Add akka-http-oauth2-provider sub project. (#94)

* Add akka-http-oauth2-provider sub project.

* Add tests for akka-http oauth2 provider route helper. Remove default tokenEndpoint from akka-http-provider.

* rename OAuth2provider.scala

Author: cdiniz

akka-http-oauth2-provider/src/main/scala/scalaoauth2/provider/OAuth2Provider.scala

@@ -0,0 +1,56 @@
+package scalaoauth2.provider
+
+import akka.http.scaladsl.model.StatusCodes._
+import akka.http.scaladsl.server.Directives
+import akka.http.scaladsl.server.directives.Credentials
+import scalaoauth2.provider.OAuth2Provider.TokenResponse
+import spray.json.DefaultJsonProtocol
+
+import scala.concurrent.ExecutionContext.Implicits.global
+import scala.concurrent.Future
+import scala.util.{ Failure, Success }
+
+trait OAuth2Provider[U] extends Directives with DefaultJsonProtocol {
+  import OAuth2Provider.tokenResponseFormat
+  import akka.http.scaladsl.marshallers.sprayjson.SprayJsonSupport._
+
+  val oauth2DataHandler: DataHandler[U]
+
+  val tokenEndpoint: TokenEndpoint
+
+  def grantResultToTokenResponse(grantResult: GrantHandlerResult[U]): TokenResponse =
+    TokenResponse(grantResult.tokenType, grantResult.accessToken, grantResult.expiresIn.getOrElse(1L), grantResult.refreshToken.getOrElse(""))
+
+  def oauth2Authenticator(credentials: Credentials): Future[Option[AuthInfo[U]]] =
+    credentials match {
+      case Credentials.Provided(token) =>
+        oauth2DataHandler.findAccessToken(token).flatMap {
+          case Some(token) => oauth2DataHandler.findAuthInfoByAccessToken(token)
+          case None => Future.successful(None)
+        }
+      case _ => Future.successful(None)
+    }
+
+  def accessTokenRoute = pathPrefix("oauth") {
+    path("access_token") {
+      post {
+        formFieldMap { fields =>
+          onComplete(tokenEndpoint.handleRequest(new AuthorizationRequest(Map(), fields.map(m => m._1 -> Seq(m._2))), oauth2DataHandler)) {
+            case Success(maybeGrantResponse) =>
+              maybeGrantResponse.fold(
+                oauthError => complete(Unauthorized),
+                grantResult => complete(tokenResponseFormat.write(grantResultToTokenResponse(grantResult)))
+              )
+            case Failure(ex) => complete(InternalServerError, s"An error occurred: ${ex.getMessage}")
+          }
+        }
+      }
+    }
+  }
+
+}
+
+object OAuth2Provider extends DefaultJsonProtocol {
+  case class TokenResponse(token_type: String, access_token: String, expires_in: Long, refresh_token: String)
+  implicit val tokenResponseFormat = jsonFormat4(TokenResponse)
+}

akka-http-oauth2-provider/src/test/scala/scalaoauth2/provider/MockDataHandler.scala

@@ -0,0 +1,35 @@
+package scalaoauth2.provider
+
+import java.util.Date
+
+import scala.concurrent.Future
+
+class MockDataHandler extends DataHandler[User] {
+
+  override def validateClient(request: AuthorizationRequest): Future[Boolean] = Future.successful(false)
+
+  override def findUser(request: AuthorizationRequest): Future[Option[User]] = Future.successful(None)
+
+  override def createAccessToken(authInfo: AuthInfo[User]): Future[AccessToken] = Future.successful(AccessToken("", Some(""), Some(""), Some(0L), new Date()))
+
+  override def findAuthInfoByCode(code: String): Future[Option[AuthInfo[User]]] = Future.successful(None)
+
+  override def findAuthInfoByRefreshToken(refreshToken: String): Future[Option[AuthInfo[User]]] = Future.successful(None)
+
+  override def findAccessToken(token: String): Future[Option[AccessToken]] = Future.successful(None)
+
+  override def findAuthInfoByAccessToken(accessToken: AccessToken): Future[Option[AuthInfo[User]]] = Future.successful(None)
+
+  override def getStoredAccessToken(authInfo: AuthInfo[User]): Future[Option[AccessToken]] = Future.successful(None)
+
+  override def refreshAccessToken(authInfo: AuthInfo[User], refreshToken: String): Future[AccessToken] = Future.successful(AccessToken("", Some(""), Some(""), Some(0L), new Date()))
+
+  override def deleteAuthCode(code: String): Future[Unit] = Future.successful(Unit)
+}
+
+trait User {
+  def id: Long
+  def name: String
+}
+
+case class MockUser(id: Long, name: String) extends User

akka-http-oauth2-provider/src/test/scala/scalaoauth2/provider/OAuth2ProviderSpec.scala

