Merge pull request #44 from nxtbgthng/feature/scopeSupport

stigi · stigi · commit 6a46f70b93c2 · 2012-10-17T03:38:57.000-07:00
Feature/scope support
diff --git a/Sources/OAuth2Client/NXOAuth2AccessToken.h b/Sources/OAuth2Client/NXOAuth2AccessToken.h
@@ -34,13 +34,15 @@
 @property (nonatomic, readonly) NSString *responseBody;
 
 + (id)tokenWithResponseBody:(NSString *)responseBody;
++ (id)tokenWithResponseBody:(NSString *)responseBody tokenType:(NSString *)tokenType;
 
 - (id)initWithAccessToken:(NSString *)accessToken;
 - (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate;
 - (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope;
 - (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope responseBody:(NSString *)responseBody;
 - (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope responseBody:(NSString *)responseBody tokenType:(NSString*)tokenType; // designated
 
+- (void)restoreWithOldToken:(NXOAuth2AccessToken *)oldToken;
 
 #pragma mark Keychain Support
 
diff --git a/Sources/OAuth2Client/NXOAuth2AccessToken.m b/Sources/OAuth2Client/NXOAuth2AccessToken.m
@@ -21,6 +21,11 @@ @implementation NXOAuth2AccessToken
 #pragma mark Lifecycle
 
 + (id)tokenWithResponseBody:(NSString *)theResponseBody;
+{
+    return [self tokenWithResponseBody:theResponseBody tokenType:nil];
+}
+
++ (id)tokenWithResponseBody:(NSString *)theResponseBody tokenType:(NSString *)tokenType;
 {
     NSDictionary *jsonDict = nil;
     Class jsonSerializationClass = NSClassFromString(@"NSJSONSerialization");
@@ -50,7 +55,11 @@ + (id)tokenWithResponseBody:(NSString *)theResponseBody;
     NSString *anAccessToken = [jsonDict objectForKey:@"access_token"];
     NSString *aRefreshToken = [jsonDict objectForKey:@"refresh_token"];
     NSString *scopeString = [jsonDict objectForKey:@"scope"];
-    NSString *tokenType = [jsonDict objectForKey:@"token_type"];
+    
+    // if the response overrides token_type we take it from the response
+    if ([jsonDict objectForKey:@"token_type"]) {
+        tokenType = [jsonDict objectForKey:@"token_type"];
+    }
     
     NSSet *scope = nil;
     if (scopeString) {
@@ -121,6 +130,12 @@ - (id)initWithAccessToken:(NSString *)anAccessToken refreshToken:(NSString *)aRe
     return self;
 }
 
+- (void)restoreWithOldToken:(NXOAuth2AccessToken *)oldToken;
+{
+    if (self.refreshToken == nil) {
+        refreshToken = oldToken.refreshToken;
+    }
+}
 
 
 #pragma mark Accessors
@@ -156,10 +171,9 @@ - (BOOL)hasExpired;
     return ([[NSDate date] earlierDate:expiresAt] == expiresAt);
 }
 
-
 - (NSString *)description;
 {
-    return [NSString stringWithFormat:@"<NXOAuth2Token token:%@ refreshToken:%@ expiresAt:%@>", self.accessToken, self.refreshToken, self.expiresAt];
+    return [NSString stringWithFormat:@"<NXOAuth2Token token:%@ refreshToken:%@ expiresAt:%@ tokenType: %@>", self.accessToken, self.refreshToken, self.expiresAt, self.tokenType];
 }
 
 
@@ -172,6 +186,9 @@ - (void)encodeWithCoder:(NSCoder *)aCoder
     [aCoder encodeObject:expiresAt forKey:@"expiresAt"];
     [aCoder encodeObject:scope forKey:@"scope"];
     [aCoder encodeObject:responseBody forKey:@"responseBody"];
+    if (tokenType) {
+        [aCoder encodeObject:tokenType forKey:@"tokenType"];
+    }
 }
 
 - (id)initWithCoder:(NSCoder *)aDecoder
@@ -190,6 +207,7 @@ - (id)initWithCoder:(NSCoder *)aDecoder
         expiresAt = [[aDecoder decodeObjectForKey:@"expiresAt"] copy];
         scope = [[aDecoder decodeObjectForKey:@"scope"] copy];
         responseBody = [[aDecoder decodeObjectForKey:@"responseBody"] copy];
+        tokenType = [[aDecoder decodeObjectForKey:@"tokenType"] copy];
     }
     return self;
 }
diff --git a/Sources/OAuth2Client/NXOAuth2Account.m b/Sources/OAuth2Client/NXOAuth2Account.m
@@ -80,12 +80,14 @@ - (NXOAuth2Client *)oauthClient;
             NSString *clientSecret = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationSecret];
             NSURL *authorizeURL = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationAuthorizeURL];
             NSURL *tokenURL = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationTokenURL];
+            NSString *tokenType = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationTokenType];
             
