[英]Apache Amber: How to exchange OAuth code for an access token with Bearer Header?
我正在尝试使用Apache Amber接收Stripe Connect的身份验证令牌。 还有就是如何交换的OAuth代码的访问令牌的例子在这里 :
但是,Stripe需要其他“授权:承载”标头:
curl -X POST https://connect.stripe.com/oauth/token \
-H "Authorization: Bearer xxxxxxxxxxxxxx" \
-d code=AUTHORIZATION_CODE \
-d grant_type=authorization_code
我尝试了以下方法:
OAuthAuthzResponse oar = OAuthAuthzResponse.oauthCodeAuthzResponse(request);
String error = oar.getParam("error");
String errorDescription = oar.getParam("error_description");
String code = oar.getCode();
if (null != error && !error.isEmpty()){
System.err.println ("Authentication failed: " + errorDescription);
System.exit(1);
}
OAuthClientRequest exchangeRequest = OAuthClientRequest
.tokenLocation("https://connect.stripe.com/oauth/token")
.setGrantType(GrantType.AUTHORIZATION_CODE)
.setClientId("my-client-id")
.setCode(code)
.buildBodyMessage();
Map<String,String> headers =new HashMap<String, String>();
headers.put("Authorization", "Bearer xxxxxxxxxxxxxx");
exchangeRequest.setHeaders(headers);
//create OAuth client that uses custom http client under the hood
OAuthClient oAuthClient = new OAuthClient(new URLConnectionClient());
GitHubTokenResponse oAuthResponse = oAuthClient.accessToken(exchangeRequest, GitHubTokenResponse.class);
String accessToken = oAuthResponse.getAccessToken();
但它崩溃与:
服务器返回URL的HTTP响应代码:401: https : //connect.stripe.com/oauth/token
关于如何添加承载头的任何想法? 谢谢!
只要我能看到您正在将Bearer Token提前一步,就可以了……您确实仍处于令牌端点阶段 。
可能最简单的方法是摆脱上面代码段中的承载部分,并且一旦获得访问令牌
String accessToken = oAuthResponse.getAccessToken();
使用
GET /resource?access_token=mF_9.B5f-4.1JqM HTTP/1.1
Pinak Shah在这里提供了答案: https : //support.stripe.com/questions/how-can-i-use-the-java-bindings-with-oauth
OAuthClientRequest oAuthRequest = OAuthClientRequest
.tokenLocation(
paymnetInfoMsgs
.getMessage("stripe.website.token.url"))
.setGrantType(GrantType.AUTHORIZATION_CODE)
.setClientId(paymnetInfoMsgs.getMessage("stripe.clientID"))
.setParameter("Authorization",
paymnetInfoMsgs.getMessage("stripe.aouthorization"))
.setCode(code).buildBodyMessage();
Map<String, String> headers = new HashMap<String, String>();
headers.put("Authorization", paymnetInfoMsgs
.getMessage("stripe.aouthorization"));
headers.put("Content-Type", "application/x-www-form-urlencoded");
// create OAuth client that uses custom http client under the hood
URLConnectionClient urlConnectionClient = new URLConnectionClient();
oAuthResponse = urlConnectionClient.execute(oAuthRequest, headers,
"POST", OAuthJSONAccessTokenResponse.class);
谢谢,皮纳克!
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.