Source code

001/*
002 * CDDL HEADER START
003 *
004 * The contents of this file are subject to the terms of the
005 * Common Development and Distribution License, Version 1.0 only
006 * (the "License").  You may not use this file except in compliance
007 * with the License.
008 *
009 * You can obtain a copy of the license at
010 * trunk/ds/resource/legal-notices/cddl.txt
011 * or http://www.opensource.org/licenses/cddl1.php.
012 * See the License for the specific language governing permissions
013 * and limitations under the License.
014 *
015 * When distributing Covered Code, include this CDDL HEADER in each
016 * file and include the License file at
017 * trunk/ds/resource/legal-notices/cddl.txt.  If applicable,
018 * add the following below this CDDL HEADER, with the fields enclosed
019 * by brackets "[]" replaced with your own identifying information:
020 *      Portions Copyright [yyyy] [name of copyright owner]
021 *
022 * CDDL HEADER END
023 *
024 *
025 *      Copyright 2010-2016 UnboundID Corp.
026 */
027package com.unboundid.directory.sdk.broker.types;
028
029import com.unboundid.util.Mutable;
030import com.unboundid.util.NotExtensible;
031import com.unboundid.util.ThreadSafety;
032import com.unboundid.util.ThreadSafetyLevel;
033import com.unboundid.util.Validator;
034
035import java.util.Collections;
036import java.util.Date;
037import java.util.Iterator;
038import java.util.Set;
039
040/**
041 * This class provides a data structure for working with OAuth2 access tokens.
042 */
043@NotExtensible()
044@Mutable()
045@ThreadSafety(level= ThreadSafetyLevel.COMPLETELY_THREADSAFE)
046public final class AccessToken extends Token
047{
048  // The user ID associated with this token.
049  private final String userId;
050
051  // The set of scope IDs for which the application has requested or authorized.
052  private final Set<String> scopeIds;
053
054  // The refresh token associated with this access token.
055  private volatile RefreshToken refreshToken;
056
057  /**
058   * Construct a new access token instance.
059   *
060   * @param userId The user ID of the resource owner this access token is
061   *                 associated with or the application ID if resource owner
062   *                 authentication was not performed.
063   * @param applicationId The application ID with which this token is
064   *                      associated. Must not be null.
065   * @param generateTimestamp The time that this token was generated. Must not
066   *                          be null.
067   * @param maxValiditySeconds The maximum length of time in seconds that this
068   *                           token will be considered valid. Must not be null
069   *                           and must not be negative.
070   * @param scopeIds The set of scopes for which the client has been authorized.
071   *                 Must not be null.
072   */
073  public AccessToken(final String userId, final String applicationId,
074                     final Date generateTimestamp,
075                     final long maxValiditySeconds, final Set<String> scopeIds)
076  {
077    super(applicationId, scopeIds, generateTimestamp, maxValiditySeconds);
078    this.userId = userId;
079    this.scopeIds = Collections.unmodifiableSet(scopeIds);
080  }
081
082  /**
083   * Retrieves the user ID of the resource owner this access token is
084   * associated with. Some grant types don't require resource owner involvement
085   * (ie. client_credentials), the userId may be equal to the application ID in
086   * such cases.
087   *
088   * @return The user ID of the resource owner this access token is associated
089   *         with or equal to the application ID if resource owner
090   *         authentication was not performed.
091   */
092  public String getUserId()
093  {
094    return userId;
095  }
096
097  /**
098   * Retrieves the refresh token associated with this access token.
099   *
100   * @return The refresh token associated with this access token or {@code null}
101   *         if there is no associated refresh token.
102   */
103  public RefreshToken getRefreshToken()
104  {
105    return refreshToken;
106  }
107
108  /**
109   * Sets the refresh token associated with this access token.
110   *
111   * @param refreshToken The refresh token associated with this access token.
112   */
113  public void setRefreshToken(final RefreshToken refreshToken)
114  {
115    Validator.ensureNotNull(refreshToken);
116    this.refreshToken = refreshToken;
117  }
118
119  /**
120   * Retrieves a hash code for this access token.
121   *
122   * @return  A hash code for this access token.
123   */
124  @Override
125  public int hashCode()
126  {
127    final int prime = 31;
128    int result = super.hashCode();
129    result = prime * result + (userId != null ? userId.hashCode() : 0);
130    result = prime * result + (scopeIds != null ? scopeIds.hashCode() : 0);
131    return result;
132  }
133
134  /**
135   * Indicates whether the provided object is equal to this access token.
136   *
137   * @param  o  The object for which to make the determination.
138   *
139   * @return  {@code true} if the provided object is equal to this authorization
140   *          code, or {@code false} if not.
141   */
142  @Override
143  public boolean equals(final Object o)
144  {
145    if (this == o)
146    {
147      return true;
148    }
149    if (o == null || getClass() != o.getClass())
150    {
151      return false;
152    }
153
154    AccessToken that = (AccessToken) o;
155
156    if (scopeIds != null ?
157        !scopeIds.equals(that.scopeIds) :
158        that.scopeIds != null)
159    {
160      return false;
161    }
162    if (userId != null ?
163        !userId.equals(that.userId) :
164        that.userId != null)
165    {
166      return false;
167    }
168    if (refreshToken != null ?
169        !refreshToken.equals(that.refreshToken) :
170        that.refreshToken != null)
171    {
172      return false;
173    }
174
175    return super.equals(o);
176  }
177
178  /**
179   * Appends a string representation of this access token to the provided
180   * buffer.
181   *
182   * @param  buffer  The buffer to which the string representation should be
183   *                 appended.
184   */
185  protected void toString(final StringBuilder buffer)
186  {
187    buffer.append("AccessToken(userId='");
188    buffer.append(userId);
189    buffer.append("', appID=");
190    buffer.append(getApplicationId());
191    buffer.append(", generateTimestamp=");
192    buffer.append(getGenerateTimestamp());
193    buffer.append("', maxValiditySeconds=");
194    buffer.append(getMaxValiditySeconds());
195    buffer.append(", value=");
196    buffer.append(getValue());
197
198    if (! scopeIds.isEmpty())
199    {
200      buffer.append(", scopes={");
201
202      final Iterator<String> iterator = scopeIds.iterator();
203      while (iterator.hasNext())
204      {
205        buffer.append(iterator.next());
206        if (iterator.hasNext())
207        {
208          buffer.append(", ");
209        }
210      }
211
212      buffer.append('}');
213    }
214
215    buffer.append("')");
216  }
217}