From 97674df8c0734a6fcff8e037e6f1f97db80ab2a0 Mon Sep 17 00:00:00 2001
From: Glen Youngjin Kim <glen.kim@samsung.com>
Date: Thu, 1 Sep 2016 18:21:10 +0900
Subject: [PATCH] Add Google OAuth2 Provider

Change-Id: Ib2062996074621b80da1acbb1e7fd3b8f3dbf687
Signed-off-by: Glen Youngjin Kim <glen.kim@samsung.com>
Reviewed-on: https://gerrit.iotivity.org/gerrit/11271
Tested-by: jenkins-iotivity <jenkins-iotivity@opendaylight.org>
Reviewed-by: Jee Hyeok Kim <jihyeok13.kim@samsung.com>
(cherry picked from commit 2c4f2d3be6cc402bb7aec8d5d8c2939b07c3d935)
Reviewed-on: https://gerrit.iotivity.org/gerrit/11985
Reviewed-by: Yeonghun Nam <yeonghun.nam@samsung.com>
Tested-by: Jee Hyeok Kim <jihyeok13.kim@samsung.com>
---
 cloud/account/Google.jar                           | Bin 0 -> 3220 bytes
 .../iotivity/cloud/accountserver/Constants.java    |   2 +
 .../iotivity/cloud/accountserver/oauth/Google.java | 195 +++++++++++++++++++++
 3 files changed, 197 insertions(+)
 create mode 100644 cloud/account/Google.jar
 create mode 100644 cloud/account/src/main/java/org/iotivity/cloud/accountserver/oauth/Google.java

diff --git a/cloud/account/Google.jar b/cloud/account/Google.jar
new file mode 100644
index 0000000000000000000000000000000000000000..cb3697cd7fac7cbbd6f3ef12188a8dffb1d84260
GIT binary patch
literal 3220
zcmbW3XE+-Q7sn$;QKQs|y+^E2JJe2;2&uhF(HON8B1Vf|N{y5vY89<LdQl^aQlpB{
zsu8<JRcY-}%B{Ek^4@ztykFk`dCqgr^PK1T|If!C3PDZ70idU+2Oxt*O#uH82Y?2E
zgjws$o0!8PNPTk?ILyjg0SW&(2mtIO$wOucd4*ACguKiM`P~ak#c}1u)#X(n0EM_f
z-w+Ml;`?RA^Q%$+4S;+9J3#r@H4x(k@d*s^!TE%QLp=NfLvKOcJUjwJ146K93=WNf
z1iFQWcteZ>1HJsv3LbuLSZu95LlnmZ&$;f@Eh3u41+(+#dnakoz|UaJ{!FA-{1Q7E
z{l|p@zx%faJiVq1n2nsOy*r9ccS|Op`uqD-Cx%j&!M>pp+hdap*&W+Gg0`p8fu8Dl
zdBUA%SCqGpUw!Y`J}-#;HsM78NOQecL>9eI3Zv~I3T$1R{p&TV*Az#Wih64b-;Cqg
zR$kE`x;8Wans;a;=`pW15ZeN}16Oo6YP**z;6zTV6|pNi*5FaK-D?#IIE>dCCUvEt
z#Qor#$R%^C=)W$ld1?s~a9IrGs)nZwvxzhQaB-gqC99%l625P5*(NzT8DVP68Q{VR
zF)<=K)uXRoy_%dY?~v=<+%P4x<+w0kz~rx#&B0S||Fi-zP*@@@B71wk_i5UMY+9b8
zVer_Idvn+N;a~Ee17#aS5kG9Xj%sJ7>O<F;nTKr-k-&(#Z%qB+6UYI4Z*n+rEo>H7
zqXL?1_IFBeo&S;wGaDFf{q!M??Li2rSP+&|_h>h59rZ*MB@Di-P$@=ayC}uclnLRV
z_oF=}(nTVZ>;wt-HyLBsPiXytPh_gc4&0zXsCgeSR`YPFVmj^Hrs9e`+_*Or+K9*J
