File: error.rb

package info (click to toggle)
ruby-rack-oauth2 2.3.0-1
  • links: PTS, VCS
  • area: main
  • in suites: forky, sid
  • size: 564 kB
  • sloc: ruby: 4,038; makefile: 4
file content (56 lines) | stat: -rw-r--r-- 2,519 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
 
module Rack
  module OAuth2
    module Server
      class Token
        class BadRequest < Abstract::BadRequest
        end

        class Unauthorized < Abstract::Unauthorized
          def finish
            super do |response|
              unless @skip_www_authenticate
                response.headers['WWW-Authenticate'] = 'Basic realm="OAuth2 Token Endpoint"'
              end
            end
          end
        end

        module ErrorMethods
          DEFAULT_DESCRIPTION = {
            invalid_request: "The request is missing a required parameter, includes an unsupported parameter or parameter value, repeats a parameter, includes multiple credentials, utilizes more than one mechanism for authenticating the client, or is otherwise malformed.",
            invalid_client: "The client identifier provided is invalid, the client failed to authenticate, the client did not include its credentials, provided multiple client credentials, or used unsupported credentials type.",
            invalid_grant: "The provided access grant is invalid, expired, or revoked (e.g. invalid assertion, expired authorization token, bad end-user password credentials, or mismatching authorization code and redirection URI).",
            unauthorized_client: "The authenticated client is not authorized to use the access grant type provided.",
            unsupported_grant_type: "The access grant included - its type or another attribute - is not supported by the authorization server.",
            invalid_scope: "The requested scope is invalid, unknown, malformed, or exceeds the previously granted scope."
          }

          def self.included(klass)
            DEFAULT_DESCRIPTION.each do |error, default_description|
              error_method = if error == :invalid_client
                :unauthorized!
              else
                :bad_request!
              end
              klass.class_eval <<-ERROR
                def #{error}!(description = "#{default_description}", options = {})
                  #{error_method} :#{error}, description, options
                end
              ERROR
            end
          end

          def bad_request!(error, description = nil, options = {})
            raise BadRequest.new(error, description, options)
          end

          def unauthorized!(error, description = nil, options = {})
            raise Unauthorized.new(error, description, options)
          end
        end

        Request.send :include, ErrorMethods
      end
    end
  end
end