java source code of ClientAppUserAccessTokenArgumentResolver

kaif-master
- gradle.properties
- gradle
  - wrapper
    - gradle-wrapper.properties
    - gradle-wrapper.jar
- .run
  - kaif_kaif-fe [webDevServe].run.xml
- kaif-web
  - src
    - main
      - resources
        application.yml
        i18n
        messages.properties
        messages_zh.properties
        application-dev.yml
        mail
        mail-composer-test.ftl
        account-activation.ftl
        account-reset-password.ftl
        account-password-was-reset.ftl
        db
        patch
        150330.sql
        150311.sql
        150324.sql
        150227.sql
        180530.sql
        150425.sql
        150303.sql
        150228.sql
        150315.sql
        recreate_db.sql
        data.sql
        schema.sql
        recreate_schema.sql
        recreate_db_ci.sql
        application-prod.yml
        templates
        index.ftlh
        access-denied.ftlh
        v1
        authorize.ftlh
        part-template.ftlh
        article
        create.ftlh
        debates.ftlh
        developer
        client-app.ftlh
        doc.ftlh
        client-app.part.ftlh
        zone
        zone-a-z.ftlh
        zone-page.ftlh
        create.ftlh
        account
        user-honors.ftlh
        sign-up.ftlh
        activation.ftlh
        account.ftlh
        user-debates.ftlh
        sign-in.ftlh
        client-app.part.ftlh
        news-feed.part.ftlh
        reset-password.ftlh
        user-profile.ftlh
        user-articles.ftlh
        forget-password.ftlh
        settings.part.ftlh
        up-voted.part.ftlh
        error.ftlh
        macros
        aside.ftl
        comp.ftl
        url.ftl
        util.ftl
        template.ftl
        logback-prod.xml
        logback-dev.xml
        banner.txt
        static
        robots.txt
        img
        kaif_black.svg
        kaif_triangle.svg
        favicon.ico
        kaif_white.svg
        kaif_square.svg
        css
        z-theme-kaif.css
        z-theme-default.css
      - java
        io
        kaif
        database
        DaoOperations.java
        kmark
        Line.java
        KmarkProcessor.java
        LinkRef.java
        LineType.java
        Configuration.java
        Utils.java
        Decorator.java
        BlockEmitter.java
        BlockType.java
        Block.java
        HtmlEscapeStringBuilder.java
        SpanEmitter.java
        MarkToken.java
        Emitter.java
        DefaultDecorator.java
        CodeBlockEmitter.java
        mail
        MailAgent.java
        JavaMailAgent.java
        MailProperties.java
        Mail.java
        AwsSesMailAgent.java
        MailComposer.java
        web
        DevProxyController.java
        UserController.java
        ArticleController.java
        HotArticleRssContentView.java
        ShortUrlController.java
        AwsSnsRestController.java
        CreateArticleModelAndView.java
        ZoneAdminController.java
        v1
        V1FeedResource.java
        dto
        V1VoteDto.java
        V1UserBasicDto.java
        V1DebateNodeDto.java
        V1ArticleDto.java
        V1ZoneDto.java
        V1ArticleType.java
        V1AssetType.java
        V1FeedAssetDto.java
        V1DebateDto.java
        V1UserResource.java
        V1ExceptionHandler.java
        V1ZoneResource.java
        V1ErrorResponse.java
        V1ArticleResource.java
        README.md
        V1EchoResource.java
        V1ResponseWrapperAdvice.java
        V1VoteResource.java
        RequiredScope.java
        V1Commons.java
        ClientAppUserAccessTokenArgumentResolver.java
        V1DebateResource.java
        api
        ZoneResource.java
        RestExceptionHandler.java
        ClientAppResource.java
        SimpleErrorResponse.java
        ArticleResource.java
        AccountResource.java
        VoteResource.java
        support
        ErrorResponse.java
        PartTemplate.java
        WebDataBinderAdvice.java
        SingleWrapper.java
        AccessDeniedException.java
        AbstractRestExceptionHandler.java
        RelativeTime.java
        HomeController.java
        OauthController.java
        AccountController.java
        ZoneController.java
        AccountAccessTokenArgumentResolver.java
        PageExceptionHandler.java
        DeveloperController.java
        rank
        SortingNode.java
        WilsonScore.java
        HotRanking.java
        util
        MoreCollectors.java
        Try.java
        config
        AppProperties.java
        ModelConfiguration.java
        WebConfiguration.java
        SwaggerConfiguration.java
        UtilConfiguration.java
        SpringProfile.java
        service
        impl
        FeedServiceImpl.java
        VoteServiceImpl.java
        HonorRollServiceImpl.java
        ClientAppServiceImpl.java
        ZoneServiceImpl.java
        ArticleServiceImpl.java
        AccountServiceImpl.java
        ArticleService.java
        VoteService.java
        FeedService.java
        HonorRollService.java
        ZoneService.java
        AccountService.java
        ClientAppService.java
        token
        SecureTokenCodec.java
