├── sample
    ├── .gitignore
    ├── consumer-rules.pro
    ├── src
    │   └── main
    │   │   ├── res
    │   │       ├── values
    │   │       │   ├── strings.xml
    │   │       │   └── themes.xml
    │   │       ├── navigation
    │   │       │   └── nav_graph.xml
    │   │       └── layout
    │   │       │   └── activity_main.xml
    │   │   ├── java
    │   │       └── com
    │   │       │   └── auth0
    │   │       │       └── sample
    │   │       │           └── MainActivity.kt
    │   │   └── AndroidManifest.xml
    ├── proguard-rules.pro
    └── build.gradle
├── auth0
    ├── .gitignore
    ├── src
    │   ├── test
    │   │   ├── resources
    │   │   │   ├── empty_object.json
    │   │   │   ├── robolectric.properties
    │   │   │   ├── invalid.json
    │   │   │   ├── unknown.json
    │   │   │   ├── profile_oauth.json
    │   │   │   ├── org
    │   │   │   │   └── powermock
    │   │   │   │   │   └── extensions
    │   │   │   │   │       └── configuration.properties
    │   │   │   ├── credentials_legacy.json
    │   │   │   ├── identity_auth0.json
    │   │   │   ├── credentials_legacy_expires_at.json
    │   │   │   ├── credentials_openid.json
    │   │   │   ├── profile_basic.json
    │   │   │   ├── rsa_public.pem
    │   │   │   ├── rsa_jwks.json
    │   │   │   ├── credentials_openid_refresh_token.json
    │   │   │   ├── profile.json
    │   │   │   ├── identity_facebook.json
    │   │   │   ├── password_strength_error.json
    │   │   │   ├── rsa_private.pem
    │   │   │   └── profile_full.json
    │   │   ├── java
    │   │   │   ├── org
    │   │   │   │   └── mockito
    │   │   │   │   │   └── configuration
    │   │   │   │   │       └── MockitoConfiguration.java
    │   │   │   └── com
    │   │   │   │   └── auth0
    │   │   │   │       └── android
    │   │   │   │           ├── provider
    │   │   │   │               ├── AlgorithmHelperMock.java
    │   │   │   │               ├── AuthenticationActivityMock.kt
    │   │   │   │               ├── FlagCheckerTest.java
    │   │   │   │               ├── RedirectActivityShadow.java
    │   │   │   │               ├── OAuthManagerTest.java
    │   │   │   │               ├── LogoutManagerTest.java
    │   │   │   │               ├── AuthorizeResultTest.java
    │   │   │   │               └── RedirectActivityTest.java
    │   │   │   │           ├── authentication
    │   │   │   │               ├── storage
    │   │   │   │               │   ├── ClockImplTest.java
    │   │   │   │               │   └── JWTDecoderTest.java
    │   │   │   │               └── request
    │   │   │   │               │   ├── RequestMock.java
    │   │   │   │               │   └── AuthenticationRequestMock.java
    │   │   │   │           ├── util
    │   │   │   │               ├── AttributeMatcher.java
    │   │   │   │               ├── TypeTokenMatcher.java
    │   │   │   │               ├── MockCallback.java
    │   │   │   │               ├── APIMockServer.kt
    │   │   │   │               ├── MockManagementCallback.java
    │   │   │   │               ├── MockAuthenticationCallback.java
    │   │   │   │               ├── CommonThreadSwitcherRule.kt
    │   │   │   │               ├── MockAuthCallback.java
    │   │   │   │               ├── SSLTestUtils.kt
    │   │   │   │               ├── UserIdentityMatcher.java
    │   │   │   │               ├── UserProfileMatcher.java
    │   │   │   │               ├── HttpUrlMatcher.java
    │   │   │   │               ├── AuthCallbackMatcher.java
    │   │   │   │               ├── CallbackMatcher.java
    │   │   │   │               ├── AuthenticationCallbackMatcher.java
    │   │   │   │               ├── ManagementCallbackMatcher.java
    │   │   │   │               └── UsersAPIMockServer.kt
    │   │   │   │           ├── result
    │   │   │   │               ├── DatabaseUserTest.java
    │   │   │   │               ├── CredentialsMock.kt
    │   │   │   │               ├── AuthenticationTest.java
    │   │   │   │               ├── UserIdentityTest.java
    │   │   │   │               └── UserProfileTest.java
    │   │   │   │           ├── management
    │   │   │   │               └── ManagementExceptionTest.kt
    │   │   │   │           └── request
    │   │   │   │               ├── internal
    │   │   │   │                   ├── CredentialsDeserializerMock.kt
    │   │   │   │                   ├── GsonBaseTest.kt
    │   │   │   │                   ├── ThreadSwitcherShadow.java
    │   │   │   │                   ├── JsonRequiredTypeAdapterFactoryTest.java
    │   │   │   │                   ├── CredentialsDeserializerTest.kt
    │   │   │   │                   ├── UserIdentityGsonTest.kt
    │   │   │   │                   └── OptionalCredentialsGsonTest.kt
    │   │   │   │               └── ServerResponseTest.kt
    │   │   └── AndroidManifest.xml
    │   └── main
    │   │   ├── java
    │   │       └── com
    │   │       │   └── auth0
    │   │       │       └── android
    │   │       │           ├── callback
    │   │       │               ├── RunnableTask.kt
    │   │       │               ├── ManagementCallback.kt
    │   │       │               ├── AuthenticationCallback.kt
    │   │       │               ├── BaseCallback.kt
    │   │       │               └── Callback.kt
    │   │       │           ├── request
    │   │       │               ├── internal
    │   │       │               │   ├── JsonRequired.kt
    │   │       │               │   ├── ResponseUtils.java
    │   │       │               │   ├── GsonProvider.kt
    │   │       │               │   ├── OidcUtils.kt
    │   │       │               │   ├── JsonRequiredTypeAdapterFactory.java
    │   │       │               │   ├── GsonAdapter.kt
    │   │       │               │   ├── TLS12SocketFactory.java
    │   │       │               │   ├── CredentialsDeserializer.kt
    │   │       │               │   ├── UserProfileDeserializer.java
    │   │       │               │   ├── RequestFactory.kt
    │   │       │               │   ├── Jwt.kt
    │   │       │               │   └── JwksDeserializer.kt
    │   │       │               ├── RequestOptions.kt
    │   │       │               ├── HttpMethod.kt
    │   │       │               ├── JsonAdapter.kt
    │   │       │               ├── NetworkingClient.kt
    │   │       │               ├── ServerResponse.kt
    │   │       │               ├── ErrorAdapter.kt
    │   │       │               ├── Request.kt
    │   │       │               └── AuthenticationRequest.kt
    │   │       │           ├── NetworkErrorException.kt
    │   │       │           ├── authentication
    │   │       │               ├── storage
    │   │       │               │   ├── CryptoException.kt
    │   │       │               │   ├── JWTDecoder.java
    │   │       │               │   ├── IncompatibleDeviceException.kt
    │   │       │               │   ├── ClockImpl.java
    │   │       │               │   ├── CredentialsManagerException.kt
    │   │       │               │   ├── Storage.kt
    │   │       │               │   └── SharedPreferencesStorage.kt
    │   │       │               └── PasswordlessType.java
    │   │       │           ├── result
    │   │       │               ├── Authentication.kt
    │   │       │               ├── DatabaseUser.kt
    │   │       │               ├── Challenge.kt
    │   │       │               ├── OptionalCredentials.kt
    │   │       │               ├── UserIdentity.kt
    │   │       │               ├── UserProfile.kt
    │   │       │               └── Credentials.kt
    │   │       │           ├── provider
    │   │       │               ├── IdTokenVerificationOptions.kt
    │   │       │               ├── FlagChecker.java
    │   │       │               ├── AuthHandler.kt
    │   │       │               ├── RedirectActivity.kt
    │   │       │               ├── ResumableManager.java
    │   │       │               ├── AuthCallback.kt
    │   │       │               ├── AlgorithmHelper.java
    │   │       │               ├── AsymmetricSignatureVerifier.java
    │   │       │               ├── CallbackHelper.java
    │   │       │               ├── AuthorizeResult.java
    │   │       │               ├── LogoutManager.kt
    │   │       │               └── SignatureVerifier.java
    │   │       │           ├── util
    │   │       │               ├── Clock.kt
    │   │       │               └── Auth0UserAgent.kt
    │   │       │           ├── Auth0Exception.kt
    │   │       │           ├── annotation
    │   │       │               └── ExperimentalAuth0Api.java
    │   │       │           └── management
    │   │       │               └── ManagementException.kt
    │   │   ├── res
    │   │       └── values
    │   │       │   └── strings.xml
    │   │   └── AndroidManifest.xml
    └── proguard-rules.pro
├── .github
    ├── CODEOWNERS
    ├── ISSUE_TEMPLATE
    │   ├── config.yml
    │   ├── Feature Request.yml
    │   └── Bug Report.yml
    ├── workflows
    │   ├── gradle-wrapper-validation.yml
    │   └── semgrep.yml
    ├── stale.yml
    └── PULL_REQUEST_TEMPLATE.md
├── .editorconfig
├── settings.gradle
├── opslevel.yml
├── .shiprc
├── gradle
    └── wrapper
    │   ├── gradle-wrapper.jar
    │   └── gradle-wrapper.properties
├── proguard
    ├── proguard-okio.pro
    └── proguard-gson.pro
├── .gitattributes
├── codecov.yml
├── .circleci
    └── config.yml
├── LICENSE
├── gradle.properties
├── .gitignore
└── gradlew.bat


/sample/.gitignore:
--------------------------------------------------------------------------------
1 | /build


--------------------------------------------------------------------------------
/auth0/.gitignore:
--------------------------------------------------------------------------------
1 | /build
2 | 


--------------------------------------------------------------------------------
/sample/consumer-rules.pro:
--------------------------------------------------------------------------------
1 | 


--------------------------------------------------------------------------------
/.github/CODEOWNERS:
--------------------------------------------------------------------------------
1 | *	@auth0/dx-sdks-engineer
2 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/empty_object.json:
--------------------------------------------------------------------------------
1 | {}


--------------------------------------------------------------------------------
/auth0/src/test/resources/robolectric.properties:
--------------------------------------------------------------------------------
1 | sdk=29


--------------------------------------------------------------------------------
/.editorconfig:
--------------------------------------------------------------------------------
1 | root = true
2 | 
3 | [*]
4 | end_of_line = lf


--------------------------------------------------------------------------------
/auth0/src/test/resources/invalid.json:
--------------------------------------------------------------------------------
1 | "AN INVALID JSON"


--------------------------------------------------------------------------------
/auth0/src/test/resources/unknown.json:
--------------------------------------------------------------------------------
1 | {
2 |   "key": "value",
3 |   "flag": false
4 | }


--------------------------------------------------------------------------------
/settings.gradle:
--------------------------------------------------------------------------------
1 | rootProject.name = 'Auth0.Android'
2 | include 'auth0'
3 | include ':sample'


--------------------------------------------------------------------------------
/opslevel.yml:
--------------------------------------------------------------------------------
1 | ---
2 | version: 1
3 | repository:
4 |   owner: dx_sdks
5 |   tier:
6 |   tags:
7 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/profile_oauth.json:
--------------------------------------------------------------------------------
1 | {
2 |   "sub": "google-oauth2|9883254263433883220"
3 | }


--------------------------------------------------------------------------------
/auth0/src/test/resources/org/powermock/extensions/configuration.properties:
--------------------------------------------------------------------------------
1 | mockito.mock-maker-class=mock-maker-inline


--------------------------------------------------------------------------------
/.shiprc:
--------------------------------------------------------------------------------
1 | {
2 |   "files": {
3 |     "auth0/build.gradle": [],
4 |     "README.md": []
5 |   },
6 |   "prefixVersion": false
7 | }
8 | 


--------------------------------------------------------------------------------
/gradle/wrapper/gradle-wrapper.jar:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/johnfrench3/Android-Auth-Progurd/HEAD/gradle/wrapper/gradle-wrapper.jar


--------------------------------------------------------------------------------
/auth0/src/test/resources/credentials_legacy.json:
--------------------------------------------------------------------------------
1 | {
2 |   "access_token": "s6GS5FGJN2jfd4l6",
3 |   "token_type": "bearer",
4 |   "expires_in": 86000
5 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/callback/RunnableTask.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.callback
2 | 
3 | internal interface RunnableTask<T> {
4 |     fun apply(t: T)
5 | }


--------------------------------------------------------------------------------
/auth0/src/test/resources/identity_auth0.json:
--------------------------------------------------------------------------------
1 | {
2 |   "user_id": "1234567890",
3 |   "provider": "auth0",
4 |   "connection": "Username-Password-Authentication",
5 |   "isSocial": false
6 | }


--------------------------------------------------------------------------------
/proguard/proguard-okio.pro:
--------------------------------------------------------------------------------
1 | # Okio
2 | 
3 | -dontwarn java.nio.file.*
4 | -dontwarn org.codehaus.mojo.animal_sniffer.IgnoreJRERequirement
5 | -dontwarn com.squareup.okhttp.internal.Platform
6 | 


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/config.yml:
--------------------------------------------------------------------------------
1 | blank_issues_enabled: false
2 | contact_links:
3 |   - name: Auth0 Community
4 |     url: https://community.auth0.com
5 |     about: Discuss this SDK in the Auth0 Community forums
6 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/credentials_legacy_expires_at.json:
--------------------------------------------------------------------------------
1 | {
2 |     "access_token": "s6GS5FGJN2jfd4l6",
3 |     "token_type": "bearer",
4 |     "expires_in": 86000,
5 |     "expires_at": "2009-02-15T07:49:06.555Z"
6 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/callback/ManagementCallback.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.callback
2 | 
3 | import com.auth0.android.management.ManagementException
4 | 
5 | public interface ManagementCallback<T> : Callback<T, ManagementException>


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/JsonRequired.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.request.internal
2 | 
3 | @kotlin.annotation.Retention(AnnotationRetention.RUNTIME)
4 | @Target(AnnotationTarget.FIELD)
5 | internal annotation class JsonRequired


--------------------------------------------------------------------------------
/gradle/wrapper/gradle-wrapper.properties:
--------------------------------------------------------------------------------
1 | distributionBase=GRADLE_USER_HOME
2 | distributionPath=wrapper/dists
3 | distributionUrl=https\://services.gradle.org/distributions/gradle-6.7.1-all.zip
4 | zipStoreBase=GRADLE_USER_HOME
5 | zipStorePath=wrapper/dists
6 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/callback/AuthenticationCallback.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.callback
2 | 
3 | import com.auth0.android.authentication.AuthenticationException
4 | 
5 | public interface AuthenticationCallback<T> : Callback<T, AuthenticationException>


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/NetworkErrorException.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android
2 | 
3 | /**
4 |  * Exception that represents a failure caused when attempting to execute a network request
5 |  */
6 | public class NetworkErrorException(cause: Throwable) :
7 |     Auth0Exception("Failed to execute the network request", cause)


--------------------------------------------------------------------------------
/sample/src/main/res/values/strings.xml:
--------------------------------------------------------------------------------
1 | <resources>
2 |     <string name="app_name">Auth0 SDK Sample</string>
3 |     <string name="com_auth0_domain">poovamraj.eu.auth0.com</string>
4 |     <string name="com_auth0_client_id">swarLtLAd0aW55ajPUPzYPXjtB3UtZki</string>
5 |     <string name="com_auth0_scheme">demo</string>
6 | </resources>


--------------------------------------------------------------------------------
/.gitattributes:
--------------------------------------------------------------------------------
1 | # We'll let Git's auto-detection algorithm infer if a file is text. If it is,
2 | # enforce LF line endings regardless of OS or git configurations.
3 | * text=auto eol=lf
4 | 
5 | # Isolate binary files in case the auto-detection algorithm fails and
6 | # marks them as text files (which could brick them).
7 | *.{png,jpg,jpeg,gif,webp,woff,woff2} binary


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/CryptoException.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.authentication.storage
2 | 
3 | /**
4 |  * Exception thrown by the [CryptoUtil] class whenever an operation goes wrong.
5 |  */
6 | public open class CryptoException internal constructor(message: String, cause: Throwable? = null) :
7 |     RuntimeException(message, cause)


--------------------------------------------------------------------------------
/.github/workflows/gradle-wrapper-validation.yml:
--------------------------------------------------------------------------------
 1 | name: "Validate Gradle Wrapper"
 2 | on: [push, pull_request]
 3 | 
 4 | jobs:
 5 |   validation:
 6 |     name: "validation/gradlew"
 7 |     runs-on: ubuntu-latest
 8 |     steps:
 9 |       - uses: actions/checkout@v3
10 |       - uses: gradle/wrapper-validation-action@8d49e559aae34d3e0eb16cde532684bc9702762b # pin@1.0.6
11 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/RequestOptions.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.request
2 | 
3 | /**
4 |  * Holder for the information required to configure a request
5 |  */
6 | public class RequestOptions(public val method: HttpMethod) {
7 |     public val parameters: MutableMap<String, Any> = mutableMapOf()
8 |     public val headers: MutableMap<String, String> = mutableMapOf()
9 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/Authentication.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.result
2 | 
3 | /**
4 |  * The result of a successful authentication against Auth0
5 |  * Contains the logged in user's [Credentials] and [UserProfile].
6 |  *
7 |  * @see [com.auth0.android.authentication.AuthenticationAPIClient.getProfileAfter]
8 |  */
9 | public class Authentication(public val profile: UserProfile, public val credentials: Credentials)


--------------------------------------------------------------------------------
/auth0/src/main/res/values/strings.xml:
--------------------------------------------------------------------------------
1 | <resources>
2 |     <string name="com_auth0_webauth_permission_missing_title">Missing permissions</string>
3 |     <string name="com_auth0_webauth_permission_missing_description">Some permissions required by this provider were not granted. You can try to authenticate again or go to the application\'s permission screen in the phone settings and grant them. The missing permissions are:\n%s</string>
4 | </resources>
5 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/credentials_openid.json:
--------------------------------------------------------------------------------
1 | {
2 |   "id_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJodHRwczovL3NhbXBsZXMuYXV0aDAuY29tLyIsInN1YiI6ImF1dGgwfDUzYjk5NWY4YmNlNjhkOWZjOTAwMDk5YyIsImF1ZCI6Ikk5bWhVcmZrVEdGVldqbEVxWlNUQ0JVRkFCTGJKRkdMMyIsImV4cCI6MTQ2NTEwOTAzMywiaWF0IjoxNDY1MDczMDMzfQ.TdRc-lnVcX0LT7ZySzVysjVcYzAUIRnCPufTO8VV6g8",
3 |   "access_token": "s6GS5FGJN2jfd4l6",
4 |   "token_type": "bearer",
5 |   "expires_in": 86000
6 | }


--------------------------------------------------------------------------------
/sample/src/main/java/com/auth0/sample/MainActivity.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.sample
 2 | 
 3 | import android.os.Bundle
 4 | import androidx.appcompat.app.AppCompatActivity
 5 | 
 6 | class MainActivity : AppCompatActivity() {
 7 | 
 8 |     override fun onCreate(savedInstanceState: Bundle?) {
 9 |         super.onCreate(savedInstanceState)
10 |         setContentView(R.layout.activity_main)
11 |         setSupportActionBar(findViewById(R.id.toolbar))
12 |     }
13 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/JWTDecoder.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage;
 2 | 
 3 | import com.auth0.android.request.internal.Jwt;
 4 | 
 5 | /**
 6 |  * Bridge class for decoding JWTs.
 7 |  * Used to abstract the implementation for testing purposes.
 8 |  */
 9 | class JWTDecoder {
10 | 
11 |     JWTDecoder() {
12 |     }
13 | 
14 |     Jwt decode(String jwt) {
15 |         return new Jwt(jwt);
16 |     }
17 | }
18 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/IncompatibleDeviceException.kt:
--------------------------------------------------------------------------------
1 | package com.auth0.android.authentication.storage
2 | 
3 | /**
4 |  * Exception thrown by the [CryptoUtil] class whenever the Keys are deemed invalid
5 |  * and so the content encrypted with them unrecoverable.
6 |  */
7 | internal class IncompatibleDeviceException(cause: Throwable?) : CryptoException(
8 |     "The device is not compatible with the ${CryptoUtil::class.java.simpleName} class.", cause
9 | )


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/callback/BaseCallback.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.callback
 2 | 
 3 | import com.auth0.android.Auth0Exception
 4 | 
 5 | /**
 6 |  * Legacy interface to handle successful callbacks. Use {@linkplain Callback} instead.
 7 |  */
 8 | @Deprecated(
 9 |     message = "The contract of this interface has been migrated to the Callback interface",
10 |     replaceWith = ReplaceWith("Callback")
11 | )
12 | public interface BaseCallback<T, U : Auth0Exception> : Callback<T, U>


--------------------------------------------------------------------------------
/auth0/src/test/resources/profile_basic.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "picture": "https://secure.gravatar.com/avatar/cfacbe113a96fdfc85134534771d88b4?s=480&r=pg&d=https%3A%2F%2Fssl.gstatic.com%2Fs2%2Fprofiles%2Fimages%2Fsilhouette80.png",
 3 |   "name": "info @ auth0",
 4 |   "nickname": "a0",
 5 |   "user_id": "auth0|1234567890",
 6 |   "identities": [
 7 |     {
 8 |       "user_id": "1234567890",
 9 |       "provider": "auth0",
10 |       "connection": "Username-Password-Authentication"
11 |     }
12 |   ]
13 | }


--------------------------------------------------------------------------------
/sample/src/main/res/values/themes.xml:
--------------------------------------------------------------------------------
 1 | <resources>
 2 | 
 3 |     <style name="Theme.Auth0Android.NoActionBar" parent="Theme.AppCompat.Light.DarkActionBar">
 4 |         <item name="windowActionBar">false</item>
 5 |         <item name="windowNoTitle">true</item>
 6 |     </style>
 7 | 
 8 |     <style name="Theme.Auth0Android.AppBarOverlay" parent="ThemeOverlay.AppCompat.Dark.ActionBar" />
 9 | 
10 |     <style name="Theme.Auth0Android.PopupOverlay" parent="ThemeOverlay.AppCompat.Light" />
11 | </resources>


--------------------------------------------------------------------------------
/auth0/src/test/resources/rsa_public.pem:
--------------------------------------------------------------------------------
1 | -----BEGIN PUBLIC KEY-----
2 | MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGbXWiK3dQTyCbX5xdE4
3 | yCuYp0AF2d15Qq1JSXT/lx8CEcXb9RbDddl8jGDv+spi5qPa8qEHiK7FwV2KpRE9
4 | 83wGPnYsAm9BxLFb4YrLYcDFOIGULuk2FtrPS512Qea1bXASuvYXEpQNpGbnTGVs
5 | WXI9C+yjHztqyL2h8P6mlThPY9E9ue2fCqdgixfTFIF9Dm4SLHbphUS2iw7w1JgT
6 | 69s7of9+I9l5lsJ9cozf1rxrXX4V1u/SotUuNB3Fp8oB4C1fLBEhSlMcUJirz1E8
7 | AziMCxS+VrRPDM+zfvpIJg3JljAh3PJHDiLu902v9w+Iplu1WyoB2aPfitxEhRN0
8 | YwIDAQAB
9 | -----END PUBLIC KEY-----


--------------------------------------------------------------------------------
/auth0/src/test/java/org/mockito/configuration/MockitoConfiguration.java:
--------------------------------------------------------------------------------
 1 | package org.mockito.configuration;
 2 | 
 3 | public class MockitoConfiguration extends DefaultMockitoConfiguration {
 4 | 
 5 |     // Disabling class cache for mockito as suggested in exception message
 6 |     // https://stackoverflow.com/questions/33008255/classcastexception-exception-when-running-robolectric-test-with-power-mock-on-mu
 7 | 
 8 |     @Override
 9 |     public boolean enableClassCache() {
10 |         return false;
11 |     }
12 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/AlgorithmHelperMock.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | public class AlgorithmHelperMock extends AlgorithmHelper {
 6 |     private final String codeVerifier;
 7 | 
 8 |     public AlgorithmHelperMock(@NonNull String codeVerifier) {
 9 |         this.codeVerifier = codeVerifier;
10 |     }
11 | 
12 |     @Override
13 |     public String generateCodeVerifier() {
14 |         return codeVerifier;
15 |     }
16 | }
17 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/IdTokenVerificationOptions.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider
 2 | 
 3 | import com.auth0.android.provider.SignatureVerifier
 4 | import java.util.*
 5 | 
 6 | internal class IdTokenVerificationOptions(
 7 |     val issuer: String,
 8 |     val audience: String,
 9 |     val signatureVerifier: SignatureVerifier?
10 | ) {
11 |     var organization: String? = null
12 |     var nonce: String? = null
13 |     var maxAge: Int? = null
14 |     var clockSkew: Int? = null
15 |     var clock: Date? = null
16 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/ClockImpl.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage;
 2 | 
 3 | import com.auth0.android.util.Clock;
 4 | 
 5 | /**
 6 |  * Default Clock implementation used for verification.
 7 |  *
 8 |  * @see Clock
 9 |  * <p>
10 |  * This class is thread-safe.
11 |  */
12 | final class ClockImpl implements Clock {
13 | 
14 |     ClockImpl() {
15 |     }
16 | 
17 |     @Override
18 |     public long getCurrentTimeMillis() {
19 |         return System.currentTimeMillis();
20 |     }
21 | }
22 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/util/Clock.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util
 2 | 
 3 | /**
 4 |  * The clock used for verification purposes.
 5 |  *
 6 |  * @see com.auth0.android.authentication.storage.SecureCredentialsManager
 7 |  *
 8 |  * @see com.auth0.android.authentication.storage.CredentialsManager
 9 |  */
10 | public interface Clock {
11 |     /**
12 |      * Returns the current time in milliseconds (epoch).
13 |      *
14 |      * @return the current time in milliseconds.
15 |      */
16 |     public fun getCurrentTimeMillis(): Long
17 | }