zv9S)-YpvI}^)STV{42AoY>&HlxYk73&F;Q|r|78r;p0(glGJ;mE^qaZbli1Y#go_q
z0sTH(6UVY8zu2dhY$s_6G2Ckm<cw|v=W6`r@X=f1m}XXPVb`8K+7bRgd_J%kS7ay%
z(2`JkewQ^uQzAJVhr2{Me56YlCHTZV<6aIIan@%jEa=~(_`(wS!VuBqakgIfW&5!y
zdn;G@x{|v|OoLJON$$);G`0leDsAa62CH=ymRRISCV^e9Tx#0V%kX)a;m^!?Feuyo
z3eSjDOzR&L13__eL!LJ!OjT>xrE}~bxi}V%qUrn@)9ELBd06;2iN*P9uG2G?vs2bB
z^$n%Z>)otuR(Nkm^oeKlB}g3Jh()M4%LQ3(S3P5|=3!wkE6_wN5(k7q7K0f~aqS1Z
z0uv<bo06~)=?zeZ)*DP>Ml`;b01ZFRCoc`lC=NA+LN``(B`MZ`8ofUVa830*EHc0^
zz`rU3k-hG1pgd-s@TqfV<D2WY^z|a`^In*j-);2HlgHZ0W<9GR-ygKJs7)xh!N8GI
zNzhw5jUtPN7u5zYMblnBIF?*itVBbDy?H8CoF!1I(*l>3K3k8a<NUE6hPL=X40kDg
zUPwD9oqRXQk$XxtNAL0%#UWyqC|op{zbsS!D+t3*OzZLy^B-@Lha~=RhUH~@+T^Yo
zUU*p&0XYy!5oC6vQMg-x`H~oO7&nQY`S6Lxytp=Xk3YPjRP25&nV|+j_AWQTGja2+
z!INMH3Gx>EGsG9t`_6>~f0@+KL8rs7BzQm$GPa>NYhceGx<L5K|1p^8cVXIX08-FB
zE8g-obWXT+c>U2<bI#0{k-E0){m4i2`9_|@xXEskL%%#J%k5#v#H>fin2`YM9_tvg
zqf{j$VK#Iwor^p@?~@Selccq)z}!ajnU&2ZkTpkXT@AWrnT1M;sLS)`x*;Dd)@vHt
zqSpg5>Fg0s^2~)!)yO0<wd`-$^S^lp?=5)PUt0`=9MR{m+FOy4$tUKu)@fdYwK{XD
z3e4Y?#?AOC2{fp0xu=(#r}H$g^-u%3kq@ZHRD6p?xKs!ssz%j~<Ie8*2b-c~-Z?>;
zZ(J5lx5UCIOSGmI+E)|@D>_DMy1Gs5(e-J_dyZzOPxV&6vd99*4A_X7&qTQdQZD2>
z>fQ$r-V4W{3|ns!7i-0MvMg{t1L&GGbvwz<g~Zmi{LdR2vj~A(l$5-I@|b3Bi=Dk)
zxz9O{PFz@v4Gn481_$IswwjGPCE&J?v)#P#i@p9(?E>?i>4r)caO9UT2+Cuomg9AL
z$Dw#L-y`3bv-r<=-bFuNA(kP}m5h{a2NR`d)XeV~t<7FD*yh3KQdqIHLWClOj!x;y
z*s&QdA7?YZ7vbBWWG<f}b=SOqzab>I+_Ze?k*D?zt?*r1wPMu?dEQqV`ayg{n7lbU
zjkbp42Ew0<)hXB4x9o3j4}fLieEknNczuqZKRXFxy6O^T*rjd_!|&EAHRw-mnd3;)
zUCG;Z-wC`OWcWwUw|sxnW=Yt~>PF$IsF*)W0ZgNs?0v;wt}kFV6QFnFgp^(SQ}ErH
z)_z#Yqm+YH<C7$AU9^r(3X}qBPM^5anOOMsnD(woS57mn0;pOJbhUKJuIDbFshwoP
zE}uYWR`?xw_pZ;0(?j)~;H{No2lvObP|p?kj~rXH?c`%VAveE+H()B=5B6xB^&{MK
zWry)_adF^Uio~v>w8<KurGn}WUB>GH1EKa8omIg-d!tN)Qbr2}l_&@I2?ncu!C_Oe
z?EC15ob^mC7)Hu4Odv0t)S#5n*LSA$Qj7V|m;UcFHxwf#jj})^bhR1hnmdb3-aC7d
zbTK|V!8Kl~UcuT@zS`Ly(UW)`P5KjG-oo-=$+s<wT5H`@`9Di$Fm#2jw=v+6PgY@S
zi*oI;fwAh#NS69*={echQ@V7DP7IcpONX`ae9lm#bEivRPCHKGLcM5w^4Tkns<RiC
z6%LQP9na@DCd=!J$CVR_NBWKF2lCY3kYTpc)}OM7COz}6%kM2oFIB=W32goxq4Hz-
zRQA5WKqdZIMEv4vP$VOz>S0((o#CB!<@i~_9&qWC7^!%z3&CM+=kwI0wdro^jn82>
zxwk?;ewRf8oyK3>qmbgbZ={A-EEAwKbwrAD0#I!QQ7<S_(Z{H^gr4fUky_zK>EIgn
