Merge branch 'play-oauth-async-provider'

Author: tsuyoshizawa

play2-oauth2-provider/src/main/scala/scalaoauth2/provider/OAuth2Provider.scala

@@ -5,36 +5,9 @@ import play.api.libs.json._
 import scala.language.implicitConversions
 
 /**
- * OAuth2Provider supports issue access token and authorize.
- *
- * <h3>Create controller for issue access token</h3>
- * <code>
- * object OAuth2Controller extends Controller with OAuth2Provider {
- *   def accessToken = Action { implicit request =>
- *     issueAccessToken(new MyDataHandler())
- *   }
- * }
- * </code>
- *
- * <h3>Register routes</h3>
- * <code>
- * POST /oauth2/access_token controllers.OAuth2Controller.accessToken
- * </code>
- *
- * <h3>Authorized</h3>
- * <code>
- * import scalaoauth2.provider._
- * object BookController extends Controller with OAuthProvider {
- *   def list = Action { implicit request =>
- *     authorize(new MyDataHandler()) { authInfo =>
- *       val user = authInfo.user // User is defined on your system
- *       // access resource for the user
- *     }
- *   }
- * }
- * </code>
+ * Basic OAuth2 provider trait.
  */
-trait OAuth2Provider extends Results {
+trait OAuth2BaseProvider extends Results {
 
   implicit def play2oauthRequest(request: RequestHeader): AuthorizationRequest = {
     AuthorizationRequest(request.headers.toMap, request.queryString)
@@ -68,6 +41,66 @@ trait OAuth2Provider extends Results {
     }
   }
 
+  protected[scalaoauth2] def responseAccessToken(r: GrantHandlerResult) = {
+    Map[String, JsValue](
+      "token_type" -> JsString(r.tokenType),
+      "access_token" -> JsString(r.accessToken)
+    ) ++ r.expiresIn.map {
+      "expires_in" -> JsNumber(_)
+    } ++ r.refreshToken.map {
+      "refresh_token" -> JsString(_)
+    } ++ r.scope.map {
+      "scope" -> JsString(_)
+    }
+  }
+
+  protected[scalaoauth2] def responseOAuthErrorJson(e: OAuthError): JsValue = Json.obj(
+    "error" -> e.errorType,
+    "error_description" -> e.description
+  )
+
+  protected[scalaoauth2] def responseOAuthErrorHeader(e: OAuthError): (String, String) = ("WWW-Authenticate" -> ("Bearer " + toOAuthErrorString(e)))
+
+  protected def toOAuthErrorString(e: OAuthError): String = {
+    val params = Seq("error=\"" + e.errorType + "\"") ++
+      (if (!e.description.isEmpty) { Seq("error_description=\"" + e.description + "\"") } else { Nil })
+    params.mkString(", ")
+  }
+
+}
+
+/**
+ * OAuth2Provider supports issue access token and authorize.
+ *
+ * <h3>Create controller for issue access token</h3>
+ * <code>
+ * object OAuth2Controller extends Controller with OAuth2Provider {
+ *   def accessToken = Action { implicit request =>
+ *     issueAccessToken(new MyDataHandler())
+ *   }
+ * }
+ * </code>
+ *
+ * <h3>Register routes</h3>
+ * <code>
+ * POST /oauth2/access_token controllers.OAuth2Controller.accessToken
+ * </code>
+ *
+ * <h3>Authorized</h3>
+ * <code>
+ * import scalaoauth2.provider._
+ * object BookController extends Controller with OAuthProvider {
+ *   def list = Action { implicit request =>
+ *     authorize(new MyDataHandler()) { authInfo =>
+ *       val user = authInfo.user // User is defined on your system
+ *       // access resource for the user
+ *     }
+ *   }
+ * }
+ * </code>
+ */
+trait OAuth2Provider extends OAuth2BaseProvider {
+
   /**
    * Issue access token in DataHandler process and return the response to client.
    *
@@ -85,19 +118,6 @@ trait OAuth2Provider extends Results {
     }
   }
 
-  protected[scalaoauth2] def responseAccessToken(r: GrantHandlerResult) = {
-    Map[String, JsValue](
-      "token_type" -> JsString(r.tokenType),
-      "access_token" -> JsString(r.accessToken)
-    ) ++ r.expiresIn.map {
-      "expires_in" -> JsNumber(_)
-    } ++ r.refreshToken.map {
-      "refresh_token" -> JsString(_)
-    } ++ r.scope.map {
-      "scope" -> JsString(_)
-    }
-  }
-
   /**
    * Authorize to already created access token in DataHandler process and return the response to client.
    *
@@ -116,16 +136,75 @@ trait OAuth2Provider extends Results {
     }
   }
 