--------------------------------------------------------------------------------
/.github/workflows/semgrep.yml:
--------------------------------------------------------------------------------
 1 | 
 2 | name: Semgrep
 3 | 
 4 | on:
 5 |   pull_request: {}
 6 | 
 7 |   push:
 8 |     branches: ["master", "main"]
 9 | 
10 |   schedule:
11 |     - cron: '30 0 1,15 * *'
12 | 
13 | jobs:
14 |   semgrep:
15 |     name: Scan
16 |     runs-on: ubuntu-latest
17 |     container:
18 |       image: returntocorp/semgrep
19 |     if: (github.actor != 'dependabot[bot]')
20 |     steps:
21 |       - uses: actions/checkout@v3
22 | 
23 |       - run: semgrep ci
24 |         env:
25 |           SEMGREP_APP_TOKEN: ${{ secrets.SEMGREP_APP_TOKEN }}
26 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/FlagChecker.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | final class FlagChecker {
 4 | 
 5 |     /**
 6 |      * Helper method to check that a given value contains a specific flag.
 7 |      *
 8 |      * @param value       the value to check
 9 |      * @param flagToCheck the required flag
10 |      * @return true if the flag is present in the value, false otherwise.
11 |      */
12 |     static boolean hasFlag(int value, int flagToCheck) {
13 |         return ((value & flagToCheck) == flagToCheck);
14 |     }
15 | }
16 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/rsa_jwks.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "keys": [
 3 |     {
 4 |       "kty": "RSA",
 5 |       "e": "AQAB",
 6 |       "use": "sig",
 7 |       "kid": "key123",
 8 |       "alg": "RS256",
 9 |       "n": "uGbXWiK3dQTyCbX5xdE4yCuYp0AF2d15Qq1JSXT_lx8CEcXb9RbDddl8jGDv-spi5qPa8qEHiK7FwV2KpRE983wGPnYsAm9BxLFb4YrLYcDFOIGULuk2FtrPS512Qea1bXASuvYXEpQNpGbnTGVsWXI9C-yjHztqyL2h8P6mlThPY9E9ue2fCqdgixfTFIF9Dm4SLHbphUS2iw7w1JgT69s7of9-I9l5lsJ9cozf1rxrXX4V1u_SotUuNB3Fp8oB4C1fLBEhSlMcUJirz1E8AziMCxS-VrRPDM-zfvpIJg3JljAh3PJHDiLu902v9w-Iplu1WyoB2aPfitxEhRN0Yw"
10 |     }
11 |   ]
12 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/authentication/storage/ClockImplTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage;
 2 | 
 3 | import org.junit.Test;
 4 | 
 5 | import static org.hamcrest.CoreMatchers.is;
 6 | import static org.hamcrest.MatcherAssert.assertThat;
 7 | import static org.hamcrest.Matchers.closeTo;
 8 | 
 9 | public class ClockImplTest {
10 | 
11 |     @Test
12 |     public void shouldGetCurrentTime() {
13 |         double time = new ClockImpl().getCurrentTimeMillis();
14 |         assertThat(time, is(closeTo(System.currentTimeMillis(), 1)));
15 |     }
16 | }


--------------------------------------------------------------------------------
/auth0/src/test/resources/credentials_openid_refresh_token.json:
--------------------------------------------------------------------------------
1 | {
2 |     "refresh_token": "qOsimOhQ2wLoSeymtGeQ4Vumx04t9IbrfaywOVYFVvxZt",
3 |     "id_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJpc3MiOiJodHRwczovL3NhbXBsZXMuYXV0aDAuY29tLyIsInN1YiI6ImF1dGgwfDUzYjk5NWY4YmNlNjhkOWZjOTAwMDk5YyIsImF1ZCI6Ikk5bWhVcmZrVEdGVldqbEVxWlNUQ0JVRkFCTGJKRkdMMyIsImV4cCI6MTQ2NTEwOTAzMywiaWF0IjoxNDY1MDczMDMzfQ.TdRc-lnVcX0LT7ZySzVysjVcYzAUIRnCPufTO8VV6g8",
4 |     "access_token": "s6GS5FGJN2jfd4l6",
5 |     "token_type": "bearer",
6 |     "expires_in": 86000,
7 |     "scope": "openid profile"
8 | }


--------------------------------------------------------------------------------
/sample/src/main/res/navigation/nav_graph.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <navigation xmlns:android="http://schemas.android.com/apk/res/android"
 3 |     xmlns:app="http://schemas.android.com/apk/res-auto"
 4 |     xmlns:tools="http://schemas.android.com/tools"
 5 |     android:id="@+id/nav_graph"
 6 |     app:startDestination="@id/DatabaseLoginFragment">
 7 | 
 8 |     <fragment
 9 |         android:id="@+id/DatabaseLoginFragment"
10 |         android:name="com.auth0.sample.DatabaseLoginFragment"
11 |         tools:layout="@layout/fragment_database_login"/>
12 | </navigation>


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/ResponseUtils.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal;
 2 | 
 3 | import java.io.Closeable;
 4 | import java.io.IOException;
 5 | 
 6 | class ResponseUtils {
 7 | 
 8 |     /**
 9 |      * Attempts to close a stream. No exception will be thrown if an IOException was raised.
10 |      *
11 |      * @param closeable the stream to close
12 |      */
13 |     static void closeStream(Closeable closeable) {
14 |         try {
15 |             closeable.close();
16 |         } catch (IOException ignored) {
17 |         }
18 |     }
19 | }
20 | 


--------------------------------------------------------------------------------
/codecov.yml:
--------------------------------------------------------------------------------
 1 | coverage:
 2 |   precision: 2
 3 |   round: down
 4 |   range: "70...100"
 5 |   ignore:
 6 |     - "auth0/src/main/java/com/auth0/android/authentication/storage/CryptoUtil.java"
 7 |   status:
 8 |     project:
 9 |       default:
10 |         enabled: true
11 |         target: auto
12 |         threshold: 1%
13 |         if_no_uploads: error
14 |     patch:
15 |       default:
16 |         enabled: true
17 |         target: 80%
18 |         threshold: 30%
19 |         if_no_uploads: error
20 |     changes:
21 |       default:
22 |         enabled: true
23 |         if_no_uploads: error
24 | comment: false


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/HttpMethod.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | /**
 4 |  * Holder for the supported HTTP Methods that this library could use.
 5 |  */
 6 | public sealed class HttpMethod {
 7 | 
 8 |     public object GET : HttpMethod()
 9 |     public object POST : HttpMethod()
10 |     public object PATCH : HttpMethod()
11 |     public object DELETE : HttpMethod()
12 | 
13 |     override fun toString(): String {
14 |         return when (this) {
15 |             GET -> "GET"
16 |             POST -> "POST"
17 |             PATCH -> "PATCH"
18 |             DELETE -> "DELETE"
19 |         }
20 |     }
21 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/callback/Callback.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.callback
 2 | 
 3 | import com.auth0.android.Auth0Exception
 4 | 
 5 | /**
 6 |  * Interface for all callbacks used with Auth0 API clients
 7 |  */
 8 | public interface Callback<T, U : Auth0Exception> {
 9 | 
10 |     /**
11 |      * Method called on success with the result.
12 |      *
13 |      * @param result Request result
14 |      */
15 |     public fun onSuccess(result: T)
16 | 
17 |     /**
18 |      * Method called on Auth0 API request failure
19 |      *
20 |      * @param error The reason of the failure
21 |      */
22 |     public fun onFailure(error: U)
23 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/AuthHandler.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider
 2 | 
 3 | @Suppress("unused")
 4 | public interface AuthHandler {
 5 |     /**
 6 |      * Tries to supply an AuthProvider for a given strategy and connection name. If it can't provide one it will return null.
 7 |      *
 8 |      * @param strategy   name of the strategy to provide an Auth handler for
 9 |      * @param connection name of the connection to provide an Auth handler for
10 |      * @return an AuthProvider to handle the authentication or null.
11 |      */
12 |     public fun providerFor(strategy: String?, connection: String): AuthProvider?
13 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/DatabaseUser.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import com.auth0.android.request.internal.JsonRequired
 4 | import com.google.gson.annotations.SerializedName
 5 | 
 6 | /**
 7 |  * Auth0 user created in a Database connection.
 8 |  *
 9 |  * @see [com.auth0.android.authentication.AuthenticationAPIClient.signUp]
10 |  */
11 | public class DatabaseUser(
12 |     @field:JsonRequired @field:SerializedName("email") public val email: String,
13 |     @field:SerializedName(
14 |         "username"
15 |     ) public val username: String?,
16 |     @field:SerializedName("email_verified") public val isEmailVerified: Boolean
17 | )


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/Auth0Exception.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android
 2 | 
 3 | /**
 4 |  * Base Exception for any error found during a request to Auth0's API
 5 |  */
 6 | public open class Auth0Exception(message: String, cause: Throwable? = null) :
 7 |     RuntimeException(message, cause) {
 8 | 
 9 |     public companion object {
10 |         public const val UNKNOWN_ERROR: String = "a0.sdk.internal_error.unknown"
11 |         public const val NON_JSON_ERROR: String = "a0.sdk.internal_error.plain"
12 |         public const val EMPTY_BODY_ERROR: String = "a0.sdk.internal_error.empty"
13 |         public const val EMPTY_RESPONSE_BODY_DESCRIPTION: String = "Empty response body"
14 |     }
15 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/JsonAdapter.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import java.io.IOException
 4 | import java.io.Reader
 5 | 
 6 | /**
 7 |  * Adapter that converts a JSON input into the <T> class that represents a result.
 8 |  */
 9 | public interface JsonAdapter<T> {
10 | 
11 |     /**
12 |      * Converts the JSON input given in the Reader to the <T> instance.
13 |      * @param reader the reader that contains the JSON encoded string.
14 |      * @throws IOException could be thrown to signal that the input was invalid.
15 |      * @return the parsed <T> result
16 |      */
17 |     @Throws(IOException::class)
18 |     public fun fromJson(reader: Reader): T
19 | 
20 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/Challenge.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import com.auth0.android.request.internal.JsonRequired
 4 | import com.google.gson.annotations.SerializedName
 5 | 
 6 | /**
 7 |  * Multi-factor authentication (MFA) challenge
 8 |  *
 9 |  * @see [com.auth0.android.authentication.AuthenticationAPIClient.multifactorChallenge]
10 |  */
11 | public class Challenge(
12 |     @field:JsonRequired @field:SerializedName("challenge_type")
13 |     public val challengeType: String,
14 | 
15 |     @field:SerializedName("oob_code")
16 |     public val oobCode: String?,
17 | 
18 |     @field:SerializedName("binding_method")
19 |     public val bindingMethod: String?
20 | )


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/RedirectActivity.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider
 2 | 
 3 | import android.app.Activity
 4 | import android.content.Intent
 5 | import android.os.Bundle
 6 | 
 7 | public class RedirectActivity : Activity() {
 8 |     public override fun onCreate(savedInstanceBundle: Bundle?) {
 9 |         super.onCreate(savedInstanceBundle)
10 |         val intent = Intent(this, AuthenticationActivity::class.java)
11 |         intent.addFlags(Intent.FLAG_ACTIVITY_CLEAR_TOP or Intent.FLAG_ACTIVITY_SINGLE_TOP)
12 |         if (getIntent() != null) {
13 |             intent.data = getIntent().data
14 |         }
15 |         startActivity(intent)
16 |         finish()
17 |     }
18 | }


--------------------------------------------------------------------------------
/proguard/proguard-gson.pro:
--------------------------------------------------------------------------------
 1 | # Gson
 2 | 
 3 | -keepattributes Signature
 4 | -keepattributes *Annotation*
 5 | 
 6 | -dontwarn com.google.gson.internal.UnsafeAllocator
 7 | 
 8 | #R8
 9 | # - See https://r8.googlesource.com/r8/+/refs/heads/master/compatibility-faq.md
10 | # - See https://medium.com/@harryaung/mysterious-null-crash-with-gson-serializedname-fields-when-r8-proguard-is-on-f8a4bd036e34
11 | -if class *
12 | -keepclasseswithmembers class <1> {
13 |   <init>(...);
14 |   @com.google.gson.annotations.SerializedName <fields>;
15 | }
16 | -keep,allowobfuscation @interface com.google.gson.annotations.SerializedName
17 | -keep class com.google.gson.reflect.TypeToken { *; }
18 | -keep class * extends com.google.gson.reflect.TypeToken


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/PasswordlessType.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | /**
 6 |  * Valid types of passwordless flows in Auth0
 7 |  */
 8 | public enum PasswordlessType {
 9 |     /**
10 |      * Sends a link used to login
11 |      */
12 |     WEB_LINK,
13 |     ANDROID_LINK,
14 |     CODE;
15 | 
16 |     @NonNull
17 |     public String getValue() {
18 |         switch (this) {
19 |             default:
20 |             case CODE:
21 |                 return "code";
22 |             case WEB_LINK:
23 |                 return "link";
24 |             case ANDROID_LINK:
25 |                 return "link_android";
26 |         }
27 |     }
28 | }
29 | 


--------------------------------------------------------------------------------
/auth0/proguard-rules.pro:
--------------------------------------------------------------------------------
 1 | # Add project specific ProGuard rules here.
 2 | # By default, the flags in this file are appended to flags specified
 3 | # in /usr/local/opt/android-sdk/tools/proguard/proguard-android.txt
 4 | # You can edit the include path and order by changing the proguardFiles
 5 | # directive in build.gradle.
 6 | #
 7 | # For more details, see
 8 | #   http://developer.android.com/guide/developing/tools/proguard.html
 9 | 
10 | # Add any project specific keep options here:
11 | 
12 | # If your project uses WebView with JS, uncomment the following
13 | # and specify the fully qualified class name to the JavaScript interface
14 | # class:
15 | #-keepclassmembers class fqcn.of.javascript.interface.for.webview {
16 | #   public *;
17 | #}
18 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/AttributeMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import org.hamcrest.Description;
 4 | import org.hamcrest.Matcher;
 5 | import org.hamcrest.TypeSafeDiagnosingMatcher;
 6 | 
 7 | abstract class AttributeMatcher<T> extends TypeSafeDiagnosingMatcher<T> {
 8 |     <E> boolean performMatch(Matcher<E> matcher, E value, Description description, String attributeName) {
 9 |         boolean matches = matcher.matches(value);
10 |         if (!matches) {
11 |             description.appendText(attributeName).appendText(" ");
12 |             matcher.describeMismatch(value, description);
13 |             description.appendText(" and not expected: ").appendDescriptionOf(matcher);
14 |         }
15 |         return matches;
16 |     }
17 | }
18 | 


--------------------------------------------------------------------------------
/.circleci/config.yml:
--------------------------------------------------------------------------------
 1 | version: 2.1
 2 | 
 3 | orbs:
 4 |   codecov: codecov/codecov@3
 5 |   
 6 | jobs:
 7 |   build:
 8 |     environment:
 9 |       GRADLE_OPTS: -Dkotlin.compiler.execution.strategy=in-process
10 |     docker:
11 |       - image: cimg/android:2022.03.1
12 | 
13 |     steps:
14 |       - checkout
15 | 
16 |       - run:
17 |           name: Run checks
18 |           command: ./gradlew clean test jacocoTestReport lint --continue --console=plain --max-workers=1 --no-daemon
19 | 
20 |       - store_artifacts:
21 |           path: auth0/build/reports
22 |           destination: reports
23 | 
24 |       - store_test_results:
25 |           path: auth0/build/test-results
26 | 
27 |       - codecov/upload
28 | 
29 | workflows:
30 |   build-and-test:
31 |     jobs:
32 |       - build
33 | 


--------------------------------------------------------------------------------
/sample/src/main/AndroidManifest.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <manifest xmlns:android="http://schemas.android.com/apk/res/android"
 3 |     package="com.auth0.sample">
 4 | 
 5 |     <uses-permission android:name="android.permission.INTERNET" />
 6 | 
 7 |     <application
 8 |         android:label="@string/app_name"
 9 |         android:theme="@style/Theme.Auth0Android.NoActionBar"
10 |         android:allowBackup="false">
11 |         <activity android:name=".MainActivity" android:exported="true">
12 |             <intent-filter>
13 |                 <action android:name="android.intent.action.MAIN" />
14 |                 <category android:name="android.intent.category.LAUNCHER" />
15 |             </intent-filter>
16 |         </activity>
17 |     </application>
18 | 
19 | </manifest>


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/AuthenticationActivityMock.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider
 2 | 
 3 | import android.content.Context
 4 | import android.content.Intent
 5 | 
 6 | public class AuthenticationActivityMock : AuthenticationActivity() {
 7 |     internal var customTabsController: CustomTabsController? = null
 8 |     public var deliveredIntent: Intent? = null
 9 |         private set
10 | 
11 |     override fun createCustomTabsController(
12 |         context: Context,
13 |         options: CustomTabsOptions
14 |     ): CustomTabsController {
15 |         return customTabsController!!
16 |     }
17 | 
18 |     override fun deliverAuthenticationResult(result: Intent?) {
19 |         deliveredIntent = result
20 |         super.deliverAuthenticationResult(result)
21 |     }
22 | }


--------------------------------------------------------------------------------
/auth0/src/test/resources/profile.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "email": "info@auth0.com",
 3 |   "picture": "https://secure.gravatar.com/avatar/cfacbe113a96fdfc85134534771d88b4?s=480&r=pg&d=https%3A%2F%2Fssl.gstatic.com%2Fs2%2Fprofiles%2Fimages%2Fsilhouette80.png",
 4 |   "name": "info @ auth0",
 5 |   "nickname": "a0",
 6 |   "username": "auth0",
 7 |   "email_verified": true,
 8 |   "clientID": "lEqU5MhUrbyQHSVWjZSTCBUFABLbJAS3",
 9 |   "user_id": "auth0|1234567890",
10 |   "identities": [
11 |     {
12 |       "user_id": "1234567890",
13 |       "provider": "auth0",
14 |       "connection": "Username-Password-Authentication",
15 |       "isSocial": false
16 |     }
17 |   ],
18 |   "created_at": "2014-07-06T18:33:49.005Z",
19 |   "updated_at": "2016-06-04T20:43:53.486Z",
20 |   "global_client_id": "QaXhznFbjTaQbU5"
21 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/OptionalCredentials.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import com.google.gson.annotations.SerializedName
 4 | import java.util.*
 5 | 
 6 | 
 7 | /**
 8 |  * Internal class used as a bridge to handle the migration
 9 |  * from v1 Credentials to v2 Credentials, where some properties
10 |  * could previously be null and are no longer null.
11 |  */
12 | internal data class OptionalCredentials(
13 |     @field:SerializedName("id_token") val idToken: String?,
14 |     @field:SerializedName("access_token") val accessToken: String?,
15 |     @field:SerializedName("token_type") val type: String?,
16 |     @field:SerializedName("refresh_token") val refreshToken: String?,
17 |     @field:SerializedName("expires_at") val expiresAt: Date?,
18 |     @field:SerializedName("scope") val scope: String?
19 | )


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/FlagCheckerTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import org.junit.Test;
 4 | 
 5 | import static org.junit.Assert.assertFalse;
 6 | import static org.junit.Assert.assertTrue;
 7 | 
 8 | public class FlagCheckerTest {
 9 | 
10 |     private static final int FLAG_A = 1 << 1;
11 |     private static final int FLAG_B = 1 << 2;
12 | 
13 |     @Test
14 |     public void shouldHaveFlags() {
15 |         int value = FLAG_A | FLAG_B;
16 |         assertTrue(FlagChecker.hasFlag(value, FLAG_A));
17 |         assertTrue(FlagChecker.hasFlag(value, FLAG_B));
18 |     }
19 | 
20 |     @Test
21 |     public void shouldNotHaveFlags() {
22 |         int value = 0;
23 |         assertFalse(FlagChecker.hasFlag(value, FLAG_A));
24 |         assertFalse(FlagChecker.hasFlag(value, FLAG_B));
25 |     }
26 | 
27 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/RedirectActivityShadow.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.content.Intent;
 4 | 
 5 | import org.robolectric.annotation.Implementation;
 6 | import org.robolectric.annotation.Implements;
 7 | import org.robolectric.shadows.ShadowActivity;
 8 | 
 9 | /**
10 |  * Shadow that keeps track of the started activity and the finished state.
11 |  */
12 | @Implements(RedirectActivity.class)
13 | public class RedirectActivityShadow extends ShadowActivity {
14 | 
15 |     public Intent startedIntent = null;
16 |     public boolean isFinishing = false;
17 | 
18 |     @Implementation
19 |     public void startActivity(Intent intent) {
20 |         startedIntent = intent;
21 |     }
22 | 
23 |     @Implementation
24 |     public void finish() {
25 |         isFinishing = true;
26 |     }
27 | 
28 | }


--------------------------------------------------------------------------------
/sample/proguard-rules.pro:
--------------------------------------------------------------------------------
 1 | # Add project specific ProGuard rules here.
 2 | # You can control the set of applied configuration files using the
 3 | # proguardFiles setting in build.gradle.
 4 | #
 5 | # For more details, see
 6 | #   http://developer.android.com/guide/developing/tools/proguard.html
 7 | 
 8 | # If your project uses WebView with JS, uncomment the following
 9 | # and specify the fully qualified class name to the JavaScript interface
10 | # class:
11 | #-keepclassmembers class fqcn.of.javascript.interface.for.webview {
12 | #   public *;
13 | #}
14 | 
15 | # Uncomment this to preserve the line number information for
16 | # debugging stack traces.
17 | #-keepattributes SourceFile,LineNumberTable
18 | 
19 | # If you keep the line number information, uncomment this to
20 | # hide the original source file name.
21 | #-renamesourcefileattribute SourceFile


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/result/DatabaseUserTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | 
 6 | import static org.hamcrest.MatcherAssert.assertThat;
 7 | import static org.hamcrest.core.Is.is;
 8 | 
 9 | public class DatabaseUserTest {
10 | 
11 |     private DatabaseUser databaseUser;
12 | 
13 |     @Before
14 |     public void setUp() {
15 |         databaseUser = new DatabaseUser("email", "username", true);
16 |     }
17 | 
18 |     @Test
19 |     public void getEmail() {
20 |         assertThat(databaseUser.getEmail(), is("email"));
21 |     }
22 | 
23 |     @Test
24 |     public void getUsername() {
25 |         assertThat(databaseUser.getUsername(), is("username"));
26 |     }
27 | 
28 |     @Test
29 |     public void isEmailVerified() {
30 |         assertThat(databaseUser.isEmailVerified(), is(true));
31 |     }
32 | 
33 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/management/ManagementExceptionTest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.management
 2 | 
 3 | import com.auth0.android.NetworkErrorException
 4 | import org.hamcrest.CoreMatchers
 5 | import org.hamcrest.MatcherAssert
 6 | import org.junit.Test
 7 | import java.io.IOException
 8 | 
 9 | public class ManagementExceptionTest {
10 |     @Test
11 |     public fun shouldNotHaveNetworkError() {
12 |         val ex = ManagementException("Something else happened")
13 |         MatcherAssert.assertThat(ex.isNetworkError, CoreMatchers.`is`(false))
14 |     }
15 | 
16 |     @Test
17 |     public fun shouldHaveNetworkError() {
18 |         val ex = ManagementException(
19 |             "Request has definitely failed", NetworkErrorException(
20 |                 IOException()
21 |             )
22 |         )
23 |         MatcherAssert.assertThat(ex.isNetworkError, CoreMatchers.`is`(true))
24 |     }
25 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/ResumableManager.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | import com.auth0.android.Auth0Exception;
 6 | import com.auth0.android.authentication.AuthenticationException;
 7 | 
 8 | /**
 9 |  * Internal class, used to generify the handling of different Web Auth flows.
10 |  * See {@link WebAuthProvider}
11 |  */
12 | abstract class ResumableManager {
13 | 
14 |     /**
15 |      * Invoked when a result of a Web Auth flow is available
16 |      *
17 |      * @param result a result created from an {@link android.content.Intent}.
18 |      * @return whether the result was expected and valid or not. Error or cancel scenarios are also considered valid.
19 |      * @see AuthorizeResult
20 |      */
21 |     abstract boolean resume(AuthorizeResult result);
22 | 
23 |     abstract void failure(@NonNull AuthenticationException exception);
24 | }
25 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/CredentialsDeserializerMock.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import com.auth0.android.result.Credentials
 4 | import com.auth0.android.result.CredentialsMock
 5 | import java.util.*
 6 | 
 7 | internal class CredentialsDeserializerMock : CredentialsDeserializer() {
 8 |     override fun createCredentials(
 9 |         idToken: String,
10 |         accessToken: String,
11 |         type: String,
12 |         refreshToken: String?,
13 |         expiresAt: Date,
14 |         scope: String?,
15 |         recoveryCode: String?
16 |     ): Credentials {
17 |         val credentials =
18 |             CredentialsMock(idToken, accessToken, type, refreshToken, expiresAt, scope)
19 |         credentials.recoveryCode = recoveryCode
20 |         return credentials
21 |     }
22 | 
23 |     override val currentTimeInMillis: Long
24 |         get() = CredentialsMock.CURRENT_TIME_MS
25 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/TypeTokenMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import com.google.gson.reflect.TypeToken;
 4 | 
 5 | import org.hamcrest.BaseMatcher;
 6 | import org.hamcrest.Description;
 7 | 
 8 | public class TypeTokenMatcher<T> extends BaseMatcher<T> {
 9 |     private final TypeToken<T> typeToken;
10 | 
11 |     private TypeTokenMatcher(TypeToken<T> typeToken) {
12 |         this.typeToken = typeToken;
13 |     }
14 | 
15 |     public static <T> TypeTokenMatcher<T> isA(TypeToken<T> typeToken) {
16 |         return new TypeTokenMatcher<>(typeToken);
17 |     }
18 | 
19 |     @Override
20 |     public void describeTo(Description description) {
21 |         description.appendText("isA(" + typeToken.toString() + ")");
22 |     }
23 | 
24 |     @Override
25 |     public boolean matches(Object item) {
26 |         return item != null && typeToken.getRawType().isAssignableFrom(item.getClass());
27 |     }
28 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/annotation/ExperimentalAuth0Api.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.annotation;
 2 | 
 3 | import static java.lang.annotation.ElementType.CONSTRUCTOR;
 4 | import static java.lang.annotation.ElementType.FIELD;
 5 | import static java.lang.annotation.ElementType.METHOD;
 6 | import static java.lang.annotation.ElementType.PACKAGE;
 7 | import static java.lang.annotation.ElementType.TYPE;
 8 | import static java.lang.annotation.RetentionPolicy.CLASS;
 9 | 
10 | import androidx.annotation.RequiresOptIn;
11 | 
12 | import java.lang.annotation.Retention;
13 | import java.lang.annotation.Target;
14 | 
15 | /**
16 |  * The APIs marked with this annotation are considered experimental
17 |  * The API surface or design could change in future
18 |  */
19 | @Retention(CLASS)
20 | @Target({TYPE, METHOD, CONSTRUCTOR, FIELD, PACKAGE})
21 | @RequiresOptIn(level = RequiresOptIn.Level.WARNING)
22 | public @interface ExperimentalAuth0Api {}
23 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/NetworkingClient.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import java.io.IOException
 4 | 
 5 | /**
 6 |  * Client used internally by this library to execute network requests.
 7 |  * This is the main extensibility point for customizing the Networking Stack.
 8 |  */
 9 | public interface NetworkingClient {
10 | 
11 |     /**
12 |      * Builds a network request to the given URL using the provided options, and returns the result
13 |      * wrapped in a ServerResponse object.
14 |      * @param url the destination URL to make the request to.
15 |      * @param options the additional options required to construct the request.
16 |      * @return a ServerResponse object wrapping the received result.
17 |      * @throws IOException if anything happened while constructing or executing the request.
18 |      */
19 |     @Throws(IOException::class)
20 |     public fun load(url: String, options: RequestOptions): ServerResponse
21 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/result/CredentialsMock.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import java.util.*
 4 | 
 5 | public class CredentialsMock(
 6 |     idToken: String,
 7 |     accessToken: String,
 8 |     type: String,
 9 |     refreshToken: String?,
10 |     expiresAt: Date,
11 |     scope: String?
12 | ) : Credentials(idToken, accessToken, type, refreshToken, expiresAt, scope) {
13 | 
14 |     override val currentTimeInMillis: Long
15 |         get() = CURRENT_TIME_MS
16 | 
17 |     public companion object {
18 |         @JvmField
19 |         public val CURRENT_TIME_MS: Long = calculateCurrentTime()
20 | 
21 |         @JvmField
22 |         public val ONE_HOUR_AHEAD_MS: Long = CURRENT_TIME_MS + 60 * 60 * 1000
23 | 
24 |         private fun calculateCurrentTime(): Long {
25 |             val cal = Calendar.getInstance()
26 |             cal.timeZone = TimeZone.getTimeZone("UTC")
27 |             return cal.timeInMillis
28 |         }
29 |     }
30 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/OAuthManagerTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import com.auth0.android.authentication.AuthenticationException;
 4 | 
 5 | import org.junit.Assert;
 6 | import org.junit.Test;
 7 | import org.junit.runner.RunWith;
 8 | import org.robolectric.RobolectricTestRunner;
 9 | 
10 | 
11 | @RunWith(RobolectricTestRunner.class)
12 | public class OAuthManagerTest {
13 | 
14 |     @Test
15 |     public void shouldHaveValidState() {
16 |         OAuthManager.assertValidState("1234567890", "1234567890");
17 |     }
18 | 
19 |     @Test
20 |     public void shouldHaveInvalidState() {
21 |         Assert.assertThrows(AuthenticationException.class, () -> OAuthManager.assertValidState("0987654321", "1234567890"));
22 |     }
23 | 
24 |     @Test
25 |     public void shouldHaveInvalidStateWhenOneIsNull() {
26 |         Assert.assertThrows(AuthenticationException.class, () -> OAuthManager.assertValidState("0987654321", null));
27 |     }
28 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/MockCallback.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | import com.auth0.android.Auth0Exception;
 6 | import com.auth0.android.callback.Callback;
 7 | 
 8 | import java.util.concurrent.Callable;
 9 | 
10 | public class MockCallback<T, U extends Auth0Exception> implements Callback<T, U> {
11 | 
12 |     private T payload;
13 |     private U error;
14 | 
15 |     @Override
16 |     public void onSuccess(@NonNull T result) {
17 |         this.payload = result;
18 |     }
19 | 
20 |     @Override
21 |     public void onFailure(@NonNull U error) {
22 |         this.error = error;
23 |     }
24 | 
25 |     public Callable<T> payload() {
26 |         return () -> payload;
27 |     }
28 | 
29 |     public Callable<U> error() {
30 |         return () -> error;
31 |     }
32 | 
33 |     public T getPayload() {
34 |         return payload;
35 |     }
36 | 
37 |     public U getError() {
38 |         return error;
39 |     }
40 | }
41 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/result/AuthenticationTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | import org.mockito.Mockito;
 6 | 
 7 | import static org.hamcrest.MatcherAssert.assertThat;
 8 | import static org.hamcrest.core.Is.is;
 9 | 
10 | public class AuthenticationTest {
11 | 
12 |     private UserProfile profile;
13 |     private Credentials credentials;
14 | 
15 |     private Authentication authentication;
16 | 
17 |     @Before
18 |     public void setUp() {
19 |         credentials = Mockito.mock(Credentials.class);
20 |         profile = Mockito.mock(UserProfile.class);
21 |         authentication = new Authentication(profile, credentials);
22 |     }
23 | 
24 |     @Test
25 |     public void getProfile() {
26 |         assertThat(authentication.getProfile(), is(profile));
27 |     }
28 | 
29 |     @Test
30 |     public void getCredentials() {
31 |         assertThat(authentication.getCredentials(), is(credentials));
32 |     }
33 | 
34 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/APIMockServer.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util
 2 | 
 3 | import okhttp3.mockwebserver.MockResponse
 4 | import okhttp3.mockwebserver.MockWebServer
 5 | import okhttp3.mockwebserver.RecordedRequest
 6 | import java.io.IOException
 7 | 
 8 | internal abstract class APIMockServer {
 9 |     val server: MockWebServer = SSLTestUtils.createMockWebServer()
10 |     val domain: String
11 |         get() = server.url("/").toString()
12 | 
13 |     @Throws(IOException::class)
14 |     fun shutdown() {
15 |         server.shutdown()
16 |     }
17 | 
18 |     @Throws(InterruptedException::class)
19 |     fun takeRequest(): RecordedRequest {
20 |         return server.takeRequest()
21 |     }
22 | 
23 |     fun responseWithJSON(json: String, statusCode: Int): MockResponse {
24 |         return MockResponse()
25 |             .setResponseCode(statusCode)
26 |             .addHeader("Content-Type", "application/json")
27 |             .setBody(json)
28 |     }
29 | 
30 |     init {
31 |         server.start()
32 |     }
33 | }


