myndocs
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/config/ConfigurationBuilder.kt‎
Lines changed: 4 additions & 0 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/config/ConfigurationBuilder.kt‎
Lines changed: 4 additions & 0 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterAuthorize.kt‎
Lines changed: 13 additions & 13 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterAuthorize.kt‎
Lines changed: 13 additions & 13 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterDefault.kt‎
Lines changed: 8 additions & 18 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterDefault.kt‎
Lines changed: 8 additions & 18 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterRedirect.kt‎
Lines changed: 2 additions & 2 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterRedirect.kt‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterRefresh.kt‎
Lines changed: 4 additions & 4 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/CallRouterRefresh.kt‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/GrantingCall.kt‎
Lines changed: 2 additions & 0 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/grant/GrantingCall.kt‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/identity/Identity.kt‎
Lines changed: 2 additions & 1 deletion b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/identity/Identity.kt‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/response/AccessTokenResponder.kt‎
Lines changed: 7 additions & 0 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/response/AccessTokenResponder.kt‎
Lines changed: 7 additions & 0 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/response/DefaultAccessTokenResponder.kt‎
Lines changed: 15 additions & 0 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/response/DefaultAccessTokenResponder.kt‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/response/TokenResponse.kt‎
Lines changed: 0 additions & 8 deletions b/‎oauth2-server-core/src/main/java/nl/myndocs/oauth2/response/TokenResponse.kt‎
Lines changed: 0 additions & 8 deletions
@@ -8,6 +8,8 @@ import nl.myndocs.oauth2.identity.IdentityService
 import nl.myndocs.oauth2.identity.TokenInfo
 import nl.myndocs.oauth2.request.CallContext
 import nl.myndocs.oauth2.request.auth.BasicAuthorizer
+import nl.myndocs.oauth2.response.AccessTokenResponder
+import nl.myndocs.oauth2.response.DefaultAccessTokenResponder
 import nl.myndocs.oauth2.token.TokenStore
 import nl.myndocs.oauth2.token.converter.*
 
@@ -53,6 +55,7 @@ object ConfigurationBuilder {
         var accessTokenConverter: AccessTokenConverter = UUIDAccessTokenConverter()
         var refreshTokenConverter: RefreshTokenConverter = UUIDRefreshTokenConverter()
         var codeTokenConverter: CodeTokenConverter = UUIDCodeTokenConverter()
+        var accessTokenResponder: AccessTokenResponder = DefaultAccessTokenResponder
     }
 
     fun build(configurer: Configuration.() -> Unit): nl.myndocs.oauth2.config.Configuration {
@@ -70,6 +73,7 @@ object ConfigurationBuilder {
                         configuration.refreshTokenConverter,
                         configuration.codeTokenConverter
                 )
+                override val accessTokenResponder = configuration.accessTokenResponder
             }
         }
         return nl.myndocs.oauth2.config.Configuration(
 
@@ -5,16 +5,16 @@ import nl.myndocs.oauth2.exception.*
 import nl.myndocs.oauth2.request.AuthorizationCodeRequest
 import nl.myndocs.oauth2.request.ClientCredentialsRequest
 import nl.myndocs.oauth2.request.PasswordGrantRequest
-import nl.myndocs.oauth2.response.TokenResponse
 import nl.myndocs.oauth2.scope.ScopeParser
+import nl.myndocs.oauth2.token.AccessToken
 
 
 /**
  * @throws InvalidIdentityException
  * @throws InvalidClientException
  * @throws InvalidScopeException
  */
-fun GrantingCall.authorize(passwordGrantRequest: PasswordGrantRequest): TokenResponse {
+fun GrantingCall.authorize(passwordGrantRequest: PasswordGrantRequest): AccessToken {
     throwExceptionIfUnverifiedClient(passwordGrantRequest)
 
     if (passwordGrantRequest.username == null) {
@@ -50,22 +50,22 @@ fun GrantingCall.authorize(passwordGrantRequest: PasswordGrantRequest): TokenRes
     validateScopes(requestedClient, requestedIdentity, requestedScopes)
 
     val accessToken = converters.accessTokenConverter.convertToToken(
-            requestedIdentity.username,
+            requestedIdentity,
             requestedClient.clientId,
             requestedScopes,
             converters.refreshTokenConverter.convertToToken(
-                    requestedIdentity.username,
+                    requestedIdentity,
                     requestedClient.clientId,
                     requestedScopes
             )
     )
 
     tokenStore.storeAccessToken(accessToken)
 
