src/main/java/me/zhyd/oauth/request/AuthMicrosoftRequest.java

package me.zhyd.oauth.request;

import cn.hutool.http.HttpRequest;
import cn.hutool.http.HttpResponse;
import cn.hutool.http.HttpUtil;
import com.alibaba.fastjson.JSONObject;
import me.zhyd.oauth.config.AuthConfig;
import me.zhyd.oauth.config.AuthSource;
import me.zhyd.oauth.exception.AuthException;
import me.zhyd.oauth.model.*;
import me.zhyd.oauth.utils.UrlBuilder;

import java.util.HashMap;
import java.util.Map;

import static me.zhyd.oauth.utils.GlobalAuthUtil.parseQueryToMap;

/**
 * 微软登录
 *
 * @author yangkai.shen (https://xkcoding.com)
 * @version 1.5
 * @since 1.5
 */
public class AuthMicrosoftRequest extends AuthDefaultRequest {
    public AuthMicrosoftRequest(AuthConfig config) {
        super(config, AuthSource.MICROSOFT);
    }

    @Override
    protected AuthToken getAccessToken(AuthCallback authCallback) {
        return getToken(accessTokenUrl(authCallback.getCode()));
    }

    /**
     * 获取token，适用于获取access_token和刷新token
     *
     * @param accessTokenUrl 实际请求token的地址
     * @return token对象
     */
    private AuthToken getToken(String accessTokenUrl) {
        HttpResponse response = HttpRequest.post(accessTokenUrl)
            .header("Host", "https://login.microsoftonline.com")
            .contentType("application/x-www-form-urlencoded")
            .form(parseQueryToMap(accessTokenUrl))
            .execute();
        String accessTokenStr = response.body();
        JSONObject accessTokenObject = JSONObject.parseObject(accessTokenStr);

        this.checkResponse(accessTokenObject);

        return AuthToken.builder()
            .accessToken(accessTokenObject.getString("access_token"))
            .expireIn(accessTokenObject.getIntValue("expires_in"))
            .scope(accessTokenObject.getString("scope"))
            .tokenType(accessTokenObject.getString("token_type"))
            .refreshToken(accessTokenObject.getString("refresh_token"))
            .build();
    }

    private void checkResponse(JSONObject response) {
        if (response.containsKey("error")) {
            throw new AuthException(response.getString("error_description"));
        }
    }

    @Override
    protected AuthUser getUserInfo(AuthToken authToken) {
        String token = authToken.getAccessToken();
        String tokenType = authToken.getTokenType();
        String jwt = tokenType + " " + token;
        HttpResponse response = HttpRequest.get(userInfoUrl(authToken)).header("Authorization", jwt).execute();
        String userInfo = response.body();
        JSONObject object = JSONObject.parseObject(userInfo);
        return AuthUser.builder()
            .uuid(object.getString("id"))
            .username(object.getString("userPrincipalName"))
            .nickname(object.getString("displayName"))
            .location(object.getString("officeLocation"))
            .email(object.getString("mail"))
            .gender(AuthUserGender.UNKNOWN)
            .token(authToken)
            .source(AuthSource.MICROSOFT)
            .build();
    }

    /**
     * 刷新access token （续期）
     *
     * @param authToken 登录成功后返回的Token信息
     * @return AuthResponse
     */
    @Override
    public AuthResponse refresh(AuthToken authToken) {
        return AuthResponse.builder()
            .code(AuthResponseStatus.SUCCESS.getCode())
            .data(getToken(refreshTokenUrl(authToken.getRefreshToken())))
            .build();
    }

    /**
     * 返回认证url，可自行跳转页面
     *
     * @return 返回授权地址
     */
    @Override
    public String authorize() {
        return UrlBuilder.fromBaseUrl(source.authorize())
            .queryParam("response_type", "code")
            .queryParam("client_id", config.getClientId())
            .queryParam("redirect_uri", config.getRedirectUri())
            .queryParam("response_mode", "query")
            .queryParam("scope", "offline_access%20user.read%20mail.read")
            .queryParam("state", getRealState(config.getState()))
            .build();
    }