--------------------------------------------------------------------------------
/.github/stale.yml:
--------------------------------------------------------------------------------
 1 | # Configuration for probot-stale - https://github.com/probot/stale
 2 | 
 3 | # Number of days of inactivity before an Issue or Pull Request becomes stale
 4 | daysUntilStale: 90
 5 | 
 6 | # Number of days of inactivity before an Issue or Pull Request with the stale label is closed.
 7 | daysUntilClose: 7
 8 | 
 9 | # Issues or Pull Requests with these labels will never be considered stale. Set to `[]` to disable
10 | exemptLabels: []
11 | 
12 | # Set to true to ignore issues with an assignee (defaults to false)
13 | exemptAssignees: true
14 | 
15 | # Label to use when marking as stale
16 | staleLabel: closed:stale
17 | 
18 | # Comment to post when marking as stale. Set to `false` to disable
19 | markComment: >
20 |   This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. If you have not received a response for our team (apologies for the delay) and this is still a blocker, please reply with additional information or just a ping. Thank you for your contribution! 🙇‍♂️


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/MockManagementCallback.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | import com.auth0.android.callback.ManagementCallback;
 6 | import com.auth0.android.management.ManagementException;
 7 | 
 8 | import java.util.concurrent.Callable;
 9 | 
10 | public class MockManagementCallback<T> implements ManagementCallback<T> {
11 | 
12 |     private ManagementException error;
13 |     private T payload;
14 | 
15 |     @Override
16 |     public void onFailure(@NonNull ManagementException error) {
17 |         this.error = error;
18 |     }
19 | 
20 |     @Override
21 |     public void onSuccess(@NonNull T result) {
22 |         this.payload = result;
23 |     }
24 | 
25 |     public Callable<ManagementException> error() {
26 |         return () -> error;
27 |     }
28 | 
29 |     public Callable<T> payload() {
30 |         return () -> payload;
31 |     }
32 | 
33 |     public ManagementException getError() {
34 |         return error;
35 |     }
36 | 
37 |     public T getPayload() {
38 |         return payload;
39 |     }
40 | }
41 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/MockAuthenticationCallback.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | import com.auth0.android.authentication.AuthenticationException;
 6 | import com.auth0.android.callback.AuthenticationCallback;
 7 | 
 8 | import java.util.concurrent.Callable;
 9 | 
10 | public class MockAuthenticationCallback<T> implements AuthenticationCallback<T> {
11 | 
12 |     private AuthenticationException error;
13 |     private T payload;
14 | 
15 |     @Override
16 |     public void onFailure(@NonNull AuthenticationException error) {
17 |         this.error = error;
18 |     }
19 | 
20 |     @Override
21 |     public void onSuccess(@NonNull T result) {
22 |         this.payload = result;
23 |     }
24 | 
25 |     public Callable<AuthenticationException> error() {
26 |         return () -> error;
27 |     }
28 | 
29 |     public Callable<T> payload() {
30 |         return () -> payload;
31 |     }
32 | 
33 |     public AuthenticationException getError() {
34 |         return error;
35 |     }
36 | 
37 |     public T getPayload() {
38 |         return payload;
39 |     }
40 | }
41 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/GsonBaseTest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import com.google.gson.Gson
 4 | import com.google.gson.reflect.TypeToken
 5 | import java.io.FileNotFoundException
 6 | import java.io.FileReader
 7 | import java.io.IOException
 8 | import java.io.Reader
 9 | 
10 | public abstract class GsonBaseTest {
11 |     internal lateinit var gson: Gson
12 | 
13 |     @Throws(IOException::class)
14 |     internal fun <T> pojoFrom(json: Reader, typeToken: TypeToken<T>): T {
15 |         return gson.getAdapter(typeToken).fromJson(json)
16 |     }
17 | 
18 |     @Throws(IOException::class)
19 |     internal fun <T> pojoFrom(json: Reader, clazz: Class<T>): T {
20 |         return gson.getAdapter(clazz).fromJson(json)
21 |     }
22 | 
23 |     @Throws(FileNotFoundException::class)
24 |     internal fun json(name: String): FileReader {
25 |         return FileReader(name)
26 |     }
27 | 
28 |     internal companion object {
29 |         internal const val EMPTY_OBJECT = "src/test/resources/empty_object.json"
30 |         internal const val INVALID = "src/test/resources/invalid.json"
31 |     }
32 | }


--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
 1 | The MIT License (MIT)
 2 | 
 3 | Copyright (c) 2021 Auth0
 4 | 
 5 | Permission is hereby granted, free of charge, to any person obtaining a copy
 6 | of this software and associated documentation files (the "Software"), to deal
 7 | in the Software without restriction, including without limitation the rights
 8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
 9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 | 
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 | 
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/AuthCallback.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider
 2 | 
 3 | import android.app.Dialog
 4 | import com.auth0.android.authentication.AuthenticationException
 5 | import com.auth0.android.result.Credentials
 6 | 
 7 | /**
 8 |  * Callback called on success/failure of an Identity Provider authentication.
 9 |  * Only one of the success or failure methods will be called for a single authentication request.
10 |  */
11 | public interface AuthCallback {
12 |     /**
13 |      * Called when the failure reason is displayed in a [android.app.Dialog].
14 |      *
15 |      * @param dialog error dialog
16 |      */
17 |     public fun onFailure(dialog: Dialog)
18 | 
19 |     /**
20 |      * Called with an AuthenticationException that describes the error.
21 |      *
22 |      * @param exception cause of the error
23 |      */
24 |     public fun onFailure(exception: AuthenticationException)
25 | 
26 |     /**
27 |      * Called when the authentication is successful using web authentication against Auth0
28 |      *
29 |      * @param credentials Auth0 credentials information (id_token, refresh_token, etc).
30 |      */
31 |     public fun onSuccess(credentials: Credentials)
32 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/UserIdentity.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import com.auth0.android.request.internal.JsonRequired
 4 | import com.google.gson.annotations.SerializedName
 5 | import java.io.Serializable
 6 | 
 7 | /**
 8 |  * Class that holds the information from a Identity Provider like Facebook or Twitter.
 9 |  */
10 | public class UserIdentity(
11 |     @field:SerializedName("user_id") @field:JsonRequired public val id: String,
12 |     @field:SerializedName(
13 |         "connection"
14 |     ) @field:JsonRequired public val connection: String,
15 |     @field:SerializedName("provider") @field:JsonRequired public val provider: String,
16 |     @field:SerializedName(
17 |         "isSocial"
18 |     ) public val isSocial: Boolean,
19 |     @field:SerializedName("access_token") public val accessToken: String?,
20 |     @field:SerializedName("access_token_secret") public val accessTokenSecret: String?,
21 |     @field:SerializedName(
22 |         "profileData"
23 |     ) private val profileInfo: Map<String, Any>?
24 | ) : Serializable {
25 | 
26 |     public fun getProfileInfo(): Map<String, Any> {
27 |         return profileInfo?.toMap() ?: emptyMap()
28 |     }
29 | }


--------------------------------------------------------------------------------
/gradle.properties:
--------------------------------------------------------------------------------
 1 | # Project-wide Gradle settings.
 2 | # IDE (e.g. Android Studio) users:
 3 | # Gradle settings configured through the IDE *will override*
 4 | # any settings specified in this file.
 5 | # For more details on how to configure your build environment visit
 6 | # http://www.gradle.org/docs/current/userguide/build_environment.html
 7 | # Specifies the JVM arguments used for the daemon process.
 8 | # The setting is particularly useful for tweaking memory settings.
 9 | org.gradle.jvmargs=-Xmx2048m -Dfile.encoding=UTF-8
10 | # When configured, Gradle will run in incubating parallel mode.
11 | # This option should only be used with decoupled projects. More details, visit
12 | # http://www.gradle.org/docs/current/userguide/multi_project_builds.html#sec:decoupled_projects
13 | # org.gradle.parallel=true
14 | # AndroidX package structure to make it clearer which packages are bundled with the
15 | # Android operating system, and which are packaged with your app"s APK
16 | # https://developer.android.com/topic/libraries/support-library/androidx-rn
17 | android.useAndroidX=true
18 | # Automatically convert third-party libraries to use AndroidX
19 | android.enableJetifier=false
20 | # Kotlin code style for this project: "official" or "obsolete":
21 | kotlin.code.style=official


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/ServerResponse.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import java.io.InputStream
 4 | import java.util.*
 5 | 
 6 | /**
 7 |  * Contains the information received from the server after executing a network request.
 8 |  * @param statusCode the response HTTP status code.
 9 |  * @param body the response body stream.
10 |  * @param headers the response headers received.
11 |  */
12 | public data class ServerResponse(
13 |     val statusCode: Int,
14 |     val body: InputStream,
15 |     val headers: Map<String, List<String>>
16 | ) {
17 |     /**
18 |      * Checks if the status code is between 200 and 299.
19 |      * @return whether this response was successful or not.
20 |      */
21 |     public fun isSuccess(): Boolean = statusCode in 200.until(300)
22 | 
23 |     /**
24 |      * Checks if the Content-Type headers declare the received media type as 'application/json'.
25 |      * @return whether this response contains a JSON body or not.
26 |      */
27 |     public fun isJson(): Boolean {
28 |         headers.mapKeys { it.key.lowercase(Locale.getDefault()) }["content-type"]
29 |             ?.forEach {
30 |                 if (it.contains("application/json", ignoreCase = true)) return true
31 |             }
32 |         return false
33 |     }
34 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/CommonThreadSwitcherRule.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util
 2 | 
 3 | import com.auth0.android.request.internal.CommonThreadSwitcher
 4 | import com.auth0.android.request.internal.ThreadSwitcher
 5 | import org.junit.rules.TestWatcher
 6 | import org.junit.runner.Description
 7 | 
 8 | /**
 9 |  * A JUnit4 Rule that replaces the default executor used by [CommonThreadSwitcher] with a
10 |  * different one which executes each task synchronously. Can be used in unit tests instead of
11 |  * Robolectric's Shadows so that `Method getMainLooper in android.os.Looper not mocked` errors are not encountered.
12 |  */
13 | public class CommonThreadSwitcherRule : TestWatcher() {
14 |     override fun starting(description: Description) {
15 |         super.starting(description)
16 |         CommonThreadSwitcher.getInstance().setDelegate(object : ThreadSwitcher {
17 |             override fun mainThread(runnable: Runnable) {
18 |                 runnable.run()
19 |             }
20 | 
21 |             override fun backgroundThread(runnable: Runnable) {
22 |                 runnable.run()
23 |             }
24 |         })
25 |     }
26 | 
27 |     override fun finished(description: Description) {
28 |         super.finished(description)
29 |         CommonThreadSwitcher.getInstance().setDelegate(null)
30 |     }
31 | }
32 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/CredentialsManagerException.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage
 2 | 
 3 | import com.auth0.android.Auth0Exception
 4 | import com.auth0.android.result.Credentials
 5 | 
 6 | /**
 7 |  * Represents an error raised by the [CredentialsManager].
 8 |  */
 9 | public class CredentialsManagerException internal constructor(
10 |     message: String,
11 |     cause: Throwable? = null
12 | ) : Auth0Exception(message, cause) {
13 | 
14 |     /**
15 |      * Returns true when this Android device doesn't support the cryptographic algorithms used
16 |      * to handle encryption and decryption, false otherwise.
17 |      *
18 |      * @return whether this device is compatible with [SecureCredentialsManager] or not.
19 |      */
20 |     public val isDeviceIncompatible: Boolean
21 |         get() = cause is IncompatibleDeviceException
22 | 
23 |     /**
24 |      * Returns the refreshed [Credentials] if exception is thrown right before saving them.
25 |      * This will avoid users being logged out unnecessarily and allows to handle failure case as needed
26 |      *
27 |      * Set incase [IncompatibleDeviceException] or [CryptoException] is thrown while saving the refreshed [Credentials]
28 |      */
29 |     public var refreshedCredentials: Credentials? = null
30 |         internal set
31 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/ErrorAdapter.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import java.io.IOException
 4 | import java.io.Reader
 5 | 
 6 | /**
 7 |  * Adapter that converts from different sources into the <T> class that represents an error.
 8 |  */
 9 | public interface ErrorAdapter<T> {
10 | 
11 |     /**
12 |      * Converts the JSON input given in the Reader to the <T> instance.
13 |      * @param statusCode the response HTTP status code.
14 |      * @param reader the reader that contains the JSON encoded string.
15 |      * @throws IOException could be thrown to signal that the input was invalid.
16 |      */
17 |     @Throws(IOException::class)
18 |     public fun fromJsonResponse(statusCode: Int, reader: Reader): T
19 | 
20 |     /**
21 |      * Converts the raw input to a <T> instance.
22 |      * @param statusCode the response HTTP status code.
23 |      * @param bodyText the plain text received in the response body.
24 |      * @param headers the response headers received.
25 |      */
26 |     public fun fromRawResponse(
27 |         statusCode: Int,
28 |         bodyText: String,
29 |         headers: Map<String, List<String>>
30 |     ): T
31 | 
32 |     /**
33 |      * Constructs a <T> instance from the given stack trace.
34 |      * @param cause the cause of this error.
35 |      */
36 |     public fun fromException(cause: Throwable): T
37 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/ThreadSwitcherShadow.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal;
 2 | 
 3 | import org.robolectric.android.util.concurrent.InlineExecutorService;
 4 | import org.robolectric.annotation.Implementation;
 5 | import org.robolectric.annotation.Implements;
 6 | 
 7 | /**
 8 |  * Shadow that makes use of the {@link InlineExecutorService} to run background threads
 9 |  * as soon as they are posted (synchronously). Used only when classes or methods
10 |  * are annotated with @Config(shadows = CommonThreadSwitcher.class)
11 |  *
12 |  * @see <a href="https://github.com/robolectric/robolectric/issues/5645#issuecomment-627512678">https://github.com/robolectric/robolectric/issues/5645#issuecomment-627512678</a>
13 |  * @see <a href="http://robolectric.org/javadoc/4.3/org/robolectric/android/util/concurrent/RoboExecutorService.html">http://robolectric.org/javadoc/4.3/org/robolectric/android/util/concurrent/RoboExecutorService.html</a>
14 |  */
15 | @Implements(CommonThreadSwitcher.class)
16 | @SuppressWarnings({"unused", "RedundantSuppression"})
17 | public class ThreadSwitcherShadow {
18 | 
19 |     private final InlineExecutorService executor;
20 | 
21 |     public ThreadSwitcherShadow() {
22 |         this.executor = new InlineExecutorService();
23 |     }
24 | 
25 |     @Implementation
26 |     public void backgroundThread(Runnable runnable) {
27 |         executor.execute(runnable);
28 |     }
29 | }
30 | 


--------------------------------------------------------------------------------
/.github/PULL_REQUEST_TEMPLATE.md:
--------------------------------------------------------------------------------
 1 | ### Changes
 2 | 
 3 | Please describe both what is changing and why this is important. Include:
 4 | 
 5 | - Endpoints added, deleted, deprecated, or changed
 6 | - Classes and methods added, deleted, deprecated, or changed
 7 | - A summary of usage if this is a new feature or change to a public API (this should also be added to relevant documentation once released)
 8 | 
 9 | ### References
10 | 
11 | Please include relevant links supporting this change such as a:
12 | 
13 | - support ticket
14 | - community post
15 | - StackOverflow post
16 | - support forum thread
17 | 
18 | ### Testing
19 | 
20 | Please describe how this can be tested by reviewers. Be specific about anything not tested and reasons why. Since this library has unit testing, tests should be added for new functionality and existing tests should complete without errors.
21 | 
22 | - [ ] This change adds unit test coverage
23 | 
24 | - [ ] This change adds integration test coverage
25 | 
26 | - [ ] This change has been tested on the latest version of the platform/language or why not
27 | 
28 | ### Checklist
29 | 
30 | - [ ] I have read the [Auth0 general contribution guidelines](https://github.com/auth0/open-source-template/blob/master/GENERAL-CONTRIBUTING.md)
31 | 
32 | - [ ] I have read the [Auth0 Code of Conduct](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md)
33 | 
34 | - [ ] All existing and new tests complete without errors
35 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/GsonProvider.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import androidx.annotation.VisibleForTesting
 4 | import com.auth0.android.result.Credentials
 5 | import com.auth0.android.result.UserProfile
 6 | import com.google.gson.Gson
 7 | import com.google.gson.GsonBuilder
 8 | import com.google.gson.reflect.TypeToken
 9 | import java.security.PublicKey
10 | import java.text.SimpleDateFormat
11 | import java.util.*
12 | 
13 | internal object GsonProvider {
14 |     internal val gson: Gson
15 |     private var sdf: SimpleDateFormat
16 |     private const val DATE_FORMAT = "yyyy-MM-dd'T'HH:mm:ss.SSS'Z'"
17 | 
18 |     init {
19 |         val jwksType = TypeToken.getParameterized(
20 |             Map::class.java,
21 |             String::class.java,
22 |             PublicKey::class.java
23 |         ).type
24 |         gson = GsonBuilder()
25 |             .registerTypeAdapterFactory(JsonRequiredTypeAdapterFactory())
26 |             .registerTypeAdapter(UserProfile::class.java, UserProfileDeserializer())
27 |             .registerTypeAdapter(Credentials::class.java, CredentialsDeserializer())
28 |             .registerTypeAdapter(jwksType, JwksDeserializer())
29 |             .setDateFormat(DATE_FORMAT)
30 |             .create()
31 |         sdf = SimpleDateFormat(DATE_FORMAT, Locale.US)
32 |     }
33 | 
34 |     @JvmStatic
35 |     @VisibleForTesting
36 |     fun formatDate(date: Date): String {
37 |         return sdf.format(date)
38 |     }
39 | }


--------------------------------------------------------------------------------
/auth0/src/test/AndroidManifest.xml:
--------------------------------------------------------------------------------
 1 | <manifest xmlns:android="http://schemas.android.com/apk/res/android"
 2 |     xmlns:tools="http://schemas.android.com/tools"
 3 |     package="com.auth0.android.auth0.test">
 4 | 
 5 |     <uses-permission android:name="android.permission.INTERNET" />
 6 | 
 7 |     <application>
 8 |         <activity
 9 |             android:name="com.auth0.android.provider.AuthenticationActivity"
10 |             android:exported="false"
11 |             android:launchMode="singleTask"
12 |             android:theme="@android:style/Theme.Translucent.NoTitleBar" />
13 | 
14 |         <activity
15 |             android:name="com.auth0.android.provider.RedirectActivity"
16 |             android:exported="true"
17 |             tools:node="replace">
18 |             <intent-filter
19 |                 android:autoVerify="true"
20 |                 tools:targetApi="m">
21 |                 <action android:name="android.intent.action.VIEW" />
22 | 
23 |                 <category android:name="android.intent.category.DEFAULT" />
24 |                 <category android:name="android.intent.category.BROWSABLE" />
25 | 
26 |                 <!-- Intent Filter without manifest placeholders only for Test purposes -->
27 |                 <data
28 |                     android:host="domain"
29 |                     android:pathPrefix="/android/com.auth0.android.auth0.test/callback"
30 |                     android:scheme="https" />
31 |             </intent-filter>
32 |         </activity>
33 | 
34 |     </application>
35 | 
36 | </manifest>
37 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/authentication/storage/JWTDecoderTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage;
 2 | 
 3 | import com.auth0.android.request.internal.Jwt;
 4 | 
 5 | import org.junit.Test;
 6 | import org.junit.runner.RunWith;
 7 | import org.robolectric.RobolectricTestRunner;
 8 | 
 9 | import static org.hamcrest.CoreMatchers.is;
10 | import static org.hamcrest.MatcherAssert.assertThat;
11 | 
12 | @RunWith(RobolectricTestRunner.class)
13 | public class JWTDecoderTest {
14 | 
15 |     @Test
16 |     public void shouldDecodeAToken() {
17 |         String token = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6ImFsaWNlIn0.eyJzdWIiOiIxMjM0NTY3ODkwIiwibm9uY2UiOiJyZWFsbHkgcmFuZG9tIHRleHQiLCJpYXQiOjE1MTYyMzkwMjJ9.rYG-HEs1EKKDhwQIoEg32_p-NQzNi5rB7akqGnH_q4k";
18 |         Jwt jwt1 = new Jwt(token);
19 | 
20 |         Jwt jwt2 = new JWTDecoder().decode(token);
21 | 
22 |         //Header claims
23 |         assertThat(jwt1.getAlgorithm(), is("HS256"));
24 |         assertThat(jwt1.getKeyId(), is("alice"));
25 |         assertThat(jwt2.getAlgorithm(), is("HS256"));
26 |         assertThat(jwt2.getKeyId(), is("alice"));
27 | 
28 |         //Payload claims
29 |         assertThat(jwt1.getSubject(), is("1234567890"));
30 |         assertThat(jwt1.getIssuedAt().getTime(), is(1516239022000L));
31 |         assertThat(jwt1.getNonce(), is("really random text"));
32 | 
33 |         assertThat(jwt2.getSubject(), is("1234567890"));
34 |         assertThat(jwt2.getIssuedAt().getTime(), is(1516239022000L));
35 |         assertThat(jwt2.getNonce(), is("really random text"));
36 |     }
37 | }


--------------------------------------------------------------------------------
/sample/src/main/res/layout/activity_main.xml:
--------------------------------------------------------------------------------
 1 | <?xml version="1.0" encoding="utf-8"?>
 2 | <androidx.coordinatorlayout.widget.CoordinatorLayout xmlns:android="http://schemas.android.com/apk/res/android"
 3 |     xmlns:app="http://schemas.android.com/apk/res-auto"
 4 |     xmlns:tools="http://schemas.android.com/tools"
 5 |     android:layout_width="match_parent"
 6 |     android:layout_height="match_parent"
 7 |     tools:context=".MainActivity">
 8 | 
 9 |     <com.google.android.material.appbar.AppBarLayout
10 |         android:layout_width="match_parent"
11 |         android:layout_height="wrap_content"
12 |         android:theme="@style/Theme.Auth0Android.AppBarOverlay">
13 | 
14 |         <androidx.appcompat.widget.Toolbar
15 |             android:id="@+id/toolbar"
16 |             android:layout_width="match_parent"
17 |             android:layout_height="?attr/actionBarSize"
18 |             android:background="?attr/colorPrimary"
19 |             app:popupTheme="@style/Theme.Auth0Android.PopupOverlay" />
20 | 
21 |     </com.google.android.material.appbar.AppBarLayout>
22 | 
23 |     <androidx.fragment.app.FragmentContainerView
24 |         android:id="@+id/nav_host_fragment"
25 |         android:name="androidx.navigation.fragment.NavHostFragment"
26 |         android:layout_width="match_parent"
27 |         android:layout_height="match_parent"
28 |         app:defaultNavHost="true"
29 |         app:layout_behavior="com.google.android.material.appbar.AppBarLayout$ScrollingViewBehavior"
30 |         app:navGraph="@navigation/nav_graph" />
31 | 
32 | </androidx.coordinatorlayout.widget.CoordinatorLayout>


