Source code

001/*
002 * (C) Copyright 2014 Nuxeo SA (http://nuxeo.com/) and others.
003 *
004 * Licensed under the Apache License, Version 2.0 (the "License");
005 * you may not use this file except in compliance with the License.
006 * You may obtain a copy of the License at
007 *
008 *     http://www.apache.org/licenses/LICENSE-2.0
009 *
010 * Unless required by applicable law or agreed to in writing, software
011 * distributed under the License is distributed on an "AS IS" BASIS,
012 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
013 * See the License for the specific language governing permissions and
014 * limitations under the License.
015 *
016 * Contributors:
017 *     Arnaud Kervern
018 */
019package org.nuxeo.ecm.admin.oauth2;
020
021import static org.nuxeo.ecm.platform.oauth2.clients.OAuth2ClientService.OAUTH2CLIENT_DIRECTORY_NAME;
022import static org.nuxeo.ecm.platform.oauth2.clients.OAuth2ClientService.OAUTH2CLIENT_SCHEMA;
023
024import java.util.Arrays;
025import java.util.List;
026
027import javax.faces.application.FacesMessage;
028import javax.faces.component.UIComponent;
029import javax.faces.context.FacesContext;
030import javax.faces.validator.ValidatorException;
031
032import org.jboss.seam.ScopeType;
033import org.jboss.seam.annotations.Name;
034import org.jboss.seam.annotations.Scope;
035import org.nuxeo.ecm.admin.oauth.DirectoryBasedEditor;
036import org.nuxeo.ecm.platform.oauth2.clients.OAuth2Client;
037import org.nuxeo.ecm.platform.oauth2.clients.OAuth2ClientService;
038import org.nuxeo.ecm.platform.ui.web.util.ComponentUtils;
039import org.nuxeo.runtime.api.Framework;
040
041/**
042 * @author <a href="mailto:ak@nuxeo.com">Arnaud Kervern</a>
043 * @since 5.9.2
044 */
045@Name("oauth2ClientsActions")
046@Scope(ScopeType.CONVERSATION)
047public class OAuth2ClientsActions extends DirectoryBasedEditor {
048
049    private static final long serialVersionUID = 1L;
050
051    @Override
052    protected String getDirectoryName() {
053        return OAUTH2CLIENT_DIRECTORY_NAME;
054    }
055
056    @Override
057    protected String getSchemaName() {
058        return OAUTH2CLIENT_SCHEMA;
059    }
060
061    public void validateRedirectURIs(FacesContext context, UIComponent component, Object value) {
062        if (!(value instanceof String)) {
063            handleValidationError(context, "label.oauth2.missing.redirectURI");
064        }
065        List<String> redirectURIs = Arrays.asList(((String) value).split(","));
066        if (redirectURIs.isEmpty()) {
067            handleValidationError(context, "label.oauth2.missing.redirectURI");
068        }
069        redirectURIs.stream().map(String::trim).forEach(redirectURI -> {
070            if (redirectURI.isEmpty()) {
071                handleValidationError(context, "label.oauth2.empty.redirectURI");
072            }
073            if (!OAuth2Client.isRedirectURIValid(redirectURI)) {
074                handleValidationError(context, "label.oauth2.invalid.redirectURIs");
075            }
076        });
077    }
078
079    protected void handleValidationError(FacesContext context, String label) {
080        FacesMessage message = new FacesMessage(FacesMessage.SEVERITY_ERROR, ComponentUtils.translate(context, label),
081                null);
082        throw new ValidatorException(message);
083    }
084
085    public void validateClientId(FacesContext context, UIComponent component, Object value) {
086        OAuth2ClientService clientService = Framework.getService(OAuth2ClientService.class);
087        if (value instanceof String && clientService.hasClient((String) value)) {
088            FacesMessage message = new FacesMessage(FacesMessage.SEVERITY_ERROR,
089                    ComponentUtils.translate(context, "label.oauth2.existing.clientId"), null);
090            throw new ValidatorException(message);
091        }
092    }
093}