Merge pull request eugenp#146 from Doha2012/master

spring oauth reddit submit

Author: Eugen

spring-security-oauth/src/main/java/org/baeldung/config/MyAuthorizationCodeAccessTokenProvider.java

@@ -25,13 +25,14 @@
 import org.springframework.security.oauth2.client.token.grant.code.AuthorizationCodeAccessTokenProvider;
 import org.springframework.security.oauth2.client.token.grant.code.AuthorizationCodeResourceDetails;
 import org.springframework.security.oauth2.common.OAuth2AccessToken;
-import org.springframework.security.oauth2.common.OAuth2RefreshToken;
 import org.springframework.security.oauth2.common.exceptions.InvalidRequestException;
 import org.springframework.security.oauth2.common.util.OAuth2Utils;
 import org.springframework.util.LinkedMultiValueMap;
 import org.springframework.util.MultiValueMap;
 import org.springframework.web.client.ResponseExtractor;
 
+import com.google.common.base.Joiner;
+
 public class MyAuthorizationCodeAccessTokenProvider extends AuthorizationCodeAccessTokenProvider {
 
     private StateKeyGenerator stateKeyGenerator = new DefaultStateKeyGenerator();
@@ -42,7 +43,6 @@ public class MyAuthorizationCodeAccessTokenProvider extends AuthorizationCodeAcc
 
     @Override
     public String obtainAuthorizationCode(OAuth2ProtectedResourceDetails details, AccessTokenRequest request) throws UserRedirectRequiredException, UserApprovalRequiredException, AccessDeniedException, OAuth2AccessDeniedException {
-
         AuthorizationCodeResourceDetails resource = (AuthorizationCodeResourceDetails) details;
 
         HttpHeaders headers = getHeadersForAuthorizationRequest(request);
@@ -97,12 +97,10 @@ public ResponseEntity<Void> extractData(ClientHttpResponse response) throws IOEx
         }
         request.set("code", code);
         return code;
-
     }
 
     @Override
     public OAuth2AccessToken obtainAccessToken(OAuth2ProtectedResourceDetails details, AccessTokenRequest request) throws UserRedirectRequiredException, UserApprovalRequiredException, AccessDeniedException, OAuth2AccessDeniedException {
-
         AuthorizationCodeResourceDetails resource = (AuthorizationCodeResourceDetails) details;
 
         if (request.getAuthorizationCode() == null) {
@@ -112,24 +110,10 @@ public OAuth2AccessToken obtainAccessToken(OAuth2ProtectedResourceDetails detail
             obtainAuthorizationCode(resource, request);
         }
         return retrieveToken(request, resource, getParametersForTokenRequest(resource, request), getHeadersForTokenRequest(request));
-
-    }
-
-    @Override
-    public OAuth2AccessToken refreshAccessToken(OAuth2ProtectedResourceDetails resource, OAuth2RefreshToken refreshToken, AccessTokenRequest request) throws UserRedirectRequiredException, OAuth2AccessDeniedException {
-        MultiValueMap<String, String> form = new LinkedMultiValueMap<String, String>();
-        form.add("grant_type", "refresh_token");
-        form.add("refresh_token", refreshToken.getValue());
-        try {
-            return retrieveToken(request, resource, form, getHeadersForTokenRequest(request));
-        } catch (OAuth2AccessDeniedException e) {
-            throw getRedirectForAuthorization((AuthorizationCodeResourceDetails) resource, request);
-        }
     }
 
     private HttpHeaders getHeadersForTokenRequest(AccessTokenRequest request) {
         HttpHeaders headers = new HttpHeaders();
-        // No cookie for token request
         return headers;
     }
 
@@ -143,7 +127,6 @@ private HttpHeaders getHeadersForAuthorizationRequest(AccessTokenRequest request
     }
 
     private MultiValueMap<String, String> getParametersForTokenRequest(AuthorizationCodeResourceDetails resource, AccessTokenRequest request) {
-
         MultiValueMap<String, String> form = new LinkedMultiValueMap<String, String>();
         form.set("grant_type", "authorization_code");
         form.set("code", request.getAuthorizationCode());
@@ -167,19 +150,17 @@ private MultiValueMap<String, String> getParametersForTokenRequest(Authorization
         }
 
         return form;
-
     }
 
     private MultiValueMap<String, String> getParametersForAuthorizeRequest(AuthorizationCodeResourceDetails resource, AccessTokenRequest request) {
-
         MultiValueMap<String, String> form = new LinkedMultiValueMap<String, String>();
         form.set("response_type", "code");
         form.set("client_id", resource.getClientId());
 
         if (request.get("scope") != null) {
             form.set("scope", request.getFirst("scope"));
         } else {
-            form.set("scope", OAuth2Utils.formatParameterList(resource.getScope()));
+            form.set("scope", Joiner.on(',').join(resource.getScope()));
         }
 