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/MockAuthCallback.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import android.app.Dialog;
 4 | 
 5 | import androidx.annotation.NonNull;
 6 | 
 7 | import com.auth0.android.authentication.AuthenticationException;
 8 | import com.auth0.android.provider.AuthCallback;
 9 | import com.auth0.android.result.Credentials;
10 | 
11 | import java.util.concurrent.Callable;
12 | 
13 | public class MockAuthCallback implements AuthCallback {
14 | 
15 |     private AuthenticationException error;
16 |     private Credentials credentials;
17 |     private Dialog dialog;
18 | 
19 | 
20 |     public Callable<AuthenticationException> error() {
21 |         return () -> error;
22 |     }
23 | 
24 |     public Callable<Dialog> dialog() {
25 |         return () -> dialog;
26 |     }
27 | 
28 |     public Callable<Credentials> credentials() {
29 |         return () -> credentials;
30 |     }
31 | 
32 |     public AuthenticationException getError() {
33 |         return error;
34 |     }
35 | 
36 |     public Dialog getErrorDialog() {
37 |         //unused
38 |         return dialog;
39 |     }
40 | 
41 |     public Credentials getCredentials() {
42 |         return credentials;
43 |     }
44 | 
45 |     @Override
46 |     public void onFailure(@NonNull Dialog dialog) {
47 |         this.dialog = dialog;
48 |     }
49 | 
50 |     @Override
51 |     public void onFailure(@NonNull AuthenticationException exception) {
52 |         this.error = exception;
53 |     }
54 | 
55 |     @Override
56 |     public void onSuccess(@NonNull Credentials credentials) {
57 |         this.credentials = credentials;
58 |     }
59 | }
60 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/identity_facebook.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "profileData": {
 3 |     "name": "Foobar John",
 4 |     "email": "cs.auth0@gmail.com",
 5 |     "given_name": "John",
 6 |     "family_name": "Foobar",
 7 |     "gender": "male",
 8 |     "picture": "https://fbcdn-profile-a.akamaihd.net/hprofile-ak-xpf1/v/t1.0-1/c15.0.50.50/p50x50/10354686_10150004552801856_220367501106153455_n.jpg?oh=e0b37ad2914032931c273619126878aa&oe=56496A2F&__gda__=1447695355_10ff74ec6ef8e26e46c4751a34c49bd0",
 9 |     "age_range": {
10 |       "min": 21
11 |     },
12 |     "context": {
13 |       "mutual_likes": {
14 |         "data": [],
15 |         "summary": {
16 |           "total_count": 0
17 |         }
18 |       },
19 |       "id": "dXNlcl9jb250ZAXh0OgGQrD9tBkdCdc9yZCEuMNLb30EfjMBifT2tw1ZA0ZD"
20 |     },
21 |     "devices": [
22 |       {
23 |         "os": "Android"
24 |       }
25 |     ],
26 |     "updated_time": "2014-09-23T18:26:31+0000",
27 |     "installed": true,
28 |     "is_verified": false,
29 |     "link": "http://www.facebook.com/100007950452676",
30 |     "locale": "en_US",
31 |     "name_format": "{first} {last}",
32 |     "timezone": -3,
33 |     "third_party_id": "tQc5Y4aHE7Lu7fBQo5IB5OI2G6s",
34 |     "verified": true,
35 |     "email_verified": true
36 |   },
37 |   "access_token": "CAAHmNzUbD0eIBAOv4JlkCgMtfcvhjdNb4r9R39coDs3Dog33pgZBquVvUpRiphjZBHnU6TpXRMA5GLReamUwQ1AFl5UrjeksDYAD3Trq4SUxpGKTFuB7KxYhcjzJQxyZCoZBzEpNDkYrwo4tPgShBhCfhugO7yZCzdcgPDt2Oyu5hy8ROqZBfmjYIKKl8yhDbiSgH7Np9nJ9yeWqE9wzj8ZAKRMkHoHZCXb4zqWLxKfQTRG4PzM3fv3K",
38 |   "provider": "facebook",
39 |   "user_id": "999997950999976",
40 |   "connection": "facebook",
41 |   "isSocial": true
42 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/authentication/request/RequestMock.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.request;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | import com.auth0.android.Auth0Exception;
 6 | import com.auth0.android.callback.Callback;
 7 | import com.auth0.android.request.Request;
 8 | 
 9 | import java.util.Map;
10 | 
11 | public class RequestMock<T, U extends Auth0Exception> implements Request<T, U> {
12 |     private final T result;
13 |     private final U error;
14 |     private boolean started;
15 | 
16 |     public RequestMock(T result, U error) {
17 |         this.result = result;
18 |         this.error = error;
19 |     }
20 | 
21 |     public boolean isStarted() {
22 |         return started;
23 |     }
24 | 
25 |     @NonNull
26 |     @Override
27 |     public Request<T, U> addParameters(@NonNull Map<String, String> parameters) {
28 |         return this;
29 |     }
30 | 
31 |     @NonNull
32 |     @Override
33 |     public Request<T, U> addParameter(@NonNull String name, @NonNull String value) {
34 |         return this;
35 |     }
36 | 
37 |     @NonNull
38 |     @Override
39 |     public Request<T, U> addHeader(@NonNull String name, @NonNull String value) {
40 |         return this;
41 |     }
42 | 
43 |     @Override
44 |     public void start(@NonNull Callback<T, U> callback) {
45 |         started = true;
46 |         if (result != null) {
47 |             callback.onSuccess(result);
48 |         } else {
49 |             callback.onFailure(error);
50 |         }
51 |     }
52 | 
53 |     @NonNull
54 |     @Override
55 |     public T execute() throws Auth0Exception {
56 |         return null;
57 |     }
58 | }
59 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/result/UserIdentityTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result;
 2 | 
 3 | import org.junit.Before;
 4 | import org.junit.Test;
 5 | 
 6 | import java.util.Collections;
 7 | import java.util.Map;
 8 | 
 9 | import static org.hamcrest.MatcherAssert.assertThat;
10 | import static org.hamcrest.core.Is.is;
11 | 
12 | public class UserIdentityTest {
13 | 
14 |     private Map<String, Object> profileInfo;
15 |     private UserIdentity userIdentity;
16 | 
17 |     @Before
18 |     public void setUp() {
19 |         profileInfo = Collections.singletonMap("key", "value");
20 |         userIdentity = new UserIdentity("id", "connection", "provider", true, "accessToken", "accessTokenSecret", profileInfo);
21 |     }
22 | 
23 |     @Test
24 |     public void getId() {
25 |         assertThat(userIdentity.getId(), is("id"));
26 |     }
27 | 
28 |     @Test
29 |     public void getConnection() {
30 |         assertThat(userIdentity.getConnection(), is("connection"));
31 |     }
32 | 
33 |     @Test
34 |     public void getProvider() {
35 |         assertThat(userIdentity.getProvider(), is("provider"));
36 |     }
37 | 
38 |     @Test
39 |     public void isSocial() {
40 |         assertThat(userIdentity.isSocial(), is(true));
41 |     }
42 | 
43 |     @Test
44 |     public void getAccessToken() {
45 |         assertThat(userIdentity.getAccessToken(), is("accessToken"));
46 |     }
47 | 
48 |     @Test
49 |     public void getAccessTokenSecret() {
50 |         assertThat(userIdentity.getAccessTokenSecret(), is("accessTokenSecret"));
51 |     }
52 | 
53 |     @Test
54 |     public void getProfileInfo() {
55 |         assertThat(userIdentity.getProfileInfo(), is(profileInfo));
56 |     }
57 | 
58 | }


--------------------------------------------------------------------------------
/auth0/src/test/resources/password_strength_error.json:
--------------------------------------------------------------------------------
 1 | {
 2 | "code": "invalid_password",
 3 | "description": {
 4 | "rules": [
 5 | {
 6 | "code": "lengthAtLeast",
 7 | "format": [
 8 | 10
 9 | ],
10 | "message": "At least %d characters in length",
11 | "verified": false
12 | },
13 | {
14 | "code": "containsAtLeast",
15 | "format": [
16 | 3,
17 | 4
18 | ],
19 | "items": [
20 | {
21 | "code": "lowerCase",
22 | "message": "lower case letters (a-z)",
23 | "verified": false
24 | },
25 | {
26 | "code": "upperCase",
27 | "message": "upper case letters (A-Z)",
28 | "verified": false
29 | },
30 | {
31 | "code": "numbers",
32 | "message": "numbers (i.e. 0-9)",
33 | "verified": false
34 | },
35 | {
36 | "code": "specialCharacters",
37 | "message": "special characters (e.g. !@#$%^&*)",
38 | "verified": false
39 | }
40 | ],
41 | "message": "Contain at least %d of the following %d types of characters:",
42 | "verified": false
43 | },
44 | {
45 | "code": "shouldContain",
46 | "items": [
47 | {
48 | "code": "lowerCase",
49 | "message": "lower case letters (a-z)",
50 | "verified": false
51 | },
52 | {
53 | "code": "upperCase",
54 | "message": "upper case letters (A-Z)",
55 | "verified": false
56 | },
57 | {
58 | "code": "numbers",
59 | "message": "numbers (i.e. 0-9)",
60 | "verified": false
61 | },
62 | {
63 | "code": "specialCharacters",
64 | "message": "special characters (e.g. !@#$%^&*)",
65 | "verified": false
66 | }
67 | ],
68 | "message": "Should contain:",
69 | "verified": false
70 | },
71 | {
72 | "code": "identicalChars",
73 | "format": [
74 | 2,
75 | "aaa"
76 | ],
77 | "message": "No more than %d identical characters in a row (e.g., \"%s\" not allowed)",
78 | "verified": false
79 | }
80 | ],
81 | "verified": false
82 | },
83 | "name": "PasswordStrengthError",
84 | "statusCode": 400
85 | }
86 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/SSLTestUtils.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util
 2 | 
 3 | import com.auth0.android.request.DefaultClient
 4 | import okhttp3.mockwebserver.MockWebServer
 5 | import okhttp3.tls.HandshakeCertificates
 6 | import okhttp3.tls.HeldCertificate
 7 | import java.net.InetAddress
 8 | 
 9 | /**
10 |  * Utility object for executing tests that use the networking client over HTTPS on localhost.
11 |  */
12 | internal object SSLTestUtils {
13 |     private val localhostCertificate: HeldCertificate
14 |     private val serverCertificates: HandshakeCertificates
15 |     val clientCertificates: HandshakeCertificates
16 |     val testClient: DefaultClient
17 | 
18 |     init {
19 |         val localhost = InetAddress.getByName("localhost").canonicalHostName
20 | 
21 |         localhostCertificate = HeldCertificate.Builder()
22 |             .addSubjectAlternativeName(localhost)
23 |             .build()
24 | 
25 |         clientCertificates = HandshakeCertificates.Builder()
26 |             .addTrustedCertificate(localhostCertificate.certificate)
27 |             .build()
28 | 
29 |         serverCertificates = HandshakeCertificates.Builder()
30 |             .heldCertificate(localhostCertificate)
31 |             .build()
32 | 
33 |         testClient = DefaultClient(
34 |             defaultHeaders = mapOf(),
35 |             readTimeout = 10,
36 |             connectTimeout = 10,
37 |             enableLogging = false,
38 |             sslSocketFactory = clientCertificates.sslSocketFactory(),
39 |             trustManager = clientCertificates.trustManager
40 |         )
41 |     }
42 | 
43 |     fun createMockWebServer(): MockWebServer {
44 |         val mockServer = MockWebServer()
45 |         mockServer.useHttps(serverCertificates.sslSocketFactory(), false)
46 |         return mockServer
47 |     }
48 | }


--------------------------------------------------------------------------------
/auth0/src/test/resources/rsa_private.pem:
--------------------------------------------------------------------------------
 1 | -----BEGIN PRIVATE KEY-----
 2 | MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQC4ZtdaIrd1BPIJ
 3 | tfnF0TjIK5inQAXZ3XlCrUlJdP+XHwIRxdv1FsN12XyMYO/6ymLmo9ryoQeIrsXB
 4 | XYqlET3zfAY+diwCb0HEsVvhisthwMU4gZQu6TYW2s9LnXZB5rVtcBK69hcSlA2k
 5 | ZudMZWxZcj0L7KMfO2rIvaHw/qaVOE9j0T257Z8Kp2CLF9MUgX0ObhIsdumFRLaL
 6 | DvDUmBPr2zuh/34j2XmWwn1yjN/WvGtdfhXW79Ki1S40HcWnygHgLV8sESFKUxxQ
 7 | mKvPUTwDOIwLFL5WtE8Mz7N++kgmDcmWMCHc8kcOIu73Ta/3D4imW7VbKgHZo9+K
 8 | 3ESFE3RjAgMBAAECggEBAJTEIyjMqUT24G2FKiS1TiHvShBkTlQdoR5xvpZMlYbN
 9 | tVWxUmrAGqCQ/TIjYnfpnzCDMLhdwT48Ab6mQJw69MfiXwc1PvwX1e9hRscGul36
10 | ryGPKIVQEBsQG/zc4/L2tZe8ut+qeaK7XuYrPp8bk/X1e9qK5m7j+JpKosNSLgJj
11 | NIbYsBkG2Mlq671irKYj2hVZeaBQmWmZxK4fw0Istz2WfN5nUKUeJhTwpR+JLUg4
12 | ELYYoB7EO0Cej9UBG30hbgu4RyXA+VbptJ+H042K5QJROUbtnLWuuWosZ5ATldwO
13 | u03dIXL0SH0ao5NcWBzxU4F2sBXZRGP2x/jiSLHcqoECgYEA4qD7mXQpu1b8XO8U
14 | 6abpKloJCatSAHzjgdR2eRDRx5PMvloipfwqA77pnbjTUFajqWQgOXsDTCjcdQui
15 | wf5XAaWu+TeAVTytLQbSiTsBhrnoqVrr3RoyDQmdnwHT8aCMouOgcC5thP9vQ8Us
16 | rVdjvRRbnJpg3BeSNimH+u9AHgsCgYEA0EzcbOltCWPHRAY7B3Ge/AKBjBQr86Kv
17 | TdpTlxePBDVIlH+BM6oct2gaSZZoHbqPjbq5v7yf0fKVcXE4bSVgqfDJ/sZQu9Lp
18 | PTeV7wkk0OsAMKk7QukEpPno5q6tOTNnFecpUhVLLlqbfqkB2baYYwLJR3IRzboJ
19 | FQbLY93E8gkCgYB+zlC5VlQbbNqcLXJoImqItgQkkuW5PCgYdwcrSov2ve5r/Acz
20 | FNt1aRdSlx4176R3nXyibQA1Vw+ztiUFowiP9WLoM3PtPZwwe4bGHmwGNHPIfwVG
21 | m+exf9XgKKespYbLhc45tuC08DATnXoYK7O1EnUINSFJRS8cezSI5eHcbQKBgQDC
22 | PgqHXZ2aVftqCc1eAaxaIRQhRmY+CgUjumaczRFGwVFveP9I6Gdi+Kca3DE3F9Pq
23 | PKgejo0SwP5vDT+rOGHN14bmGJUMsX9i4MTmZUZ5s8s3lXh3ysfT+GAhTd6nKrIE
24 | kM3Nh6HWFhROptfc6BNusRh1kX/cspDplK5x8EpJ0QKBgQDWFg6S2je0KtbV5PYe
25 | RultUEe2C0jYMDQx+JYxbPmtcopvZQrFEur3WKVuLy5UAy7EBvwMnZwIG7OOohJb
26 | vkSpADK6VPn9lbqq7O8cTedEHttm6otmLt8ZyEl3hZMaL3hbuRj6ysjmoFKx6CrX
27 | rK0/Ikt5ybqUzKCMJZg2VKGTxg==
28 | -----END PRIVATE KEY-----


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/AlgorithmHelper.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.util.Base64;
 4 | import android.util.Log;
 5 | 
 6 | import androidx.annotation.NonNull;
 7 | 
 8 | import java.nio.charset.StandardCharsets;
 9 | import java.security.MessageDigest;
10 | import java.security.NoSuchAlgorithmException;
11 | import java.security.SecureRandom;
12 | 
13 | class AlgorithmHelper {
14 | 
15 |     private static final String TAG = AlgorithmHelper.class.getSimpleName();
16 | 
17 |     private static final String SHA_256 = "SHA-256";
18 | 
19 |     private String getBase64String(byte[] source) {
20 |         return Base64.encodeToString(source, Base64.URL_SAFE | Base64.NO_WRAP | Base64.NO_PADDING);
21 |     }
22 | 
23 |     byte[] getASCIIBytes(String value) {
24 |         return value.getBytes(StandardCharsets.US_ASCII);
25 |     }
26 | 
27 |     byte[] getSHA256(byte[] input) {
28 |         byte[] signature;
29 |         try {
30 |             MessageDigest md = MessageDigest.getInstance(SHA_256);
31 |             md.update(input, 0, input.length);
32 |             signature = md.digest();
33 |         } catch (NoSuchAlgorithmException e) {
34 |             Log.e(TAG, "Failed to get SHA-256 signature", e);
35 |             throw new IllegalStateException("Failed to get SHA-256 signature", e);
36 |         }
37 |         return signature;
38 |     }
39 | 
40 |     String generateCodeVerifier() {
41 |         SecureRandom sr = new SecureRandom();
42 |         byte[] code = new byte[32];
43 |         sr.nextBytes(code);
44 |         return Base64.encodeToString(code, Base64.URL_SAFE | Base64.NO_WRAP | Base64.NO_PADDING);
45 |     }
46 | 
47 |     String generateCodeChallenge(@NonNull String codeVerifier) {
48 |         byte[] input = getASCIIBytes(codeVerifier);
49 |         byte[] signature = getSHA256(input);
50 |         return getBase64String(signature);
51 |     }
52 | }


--------------------------------------------------------------------------------
/auth0/src/main/AndroidManifest.xml:
--------------------------------------------------------------------------------
 1 | <!--Ignore rule required due to the 'queries' tag, fix only available for targetSdk=30 -->
 2 | <!--suppress AndroidElementNotAllowed -->
 3 | <manifest xmlns:android="http://schemas.android.com/apk/res/android"
 4 |     xmlns:tools="http://schemas.android.com/tools"
 5 |     package="com.auth0.android.auth0">
 6 | 
 7 |     <uses-permission android:name="android.permission.INTERNET" />
 8 | 
 9 |     <application>
10 |         <activity
11 |             android:name="com.auth0.android.provider.AuthenticationActivity"
12 |             android:configChanges="screenSize|smallestScreenSize|screenLayout|orientation|keyboard|keyboardHidden"
13 |             android:exported="false"
14 |             android:launchMode="singleTask"
15 |             android:theme="@android:style/Theme.Translucent.NoTitleBar" />
16 | 
17 |         <activity
18 |             android:name="com.auth0.android.provider.RedirectActivity"
19 |             android:exported="true">
20 |             <intent-filter android:autoVerify="true"
21 |                 tools:targetApi="m">
22 |                 <action android:name="android.intent.action.VIEW" />
23 | 
24 |                 <category android:name="android.intent.category.DEFAULT" />
25 |                 <category android:name="android.intent.category.BROWSABLE" />
26 | 
27 |                 <data
28 |                     android:host="${auth0Domain}"
29 |                     android:pathPrefix="/android/${applicationId}/callback"
30 |                     android:scheme="${auth0Scheme}" />
31 |             </intent-filter>
32 |         </activity>
33 | 
34 |     </application>
35 |     <queries>
36 |         <intent>
37 |             <action android:name="android.intent.action.VIEW" />
38 |             <category android:name="android.intent.category.BROWSABLE" />
39 |             <data android:scheme="https" />
40 |         </intent>
41 |     </queries>
42 | 
43 | </manifest>
44 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/UserIdentityMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import com.auth0.android.result.UserIdentity;
 4 | 
 5 | import org.hamcrest.Description;
 6 | import org.hamcrest.Matcher;
 7 | 
 8 | import static org.hamcrest.Matchers.equalTo;
 9 | 
10 | public class UserIdentityMatcher extends AttributeMatcher<UserIdentity> {
11 | 
12 |     private final Matcher<String> idMatcher;
13 |     private final Matcher<String> providerMatcher;
14 |     private final Matcher<String> connectionMatcher;
15 | 
16 |     private UserIdentityMatcher(Matcher<String> idMatcher, Matcher<String> providerMatcher, Matcher<String> connectionMatcher) {
17 |         this.idMatcher = idMatcher;
18 |         this.providerMatcher = providerMatcher;
19 |         this.connectionMatcher = connectionMatcher;
20 |     }
21 | 
22 |     @Override
23 |     public void describeTo(Description description) {
24 |         description.appendText("a user identity with ")
25 |                 .appendText("id: ").appendDescriptionOf(idMatcher).appendText(" ")
26 |                 .appendText("provider: ").appendDescriptionOf(providerMatcher).appendText(" ")
27 |                 .appendText("connection: ").appendDescriptionOf(connectionMatcher);
28 |     }
29 | 
30 |     @Override
31 |     protected boolean matchesSafely(UserIdentity identity, Description mismatchDescription) {
32 |         return performMatch(idMatcher, identity.getId(), mismatchDescription, "id")
33 |                 && performMatch(providerMatcher, identity.getProvider(), mismatchDescription, "provider")
34 |                 && performMatch(connectionMatcher, identity.getConnection(), mismatchDescription, "connection");
35 |     }
36 | 
37 |     public static Matcher<UserIdentity> isUserIdentity(String id, String provider, String connection) {
38 |         return new UserIdentityMatcher(equalTo(id), equalTo(provider), equalTo(connection));
39 |     }
40 | }
41 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/OidcUtils.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import java.util.*
 4 | 
 5 | /**
 6 |  * Small utility class to handle OpenID Connect conformance
 7 |  */
 8 | internal object OidcUtils {
 9 |     internal const val KEY_SCOPE = "scope"
10 |     internal const val DEFAULT_SCOPE = "openid profile email"
11 |     private const val REQUIRED_SCOPE = "openid"
12 | 
13 |     /**
14 |      * Given a string, it will check if it contains the scope of "openid".
15 |      * If it does, it will keep it unchanged. Otherwise, it will append "openid".
16 |      *
17 |      * @param scope the scope to check if includes "openid"
18 |      * @return a scope that contains "openid"
19 |      */
20 |     fun includeRequiredScope(scope: String): String {
21 |         val existingScopes = scope.split(" ")
22 |             .map { it.toLowerCase(Locale.ROOT) }
23 |         return if (!existingScopes.contains(REQUIRED_SCOPE)) {
24 |             (existingScopes + REQUIRED_SCOPE).joinToString(separator = " ").trim()
25 |         } else {
26 |             scope
27 |         }
28 |     }
29 | 
30 |     /**
31 |      * Given a map, it will check if it contains a key with the name "scope" in it.
32 |      * If the "scope" key is not defined, it will add one with the value of "openid profile email".
33 |      * If the "scope" key is defined and its value contains "openid", it will keep it unchanged.
34 |      * Otherwise, it will append "openid" to it.
35 |      *
36 |      * @param parameters the map to check if includes a scope of "openid""
37 |      * @return a map with a scope containing "openid" or "openid profile email".
38 |      */
39 |     fun includeDefaultScope(parameters: MutableMap<String, String>) {
40 |         parameters[KEY_SCOPE] = if (parameters.containsKey(KEY_SCOPE)) {
41 |             includeRequiredScope(parameters.getValue(KEY_SCOPE))
42 |         } else {
43 |             DEFAULT_SCOPE
44 |         }
45 |     }
46 | }


--------------------------------------------------------------------------------
/sample/build.gradle:
--------------------------------------------------------------------------------
 1 | plugins {
 2 |     id 'com.android.application'
 3 |     id 'kotlin-android'
 4 | }
 5 | 
 6 | android {
 7 |     compileSdkVersion 31
 8 | 
 9 |     defaultConfig {
10 |         minSdkVersion 21
11 |         targetSdkVersion 31
12 |         versionCode 1
13 |         versionName "1.0"
14 | 
15 |         manifestPlaceholders = [auth0Domain: "@string/com_auth0_domain", auth0Scheme: "@string/com_auth0_scheme"]
16 |         testInstrumentationRunner "androidx.test.runner.AndroidJUnitRunner"
17 |         consumerProguardFiles "consumer-rules.pro"
18 |     }
19 | 
20 |     buildFeatures {
21 |         viewBinding true
22 |     }
23 |     buildTypes {
24 |         release {
25 |             minifyEnabled true
26 |             proguardFiles getDefaultProguardFile('proguard-android-optimize.txt'), 'proguard-rules.pro'
27 |             signingConfig debug.signingConfig
28 |         }
29 |     }
30 |     testOptions {
31 |         unitTests {
32 |             all {
33 |                 maxHeapSize = "1024m"
34 |             }
35 |         }
36 |     }
37 |     compileOptions {
38 |         sourceCompatibility JavaVersion.VERSION_1_8
39 |         targetCompatibility JavaVersion.VERSION_1_8
40 |     }
41 |     kotlinOptions {
42 |         jvmTarget = '1.8'
43 |     }
44 | }
45 | 
46 | dependencies {
47 |     implementation project(':auth0')
48 |     implementation "org.jetbrains.kotlin:kotlin-stdlib:$kotlin_version"
49 |     implementation 'androidx.core:core-ktx:1.6.0'
50 |     implementation 'androidx.appcompat:appcompat:1.3.0'
51 |     implementation 'com.google.android.material:material:1.4.0'
52 |     implementation 'androidx.constraintlayout:constraintlayout:2.0.4'
53 |     implementation 'androidx.navigation:navigation-fragment-ktx:2.3.5'
54 |     implementation 'androidx.navigation:navigation-ui-ktx:2.3.5'
55 |     testImplementation 'junit:junit:4.13.2'
56 |     androidTestImplementation 'androidx.test.ext:junit:1.1.3'
57 |     androidTestImplementation 'androidx.test.espresso:espresso-core:3.4.0'
58 | }


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
 1 | # Created by https://www.gitignore.io/api/intellij,android,osx,windows
 2 | 
 3 | ### Intellij ###
 4 | # Covers JetBrains IDEs: IntelliJ, RubyMine, PhpStorm, AppCode, PyCharm, CLion, Android Studio and Webstorm
 5 | 
 6 | *.iml
 7 | 
 8 | ## Directory-based project format:
 9 | .idea/
10 | # if you remove the above rule, at least ignore the following:
11 | 
12 | # User-specific stuff:
13 | # .idea/workspace.xml
14 | # .idea/tasks.xml
15 | # .idea/dictionaries
16 | # .idea/shelf
17 | 
18 | # Sensitive or high-churn files:
19 | # .idea/dataSources.ids
20 | # .idea/dataSources.xml
21 | # .idea/sqlDataSources.xml
22 | # .idea/dynamic.xml
23 | # .idea/uiDesigner.xml
24 | 
25 | # Gradle:
26 | # .idea/gradle.xml
27 | # .idea/libraries
28 | 
29 | # Mongo Explorer plugin:
30 | # .idea/mongoSettings.xml
31 | 
32 | ## File-based project format:
33 | *.ipr
34 | *.iws
35 | 
36 | ## Plugin-specific files:
37 | 
38 | # IntelliJ
39 | /out/
40 | 
41 | # mpeltonen/sbt-idea plugin
42 | .idea_modules/
43 | 
44 | # JIRA plugin
45 | atlassian-ide-plugin.xml
46 | 
47 | # Crashlytics plugin (for Android Studio and IntelliJ)
48 | com_crashlytics_export_strings.xml
49 | crashlytics.properties
50 | crashlytics-build.properties
51 | fabric.properties
52 | 
53 | 
54 | ### Android ###
55 | # Built application files
56 | *.apk
57 | *.ap_
58 | 
59 | # Files for the Dalvik VM
60 | *.dex
61 | 
62 | # Java class files
63 | *.class
64 | 
65 | # Generated files
66 | bin/
67 | gen/
68 | 
69 | # Gradle files
70 | .gradle/
71 | build/
72 | 
73 | # Local configuration file (sdk path, etc)
74 | local.properties
75 | 
76 | # Log Files
77 | *.log
78 | 
79 | # Android Studio Navigation editor temp files
80 | .navigation/
81 | 
82 | # Android Studio captures folder
83 | captures/
84 | 
85 | ### Android Patch ###
86 | gen-external-apklibs
87 | 
88 | 
89 | ### OSX ###
90 | .DS_Store
91 | 
92 | # Files that might appear in the root of a volume
93 | .DocumentRevisions-V100
94 | .fseventsd
95 | .Spotlight-V100
96 | .TemporaryItems
97 | .Trashes
98 | 
99 | version.txt


