// // MPOAuthAuthenticationMethodOAuth.m // MPOAuthConnection // // Created by Karl Adam on 09.12.19. // Copyright 2009 matrixPointer. All rights reserved. // #import "MPOAuthAuthenticationMethodOAuth.h" #import "MPOAuthAPI.h" #import "MPOAuthAPIRequestLoader.h" #import "MPOAuthURLResponse.h" #import "MPOAuthCredentialStore.h" #import "MPOAuthCredentialConcreteStore.h" #import "MPDebug.h" #import "MPURLRequestParameter.h" #import "NSURL+MPURLParameterAdditions.h" NSString *MPOAuthRequestTokenURLKey = @"MPOAuthRequestTokenURL"; NSString *MPOAuthUserAuthorizationURLKey = @"MPOAuthUserAuthorizationURL"; NSString *MPOAuthUserAuthorizationMobileURLKey = @"MPOAuthUserAuthorizationMobileURL"; NSString * const MPOAuthCredentialRequestTokenKey = @"oauth_token_request"; NSString * const MPOAuthCredentialRequestTokenSecretKey = @"oauth_token_request_secret"; NSString * const MPOAuthCredentialAccessTokenKey = @"oauth_token_access"; NSString * const MPOAuthCredentialAccessTokenSecretKey = @"oauth_token_access_secret"; NSString * const MPOAuthCredentialSessionHandleKey = @"oauth_session_handle"; NSString * const MPOAuthCredentialVerifierKey = @"oauth_verifier"; @interface MPOAuthAuthenticationMethodOAuth () - (void)_authenticationRequestForRequestToken; - (void)_authenticationRequestForUserPermissionsConfirmationAtURL:(NSURL *)inURL; - (void)_authenticationRequestForAccessToken; @end @implementation MPOAuthAuthenticationMethodOAuth - (id)initWithAPI:(MPOAuthAPI *)inAPI forURL:(NSURL *)inURL withConfiguration:(NSDictionary *)inConfig { if (self = [super initWithAPI:inAPI forURL:inURL withConfiguration:inConfig]) { NSAssert( [inConfig count] >= 3, @"Incorrect number of oauth authorization methods"); [self setOauthRequestTokenURL:[NSURL URLWithString:[inConfig objectForKey:MPOAuthRequestTokenURLKey]]]; [self setOauthAuthorizeTokenURL:[NSURL URLWithString:[inConfig objectForKey:MPOAuthUserAuthorizationURLKey]]]; [self setOauthGetAccessTokenURL:[NSURL URLWithString:[inConfig objectForKey:MPOAuthAccessTokenURLKey]]]; [[NSNotificationCenter defaultCenter] addObserver:self selector:@selector(_requestTokenReceived:) name:MPOAuthNotificationRequestTokenReceived object:nil]; [[NSNotificationCenter defaultCenter] addObserver:self selector:@selector(_requestTokenRejected:) name:MPOAuthNotificationRequestTokenRejected object:nil]; [[NSNotificationCenter defaultCenter] addObserver:self selector:@selector(_accessTokenReceived:) name:MPOAuthNotificationAccessTokenReceived object:nil]; } return self; } - (oneway void)dealloc { [oauthRequestTokenURL release]; [oauthAuthorizeTokenURL release]; [super dealloc]; } - (void)setDelegate:(id)theDelegate { delegate = theDelegate; } - (id)delegate { return delegate; } - (void)setOauthRequestTokenURL:(NSURL *)theURL { [oauthRequestTokenURL release]; oauthRequestTokenURL = [theURL retain]; } - (NSURL *)oauthRequestTokenURL { return oauthRequestTokenURL; } - (void)setOauthAuthorizeTokenURL:(NSURL *)theURL { [oauthAuthorizeTokenURL release]; oauthAuthorizeTokenURL = [theURL retain]; } - (NSURL *)oauthAuthorizeTokenURL { return oauthAuthorizeTokenURL; } - (void)setOauth10aModeActive:(BOOL)isActive { oauth10aModeActive = isActive; } - (BOOL)oauth10aModeActive { return oauth10aModeActive; } #pragma mark - - (void)authenticate { id credentials = [[self oauthAPI] credentials]; if (![credentials accessToken] && ![credentials requestToken]) { [self _authenticationRequestForRequestToken]; } else if (![credentials accessToken]) { [self _authenticationRequestForAccessToken]; } else if ([credentials accessToken] && [[NSUserDefaults standardUserDefaults] objectForKey:MPOAuthTokenRefreshDateDefaultsKey]) { NSTimeInterval expiryDateInterval = [[NSUserDefaults standardUserDefaults] floatForKey:MPOAuthTokenRefreshDateDefaultsKey]; NSDate *tokenExpiryDate = [NSDate dateWithTimeIntervalSinceReferenceDate:expiryDateInterval]; if ([tokenExpiryDate compare:[NSDate date]] == NSOrderedAscending) { [self refreshAccessToken]; } } } - (void)_authenticationRequestForRequestToken { if (oauthRequestTokenURL) { MPLog(@"--> Performing Request Token Request: %@", oauthRequestTokenURL); // Append the oauth_callbackUrl parameter for requesting the request token MPURLRequestParameter *callbackParameter = nil; if (delegate && [delegate respondsToSelector: @selector(callbackURLForCompletedUserAuthorization)]) { NSURL *callbackURL = [delegate callbackURLForCompletedUserAuthorization]; callbackParameter = [[[MPURLRequestParameter alloc] initWithName:@"oauth_callback" andValue:[callbackURL absoluteString]] autorelease]; } else { // oob = "Out of bounds" callbackParameter = [[[MPURLRequestParameter alloc] initWithName:@"oauth_callback" andValue:@"oob"] autorelease]; } NSArray *params = [NSArray arrayWithObject:callbackParameter]; [[self oauthAPI] performMethod:nil atURL:oauthRequestTokenURL withParameters:params withTarget:self andAction:@selector(_authenticationRequestForRequestTokenSuccessfulLoad:withData:)]; } } - (void)_authenticationRequestForRequestTokenSuccessfulLoad:(MPOAuthAPIRequestLoader *)inLoader withData:(NSData *)inData { NSDictionary *oauthResponseParameters = inLoader.oauthResponse.oauthParameters; NSString *xoauthRequestAuthURL = [oauthResponseParameters objectForKey:@"xoauth_request_auth_url"]; // a common custom extension, used by Yahoo! NSURL *userAuthURL = xoauthRequestAuthURL ? [NSURL URLWithString:xoauthRequestAuthURL] : oauthAuthorizeTokenURL; NSURL *callbackURL = nil; if (!oauth10aModeActive) { callbackURL = [delegate respondsToSelector:@selector(callbackURLForCompletedUserAuthorization)] ? [delegate callbackURLForCompletedUserAuthorization] : nil; } NSDictionary *parameters = [NSDictionary dictionaryWithObjectsAndKeys: [oauthResponseParameters objectForKey: @"oauth_token"], @"oauth_token", callbackURL, @"oauth_callback", nil]; userAuthURL = [userAuthURL urlByAddingParameterDictionary:parameters]; BOOL delegateWantsToBeInvolved = [delegate respondsToSelector:@selector(automaticallyRequestAuthenticationFromURL:withCallbackURL:)]; if (!delegateWantsToBeInvolved || (delegateWantsToBeInvolved && [delegate automaticallyRequestAuthenticationFromURL:userAuthURL withCallbackURL:callbackURL])) { MPLog(@"--> Automatically Performing User Auth Request: %@", userAuthURL); [self _authenticationRequestForUserPermissionsConfirmationAtURL:userAuthURL]; } } - (void)loader:(MPOAuthAPIRequestLoader *)inLoader didFailWithError:(NSError *)error { if ([delegate respondsToSelector:@selector(authenticationDidFailWithError:)]) { [delegate