-  protected[scalaoauth2] def responseOAuthErrorJson(e: OAuthError): JsValue = Json.obj(
-    "error" -> e.errorType,
-    "error_description" -> e.description
-  )
+}
 
-  protected[scalaoauth2] def responseOAuthErrorHeader(e: OAuthError): (String, String) = ("WWW-Authenticate" -> ("Bearer " + toOAuthErrorString(e)))
+/**
+ * OAuth2AsyncProvider supports issue access token and authorize in asynchronous.
+ *
+ * <h3>Create controller for issue access token</h3>
+ * <code>
+ * object OAuth2Controller extends Controller with OAuth2AsyncProvider {
+ *   def accessToken = Action.async { implicit request =>
+ *     issueAccessToken(new MyDataHandler())
+ *   }
+ * }
+ * </code>
+ *
+ * <h3>Register routes</h3>
+ * <code>
+ * POST /oauth2/access_token controllers.OAuth2Controller.accessToken
+ * </code>
+ *
+ * <h3>Authorized</h3>
+ * <code>
+ * import scalaoauth2.provider._
+ * object BookController extends Controller with OAuth2AsyncProvider {
+ *   def list = Action.async { implicit request =>
+ *     authorize(new MyDataHandler()) { authInfo =>
+ *       val user = authInfo.user // User is defined on your system
+ *       // access resource for the user
+ *     }
+ *   }
+ * }
+ * </code>
+ */
+trait OAuth2AsyncProvider extends OAuth2BaseProvider {
 
-  protected def toOAuthErrorString(e: OAuthError): String = {
-    val params = Seq("error=\"" + e.errorType + "\"") ++
-      (if (!e.description.isEmpty) { Seq("error_description=\"" + e.description + "\"") } else { Nil })
-    params.mkString(", ")
+  import scala.concurrent.Future
+
+  /**
+   * Issue access token in DataHandler process and return the response to client.
+   *
+   * @param dataHandler Implemented DataHander for register access token to your system.
+   * @param request Playframework is provided HTTP request interface.
+   * @tparam A play.api.mvc.Request has type.
+   * @return Request is successful then return JSON to client in OAuth 2.0 format.
+   *         Request is failed then return BadRequest or Unauthorized status to client with cause into the JSON.
+   */
+  def issueAccessToken[A, U](dataHandler: DataHandler[U])(implicit request: play.api.mvc.Request[A]): Future[SimpleResult] = {
+    TokenEndpoint.handleRequest(request, dataHandler) match {
+      case Left(e) if e.statusCode == 400 => Future.successful(BadRequest(responseOAuthErrorJson(e)))
+      case Left(e) if e.statusCode == 401 => Future.successful(Unauthorized(responseOAuthErrorJson(e)))
+      case Right(r) => Future.successful(Ok(Json.toJson(responseAccessToken(r))))
+    }
+  }
+
+  /**
+   * Authorize to already created access token in DataHandler process and return the response to client.
+   *
+   * @param dataHandler Implemented DataHander for authenticate to your system.
+   * @param callback Callback is called when authentication is successful.
+   * @param request Playframework is provided HTTP request interface.
+   * @tparam A play.api.mvc.Request has type.
+   * @return Authentication is successful then the response use your API result.
+   *         Authentication is failed then return BadRequest or Unauthorized status to client with cause into the JSON.
+   */
+  def authorize[A, U](dataHandler: DataHandler[U])(callback: AuthInfo[U] => Future[SimpleResult])(implicit request: play.api.mvc.Request[A]): Future[SimpleResult] = {
+    ProtectedResource.handleRequest(request, dataHandler) match {
+      case Left(e) if e.statusCode == 400 => Future.successful(BadRequest.withHeaders(responseOAuthErrorHeader(e)))
+      case Left(e) if e.statusCode == 401 => Future.successful(Unauthorized.withHeaders(responseOAuthErrorHeader(e)))
+      case Right(authInfo) => callback(authInfo)
+    }
   }
+
 }

project/Build.scala

@@ -4,7 +4,7 @@ import Keys._
 object ScalaOAuth2Build extends Build {
 
   lazy val _organization = "com.nulab-inc"
-  lazy val _version =  "0.5.1"
+  lazy val _version =  "0.6.0-SNAPSHOT"
   lazy val _playVersion =  "2.2.0"
 
   val _scalaVersion = "2.10.3"