    /**
     * 返回获取accessToken的url
     *
     * @param code
     * @return 返回获取accessToken的url
     */
    @Override
    protected String accessTokenUrl(String code) {
        return UrlBuilder.fromBaseUrl(source.accessToken())
            .queryParam("code", code)
            .queryParam("client_id", config.getClientId())
            .queryParam("client_secret", config.getClientSecret())
            .queryParam("grant_type", "authorization_code")
            .queryParam("scope", "user.read%20mail.read")
            .queryParam("redirect_uri", config.getRedirectUri())
            .build();
    }

    /**
     * 返回获取userInfo的url
     *
     * @param authToken
     * @return 返回获取userInfo的url
     */
    @Override
    protected String userInfoUrl(AuthToken authToken) {
        return UrlBuilder.fromBaseUrl(source.userInfo()).build();
    }

    /**
     * 返回获取accessToken的url
     *
     * @param refreshToken
     * @return 返回获取accessToken的url
     */
    @Override
    protected String refreshTokenUrl(String refreshToken) {
        return UrlBuilder.fromBaseUrl(source.refresh())
            .queryParam("client_id", config.getClientId())
            .queryParam("client_secret", config.getClientSecret())
            .queryParam("refresh_token", refreshToken)
            .queryParam("grant_type", "refresh_token")
            .queryParam("scope", "user.read%20mail.read")
            .queryParam("redirect_uri", config.getRedirectUri())
            .build();
    }
}
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`package me.zhyd.oauth.request;`

			`import cn.hutool.http.HttpRequest;`
			`import cn.hutool.http.HttpResponse;`
			`import cn.hutool.http.HttpUtil;`
			`import com.alibaba.fastjson.JSONObject;`
			`import me.zhyd.oauth.config.AuthConfig;`
🔀 合并github中的pr 2019-06-20 10:10:18 +08:00			`import me.zhyd.oauth.config.AuthSource;`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`import me.zhyd.oauth.exception.AuthException;`
👽 修改login方法的参数为AuthCallback，封装回调返回的参数、支持state参数、增加code和state参数校验 2019-06-27 19:39:21 +08:00			`import me.zhyd.oauth.model.*;`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`import me.zhyd.oauth.utils.UrlBuilder;`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00
			`import java.util.HashMap;`
			`import java.util.Map;`

refactor: extract common method 2019-07-18 18:23:45 +08:00			`import static me.zhyd.oauth.utils.GlobalAuthUtil.parseQueryToMap;`

✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`/**`
			`* 微软登录`
			`*`
			`* @author yangkai.shen (https://xkcoding.com)`
			`* @version 1.5`
			`* @since 1.5`
			`*/`
♻️ rename 2019-07-16 17:59:36 +08:00			`public class AuthMicrosoftRequest extends AuthDefaultRequest {`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`public AuthMicrosoftRequest(AuthConfig config) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`super(config, AuthSource.MICROSOFT);`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`}`

			`@Override`
👽 修改login方法的参数为AuthCallback，封装回调返回的参数、支持state参数、增加code和state参数校验 2019-06-27 19:39:21 +08:00			`protected AuthToken getAccessToken(AuthCallback authCallback) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`return getToken(accessTokenUrl(authCallback.getCode()));`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`}`

			`/**`
			`* 获取token，适用于获取access_token和刷新token`
			`*`
			`* @param accessTokenUrl 实际请求token的地址`
			`* @return token对象`
			`*/`
			`private AuthToken getToken(String accessTokenUrl) {`
			`HttpResponse response = HttpRequest.post(accessTokenUrl)`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.header("Host", "https://login.microsoftonline.com")`
Merge branch 'dev' into remove-urlbuilder 2019-07-18 08:21:13 -05:00			`.contentType("application/x-www-form-urlencoded")`
			`.form(parseQueryToMap(accessTokenUrl))`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.execute();`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`String accessTokenStr = response.body();`
✨ 全面开启state校验 2019-06-28 22:58:34 +08:00			`JSONObject accessTokenObject = JSONObject.parseObject(accessTokenStr);`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00
✨ 全面开启state校验 2019-06-28 22:58:34 +08:00			`this.checkResponse(accessTokenObject);`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00
			`return AuthToken.builder()`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.accessToken(accessTokenObject.getString("access_token"))`
			`.expireIn(accessTokenObject.getIntValue("expires_in"))`
			`.scope(accessTokenObject.getString("scope"))`
			`.tokenType(accessTokenObject.getString("token_type"))`
			`.refreshToken(accessTokenObject.getString("refresh_token"))`
			`.build();`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`}`

