Merge branch 'release/1.2.0'

Conflicts:
	OAuth2Client.xcodeproj/project.pbxproj

Author: stigi

NXOAuth2Client.podspec

@@ -1,11 +1,11 @@
 Pod::Spec.new do |s|
   s.name     = 'NXOAuth2Client'
-  s.version  = '1.1.0'
+  s.version  = '1.2.0'
   s.license  = 'BSD'
   s.summary  = 'Client library for OAuth2 (currently built against draft 10 of the OAuth2 spec)'
   s.homepage = 'https://github.com/nxtbgthng/OAuth2Client'
   s.author   = { 'nxtbgthng' => '[email protected]'}
-  s.source   = { :git => 'https://github.com/nxtbgthng/OAuth2Client.git', :tag => 'v1.1.0' }
+  s.source   = { :git => 'https://github.com/nxtbgthng/OAuth2Client.git', :tag => 'v1.2.0' }
   s.source_files = 'NXOAuth2Account+Private.h', 'Sources/', 'Sources/OAuth2Client/'
   s.frameworks = 'Security'
   s.requires_arc = true

OAuth2Client.framework-Info.plist

@@ -13,7 +13,7 @@
 	<key>CFBundlePackageType</key>
 	<string>FMWK</string>
 	<key>CFBundleShortVersionString</key>
-	<string>1.1.0</string>
+	<string>1.2.0</string>
 	<key>CFBundleSignature</key>
 	<string>????</string>
 	<key>CFBundleVersion</key>

OAuth2Client.xcodeproj/project.pbxproj

@@ -362,7 +362,7 @@
 		0867D690FE84028FC02AAC07 /* Project object */ = {
 			isa = PBXProject;
 			attributes = {
-				LastUpgradeCheck = 0440;
+				LastUpgradeCheck = 0450;
 				ORGANIZATIONNAME = nxtbgthng;
 			};
 			buildConfigurationList = 1DEB922208733DC00010E9CD /* Build configuration list for PBXProject "OAuth2Client" */;
@@ -445,7 +445,7 @@
 			buildSettings = {
 				ALWAYS_SEARCH_USER_PATHS = NO;
 				ARCHS = (
-					armv7,
+					"$(inherited)",
 					armv6,
 				);
 				CLANG_ENABLE_OBJC_ARC = YES;
@@ -472,7 +472,7 @@
 			buildSettings = {
 				ALWAYS_SEARCH_USER_PATHS = NO;
 				ARCHS = (
-					armv7,
+					"$(inherited)",
 					armv6,
 				);
 				CLANG_ENABLE_OBJC_ARC = YES;
@@ -495,10 +495,12 @@
 			isa = XCBuildConfiguration;
 			buildSettings = {
 				ARCHS = "$(ARCHS_STANDARD_32_64_BIT)";
+				COMBINE_HIDPI_IMAGES = YES;
 				GCC_C_LANGUAGE_STANDARD = c99;
 				GCC_OPTIMIZATION_LEVEL = 0;
 				GCC_WARN_ABOUT_RETURN_TYPE = YES;
 				GCC_WARN_UNUSED_VARIABLE = YES;
+				MACOSX_DEPLOYMENT_TARGET = 10.7;
 				OTHER_LDFLAGS = "-ObjC";
 			};
 			name = Debug;
@@ -507,9 +509,11 @@
 			isa = XCBuildConfiguration;
 			buildSettings = {
 				ARCHS = "$(ARCHS_STANDARD_32_64_BIT)";
+				COMBINE_HIDPI_IMAGES = YES;
 				GCC_C_LANGUAGE_STANDARD = c99;
 				GCC_WARN_ABOUT_RETURN_TYPE = YES;
 				GCC_WARN_UNUSED_VARIABLE = YES;
+				MACOSX_DEPLOYMENT_TARGET = 10.7;
 				OTHER_CFLAGS = "-DNS_BLOCK_ASSERTIONS=1";
 				OTHER_LDFLAGS = "-ObjC";
 			};

Sources/NSString+NXOAuth2.m

@@ -18,9 +18,8 @@ @implementation NSString (NXOAuth2)
 
 + (NSString *)nxoauth2_stringWithUUID;
 {
-    __autoreleasing NSString *result;
     CFUUIDRef theUUID = CFUUIDCreate(kCFAllocatorDefault);
-    result = (__bridge_transfer NSString *)CFUUIDCreateString(kCFAllocatorDefault, theUUID);
+    NSString *result = (__bridge_transfer NSString *)CFUUIDCreateString(kCFAllocatorDefault, theUUID);
     CFRelease(theUUID);
     return result;
 }
@@ -59,24 +58,19 @@ - (NSDictionary *)nxoauth2_parametersFromEncodedQueryString;
 
