Ubuntu Manpage: OAuth::Lite2::Server::DataHandler - Base class that specifies interface for data handler

Provided by: liboauth-lite2-perl_0.11-3_all

NAME

       OAuth::Lite2::Server::DataHandler - Base class that specifies interface for data handler
       for your service.

DESCRIPTION

       This connects OAuth::Lite2 library to your service.

       This specifies an interface to handle data stored in your application. You must inherit
       this and implement the subroutines according to the interface contract.

SYNOPSIS

           package YourDataHandler;

           use strict;
           use warnings;

           use parent 'OAuth::Lite2::Server::DataHandler';

METHODS

   init
       This method can be implemented to initialize your subclass.

INTERFACES

   request
       Returns <Plack::Request> object.

   validate_client( $client_id, $client_secret, $grant_type )
       This method is used by Token Endpoint. This method will be called all the time, regardless
       of the grant_type setting.

       This is the place to check if the client_id and client credentials are valid, as well as
       checking if the client is allowed to use this grant_type.

       If all the checks are successful, return 1. Otherwise return 0.

   get_user_id( $username, $password )
       This method is used by Token Endpoint, when requested grant_type is 'password'.

       The username and password are provided. You should check if the credentials are valid or
       not.

       If the checks are successful, return the user's identifier. The user's identifier is
       managed by your service.

   create_or_update_auth_info( %params )
       Create and save new authorization info.  Should return OAuth::Lite2::Model::AuthInfo
       object.

   create_or_update_access_token( %params )
       Create and save new access token.  Should return OAuth::Lite2::Model::AccessToken object.

   get_auth_info_by_code( $code )
       This method is used when the client obtains an access_token using an authorization-code
       that was issued by server with user's authorization.

       The Web Server Profile requires this interface.

       Should return OAuth::Lite2::Model::AuthInfo object.

   get_auth_info_by_refresh_token( $refresh_token )
       This method is used when the access_token is refreshed.

       Should return OAuth::Lite2::Model::AuthInfo object.

   get_access_token( $token )
       This interface is used on a protected resource endpoint.  See
       Plack::Middleware::Auth::OAuth2::ProtectedResource.

       Returns an access token which allows access to the protected attributes.  Should return
       OAuth::Lite2::Model::AccessToken object.

   get_auth_info_by_id( $auth_id )
       This method is used on a protected resource endpoint.  See
       Plack::Middleware::Auth::OAuth2::ProtectedResource.

       This method is called after the get_access_token method. Returns authorization-info that
       is related to the $auth_id and access-token.

       Should return OAuth::Lite2::Model::AuthInfo object.

   validate_client_by_id( $client_id )
       This hook is called on protected resource endpoint.  See
       Plack::Middleware::Auth::OAuth2::ProtectedResource.

       After checking if the token is valid, you can check if the client related the token is
       valid in this method.

       If the validation of the client_id is successful, return 1. Otherwise return 0.

   validate_user_by_id( $user_id )
       This hook is called on protected resource endpoint.  See
       Plack::Middleware::Auth::OAuth2::ProtectedResource.

       After checking if token is valid, you can check if the user related the token is valid in
       this method.

       If the validation of the user is successful, return 1. Otherwise return 0.

   get_group_id_by_client_id ( $client_id )
       If client_id has group_id, return it.

   validate_grouping_scope ( $client_id, $scope )
       If scope value is allowed, return 1.

   create_server_state ( $client_id )
       Create and save OAuth::Lite2::Model::ServerState object.

   get_user_id_by_external_assertion ( %params )
       This method is used by Token Endpoint, when requested grant_type is 'federation-bearer'.

       The external service assertion is provided. You should check if the related external
       service account is valid or not.  If the checks are successful, return the user's
       identifier. The user's identifier is managed by your service.

AUTHOR

       Ryo Ito, <ritou.06@gmail.com>

       Lyo Kato, <lyo.kato@gmail.com>

COPYRIGHT AND LICENSE

       Copyright (C) 2010 by Lyo Kato

       This library is free software; you can redistribute it and/or modify it under the same
       terms as Perl itself, either Perl version 5.8.8 or, at your option, any later version of
       Perl 5 you may have available.