        Base62.java
        Bytes.java
        Encryptor.java
        Decryptor.java
        Hmac.java
        model
        debate
        DebateDao.java
        DebateTree.java
        Debate.java
        DebateList.java
        DebateContentType.java
        exception
        ClientAppMaxException.java
        RequireCitizenException.java
        OldPasswordNotMatchException.java
        CreditNotEnoughException.java
        I18nAware.java
        DomainException.java
        AuthenticateFailException.java
        ClientAppNameReservedException.java
        CallbackUriReservedException.java
        feed
        NewsFeed.java
        FeedAssetDao.java
        FeedAsset.java
        article
        ArticleWatchDao.java
        ArticleWatch.java
        ArticleList.java
        ArticleDao.java
        Article.java
        ArticleContentType.java
        vote
        HonorRoll.java
        DebateVoterDto.java
        VoteDao.java
        ArticleVoterDto.java
        HonorRollDao.java
        HonorRollVoter.java
        ArticleVoter.java
        VoteState.java
        DebateVoter.java
        zone
        Zone.java
        ZoneDao.java
        ZoneInfo.java
        account
        Authorization.java
        Account.java
        AccountStats.java
        AccountSecret.java
        AccountOnceToken.java
        Authority.java
        AccountAccessToken.java
        AccountDao.java
        AccountAuth.java
        clientapp
        ClientAppUser.java
        ClientAppScope.java
        ClientApp.java
        ClientAppUserAccessToken.java
        ClientAppDao.java
        OauthSecret.java
        ClientAppAuthorization.java
        GrantCode.java
        KaifIdGenerator.java
        flake
        FlakeIdGenerator.java
        FlakeId.java
        Application.java
        oauth
        OauthErrorDto.java
        GrantType.java
        InsufficientScopeException.java
        OauthErrors.java
        OauthAccessTokenDto.java
        OauthException.java
        Oauths.java
        MissingBearerTokenException.java
        InvalidTokenException.java
    - test
      - resources
        logback-test.xml
        kmark
        in8.md
        out10.out
        out3.out
        in9.md
        out1.out
        in5.md
        in13.md
        out11.out
        out6.out
        out7.out
        in3.md
        out12.out
        in7.md
        in14.md
        out9.out
        in12.md
        in6.md
        in11.md
        out4.out
        in10.md
        out13.out
        in2.md
        out2.out
        out14.out
        in1.md
        in4.md
        out8.out
        out5.out
        application-test.yml
      - java
        io
        kaif
        kmark
        KmarkProcessorTest.java
        mail
        MailTestCases.java
        MailAgentTest.java
        MailComposerTest.java
        web
        AwsSnsRestControllerTest.java
        ShortUrlControllerTest.java
        OauthControllerTest.java
        v1
        ScopeAndAccessTokenSignatureTest.java
        V1DebateResourceTest.java
        V1FeedResourceTest.java
        V1ArticleResourceTest.java
        V1ZoneResourceTest.java
        ClientAppUserAccessTokenArgumentResolverTest.java
        V1UserResourceTest.java
        ClassScanner.java
        V1ResponseWrapperAdviceTest.java
        V1VoteResourceTest.java
        api
        ArticleResourceTest.java
        VoteResourceTest.java
        DeveloperControllerTest.java
        UserControllerTest.java
        HomeControllerTest.java
        ZoneControllerTest.java
        ArticleControllerTest.java
        AccountControllerTest.java
        time
        RelativeTimeTest.java
        rank
        WilsonScoreTest.java
        HotRankingTest.java
        SortingNodeTest.java
        test
        DbIntegrationTests.java
        MvcIntegrationTests.java
        ToolFixture.java
        TimeFixture.java
        ModelFixture.java
        util
        MoreCollectorsTest.java
        service
        impl
        ArticleServiceImplTest.java
        VoteServiceImplTest.java
        ClientAppServiceImplTest.java
        FeedServiceImplTest.java
        HonorRollServiceImplTest.java
        AccountServiceImplTest.java
        ZoneServiceImplTest.java
        token
        BytesTest.java
        SecureTokenCodecTest.java
        DecryptorTest.java
        model
        debate
        DebateTest.java
        DebateTreeTest.java
        article
        ArticleDaoTest.java
        ArticleListTest.java
        ArticleTest.java
        vote
        HonorRollDaoTest.java
        zone
        ZoneInfoTest.java
        ZoneTest.java
        account
        AccountTest.java
        AccountAccessTokenTest.java
        AuthorityTest.java
        clientapp
        ClientAppDaoTest.java
        GrantCodeTest.java
        ClientAppScopeTest.java
        ClientAppUserAccessTokenTest.java
        flake
        FlakeIdGeneratorTest.java
        FlakeIdTest.java
  - build.gradle
- gradlew.bat
- test.sh
- LICENSE
- gradlew
- build.gradle
- README.md
- kaif-deploy
  - site.yml
  - ansible.cfg
  - playbooks
    - base.yml
    - postgresql.yml
    - postfix.yml
    - kaif-web.yml
  - howto
    - gce.md
