MSGraphAuth.java
2.4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
/**
* Copyright (c) 2006-2019, JGraph Ltd
*/
package com.mxgraph.online;
import java.io.IOException;
@SuppressWarnings("serial")
abstract public class MSGraphAuth extends AbsAuth
{
public static String CLIENT_SECRET_FILE_PATH = "msgraph_client_secret";
public static String CLIENT_ID_FILE_PATH = "msgraph_client_id";
private static Config CONFIG = null;
protected Config getConfig()
{
if (CONFIG == null)
{
String clientSerets = SecretFacade.getSecret(CLIENT_SECRET_FILE_PATH, getServletContext()),
clientIds = SecretFacade.getSecret(CLIENT_ID_FILE_PATH, getServletContext());
CONFIG = new Config(clientIds, clientSerets);
CONFIG.REDIRECT_PATH = "/microsoft";
CONFIG.AUTH_SERVICE_URL = "https://login.microsoftonline.com/common/oauth2/v2.0/token";
}
return CONFIG;
}
public MSGraphAuth()
{
super();
cookiePath = "/microsoft";
}
protected String processAuthResponse(String authRes, boolean jsonResponse)
{
StringBuffer res = new StringBuffer();
//Call the opener callback function directly with the given json
if (!jsonResponse)
{
res.append("<!DOCTYPE html><html><head><script>");
res.append("(function() { var authInfo = "); //The following is a json containing access_token
}
res.append(authRes);
if (!jsonResponse)
{
res.append(";");
res.append("if (window.opener != null && window.opener.onOneDriveCallback != null)");
res.append("{");
res.append(" window.opener.onOneDriveCallback(authInfo, window);");
res.append("} else {");
res.append(" var head = document.getElementsByTagName('head')[0];");
res.append(" var script = document.createElement('script');");
res.append(" script.onload = function() ");
res.append(" {");
res.append(" var authInfoStr = JSON.stringify(authInfo);");
res.append(" localStorage.setItem('.oneDriveAuthInfo', '{}');"); //setting this storage item means we have a refresh token
res.append(" Office.onReady(function () { Office.context.ui.messageParent(authInfoStr, { targetOrigin: '*' });});"); //TODO Use specific domain (more secure)
res.append(" };");
res.append(" script.src = 'https://appsforoffice.microsoft.com/lib/1.1/hosted/office.js';");
res.append(" head.appendChild(script);");
res.append("}");
res.append("})();</script></head><body><div>Automatic login interrupted. Please close and select OneDrive again.</div></body></html>");
}
return res.toString();
}
}