Add in-memory implementation for OAuth2AuthorizationService

Author: krisztian-toth

core/src/main/java/org/springframework/security/oauth2/server/authorization/AccessTokenOAuth2Authorization.java

@@ -0,0 +1,98 @@
+/*
+ * Copyright 2020 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.springframework.security.oauth2.server.authorization;
+
+import org.springframework.lang.Nullable;
+import org.springframework.security.oauth2.core.OAuth2AccessToken;
+import org.springframework.util.Assert;
+
+import java.util.Collections;
+import java.util.Map;
+import java.util.Objects;
+
+/**
+ * An {@link OAuth2Authorization} implementation with {@link OAuth2AccessToken} access token.
+ *
+ * @author Krisztian Toth
+ */
+public class AccessTokenOAuth2Authorization extends OAuth2Authorization {
+	private final OAuth2AccessToken accessToken;
+
+	/**
+	 * Creates an {@link AccessTokenOAuth2Authorization} object with the provided params and an empty, unmodifiable
+	 * {@code attributes} map.
+	 *
+	 * @see #AccessTokenOAuth2Authorization(String, String, Map, OAuth2AccessToken)
+	 */
+	public AccessTokenOAuth2Authorization(String registeredClientId, String principalName,
+			OAuth2AccessToken accessToken) {
+		this(registeredClientId, principalName, Collections.emptyMap(), accessToken);
+	}
+
+	/**
+	 * Creates an {@link AccessTokenOAuth2Authorization} object with the provided parameters and an
+	 * {@link OAuth2AccessToken access token}.
+	 *
+	 * @see OAuth2Authorization#OAuth2Authorization(String, String, Map)
+	 */
+	public AccessTokenOAuth2Authorization(String registeredClientId, String principalName,
+			@Nullable Map<String, Object> attributes, OAuth2AccessToken accessToken) {
+		super(registeredClientId, principalName, attributes);
+		Assert.notNull(accessToken, "accessToken cannot be null");
+		this.accessToken = accessToken;
+	}
+
+	@Override
+	public String getTokenValue() {
+		return accessToken.getTokenValue();
+	}
+
+	@Override
+	public TokenType getTokenType() {
+		return TokenType.ACCESS_TOKEN;
+	}
+
+	public OAuth2AccessToken getAccessToken() {
+		return accessToken;
+	}
+
+	@Override
+	public boolean equals(Object o) {
+		if (this == o) {
+			return true;
+		}
+		if (o == null || getClass() != o.getClass()) {
+			return false;
+		}
+		if (!super.equals(o)) {
+			return false;
+		}
+		AccessTokenOAuth2Authorization that = (AccessTokenOAuth2Authorization) o;
+		return Objects.equals(accessToken, that.accessToken);
+	}
+
+	@Override
+	public int hashCode() {
+		return Objects.hash(super.hashCode(), accessToken);
+	}
+
+	@Override
+	public String toString() {
+		return "AccessTokenOAuth2Authorization{" +
+				"accessToken=" + accessToken +
+				"} " + super.toString();
+	}
+}

core/src/main/java/org/springframework/security/oauth2/server/authorization/AuthorizationCodeOAuth2Authorization.java

@@ -0,0 +1,52 @@
+/*
+ * Copyright 2020 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.springframework.security.oauth2.server.authorization;
+
+import org.springframework.util.Assert;
+
+import java.util.Map;
+
+/**
+ * An {@link OAuth2Authorization} implementation for authorization code grant. The authorization code must be provided
+ * in the {@code attributes} map.
+ *
+ * @author Krisztian Toth
+ */
+public class AuthorizationCodeOAuth2Authorization extends OAuth2Authorization {
+
+	/**
+	 * Creates a {@link AuthorizationCodeOAuth2Authorization} object with the provided params. The authorization code
+	 * MUST be present in the attributes map.
+	 *
+	 * @see OAuth2Authorization#OAuth2Authorization(String, String, Map)
+	 */
+	public AuthorizationCodeOAuth2Authorization(String registeredClientId, String principalName,
+			Map<String, Object> attributes) {
+		super(registeredClientId, principalName, attributes);
+		Assert.notNull(attributes.get(TokenType.AUTHORIZATION_CODE.getValue()), "attributes must contain '"
+				+ TokenType.AUTHORIZATION_CODE.getValue() + "' entry with a non-null value");
+	}
+
+	@Override
+	public String getTokenValue() {
+		return (String) getAttributes().get(TokenType.AUTHORIZATION_CODE.getValue());
+	}
+
+	@Override
+	public TokenType getTokenType() {
+		return TokenType.AUTHORIZATION_CODE;
+	}
+}

core/src/main/java/org/springframework/security/oauth2/server/authorization/InMemoryOAuth2AuthorizationService.java