             oauthClient = [[NXOAuth2Client alloc] initWithClientID:clientID
                                                       clientSecret:clientSecret
                                                       authorizeURL:authorizeURL
                                                           tokenURL:tokenURL
                                                        accessToken:self.accessToken
+                                                         tokenType:tokenType
                                                         persistent:NO
                                                           delegate:self];
         }
diff --git a/Sources/OAuth2Client/NXOAuth2AccountStore.h b/Sources/OAuth2Client/NXOAuth2AccountStore.h
@@ -32,6 +32,8 @@ extern NSString * const kNXOAuth2AccountStoreConfigurationSecret;
 extern NSString * const kNXOAuth2AccountStoreConfigurationAuthorizeURL;
 extern NSString * const kNXOAuth2AccountStoreConfigurationTokenURL;
 extern NSString * const kNXOAuth2AccountStoreConfigurationRedirectURL;
+extern NSString * const kNXOAuth2AccountStoreConfigurationScope;
+extern NSString * const kNXOAuth2AccountStoreConfigurationTokenType;
 
 
 #pragma mark Account Type
@@ -75,6 +77,23 @@ typedef void(^NXOAuth2PreparedAuthorizationURLHandler)(NSURL *preparedURL);
         redirectURL:(NSURL *)aRedirectURL
      forAccountType:(NSString *)anAccountType;
 
+- (void)setClientID:(NSString *)aClientID
+             secret:(NSString *)aSecret
+              scope:(NSSet *)theScope
+   authorizationURL:(NSURL *)anAuthorizationURL
+           tokenURL:(NSURL *)aTokenURL
+        redirectURL:(NSURL *)aRedirectURL
+     forAccountType:(NSString *)anAccountType;
+
+- (void)setClientID:(NSString *)aClientID
+             secret:(NSString *)aSecret
+              scope:(NSSet *)theScope
+   authorizationURL:(NSURL *)anAuthorizationURL
+           tokenURL:(NSURL *)aTokenURL
+        redirectURL:(NSURL *)aRedirectURL
+          tokenType:(NSString *)aTokenType
+     forAccountType:(NSString *)anAccountType;
+
 - (void)setConfiguration:(NSDictionary *)configuration forAccountType:(NSString *)accountType;
 
 - (NSDictionary *)configurationForAccountType:(NSString *)accountType;
diff --git a/Sources/OAuth2Client/NXOAuth2AccountStore.m b/Sources/OAuth2Client/NXOAuth2AccountStore.m
@@ -40,6 +40,8 @@
 NSString * const kNXOAuth2AccountStoreConfigurationAuthorizeURL = @"kNXOAuth2AccountStoreConfigurationAuthorizeURL";
 NSString * const kNXOAuth2AccountStoreConfigurationTokenURL = @"kNXOAuth2AccountStoreConfigurationTokenURL";
 NSString * const kNXOAuth2AccountStoreConfigurationRedirectURL = @"kNXOAuth2AccountStoreConfigurationRedirectURL";
+NSString * const kNXOAuth2AccountStoreConfigurationScope = @"kNXOAuth2AccountStoreConfigurationScope";
+NSString * const kNXOAuth2AccountStoreConfigurationTokenType = @"kNXOAuth2AccountStoreConfigurationTokenType";
 
 #pragma mark Account Type
 
@@ -225,6 +227,44 @@ - (void)setClientID:(NSString *)aClientID
             forAccountType:anAccountType];
 }
 