         String redirectUri = resource.getPreEstablishedRedirectUri();
@@ -204,17 +185,13 @@ private MultiValueMap<String, String> getParametersForAuthorizeRequest(Authoriza
         }
 
         return form;
-
     }
 
     private UserRedirectRequiredException getRedirectForAuthorization(AuthorizationCodeResourceDetails resource, AccessTokenRequest request) {
-
-        // we don't have an authorization code yet. So first get that.
         TreeMap<String, String> requestParameters = new TreeMap<String, String>();
-        requestParameters.put("response_type", "code"); // oauth2 spec, section 3
+        requestParameters.put("response_type", "code");
         requestParameters.put("client_id", resource.getClientId());
         requestParameters.put("duration", "permanent");
-        // Client secret is not required in the initial authorization request
 
         String redirectUri = resource.getRedirectUri(request);
         if (redirectUri != null) {
@@ -231,7 +208,7 @@ private UserRedirectRequiredException getRedirectForAuthorization(AuthorizationC
                 while (scopeIt.hasNext()) {
                     builder.append(scopeIt.next());
                     if (scopeIt.hasNext()) {
-                        builder.append(' ');
+                        builder.append(',');
                     }
                 }
             }
@@ -248,7 +225,6 @@ private UserRedirectRequiredException getRedirectForAuthorization(AuthorizationC
         request.setPreservedState(redirectUri);
 
         return redirectException;
-
     }
 
 }

spring-security-oauth/src/main/java/org/baeldung/config/WebConfig.java

@@ -85,7 +85,7 @@ public OAuth2ProtectedResourceDetails reddit() {
             details.setAccessTokenUri(accessTokenUri);
             details.setUserAuthorizationUri(userAuthorizationUri);
             details.setTokenName("oauth_token");
-            details.setScope(Arrays.asList("identity"));
+            details.setScope(Arrays.asList("identity", "read", "submit"));
             details.setGrantType("authorization_code");
             return details;
         }

spring-security-oauth/src/main/java/org/baeldung/web/RedditController.java

@@ -1,14 +1,26 @@
 package org.baeldung.web;
 
+import java.io.IOException;
+import java.util.ArrayList;
+import java.util.HashMap;
+import java.util.List;
+import java.util.Map;
+
 import org.slf4j.Logger;
 import org.slf4j.LoggerFactory;
+import org.springframework.http.HttpEntity;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.MediaType;
+import org.springframework.http.ResponseEntity;
 import org.springframework.security.oauth2.client.OAuth2RestTemplate;
 import org.springframework.security.oauth2.client.resource.UserApprovalRequiredException;
 import org.springframework.security.oauth2.client.resource.UserRedirectRequiredException;
 import org.springframework.stereotype.Controller;
 import org.springframework.ui.Model;
 import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
 
+import com.fasterxml.jackson.core.JsonProcessingException;
 import com.fasterxml.jackson.databind.JsonNode;
 import com.fasterxml.jackson.databind.ObjectMapper;
 
@@ -36,6 +48,81 @@ public String getInfo(Model model) {
         return "reddit";
     }
 