z){~tH){M-@9e9Z078&<ClWcxS&h^~gqXJD0eed~VJ=ku!RQJxN>?{IREY^9nd^K|n
zk(;pNvfOd6a>cFv;iJi$%oHIJdf)30jCbz>$77OrsG`y)gSgqEnS_>Kv9<+i`kuBP
zv5k;lAJ{3n8ZHcx;5{R)b350g$bCVO0hNH66?c-0+p&g{bLQ)vu4_z%qEXCZ@Anfw
z@ITGw+mV)gt}x64gh=tV!!XjXos7)2#@|wnd_-w5HN#l^C@XN<yr^=wS+f{%yvtEB
z^l9AiGC|zylzvvNyICN4T2;Z#$^M@2^^q`%(=JsKLC?iv2Uq9X#t=M5o^J{ItVY=C
zswHJaYxxL=xvO)^iuhWpy^^Ay7A)bo<+7Eohg<=tGFGf>uej4@CP-z;7GdxUrnJ@y
z7LRLVa-UEQI?TRnV$*Y=xvi$ow3tRc-iW!9)r<|glu)^^-#@KWoR7Tb3jMHEs2lUl
zdIJlNvaN~+>9oeq=@HKNe|mtU)};xf!(ZH8GvbWazp_hM(21@aX|jVZqz0O*oP8w9
zxeB*!gIxsAlfh?;(k_|#CDOX-gmB>^lb3}8eTdS9?ilrWSJ`c+m`nO?lsn~abMe@d
z_Ux+m!VP?kqRust(DL&;&e3r)AB{DHmYy3=?`<3EWHlvLIluXCTGfy_*dDj-SXGxU
z!!%mcwyP1bOVhjzV2=vyu~LaCuRP;e66o5D+V;$S#rp33M>>W@HcQ>1`FCJapgU73
zQ8`Gc<U3R_LUE<|bXV)_iK4>dF)M$hv_sC7SpLDLOVK6d*31pFGluB0$j~;yTtgGv
zMM%lpB~93|?9VrM+R_s`SA^zT3T4kfb=vW~1wL8*7NPm#tLt+M?$^)ER(E_G-|;gW
z^dNZ4u=j*8jo7Vfk{<F^QT>~o`_a{lKZVY+19dxPKopl^*nH~wk}COF_cwJ%YBvUR
zUIYNZzt9_npaOCL{s#Mh68Uei|F`}Z=Ks^>H@*Ke;WxeiEw^9m|H1Mo1TEcf6X35Z
M|1~MU-Uk5w163c@eE<Le

literal 0
HcmV?d00001

diff --git a/cloud/account/src/main/java/org/iotivity/cloud/accountserver/Constants.java b/cloud/account/src/main/java/org/iotivity/cloud/accountserver/Constants.java
index 1fc6d88..564ad40 100644
--- a/cloud/account/src/main/java/org/iotivity/cloud/accountserver/Constants.java
+++ b/cloud/account/src/main/java/org/iotivity/cloud/accountserver/Constants.java
@@ -236,4 +236,6 @@ public class Constants extends OICConstants {
     public static final String GITHUB                = "Github";
 
     public static final String SAMSUNG               = "Samsung";
+
+    public static final String GOOGLE                = "Google";
 }
diff --git a/cloud/account/src/main/java/org/iotivity/cloud/accountserver/oauth/Google.java b/cloud/account/src/main/java/org/iotivity/cloud/accountserver/oauth/Google.java
new file mode 100644
index 0000000..72577c7
--- /dev/null
+++ b/cloud/account/src/main/java/org/iotivity/cloud/accountserver/oauth/Google.java
@@ -0,0 +1,195 @@
+/*
+ * //******************************************************************
+ * //
+ * // Copyright 2016 Samsung Electronics All Rights Reserved.
