Application: gvSIG desktop

/*

 * To change this license header, choose License Headers in Project Properties.

 * To change this template file, choose Tools | Templates

 * and open the template in the editor.

 */

package org.gvsig.downloader.swing.scribejava.keycloak.callbacks;

import com.github.scribejava.core.model.OAuth2AccessToken;

import com.github.scribejava.core.model.OAuth2Authorization;

import com.github.scribejava.core.oauth.OAuth20Service;

import com.sun.net.httpserver.HttpExchange;

import com.sun.net.httpserver.HttpHandler;

import java.io.IOException;

import javax.json.JsonObject;

import org.gvsig.downloader.swing.scribejava.keycloak.DownloaderAuthenticationKeycloakRequester;

import org.gvsig.downloader.swing.scribejava.keycloak.DownloaderKeycloakCredentials;

/**

 *

 * @author jjdelcerro

 */

@SuppressWarnings("UseSpecificCatch")

public class CallbackAuthorizationHandler extends AbstractCallback implements HttpHandler {

    public CallbackAuthorizationHandler(DownloaderAuthenticationKeycloakRequester identificationRequester, OAuth20Service service, String contextPath) {

        super(identificationRequester, service, contextPath);

    }

    @Override

    public void handle(HttpExchange t) throws IOException {

        String requestURL = "Unknown";

        try {

            long now = System.currentTimeMillis();

            requestURL = t.getRequestURI().toString();

            OAuth2Authorization auth = service.extractAuthorization(t.getRequestURI().toString());

            if (auth.getCode() == null) {

                this.identificationRequester.setCredentials(null);

                response(t, 200, message("Can't autthenticate user\n"));

                return;

            }

            final OAuth2AccessToken accessToken = service.getAccessToken(auth.getCode());

            this.identificationRequester.setCredentials(new DownloaderKeycloakCredentials(this.getConfig(), accessToken, null, now));

            String userId = null;

            JsonObject userinfo = this.identificationRequester.userInfo(service);

            if (userinfo!=null) {

                userId = userinfo.getString("preferred_username", null);

//                    System.out.println("userid: " + userId);

//                    System.out.println("name: " + userinfo.getString("name", null));

//                    System.out.println("email: " + userinfo.getString("email", null));

//                    System.out.println("roles: " + userinfo.get("gvsigol_roles").toString());

//                    System.out.println("grupos: " + userinfo.get("groups").toString());

            } else {

                userId = "unkown"+accessToken.getAccessToken().hashCode();

            }

            this.identificationRequester.setCredentials(new DownloaderKeycloakCredentials(this.getConfig(),accessToken, userId, now));

            response(t, 200, 

                    message_and_close(

                            (userId == null)?

                                "\n\n\n\n\n\n\n\n\n\n<p align=\"center\">User authenticated</p>\n\n<p align=\"center\"><button type=\"button\" onclick=\"self.close()\">Close this window</button></p>\n\n":

                                "\n\n\n\n\n\n\n\n\n\n<p align=\"center\">User " + userId + " authenticated</p>\n\n<p align=\"center\"><button type=\"button\" onclick=\"self.close();\">Close this window</button></p>\n\n"

                    )

            );

        } catch (Exception ex) {

            this.identificationRequester.setCredentials(null);

            LOGGER.warn("Can't process callback authorization (contextPath '" + contextPath + "', request URL '" + requestURL + "')", ex);

            responseQuietly(t, 500, message("Can't authenticate user\n" + ex.getMessage()));

        } finally {

            this.stopWaitingForResponse();

        }

    }

}