Fix bug to make DAuth work.

Author: jiuyangzhao

examples/android/src/main/java/com/dropbox/core/examples/android/DropboxActivity.java

@@ -1,5 +1,6 @@
 package com.dropbox.core.examples.android;
 
+import android.content.Context;
 import android.content.SharedPreferences;
 import android.support.v7.app.AppCompatActivity;
 
@@ -41,6 +42,7 @@ protected void onResume() {
                     throw new IllegalStateException("Credential data corrupted: " + e.getMessage());
                 }
             }
+
         } else {
             String accessToken = prefs.getString("access-token", null);
             if (accessToken == null) {
@@ -85,11 +87,11 @@ protected boolean hasToken() {
         }
     }
 
-    public static void startOAuth2Authentication(Context context) {
+    public static void startOAuth2Authentication(Context context, String app_key, String scope) {
         if (USE_SLT) {
-            Auth.startOAuth2PKCE(context, getString(R.string.app_key), DbxRequestConfigFactory.getRequestConfig());
+            Auth.startOAuth2PKCE(context, app_key, DbxRequestConfigFactory.getRequestConfig(), scope);
         } else {
-            Auth.startOAuth2Authentication(context, getString(R.string.app_key));
+            Auth.startOAuth2Authentication(context, app_key);
         }
     }
 }

examples/android/src/main/java/com/dropbox/core/examples/android/UserActivity.java

@@ -8,7 +8,6 @@
 import android.widget.Button;
 import android.widget.TextView;
 
-import com.dropbox.core.android.Auth;
 import com.dropbox.core.examples.android.internal.OpenWithActivity;
 import com.dropbox.core.v2.users.FullAccount;
 
@@ -32,7 +31,7 @@ protected void onCreate(Bundle savedInstanceState) {
         loginButton.setOnClickListener(new View.OnClickListener() {
             @Override
             public void onClick(View v) {
-                DropboxActivity.startOAuth2Authentication(UserActivity.this);
+                DropboxActivity.startOAuth2Authentication(UserActivity.this, getString(R.string.app_key), null);
             }
         });
 

src/main/java/com/dropbox/core/android/Auth.java

@@ -41,7 +41,22 @@ public static void startOAuth2Authentication(Context context, String appKey, Str
      */
     public static void startOAuth2PKCE(Context context, String appKey,
                                                      DbxRequestConfig requestConfig) {
-        startOAuth2PKCE(context, appKey, requestConfig, null);
+        startOAuth2PKCE(context, appKey, requestConfig, null, null);
+    }
+
+    /**
+     * <b>Beta</b>: This feature is not available to all developers. Please do NOT use it unless you are
+     * early access partner of this feature. The function signature is subject to change
+     * in next minor version release.
+     *
+     * @param scope A list of scope returned by Dropbox server. Each scope correspond to a group of
+     * API endpoints. To call one API endpoint you have to obtains the scope first otherwise you
+     * will get HTTP 401.
+     * @see Auth#startOAuth2PKCE(Context, String, DbxRequestConfig, DbxHost)
+     */
+    public static void startOAuth2PKCE(Context context, String appKey, DbxRequestConfig
+        requestConfig, String scope) {
+        startOAuth2PKCE(context, appKey, requestConfig, null, scope);
     }
 
     /**
@@ -69,6 +84,15 @@ public static void startOAuth2PKCE(Context context, String appKey, DbxRequestCon
         startOAuth2Authentication(context, appKey, null, null, null, null, TokenAccessType
             .OFFLINE, requestConfig, host);
     }
+
+    public static void startOAuth2PKCE(Context context, String appKey, DbxRequestConfig
+        requestConfig, DbxHost host, String scope) {
+        if (requestConfig == null) {
+            throw new IllegalArgumentException("Invalid Dbx requestConfig for PKCE flow.");
+        }
+        startOAuth2Authentication(context, appKey, null, null, null, null, TokenAccessType
+            .OFFLINE, requestConfig, host, scope);
+    }
 