@@ -0,0 +1,80 @@
+/*
+ * Copyright 2020 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.springframework.security.oauth2.server.authorization;
+
+import org.springframework.util.Assert;
+
+import java.util.Map;
+import java.util.Objects;
+import java.util.concurrent.ConcurrentHashMap;
+
+/**
+ * In-memory implementation of {@link OAuth2AuthorizationService}.
+ *
+ * @author Krisztian Toth
+ */
+public class InMemoryOAuth2AuthorizationService implements OAuth2AuthorizationService {
+	private final Map<TokenWithType, OAuth2Authorization> tokenAuthorizationMap = new ConcurrentHashMap<>();
+
+	@Override
+	public void save(OAuth2Authorization authorization) {
+		Assert.notNull(authorization, "authorization cannot be null");
+		TokenWithType tokenWithType = new TokenWithType(authorization.getTokenValue(), authorization.getTokenType());
+		tokenAuthorizationMap.put(tokenWithType, authorization);
+	}
+
+	@Override
+	public OAuth2Authorization findByTokenAndTokenType(String token, TokenType tokenType) {
+		Assert.hasText(token, "token cannot be empty");
+		Assert.notNull(tokenType, "tokenType cannot be null");
+		return tokenAuthorizationMap.get(new TokenWithType(token, tokenType));
+	}
+
+	/**
+	 * Visible for testing.
+	 */
+	Map<TokenWithType, OAuth2Authorization> getTokenAuthorizationMap() {
+		return tokenAuthorizationMap;
+	}
+
+	static class TokenWithType {
+		private final String token;
+		private final TokenType tokenType;
+
+		public TokenWithType(String token, TokenType tokenType) {
+			this.token = token;
+			this.tokenType = tokenType;
+		}
+
+		@Override
+		public boolean equals(Object o) {
+			if (this == o) {
+				return true;
+			}
+			if (o == null || getClass() != o.getClass()) {
+				return false;
+			}
+			TokenWithType that = (TokenWithType) o;
+			return token.equals(that.token) &&
+					tokenType.equals(that.tokenType);
+		}
+
+		@Override
+		public int hashCode() {
+			return Objects.hash(token, tokenType);
+		}
+	}
+}

core/src/main/java/org/springframework/security/oauth2/server/authorization/OAuth2Authorization.java

@@ -15,17 +15,79 @@
  */
 package org.springframework.security.oauth2.server.authorization;
 
-import org.springframework.security.oauth2.core.OAuth2AccessToken;
+import org.springframework.lang.Nullable;
+import org.springframework.util.Assert;
 
+import java.util.Collections;
 import java.util.Map;
+import java.util.Objects;
 
 /**
+ * Represents a collection of attributes which describe an OAuth 2.0 authorization context.
+ *
  * @author Joe Grandja
+ * @author Krisztian Toth
  */
-public class OAuth2Authorization {
-	private String registeredClientId;
-	private String principalName;
-	private OAuth2AccessToken accessToken;
-	private Map<String, Object> attributes;
+public abstract class OAuth2Authorization implements TokenContainer {
+	private final String registeredClientId;
+	private final String principalName;
+	private final Map<String, Object> attributes;
+
+	/**
+	 * Creates an {@link OAuth2Authorization} object with the provided params.
+	 *
+	 * @param registeredClientId the client's identifier which issued the authorization
+	 * @param principalName      the name of the principal the client wants to authorize
+	 * @param attributes         additional attributes associated with the authorization
+	 */
+	public OAuth2Authorization(String registeredClientId, String principalName,
+			@Nullable Map<String, Object> attributes) {
+		Assert.hasText(registeredClientId, "registeredClientId cannot be empty");
+		Assert.hasText(principalName, "principalName cannot be empty");
+		this.registeredClientId = registeredClientId;
+		this.principalName = principalName;
+		this.attributes = attributes == null ?
+				Collections.emptyMap() :
+				Collections.unmodifiableMap(attributes);
+	}
+
+	public String getRegisteredClientId() {
+		return registeredClientId;
+	}
+
+	public String getPrincipalName() {
+		return principalName;
+	}
+
+	public Map<String, Object> getAttributes() {
+		return attributes;
+	}
+
+	@Override
+	public boolean equals(Object o) {
+		if (this == o) {
+			return true;
+		}
+		if (o == null || getClass() != o.getClass()) {
+			return false;
+		}
+		OAuth2Authorization that = (OAuth2Authorization) o;
+		return Objects.equals(registeredClientId, that.registeredClientId) &&
+				Objects.equals(principalName, that.principalName) &&
+				Objects.equals(attributes, that.attributes);
+	}
+
+	@Override
+	public int hashCode() {
+		return Objects.hash(registeredClientId, principalName, attributes);
+	}
 
+	@Override
+	public String toString() {
+		return "IOAuth2Authorization{" +
+				"registeredClientId='" + registeredClientId + '\'' +
+				", principalName='" + principalName + '\'' +
+				", attributes=" + attributes +
+				'}';
+	}
 }

core/src/main/java/org/springframework/security/oauth2/server/authorization/TokenContainer.java

@@ -0,0 +1,38 @@
+/*
+ * Copyright 2020 the original author or authors.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      https://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.springframework.security.oauth2.server.authorization;
+
+/**
+ * An interface for retrieving a token value and its type.
+ *
+ * @author Krisztian Toth
+ */
+public interface TokenContainer {
+
+	/**
+	 * Returns the token value.
+	 *
+	 * @return the token value
+	 */
+	String getTokenValue();
+
+	/**
+	 * Returns the token's type.
+	 *
+	 * @return the token's type
+	 */
+	TokenType getTokenType();
+}