authenticationDidFailWithError: error]; } } - (void)_authenticationRequestForUserPermissionsConfirmationAtURL:(NSURL *)userAuthURL { #if TARGET_OS_IPHONE [[UIApplication sharedApplication] openURL:userAuthURL]; #else [[NSWorkspace sharedWorkspace] openURL:userAuthURL]; #endif } - (void)_authenticationRequestForAccessToken { NSArray *params = nil; if (delegate && [delegate respondsToSelector: @selector(oauthVerifierForCompletedUserAuthorization)]) { MPURLRequestParameter *verifierParameter = nil; NSString *verifier = [delegate oauthVerifierForCompletedUserAuthorization]; if (verifier) { verifierParameter = [[[MPURLRequestParameter alloc] initWithName:@"oauth_verifier" andValue:verifier] autorelease]; params = [NSArray arrayWithObject:verifierParameter]; } } if (oauthGetAccessTokenURL) { MPLog(@"--> Performing Access Token Request: %@", oauthGetAccessTokenURL); [[self oauthAPI] performMethod:nil atURL:oauthGetAccessTokenURL withParameters:params withTarget:self andAction:nil]; } } #pragma mark - - (void)_requestTokenReceived:(NSNotification *)inNotification { if ([[inNotification userInfo] objectForKey:@"oauth_callback_confirmed"]) { oauth10aModeActive = YES; } [[self oauthAPI] setCredential:[[inNotification userInfo] objectForKey:@"oauth_token"] withName:kMPOAuthCredentialRequestToken]; [[self oauthAPI] setCredential:[[inNotification userInfo] objectForKey:@"oauth_token_secret"] withName:kMPOAuthCredentialRequestTokenSecret]; } - (void)_requestTokenRejected:(NSNotification *)inNotification { [[self oauthAPI] removeCredentialNamed:MPOAuthCredentialRequestTokenKey]; [[self oauthAPI] removeCredentialNamed:MPOAuthCredentialRequestTokenSecretKey]; } - (void)_accessTokenReceived:(NSNotification *)inNotification { [[self oauthAPI] removeCredentialNamed:MPOAuthCredentialRequestTokenKey]; [[self oauthAPI] removeCredentialNamed:MPOAuthCredentialRequestTokenSecretKey]; [[self oauthAPI] setCredential:[[inNotification userInfo] objectForKey:@"oauth_token"] withName:kMPOAuthCredentialAccessToken]; [[self oauthAPI] setCredential:[[inNotification userInfo] objectForKey:@"oauth_token_secret"] withName:kMPOAuthCredentialAccessTokenSecret]; if ([[inNotification userInfo] objectForKey:MPOAuthCredentialSessionHandleKey]) { [[self oauthAPI] setCredential:[[inNotification userInfo] objectForKey:MPOAuthCredentialSessionHandleKey] withName:kMPOAuthCredentialSessionHandle]; } [oauthAPI setAuthenticationState:MPOAuthAuthenticationStateAuthenticated]; if ([[inNotification userInfo] objectForKey:@"oauth_expires_in"]) { NSTimeInterval tokenRefreshInterval = (NSTimeInterval)[[[inNotification userInfo] objectForKey:@"oauth_expires_in"] intValue]; NSDate *tokenExpiryDate = [NSDate dateWithTimeIntervalSinceNow:tokenRefreshInterval]; [[NSUserDefaults standardUserDefaults] setFloat:[tokenExpiryDate timeIntervalSinceReferenceDate] forKey:MPOAuthTokenRefreshDateDefaultsKey]; if (tokenRefreshInterval > 0.0) { [self setTokenRefreshInterval:tokenRefreshInterval]; } } else { [[NSUserDefaults standardUserDefaults] removeObjectForKey:MPOAuthTokenRefreshDateDefaultsKey]; } } #pragma mark - #pragma mark - Private APIs - - (void)_performedLoad:(MPOAuthAPIRequestLoader *)inLoader receivingData:(NSData *)inData { // NSLog(@"loaded %@, and got %@", inLoader, inData); } @end