/
access_token.ex
59 lines (55 loc) · 1.61 KB
/
access_token.ex
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
defmodule Boruta.Oauth.Authorization.AccessToken do
@moduledoc """
Check against given params and return the corresponding access token
"""
alias Boruta.Oauth.Error
alias Boruta.Oauth.Token
@doc """
Authorize the access token corresponding to the given params.
## Examples
iex> authorize(%{value: "value"})
{:ok, %Boruta.Oauth.Token{...}}
"""
@spec authorize(
params ::
[value: String.t()]
| [refresh_token: String.t()]
) ::
{:error,
%Error{
:error => :invalid_access_token,
:error_description => String.t(),
:format => nil,
:redirect_uri => nil,
:status => :unauthorized
}}
| {:ok, %Token{}}
def authorize(value: value) do
with %Token{} = token <- Boruta.AccessTokensAdapter.get_by(value: value),
:ok <- Token.ensure_valid(token) do
{:ok, token}
else
_ ->
{:error,
%Error{
status: :bad_request,
error: :invalid_access_token,
error_description: "Given access token is invalid, revoked, or expired."
}}
end
end
def authorize(refresh_token: refresh_token) do
with %Token{} = token <- Boruta.AccessTokensAdapter.get_by(refresh_token: refresh_token),
:ok <- Token.ensure_valid(token, :refresh_token) do
{:ok, token}
else
_ ->
{:error,
%Error{
status: :bad_request,
error: :invalid_grant,
error_description: "Given refresh token is invalid, revoked, or expired."
}}
end
end
end