@@ -0,0 +1,92 @@
+package scalaoauth2.provider
+
+import java.util.Date
+
+import akka.http.scaladsl.model.headers.OAuth2BearerToken
+import akka.http.scaladsl.server.directives.Credentials
+import akka.http.scaladsl.testkit.ScalatestRouteTest
+import org.scalatest.concurrent.ScalaFutures
+import org.scalatest.{ Matchers, WordSpec }
+import akka.http.scaladsl.model.StatusCodes._
+import akka.http.scaladsl.model.FormData
+import scala.concurrent.Future
+
+class OAuth2ProviderSpec extends WordSpec with Matchers with ScalatestRouteTest with ScalaFutures {
+
+  val tokenEndpointCredentials = new TokenEndpoint {
+    override val handlers = Map(
+      OAuthGrantType.CLIENT_CREDENTIALS -> new ClientCredentials
+    )
+  }
+
+  val oauth2ProviderFail = new OAuth2Provider[User] {
+    override val oauth2DataHandler = new MockDataHandler()
+    override val tokenEndpoint = tokenEndpointCredentials
+  }
+
+  val user = MockUser(1, "user")
+  val someAuthInfo = Some(AuthInfo(user, Some("clientId"), None, None))
+  val accessToken = AccessToken("token", Some("refresh token"), None, Some(3600), new Date)
+
+  val oauth2ProviderSuccess = new OAuth2Provider[User] {
+    override val tokenEndpoint = tokenEndpointCredentials
+    override val oauth2DataHandler = new MockDataHandler() {
+      override def findAccessToken(token: String): Future[Option[AccessToken]] =
+        Future.successful(Some(accessToken))
+      override def findAuthInfoByAccessToken(accessToken: AccessToken): Future[Option[AuthInfo[User]]] =
+        Future.successful(someAuthInfo)
+      override def findUser(request: AuthorizationRequest): Future[Option[User]] =
+        Future.successful(Some(user))
+      override def validateClient(request: AuthorizationRequest): Future[Boolean] =
+        Future.successful(true)
+      override def getStoredAccessToken(authInfo: AuthInfo[User]): Future[Option[AccessToken]] =
+        Future.successful(Some(accessToken))
+      override def createAccessToken(authInfo: AuthInfo[User]): Future[AccessToken] =
+        Future.successful(accessToken)
+    }
+  }
+
+  "oauth2Authenticator" should {
+
+    "return none when data handler cannot find access token" in {
+      val r = oauth2ProviderFail.oauth2Authenticator(Credentials(Some(OAuth2BearerToken("token"))))
+      whenReady(r) { result => result should be(None) }
+    }
+
+    "return none when there is not a bearer token in request" in {
+      val r = oauth2ProviderSuccess.oauth2Authenticator(Credentials(None))
+      whenReady(r) { result => result should be(None) }
+    }
+
+    "return some authinfo when there is a token match" in {
+      val r = oauth2ProviderSuccess.oauth2Authenticator(Credentials(Some(OAuth2BearerToken("token"))))
+      whenReady(r) { result => result should be(someAuthInfo) }
+    }
+
+  }
+
+  "access token route" should {
+
+    "return Unauthorized when there is an error on authorization" in {
+      Post("/oauth/access_token", FormData(
+        "client_id" -> "bob_client_id",
+        "client_secret" -> "bob_client_secret", "grant_type" -> "client_credentials"
+      )) ~> oauth2ProviderFail.accessTokenRoute ~> check {
+        handled shouldEqual true
+        status shouldEqual Unauthorized
+      }
+    }
+
+    "return Ok with token respons when there is a valid authorization" in {
+      Post("/oauth/access_token", FormData(
+        "client_id" -> "bob_client_id",
+        "client_secret" -> "bob_client_secret", "grant_type" -> "client_credentials"
+      )) ~> oauth2ProviderSuccess.accessTokenRoute ~> check {
+        handled shouldEqual true
+        status shouldEqual OK
+      }
+    }
+
+  }
+
+}

project/Build.scala

@@ -7,7 +7,7 @@ object ScalaOAuth2Build extends Build {
   lazy val _organization = "com.nulab-inc"
   lazy val _version =  "0.17.3-SNAPSHOT"
   lazy val _playVersion = "2.5.0"
-
+  lazy val akkaV = "2.4.2"
   val _scalaVersion = "2.11.7"
   val _crossScalaVersions = Seq("2.11.7")
 
@@ -38,7 +38,7 @@ object ScalaOAuth2Build extends Build {
       name := "scala-oauth2-provider",
       description := "OAuth 2.0 server-side implementation written in Scala"
     )
-  ).aggregate(scalaOAuth2Core, play2OAuth2Provider)
+  ).aggregate(scalaOAuth2Core, play2OAuth2Provider, akkahttpOAuth2Provider)
 
   lazy val scalaOAuth2Core = Project(
     id = "scala-oauth2-core",
@@ -66,6 +66,23 @@ object ScalaOAuth2Build extends Build {
     )
   ) dependsOn(scalaOAuth2Core % "compile->compile;test->test")
 
+  lazy val akkahttpOAuth2Provider = Project(
+    id = "akka-http-oauth2-provider",
+    base = file("akka-http-oauth2-provider"),
+    settings = scalaOAuth2ProviderSettings ++ Seq(
+      name := "akka-http-oauth2-provider",
+      description := "Support scala-oauth2-core library on akka-http",
+      resolvers += "Typesafe repository" at "http://repo.typesafe.com/typesafe/maven-releases/",
+      libraryDependencies ++= Seq(
+        "com.typesafe.akka"   %%  "akka-http-experimental"    % akkaV,
+        "com.typesafe.akka"   %%  "akka-http-core"    % akkaV,
+        "com.typesafe.akka"   %%  "akka-http-testkit" % akkaV,
+        "com.typesafe.akka"	  %%  "akka-http-spray-json-experimental"	% akkaV,
+        "com.typesafe.akka"   %%  "akka-actor"    % akkaV
+      ) ++ commonDependenciesInTestScope
+    )
+  ) dependsOn(scalaOAuth2Core % "compile->compile;test->test")
+
   def _publishTo(v: String) = {
     val nexus = "https://oss.sonatype.org/"
     if (v.trim.endsWith("SNAPSHOT")) Some("snapshots" at nexus + "content/repositories/snapshots")