+- (void)setClientID:(NSString *)aClientID
+             secret:(NSString *)aSecret
+              scope:(NSSet *)theScope
+   authorizationURL:(NSURL *)anAuthorizationURL
+           tokenURL:(NSURL *)aTokenURL
+        redirectURL:(NSURL *)aRedirectURL
+     forAccountType:(NSString *)anAccountType;
+{
+    [self setConfiguration:[NSDictionary dictionaryWithObjectsAndKeys:
+                            aClientID, kNXOAuth2AccountStoreConfigurationClientID,
+                            aSecret, kNXOAuth2AccountStoreConfigurationSecret,
+                            theScope, kNXOAuth2AccountStoreConfigurationScope,
+                            anAuthorizationURL, kNXOAuth2AccountStoreConfigurationAuthorizeURL,
+                            aTokenURL, kNXOAuth2AccountStoreConfigurationTokenURL,
+                            aRedirectURL, kNXOAuth2AccountStoreConfigurationRedirectURL, nil]
+            forAccountType:anAccountType];
+}
+
+- (void)setClientID:(NSString *)aClientID
+             secret:(NSString *)aSecret
+              scope:(NSSet *)theScope
+   authorizationURL:(NSURL *)anAuthorizationURL
+           tokenURL:(NSURL *)aTokenURL
+        redirectURL:(NSURL *)aRedirectURL
+          tokenType:(NSString *)aTokenType
+     forAccountType:(NSString *)anAccountType;
+{
+    [self setConfiguration:[NSDictionary dictionaryWithObjectsAndKeys:
+                            aClientID, kNXOAuth2AccountStoreConfigurationClientID,
+                            aSecret, kNXOAuth2AccountStoreConfigurationSecret,
+                            theScope, kNXOAuth2AccountStoreConfigurationScope,
+                            anAuthorizationURL, kNXOAuth2AccountStoreConfigurationAuthorizeURL,
+                            aTokenURL, kNXOAuth2AccountStoreConfigurationTokenURL,
+                            aTokenType, kNXOAuth2AccountStoreConfigurationTokenType,
+                            aRedirectURL, kNXOAuth2AccountStoreConfigurationRedirectURL, nil]
+            forAccountType:anAccountType];
+}
+
 - (void)setConfiguration:(NSDictionary *)configuration
           forAccountType:(NSString *)accountType;
 {
@@ -338,16 +378,26 @@ - (NXOAuth2Client *)pendingOAuthClientForAccountType:(NSString *)accountType;
             
             NSString *clientID = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationClientID];
             NSString *clientSecret = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationSecret];
+            NSSet *scope = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationScope];
             NSURL *authorizeURL = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationAuthorizeURL];
             NSURL *tokenURL = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationTokenURL];
+            NSString *tokenType = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationTokenType];
             
             client = [[NXOAuth2Client alloc] initWithClientID:clientID
                                                  clientSecret:clientSecret
                                                  authorizeURL:authorizeURL
                                                      tokenURL:tokenURL
+                                                  accessToken:nil
+                                                    tokenType:tokenType
+                                                   persistent:YES
                                                      delegate:self];
+            
             client.persistent = NO;
             
+            if (scope != nil) {
+                client.desiredScope = scope;
+            }
+            
             [self.pendingOAuthClients setObject:client forKey:accountType];
         }
     }
diff --git a/Sources/OAuth2Client/NXOAuth2Client.h b/Sources/OAuth2Client/NXOAuth2Client.h
@@ -45,6 +45,7 @@ extern NSString * const NXOAuth2ClientConnectionContextTokenRefresh;
     // server information
     NSURL        *authorizeURL;
     NSURL        *tokenURL;
+    NSString     *tokenType;
     
     // token exchange
     NXOAuth2Connection    *authConnection;
@@ -60,6 +61,7 @@ extern NSString * const NXOAuth2ClientConnectionContextTokenRefresh;
 
 @property (nonatomic, copy, readonly) NSString *clientId;
 @property (nonatomic, copy, readonly) NSString *clientSecret;
+@property (nonatomic, copy, readonly) NSString *tokenType;
 
 @property (nonatomic, copy) NSSet *desiredScope;
 @property (nonatomic, copy) NSString *userAgent;
@@ -90,6 +92,15 @@ extern NSString * const NXOAuth2ClientConnectionContextTokenRefresh;
             persistent:(BOOL)shouldPersist
               delegate:(NSObject<NXOAuth2ClientDelegate> *)delegate;
 
+- (id)initWithClientID:(NSString *)clientId
+          clientSecret:(NSString *)clientSecret
+          authorizeURL:(NSURL *)authorizeURL
+              tokenURL:(NSURL *)tokenURL
+           accessToken:(NXOAuth2AccessToken *)accessToken
+             tokenType:(NSString *)tokenType
+            persistent:(BOOL)shouldPersist
+              delegate:(NSObject<NXOAuth2ClientDelegate> *)delegate;
+
 - (BOOL)openRedirectURL:(NSURL *)URL;
 
 
diff --git a/Sources/OAuth2Client/NXOAuth2Client.m b/Sources/OAuth2Client/NXOAuth2Client.m
@@ -59,6 +59,25 @@ - (id)initWithClientID:(NSString *)aClientId
            accessToken:(NXOAuth2AccessToken *)anAccessToken
             persistent:(BOOL)shouldPersist
               delegate:(NSObject<NXOAuth2ClientDelegate> *)aDelegate;
+{
+    return [self initWithClientID:aClientId
+                     clientSecret:aClientSecret
+                     authorizeURL:anAuthorizeURL
+                         tokenURL:aTokenURL
+                      accessToken:anAccessToken
+                        tokenType:nil
+                       persistent:shouldPersist
+                         delegate:aDelegate];
+}
+
+- (id)initWithClientID:(NSString *)aClientId
+          clientSecret:(NSString *)aClientSecret
+          authorizeURL:(NSURL *)anAuthorizeURL
+              tokenURL:(NSURL *)aTokenURL
+           accessToken:(NXOAuth2AccessToken *)anAccessToken
+             tokenType:(NSString *)aTokenType
+            persistent:(BOOL)shouldPersist
+              delegate:(NSObject<NXOAuth2ClientDelegate> *)aDelegate;
 {
     NSAssert(aTokenURL != nil && anAuthorizeURL != nil, @"No token or no authorize URL");
     self = [super init];
@@ -69,6 +88,7 @@ - (id)initWithClientID:(NSString *)aClientId
         clientSecret = [aClientSecret copy];
         authorizeURL = [anAuthorizeURL copy];
         tokenURL = [aTokenURL copy];
+        tokenType = [aTokenType copy];
         accessToken = anAccessToken;
         