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/JsonRequiredTypeAdapterFactory.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | 
 5 | import com.google.gson.Gson;
 6 | import com.google.gson.JsonParseException;
 7 | import com.google.gson.TypeAdapter;
 8 | import com.google.gson.TypeAdapterFactory;
 9 | import com.google.gson.reflect.TypeToken;
10 | import com.google.gson.stream.JsonReader;
11 | import com.google.gson.stream.JsonWriter;
12 | 
13 | import java.io.IOException;
14 | import java.lang.reflect.Field;
15 | 
16 | 
17 | class JsonRequiredTypeAdapterFactory implements TypeAdapterFactory {
18 | 
19 |     @NonNull
20 |     public <T> TypeAdapter<T> create(@NonNull Gson gson, @NonNull final TypeToken<T> type) {
21 | 
22 |         final TypeAdapter<T> delegate = gson.getDelegateAdapter(this, type);
23 | 
24 |         return new TypeAdapter<T>() {
25 | 
26 |             public void write(JsonWriter out, T value) throws IOException {
27 |                 delegate.write(out, value);
28 |             }
29 | 
30 |             public T read(JsonReader in) throws IOException {
31 |                 T pojo = delegate.read(in);
32 | 
33 |                 Field[] fields = pojo.getClass().getDeclaredFields();
34 |                 for (Field f : fields) {
35 |                     if (f.getAnnotation(JsonRequired.class) != null) {
36 |                         try {
37 |                             f.setAccessible(true);
38 |                             if (f.get(pojo) == null) {
39 |                                 throw new JsonParseException(String.format("Missing required attribute %s", f.getName()));
40 |                             }
41 |                         } catch (IllegalAccessException ex) {
42 |                             throw new JsonParseException(String.format("Missing required attribute %s", f.getName()));
43 |                         }
44 |                     }
45 |                 }
46 |                 return pojo;
47 |             }
48 |         }.nullSafe();
49 |     }
50 | }
51 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/JsonRequiredTypeAdapterFactoryTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal;
 2 | 
 3 | import com.google.gson.Gson;
 4 | import com.google.gson.GsonBuilder;
 5 | import com.google.gson.JsonParseException;
 6 | 
 7 | import org.junit.Before;
 8 | import org.junit.Test;
 9 | 
10 | import static org.hamcrest.CoreMatchers.containsString;
11 | import static org.hamcrest.CoreMatchers.instanceOf;
12 | import static org.hamcrest.CoreMatchers.notNullValue;
13 | import static org.hamcrest.CoreMatchers.nullValue;
14 | import static org.hamcrest.MatcherAssert.assertThat;
15 | 
16 | public class JsonRequiredTypeAdapterFactoryTest {
17 | 
18 |     final String missingValue = "{}";
19 |     Gson gson;
20 | 
21 |     @Before
22 |     public void setUp() {
23 |         gson = new GsonBuilder()
24 |                 .registerTypeAdapterFactory(new JsonRequiredTypeAdapterFactory())
25 |                 .create();
26 |     }
27 | 
28 |     @Test
29 |     public void shouldThrowExceptionIfMissingFieldIsRequired() {
30 |         Exception error = null;
31 |         try {
32 |             gson.fromJson(missingValue, RequiredClass.class);
33 |         } catch (Exception e) {
34 |             error = e;
35 |         }
36 |         assertThat(error, notNullValue());
37 |         assertThat(error, instanceOf(JsonParseException.class));
38 |         assertThat(error.getMessage(), containsString("Missing required attribute value"));
39 |     }
40 | 
41 |     @Test
42 |     public void shouldNotThrowExceptionIfMissingFieldIsNotRequired() {
43 |         NotRequiredClass bean = null;
44 |         Exception error = null;
45 |         try {
46 |             bean = gson.fromJson(missingValue, NotRequiredClass.class);
47 |         } catch (Exception e) {
48 |             error = e;
49 |         }
50 |         assertThat(error, nullValue());
51 |         assertThat(bean, notNullValue());
52 |     }
53 | 
54 |     @SuppressWarnings("unused")
55 |     static class RequiredClass {
56 |         @JsonRequired
57 |         Object value;
58 |     }
59 | 
60 |     @SuppressWarnings("unused")
61 |     static class NotRequiredClass {
62 |         Object value;
63 |     }
64 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/GsonAdapter.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import com.auth0.android.request.JsonAdapter
 4 | import com.google.gson.Gson
 5 | import com.google.gson.TypeAdapter
 6 | import com.google.gson.reflect.TypeToken
 7 | import java.io.Reader
 8 | 
 9 | /**
10 |  * Implementation that deserializes <T> using the given Gson client.
11 |  */
12 | internal class GsonAdapter<T> private constructor(private val adapter: TypeAdapter<T>) :
13 |     JsonAdapter<T> {
14 | 
15 |     internal companion object {
16 |         fun forMap(gson: Gson = supplyDefaultGson()): GsonAdapter<Map<String, Any>> {
17 |             return GsonAdapter(object : TypeToken<Map<String, Any>>() {}, gson)
18 |         }
19 | 
20 |         @Suppress("UNCHECKED_CAST")
21 |         fun <T> forMapOf(
22 |             tClass: Class<T>,
23 |             gson: Gson = supplyDefaultGson()
24 |         ): GsonAdapter<Map<String, T>> {
25 |             val typeToken: TypeToken<Map<String, T>> =
26 |                 TypeToken.getParameterized(
27 |                     Map::class.java,
28 |                     String::class.java,
29 |                     tClass
30 |                 ) as TypeToken<Map<String, T>>
31 |             return GsonAdapter(typeToken, gson)
32 |         }
33 | 
34 |         @Suppress("UNCHECKED_CAST")
35 |         fun <T> forListOf(
36 |             tClass: Class<T>,
37 |             gson: Gson = supplyDefaultGson()
38 |         ): GsonAdapter<List<T>> {
39 |             val typeToken: TypeToken<List<T>> =
40 |                 TypeToken.getParameterized(List::class.java, tClass) as TypeToken<List<T>>
41 |             return GsonAdapter(typeToken, gson)
42 |         }
43 | 
44 |         private fun supplyDefaultGson() = GsonProvider.gson
45 |     }
46 | 
47 |     internal constructor(
48 |         tClass: Class<T>,
49 |         gson: Gson = supplyDefaultGson()
50 |     ) : this(gson.getAdapter(tClass))
51 | 
52 |     internal constructor(
53 |         tTypeToken: TypeToken<T>,
54 |         gson: Gson = supplyDefaultGson()
55 |     ) : this(gson.getAdapter(tTypeToken))
56 | 
57 |     override fun fromJson(reader: Reader): T {
58 |         return adapter.fromJson(reader)
59 |     }
60 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/AsymmetricSignatureVerifier.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.util.Base64;
 4 | 
 5 | import androidx.annotation.NonNull;
 6 | import androidx.annotation.Nullable;
 7 | 
 8 | import java.nio.charset.StandardCharsets;
 9 | import java.security.InvalidKeyException;
10 | import java.security.NoSuchAlgorithmException;
11 | import java.security.PublicKey;
12 | import java.security.Signature;
13 | import java.util.Collections;
14 | 
15 | /**
16 |  * Token signature verifier for RS256 algorithms.
17 |  */
18 | class AsymmetricSignatureVerifier extends SignatureVerifier {
19 | 
20 |     private Signature publicSignature;
21 | 
22 |     /**
23 |      * Creates a new instance of the verifier
24 |      *
25 |      * @param publicKey the public key to use for verification
26 |      * @throws InvalidKeyException if the public key provided is null or not of type RSA
27 |      */
28 |     AsymmetricSignatureVerifier(@Nullable PublicKey publicKey) throws InvalidKeyException {
29 |         super(Collections.singletonList("RS256"));
30 |         try {
31 |             publicSignature = Signature.getInstance("SHA256withRSA");
32 |             publicSignature.initVerify(publicKey);
33 |         } catch (NoSuchAlgorithmException ignored) {
34 |             //Safe to ignore: "SHA256withRSA" is available since API 1
35 |             //https://developer.android.com/reference/java/security/Signature.html
36 |         }
37 |     }
38 | 
39 |     @Override
40 |     protected void checkSignature(@NonNull String[] tokenParts) throws TokenValidationException {
41 |         String content = tokenParts[0] + "." + tokenParts[1];
42 |         byte[] contentBytes = content.getBytes(StandardCharsets.UTF_8);
43 |         boolean valid = false;
44 |         try {
45 |             byte[] signatureBytes = Base64.decode(tokenParts[2], Base64.URL_SAFE | Base64.NO_WRAP);
46 |             publicSignature.update(contentBytes);
47 |             valid = publicSignature.verify(signatureBytes);
48 |         } catch (Exception ignored) {
49 |             //safe to ignore: throws when the Signature object is not properly initialized
50 |         }
51 |         if (!valid) {
52 |             throw new InvalidIdTokenSignatureException();
53 |         }
54 |     }
55 | }
56 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/UserProfileMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import com.auth0.android.result.UserProfile;
 4 | 
 5 | import org.hamcrest.Description;
 6 | import org.hamcrest.Matcher;
 7 | 
 8 | import static org.hamcrest.Matchers.equalTo;
 9 | import static org.hamcrest.Matchers.isEmptyOrNullString;
10 | import static org.hamcrest.Matchers.not;
11 | 
12 | public class UserProfileMatcher extends AttributeMatcher<UserProfile> {
13 | 
14 |     private final Matcher<String> idMatcher;
15 |     private final Matcher<String> nameMatcher;
16 |     private final Matcher<String> nicknameMatcher;
17 |     private final Matcher<String> pictureMatcher;
18 | 
19 |     private UserProfileMatcher(Matcher<String> idMatcher, Matcher<String> nameMatcher, Matcher<String> nicknameMatcher, Matcher<String> pictureMatcher) {
20 |         this.idMatcher = idMatcher;
21 |         this.nameMatcher = nameMatcher;
22 |         this.nicknameMatcher = nicknameMatcher;
23 |         this.pictureMatcher = pictureMatcher;
24 |     }
25 | 
26 |     @Override
27 |     protected boolean matchesSafely(UserProfile profile, Description mismatchDescription) {
28 |         return performMatch(idMatcher, profile.getId(), mismatchDescription, "id")
29 |                 && performMatch(nameMatcher, profile.getName(), mismatchDescription, "name")
30 |                 && performMatch(nicknameMatcher, profile.getNickname(), mismatchDescription, "nickname")
31 |                 && performMatch(pictureMatcher, profile.getPictureURL(), mismatchDescription, "picture");
32 |     }
33 | 
34 |     @Override
35 |     public void describeTo(Description description) {
36 |         description.appendText("a normalized profile with ")
37 |                 .appendText("id: ").appendDescriptionOf(idMatcher).appendText(" ")
38 |                 .appendText("name: ").appendDescriptionOf(nameMatcher).appendText(" ")
39 |                 .appendText("nickname: ").appendDescriptionOf(nicknameMatcher).appendText(" ")
40 |                 .appendText("picture: ").appendDescriptionOf(pictureMatcher);
41 |     }
42 | 
43 |     public static Matcher<UserProfile> isNormalizedProfile(String id, String name, String nickname) {
44 |         return new UserProfileMatcher(equalTo(id), equalTo(name), equalTo(nickname), not(isEmptyOrNullString()));
45 |     }
46 | }
47 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/UserProfile.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import java.io.Serializable
 4 | import java.util.*
 5 | 
 6 | /**
 7 |  * Class that holds the information of a user's profile in Auth0.
 8 |  * Used both in [com.auth0.android.management.UsersAPIClient] and [com.auth0.android.authentication.AuthenticationAPIClient].
 9 |  */
10 | public class UserProfile(
11 |     private val id: String?,
12 |     public val name: String?,
13 |     public val nickname: String?,
14 |     public val pictureURL: String?,
15 |     public val email: String?,
16 |     public val isEmailVerified: Boolean?,
17 |     public val familyName: String?,
18 |     public val createdAt: Date?,
19 |     /**
20 |      * List of the identities from a Identity Provider associated to the user.
21 |      *
22 |      * @return a list of identity provider information.
23 |      */
24 |     private val identities: List<UserIdentity>?,
25 |     private val extraInfo: Map<String, Any>?,
26 |     private val userMetadata: Map<String, Any>?,
27 |     private val appMetadata: Map<String, Any>?,
28 |     public val givenName: String?
29 | ) : Serializable {
30 | 
31 |     /**
32 |      * Getter for the unique Identifier of the user. If this represents a Full User Profile (Management API) the 'id' field will be returned.
33 |      * If the value is not present, it will be considered a User Information and the id will be obtained from the 'sub' claim.
34 |      *
35 |      * @return the unique identifier of the user.
36 |      */
37 |     public fun getId(): String? {
38 |         if (id != null) {
39 |             return id
40 |         }
41 |         return if (getExtraInfo().containsKey("sub")) getExtraInfo()["sub"] as String? else null
42 |     }
43 | 
44 |     public fun getUserMetadata(): Map<String, Any> {
45 |         return userMetadata ?: emptyMap()
46 |     }
47 | 
48 |     public fun getAppMetadata(): Map<String, Any> {
49 |         return appMetadata ?: emptyMap()
50 |     }
51 | 
52 |     public fun getIdentities(): List<UserIdentity> {
53 |         return identities ?: emptyList()
54 |     }
55 | 
56 |     /**
57 |      * Returns extra information of the profile that is not part of the normalized profile
58 |      *
59 |      * @return a map with user's extra information found in the profile
60 |      */
61 |     public fun getExtraInfo(): Map<String, Any> {
62 |         return extraInfo?.toMap() ?: emptyMap()
63 |     }
64 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/CallbackHelper.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.net.Uri;
 4 | import android.util.Log;
 5 | import android.webkit.URLUtil;
 6 | 
 7 | import androidx.annotation.NonNull;
 8 | import androidx.annotation.Nullable;
 9 | 
10 | import java.util.Collections;
11 | import java.util.HashMap;
12 | import java.util.Map;
13 | 
14 | abstract class CallbackHelper {
15 | 
16 |     private static final String TAG = CallbackHelper.class.getSimpleName();
17 | 
18 |     /**
19 |      * Generates the callback Uri for the given domain.
20 |      *
21 |      * @return the callback Uri.
22 |      */
23 |     @Nullable
24 |     static String getCallbackUri(@NonNull String scheme, @NonNull String packageName, @NonNull String domain) {
25 |         if (!URLUtil.isValidUrl(domain)) {
26 |             Log.e(TAG, "The Domain is invalid and the Callback URI will not be set. You used: " + domain);
27 |             return null;
28 |         }
29 | 
30 |         Uri uri = Uri.parse(domain)
31 |                 .buildUpon()
32 |                 .scheme(scheme)
33 |                 .appendPath("android")
34 |                 .appendPath(packageName)
35 |                 .appendPath("callback")
36 |                 .build();
37 | 
38 |         Log.v(TAG, "The Callback URI is: " + uri);
39 |         return uri.toString();
40 |     }
41 | 
42 |     @NonNull
43 |     static Map<String, String> getValuesFromUri(@Nullable Uri uri) {
44 |         if (uri == null) {
45 |             return Collections.emptyMap();
46 |         }
47 |         return asMap(uri.getQuery() != null ? uri.getQuery() : uri.getFragment());
48 |     }
49 | 
50 |     private static Map<String, String> asMap(@Nullable String valueString) {
51 |         if (valueString == null) {
52 |             return new HashMap<>();
53 |         }
54 |         final String[] entries = valueString.length() > 0 ? valueString.split("&") : new String[]{};
55 |         Map<String, String> values = new HashMap<>(entries.length);
56 |         for (String entry : entries) {
57 |             int idx = entry.indexOf("=");
58 |             final String key = idx > 0 ? entry.substring(0, idx) : entry;
59 |             final String value = idx > 0 && entry.length() > idx + 1 ? entry.substring(idx + 1) : null;
60 |             if (value != null) {
61 |                 values.put(key, value);
62 |             }
63 |         }
64 |         return values;
65 |     }
66 | }