+ * //
+ * //-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
+ * //
+ * // Licensed under the Apache License, Version 2.0 (the "License");
+ * // you may not use this file except in compliance with the License.
+ * // You may obtain a copy of the License at
+ * //
+ * //      http://www.apache.org/licenses/LICENSE-2.0
+ * //
+ * // Unless required by applicable law or agreed to in writing, software
+ * // distributed under the License is distributed on an "AS IS" BASIS,
+ * // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * // See the License for the specific language governing permissions and
+ * // limitations under the License.
+ * //
+ * //-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
+ */
+package org.iotivity.cloud.accountserver.oauth;
+
+import java.util.HashMap;
+
+import org.apache.oltu.oauth2.client.OAuthClient;
+import org.apache.oltu.oauth2.client.URLConnectionClient;
+import org.apache.oltu.oauth2.client.request.OAuthBearerClientRequest;
+import org.apache.oltu.oauth2.client.request.OAuthClientRequest;
+import org.apache.oltu.oauth2.client.response.OAuthAccessTokenResponse;
+import org.apache.oltu.oauth2.client.response.OAuthJSONAccessTokenResponse;
+import org.apache.oltu.oauth2.client.response.OAuthResourceResponse;
+import org.apache.oltu.oauth2.common.OAuth;
+import org.apache.oltu.oauth2.common.OAuthProviderType;
+import org.apache.oltu.oauth2.common.exception.OAuthProblemException;
+import org.apache.oltu.oauth2.common.exception.OAuthSystemException;
+import org.apache.oltu.oauth2.common.message.types.GrantType;
+import org.iotivity.cloud.accountserver.db.TokenTable;
+import org.iotivity.cloud.accountserver.db.UserTable;
+import org.iotivity.cloud.base.exception.ServerException.InternalServerErrorException;
+import org.iotivity.cloud.util.JSONUtil;
+import org.iotivity.cloud.util.Log;;
+
+/**
+ *
+ * This class provides a sample to make .jar that communicates with OAuth2
+ * provider.
+ *
+ */
+public class Google implements OAuthProvider {
+
+    // do not use 'client_id' and 'secret' variables.
+    // should use values that are obtained from github.