         self.persistent = shouldPersist;
@@ -85,7 +105,7 @@ - (void)dealloc;
 
 #pragma mark Accessors
 
-@synthesize clientId, clientSecret;
+@synthesize clientId, clientSecret, tokenType;
 @synthesize desiredScope, userAgent;
 @synthesize delegate, persistent, accessToken, authenticating;
 
@@ -157,6 +177,15 @@ - (void)setAccessToken:(NXOAuth2AccessToken *)value;
     }
 }
 
+- (void)setDesiredScope:(NSSet *)aDesiredScope;
+{
+    if (desiredScope == aDesiredScope) {
+        return;
+    }
+    
+    desiredScope = [aDesiredScope copy];
+}
+
 
 #pragma mark Flow
 
@@ -169,11 +198,17 @@ - (void)requestAccess;
 
 - (NSURL *)authorizationURLWithRedirectURL:(NSURL *)redirectURL;
 {
-    return [authorizeURL nxoauth2_URLByAddingParameters:[NSDictionary dictionaryWithObjectsAndKeys:
-                                                         @"code", @"response_type",
-                                                         clientId, @"client_id",
-                                                         [redirectURL absoluteString], @"redirect_uri",
-                                                         nil]];
+    NSMutableDictionary *parameters = [NSMutableDictionary dictionaryWithObjectsAndKeys:
+                                       @"code", @"response_type",
+                                       clientId, @"client_id",
+                                       [redirectURL absoluteString], @"redirect_uri",
+                                       nil];
+    
+    if (self.desiredScope.count > 0) {
+        [parameters setObject:[[self.desiredScope allObjects] componentsJoinedByString:@" "] forKey:@"scope"];
+    }
+    
+    return [authorizeURL nxoauth2_URLByAddingParameters:parameters];
 }
 
 
@@ -346,8 +381,12 @@ - (void)oauthConnection:(NXOAuth2Connection *)connection didFinishWithData:(NSDa
         self.authenticating = NO;
 
         NSString *result = [[NSString alloc] initWithData:data encoding:NSUTF8StringEncoding];
-        NXOAuth2AccessToken *newToken = [NXOAuth2AccessToken tokenWithResponseBody:result];
+        NXOAuth2AccessToken *newToken = [NXOAuth2AccessToken tokenWithResponseBody:result tokenType:self.tokenType
+                                         ];
         NSAssert(newToken != nil, @"invalid response?");
+        
+        [newToken restoreWithOldToken:self.accessToken];
+        
         self.accessToken = newToken;
         
         for (NXOAuth2Connection *retryConnection in waitingConnections) {
@@ -363,6 +402,10 @@ - (void)oauthConnection:(NXOAuth2Connection *)connection didFinishWithData:(NSDa
 
 - (void)oauthConnection:(NXOAuth2Connection *)connection didFailWithError:(NSError *)error;
 {
+    NSString *body = [[NSString alloc] initWithData:connection.data encoding:NSUTF8StringEncoding];
+    NSLog(@"oauthConnection Error: %@", body);
+    
+    
     if (connection == authConnection) {
         self.authenticating = NO;
 
diff --git a/Sources/OAuth2Client/NXOAuth2Connection.m b/Sources/OAuth2Client/NXOAuth2Connection.m
@@ -175,7 +175,15 @@ - (NSURLConnection *)createConnection;
             return nil;
         }
         
-        oauthAuthorizationHeader = [NSString stringWithFormat:@"%@ %@", client.accessToken.tokenType, client.accessToken.accessToken];
+        NSString *tokenType = client.accessToken.tokenType;
+        if (tokenType == nil) {
+            tokenType = client.tokenType;
+        }
+        if (tokenType == nil) {
+            tokenType = @"OAuth";
+        }
+        
+        oauthAuthorizationHeader = [NSString stringWithFormat:@"%@ %@", tokenType, client.accessToken.accessToken];
     }
     
     NSMutableURLRequest *startRequest = [request mutableCopy];