     /**
      * Starts the Dropbox authentication process by launching an external app
@@ -120,6 +144,20 @@ private static void startOAuth2Authentication(Context context,
                                                   TokenAccessType tokenAccessType,
                                                   DbxRequestConfig requestConfig,
                                                   DbxHost host) {
+        startOAuth2Authentication(context, appKey, desiredUid, alreadyAuthedUids, sessionId,
+            webHost, tokenAccessType, requestConfig, host, null);
+    }
+
+    private static void startOAuth2Authentication(Context context,
+                                                  String appKey,
+                                                  String desiredUid,
+                                                  String[] alreadyAuthedUids,
+                                                  String sessionId,
+                                                  String webHost,
+                                                  TokenAccessType tokenAccessType,
+                                                  DbxRequestConfig requestConfig,
+                                                  DbxHost host,
+                                                  String scope) {
         if (!AuthActivity.checkAppBeforeAuth(context, appKey, true /*alertUser*/)) {
             return;
         }
@@ -132,7 +170,7 @@ private static void startOAuth2Authentication(Context context,
         String apiType = "1";
         Intent intent =  AuthActivity.makeIntent(
             context, appKey, desiredUid, alreadyAuthedUids, sessionId, webHost, apiType,
-            tokenAccessType, requestConfig, host
+            tokenAccessType, requestConfig, host, scope
         );
         if (!(context instanceof Activity)) {
             // If starting the intent outside of an Activity, must include
@@ -193,4 +231,25 @@ public static DbxCredential getDbxCredential() {
 
         return new DbxCredential(secret, nullableExpiresAt, refreshToken, appKey);
     }
+
+    /**
+     * <b>Beta</b>: This feature is not available to all developers. Please do NOT use it unless you are
+     * early access partner of this feature. The function signature is subject to change
+     * in next minor version release.
+     *
+     * Get the scope authorized in this OAuth flow.
+     *
+     * @return A list of scope returned by Dropbox server. Each scope correspond to a group of
+     * API endpoints. To call one API endpoint you have to obtains the scope first otherwise you
+     * will get HTTP 401.
+     */
+    public static String getScope() {
+        Intent data = AuthActivity.result;
+
+        if (data == null) {
+            return null;
+        }
+
+        return data.getStringExtra(AuthActivity.EXTRA_SCOPE);
+    }
 }

src/main/java/com/dropbox/core/android/AuthActivity.java

@@ -72,6 +72,8 @@ public class AuthActivity extends Activity {
 
     public static final String EXTRA_EXPIRES_AT = "EXPIRES_AT";
 
+    public static final String EXTRA_SCOPE = "SCOPE";
+
     /**
      * Used for internal authentication. You won't ever have to use this.
      */
@@ -181,6 +183,7 @@ public SecureRandom getSecureRandom() {
     private static TokenAccessType sTokenAccessType;
     private static DbxRequestConfig sRequestConfig;
     private static DbxHost sHost;
+    private static String sScope;
 
     // These instance variables need not be stored in savedInstanceState as onNewIntent()
     // does not read them.
@@ -192,7 +195,8 @@ public SecureRandom getSecureRandom() {
     private TokenAccessType mTokenAccessType;
     private DbxPKCEManager mPKCEManager;
     private DbxRequestConfig mRequestConfig;
-    private static DbxHost mHost;
+    private DbxHost mHost;
+    private String mScope;
 
     // Stored in savedInstanceState to track an ongoing auth attempt, which
     // must include a locally-generated nonce in the response.
@@ -215,7 +219,8 @@ static void setAuthParams(String appKey, String desiredUid,
      */
     static void setAuthParams(String appKey, String desiredUid,
                               String[] alreadyAuthedUids, String webHost, String apiType) {
-        setAuthParams(appKey, desiredUid, alreadyAuthedUids, null, null, null, null, null, null);
+        setAuthParams(appKey, desiredUid, alreadyAuthedUids, null, null, null, null, null, null,
+            null);
     }
 
     /**
@@ -224,7 +229,7 @@ static void setAuthParams(String appKey, String desiredUid,
     static void setAuthParams(String appKey, String desiredUid,
                               String[] alreadyAuthedUids, String sessionId) {
         setAuthParams(appKey, desiredUid, alreadyAuthedUids, sessionId, null, null, null, null,
-            null);
+            null, null);
     }
 
