#!/usr/bin/env python # encoding: utf-8 # # Licensed to the Apache Software Foundation (ASF) under one # or more contributor license agreements. See the NOTICE file # distributed with this work for additional information # regarding copyright ownership. The ASF licenses this file # to you under the Apache License, Version 2.0 (the # "License"); you may not use this file except in compliance # with the License. You may obtain a copy of the License at # # http://www.apache.org/licenses/LICENSE-2.0 # # Unless required by applicable law or agreed to in writing, # software distributed under the License is distributed on an # "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY # KIND, either express or implied. See the License for the # specific language governing permissions and limitations # under the License. # import requests from . import utils class Client(object): def __init__(self, client_id, client_secret, redirect_uri, authorization_uri, token_uri): """Constructor for OAuth 2.0 Client. :param client_id: Client ID. :type client_id: str :param client_secret: Client secret. :type client_secret: str :param redirect_uri: Client redirect URI: handle provider response. :type redirect_uri: str :param authorization_uri: Provider authorization URI. :type authorization_uri: str :param token_uri: Provider token URI. :type token_uri: str """ self.client_id = client_id self.client_secret = client_secret self.redirect_uri = redirect_uri self.authorization_uri = authorization_uri self.token_uri = token_uri @property def default_response_type(self): return 'code' @property def default_grant_type(self): return 'authorization_code' def http_post(self, url, data=None): """POST to URL and get result as a response object. :param url: URL to POST. :type url: str :param data: Data to send in the form body. :type data: str :rtype: requests.Response """ if not url.startswith('https://'): raise ValueError('Protocol must be HTTPS, invalid URL: %s' % url) return requests.post(url, data, verify=True) def get_authorization_code_uri(self, **params): """Construct a full URL that can be used to obtain an authorization code from the provider authorization_uri. Use this URI in a client frame to cause the provider to generate an authorization code. :rtype: str """ if 'response_type' not in params: params['response_type'] = self.default_response_type params.update({'client_id': self.client_id, 'redirect_uri': self.redirect_uri}) return utils.build_url(self.authorization_uri, params) def get_token(self, code, **params): """Get an access token from the provider token URI. :param code: Authorization code. :type code: str :return: Dict containing access token, refresh token, etc. :rtype: dict """ params['code'] = code if 'grant_type' not in params: params['grant_type'] = self.default_grant_type params.update({'client_id': self.client_id, 'client_secret': self.client_secret, 'redirect_uri': self.redirect_uri}) response = self.http_post(self.token_uri, params) try: return response.json() except TypeError: return response.json