+    @RequestMapping("/submit")
+    public String submit(Model model, @RequestParam Map<String, String> formParams) {
+        try {
+            System.out.println(formParams.keySet());
+            HttpHeaders headers = new HttpHeaders();
+            headers.setContentType(MediaType.APPLICATION_JSON);
+            HttpEntity req = new HttpEntity(headers);
+
+            Map<String, String> param = new HashMap<String, String>();
+            param.put("api_type", "json");
+            param.put("kind", "self");
+            param.put("sr", "api");
+            // param.put("iden", "XCzyTdJveIcYXNhLJ4a2X9WVDswtx83u");
+            // param.put("captcha", "BJMGMU");
+            // param.put("title", "http2 is coming soon");
+            // param.put("text", "http2 is coming soon what do you think about that");
+            param.putAll(formParams);
+
+            System.out.println(param.keySet());
+            System.out.println(param.entrySet());
+            ResponseEntity<String> result = redditRestTemplate.postForEntity("https://oauth.reddit.com/api/submit", req, String.class, param);
+            model.addAttribute("error", result.getBody());
+        } catch (UserApprovalRequiredException e) {
+            throw e;
+        } catch (UserRedirectRequiredException e) {
+            throw e;
+        } catch (Exception e) {
+            LOGGER.error("Error occurred", e);
+            model.addAttribute("error", e.getLocalizedMessage());
+        }
+        return "reddit";
+    }
+
+    @RequestMapping("/post")
+    public String showSubmissionForm(Model model) throws JsonProcessingException, IOException {
+        String needsCaptchaResult = needsCaptcha();
+        if (needsCaptchaResult.equalsIgnoreCase("true")) {
+            String newCaptchaResult = getNewCaptcha();
+            String[] split = newCaptchaResult.split("\"");
+            String iden = split[split.length - 2];
+            model.addAttribute("iden", iden.trim());
+        }
+        return "submissionForm";
+    }
+
+    //
+
+    public List<String> getSubreddit(Model model) throws JsonProcessingException, IOException {
+        String result = redditRestTemplate.getForObject("https://oauth.reddit.com/subreddits/popular", String.class);
+        JsonNode node = new ObjectMapper().readTree(result);
+        node = node.get("data").get("children");
+        List<String> subreddits = new ArrayList<String>();
+        for (JsonNode child : node) {
+            subreddits.add(child.get("data").get("display_name").asText());
+        }
+        return subreddits;
+    }
+
+    public String needsCaptcha() {
+        String result = redditRestTemplate.getForObject("https://oauth.reddit.com/api/needs_captcha.json", String.class);
+        return result;
+    }
+
+    public String getNewCaptcha() {
+        HttpHeaders headers = new HttpHeaders();
+        headers.setContentType(MediaType.APPLICATION_JSON);
+        HttpEntity req = new HttpEntity(headers);
+
+        Map<String, String> param = new HashMap<String, String>();
+        param.put("api_type", "json");
+
+        ResponseEntity<String> result = redditRestTemplate.postForEntity("https://oauth.reddit.com/api/new_captcha", req, String.class, param);
+        return result.getBody();
+    }
+
     public void setRedditRestTemplate(OAuth2RestTemplate redditRestTemplate) {
         this.redditRestTemplate = redditRestTemplate;
     }

spring-security-oauth/src/main/webapp/WEB-INF/jsp/reddit.jsp

@@ -9,6 +9,8 @@
     <c:when test="${info != null}">
         <h1>Your Reddit Info</h1>
         <b>Your reddit username is </b>${info}
+        <br>
+        <a href="post">Submit to Reddit</a>
     </c:when>
     <c:otherwise> 
         <b>Sorry, error occurred</b> 

spring-security-oauth/src/main/webapp/WEB-INF/jsp/submissionForm.jsp

@@ -0,0 +1,40 @@
+<%@ taglib prefix="c" uri="http://java.sun.com/jsp/jstl/core"%>
+<html xmlns="http://www.w3.org/1999/xhtml">
+<head>
+
+<title>Spring Security OAuth</title>
+<link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.2/css/bootstrap.min.css">
+
+</head>
+<body>
+<div class="container">
+<h1>Submit to Reddit</h1>
+<form action="submit" method="post">
+<div class="row">
+<div class="form-group">
+    <label class="col-sm-3">Title</label>
+    <span class="col-sm-9"><input name="title" placeholder="title" class="form-control" /></span>
+</div>
+<br><br>
+<div class="form-group">
+    <label class="col-sm-3">Content</label>
+    <span class="col-sm-9"><textarea placeholder="content" class="form-control"></textarea></span>
+</div>
+<br><br>   
+    <c:if test="${iden != null}">
+    <input type="hidden" name="iden" value="${iden}"/>
+    
+	<div class="form-group">   
+	    <label class="col-sm-3">Captcha</label>
+	    <span class="col-sm-9"><input name="captcha" placeholder="captcha" class="form-control"/></span>
+	</div>
+	<br><br>
+    <img src="http://www.reddit.com/captcha/${iden}" alt="captcha" width="200"/>
+    </c:if>
+    <br><br>
+    <button type="submit" class="btn btn-primary">Post</button>
+   </div>
+</form>
+</div>
+</body>
+</html>