SASLXOauth2Mechanism.java

  1. /**
  2.  *
  3.  * Copyright 2014-2015 Florian Schmaus
  4.  *
  5.  * Licensed under the Apache License, Version 2.0 (the "License");
  6.  * you may not use this file except in compliance with the License.
  7.  * You may obtain a copy of the License at
  8.  *
  9.  *     http://www.apache.org/licenses/LICENSE-2.0
  10.  *
  11.  * Unless required by applicable law or agreed to in writing, software
  12.  * distributed under the License is distributed on an "AS IS" BASIS,
  13.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  14.  * See the License for the specific language governing permissions and
  15.  * limitations under the License.
  16.  */
  17. package org.jivesoftware.smack.sasl.core;

  19. import javax.security.auth.callback.CallbackHandler;

  21. import org.jivesoftware.smack.SmackException;
  22. import org.jivesoftware.smack.sasl.SASLMechanism;
  23. import org.jivesoftware.smack.util.stringencoder.Base64;

  25. /**
  26.  * The SASL X-OAUTH2 mechanism as described in <a
  27.  * href="https://developers.google.com/talk/jep_extensions/oauth">https://developers.google
  28.  * .com/talk/jep_extensions/oauth</a>
  29.  * <p>
  30.  * The given password will be used as OAUTH token.
  31.  * </p>
  32.  * <p>
  33.  * Note that X-OAUTH2 is experimental in Smack. This is because Google defined, besides being a bad practice (XEP-134),
  34.  * custom attributes to the 'auth' stanza, as can be seen here
  35.  * </p>
  36.  * 
  37.  * <pre>
  38.  * {@code
  39.  * <auth xmlns="urn:ietf:params:xml:ns:xmpp-sasl" mechanism="X-OAUTH2"
  40.  *    auth:service="chromiumsync" auth:allow-generated-jid="true"
  41.  *    auth:client-uses-full-bind-result="true" xmlns:auth="http://www.google.com/talk/protocol/auth">
  42.  * }
  43.  * </pre>
  44.  * 
  45.  * from https://developers.google.com/cloud-print/docs/rawxmpp and here
  46.  * 
  47.  * <pre>
  48.  * {@code
  49.  * <auth xmlns="urn:ietf:params:xml:ns:xmpp-sasl"
  50.  *   mechanism="X-OAUTH2"
  51.  *   auth:service="oauth2"
  52.  *   xmlns:auth="http://www.google.com/talk/protocol/auth">
  53.  * base64("\0" + user_name + "\0" + oauth_token)
  54.  * </auth>
  55.  * }
  56.  * </pre>
  57.  * 
  58.  * from https://developers.google.com/talk/jep_extensions/oauth
  59.  * <p>
  60.  * Those attribute extensions are currently not supported by Smack, and it's unclear how it affects authorization and
  61.  * how widely they are used.
  62.  * </p>
  63.  */
  64. public class SASLXOauth2Mechanism extends SASLMechanism {

  66.     public static final String NAME = "X-OAUTH2";

  68.     @Override
  69.     protected void authenticateInternal(CallbackHandler cbh) throws SmackException {
  70.         throw new UnsupportedOperationException("CallbackHandler not (yet) supported");
  71.     }

  73.     @Override
  74.     protected byte[] getAuthenticationText() throws SmackException {
  75.         // base64("\0" + user_name + "\0" + oauth_token)
  76.         return Base64.encode(toBytes('\u0000' + authenticationId + '\u0000' + password));
  77.     }

  79.     @Override
  80.     public String getName() {
  81.         return NAME;
  82.     }

  84.     @Override
  85.     public int getPriority() {
  86.         // Same priority as SASL PLAIN
  87.         return 410;
  88.     }

  90.     @Override
  91.     public SASLXOauth2Mechanism newInstance() {
  92.         return new SASLXOauth2Mechanism();
  93.     }

  95.     @Override
  96.     public void checkIfSuccessfulOrThrow() throws SmackException {
  97.         // No check performed
  98.     }
  99. }
Created with JaCoCo 0.7.4.201502262128