     /**
@@ -234,7 +239,7 @@ static void setAuthParams(String appKey, String desiredUid,
     static void setAuthParams(String appKey, String desiredUid,
                               String[] alreadyAuthedUids, String sessionId, String webHost,
                               String apiType, TokenAccessType tokenAccessType,
-                              DbxRequestConfig requestConfig, DbxHost host) {
+                              DbxRequestConfig requestConfig, DbxHost host, String scope) {
         sAppKey = appKey;
         sDesiredUid = desiredUid;
         sAlreadyAuthedUids = (alreadyAuthedUids != null) ? alreadyAuthedUids : new String[0];
@@ -252,6 +257,7 @@ static void setAuthParams(String appKey, String desiredUid,
         } else {
             sHost = DbxHost.DEFAULT;
         }
+        sScope = scope;
     }
 
     /**
@@ -267,7 +273,8 @@ static void setAuthParams(String appKey, String desiredUid,
      */
     public static Intent makeIntent(Context context, String appKey, String webHost,
                                           String apiType) {
-        return makeIntent(context, appKey, null, null, null, webHost, apiType, null, null, null);
+        return makeIntent(context, appKey, null, null, null, webHost, apiType, null, null, null,
+            null);
     }
 
     /**
@@ -296,7 +303,7 @@ public static Intent makeIntent(Context context, String appKey, String desiredUi
             throw new IllegalArgumentException("'appKey' can't be null");
         }
         setAuthParams(appKey, desiredUid, alreadyAuthedUids, sessionId, webHost, apiType, null,
-            null, null);
+            null, null, null);
         return new Intent(context, AuthActivity.class);
     }
 
@@ -306,12 +313,12 @@ public static Intent makeIntent(Context context, String appKey, String desiredUi
     static Intent makeIntent(
         Context context, String appKey, String desiredUid, String[] alreadyAuthedUids,
         String sessionId, String webHost, String apiType, TokenAccessType tokenAccessType,
-        DbxRequestConfig requestConfig, DbxHost host
+        DbxRequestConfig requestConfig, DbxHost host, String scope
     ) {
         if (appKey == null) throw new IllegalArgumentException("'appKey' can't be null");
         setAuthParams(
             appKey, desiredUid, alreadyAuthedUids, sessionId, webHost, apiType, tokenAccessType,
-            requestConfig, host
+            requestConfig, host, scope
         );
         return new Intent(context, AuthActivity.class);
     }
@@ -429,6 +436,7 @@ protected void onCreate(Bundle savedInstanceState) {
         mTokenAccessType = sTokenAccessType;
         mRequestConfig = sRequestConfig;
         mHost = sHost;
+        mScope = sScope;
 
         if (savedInstanceState == null) {
             result = null;
@@ -626,6 +634,7 @@ protected void onNewIntent(Intent intent) {
                         newResult.putExtra(EXTRA_EXPIRES_AT, dbxAuthFinish.getExpiresAt());
                         newResult.putExtra(EXTRA_UID, dbxAuthFinish.getUserId());
                         newResult.putExtra(EXTRA_CONSUMER_KEY, mAppKey);
+                        newResult.putExtra(EXTRA_SCOPE, dbxAuthFinish.getScope());
                     }
                 } catch (Exception e) {
                     newResult = null;
@@ -637,7 +646,6 @@ protected void onNewIntent(Intent intent) {
             // Unsuccessful auth, or missing required parameters.
             newResult = null;
         }
-
         authFinished(newResult);
     }
 
@@ -692,13 +700,19 @@ private String createPKCEStateNonce() {
     }
 
     private String createExtraQueryParams() {
-        return String.format(
+        String param = String.format(Locale.US,
             "%s=%s&%s=%s&%s=%s&%s=%s",
             "code_challenge", mPKCEManager.getCodeChallenge(),
             "code_challenge_method", DbxPKCEManager.CODE_CHALLENGE_METHODS,
             "token_access_type", mTokenAccessType.toString(),
             "response_type", "code"
         );
+
+        if (mScope != null) {
+            param += String.format(Locale.US, "%s=%s", "scope", mScope);
+        }
+
+        return param;
     }
 
     private enum TokenType {