-    return accessToken.toTokenResponse()
+    return accessToken
 }
 
-fun GrantingCall.authorize(authorizationCodeRequest: AuthorizationCodeRequest): TokenResponse {
+fun GrantingCall.authorize(authorizationCodeRequest: AuthorizationCodeRequest): AccessToken {
     throwExceptionIfUnverifiedClient(authorizationCodeRequest)
 
     if (authorizationCodeRequest.code == null) {
@@ -85,22 +85,22 @@ fun GrantingCall.authorize(authorizationCodeRequest: AuthorizationCodeRequest):
     }
 
     val accessToken = converters.accessTokenConverter.convertToToken(
-            consumeCodeToken.username,
+            consumeCodeToken.identity,
             consumeCodeToken.clientId,
             consumeCodeToken.scopes,
             converters.refreshTokenConverter.convertToToken(
-                    consumeCodeToken.username,
+                    consumeCodeToken.identity,
                     consumeCodeToken.clientId,
                     consumeCodeToken.scopes
             )
     )
 
     tokenStore.storeAccessToken(accessToken)
 
-    return accessToken.toTokenResponse()
+    return accessToken
 }
 
-fun GrantingCall.authorize(clientCredentialsRequest: ClientCredentialsRequest): TokenResponse {
+fun GrantingCall.authorize(clientCredentialsRequest: ClientCredentialsRequest): AccessToken {
     throwExceptionIfUnverifiedClient(clientCredentialsRequest)
 
     val requestedClient = clientService.clientOf(clientCredentialsRequest.clientId!!) ?: throw InvalidClientException()
@@ -110,17 +110,17 @@ fun GrantingCall.authorize(clientCredentialsRequest: ClientCredentialsRequest):
             ?: requestedClient.clientScopes
 
     val accessToken = converters.accessTokenConverter.convertToToken(
-            username = null,
+            identity = null,
             clientId = clientCredentialsRequest.clientId,
             requestedScopes = scopes,
             refreshToken = converters.refreshTokenConverter.convertToToken(
-                    username = null,
+                    identity = null,
                     clientId = clientCredentialsRequest.clientId,
                     requestedScopes = scopes
             )
     )
 
     tokenStore.storeAccessToken(accessToken)
 
-    return accessToken.toTokenResponse()
+    return accessToken
 }
@@ -9,12 +9,9 @@ import nl.myndocs.oauth2.exception.InvalidScopeException
 import nl.myndocs.oauth2.identity.Identity
 import nl.myndocs.oauth2.identity.TokenInfo
 import nl.myndocs.oauth2.request.*
-import nl.myndocs.oauth2.response.TokenResponse
-import nl.myndocs.oauth2.token.AccessToken
-import nl.myndocs.oauth2.token.toMap
 
 fun GrantingCall.grantPassword() = granter("password") {
-    val tokenResponse = authorize(
+    val accessToken = authorize(
             PasswordGrantRequest(
                     callContext.formParameters["client_id"],
                     callContext.formParameters["client_secret"],
@@ -24,17 +21,17 @@ fun GrantingCall.grantPassword() = granter("password") {
             )
     )
 
-    callContext.respondJson(tokenResponse.toMap())
+    callContext.respondJson(accessTokenResponder.createResponse(accessToken))
 }
 
 fun GrantingCall.grantClientCredentials() = granter("client_credentials") {
-    val tokenResponse = authorize(ClientCredentialsRequest(
+    val accessToken = authorize(ClientCredentialsRequest(
             callContext.formParameters["client_id"],
             callContext.formParameters["client_secret"],
             callContext.formParameters["scope"]
     ))
 