 - (NSString *)nxoauth2_URLEncodedString;
 {
-    
-    CFStringRef cfResult = CFURLCreateStringByAddingPercentEscapes(kCFAllocatorDefault, //Allocator
-                                                                 (__bridge CFStringRef)self, //Original String
-                                                                 NULL, //Characters to leave unescaped
-                                                                 (CFStringRef)@"!*'();:@&=+$,/?%#[]", //Legal Characters to be escaped
-                                                                 kCFStringEncodingUTF8); //Encoding
-    __autoreleasing NSString *result = (__bridge_transfer NSString *)cfResult;
-    return result;
+    return (__bridge_transfer NSString *) CFURLCreateStringByAddingPercentEscapes(kCFAllocatorDefault, //Allocator
+                                                                                  (__bridge CFStringRef)self, //Original String
+                                                                                  NULL, //Characters to leave unescaped
+                                                                                  CFSTR("!*'();:@&=+$,/?%#[]"), //Legal Characters to be escaped
+                                                                                  kCFStringEncodingUTF8); //Encoding
 }
 
 - (NSString *)nxoauth2_URLDecodedString;
 {
-    CFStringRef cfResult = CFURLCreateStringByReplacingPercentEscapesUsingEncoding(kCFAllocatorDefault,
-                                                                                 (__bridge CFStringRef)self,
-                                                                                 CFSTR(""),
-                                                                                 kCFStringEncodingUTF8);
-    __autoreleasing NSString *result = (__bridge_transfer NSString *)cfResult;
-    return result;
+    return (__bridge_transfer NSString *) CFURLCreateStringByReplacingPercentEscapesUsingEncoding(kCFAllocatorDefault,
+                                                                                                  (__bridge CFStringRef)self,
+                                                                                                  CFSTR(""),
+                                                                                                  kCFStringEncodingUTF8);
 }
 
 @end

Sources/OAuth2Client/NXOAuth2AccessToken.h

@@ -19,25 +19,30 @@
 @private
     NSString *accessToken;
     NSString *refreshToken;
+    NSString *tokenType;
     NSDate *expiresAt;
     NSSet *scope;
     NSString *responseBody;
 }
 @property (nonatomic, readonly) NSString *accessToken;
 @property (nonatomic, readonly) NSString *refreshToken;
+@property (nonatomic, readonly) NSString *tokenType;
 @property (nonatomic, readonly) NSDate *expiresAt;
 @property (nonatomic, readonly) BOOL doesExpire;
 @property (nonatomic, readonly) BOOL hasExpired;
 @property (nonatomic, readonly) NSSet *scope;
 @property (nonatomic, readonly) NSString *responseBody;
 
 + (id)tokenWithResponseBody:(NSString *)responseBody;
++ (id)tokenWithResponseBody:(NSString *)responseBody tokenType:(NSString *)tokenType;
 
 - (id)initWithAccessToken:(NSString *)accessToken;
 - (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate;
 - (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope;
-- (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope responseBody:(NSString *)responseBody; // designated
+- (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope responseBody:(NSString *)responseBody;
+- (id)initWithAccessToken:(NSString *)accessToken refreshToken:(NSString *)refreshToken expiresAt:(NSDate *)expiryDate scope:(NSSet *)scope responseBody:(NSString *)responseBody tokenType:(NSString*)tokenType; // designated
 
+- (void)restoreWithOldToken:(NXOAuth2AccessToken *)oldToken;
 
 #pragma mark Keychain Support
 

Sources/OAuth2Client/NXOAuth2AccessToken.m

@@ -21,6 +21,11 @@ @implementation NXOAuth2AccessToken
 #pragma mark Lifecycle
 
 + (id)tokenWithResponseBody:(NSString *)theResponseBody;
+{
+    return [self tokenWithResponseBody:theResponseBody tokenType:nil];
+}
+
++ (id)tokenWithResponseBody:(NSString *)theResponseBody tokenType:(NSString *)tokenType;
 {
     NSDictionary *jsonDict = nil;
     Class jsonSerializationClass = NSClassFromString(@"NSJSONSerialization");
@@ -51,6 +56,11 @@ + (id)tokenWithResponseBody:(NSString *)theResponseBody;
     NSString *aRefreshToken = [jsonDict objectForKey:@"refresh_token"];
     NSString *scopeString = [jsonDict objectForKey:@"scope"];
 