+    final static private String client_id    = "447649044559-f9r5sl6op3kkk0312u384o4g6hhucje1.apps.googleusercontent.com";
+    final static private String secret       = "LyTe5_EQkv8-v9Zbq20PSCLR";
+    final static private String redirect_url = "http://www.example.com/oauth2callback";
+    final static private String resource_url = "https://www.googleapis.com/userinfo/v2/me";
+
+    @Override
+    public TokenTable requestAccessTokenInfo(String authCode, Object options) {
+
+        TokenTable tokenInfo = new TokenTable();
+
+        if (authCode == null) {
+
+            Log.w("authCode is null!");
+            return tokenInfo;
+        }
+
+        try {
+
+            OAuthClientRequest request = OAuthClientRequest
+                    .tokenProvider(OAuthProviderType.GOOGLE)
+                    .setGrantType(GrantType.AUTHORIZATION_CODE)
+                    .setClientId(client_id).setClientSecret(secret)
+                    .setCode(authCode).setRedirectURI(redirect_url)
+                    .buildBodyMessage();
+
+            OAuthClient oauthClient = new OAuthClient(
+                    new URLConnectionClient());
+
+            OAuthAccessTokenResponse oauthResponse = null;
+            Class<? extends OAuthAccessTokenResponse> cl = OAuthJSONAccessTokenResponse.class;
+
+            oauthResponse = oauthClient.accessToken(request, cl);
+
+            Log.d("OAuth response: " + oauthResponse.getBody());
+
+            tokenInfo.setAccesstoken(oauthResponse.getAccessToken());
+            tokenInfo.setRefreshtoken(oauthResponse.getRefreshToken());
+            tokenInfo.setExpiredtime(oauthResponse.getExpiresIn());
+
+        } catch (OAuthSystemException | OAuthProblemException e) {
+
+            e.printStackTrace();
+            throw new InternalServerErrorException(
+                    "OAuth provider(Google) error");
+        }
+
+        return tokenInfo;
+    }
+
+    @Override
+    public TokenTable requestRefreshTokenInfo(String refreshToken) {
+
+        TokenTable tokenInfo = new TokenTable();
+
+        if (refreshToken == null) {
+
+            Log.w("refreshToken is null!");
+            return tokenInfo;
+        }
+
+        try {
+
+            OAuthClientRequest request = OAuthClientRequest
+                    .tokenProvider(OAuthProviderType.GOOGLE)
+                    .setGrantType(GrantType.REFRESH_TOKEN)
+                    .setClientId(client_id).setClientSecret(secret)
+                    .setRefreshToken(refreshToken).buildBodyMessage();
+
+            OAuthClient oauthClient = new OAuthClient(
+                    new URLConnectionClient());
+
+            OAuthAccessTokenResponse oauthResponse = null;
+            Class<? extends OAuthAccessTokenResponse> cl = OAuthJSONAccessTokenResponse.class;
+
+            oauthResponse = oauthClient.accessToken(request, cl);
+
+            Log.d("OAuth response: " + oauthResponse.getBody());
+
+            tokenInfo.setAccesstoken(oauthResponse.getAccessToken());
+            // Google provides refreshToken in one time.
+            tokenInfo.setRefreshtoken(refreshToken);
+            tokenInfo.setExpiredtime(oauthResponse.getExpiresIn());
+
+        } catch (OAuthSystemException | OAuthProblemException e) {
+
+            e.printStackTrace();
+            throw new InternalServerErrorException(
+                    "OAuth provider(Google) error");
+        }
+
+        return tokenInfo;
+    }
+
+    @Override
+    public UserTable requestGetUserInfo(String accessToken, Object options) {
+
+        UserTable userInfo = new UserTable();
+
+        if (accessToken == null) {
+            Log.w("accessToken is null!");
+            return userInfo;
+        }
+
+        String response = null;
+
+        try {
+
+            OAuthClientRequest request = new OAuthBearerClientRequest(
+                    resource_url).setAccessToken(accessToken)
+                            .buildQueryMessage();
+
+            OAuthClient oAuthClient = new OAuthClient(
+                    new URLConnectionClient());
+            OAuthResourceResponse resourceResponse = oAuthClient.resource(
+                    request, OAuth.HttpMethod.GET, OAuthResourceResponse.class);
+
+            response = resourceResponse.getBody();
+            Log.d("response: " + response);
+
+        } catch (OAuthSystemException | OAuthProblemException e) {
+            e.printStackTrace();
+            throw new InternalServerErrorException(
+                    "OAuth provider(Github) error");
+        }
+
+        String userIdKey = "name";
+
+        JSONUtil<HashMap<String, String>> util = new JSONUtil<>();
+        HashMap<String, String> parsedData = util.parseJSON(response,
+                HashMap.class);
+
+        if (parsedData == null) {
+            Log.d("parsedData is null!");
+            return userInfo;
+        }
+
+        String userId = parsedData.get(userIdKey);
+        userInfo.setUserid(userId);
+
+        return userInfo;
+    }
+}
-- 
2.7.4