-    callContext.respondJson(tokenResponse.toMap())
+    callContext.respondJson(accessTokenResponder.createResponse(accessToken))
 }
 
 fun GrantingCall.grantRefreshToken() = granter("refresh_token") {
@@ -46,7 +43,7 @@ fun GrantingCall.grantRefreshToken() = granter("refresh_token") {
             )
     )
 
-    callContext.respondJson(accessToken.toMap())
+    callContext.respondJson(accessTokenResponder.createResponse(accessToken))
 }
 
 fun GrantingCall.grantAuthorizationCode() = granter("authorization_code") {
@@ -59,7 +56,7 @@ fun GrantingCall.grantAuthorizationCode() = granter("authorization_code") {
             )
     )
 
-    callContext.respondJson(accessToken.toMap())
+    callContext.respondJson(accessTokenResponder.createResponse(accessToken))
 }
 
 internal val INVALID_REQUEST_FIELD_MESSAGE = "'%s' field is missing"
@@ -86,7 +83,7 @@ fun GrantingCall.validateScopes(
 fun GrantingCall.tokenInfo(accessToken: String): TokenInfo {
     val storedAccessToken = tokenStore.accessToken(accessToken) ?: throw InvalidGrantException()
     val client = clientService.clientOf(storedAccessToken.clientId) ?: throw InvalidClientException()
-    val identity = storedAccessToken.username?.let { identityService.identityOf(client, it) }
+    val identity = storedAccessToken.identity?.let { identityService.identityOf(client, it.username) }
 
     return TokenInfo(
             identity,
@@ -111,11 +108,4 @@ fun GrantingCall.throwExceptionIfUnverifiedClient(clientRequest: ClientRequest)
 
 fun GrantingCall.scopesAllowed(clientScopes: Set<String>, requestedScopes: Set<String>): Boolean {
     return clientScopes.containsAll(requestedScopes)
-}
-
-fun AccessToken.toTokenResponse() = TokenResponse(
-        accessToken,
-        tokenType,
-        expiresIn(),
-        refreshToken?.refreshToken
-)
+}
@@ -63,7 +63,7 @@ fun GrantingCall.redirect(
     validateScopes(clientOf, identityOf, requestedScopes, identityScopeVerifier)
 
     val codeToken = converters.codeTokenConverter.convertToToken(
-            identityOf.username,
+            identityOf,
             clientOf.clientId,
             redirect.redirectUri,
             requestedScopes
@@ -123,7 +123,7 @@ fun GrantingCall.redirect(
     validateScopes(clientOf, identityOf, requestedScopes, identityScopeVerifier)
 
     val accessToken = converters.accessTokenConverter.convertToToken(
-            identityOf.username,
+            identityOf,
             clientOf.clientId,
             requestedScopes,
             null
 
@@ -5,10 +5,10 @@ import nl.myndocs.oauth2.exception.InvalidClientException
 import nl.myndocs.oauth2.exception.InvalidGrantException
 import nl.myndocs.oauth2.exception.InvalidRequestException
 import nl.myndocs.oauth2.request.RefreshTokenRequest
-import nl.myndocs.oauth2.response.TokenResponse
+import nl.myndocs.oauth2.token.AccessToken
 
 
-fun GrantingCall.refresh(refreshTokenRequest: RefreshTokenRequest): TokenResponse {
+fun GrantingCall.refresh(refreshTokenRequest: RefreshTokenRequest): AccessToken {
     throwExceptionIfUnverifiedClient(refreshTokenRequest)
 
     if (refreshTokenRequest.refreshToken == null) {
@@ -29,13 +29,13 @@ fun GrantingCall.refresh(refreshTokenRequest: RefreshTokenRequest): TokenRespons
     }
 
     val accessToken = converters.accessTokenConverter.convertToToken(
-            refreshToken.username,
+            refreshToken.identity,
             refreshToken.clientId,
             refreshToken.scopes,
             converters.refreshTokenConverter.convertToToken(refreshToken)
     )
 
     tokenStore.storeAccessToken(accessToken)
 