+    // if the response overrides token_type we take it from the response
+    if ([jsonDict objectForKey:@"token_type"]) {
+        tokenType = [jsonDict objectForKey:@"token_type"];
+    }
+    
     NSSet *scope = nil;
     if (scopeString) {
         scope = [NSSet setWithArray:[scopeString componentsSeparatedByCharactersInSet:[NSCharacterSet whitespaceAndNewlineCharacterSet]]];
@@ -61,10 +71,11 @@ + (id)tokenWithResponseBody:(NSString *)theResponseBody;
         expiryDate = [NSDate dateWithTimeIntervalSinceNow:[expiresIn integerValue]];
     }
     return [[[self class] alloc] initWithAccessToken:anAccessToken
-                                         refreshToken:aRefreshToken
-                                            expiresAt:expiryDate
-                                                scope:scope
-                                         responseBody:theResponseBody];
+                                        refreshToken:aRefreshToken
+                                           expiresAt:expiryDate
+                                               scope:scope
+                                        responseBody:theResponseBody
+                                           tokenType:tokenType];
 }
 
 - (id)initWithAccessToken:(NSString *)anAccessToken;
@@ -90,6 +101,16 @@ - (id)initWithAccessToken:(NSString *)anAccessToken refreshToken:(NSString *)aRe
 }
 
 - (id)initWithAccessToken:(NSString *)anAccessToken refreshToken:(NSString *)aRefreshToken expiresAt:(NSDate *)anExpiryDate scope:(NSSet *)aScope responseBody:(NSString *)aResponseBody;
+{
+    return [[[self class] alloc] initWithAccessToken:anAccessToken
+                                        refreshToken:aRefreshToken
+                                           expiresAt:anExpiryDate
+                                               scope:aScope
+                                        responseBody:aResponseBody
+                                           tokenType:nil];
+}
+
+- (id)initWithAccessToken:(NSString *)anAccessToken refreshToken:(NSString *)aRefreshToken expiresAt:(NSDate *)anExpiryDate scope:(NSSet *)aScope responseBody:(NSString *)aResponseBody tokenType:(NSString *)aTokenType
 {
     // a token object without an actual token is not what we want!
     NSAssert1(anAccessToken, @"No token from token response: %@", aResponseBody);
@@ -104,10 +125,17 @@ - (id)initWithAccessToken:(NSString *)anAccessToken refreshToken:(NSString *)aRe
         expiresAt    = [anExpiryDate copy];
         scope        = aScope ? [aScope copy] : [[NSSet alloc] init];
         responseBody = [aResponseBody copy];
+        tokenType    = [aTokenType copy];
     }
     return self;
 }
 
+- (void)restoreWithOldToken:(NXOAuth2AccessToken *)oldToken;
+{
+    if (self.refreshToken == nil) {
+        refreshToken = oldToken.refreshToken;
+    }
+}
 
 
 #pragma mark Accessors
@@ -117,6 +145,21 @@ - (id)initWithAccessToken:(NSString *)anAccessToken refreshToken:(NSString *)aRe
 @synthesize expiresAt;
 @synthesize scope;
 @synthesize responseBody;
+@synthesize tokenType;
+
+- (NSString*)tokenType
+{
+    if (tokenType == nil || [tokenType isEqualToString:@""]) {
+        //fall back on OAuth if token type not set
+        return @"OAuth";
+    } else if ([tokenType isEqualToString:@"bearer"]) {
+        //this is for out case sensitive server
+        //oauth server should be case insensitive so this should make no difference
+        return @"Bearer";
+    } else {
+        return tokenType;
+    }
+}
 
 - (BOOL)doesExpire;
 {
@@ -128,10 +171,9 @@ - (BOOL)hasExpired;
     return ([[NSDate date] earlierDate:expiresAt] == expiresAt);
 }
 
-
 - (NSString *)description;
 {
-    return [NSString stringWithFormat:@"<NXOAuth2Token token:%@ refreshToken:%@ expiresAt:%@>", self.accessToken, self.refreshToken, self.expiresAt];
+    return [NSString stringWithFormat:@"<NXOAuth2Token token:%@ refreshToken:%@ expiresAt:%@ tokenType: %@>", self.accessToken, self.refreshToken, self.expiresAt, self.tokenType];
 }
 