			`private void checkResponse(JSONObject response) {`
			`if (response.containsKey("error")) {`
			`throw new AuthException(response.getString("error_description"));`
			`}`
			`}`

			`@Override`
			`protected AuthUser getUserInfo(AuthToken authToken) {`
			`String token = authToken.getAccessToken();`
			`String tokenType = authToken.getTokenType();`
			`String jwt = tokenType + " " + token;`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`HttpResponse response = HttpRequest.get(userInfoUrl(authToken)).header("Authorization", jwt).execute();`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`String userInfo = response.body();`
			`JSONObject object = JSONObject.parseObject(userInfo);`
			`return AuthUser.builder()`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`.uuid(object.getString("id"))`
			`.username(object.getString("userPrincipalName"))`
			`.nickname(object.getString("displayName"))`
			`.location(object.getString("officeLocation"))`
			`.email(object.getString("mail"))`
			`.gender(AuthUserGender.UNKNOWN)`
			`.token(authToken)`
			`.source(AuthSource.MICROSOFT)`
			`.build();`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`}`

			`/**`
			`* 刷新access token （续期）`
			`*`
			`* @param authToken 登录成功后返回的Token信息`
			`* @return AuthResponse`
			`*/`
			`@Override`
			`public AuthResponse refresh(AuthToken authToken) {`
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`return AuthResponse.builder()`
			`.code(AuthResponseStatus.SUCCESS.getCode())`
			`.data(getToken(refreshTokenUrl(authToken.getRefreshToken())))`
			`.build();`
			`}`

			`/**`
			`* 返回认证url，可自行跳转页面`
			`*`
			`* @return 返回授权地址`
			`*/`
			`@Override`
			`public String authorize() {`
			`return UrlBuilder.fromBaseUrl(source.authorize())`
			`.queryParam("response_type", "code")`
			`.queryParam("client_id", config.getClientId())`
			`.queryParam("redirect_uri", config.getRedirectUri())`
			`.queryParam("response_mode", "query")`
			`.queryParam("scope", "offline_access%20user.read%20mail.read")`
			`.queryParam("state", getRealState(config.getState()))`
			`.build();`
			`}`

			`/**`
			`* 返回获取accessToken的url`
			`*`
			`* @param code`
			`* @return 返回获取accessToken的url`
			`*/`
			`@Override`
			`protected String accessTokenUrl(String code) {`
			`return UrlBuilder.fromBaseUrl(source.accessToken())`
			`.queryParam("code", code)`
			`.queryParam("client_id", config.getClientId())`
			`.queryParam("client_secret", config.getClientSecret())`
			`.queryParam("grant_type", "authorization_code")`
			`.queryParam("scope", "user.read%20mail.read")`
			`.queryParam("redirect_uri", config.getRedirectUri())`
			`.build();`
			`}`

			`/**`
			`* 返回获取userInfo的url`
			`*`
			`* @param authToken`
			`* @return 返回获取userInfo的url`
			`*/`
			`@Override`
			`protected String userInfoUrl(AuthToken authToken) {`
			`return UrlBuilder.fromBaseUrl(source.userInfo()).build();`
			`}`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00
♻️ 移除 UrlBuilder 2019-07-18 20:37:41 +08:00			`/**`
			`* 返回获取accessToken的url`
			`*`
			`* @param refreshToken`
			`* @return 返回获取accessToken的url`
			`*/`
			`@Override`
			`protected String refreshTokenUrl(String refreshToken) {`
			`return UrlBuilder.fromBaseUrl(source.refresh())`
			`.queryParam("client_id", config.getClientId())`
			`.queryParam("client_secret", config.getClientSecret())`
			`.queryParam("refresh_token", refreshToken)`
			`.queryParam("grant_type", "refresh_token")`
			`.queryParam("scope", "user.read%20mail.read")`
			`.queryParam("redirect_uri", config.getRedirectUri())`
			`.build();`
✨ 增加微软登录支持 2019-05-28 15:58:41 +08:00			`}`
			`}`