  - gce.ssh_config
  - play_vagrant_deploy.sh
  - deploy
    - recreate_db.yml
    - decrypt_secret.yml
    - db_link
      - patch
        150330.sql
        150311.sql
        150324.sql
        150227.sql
        180530.sql
        150425.sql
        150303.sql
        150228.sql
        150315.sql
      - recreate_db.sql
      - data.sql
      - schema.sql
      - recreate_schema.sql
      - recreate_db_ci.sql
    - deploy_app.yml
  - secret
    - kaif_rsa.vault
    - kaif_rsa.pub.vault
  - play_production_deploy.sh
  - Vagrantfile
  - dev
    - group_vars
      - pgs.yml
      - all.yml
      - webs
        dummy_secret.yml
        dummy_aws_key.yml
    - inventory
  - COMMAND.md
  - README.md
  - play_vagrant_recreate_db.sh
  - vagrant.ssh_config
  - play_vagrant_provision.sh
  - .gitignore
  - roles
    - nginx
      - ansible.cfg
      - vars
        main.yml
      - test.yml
      - templates
        auth_basic.j2
        nginx.conf.j2
        epel.repo.j2
        site.conf.j2
        config.conf.j2
      - handlers
        main.yml
      - example-vars.yml
      - tasks
        remove-extras.yml
        remove-defaults.yml
        main.yml
      - .travis.yml
      - README.md
      - defaults
        main.yml
      - meta
        main.yml
    - ohmyzsh
      - vars
        main.yml
      - templates
        zshrc.j2
      - tasks
        main.yml
      - defaults
        main.yml
    - backup
      - templates
        gce_backup.sh.j2
      - tasks
        main.yml
      - defaults
        main.yml
    - selfsigned
      - handlers
        main.yml
      - tasks
        main.yml
      - defaults
        main.yml
    - common
      - vars
        main.yml
      - files
        etc
        sysctl.d
        99-tuning.conf
      - templates
        etc
        security
        limits.d
        vagrant.conf
        sudoers.d
        kaif
        timezone.j2
      - handlers
        main.yml
      - tasks
        main.yml
    - postgresql
      - vars
        main.yml
      - templates
        postgresql-9.5.conf.j2
        pg_hba-9.5.conf
      - handlers
        main.yml
      - tasks
        main.yml
      - defaults
        main.yml
    - letsencrypt
      - tasks
        main.yml
      - README.md
      - defaults
        main.yml
    - postfix
      - vars
        Debian.yml
      - LICENSE
      - templates
        tmp-postfix_selections.j2
        main-cf.j2
        root-forward.j2
        sasl_passwd.j2
      - handlers
        main.yml
      - tasks
        main.yml
      - README.md
      - defaults
        main.yml
      - meta
        main.yml
    - java
      - vars
        .gitkeep
        main.yml
      - files
        webupd8.key.asc
        .gitkeep
      - templates
        .gitkeep
      - handlers
        .gitkeep
      - tasks
        .gitkeep
        oracle.yml
        webupd8.yml
        main.yml
        openjdk.yml
        adoptopenjdk.yml
      - README.md
    - springboot
      - templates
        springboot.service.j2
        springboot.conf.j2
        springboot.rotate.j2
      - handlers
        main.yml
      - tasks
        main.yml
      - defaults
        main.yml
  - production
    - group_vars
      - pgs.yml
      - all.yml
      - webs
        aws_key.yml
        secret.yml
    - inventory
- assemble.sh
- tools
  - idea_settings.jar
- kaif-fe
  - web
    - main.dart
    - less
      - flexbox.less
      - bootstrap-alert.less
      - widgets.less
      - template.less
      - kaif.less
      - comp.less
      - variable.less
      - button.less
      - base.less
      - util.less
      - grid.less
      - bootstrap-label.less
      - kmark.less
  - pubspec.yaml
  - build.yaml
  - lib
    - route
      - route.dart
    - util.dart
    - comp
      - debate
        edit_debate_form.dart
        debate_comp.dart
        debate_list.dart
        debate_form.dart
        debate_tree.dart
      - kmark
        kmark_auto_linker.dart
        edit_kmark_form.dart
      - comp_template.dart
      - short_url.dart
      - server_part_loader.dart
      - article
        article-list.dart
        article_form.dart
      - vote
        votable.dart
      - developer
        developer_client_app.dart
      - zone
        zone_form.dart
      - account
        edit_description_form.dart
        news_feed.dart
        sign_in_form.dart
        account_menu.dart
        account_settings.dart
        sign_up_form.dart
        granted_client_app.dart
        reset_password_form.dart
        forget_password_form.dart
      - oauth
        oauth_authorize_form.dart
    - state
      - dispatch.dart
      - state_machine.dart
      - state.dart
    - util
      - throttler.dart
      - strings.dart
      - server_type.dart
    - model.dart
    - cookies.dart
    - view
      - htmls.dart
      - view.dart
      - widgets.dart
    - intl
      - messages_zh.dart
      - i18n.dart
      - messages_en.dart
      - lookup.dart
    - model
      - dao.dart
      - account.dart
      - session.dart
      - vote.dart
      - service.dart
      - feed.dart
  - build.gradle
  - pubspec.lock
  - .gitignore
- settings.gradle
- .gitignore