 
@@ -144,6 +186,9 @@ - (void)encodeWithCoder:(NSCoder *)aCoder
     [aCoder encodeObject:expiresAt forKey:@"expiresAt"];
     [aCoder encodeObject:scope forKey:@"scope"];
     [aCoder encodeObject:responseBody forKey:@"responseBody"];
+    if (tokenType) {
+        [aCoder encodeObject:tokenType forKey:@"tokenType"];
+    }
 }
 
 - (id)initWithCoder:(NSCoder *)aDecoder
@@ -162,6 +207,7 @@ - (id)initWithCoder:(NSCoder *)aDecoder
         expiresAt = [[aDecoder decodeObjectForKey:@"expiresAt"] copy];
         scope = [[aDecoder decodeObjectForKey:@"scope"] copy];
         responseBody = [[aDecoder decodeObjectForKey:@"responseBody"] copy];
+        tokenType = [[aDecoder decodeObjectForKey:@"tokenType"] copy];
     }
     return self;
 }

Sources/OAuth2Client/NXOAuth2Account.m

@@ -80,12 +80,14 @@ - (NXOAuth2Client *)oauthClient;
             NSString *clientSecret = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationSecret];
             NSURL *authorizeURL = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationAuthorizeURL];
             NSURL *tokenURL = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationTokenURL];
+            NSString *tokenType = [configuration objectForKey:kNXOAuth2AccountStoreConfigurationTokenType];
 
             oauthClient = [[NXOAuth2Client alloc] initWithClientID:clientID
                                                       clientSecret:clientSecret
                                                       authorizeURL:authorizeURL
                                                           tokenURL:tokenURL
                                                        accessToken:self.accessToken
+                                                         tokenType:tokenType
                                                         persistent:NO
                                                           delegate:self];
         }

Sources/OAuth2Client/NXOAuth2AccountStore.h

@@ -32,6 +32,8 @@ extern NSString * const kNXOAuth2AccountStoreConfigurationSecret;
 extern NSString * const kNXOAuth2AccountStoreConfigurationAuthorizeURL;
 extern NSString * const kNXOAuth2AccountStoreConfigurationTokenURL;
 extern NSString * const kNXOAuth2AccountStoreConfigurationRedirectURL;
+extern NSString * const kNXOAuth2AccountStoreConfigurationScope;
+extern NSString * const kNXOAuth2AccountStoreConfigurationTokenType;
 
 
 #pragma mark Account Type
@@ -75,6 +77,23 @@ typedef void(^NXOAuth2PreparedAuthorizationURLHandler)(NSURL *preparedURL);
         redirectURL:(NSURL *)aRedirectURL
      forAccountType:(NSString *)anAccountType;
 
+- (void)setClientID:(NSString *)aClientID
+             secret:(NSString *)aSecret
+              scope:(NSSet *)theScope
+   authorizationURL:(NSURL *)anAuthorizationURL
+           tokenURL:(NSURL *)aTokenURL
+        redirectURL:(NSURL *)aRedirectURL
+     forAccountType:(NSString *)anAccountType;
+
+- (void)setClientID:(NSString *)aClientID
+             secret:(NSString *)aSecret
+              scope:(NSSet *)theScope
+   authorizationURL:(NSURL *)anAuthorizationURL
+           tokenURL:(NSURL *)aTokenURL
+        redirectURL:(NSURL *)aRedirectURL
+          tokenType:(NSString *)aTokenType
+     forAccountType:(NSString *)anAccountType;
+
 - (void)setConfiguration:(NSDictionary *)configuration forAccountType:(NSString *)accountType;
 
 - (NSDictionary *)configurationForAccountType:(NSString *)accountType;
@@ -94,6 +113,7 @@ typedef void(^NXOAuth2PreparedAuthorizationURLHandler)(NSURL *preparedURL);
 - (void)requestAccessToAccountWithType:(NSString *)accountType;
 - (void)requestAccessToAccountWithType:(NSString *)accountType withPreparedAuthorizationURLHandler:(NXOAuth2PreparedAuthorizationURLHandler)aPreparedAuthorizationURLHandler;
 - (void)requestAccessToAccountWithType:(NSString *)accountType username:(NSString *)username password:(NSString *)password;
+- (void)requestAccessToAccountWithType:(NSString *)accountType assertionType:(NSURL *)assertionType assertion:(NSString *)assertion;
 - (void)removeAccount:(NXOAuth2Account *)account;