// // OAuth2.cs // // Author: // Paul Schneider // // Copyright (c) 2015 Paul Schneider // // This program is free software: you can redistribute it and/or modify // it under the terms of the GNU Lesser General Public License as published by // the Free Software Foundation, either version 3 of the License, or // (at your option) any later version. // // This program is distributed in the hope that it will be useful, // but WITHOUT ANY WARRANTY; without even the implied warranty of // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the // GNU Lesser General Public License for more details. // // You should have received a copy of the GNU Lesser General Public License // along with this program. If not, see . using System; using System.IO; using System.Net; using System.Text; using Newtonsoft.Json; using Yavsc.Model.Google; using System.Web.Profile; using System.Web; using Yavsc.Model; using System.Runtime.Serialization.Json; namespace Yavsc.Helpers.Google { ///

/// Google People API. ///

public class PeopleApi: ApiClient { private static string getPeopleUri = "https://www.googleapis.com/plus/v1/people"; ///

/// Gets the People object associated to the given Google Access Token ///

/// The me. /// The Google Access Token object class. public static People GetMe (AuthToken gat) { People me; DataContractJsonSerializer ppser = new DataContractJsonSerializer (typeof(People)); HttpWebRequest webreppro = WebRequest.CreateHttp (getPeopleUri + "/me"); webreppro.ContentType = "application/http"; webreppro.Headers.Add (HttpRequestHeader.Authorization, gat.token_type + " " + gat.access_token); webreppro.Method = "GET"; using (WebResponse proresp = webreppro.GetResponse ()) { using (Stream prresponseStream = proresp.GetResponseStream ()) { me = (People) ppser.ReadObject (prresponseStream); prresponseStream.Close (); } proresp.Close (); } webreppro.Abort (); return me; } } ///

/// Google O auth2 client. ///

public class OAuth2:ApiClient { ///

/// The URI used to get tokens. ///

protected static string tokenUri = "https://accounts.google.com/o/oauth2/token"; ///

/// The URI used to get authorized to. ///

protected static string authUri = "https://accounts.google.com/o/oauth2/auth"; ///

/// Gets or sets the redirect URI sent to Google. ///

/// The redirect URI. public string RedirectUri { get; set; } ///

/// Initializes a new instance of the class. ///

/// Redirect URI. public OAuth2 (string redirectUri) { RedirectUri = redirectUri; } ///

/// Login with Google /// by redirecting the specified http web response bresp, /// and using the specified session state. ///

/// Bresp. /// State. public void Login (HttpResponseBase bresp, string state) { string scope = string.Join ("%20", scopeOpenid); string prms = String.Format ("response_type=code&client_id={0}&redirect_uri={1}&scope={2}&state={3}&include_granted_scopes=false", CLIENT_ID, RedirectUri, scope, state); GetAuthResponse (bresp, prms); } ///

/// Gets the cal authorization. ///

/// Bresp. /// State. public void GetCalAuth (HttpResponseBase bresp, string state) { string scope = string.Join ("%20", scopeOpenid); scope = string.Join ("%20", scopeCalendar); string prms = String.Format ("response_type=code&client_id={0}&redirect_uri={1}&scope={2}&state={3}&include_granted_scopes=false&access_type=offline", CLIENT_ID, RedirectUri, scope, state); GetAuthResponse (bresp, prms); } private void GetAuthResponse (HttpResponseBase bresp, string prms) { string cont = null; WebRequest wr = WebRequest.Create (authUri + "?" + prms); wr.Method = "GET"; using (WebResponse response = wr.GetResponse ()) { string resQuery = response.ResponseUri.Query; cont = HttpUtility.ParseQueryString (resQuery) ["continue"]; response.Close (); } wr.Abort (); bresp.Redirect (cont); } ///

/// Builds the post data, from code given /// by Google in the request parameters, /// and using the given redirectUri. /// This request body is used to get a new /// OAuth2 token from Google, it is Url encoded. ///

/// The post data from code. /// Redirect URI. /// Code. public static string TokenPostDataFromCode (string redirectUri, string code) { string postdata = string.Format ( "redirect_uri={0}&client_id={1}&client_secret={2}&code={3}&grant_type=authorization_code", HttpUtility.UrlEncode (redirectUri), HttpUtility.UrlEncode (CLIENT_ID), HttpUtility.UrlEncode (CLIENT_SECRET), HttpUtility.UrlEncode (code)); return postdata; } ///

/// Gets the Google Authorization token. ///

/// The token. /// Rq. /// State. /// Message. public AuthToken GetToken (HttpRequestBase rq, string state, out string message) { string code = OAuth2.GetCodeFromRequest (rq, state, out message); string postdata = OAuth2.TokenPostDataFromCode (RedirectUri, code); return GetTokenPosting (postdata); } internal static AuthToken GetTokenPosting (string postdata) { HttpWebRequest webreq = WebRequest.CreateHttp (tokenUri); webreq.Method = "POST"; webreq.Accept = "application/json"; webreq.ContentType = "application/x-www-form-urlencoded"; Byte[] bytes = System.Text.Encoding.UTF8.GetBytes (postdata); webreq.ContentLength = bytes.Length; using (Stream dataStream = webreq.GetRequestStream ()) { dataStream.Write (bytes, 0, bytes.Length); dataStream.Close (); } AuthToken gat = null; using (WebResponse response = webreq.GetResponse ()) { using (Stream responseStream = response.GetResponseStream ()) { gat = (AuthToken) new DataContractJsonSerializer(typeof(AuthToken)).ReadObject (responseStream); responseStream.Close (); } response.Close (); } webreq.Abort (); return gat; } ///

/// Gets the code from the Google request. ///

/// The code from request. /// Rq. /// State. /// Message. public static string GetCodeFromRequest (HttpRequestBase rq, string state, out string message) { message = ""; string code = rq.Params ["code"]; string error = rq.Params ["error"]; if (error != null) { message = string.Format (LocalizedText.Google_error, LocalizedText.ResourceManager.GetString (error)); return null; } string rqstate = rq.Params ["state"]; if (state != null && string.Compare (rqstate, state) != 0) { message = LocalizedText.ResourceManager.GetString ("invalid request state"); return null; } return code; } ///

/// Gets fresh google credential. ///

/// The fresh google credential. /// Pr. public static string GetFreshGoogleCredential (ProfileBase pr) { string token = (string)pr.GetPropertyValue ("gtoken"); string token_type = (string)pr.GetPropertyValue ("gtokentype"); DateTime token_exp = (DateTime)pr.GetPropertyValue ("gtokenexpir"); if (token_exp < DateTime.Now) { string refresh_token = (string)pr.GetPropertyValue ("grefreshtoken"); AuthToken gat = OAuth2.GetTokenPosting ( string.Format ("grant_type=refresh_token&client_id={0}&client_secret={1}&refresh_token={2}", CLIENT_ID, CLIENT_SECRET, refresh_token)); token = gat.access_token; pr.SetPropertyValue ("gtoken", token); pr.Save (); // ASSERT gat.token_type == pr.GetPropertyValue("token_type") } return token_type + " " + token; } } }