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/Feature Request.yml:
--------------------------------------------------------------------------------
 1 | name: 🧩 Feature request
 2 | description: Suggest an idea or a feature for this library
 3 | labels: ["feature request"]
 4 | 
 5 | body:
 6 |   - type: checkboxes
 7 |     id: checklist
 8 |     attributes:
 9 |       label: Checklist
10 |       options:
11 |         - label: I have looked into the [Readme](https://github.com/auth0/Auth0.Android#readme), [Examples](https://github.com/auth0/Auth0.Android/blob/main/EXAMPLES.md), and [FAQ](https://github.com/auth0/Auth0.Android/blob/main/FAQ.md) and have not found a suitable solution or answer.
12 |           required: true
13 |         - label: I have looked into the [API documentation](https://javadoc.io/doc/com.auth0.android/auth0/latest/index.html) and have not found a suitable solution or answer.
14 |           required: true
15 |         - label: I have searched the [issues](https://github.com/auth0/Auth0.Android/issues) and have not found a suitable solution or answer.
16 |           required: true
17 |         - label: I have searched the [Auth0 Community](https://community.auth0.com) forums and have not found a suitable solution or answer.
18 |           required: true
19 |         - label: I agree to the terms within the [Auth0 Code of Conduct](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md).
20 |           required: true
21 | 
22 |   - type: textarea
23 |     id: description
24 |     attributes:
25 |       label: Describe the problem you'd like to have solved
26 |       description: A clear and concise description of what the problem is.
27 |       placeholder: I'm always frustrated when...
28 |     validations:
29 |       required: true
30 | 
31 |   - type: textarea
32 |     id: ideal-solution
33 |     attributes:
34 |       label: Describe the ideal solution
35 |       description: A clear and concise description of what you want to happen.
36 |     validations:
37 |       required: true
38 | 
39 |   - type: textarea
40 |     id: alternatives-and-workarounds
41 |     attributes:
42 |       label: Alternatives and current workarounds
43 |       description: A clear and concise description of any alternatives you've considered or any workarounds that are currently in place.
44 |     validations:
45 |       required: false
46 | 
47 |   - type: textarea
48 |     id: additional-context
49 |     attributes:
50 |       label: Additional context
51 |       description: Add any other context or screenshots about the feature request here.
52 |     validations:
53 |       required: false
54 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/HttpUrlMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import okhttp3.HttpUrl;
 4 | 
 5 | import org.hamcrest.BaseMatcher;
 6 | import org.hamcrest.Description;
 7 | import org.hamcrest.Matcher;
 8 | 
 9 | import static org.hamcrest.CoreMatchers.any;
10 | import static org.hamcrest.CoreMatchers.is;
11 | import static org.hamcrest.collection.IsIterableContainingInOrder.contains;
12 | 
13 | public class HttpUrlMatcher extends BaseMatcher<HttpUrl> {
14 | 
15 |     private final Matcher<String> schemeMatcher;
16 |     private final Matcher<String> hostMatcher;
17 |     private final Matcher<Iterable<? extends String>> pathMatcher;
18 | 
19 |     private HttpUrlMatcher(Matcher<String> schemeMatcher, Matcher<String> hostMatcher, Matcher<Iterable<? extends String>> pathMatcher) {
20 |         this.schemeMatcher = schemeMatcher;
21 |         this.hostMatcher = hostMatcher;
22 |         this.pathMatcher = pathMatcher;
23 |     }
24 | 
25 |     public static HttpUrlMatcher hasScheme(String scheme) {
26 |         return new HttpUrlMatcher(is(scheme), any(String.class), null);
27 |     }
28 | 
29 |     public static HttpUrlMatcher hasHost(String host) {
30 |         return new HttpUrlMatcher(any(String.class), is(host), null);
31 |     }
32 | 
33 |     public static HttpUrlMatcher hasPath(String... path) {
34 |         return new HttpUrlMatcher(any(String.class), any(String.class), contains(path));
35 |     }
36 | 
37 |     @Override
38 |     public void describeTo(Description description) {
39 |         description.appendText("a HttpUrl with ")
40 |                 .appendText("scheme: ").appendDescriptionOf(schemeMatcher).appendText(" ")
41 |                 .appendText("host: ").appendDescriptionOf(hostMatcher).appendText(" ");
42 |         if (pathMatcher != null) {
43 |             description.appendText("path: ").appendDescriptionOf(pathMatcher);
44 |         }
45 |     }
46 | 
47 |     @Override
48 |     public boolean matches(Object item) {
49 |         HttpUrl httpUrl = (HttpUrl) item;
50 |         return httpUrl != null && hasScheme(httpUrl) && hasHost(httpUrl) && hasPath(httpUrl);
51 |     }
52 | 
53 |     private boolean hasScheme(HttpUrl url) {
54 |         return schemeMatcher.matches(url.scheme());
55 |     }
56 | 
57 |     private boolean hasHost(HttpUrl url) {
58 |         return hostMatcher.matches(url.host());
59 |     }
60 | 
61 |     private boolean hasPath(HttpUrl url) {
62 |         return pathMatcher == null || pathMatcher.matches(url.pathSegments());
63 |     }
64 | 
65 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/TLS12SocketFactory.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal;
 2 | 
 3 | import androidx.annotation.VisibleForTesting;
 4 | 
 5 | import java.io.IOException;
 6 | import java.net.InetAddress;
 7 | import java.net.Socket;
 8 | 
 9 | import javax.net.ssl.SSLSocket;
10 | import javax.net.ssl.SSLSocketFactory;
11 | 
12 | /**
13 |  * Enables TLS v1.2 when creating SSLSockets.
14 |  * <p/>
15 |  * For some reason, android supports TLS v1.2 from API 16, but enables it by
16 |  * default only from API 20.
17 |  * @link https://developer.android.com/reference/javax/net/ssl/SSLSocket.html
18 |  * @see SSLSocketFactory
19 |  */
20 | class TLS12SocketFactory extends SSLSocketFactory {
21 |     private static final String[] TLS_V12_ONLY = { "TLSv1.2" };
22 | 
23 |     @VisibleForTesting
24 |     private final SSLSocketFactory delegate;
25 | 
26 |     TLS12SocketFactory(SSLSocketFactory base) {
27 |         this.delegate = base;
28 |     }
29 | 
30 |     @Override
31 |     public String[] getDefaultCipherSuites() {
32 |         return delegate.getDefaultCipherSuites();
33 |     }
34 | 
35 |     @Override
36 |     public String[] getSupportedCipherSuites() {
37 |         return delegate.getSupportedCipherSuites();
38 |     }
39 | 
40 |     @Override
41 |     public Socket createSocket(Socket s, String host, int port, boolean autoClose) throws IOException {
42 |         return patch(delegate.createSocket(s, host, port, autoClose));
43 |     }
44 | 
45 |     @Override
46 |     public Socket createSocket(String host, int port) throws IOException {
47 |         return patch(delegate.createSocket(host, port));
48 |     }
49 | 
50 |     @Override
51 |     public Socket createSocket(String host, int port, InetAddress localHost, int localPort) throws IOException {
52 |         return patch(delegate.createSocket(host, port, localHost, localPort));
53 |     }
54 | 
55 |     @Override
56 |     public Socket createSocket(InetAddress host, int port) throws IOException {
57 |         return patch(delegate.createSocket(host, port));
58 |     }
59 | 
60 |     @Override
61 |     public Socket createSocket(InetAddress address, int port, InetAddress localAddress, int localPort) throws IOException {
62 |         return patch(delegate.createSocket(address, port, localAddress, localPort));
63 |     }
64 | 
65 |     private static Socket patch(Socket s) {
66 |         if (s instanceof SSLSocket) {
67 |             ((SSLSocket) s).setEnabledProtocols(TLS_V12_ONLY);
68 |         }
69 |         return s;
70 |     }
71 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/Storage.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage
 2 | 
 3 | /**
 4 |  * Represents a Storage of key-value data.
 5 |  * Supported classes are String, Long and Integer.
 6 |  */
 7 | public interface Storage {
 8 |     /**
 9 |      * Store a given value in the Storage.
10 |      *
11 |      * @param name  the name of the value to store.
12 |      * @param value the value to store. Can be null.
13 |      */
14 |     public fun store(name: String, value: Long?)
15 | 
16 |     /**
17 |      * Store a given value in the Storage.
18 |      *
19 |      * @param name  the name of the value to store.
20 |      * @param value the value to store. Can be null.
21 |      */
22 |     public fun store(name: String, value: Int?)
23 | 
24 |     /**
25 |      * Store a given value in the Storage.
26 |      *
27 |      * @param name  the name of the value to store.
28 |      * @param value the value to store. Can be null.
29 |      */
30 |     public fun store(name: String, value: String?)
31 | 
32 |     /**
33 |      * Store a given value in the Storage.
34 |      *
35 |      * @param name  the name of the value to store.
36 |      * @param value the value to store. Can be null.
37 |      */
38 |     public fun store(name: String, value: Boolean?)
39 | 
40 |     /**
41 |      * Retrieve a value from the Storage.
42 |      *
43 |      * @param name the name of the value to retrieve.
44 |      * @return the value that was previously saved. Can be null.
45 |      */
46 |     public fun retrieveLong(name: String): Long?
47 | 
48 |     /**
49 |      * Retrieve a value from the Storage.
50 |      *
51 |      * @param name the name of the value to retrieve.
52 |      * @return the value that was previously saved. Can be null.
53 |      */
54 |     public fun retrieveString(name: String): String?
55 | 
56 |     /**
57 |      * Retrieve a value from the Storage.
58 |      *
59 |      * @param name the name of the value to retrieve.
60 |      * @return the value that was previously saved. Can be null.
61 |      */
62 |     public fun retrieveInteger(name: String): Int?
63 | 
64 |     /**
65 |      * Retrieve a value from the Storage.
66 |      *
67 |      * @param name the name of the value to retrieve.
68 |      * @return the value that was previously saved. Can be null.
69 |      */
70 |     public fun retrieveBoolean(name: String): Boolean?
71 | 
72 |     /**
73 |      * Removes a value from the storage.
74 |      *
75 |      * @param name the name of the value to remove.
76 |      */
77 |     public fun remove(name: String)
78 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/Request.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import com.auth0.android.Auth0Exception
 4 | import com.auth0.android.callback.Callback
 5 | 
 6 | /**
 7 |  * Defines a request that can be started
 8 |  *
 9 |  * @param <T> the type this request will return on success.
10 |  * @param <U> the [Auth0Exception] type this request will return on failure.
11 | </U></T> */
12 | public interface Request<T, U : Auth0Exception> {
13 |     /**
14 |      * Performs an async HTTP request against Auth0 API
15 |      *
16 |      * @param callback called either on success or failure
17 |      */
18 |     public fun start(callback: Callback<T, U>)
19 | 
20 |     /**
21 |      * Performs an async HTTP request against Auth0 API inside a Coroutine
22 |      * This is a Coroutine that is exposed only for Kotlin.
23 |      *
24 |      * Note: This method was added after the interface was released.
25 |      * It is defined as a default method for compatibility reasons.
26 |      * From version 3.0 on, the method will be abstract and all implementations of this interface
27 |      * will have to provide their own implementation.
28 |      *
29 |      * The default implementation throws an [UnsupportedOperationException].
30 |      *
31 |      * @throws Auth0Exception on failure
32 |      */
33 |     @JvmSynthetic
34 |     @Throws(Auth0Exception::class)
35 |     public suspend fun await(): T {
36 |         throw UnsupportedOperationException("await")
37 |     }
38 | 
39 |     /**
40 |      * Executes the HTTP request against Auth0 API (blocking the current thread)
41 |      *
42 |      * @return the response on success
43 |      * @throws Auth0Exception on failure
44 |      */
45 |     @Throws(Auth0Exception::class)
46 |     public fun execute(): T
47 | 
48 |     /**
49 |      * Add parameters to the request as a Map of Object with the keys as String
50 |      *
51 |      * @param parameters to send with the request
52 |      * @return itself
53 |      */
54 |     public fun addParameters(parameters: Map<String, String>): Request<T, U>
55 | 
56 |     /**
57 |      * Add parameter to the request with a given name
58 |      *
59 |      * @param name  of the parameter
60 |      * @param value of the parameter
61 |      * @return itself
62 |      */
63 |     public fun addParameter(name: String, value: String): Request<T, U>
64 | 
65 |     /**
66 |      * Adds an additional header for the request
67 |      *
68 |      * @param name  of the header
69 |      * @param value of the header
70 |      * @return itself
71 |      */
72 |     public fun addHeader(name: String, value: String): Request<T, U>
73 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/LogoutManagerTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import com.auth0.android.Auth0;
 4 | import com.auth0.android.authentication.AuthenticationException;
 5 | import com.auth0.android.callback.Callback;
 6 | 
 7 | import org.junit.Before;
 8 | import org.junit.Test;
 9 | import org.junit.runner.RunWith;
10 | import org.mockito.ArgumentCaptor;
11 | import org.mockito.Mock;
12 | import org.mockito.MockitoAnnotations;
13 | import org.robolectric.RobolectricTestRunner;
14 | 
15 | import static org.hamcrest.CoreMatchers.is;
16 | import static org.hamcrest.CoreMatchers.notNullValue;
17 | import static org.hamcrest.MatcherAssert.assertThat;
18 | import static org.mockito.ArgumentMatchers.eq;
19 | import static org.mockito.Mockito.mock;
20 | import static org.mockito.Mockito.verify;
21 | import static org.mockito.Mockito.when;
22 | 
23 | 
24 | @RunWith(RobolectricTestRunner.class)
25 | public class LogoutManagerTest {
26 | 
27 |     @Mock
28 |     Auth0 account;
29 |     @Mock
30 |     Callback<Void, AuthenticationException> callback;
31 |     @Mock
32 |     CustomTabsOptions customTabsOptions;
33 | 
34 |     @Before
35 |     public void setUp() {
36 |         MockitoAnnotations.openMocks(this);
37 |     }
38 | 
39 |     @Test
40 |     public void shouldCallOnFailureWhenResumedWithCanceledResult() {
41 |         LogoutManager manager = new LogoutManager(account, callback, "https://auth0.com/android/my.app.name/callback", customTabsOptions, false, false);
42 |         AuthorizeResult result = mock(AuthorizeResult.class);
43 |         when(result.isCanceled()).thenReturn(true);
44 |         manager.resume(result);
45 |         ArgumentCaptor<AuthenticationException> exceptionCaptor = ArgumentCaptor.forClass(AuthenticationException.class);
46 |         verify(callback).onFailure(exceptionCaptor.capture());
47 |         assertThat(exceptionCaptor.getValue(), is(notNullValue()));
48 |         assertThat(exceptionCaptor.getValue().getCode(), is("a0.authentication_canceled"));
49 |         assertThat(exceptionCaptor.getValue().getDescription(), is("The user closed the browser app so the logout was cancelled."));
50 |     }
51 | 
52 |     @Test
53 |     public void shouldCallOnSuccessWhenResumedWithValidResult() {
54 |         LogoutManager manager = new LogoutManager(account, callback, "https://auth0.com/android/my.app.name/callback", customTabsOptions, false, false);
55 |         AuthorizeResult result = mock(AuthorizeResult.class);
56 |         when(result.isCanceled()).thenReturn(false);
57 |         manager.resume(result);
58 |         verify(callback).onSuccess(eq(null));
59 |     }
60 | 
61 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/AuthCallbackMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import android.app.Dialog;
 4 | 
 5 | import com.auth0.android.authentication.AuthenticationException;
 6 | import com.auth0.android.provider.AuthCallback;
 7 | import com.auth0.android.result.Credentials;
 8 | import com.jayway.awaitility.core.ConditionTimeoutException;
 9 | 
10 | import org.hamcrest.BaseMatcher;
11 | import org.hamcrest.Description;
12 | import org.hamcrest.Matcher;
13 | 
14 | import static com.jayway.awaitility.Awaitility.await;
15 | import static org.hamcrest.Matchers.is;
16 | import static org.hamcrest.Matchers.notNullValue;
17 | import static org.hamcrest.Matchers.nullValue;
18 | 
19 | public class AuthCallbackMatcher extends BaseMatcher<AuthCallback> {
20 |     private final Matcher<Credentials> payloadMatcher;
21 |     private final Matcher<AuthenticationException> errorMatcher;
22 |     private final Matcher<Dialog> dialogMatcher;
23 | 
24 |     public AuthCallbackMatcher(Matcher<Credentials> payloadMatcher, Matcher<AuthenticationException> errorMatcher, Matcher<Dialog> dialogMatcher) {
25 |         this.payloadMatcher = payloadMatcher;
26 |         this.errorMatcher = errorMatcher;
27 |         this.dialogMatcher = dialogMatcher;
28 |     }
29 | 
30 |     @Override
31 |     public boolean matches(Object item) {
32 |         MockAuthCallback callback = (MockAuthCallback) item;
33 |         try {
34 |             await().until(callback.credentials(), payloadMatcher);
35 |             await().until(callback.error(), errorMatcher);
36 |             await().until(callback.dialog(), dialogMatcher);
37 |             return true;
38 |         } catch (ConditionTimeoutException e) {
39 |             return false;
40 |         }
41 |     }
42 | 
43 |     @Override
44 |     public void describeTo(Description description) {
45 |         description
46 |                 .appendText("successful method be called");
47 |     }
48 | 
49 |     public static Matcher<AuthCallback> hasCredentials() {
50 |         return new AuthCallbackMatcher(is(notNullValue(Credentials.class)), is(nullValue(AuthenticationException.class)), is(nullValue(Dialog.class)));
51 |     }
52 | 
53 |     public static Matcher<AuthCallback> hasError() {
54 |         return new AuthCallbackMatcher(is(nullValue(Credentials.class)), is(notNullValue(AuthenticationException.class)), is(nullValue(Dialog.class)));
55 |     }
56 | 
57 |     public static Matcher<AuthCallback> hasErrorDialog() {
58 |         return new AuthCallbackMatcher(is(nullValue(Credentials.class)), is(nullValue(AuthenticationException.class)), is(notNullValue(Dialog.class)));
59 |     }
60 | }
61 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/util/Auth0UserAgent.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util
 2 | 
 3 | import android.os.Build
 4 | import android.text.TextUtils
 5 | import android.util.Base64
 6 | import androidx.annotation.VisibleForTesting
 7 | import com.auth0.android.auth0.BuildConfig
 8 | import com.auth0.android.request.internal.GsonProvider
 9 | import java.nio.charset.StandardCharsets
10 | import java.util.*
11 | 
12 | /**
13 |  * Responsible for building the custom user agent header data sent on requests to Auth0.
14 |  */
15 | public class Auth0UserAgent public constructor(
16 |     name: String = BuildConfig.LIBRARY_NAME,
17 |     version: String = BuildConfig.VERSION_NAME,
18 |     libraryVersion: String?
19 | ) {
20 |     public constructor() : this(BuildConfig.LIBRARY_NAME, BuildConfig.VERSION_NAME)
21 |     public constructor(
22 |         name: String = BuildConfig.LIBRARY_NAME,
23 |         version: String = BuildConfig.VERSION_NAME
24 |     ) : this(name, version, null)
25 | 
26 |     public val name: String = if (TextUtils.isEmpty(name)) BuildConfig.LIBRARY_NAME else name
27 |     public val version: String =
28 |         if (TextUtils.isEmpty(version)) BuildConfig.VERSION_NAME else version
29 |     public val libraryVersion: String?
30 |         get() = environment[LIBRARY_VERSION_KEY]
31 | 
32 |     @VisibleForTesting(otherwise = VisibleForTesting.PRIVATE)
33 |     public val environment: Map<String, String?>
34 |     public val value: String
35 | 
36 | 
37 |     public companion object {
38 |         public const val HEADER_NAME: String = "Auth0-Client"
39 |         private const val NAME_KEY = "name"
40 |         private const val VERSION_KEY = "version"
41 |         private const val ENV_KEY = "env"
42 |         private const val LIBRARY_VERSION_KEY = "auth0.android"
43 |         private const val ANDROID_KEY = "android"
44 |     }
45 | 
46 |     init {
47 |         val tmpEnv: MutableMap<String, String?> = HashMap()
48 |         tmpEnv[ANDROID_KEY] = Build.VERSION.SDK_INT.toString()
49 |         if (!TextUtils.isEmpty(libraryVersion)) {
50 |             tmpEnv[LIBRARY_VERSION_KEY] = libraryVersion
51 |         }
52 |         environment = Collections.unmodifiableMap(tmpEnv)
53 |         val values: MutableMap<String, Any> = HashMap()
54 |         values[NAME_KEY] = name
55 |         values[VERSION_KEY] = version
56 |         values[ENV_KEY] = environment
57 |         val json = GsonProvider.gson.toJson(values)
58 |         val bytes = json.toByteArray(StandardCharsets.UTF_8)
59 |         value = String(
60 |             Base64.encode(bytes, Base64.URL_SAFE or Base64.NO_WRAP),
61 |             StandardCharsets.UTF_8
62 |         )
63 |     }
64 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/CallbackMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import com.auth0.android.Auth0Exception;
 4 | import com.jayway.awaitility.core.ConditionTimeoutException;
 5 | 
 6 | import org.hamcrest.BaseMatcher;
 7 | import org.hamcrest.Description;
 8 | import org.hamcrest.Matcher;
 9 | 
10 | import static com.jayway.awaitility.Awaitility.await;
11 | import static org.hamcrest.Matchers.equalTo;
12 | import static org.hamcrest.Matchers.is;
13 | import static org.hamcrest.Matchers.isA;
14 | import static org.hamcrest.Matchers.notNullValue;
15 | import static org.hamcrest.Matchers.nullValue;
16 | 
17 | public class CallbackMatcher<T, U extends Auth0Exception> extends BaseMatcher<MockCallback<T, U>> {
18 |     private final Matcher<T> payloadMatcher;
19 |     private final Matcher<U> errorMatcher;
20 | 
21 |     public CallbackMatcher(Matcher<T> payloadMatcher, Matcher<U> errorMatcher) {
22 |         this.payloadMatcher = payloadMatcher;
23 |         this.errorMatcher = errorMatcher;
24 |     }
25 | 
26 |     @Override
27 |     @SuppressWarnings("unchecked")
28 |     public boolean matches(Object item) {
29 |         MockCallback<T, U> callback = (MockCallback<T, U>) item;
30 |         try {
31 |             await().until(callback.payload(), payloadMatcher);
32 |             await().until(callback.error(), errorMatcher);
33 |             return true;
34 |         } catch (ConditionTimeoutException e) {
35 |             return false;
36 |         }
37 |     }
38 | 
39 |     @Override
40 |     public void describeTo(Description description) {
41 |         description
42 |                 .appendText("successful method be called");
43 |     }
44 | 
45 |     public static <T, U extends Auth0Exception> Matcher<MockCallback<T, U>> hasPayloadOfType(Class<T> tClazz, Class<U> uClazz) {
46 |         return new CallbackMatcher<>(isA(tClazz), is(nullValue(uClazz)));
47 |     }
48 | 
49 |     public static <T, U extends Auth0Exception> Matcher<MockCallback<T, U>> hasPayload(T payload, Class<U> uClazz) {
50 |         return new CallbackMatcher<>(equalTo(payload), is(nullValue(uClazz)));
51 |     }
52 | 
53 |     public static <T, U extends Auth0Exception> Matcher<MockCallback<T, U>> hasNoPayloadOfType(Class<T> tClazz, Class<U> uClazz) {
54 |         return new CallbackMatcher<>(is(nullValue(tClazz)), is(notNullValue(uClazz)));
55 |     }
56 | 
57 |     public static <U extends Auth0Exception> Matcher<MockCallback<Void, U>> hasNoError(Class<U> uClazz) {
58 |         return new CallbackMatcher<>(is(nullValue(Void.class)), is(nullValue(uClazz)));
59 |     }
60 | 
61 |     public static <U extends Auth0Exception> Matcher<MockCallback<Void, U>> hasError(Class<U> uClazz) {
62 |         return new CallbackMatcher<>(is(nullValue(Void.class)), is(notNullValue(uClazz)));
63 |     }
64 | }
65 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/AuthorizeResult.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.app.Activity;
 4 | import android.content.Intent;
 5 | import android.net.Uri;
 6 | import android.util.Log;
 7 | 
 8 | import androidx.annotation.Nullable;
 9 | 
10 | class AuthorizeResult {
11 | 
12 |     private static final String TAG = AuthorizeResult.class.getSimpleName();
13 |     private static final int MISSING_REQUEST_CODE = -100;
14 |     private final int requestCode;
15 |     private final int resultCode;
16 |     private final Intent intent;
17 | 
18 |     /**
19 |      * Wrapper for data received in OnActivityResult / OnNewIntent methods.
20 |      *
21 |      * @param requestCode the response request code
22 |      * @param resultCode  the response result code
23 |      * @param intent      the response intent.
24 |      */
25 |     public AuthorizeResult(int requestCode, int resultCode, @Nullable Intent intent) {
26 |         this.intent = intent;
27 |         this.requestCode = requestCode;
28 |         this.resultCode = resultCode;
29 |     }
30 | 
31 |     /**
32 |      * Wrapper for data received in OnActivityResult / OnNewIntent methods.
33 |      *
34 |      * @param intent the response intent.
35 |      */
36 |     public AuthorizeResult(@Nullable Intent intent) {
37 |         this.intent = intent;
38 |         this.requestCode = MISSING_REQUEST_CODE;
39 |         this.resultCode = getIntentData() != null ? Activity.RESULT_OK : Activity.RESULT_CANCELED;
40 |     }
41 | 
42 |     /**
43 |      * Checks if the received data is valid and can be parsed.
44 |      *
45 |      * @param expectedRequestCode the request code this activity is expecting to receive
46 |      * @return whether if the received uri data can be parsed or not.
47 |      */
48 |     public boolean isValid(int expectedRequestCode) {
49 |         boolean validRequestCode = requestCode == MISSING_REQUEST_CODE || requestCode == expectedRequestCode;
50 |         boolean validResultCode = isCanceled() || resultCode == Activity.RESULT_OK;
51 |         if (validRequestCode && validResultCode) {
52 |             //A 'user canceled' state is also a valid scenario
53 |             return true;
54 |         }
55 |         Log.d(TAG, "Result is invalid: Either the received Intent is null or the Request Code doesn't match the expected one.");
56 |         return false;
57 |     }
58 | 
59 |     /**
60 |      * Checks whether the result belongs to a canceled authentication
61 |      *
62 |      * @return true if the result is from a canceled authentication. False otherwise.
63 |      */
64 |     public boolean isCanceled() {
65 |         return resultCode == Activity.RESULT_CANCELED && intent != null && getIntentData() == null;
66 |     }
67 | 
68 |     @Nullable
69 |     public Uri getIntentData() {
70 |         return intent == null ? null : intent.getData();
71 |     }
72 | 
73 | }
74 | 


