
+  }
+
+  void authenticate() throws Exception {
+
+    AuthenticationDialog authenticationDialog = new AuthenticationDialog();
+    authenticationDialog.show();
+    authenticationDialog.setOnCloseRequest(r -> {
+
+      OAuthConfiguration configuration = authenticationDialog.getResult();
+      AuthenticationManager.addOAuthConfiguration(configuration);
+
+      // setup the handler that will prompt an authentication challenge to the user
+      AuthenticationManager.setAuthenticationChallengeHandler(new OAuthChallengeHandler());
+
+      Portal portal = new Portal("http://" + configuration.getPortalUrl(), true);
+      portal.addDoneLoadingListener(() -> {
+        if (portal.getLoadStatus() == LoadStatus.LOADED) {
+
+          // display portal user info
+          fullName.setText(portal.getUser().getFullName());
+          username.setText(portal.getUser().getUsername());
+          email.setText(portal.getUser().getEmail());
+          memberSince.setText(formatter.format(portal.getUser().getCreated().getTime()));
+          role.setText(portal.getUser().getRole() != null ? portal.getUser().getRole().name() : "");
+
+        } else if (portal.getLoadStatus() == LoadStatus.FAILED_TO_LOAD) {
+
+          // show alert message on error
+          showMessage("Authentication failed", portal.getLoadError().getMessage(), Alert.AlertType.ERROR);
+        }
+      });
+
+      // loading the portal info of a secured resource
+      // this will invoke the authentication challenge
+      portal.loadAsync();
+    });
+  }
+
+  /**
+   * Display an alert to the user with the specified information.
+   * @param title alert title
+   * @param description alert content description
+   * @param type alert type
+   */
+  private void showMessage(String title, String description, Alert.AlertType type) {
+    Alert alert = new Alert(type);
+    alert.setTitle(title);
+    alert.setContentText(description);
+    alert.show();
+  }
+
+}

src/main/java/com/esri/samples/portal/oauth/OAuthController.java

@@ -0,0 +1,52 @@
+/*
+ * Copyright 2016 Esri.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License"); you may not
+ * use this file except in compliance with the License. You may obtain a copy of
+ * the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
+ * WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
+ * License for the specific language governing permissions and limitations under
+ * the License.
+ */
+package com.esri.samples.portal.oauth;
+
+import javafx.application.Application;
+import javafx.fxml.FXMLLoader;
+import javafx.scene.Parent;
+import javafx.scene.Scene;
+import javafx.stage.Stage;
+
+public class OAuthSample extends Application {
+
+  @Override
+  public void start(Stage stage) throws Exception {
+    FXMLLoader loader = new FXMLLoader(getClass().getResource("/fxml/oauth_controller.fxml"));
+    Parent root = loader.load();
+    OAuthController controller = loader.getController();
+    Scene scene = new Scene(root);
+
+    // set title, size, and add scene to stage
+    stage.setTitle("OAuth Sample");
+    stage.setWidth(800);
+    stage.setHeight(700);
+    stage.setScene(scene);
+    stage.show();
+
+    controller.authenticate();
+  }
+
+  /**
+   * Opens and runs application.
+   *
+   * @param args arguments passed to this application
+   */
+  public static void main(String[] args) {
+    Application.launch(args);
+  }
+
+}

src/main/java/com/esri/samples/portal/oauth/OAuthSample.java

@@ -0,0 +1,38 @@
+<h1>OAuth</h1>
+
+<p>Demonstrates how to use the OAuth 2.0 protocol for authentication into the ArcGIS platform. Once authenticated, the sample displays the user's profile information.</p>
+
+<p><img src="OAuth.png"/></p>
+
+<h2>How to use the sample</h2>
+
+<p>This sample requires you to setup your own app on arcgis.com. See the <a href="https://github.com/Esri/arcgis-runtime-samples-java/wiki/OAuth">wiki</a> for details.</p>
+
+<p>Enter the details of the application registered on arcgis.com and click sign-in.
+This will open a sign-in dialog. After the credentials are entered correctly, the sample
+will receive an authorization code from the ArcGIS platform. This authorization code will then be used to obtain an
+access token. This access token is used later to access user's profile.</p>
+
+<h2>How it works</h2>
+
+<ol>
+    <li>Setup an <code>OAuthConfiguration</code> with the settings of an application registered in the ArcGIS platform.</li>
+    <li>Setup an <code>AuthenticationChallengeHandler</code> that challenges the user for authentication. You could
+    create a custom handler similar to the one created in this sample: <code>OAuthChallengeHandler</code>.</li>
+    <li>On trying to access a secured resource, the authentication challenge in invoked.</li>
+    <li><code>OAuthChallengeHandler</code> directs the user to a sign-in page (using a <code>WebView</code>) from ArcGIS platform.</li>
+    <li>On successful sign-in, the ArcGIS platform provides an authorization code.</li>
+    <li>Use the authorization code to create a <code>OAuthTokenCredentialRequest</code>. This will be used by the Runtime
+    to request an access token. The access token is then used to request a secured resource in the ArcGIS platform.</li>
+</ol>
+
+<h2>Features</h2>
+
+<ul>
+    <li>AuthenticationChallengeHandler</li>
+    <li>OAuthConfiguration</li>
+    <li>OAuthTokenCredential</li>
+    <li>OAuthTokenCredentialRequest</li>
+    <li>Portal</li>
+    <li>PortalUser</li>
+</ul>