public void storeAccessToken(OAuth2AccessToken token, OAuth2Authentication authentication) {
String refreshToken = null;
if (token.getRefreshToken() != null) {
refreshToken = token.getRefreshToken().getValue();
}
// the JdbcTokenStore removes the existing token for this token_id [if it exists]
// We'll avoid doing so for now, unless a compelling reason to do otherwise presents itself
// if (readAccessToken(token.getValue()) != null) {
// removeAccessToken(token.getValue());
// }
Map<String, AttributeValueUpdate> updates = new HashMap<String, AttributeValueUpdate>();
updates.put(
schema.getAccessColumnToken(),
new AttributeValueUpdate(
new AttributeValue().withB(serializeAccessToken(token)), AttributeAction.PUT));
DynamoDBUtils.nullSafeUpdateS(
updates,
schema.getAccessColumnAuthenticationId(),
authenticationKeyGenerator.extractKey(authentication));
if (authentication.isClientOnly()
|| authentication.getName() == null
|| authentication.getName().length() == 0) {
DynamoDBUtils.nullSafeUpdateS(
updates, schema.getAccessColumnUserName(), schema.getAccessNullUserToken());
updates.put(
schema.getAccessColumnIsNullUser(),
new AttributeValueUpdate(
new AttributeValue().withN(schema.getAccessIsNullUserTrueToken()),
AttributeAction.PUT));
} else {
DynamoDBUtils.nullSafeUpdateS(
updates, schema.getAccessColumnUserName(), authentication.getName());
DynamoDBUtils.nullSafeUpdateS(updates, schema.getAccessColumnIsNullUser(), null);
}
DynamoDBUtils.nullSafeUpdateS(
updates, schema.getAccessColumnClientId(), authentication.getOAuth2Request().getClientId());
updates.put(
schema.getAccessColumnAuthentication(),
new AttributeValueUpdate(
new AttributeValue().withB(serializeAuthentication(authentication)),
AttributeAction.PUT));
DynamoDBUtils.nullSafeUpdateS(
updates, schema.getAccessColumnRefreshToken(), extractTokenKey(refreshToken));
dynamoDBTemplate.update(
schema.getAccessTableName(), //
Collections.singletonMap(
schema.getAccessColumnTokenId(),
new AttributeValue(extractTokenKey(token.getValue()))), //
updates);
}
private Collection<OAuth2AccessToken> loadTokensByClientAndUserIndex(
Map<String, Condition> keyCondition, boolean filterOutNullUsers) {
List<OAuth2AccessToken> accessTokens = new ArrayList<OAuth2AccessToken>();
List<String> accessTokenIds = null;
try {
accessTokenIds =
dynamoDBTemplate.query(
schema.getAccessTableName(),
schema.getAccessIndexClientIdAndUserName(),
keyCondition, //
new ObjectExtractor<String>() {
public String extract(Map<String, AttributeValue> values) {
return values.get(schema.getAccessColumnTokenId()).getS();
}
},
schema.getAccessColumnTokenId());
List<Map<String, AttributeValue>> keys =
new ArrayList<Map<String, AttributeValue>>(accessTokenIds.size());
for (String accessTokenId : accessTokenIds) {
keys.add(
Collections.singletonMap(
schema.getAccessColumnTokenId(), new AttributeValue(accessTokenId)));
}
if (filterOutNullUsers) {
accessTokens =
dynamoDBTemplate.batchGet(
schema.getAccessTableName(), //
new KeysAndAttributes()
.withKeys(keys)
.withConsistentRead(true)
.withAttributesToGet(
schema.getAccessColumnTokenId(),
schema.getAccessColumnToken(),
schema.getAccessColumnIsNullUser()), //
new NonNullUserSafeAccessTokenExtractor());
} else {
accessTokens =
dynamoDBTemplate.batchGet(
schema.getAccessTableName(), //
new KeysAndAttributes()
.withKeys(keys)
.withConsistentRead(true)
.withAttributesToGet(
schema.getAccessColumnTokenId(), schema.getAccessColumnToken()), //
new SafeAccessTokenExtractor());
}
} catch (EmptyResultDataAccessException e) {
if (LOG.isInfoEnabled()) {
LOG.info("Failed to find access token for " + keyCondition.toString());
}
}
accessTokens = removeNulls(accessTokens);
return accessTokens;
}