-    return accessToken.toTokenResponse()
+    return accessToken
 }
@@ -3,6 +3,7 @@ package nl.myndocs.oauth2.grant
 import nl.myndocs.oauth2.client.ClientService
 import nl.myndocs.oauth2.identity.IdentityService
 import nl.myndocs.oauth2.request.CallContext
+import nl.myndocs.oauth2.response.AccessTokenResponder
 import nl.myndocs.oauth2.token.TokenStore
 import nl.myndocs.oauth2.token.converter.Converters
 
@@ -12,4 +13,5 @@ interface GrantingCall {
     val clientService: ClientService
     val tokenStore: TokenStore
     val converters: Converters
+    val accessTokenResponder: AccessTokenResponder
 }
@@ -1,5 +1,6 @@
 package nl.myndocs.oauth2.identity
 
 data class Identity(
-        val username: String
+        val username: String,
+        val metadata: Map<String, Any> = mapOf()
 )
@@ -0,0 +1,7 @@
+package nl.myndocs.oauth2.response
+
+import nl.myndocs.oauth2.token.AccessToken
+
+interface AccessTokenResponder {
+    fun createResponse(accessToken: AccessToken): Map<String, Any?>
+}
@@ -0,0 +1,15 @@
+package nl.myndocs.oauth2.response
+
+import nl.myndocs.oauth2.token.AccessToken
+
+object DefaultAccessTokenResponder : AccessTokenResponder {
+    override fun createResponse(accessToken: AccessToken): Map<String, Any?> =
+            with(accessToken) {
+                mapOf(
+                        "access_token" to this.accessToken,
+                        "token_type" to this.tokenType,
+                        "expires_in" to this.expiresIn(),
+                        "refresh_token" to this.refreshToken?.refreshToken
+                )
+            }
+}
Original file line number	Diff line number	Diff line change
`@@ -8,6 +8,8 @@ import nl.myndocs.oauth2.identity.IdentityService`
`8`	`8`	`import nl.myndocs.oauth2.identity.TokenInfo`
`9`	`9`	`import nl.myndocs.oauth2.request.CallContext`
`10`	`10`	`import nl.myndocs.oauth2.request.auth.BasicAuthorizer`
	`11`	`+import nl.myndocs.oauth2.response.AccessTokenResponder`
	`12`	`+import nl.myndocs.oauth2.response.DefaultAccessTokenResponder`
`11`	`13`	`import nl.myndocs.oauth2.token.TokenStore`
`12`	`14`	`import nl.myndocs.oauth2.token.converter.*`
`13`	`15`
`@@ -53,6 +55,7 @@ object ConfigurationBuilder {`
`53`	`55`	`var accessTokenConverter: AccessTokenConverter = UUIDAccessTokenConverter()`
`54`	`56`	`var refreshTokenConverter: RefreshTokenConverter = UUIDRefreshTokenConverter()`
`55`	`57`	`var codeTokenConverter: CodeTokenConverter = UUIDCodeTokenConverter()`
	`58`	`+ var accessTokenResponder: AccessTokenResponder = DefaultAccessTokenResponder`
`56`	`59`	`}`
`57`	`60`
`58`	`61`	`fun build(configurer: Configuration.() -> Unit): nl.myndocs.oauth2.config.Configuration {`
`@@ -70,6 +73,7 @@ object ConfigurationBuilder {`
`70`	`73`	`configuration.refreshTokenConverter,`
`71`	`74`	`configuration.codeTokenConverter`
`72`	`75`	`)`
	`76`	`+ override val accessTokenResponder = configuration.accessTokenResponder`
`73`	`77`	`}`
`74`	`78`	`}`
`75`	`79`	`return nl.myndocs.oauth2.config.Configuration(`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,6 @@`
`1`	`1`	`package nl.myndocs.oauth2.identity`
`2`	`2`
`3`	`3`	`data class Identity(`
`4`		`- val username: String`
	`4`	`+ val username: String,`
	`5`	`+ val metadata: Map<String, Any> = mapOf()`
`5`	`6`	`)`