package io.kaif.web.v1;

import java.util.Optional;

import org.springframework.core.MethodParameter;
import org.springframework.http.HttpHeaders;
import org.springframework.web.bind.support.WebDataBinderFactory;
import org.springframework.web.context.request.NativeWebRequest;
import org.springframework.web.method.support.HandlerMethodArgumentResolver;
import org.springframework.web.method.support.ModelAndViewContainer;

import com.rometools.utils.Strings;

import io.kaif.model.clientapp.ClientAppUserAccessToken;
import io.kaif.oauth.InsufficientScopeException;
import io.kaif.oauth.InvalidTokenException;
import io.kaif.oauth.MissingBearerTokenException;
import io.kaif.service.ClientAppService;

public class ClientAppUserAccessTokenArgumentResolver implements HandlerMethodArgumentResolver {

  private final ClientAppService clientAppService;

  public ClientAppUserAccessTokenArgumentResolver(ClientAppService clientAppService) {
    this.clientAppService = clientAppService;
  }

  @Override
  public boolean supportsParameter(MethodParameter parameter) {
    return parameter.getParameterType() == ClientAppUserAccessToken.class;
  }

  @Override
  public ClientAppUserAccessToken resolveArgument(MethodParameter parameter,
      ModelAndViewContainer mavContainer,
      NativeWebRequest webRequest,
      WebDataBinderFactory binderFactory) throws Exception {
    String tokenStr = Strings.trimToEmpty(webRequest.getHeader(HttpHeaders.AUTHORIZATION));
    if (!tokenStr.startsWith("Bearer ")) {
      throw new MissingBearerTokenException();
    }
    String token = tokenStr.substring("Bearer ".length(), tokenStr.length()).trim();
    Optional<ClientAppUserAccessToken> accessToken = clientAppService.verifyAccessToken(token);
    if (!accessToken.isPresent()) {
      throw new InvalidTokenException();
    }
    RequiredScope requiredScope = parameter.getMethodAnnotation(RequiredScope.class);
    if (!accessToken.get().containsScope(requiredScope.value())) {
      throw new InsufficientScopeException(requiredScope.value());
    }
    return accessToken.get();
  }
}