File Coverage

blib/lib/OAuth/Lite2/ParamMethod/AuthHeader.pm

Criterion	Covered	Total	%
statement	93	94	98.9
branch	22	24	91.6
condition	11	16	68.7
subroutine	16	16	100.0
pod	4	5	80.0
total	146	155	94.1

line	stmt	bran	cond	sub	pod	time	code
1							package OAuth::Lite2::ParamMethod::AuthHeader;
2	10			10		33	use strict;
	10					7
	10					220
3	10			10		29	use warnings;
	10					10
	10					166
4	10			10		982	use bytes ();
	10					23
	10					131
5	10			10		382	use parent 'OAuth::Lite2::ParamMethod';
	10					244
	10					38
6
7	10			10		1184	use URI;
	10					7166
	10					218
8	10			10		3875	use MIME::Base64 qw(decode_base64);
	10					4731
	10					488
9	10			10		437	use Hash::MultiValue;
	10					1735
	10					175
10	10			10		3761	use HTTP::Request;
	10					27227
	10					215
11	10			10		48	use HTTP::Headers;
	10					11
	10					155
12	10			10		949	use Params::Validate;
	10					11352
	10					450
13	10			10		2889	use OAuth::Lite2::Util qw(encode_param decode_param build_content);
	10					16
	10					7730
14
15							=head1 NAME
16
17							OAuth::Lite2::ParamMethod::AuthHeader - builder/parser for OAuth 2.0 AuthHeader type of parameter
18
19							=head1 SYNOPSIS
20
21							my $meth = OAuth::Lite2::ParamMethod::AuthHeader->new;
22
23							# server side
24							if ($meth->match( $plack_request )) {
25							my ($token, $params) = $meth->parse( $plack_request );
26							}
27
28							# client side
29							my $http_req = $meth->request_builder(...);
30
31							=head1 DESCRIPTION
32
33							builder/parser for OAuth 2.0 AuthHeader type of parameter
34
35							=head1 METHODS
36
37							=head2 new
38
39							Constructor
40
41							=head2 match( $plack_request )
42
43							Returns true if passed L object is matched for the type of this method.
44
45							if ( $meth->match( $plack_request ) ) {
46							...
47							}
48
49							=cut
50
51							sub match {
52	46			46	1	44	my ($self, $req) = @_;
53	46					89	my $header = $req->header("Authorization");
54	46		66			4375	return ($header && $header =~ /^\s(OAuth\|Bearer)(.)$/);
55							}
56
57							=head2 parse( $plack_request )
58
59							Parse the L, and returns access token and oauth parameters.
60
61							my ($token, $params) = $meth->parse( $plack_request );
62
63							=cut
64
65							sub parse {
66	21			21	1	989	my ($self, $req) = @_;
67	21					49	my $header = $req->header("Authorization");
68	21					345	my $token;
69	21	100				102	if ($header =~ s/^\s(OAuth\|Bearer)\s+([^\s\,])//){
70	19					35	$token = $2;
71							}
72	21					88	my $params = Hash::MultiValue->new;
73	21					468	$header =~ s/^\s(OAuth\|Bearer)\s([^\s\,]*)//;
74
75	21	100				40	if ($header) {
76	1					4	$header =~ s/^\s\,\s//;
77	1					6	for my $attr (split /,\s*/, $header) {
78	4					83	my ($key, $val) = split /=/, $attr, 2;
79	4					11	$val =~ s/^"//;
80	4					7	$val =~ s/"$//;
81	4					10	$params->add($key, decode_param($val));
82							}
83							}
84	21					89	return ($token, $params);
85							}
86
87							=head2 build_request( %params )
88
89							Build L object.
90
91							my $req = $meth->build_request(
92							url => $url,
93							method => $http_method,
94							token => $access_token,
95							oauth_params => $oauth_params,
96							params => $params,
97							content => $content,
98							headers => $headers,
99							);
100
101							=cut
102
103							sub build_request {
104	10			10	1	10870	my $self = shift;
105	10					284	my %args = Params::Validate::validate(@_, {
106							url => 1,
107							method => 1,
108							token => 1,
109							oauth_params => 1,
110							params => { optional => 1 },
111							content => { optional => 1 },
112							headers => { optional => 1 },
113							});
114	10		50			64	my $oauth_params = $args{oauth_params} \|\| {};
115	10					22	my @pairs = sort map { sprintf q{%s="%s"},
116							encode_param($_),
117	4					79	encode_param($oauth_params->{$_})
