1 | package oauth.signpost.signature;
|
---|
2 |
|
---|
3 | import oauth.signpost.OAuth;
|
---|
4 | import oauth.signpost.http.HttpParameters;
|
---|
5 | import oauth.signpost.http.HttpRequest;
|
---|
6 |
|
---|
7 | /**
|
---|
8 | * Writes to a URL query string. <strong>Note that this currently ONLY works
|
---|
9 | * when signing a URL directly, not with HTTP request objects.</strong> That's
|
---|
10 | * because most HTTP request implementations do not allow the client to change
|
---|
11 | * the URL once the request has been instantiated, so there is no way to append
|
---|
12 | * parameters to it.
|
---|
13 | *
|
---|
14 | * @author Matthias Kaeppler
|
---|
15 | */
|
---|
16 | public class QueryStringSigningStrategy implements SigningStrategy {
|
---|
17 |
|
---|
18 | private static final long serialVersionUID = 1L;
|
---|
19 |
|
---|
20 | public String writeSignature(String signature, HttpRequest request,
|
---|
21 | HttpParameters requestParameters) {
|
---|
22 |
|
---|
23 | // add the signature
|
---|
24 | StringBuilder sb = new StringBuilder(OAuth.addQueryParameters(request.getRequestUrl(),
|
---|
25 | OAuth.OAUTH_SIGNATURE, signature));
|
---|
26 |
|
---|
27 | // add the optional OAuth parameters
|
---|
28 | if (requestParameters.containsKey(OAuth.OAUTH_TOKEN)) {
|
---|
29 | sb.append("&");
|
---|
30 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_TOKEN));
|
---|
31 | }
|
---|
32 | if (requestParameters.containsKey(OAuth.OAUTH_CALLBACK)) {
|
---|
33 | sb.append("&");
|
---|
34 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_CALLBACK));
|
---|
35 | }
|
---|
36 | if (requestParameters.containsKey(OAuth.OAUTH_VERIFIER)) {
|
---|
37 | sb.append("&");
|
---|
38 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_VERIFIER));
|
---|
39 | }
|
---|
40 |
|
---|
41 | // add the remaining OAuth params
|
---|
42 | sb.append("&");
|
---|
43 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_CONSUMER_KEY));
|
---|
44 | sb.append("&");
|
---|
45 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_VERSION));
|
---|
46 | sb.append("&");
|
---|
47 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_SIGNATURE_METHOD));
|
---|
48 | sb.append("&");
|
---|
49 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_TIMESTAMP));
|
---|
50 | sb.append("&");
|
---|
51 | sb.append(requestParameters.getAsQueryString(OAuth.OAUTH_NONCE));
|
---|
52 |
|
---|
53 | String signedUrl = sb.toString();
|
---|
54 |
|
---|
55 | request.setRequestUrl(signedUrl);
|
---|
56 |
|
---|
57 | return signedUrl;
|
---|
58 | }
|
---|
59 |
|
---|
60 | }
|
---|