--------------------------------------------------------------------------------
/auth0/src/test/resources/profile_full.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "email": "info@auth0.com",
 3 |   "picture": "https://secure.gravatar.com/avatar/cfacbe113a96fdfc85134534771d88b4?s=480&r=pg&d=https%3A%2F%2Fssl.gstatic.com%2Fs2%2Fprofiles%2Fimages%2Fsilhouette80.png",
 4 |   "name": "info @ auth0",
 5 |   "nickname": "a0",
 6 |   "username": "auth0",
 7 |   "given_name": "John",
 8 |   "family_name": "Foobar",
 9 |   "app_metadata": {
10 |     "role": "admin",
11 |     "tier": 2,
12 |     "blocked": false
13 |   },
14 |   "multifactor": [
15 |     "google-authenticator"
16 |   ],
17 |   "user_metadata": {
18 |     "first_name": "Info",
19 |     "last_name": "Auth0"
20 |   },
21 |   "email_verified": false,
22 |   "clientID": "lEqU5MhUrbyQHSVWjZSTCBUFABLbJAS3",
23 |   "user_id": "auth0|1234567890",
24 |   "identities": [
25 |     {
26 |       "user_id": "1234567890",
27 |       "provider": "auth0",
28 |       "connection": "Username-Password-Authentication",
29 |       "isSocial": false
30 |     },
31 |     {
32 |       "profileData": {
33 |         "name": "Foobar John",
34 |         "email": "cs.auth0@gmail.com",
35 |         "given_name": "John",
36 |         "family_name": "Foobar",
37 |         "gender": "male",
38 |         "picture": "https://fbcdn-profile-a.akamaihd.net/hprofile-ak-xpf1/v/t1.0-1/c15.0.50.50/p50x50/10354686_10150004552801856_220367501106153455_n.jpg?oh=e0b37ad2914032931c273619126878aa&oe=56496A2F&__gda__=1447695355_10ff74ec6ef8e26e46c4751a34c49bd0",
39 |         "age_range": {
40 |           "min": 21
41 |         },
42 |         "context": {
43 |           "mutual_likes": {
44 |             "data": [],
45 |             "summary": {
46 |               "total_count": 0
47 |             }
48 |           },
49 |           "id": "dXNlcl9jb250ZAXh0OgGQrD9tBkdCdc9yZCEuMNLb30EfjMBifT2tw1ZA0ZD"
50 |         },
51 |         "devices": [
52 |           {
53 |             "os": "Android"
54 |           }
55 |         ],
56 |         "updated_time": "2014-09-23T18:26:31+0000",
57 |         "installed": true,
58 |         "is_verified": false,
59 |         "link": "http://www.facebook.com/100007950452676",
60 |         "locale": "en_US",
61 |         "name_format": "{first} {last}",
62 |         "timezone": -3,
63 |         "third_party_id": "tQc5Y4aHE7Lu7fBQo5IB5OI2G6s",
64 |         "verified": true,
65 |         "email_verified": true
66 |       },
67 |       "access_token": "CAAHmNzUbD0eIBAOv4JlkCgMtfcvhjdNb4r9R39coDs3Dog33pgZBquVvUpRiphjZBHnU6TpXRMA5GLReamUwQ1AFl5UrjeksDYAD3Trq4SUxpGKTFuB7KxYhcjzJQxyZCoZBzEpNDkYrwo4tPgShBhCfhugO7yZCzdcgPDt2Oyu5hy8ROqZBfmjYIKKl8yhDbiSgH7Np9nJ9yeWqE9wzj8ZAKRMkHoHZCXb4zqWLxKfQTRG4PzM3fv3K",
68 |       "provider": "facebook",
69 |       "user_id": "999997950999976",
70 |       "connection": "facebook",
71 |       "isSocial": true
72 |     }
73 |   ],
74 |   "created_at": "2014-07-06T18:33:49.005Z",
75 |   "updated_at": "2016-06-04T20:43:53.486Z",
76 |   "global_client_id": "QaXhznFbjTaQbU5"
77 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/ServerResponseTest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import org.junit.Assert.assertFalse
 4 | import org.junit.Assert.assertTrue
 5 | import org.junit.Test
 6 | import org.mockito.Mockito.mock
 7 | import java.io.InputStream
 8 | 
 9 | public class ServerResponseTest {
10 | 
11 |     @Test
12 |     public fun shouldDetectSuccessfulResponse() {
13 |         val responseSuccess = ServerResponse(
14 |             200,
15 |             mock(InputStream::class.java),
16 |             emptyMap()
17 |         )
18 |         val responseNoContent = ServerResponse(
19 |             204,
20 |             mock(InputStream::class.java),
21 |             emptyMap()
22 |         )
23 |         assertTrue(responseSuccess.isSuccess())
24 |         assertTrue(responseNoContent.isSuccess())
25 |     }
26 | 
27 |     @Test
28 |     public fun shouldDetectFailedResponse() {
29 |         val responseMultipleChoices = ServerResponse(
30 |             300,
31 |             mock(InputStream::class.java),
32 |             emptyMap()
33 |         )
34 |         val responseUnauthorized = ServerResponse(
35 |             401,
36 |             mock(InputStream::class.java),
37 |             emptyMap()
38 |         )
39 |         assertFalse(responseMultipleChoices.isSuccess())
40 |         assertFalse(responseUnauthorized.isSuccess())
41 |     }
42 | 
43 |     @Test
44 |     public fun shouldDetectJsonContentHeader() {
45 |         val responseMixed = ServerResponse(
46 |             200,
47 |             mock(InputStream::class.java),
48 |             mapOf("Content-Type" to listOf("application/json"))
49 |         )
50 |         val responseMixedCombined = ServerResponse(
51 |             200,
52 |             mock(InputStream::class.java),
53 |             mapOf("Content-Type" to listOf("application/json; charset=UTF-8"))
54 |         )
55 |         val responseLower = ServerResponse(
56 |             200,
57 |             mock(InputStream::class.java),
58 |             mapOf("content-type" to listOf("application/json"))
59 |         )
60 |         val responseUpper = ServerResponse(
61 |             200,
62 |             mock(InputStream::class.java),
63 |             mapOf("CONTENT-TYPE" to listOf("application/json"))
64 |         )
65 |         val responseNotJSON = ServerResponse(
66 |             200,
67 |             mock(InputStream::class.java),
68 |             mapOf("CONTENT-TYPE" to listOf("text/html"))
69 |         )
70 |         val responseEmpty = ServerResponse(
71 |             200,
72 |             mock(InputStream::class.java),
73 |             mapOf()
74 |         )
75 | 
76 |         assertTrue(responseMixed.isJson())
77 |         assertTrue(responseMixedCombined.isJson())
78 |         assertTrue(responseLower.isJson())
79 |         assertTrue(responseUpper.isJson())
80 |         assertFalse(responseNotJSON.isJson())
81 |         assertFalse(responseEmpty.isJson())
82 |     }
83 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/CredentialsDeserializerTest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import com.auth0.android.request.internal.GsonProvider.formatDate
 4 | import com.auth0.android.result.Credentials
 5 | import com.auth0.android.result.CredentialsMock
 6 | import com.google.gson.Gson
 7 | import org.hamcrest.CoreMatchers
 8 | import org.hamcrest.MatcherAssert
 9 | import org.hamcrest.Matchers
10 | import org.hamcrest.core.Is
11 | import org.junit.Before
12 | import org.junit.Test
13 | import java.io.FileReader
14 | import java.util.*
15 | 
16 | public class CredentialsDeserializerTest {
17 |     private lateinit var gson: Gson
18 | 
19 |     @Before
20 |     public fun setUp() {
21 |         val deserializer = CredentialsDeserializerMock()
22 |         gson = GsonProvider.gson.newBuilder()
23 |             .registerTypeAdapter(Credentials::class.java, deserializer)
24 |             .create()
25 |     }
26 | 
27 |     @Test
28 |     @Throws(Exception::class)
29 |     public fun shouldSetExpiresAtFromExpiresIn() {
30 |         val credentials = gson.getAdapter(
31 |             Credentials::class.java
32 |         ).fromJson(FileReader(OPENID_CREDENTIALS))
33 |         MatcherAssert.assertThat(credentials.expiresAt, Is.`is`(CoreMatchers.notNullValue()))
34 |         val expiresAt = credentials.expiresAt.time.toDouble()
35 |         val expectedExpiresAt = (CredentialsMock.CURRENT_TIME_MS + 86000 * 1000).toDouble()
36 |         MatcherAssert.assertThat(expiresAt, Is.`is`(Matchers.closeTo(expectedExpiresAt, 1.0)))
37 |     }
38 | 
39 |     @Test
40 |     @Throws(Exception::class)
41 |     public fun shouldSetExpiresInFromExpiresAt() {
42 |         val cal = Calendar.getInstance()
43 |         cal.add(Calendar.DAY_OF_YEAR, 7)
44 |         val exp = cal.time
45 |         val credentials = gson.getAdapter(
46 |             Credentials::class.java
47 |         ).fromJson(generateExpiresAtCredentialsJSON(exp))
48 |         //The hardcoded value comes from the JSON file
49 |         MatcherAssert.assertThat(credentials.expiresAt, Is.`is`(CoreMatchers.notNullValue()))
50 |         val expiresAt = credentials.expiresAt.time.toDouble()
51 |         val expectedExpiresAt = exp.time.toDouble()
52 |         MatcherAssert.assertThat(expiresAt, Is.`is`(Matchers.closeTo(expectedExpiresAt, 1.0)))
53 |     }
54 | 
55 |     private fun generateExpiresAtCredentialsJSON(expiresAt: Date): String {
56 |         return """
57 |             {
58 |                 "access_token": "s6GS5FGJN2jfd4l6",
59 |                 "id_token": "s6GS5FGJN2jfd4l6",
60 |                 "token_type": "bearer",
61 |                 "expires_in": 86000,
62 |                 "expires_at": "${formatDate(expiresAt)}"
63 |             }
64 |             """.trimIndent()
65 |     }
66 | 
67 |     private companion object {
68 |         private const val OPENID_CREDENTIALS = "src/test/resources/credentials_openid.json"
69 |     }
70 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/authentication/storage/SharedPreferencesStorage.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.authentication.storage
 2 | 
 3 | import android.content.Context
 4 | import android.content.SharedPreferences
 5 | import android.text.TextUtils
 6 | 
 7 | /**
 8 |  * An implementation of [Storage] that uses [android.content.SharedPreferences] in Context.MODE_PRIVATE to store the values.
 9 |  *
10 |  * @param context               a valid context
11 |  * @param sharedPreferencesName the preferences file name
12 |  */
13 | public class SharedPreferencesStorage @JvmOverloads constructor(
14 |     context: Context,
15 |     sharedPreferencesName: String = SHARED_PREFERENCES_NAME
16 | ) : Storage {
17 |     private val sp: SharedPreferences
18 |     override fun store(name: String, value: Long?) {
19 |         if (value == null) {
20 |             sp.edit().remove(name).apply()
21 |         } else {
22 |             sp.edit().putLong(name, value).apply()
23 |         }
24 |     }
25 | 
26 |     override fun store(name: String, value: Int?) {
27 |         if (value == null) {
28 |             sp.edit().remove(name).apply()
29 |         } else {
30 |             sp.edit().putInt(name, value).apply()
31 |         }
32 |     }
33 | 
34 |     override fun store(name: String, value: String?) {
35 |         if (value == null) {
36 |             sp.edit().remove(name).apply()
37 |         } else {
38 |             sp.edit().putString(name, value).apply()
39 |         }
40 |     }
41 | 
42 |     override fun store(name: String, value: Boolean?) {
43 |         if (value == null) {
44 |             sp.edit().remove(name).apply()
45 |         } else {
46 |             sp.edit().putBoolean(name, value).apply()
47 |         }
48 |     }
49 | 
50 |     override fun retrieveLong(name: String): Long? {
51 |         return if (!sp.contains(name)) {
52 |             null
53 |         } else sp.getLong(name, 0)
54 |     }
55 | 
56 |     override fun retrieveString(name: String): String? {
57 |         return if (!sp.contains(name)) {
58 |             null
59 |         } else sp.getString(name, null)
60 |     }
61 | 
62 |     override fun retrieveInteger(name: String): Int? {
63 |         return if (!sp.contains(name)) {
64 |             null
65 |         } else sp.getInt(name, 0)
66 |     }
67 | 
68 |     override fun retrieveBoolean(name: String): Boolean? {
69 |         return if (!sp.contains(name)) {
70 |             null
71 |         } else sp.getBoolean(name, false)
72 |     }
73 | 
74 |     override fun remove(name: String) {
75 |         sp.edit().remove(name).apply()
76 |     }
77 | 
78 |     private companion object {
79 |         private const val SHARED_PREFERENCES_NAME = "com.auth0.authentication.storage"
80 |     }
81 | 
82 |     init {
83 |         require(!TextUtils.isEmpty(sharedPreferencesName)) { "The SharedPreferences name is invalid." }
84 |         sp = context.getSharedPreferences(sharedPreferencesName, Context.MODE_PRIVATE)
85 |     }
86 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/AuthenticationRequest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request
 2 | 
 3 | import com.auth0.android.Auth0
 4 | import com.auth0.android.authentication.AuthenticationException
 5 | import com.auth0.android.callback.Callback
 6 | import com.auth0.android.result.Credentials
 7 | 
 8 | /**
 9 |  * Request to authenticate a user with Auth0 Authentication API
10 |  */
11 | public interface AuthenticationRequest : Request<Credentials, AuthenticationException> {
12 |     /**
13 |      * Sets the 'grant_type' parameter
14 |      *
15 |      * @param grantType grant type
16 |      * @return itself
17 |      */
18 |     public fun setGrantType(grantType: String): AuthenticationRequest
19 | 
20 |     /**
21 |      * Sets the 'connection' parameter
22 |      *
23 |      * @param connection name of the connection
24 |      * @return itself
25 |      */
26 |     public fun setConnection(connection: String): AuthenticationRequest
27 | 
28 |     /**
29 |      * Sets the 'realm' parameter. A realm identifies the host against which the authentication will be made, and usually helps to know which username and password to use.
30 |      *
31 |      * @param realm name of the realm to use.
32 |      * @return itself
33 |      */
34 |     public fun setRealm(realm: String): AuthenticationRequest
35 | 
36 |     /**
37 |      * Sets the 'scope' parameter.
38 |      *
39 |      * @param scope a scope value
40 |      * @return itself
41 |      */
42 |     public fun setScope(scope: String): AuthenticationRequest
43 | 
44 |     /**
45 |      * Sets the 'audience' parameter.
46 |      *
47 |      * @param audience an audience value
48 |      * @return itself
49 |      */
50 |     public fun setAudience(audience: String): AuthenticationRequest
51 | 
52 |     /**
53 |      * Calling this method will enable validating the claims in the ID Token.
54 |      * This method is mandatory to be called and will be made as default in the next major.
55 |      * The issuer and leeway can be customized using [AuthenticationRequest.withIdTokenVerificationIssuer]
56 |      * and [AuthenticationRequest.withIdTokenVerificationLeeway] respectively.
57 |      */
58 |     public fun validateClaims(): AuthenticationRequest
59 | 
60 |     /**
61 |      * Set the leeway or clock skew to be used for ID Token verification.
62 |      * Defaults to 60 seconds.
63 |      *
64 |      * @param leeway to use for ID token verification, in seconds.
65 |      * @return the current builder instance
66 |      */
67 |     public fun withIdTokenVerificationLeeway(leeway: Int): AuthenticationRequest
68 | 
69 |     /**
70 |      * Set the expected issuer to be used for ID Token verification.
71 |      * Defaults to the value returned by [Auth0.getDomainUrl].
72 |      *
73 |      * @param issuer to use for ID token verification.
74 |      * @return the current builder instance
75 |      */
76 |     public fun withIdTokenVerificationIssuer(issuer: String): AuthenticationRequest
77 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/CredentialsDeserializer.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import androidx.annotation.VisibleForTesting
 4 | import com.auth0.android.result.Credentials
 5 | import com.google.gson.JsonDeserializationContext
 6 | import com.google.gson.JsonDeserializer
 7 | import com.google.gson.JsonElement
 8 | import com.google.gson.JsonParseException
 9 | import java.lang.reflect.Type
10 | import java.util.*
11 | 
12 | internal open class CredentialsDeserializer : JsonDeserializer<Credentials> {
13 |     @Throws(JsonParseException::class)
14 |     override fun deserialize(
15 |         json: JsonElement,
16 |         typeOfT: Type,
17 |         context: JsonDeserializationContext
18 |     ): Credentials {
19 |         if (!json.isJsonObject || json.isJsonNull || json.asJsonObject.entrySet().isEmpty()) {
20 |             throw JsonParseException("credentials json is not a valid json object")
21 |         }
22 |         val jsonObject = json.asJsonObject
23 |         val idToken = context.deserialize<String>(jsonObject.remove("id_token"), String::class.java)
24 |         val accessToken =
25 |             context.deserialize<String>(jsonObject.remove("access_token"), String::class.java)
26 |         val type = context.deserialize<String>(jsonObject.remove("token_type"), String::class.java)
27 |         val refreshToken =
28 |             context.deserialize<String>(jsonObject.remove("refresh_token"), String::class.java)
29 |         val expiresIn = context.deserialize<Long>(jsonObject.remove("expires_in"), Long::class.java)
30 |         val scope = context.deserialize<String>(jsonObject.remove("scope"), String::class.java)
31 |         val recoveryCode =
32 |             context.deserialize<String>(jsonObject.remove("recovery_code"), String::class.java)
33 |         var expiresAt = context.deserialize<Date>(jsonObject.remove("expires_at"), Date::class.java)
34 |         if (expiresAt == null && expiresIn != null) {
35 |             expiresAt = Date(currentTimeInMillis + expiresIn * 1000)
36 |         }
37 |         return createCredentials(
38 |             idToken,
39 |             accessToken,
40 |             type,
41 |             refreshToken,
42 |             expiresAt,
43 |             scope,
44 |             recoveryCode
45 |         )
46 |     }
47 | 
48 |     @get:VisibleForTesting
49 |     open val currentTimeInMillis: Long
50 |         get() = System.currentTimeMillis()
51 | 
52 |     @VisibleForTesting
53 |     open fun createCredentials(
54 |         idToken: String,
55 |         accessToken: String,
56 |         type: String,
57 |         refreshToken: String?,
58 |         expiresAt: Date,
59 |         scope: String?,
60 |         recoveryCode: String?
61 |     ): Credentials {
62 |         val credentials = Credentials(
63 |             idToken, accessToken, type, refreshToken, expiresAt, scope
64 |         )
65 |         credentials.recoveryCode = recoveryCode
66 |         return credentials
67 |     }
68 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/LogoutManager.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider
 2 | 
 3 | import android.content.Context
 4 | import android.net.Uri
 5 | import android.util.Log
 6 | import com.auth0.android.Auth0
 7 | import com.auth0.android.authentication.AuthenticationException
 8 | import com.auth0.android.callback.Callback
 9 | import java.util.*
10 | 
11 | internal class LogoutManager(
12 |     private val account: Auth0,
13 |     private val callback: Callback<Void?, AuthenticationException>,
14 |     returnToUrl: String,
15 |     ctOptions: CustomTabsOptions,
16 |     federated: Boolean = false,
17 |     private val launchAsTwa: Boolean = false,
18 | ) : ResumableManager() {
19 |     private val parameters: MutableMap<String, String>
20 |     private val ctOptions: CustomTabsOptions
21 |     fun startLogout(context: Context) {
22 |         addClientParameters(parameters)
23 |         val uri = buildLogoutUri()
24 |         AuthenticationActivity.authenticateUsingBrowser(context, uri, launchAsTwa, ctOptions)
25 |     }
26 | 
27 |     public override fun resume(result: AuthorizeResult): Boolean {
28 |         if (result.isCanceled) {
29 |             val exception = AuthenticationException(
30 |                 AuthenticationException.ERROR_VALUE_AUTHENTICATION_CANCELED,
31 |                 "The user closed the browser app so the logout was cancelled."
32 |             )
33 |             callback.onFailure(exception)
34 |         } else {
35 |             callback.onSuccess(null)
36 |         }
37 |         return true
38 |     }
39 | 
40 |     override fun failure(exception: AuthenticationException) {
41 |         callback.onFailure(exception)
42 |     }
43 | 
44 |     private fun buildLogoutUri(): Uri {
45 |         val logoutUri = Uri.parse(account.logoutUrl)
46 |         val builder = logoutUri.buildUpon()
47 |         for ((key, value) in parameters) {
48 |             builder.appendQueryParameter(key, value)
49 |         }
50 |         val uri = builder.build()
51 |         Log.d(TAG, "Using the following Logout URI: $uri")
52 |         return uri
53 |     }
54 | 
55 |     private fun addClientParameters(parameters: MutableMap<String, String>) {
56 |         parameters[KEY_USER_AGENT] = account.auth0UserAgent.value
57 |         parameters[KEY_CLIENT_ID] = account.clientId
58 |     }
59 | 
60 |     companion object {
61 |         private val TAG = LogoutManager::class.java.simpleName
62 |         private const val KEY_CLIENT_ID = "client_id"
63 |         private const val KEY_USER_AGENT = "auth0Client"
64 |         private const val KEY_RETURN_TO_URL = "returnTo"
65 |         private const val KEY_FEDERATED = "federated"
66 |     }
67 | 
68 |     init {
69 |         parameters = HashMap()
70 |         parameters[KEY_RETURN_TO_URL] = returnToUrl
71 |         if (federated) {
72 |             // null or empty values are not included in the request
73 |             parameters[KEY_FEDERATED] = "1"
74 |         }
75 |         this.ctOptions = ctOptions
76 |     }
77 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/AuthenticationCallbackMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import com.auth0.android.authentication.AuthenticationException;
 4 | import com.auth0.android.callback.AuthenticationCallback;
 5 | import com.jayway.awaitility.core.ConditionTimeoutException;
 6 | 
 7 | import org.hamcrest.BaseMatcher;
 8 | import org.hamcrest.Description;
 9 | import org.hamcrest.Matcher;
10 | 
11 | import static com.jayway.awaitility.Awaitility.await;
12 | import static org.hamcrest.Matchers.equalTo;
13 | import static org.hamcrest.Matchers.is;
14 | import static org.hamcrest.Matchers.isA;
15 | import static org.hamcrest.Matchers.notNullValue;
16 | import static org.hamcrest.Matchers.nullValue;
17 | 
18 | public class AuthenticationCallbackMatcher<T> extends BaseMatcher<AuthenticationCallback<T>> {
19 |     private final Matcher<T> payloadMatcher;
20 |     private final Matcher<AuthenticationException> errorMatcher;
21 | 
22 |     public AuthenticationCallbackMatcher(Matcher<T> payloadMatcher, Matcher<AuthenticationException> errorMatcher) {
23 |         this.payloadMatcher = payloadMatcher;
24 |         this.errorMatcher = errorMatcher;
25 |     }
26 | 
27 |     @Override
28 |     @SuppressWarnings("unchecked")
29 |     public boolean matches(Object item) {
30 |         MockAuthenticationCallback<T> callback = (MockAuthenticationCallback<T>) item;
31 |         try {
32 |             await().until(callback.payload(), payloadMatcher);
33 |             await().until(callback.error(), errorMatcher);
34 |             return true;
35 |         } catch (ConditionTimeoutException e) {
36 |             return false;
37 |         }
38 |     }
39 | 
40 |     @Override
41 |     public void describeTo(Description description) {
42 |         description
43 |                 .appendText("successful method be called");
44 |     }
45 | 
46 |     public static <T> Matcher<AuthenticationCallback<T>> hasPayloadOfType(Class<T> tClazz) {
47 |         return new AuthenticationCallbackMatcher<>(isA(tClazz), is(nullValue(AuthenticationException.class)));
48 |     }
49 | 
50 |     public static <T> Matcher<AuthenticationCallback<T>> hasPayload(T payload) {
51 |         return new AuthenticationCallbackMatcher<>(equalTo(payload), is(nullValue(AuthenticationException.class)));
52 |     }
53 | 
54 |     public static <T> Matcher<AuthenticationCallback<T>> hasNoPayloadOfType(Class<T> tClazz) {
55 |         return new AuthenticationCallbackMatcher<>(is(nullValue(tClazz)), is(notNullValue(AuthenticationException.class)));
56 |     }
57 | 
58 |     public static Matcher<AuthenticationCallback<Void>> hasNoError() {
59 |         return new AuthenticationCallbackMatcher<>(is(nullValue(Void.class)), is(nullValue(AuthenticationException.class)));
60 |     }
61 | 
62 |     public static <T> Matcher<AuthenticationCallback<T>> hasError(Class<T> tClazz) {
63 |         return new AuthenticationCallbackMatcher<>(is(nullValue(tClazz)), is(notNullValue(AuthenticationException.class)));
64 |     }
65 | }
66 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/UserProfileDeserializer.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal;
 2 | 
 3 | import com.auth0.android.result.UserIdentity;
 4 | import com.auth0.android.result.UserProfile;
 5 | import com.google.gson.Gson;
 6 | import com.google.gson.JsonDeserializationContext;
 7 | import com.google.gson.JsonDeserializer;
 8 | import com.google.gson.JsonElement;
 9 | import com.google.gson.JsonObject;
10 | import com.google.gson.JsonParseException;
11 | import com.google.gson.reflect.TypeToken;
12 | 
13 | import java.lang.reflect.Type;
14 | import java.util.Date;
15 | import java.util.List;
16 | import java.util.Map;
17 | 
18 | class UserProfileDeserializer implements JsonDeserializer<UserProfile> {
19 | 
20 |     private final Gson iso8601DateGson;
21 | 
22 |     public UserProfileDeserializer() {
23 |         this.iso8601DateGson = new Gson();
24 |     }
25 | 
26 |     @Override
27 |     public UserProfile deserialize(JsonElement json, Type typeOfT, JsonDeserializationContext context) throws JsonParseException {
28 |         if (!json.isJsonObject() || json.isJsonNull() || json.getAsJsonObject().entrySet().isEmpty()) {
29 |             throw new JsonParseException("user profile json is not a valid json object");
30 |         }
31 | 
32 |         JsonObject object = json.getAsJsonObject();
33 |         final String id = context.deserialize(object.remove("user_id"), String.class);
34 |         final String name = context.deserialize(object.remove("name"), String.class);
35 |         final String nickname = context.deserialize(object.remove("nickname"), String.class);
36 |         final String picture = context.deserialize(object.remove("picture"), String.class);
37 | 
38 |         final String email = context.deserialize(object.remove("email"), String.class);
39 |         final String givenName = context.deserialize(object.remove("given_name"), String.class);
40 |         final String familyName = context.deserialize(object.remove("family_name"), String.class);
41 |         final Boolean emailVerified = object.has("email_verified") ? context.<Boolean>deserialize(object.remove("email_verified"), Boolean.class) : false;
42 |         final Date createdAt = iso8601DateGson.fromJson(object.remove("created_at"), Date.class);
43 | 
44 |         final Type identitiesType = new TypeToken<List<UserIdentity>>() {}.getType();
45 |         final List<UserIdentity> identities = context.deserialize(object.remove("identities"), identitiesType);
46 | 
47 |         final Type metadataType = new TypeToken<Map<String, Object>>() {}.getType();
48 |         Map<String, Object> userMetadata = context.deserialize(object.remove("user_metadata"), metadataType);
49 |         Map<String, Object> appMetadata = context.deserialize(object.remove("app_metadata"), metadataType);
50 |         Map<String, Object> extraInfo = context.deserialize(object, metadataType);
51 |         return new UserProfile(id, name, nickname, picture, email, emailVerified, familyName, createdAt, identities, extraInfo, userMetadata, appMetadata, givenName);
52 |     }
53 | }
54 | 


--------------------------------------------------------------------------------
/.github/ISSUE_TEMPLATE/Bug Report.yml:
--------------------------------------------------------------------------------
 1 | name: 🐞 Report a bug
 2 | description: Have you found a bug or issue? Create a bug report for this library
 3 | labels: ["bug"]
 4 | 
 5 | body:
 6 |   - type: markdown
 7 |     attributes:
 8 |       value: |
 9 |         **Please do not report security vulnerabilities here**. The [Responsible Disclosure Program](https://auth0.com/responsible-disclosure-policy) details the procedure for disclosing security issues.
10 | 
11 |   - type: checkboxes
12 |     id: checklist
13 |     attributes:
14 |       label: Checklist
15 |       options:
16 |         - label: The issue can be reproduced in the [Auth0.Android sample app](https://github.com/auth0-samples/auth0-android-sample/tree/master/00-Login-Kt) (or N/A).
17 |           required: true
18 |         - label: I have looked into the [Readme](https://github.com/auth0/Auth0.Android#readme), [Examples](https://github.com/auth0/Auth0.Android/blob/main/EXAMPLES.md), and [FAQ](https://github.com/auth0/Auth0.Android/blob/main/FAQ.md) and have not found a suitable solution or answer.
19 |           required: true
20 |         - label: I have looked into the [API documentation](https://javadoc.io/doc/com.auth0.android/auth0/latest/index.html) and have not found a suitable solution or answer.
21 |           required: true
22 |         - label: I have searched the [issues](https://github.com/auth0/Auth0.Android/issues) and have not found a suitable solution or answer.
23 |           required: true
24 |         - label: I have searched the [Auth0 Community](https://community.auth0.com) forums and have not found a suitable solution or answer.
25 |           required: true
26 |         - label: I agree to the terms within the [Auth0 Code of Conduct](https://github.com/auth0/open-source-template/blob/master/CODE-OF-CONDUCT.md).
27 |           required: true
28 | 
29 |   - type: textarea
30 |     id: description
31 |     attributes:
32 |       label: Description
33 |       description: Provide a clear and concise description of the issue, including what you expected to happen.
34 |     validations:
35 |       required: true
36 | 
37 |   - type: textarea
38 |     id: reproduction
39 |     attributes:
40 |       label: Reproduction
41 |       description: Detail the steps taken to reproduce this error, and whether this issue can be reproduced consistently or if it is intermittent.
42 |       placeholder: |
43 |         1. Step 1...
44 |         2. Step 2...
45 |         3. ...
46 |     validations:
47 |       required: true
48 | 
49 |   - type: textarea
50 |     id: additional-context
51 |     attributes:
52 |       label: Additional context
53 |       description: Other libraries that might be involved, or any other relevant information you think would be useful.
54 |     validations:
55 |       required: false
56 | 
57 |   - type: input
58 |     id: environment-version
59 |     attributes:
60 |       label: Auth0.Android version
61 |     validations:
62 |       required: true
63 | 
64 |   - type: input
65 |     id: environment-platform-version
66 |     attributes:
67 |       label: Android version(s)
68 |     validations:
69 |       required: true
70 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/UserIdentityGsonTest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import com.auth0.android.result.UserIdentity
 4 | import com.auth0.android.util.UserIdentityMatcher
 5 | import com.google.gson.JsonParseException
 6 | import org.hamcrest.MatcherAssert
 7 | import org.hamcrest.Matchers
 8 | import org.hamcrest.collection.IsMapWithSize
 9 | import org.junit.Assert
10 | import org.junit.Before
11 | import org.junit.Test
12 | 
13 | public class UserIdentityGsonTest : GsonBaseTest() {
14 | 
15 |     @Before
16 |     public fun setUp() {
17 |         gson = GsonProvider.gson
18 |     }
19 | 
20 |     @Test
21 |     @Throws(Exception::class)
22 |     public fun shouldFailWithInvalidJson() {
23 |         Assert.assertThrows(JsonParseException::class.java) {
24 |             pojoFrom(json(INVALID), UserIdentity::class.java)
25 |         }
26 |     }
27 | 
28 |     @Test
29 |     @Throws(Exception::class)
30 |     public fun shouldFailWithEmptyJson() {
31 |         Assert.assertThrows(JsonParseException::class.java) {
32 |             pojoFrom(json(EMPTY_OBJECT), UserIdentity::class.java)
33 |         }
34 |     }
35 | 
36 |     @Test
37 |     @Throws(Exception::class)
38 |     public fun shouldBuildBasic() {
39 |         val identity = pojoFrom(json(AUTH0), UserIdentity::class.java)
40 |         MatcherAssert.assertThat(
41 |             identity,
42 |             UserIdentityMatcher.isUserIdentity(
43 |                 "1234567890",
44 |                 "auth0",
45 |                 "Username-Password-Authentication"
46 |             )
47 |         )
48 |         MatcherAssert.assertThat(identity.getProfileInfo(), IsMapWithSize.anEmptyMap())
49 |         MatcherAssert.assertThat(identity.isSocial, Matchers.`is`(false))
50 |         MatcherAssert.assertThat(identity.accessToken, Matchers.nullValue())
51 |         MatcherAssert.assertThat(identity.accessTokenSecret, Matchers.nullValue())
52 |     }
53 | 
54 |     @Test
55 |     @Throws(Exception::class)
56 |     public fun shouldBuildWithExtraValues() {
57 |         val identity = pojoFrom(json(FACEBOOK), UserIdentity::class.java)
58 |         MatcherAssert.assertThat(
59 |             identity,
60 |             UserIdentityMatcher.isUserIdentity("999997950999976", "facebook", "facebook")
61 |         )
62 |         MatcherAssert.assertThat(
63 |             identity.getProfileInfo(),
64 |             Matchers.hasEntry("given_name", "John" as Any)
65 |         )
66 |         MatcherAssert.assertThat(
67 |             identity.getProfileInfo(),
68 |             Matchers.hasEntry("family_name", "Foobar" as Any)
69 |         )
70 |         MatcherAssert.assertThat(
71 |             identity.getProfileInfo(),
72 |             Matchers.hasEntry("email_verified", true as Any)
73 |         )
74 |         MatcherAssert.assertThat(
75 |             identity.getProfileInfo(),
76 |             Matchers.hasEntry("gender", "male" as Any)
77 |         )
78 |     }
79 | 
80 |     private companion object {
81 |         private const val AUTH0 = "src/test/resources/identity_auth0.json"
82 |         private const val FACEBOOK = "src/test/resources/identity_facebook.json"
83 |     }
84 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/AuthorizeResultTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.app.Activity;
 4 | import android.content.Intent;
 5 | import android.net.Uri;
 6 | 
 7 | import org.hamcrest.MatcherAssert;
 8 | import org.junit.Before;
 9 | import org.junit.Test;
10 | import org.junit.runner.RunWith;
11 | import org.mockito.Mockito;
12 | import org.robolectric.RobolectricTestRunner;
13 | 
14 | import static org.hamcrest.MatcherAssert.assertThat;
15 | import static org.hamcrest.Matchers.is;
16 | import static org.hamcrest.Matchers.notNullValue;
17 | import static org.mockito.Mockito.when;
18 | 
19 | @RunWith(RobolectricTestRunner.class)
20 | public class AuthorizeResultTest {
21 | 
22 |     private static final int REQUEST_CODE = 11;
23 |     private static final int OTHER_REQUEST_CODE = 12;
24 |     private static final String CALLBACK_URL = "https://my-domain.auth0.com/android/com.auth0.android.lock.app/callback";
25 |     private static final String SAMPLE_HASH = "#access_token=aToken&id_token=iToken&token_type=Bearer&state=randomState";
26 | 
27 |     private Intent intent;
28 | 
29 |     @Before
30 |     public void setUp() {
31 |         intent = Mockito.mock(Intent.class);
32 |         Uri data = Uri.parse(CALLBACK_URL + SAMPLE_HASH);
33 |         when(intent.getData()).thenReturn(data);
34 |     }
35 | 
36 |     @Test
37 |     public void shouldNotBeValidForOtherResult() {
38 |         AuthorizeResult authorizeResult = new AuthorizeResult(REQUEST_CODE, Activity.RESULT_OK, intent);
39 | 
40 |         boolean isValid = authorizeResult.isValid(OTHER_REQUEST_CODE);
41 | 
42 |         MatcherAssert.assertThat(isValid, is(false));
43 |     }
44 | 
45 |     @Test
46 |     public void shouldBeValidAndCanceledForNullUri() {
47 |         when(intent.getData()).thenReturn(null);
48 |         AuthorizeResult authorizeResult = new AuthorizeResult(intent);
49 | 
50 |         assertThat(authorizeResult.isValid(REQUEST_CODE), is(true));
51 |         assertThat(authorizeResult.isCanceled(), is(true));
52 |     }
53 | 
54 |     @Test
55 |     public void shouldBeValidForCanceledResult() {
56 |         when(intent.getData()).thenReturn(null);
57 |         AuthorizeResult authorizeResult = new AuthorizeResult(REQUEST_CODE, Activity.RESULT_CANCELED, intent);
58 | 
59 |         assertThat(authorizeResult.isValid(REQUEST_CODE), is(true));
60 |     }
61 | 
62 |     @Test
63 |     public void shouldBeValidForExpectedActivityResult() {
64 |         AuthorizeResult authorizeResult = new AuthorizeResult(REQUEST_CODE, Activity.RESULT_OK, intent);
65 | 
66 |         assertThat(authorizeResult.isValid(REQUEST_CODE), is(true));
67 |     }
68 | 
69 |     @Test
70 |     public void shouldBeValid() {
71 |         AuthorizeResult authorizeResult = new AuthorizeResult(intent);
72 | 
73 |         assertThat(authorizeResult.isValid(0), is(true));
74 |     }
75 | 
76 |     @Test
77 |     public void shouldCreateAValidResultWithOnlyTheIntent() {
78 |         AuthorizeResult authorizeResult = new AuthorizeResult(intent);
79 | 
80 |         assertThat(authorizeResult.getIntentData(), is(notNullValue()));
81 |         assertThat(authorizeResult.getIntentData(), is(intent.getData()));
82 |         assertThat(authorizeResult.isCanceled(), is(false));
83 |     }
84 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/management/ManagementException.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.management
 2 | 
 3 | import com.auth0.android.Auth0Exception
 4 | import com.auth0.android.NetworkErrorException
 5 | 
 6 | public class ManagementException @JvmOverloads constructor(
 7 |     message: String,
 8 |     exception: Auth0Exception? = null
 9 | ) : Auth0Exception(message, exception) {
10 |     private var code: String? = null
11 |     private var description: String? = null
12 | 
13 |     /**
14 |      * Http Response status code. Can have value of 0 if not set.
15 |      *
16 |      * @return the status code.
17 |      */
18 |     public var statusCode: Int = 0
19 |         private set
20 |     private var values: Map<String, Any>? = null
21 | 
22 |     public constructor(payload: String?, statusCode: Int) : this(DEFAULT_MESSAGE) {
23 |         code = if (payload != null) NON_JSON_ERROR else EMPTY_BODY_ERROR
24 |         description = payload ?: EMPTY_RESPONSE_BODY_DESCRIPTION
25 |         this.statusCode = statusCode
26 |     }
27 | 
28 |     public constructor(values: Map<String, Any>) : this(DEFAULT_MESSAGE) {
29 |         this.values = values
30 |         val codeValue =
31 |             (if (values.containsKey(ERROR_KEY)) values[ERROR_KEY] else values[CODE_KEY]) as String?
32 |         code = codeValue ?: UNKNOWN_ERROR
33 |         description =
34 |             (if (values.containsKey(DESCRIPTION_KEY)) values[DESCRIPTION_KEY] else values[ERROR_DESCRIPTION_KEY]) as String?
35 |     }
36 | 
37 |     /**
38 |      * Auth0 error code if the server returned one or an internal library code (e.g.: when the server could not be reached)
39 |      *
40 |      * @return the error code.
41 |      */
42 |     @Suppress("MemberVisibilityCanBePrivate")
43 |     public fun getCode(): String {
44 |         return if (code != null) code!! else UNKNOWN_ERROR
45 |     }
46 | 
47 |     /**
48 |      * Description of the error.
49 |      * important: You should avoid displaying description to the user, it's meant for debugging only.
50 |      *
51 |      * @return the error description.
52 |      */
53 |     @Suppress("unused")
54 |     public fun getDescription(): String {
55 |         if (description != null) {
56 |             return description!!
57 |         }
58 |         return if (UNKNOWN_ERROR == getCode()) {
59 |             String.format("Received error with code %s", getCode())
60 |         } else "Failed with unknown error"
61 |     }
62 | 
63 |     /**
64 |      * Returns a value from the error map, if any.
65 |      *
66 |      * @param key key of the value to return
67 |      * @return the value if found or null
68 |      */
69 |     public fun getValue(key: String): Any? {
70 |         return values?.get(key)
71 |     }
72 | 
73 |     // When the request failed due to network issues
74 |     public val isNetworkError: Boolean
75 |         get() = cause is NetworkErrorException
76 | 
77 |     private companion object {
78 |         private const val ERROR_KEY = "error"
79 |         private const val CODE_KEY = "code"
80 |         private const val DESCRIPTION_KEY = "description"
81 |         private const val ERROR_DESCRIPTION_KEY = "error_description"
82 |         private const val DEFAULT_MESSAGE =
83 |             "An error occurred when trying to authenticate with the server."
84 |     }
85 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/provider/SignatureVerifier.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import androidx.annotation.NonNull;
 4 | import androidx.annotation.Nullable;
 5 | 
 6 | import com.auth0.android.authentication.AuthenticationAPIClient;
 7 | import com.auth0.android.authentication.AuthenticationException;
 8 | import com.auth0.android.callback.AuthenticationCallback;
 9 | import com.auth0.android.callback.Callback;
10 | import com.auth0.android.request.internal.Jwt;
11 | 
12 | import java.security.InvalidKeyException;
13 | import java.security.PublicKey;
14 | import java.util.List;
15 | import java.util.Map;
16 | 
17 | /**
18 |  * Abstract class meant to verify tokens signed with HS256 and RS256 signatures.
19 |  */
20 | abstract class SignatureVerifier {
21 | 
22 |     private final List<String> supportedAlgorithms;
23 | 
24 |     SignatureVerifier(List<String> supportedAlgorithms) {
25 |         this.supportedAlgorithms = supportedAlgorithms;
26 |     }
27 | 
28 |     /**
29 |      * Verifies that the given token's signature is valid, deeming the payload inside it authentic
30 |      *
31 |      * @param token the ID token to have its signature validated
32 |      * @throws TokenValidationException if the signature is not valid
33 |      */
34 |     void verify(@NonNull Jwt token) throws TokenValidationException {
35 |         checkAlgorithm(token.getAlgorithm());
36 |         checkSignature(token.getParts());
37 |     }
38 | 
39 |     private void checkAlgorithm(String tokenAlgorithm) throws TokenValidationException {
40 |         if (!supportedAlgorithms.contains(tokenAlgorithm) || "none".equalsIgnoreCase(tokenAlgorithm)) {
41 |             throw new IdTokenAlgorithmNotSupportedException(tokenAlgorithm, supportedAlgorithms);
42 |         }
43 |     }
44 | 
45 |     abstract protected void checkSignature(@NonNull String[] tokenParts) throws TokenValidationException;
46 | 
47 | 
48 |     /**
49 |      * Creates a new SignatureVerifier for Asymmetric algorithm ("RS256"). Signature check will actually happen.
50 |      *
51 |      * @param keyId     the id of the key used to sign this token. Obtained from the token's header
52 |      * @param apiClient the Authentication API client instance. Used to fetch the JWKs
53 |      * @param callback  where to receive the results
54 |      */
55 |     static void forAsymmetricAlgorithm(@Nullable final String keyId, @NonNull AuthenticationAPIClient apiClient, @NonNull final Callback<SignatureVerifier, TokenValidationException> callback) {
56 |         apiClient.fetchJsonWebKeys().start(new AuthenticationCallback<Map<String, PublicKey>>() {
57 |             @Override
58 |             public void onSuccess(@Nullable Map<String, PublicKey> result) {
59 |                 PublicKey publicKey = result.get(keyId);
60 |                 try {
61 |                     callback.onSuccess(new AsymmetricSignatureVerifier(publicKey));
62 |                 } catch (InvalidKeyException e) {
63 |                     callback.onFailure(new PublicKeyNotFoundException(keyId));
64 |                 }
65 |             }
66 | 
67 |             @Override
68 |             public void onFailure(@NonNull AuthenticationException error) {
69 |                 callback.onFailure(new PublicKeyNotFoundException(keyId));
70 |             }
71 |         });
72 |     }
73 | }
74 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/authentication/request/AuthenticationRequestMock.java:
--------------------------------------------------------------------------------
  1 | package com.auth0.android.authentication.request;
  2 | 
  3 | import androidx.annotation.NonNull;
  4 | 
  5 | import com.auth0.android.Auth0Exception;
  6 | import com.auth0.android.authentication.AuthenticationException;
  7 | import com.auth0.android.callback.Callback;
  8 | import com.auth0.android.request.AuthenticationRequest;
  9 | import com.auth0.android.result.Credentials;
 10 | 
 11 | import java.util.Map;
 12 | 
 13 | public class AuthenticationRequestMock implements AuthenticationRequest {
 14 |     private final Credentials credentials;
 15 |     private final AuthenticationException error;
 16 |     private boolean started;
 17 | 
 18 |     public AuthenticationRequestMock(Credentials credentials, AuthenticationException error) {
 19 |         this.credentials = credentials;
 20 |         this.error = error;
 21 |     }
 22 | 
 23 |     @Override
 24 |     public void start(@NonNull Callback<Credentials, AuthenticationException> callback) {
 25 |         started = true;
 26 |         if (credentials != null) {
 27 |             callback.onSuccess(credentials);
 28 |         } else {
 29 |             callback.onFailure(error);
 30 |         }
 31 |     }
 32 | 
 33 |     @NonNull
 34 |     @Override
 35 |     public Credentials execute() throws Auth0Exception {
 36 |         return credentials;
 37 |     }
 38 | 
 39 |     @NonNull
 40 |     @Override
 41 |     public AuthenticationRequest addParameters(@NonNull Map<String, String> parameters) {
 42 |         return this;
 43 |     }
 44 | 
 45 |     @NonNull
 46 |     @Override
 47 |     public AuthenticationRequest addParameter(@NonNull String name, @NonNull String value) {
 48 |         return this;
 49 |     }
 50 | 
 51 |     @NonNull
 52 |     @Override
 53 |     public AuthenticationRequest addHeader(@NonNull String name, @NonNull String value) {
 54 |         return this;
 55 |     }
 56 | 
 57 |     @NonNull
 58 |     @Override
 59 |     public AuthenticationRequest setGrantType(@NonNull String grantType) {
 60 |         return this;
 61 |     }
 62 | 
 63 |     @NonNull
 64 |     @Override
 65 |     public AuthenticationRequest setConnection(@NonNull String connection) {
 66 |         return this;
 67 |     }
 68 | 
 69 |     @NonNull
 70 |     @Override
 71 |     public AuthenticationRequest setRealm(@NonNull String realm) {
 72 |         return this;
 73 |     }
 74 | 
 75 |     @NonNull
 76 |     @Override
 77 |     public AuthenticationRequest setScope(@NonNull String scope) {
 78 |         return this;
 79 |     }
 80 | 
 81 |     @NonNull
 82 |     @Override
 83 |     public AuthenticationRequest setAudience(@NonNull String audience) {
 84 |         return this;
 85 |     }
 86 | 
 87 |     public boolean isStarted() {
 88 |         return started;
 89 |     }
 90 | 
 91 |     @NonNull
 92 |     @Override
 93 |     public AuthenticationRequest validateClaims() {
 94 |         return this;
 95 |     }
 96 | 
 97 |     @NonNull
 98 |     @Override
 99 |     public AuthenticationRequest withIdTokenVerificationLeeway(int leeway) {
100 |         return this;
101 |     }
102 | 
103 |     @NonNull
104 |     @Override
105 |     public AuthenticationRequest withIdTokenVerificationIssuer(@NonNull String issuer) {
106 |         return this;
107 |     }
108 | }
109 | 


