v2.0.7 pom

Merge branch 'develop' into stable
better oauth token expiration handling
2023-06-12 17:23:23 -04:00 · 2023-06-12 17:16:33 -04:00 · 2023-06-12 17:16:03 -04:00
2 changed files with 30 additions and 4 deletions
--- a/pom.xml
+++ b/pom.xml
@@ -6,7 +6,7 @@
 	<groupId>com.inteligr8</groupId>
 	<artifactId>common-rest-client</artifactId>
-	<version>2.0.6</version>
+	<version>2.0.7</version>
 	<packaging>jar</packaging>
 	<name>ReST API Client for Java</name>
--- a/src/main/java/com/inteligr8/rs/OAuthAuthorizationFilter.java
+++ b/src/main/java/com/inteligr8/rs/OAuthAuthorizationFilter.java
@@ -48,6 +48,7 @@ public abstract class OAuthAuthorizationFilter implements AuthorizationFilter {
 	private String accessToken;
 	private long expiration;
 	private String refreshToken;
 	private Long refreshTokenExpiration;
 	/**
 	 * This constructor creates an OAuth-based authorization filter using the
@@ -99,8 +100,29 @@ public abstract class OAuthAuthorizationFilter implements AuthorizationFilter {
 	 */
 	@Override
 	public void filter(ClientRequestContext requestContext) {
-		if (this.accessToken == null || System.currentTimeMillis() > this.expiration)
+		if (this.accessToken == null) {
 		    this.requestToken();
 		} else if (System.currentTimeMillis() >= this.expiration) {
            this.logger.trace("Access token expired; retrieving new one with refresh token");
 		    if (this.refreshTokenExpiration != null && System.currentTimeMillis() >= this.refreshTokenExpiration.longValue()) {
                this.logger.debug("Refresh token expired; performing full authentication");
                this.refreshToken = null;
                this.requestToken();
 		    } else {
    		    try {
    		        this.requestToken();
                } catch (WebApplicationException wae) {
                    if (wae.getResponse().getStatusInfo().getFamily() == Family.CLIENT_ERROR) {
                        this.logger.debug("Received OAuth response {} using refresh token; performing full authentication", wae.getResponse().getStatus());
                        this.refreshToken = null;
                        this.requestToken();
                    } else {
                        throw wae;
                    }
                }
 		    }
 		}
 		requestContext.getHeaders().add(HttpHeaders.AUTHORIZATION, "Bearer " + this.accessToken);
 	}
@@ -140,6 +162,8 @@ public abstract class OAuthAuthorizationFilter implements AuthorizationFilter {
                .build();
 		WebTarget target = client.target(this.tokenUrl);
 		long requestSendTime = System.currentTimeMillis();
 		Response response = target.request().post(entity);
        this.logger.debug("Received OAuth response: {}", response.getStatus());
@@ -160,8 +184,10 @@ public abstract class OAuthAuthorizationFilter implements AuthorizationFilter {
 		}
 		this.accessToken = (String)responseMap.get("access_token");
-		this.expiration = System.currentTimeMillis() + ((Number)responseMap.get("expires_in")).longValue() * 1000L;
+		this.expiration = requestSendTime + ((Number)responseMap.get("expires_in")).longValue() * 1000L;
 		this.refreshToken = (String)responseMap.get("refresh_token");
 		if (responseMap.containsKey("refresh_token_expires_in"))
 		    this.refreshTokenExpiration = requestSendTime + ((Number)responseMap.get("refresh_token_expires_in")).longValue() * 1000L;
 	}
 	protected Form createRefreshForm() {
Author	SHA1	Message	Date
Brian M. Long	512f118354	v2.0.7 pom	2023-06-12 17:23:23 -04:00
Brian M. Long	21255bfb3d	Merge branch 'develop' into stable	2023-06-12 17:16:33 -04:00
Brian M. Long	f84279a148	better oauth token expiration handling	2023-06-12 17:16:03 -04:00