-
Notifications
You must be signed in to change notification settings - Fork 0
/
token.go
79 lines (70 loc) · 2.24 KB
/
token.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
package openid
import (
"errors"
)
const (
// Bearer represents the bearer type token.
Bearer = "Bearer"
Basic = "Basic"
)
//go:generate gencodec -type AccessTokenRequest -out gen_token_json.go
// AccessTokenRequest represents the access token request payload.
type AccessTokenRequest struct {
GrantType string `json:"grant_type,omitempty"`
Code string `json:"code,omitempty"`
RedirectURI string `json:"redirect_uri,omitempty"`
ClientID string `json:"client_id,omitempty"`
}
// Validate performs an initial validation on the required field.
func (r *AccessTokenRequest) Validate() error {
// if r.GrantType != "authorization_code" {
// return InvalidRequest.JSON()
// }
// if strings.TrimSpace(r.Code) == "" {
// return AccessDenied.JSON()
// }
// if strings.TrimSpace(r.RedirectURI) == "" {
// return InvalidRequest.JSON()
// }
// if !govalidator.IsURL(r.RedirectURI) {
// return InvalidRedirectURI.JSON()
// }
// if strings.TrimSpace(r.ClientID) == "" {
// return AccessDenied.JSON()
// }
return nil
}
// AccessTokenResponse represents the response payload.
type AccessTokenResponse struct {
AccessToken string `json:"access_token,omitempty"`
TokenType string `json:"token_type,omitempty"`
ExpiresIn int64 `json:"expires_in,omitempty"`
RefreshToken string `json:"refresh_token,omitempty"`
IDToken string `json:"id_token,omitempty"`
}
// RefreshTokenRequest represents the refresh token request.
type RefreshTokenRequest struct {
ClientID string `json:"client_id,omitempty"`
ClientSecret string `json:"client_secret,omitempty"`
RefreshToken string `json:"refresh_token,omitempty"`
GrantType string `json:"grant_type,omitempty"`
Scope string `json:"scope,omitempty"`
}
// Validate checks for required fields.
func (r *RefreshTokenRequest) Validate() error {
if r.GrantType != "refresh_token" {
return errors.New("invalid_grant_type")
}
if r.RefreshToken == "" {
return errors.New("invalid_request")
}
if r.Scope == "" {
// TODO: Handle validation for scope.
}
return nil
}
// RefreshTokenResponse returns the access token.
type RefreshTokenResponse struct {
AccessToken string `json:"access_token,omitempty"`
IDTokens string `json:"id_token,omitempty"`
}