118							} keys %$oauth_params;
119
120	10		100			47	my $params = $args{params} \|\| {};
121	10					18	my $method = uc $args{method};
122	10					21	my $headers = $args{headers};
123	10	100				17	if (defined $headers) {
124	2	50				6	if (ref($headers) eq 'ARRAY') {
125	2					8	$headers = HTTP::Headers->new(@$headers);
126							} else {
127	0					0	$headers = $headers->clone;
128							}
129							} else {
130	8					31	$headers = HTTP::Headers->new;
131							}
132	10					121	my $auth_header = sprintf(q{Bearer %s}, $args{token});
133	10	100				26	$auth_header .= ", " . join(", ", @pairs) if @pairs > 0;
134	10					22	$headers->header(Authorization => $auth_header);
135
136	10	100	66			294	if ($method eq 'GET' \|\| $method eq 'DELETE') {
137	6					18	my $url = URI->new($args{url});
138	6					5486	$url->query_form(%$params);
139	6					209	my $req = HTTP::Request->new($method, $url->as_string, $headers);
140	6					776	return $req;
141							} else {
142	4	100				9	unless ($headers->header("Content-Type")) {
143	2					38	$headers->header("Content-Type",
144							"application/x-www-form-urlencoded");
145							}
146	4					74	my $content_type = $headers->header("Content-Type");
147							my $content = ($content_type eq "application/x-www-form-urlencoded")
148							? build_content($params)
149	4	100	66			71	: $args{content} \|\| build_content($params);
150	4					13	$headers->header("Content-Length", bytes::length($content));
151	4					824	my $req = HTTP::Request->new($method, $args{url}, $headers, $content);
152	4					439	return $req;
153							}
154							}
155
156							=head2 is_legacy( $plack_request )
157
158							Returns true if passed L object is based draft version 10.
159
160							if ( $meth->is_legacy( $plack_request ) ) {
161							...
162							}
163
164							=cut
165
166							sub is_legacy {
167	18			18	1	1263	my ($self, $req) = @_;
168	18					36	my $header = $req->header("Authorization");
169	18		66			389	return ($header && $header =~ /^\sOAuth(.)$/);
170							}
171
172							=head2 basic_clientcredentials( $plack_request )
173
174							Returns Hash reference if passed L object has client credentials in Authorization header.
175
176							my $basic_clientcredentials = $meth->basic_credentials( $plack_request );
177							if( defined($basic_clientcredentials) ){
178							my $client_id = $basic_clientcredentials->{client_id};
179							my $client_secret = $basic_clientcredentials->{client_secret};
180							}
181
182							=cut
183
184							sub basic_credentials{
185	48			48	0	6784	my ($self, $req) = @_;
186
187	48					108	my %credentials = (
188							client_id => '',
189							client_secret => ''
190							);
191	48					105	my $header = $req->header("Authorization");
192	48	100				1943	return \%credentials unless (defined($header));
193
194	8					7	my $decoded;
195	8	100				24	if ( $header =~ /\A\s(Basic)\s([^\s\,])/ ){
196	4					24	$decoded = decode_base64($2);
197	4	100				14	return \%credentials unless (index($decoded,':') > 0);
198
199	2					5	my @split_credentials = split(/:/, $decoded);
200	2	50				6	return \%credentials unless (scalar(@split_credentials) == 2);
201
202	2					6	%credentials = (
203							client_id => $split_credentials[0],
204							client_secret => $split_credentials[1]
205							);
206							}
207	6					15	return \%credentials;
208							};
209
210							=head1 SEE ALSO
211
212							L
213							L
214							L
215							L
216
217							=head1 AUTHOR
218
219							Lyo Kato, Elyo.kato@gmail.comE
220
221							=head1 COPYRIGHT AND LICENSE
222
223							Copyright (C) 2010 by Lyo Kato
224
225							This library is free software; you can redistribute it and/or modify
226							it under the same terms as Perl itself, either Perl version 5.8.8 or,
227							at your option, any later version of Perl 5 you may have available.
228
229							=cut
230
231							1;