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/request/internal/OptionalCredentialsGsonTest.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import com.auth0.android.result.OptionalCredentials
 4 | import com.google.gson.JsonParseException
 5 | import org.hamcrest.MatcherAssert
 6 | import org.hamcrest.Matchers
 7 | import org.junit.Assert
 8 | import org.junit.Before
 9 | import org.junit.Test
10 | import java.io.IOException
11 | import java.io.Reader
12 | import java.io.StringReader
13 | 
14 | public class OptionalCredentialsGsonTest : GsonBaseTest() {
15 |     @Before
16 |     public fun setUp() {
17 |         gson = GsonProvider.gson
18 |     }
19 | 
20 |     @Test
21 |     @Throws(Exception::class)
22 |     public fun shouldFailWithInvalidJson() {
23 |         Assert.assertThrows(JsonParseException::class.java) {
24 |             buildCredentialsFrom(json(INVALID))
25 |         }
26 |     }
27 | 
28 |     @Test
29 |     public fun shouldNotFailWithEmptyJson() {
30 |         buildCredentialsFrom(json(EMPTY_OBJECT))
31 |     }
32 | 
33 |     @Test
34 |     public fun shouldNotRequireAnyProperty() {
35 |         buildCredentialsFrom(StringReader("{\"scope\": \"openid profile\"}"))
36 |     }
37 | 
38 |     @Test
39 |     @Throws(Exception::class)
40 |     public fun shouldReturnLegacy() {
41 |         val credentials = buildCredentialsFrom(json(LEGACY_CREDENTIALS))
42 |         MatcherAssert.assertThat(credentials, Matchers.`is`(Matchers.notNullValue()))
43 |         MatcherAssert.assertThat(credentials.accessToken, Matchers.`is`(Matchers.notNullValue()))
44 |         MatcherAssert.assertThat(credentials.idToken, Matchers.`is`(Matchers.nullValue()))
45 |         MatcherAssert.assertThat(credentials.type, Matchers.equalTo("bearer"))
46 |         MatcherAssert.assertThat(credentials.refreshToken, Matchers.`is`(Matchers.nullValue()))
47 |         MatcherAssert.assertThat(credentials.expiresAt, Matchers.`is`(Matchers.nullValue()))
48 |         MatcherAssert.assertThat(credentials.scope, Matchers.`is`(Matchers.nullValue()))
49 |     }
50 | 
51 |     @Test
52 |     @Throws(Exception::class)
53 |     public fun shouldReturnBasic() {
54 |         val credentials = buildCredentialsFrom(json(OPENID_OFFLINE_ACCESS_CREDENTIALS))
55 |         MatcherAssert.assertThat(credentials, Matchers.`is`(Matchers.notNullValue()))
56 |         MatcherAssert.assertThat(credentials.accessToken, Matchers.`is`(Matchers.notNullValue()))
57 |         MatcherAssert.assertThat(credentials.idToken, Matchers.`is`(Matchers.notNullValue()))
58 |         MatcherAssert.assertThat(credentials.type, Matchers.equalTo("bearer"))
59 |         MatcherAssert.assertThat(credentials.refreshToken, Matchers.`is`(Matchers.notNullValue()))
60 |         MatcherAssert.assertThat(credentials.expiresAt, Matchers.`is`(Matchers.nullValue()))
61 |         MatcherAssert.assertThat(credentials.scope, Matchers.`is`(Matchers.notNullValue()))
62 |     }
63 | 
64 |     @Throws(IOException::class)
65 |     private fun buildCredentialsFrom(json: Reader): OptionalCredentials {
66 |         return pojoFrom(json, OptionalCredentials::class.java)
67 |     }
68 | 
69 |     private companion object {
70 |         private const val OPENID_OFFLINE_ACCESS_CREDENTIALS =
71 |             "src/test/resources/credentials_openid_refresh_token.json"
72 |         private const val LEGACY_CREDENTIALS = "src/test/resources/credentials_legacy.json"
73 |     }
74 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/RequestFactory.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import androidx.annotation.VisibleForTesting
 4 | import com.auth0.android.Auth0Exception
 5 | import com.auth0.android.request.*
 6 | import com.auth0.android.util.Auth0UserAgent
 7 | import java.io.Reader
 8 | import java.util.*
 9 | 
10 | internal class RequestFactory<U : Auth0Exception> internal constructor(
11 |     private val client: NetworkingClient,
12 |     private val errorAdapter: ErrorAdapter<U>
13 | ) {
14 | 
15 |     private companion object {
16 |         private const val DEFAULT_LOCALE_IF_MISSING = "en_US"
17 |         private const val ACCEPT_LANGUAGE_HEADER = "Accept-Language"
18 |         private const val AUTH0_CLIENT_INFO_HEADER = Auth0UserAgent.HEADER_NAME
19 | 
20 |         val defaultLocale: String
21 |             get() {
22 |                 val language = Locale.getDefault().toString()
23 |                 return if (language.isNotEmpty()) language else DEFAULT_LOCALE_IF_MISSING
24 |             }
25 |     }
26 | 
27 |     private val baseHeaders = mutableMapOf(Pair(ACCEPT_LANGUAGE_HEADER, defaultLocale))
28 | 
29 |     fun <T> post(
30 |         url: String,
31 |         resultAdapter: JsonAdapter<T>
32 |     ): Request<T, U> = setupRequest(HttpMethod.POST, url, resultAdapter, errorAdapter)
33 | 
34 |     fun post(url: String): Request<Void?, U> =
35 |         this.post(url, object : JsonAdapter<Void?> {
36 |             override fun fromJson(reader: Reader): Void? {
37 |                 return null
38 |             }
39 |         })
40 | 
41 |     fun <T> patch(
42 |         url: String,
43 |         resultAdapter: JsonAdapter<T>
44 |     ): Request<T, U> = setupRequest(HttpMethod.PATCH, url, resultAdapter, errorAdapter)
45 | 
46 |     fun <T> delete(
47 |         url: String,
48 |         resultAdapter: JsonAdapter<T>
49 |     ): Request<T, U> = setupRequest(HttpMethod.DELETE, url, resultAdapter, errorAdapter)
50 | 
51 |     fun <T> get(
52 |         url: String,
53 |         resultAdapter: JsonAdapter<T>
54 |     ): Request<T, U> = setupRequest(HttpMethod.GET, url, resultAdapter, errorAdapter)
55 | 
56 |     fun setHeader(name: String, value: String) {
57 |         baseHeaders[name] = value
58 |     }
59 | 
60 |     fun setAuth0ClientInfo(clientInfo: String) {
61 |         baseHeaders[AUTH0_CLIENT_INFO_HEADER] = clientInfo
62 |     }
63 | 
64 |     @VisibleForTesting
65 |     fun <T> createRequest(
66 |         method: HttpMethod,
67 |         url: String,
68 |         client: NetworkingClient,
69 |         resultAdapter: JsonAdapter<T>,
70 |         errorAdapter: ErrorAdapter<U>,
71 |         threadSwitcher: ThreadSwitcher
72 |     ): Request<T, U> = BaseRequest(method, url, client, resultAdapter, errorAdapter, threadSwitcher)
73 | 
74 | 
75 |     private fun <T> setupRequest(
76 |         method: HttpMethod,
77 |         url: String,
78 |         resultAdapter: JsonAdapter<T>,
79 |         errorAdapter: ErrorAdapter<U>
80 |     ): Request<T, U> {
81 |         val request =
82 |             createRequest(
83 |                 method,
84 |                 url,
85 |                 client,
86 |                 resultAdapter,
87 |                 errorAdapter,
88 |                 CommonThreadSwitcher.getInstance()
89 |             )
90 |         baseHeaders.map { request.addHeader(it.key, it.value) }
91 |         return request
92 |     }
93 | 
94 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/ManagementCallbackMatcher.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util;
 2 | 
 3 | import com.auth0.android.callback.ManagementCallback;
 4 | import com.auth0.android.management.ManagementException;
 5 | import com.google.gson.reflect.TypeToken;
 6 | import com.jayway.awaitility.core.ConditionTimeoutException;
 7 | 
 8 | import org.hamcrest.BaseMatcher;
 9 | import org.hamcrest.Description;
10 | import org.hamcrest.Matcher;
11 | 
12 | import static com.jayway.awaitility.Awaitility.await;
13 | import static org.hamcrest.Matchers.equalTo;
14 | import static org.hamcrest.Matchers.is;
15 | import static org.hamcrest.Matchers.isA;
16 | import static org.hamcrest.Matchers.notNullValue;
17 | import static org.hamcrest.Matchers.nullValue;
18 | 
19 | public class ManagementCallbackMatcher<T> extends BaseMatcher<ManagementCallback<T>> {
20 |     private final Matcher<T> payloadMatcher;
21 |     private final Matcher<ManagementException> errorMatcher;
22 | 
23 |     public ManagementCallbackMatcher(Matcher<T> payloadMatcher, Matcher<ManagementException> errorMatcher) {
24 |         this.payloadMatcher = payloadMatcher;
25 |         this.errorMatcher = errorMatcher;
26 |     }
27 | 
28 |     @Override
29 |     @SuppressWarnings("unchecked")
30 |     public boolean matches(Object item) {
31 |         MockManagementCallback<T> callback = (MockManagementCallback<T>) item;
32 |         try {
33 |             await().until(callback.payload(), payloadMatcher);
34 |             await().until(callback.error(), errorMatcher);
35 |             return true;
36 |         } catch (ConditionTimeoutException e) {
37 |             return false;
38 |         }
39 |     }
40 | 
41 |     @Override
42 |     public void describeTo(Description description) {
43 |         description
44 |                 .appendText("successful method be called");
45 |     }
46 | 
47 |     public static <T> Matcher<ManagementCallback<T>> hasPayloadOfType(Class<T> tClazz) {
48 |         return new ManagementCallbackMatcher<>(isA(tClazz), is(nullValue(ManagementException.class)));
49 |     }
50 | 
51 |     public static <T> Matcher<ManagementCallback<T>> hasPayloadOfType(TypeToken<T> typeToken) {
52 |         return new ManagementCallbackMatcher<>(TypeTokenMatcher.isA(typeToken), is(nullValue(ManagementException.class)));
53 |     }
54 | 
55 |     public static <T> Matcher<ManagementCallback<T>> hasPayload(T payload) {
56 |         return new ManagementCallbackMatcher<>(equalTo(payload), is(nullValue(ManagementException.class)));
57 |     }
58 | 
59 |     public static <T> Matcher<ManagementCallback<T>> hasNoPayloadOfType(Class<T> tClazz) {
60 |         return new ManagementCallbackMatcher<>(is(nullValue(tClazz)), is(notNullValue(ManagementException.class)));
61 |     }
62 | 
63 |     public static <T> Matcher<ManagementCallback<T>> hasNoPayloadOfType(TypeToken<T> typeToken) {
64 |         return new ManagementCallbackMatcher<>(TypeTokenMatcher.isA(typeToken), is(nullValue(ManagementException.class)));
65 |     }
66 | 
67 |     public static Matcher<ManagementCallback<Void>> hasNoError() {
68 |         return new ManagementCallbackMatcher<>(is(notNullValue(Void.class)), is(nullValue(ManagementException.class)));
69 |     }
70 | 
71 |     public static Matcher<ManagementCallback<Void>> hasError() {
72 |         return new ManagementCallbackMatcher<>(is(nullValue(Void.class)), is(notNullValue(ManagementException.class)));
73 |     }
74 | }
75 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/result/Credentials.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.result
 2 | 
 3 | import androidx.annotation.VisibleForTesting
 4 | import com.auth0.android.request.internal.GsonProvider
 5 | import com.auth0.android.request.internal.Jwt
 6 | import com.google.gson.annotations.SerializedName
 7 | 
 8 | import java.util.*
 9 | 
10 | /**
11 |  * Holds the user's credentials returned by Auth0.
12 |  *
13 |  *  * *idToken*: Identity Token with user information
14 |  *  * *accessToken*: Access Token for Auth0 API
15 |  *  * *refreshToken*: Refresh Token that can be used to request new tokens without signing in again
16 |  *  * *type*: The type of the received Access Token.
17 |  *  * *expiresAt*: The token expiration date.
18 |  *  * *scope*: The token's granted scope.
19 |  *
20 |  */
21 | public open class Credentials(
22 |     /**
23 |      * Getter for the Identity Token with user information.
24 |      *
25 |      * @return the Identity Token.
26 |      */
27 |     @field:SerializedName("id_token") public val idToken: String,
28 |     /**
29 |      * Getter for the Access Token for Auth0 API.
30 |      *
31 |      * @return the Access Token.
32 |      */
33 |     @field:SerializedName("access_token") public val accessToken: String,
34 |     /**
35 |      * Getter for the type of the received Token.
36 |      *
37 |      * @return the token type.
38 |      */
39 |     @field:SerializedName("token_type") public val type: String,
40 | 
41 |     /**
42 |      * Getter for the Refresh Token that can be used to request new tokens without signing in again.
43 |      *
44 |      * @return the Refresh Token.
45 |      */
46 |     @field:SerializedName("refresh_token") public val refreshToken: String?,
47 | 
48 |     /**
49 |      * Getter for the expiration date of the Access Token.
50 |      * Once expired, the Access Token can no longer be used to access an API and a new Access Token needs to be obtained.
51 |      *
52 |      * @return the expiration date of this Access Token
53 |      */
54 |     @field:SerializedName("expires_at") public val expiresAt: Date,
55 | 
56 |     /**
57 |      * Getter for the access token's granted scope. Only available if the requested scope differs from the granted one.
58 |      *
59 |      * @return the granted scope.
60 |      */
61 |     @field:SerializedName("scope") public val scope: String?
62 | ) {
63 | 
64 |     //TODO this could be removed and the class be a data class instead
65 |     @get:VisibleForTesting(otherwise = VisibleForTesting.PRIVATE)
66 |     internal open val currentTimeInMillis: Long
67 |         get() = System.currentTimeMillis()
68 | 
69 |     /**
70 |      * Getter for the new multi-factor authentication recovery code. Only available if these credentials are the result of logging in using an MFA recovery code.
71 |      *
72 |      * @return the new MFA recovery code.
73 |      */
74 |     @field:SerializedName("recovery_code")
75 |     public var recoveryCode: String? = null
76 |         internal set
77 | 
78 |     override fun toString(): String {
79 |         return "Credentials(idToken='xxxxx', accessToken='xxxxx', type='$type', refreshToken='xxxxx', expiresAt='$expiresAt', scope='$scope')"
80 |     }
81 | 
82 |     public val user: UserProfile get() {
83 |         val (_, payload) = Jwt.splitToken(idToken)
84 |         val gson = GsonProvider.gson
85 |         return gson.fromJson(Jwt.decodeBase64(payload), UserProfile::class.java)
86 |     }
87 | 
88 | }


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/Jwt.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import android.util.Base64
 4 | import com.google.gson.reflect.TypeToken
 5 | import java.util.*
 6 | 
 7 | 
 8 | /**
 9 |  * Internal class meant to decode the given token of type JWT and provide access to its claims.
10 |  */
11 | internal class Jwt(rawToken: String) {
12 | 
13 |     private val decodedHeader: Map<String, Any>
14 |     private val decodedPayload: Map<String, Any>
15 |     val parts: Array<String>
16 | 
17 |     // header
18 |     val algorithm: String
19 |     val keyId: String?
20 | 
21 |     // payload
22 |     val subject: String?
23 |     val issuer: String?
24 |     val nonce: String?
25 |     val organizationId: String?
26 |     val organizationName: String?
27 |     val issuedAt: Date?
28 |     val expiresAt: Date?
29 |     val authorizedParty: String?
30 |     val authenticationTime: Date?
31 |     val audience: List<String>
32 | 
33 |     init {
34 |         parts = splitToken(rawToken)
35 |         val jsonHeader = decodeBase64(parts[0])
36 |         val jsonPayload = decodeBase64(parts[1])
37 |         val mapAdapter = GsonProvider.gson.getAdapter(object : TypeToken<Map<String, Any>>() {})
38 |         decodedHeader = mapAdapter.fromJson(jsonHeader)
39 |         decodedPayload = mapAdapter.fromJson(jsonPayload)
40 | 
41 |         // header claims
42 |         algorithm = decodedHeader["alg"] as String
43 |         keyId = decodedHeader["kid"] as String?
44 | 
45 |         // payload claims
46 |         subject = decodedPayload["sub"] as String?
47 |         issuer = decodedPayload["iss"] as String?
48 |         nonce = decodedPayload["nonce"] as String?
49 |         organizationId = decodedPayload["org_id"] as String?
50 |         organizationName = decodedPayload["org_name"] as String?
51 |         issuedAt = (decodedPayload["iat"] as? Double)?.let { Date(it.toLong() * 1000) }
52 |         expiresAt = (decodedPayload["exp"] as? Double)?.let { Date(it.toLong() * 1000) }
53 |         authorizedParty = decodedPayload["azp"] as String?
54 |         authenticationTime =
55 |             (decodedPayload["auth_time"] as? Double)?.let { Date(it.toLong() * 1000) }
56 |         audience = when (val aud = decodedPayload["aud"]) {
57 |             is String -> listOf(aud)
58 |             is List<*> -> aud as List<String>
59 |             else -> emptyList()
60 |         }
61 |     }
62 | 
63 |     companion object {
64 |         fun splitToken(token: String): Array<String> {
65 |             var parts = token.split(".").toTypedArray()
66 |             if (parts.size == 2 && token.endsWith(".")) {
67 |                 // Tokens with alg='none' have empty String as Signature.
68 |                 parts = arrayOf(parts[0], parts[1], "")
69 |             }
70 |             if (parts.size != 3) {
71 |                 throw IllegalArgumentException(
72 |                     String.format(
73 |                         "The token was expected to have 3 parts, but got %s.",
74 |                         parts.size
75 |                     )
76 |                 )
77 |             }
78 |             return parts
79 |         }
80 | 
81 |         fun decodeBase64(encoded: String): String {
82 |             val bytes: ByteArray =
83 |                 Base64.decode(encoded, Base64.URL_SAFE or Base64.NO_WRAP or Base64.NO_PADDING)
84 |             return String(bytes, Charsets.UTF_8)
85 |         }
86 |     }
87 | 
88 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/util/UsersAPIMockServer.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.util
 2 | 
 3 | internal class UsersAPIMockServer : APIMockServer() {
 4 | 
 5 |     fun willReturnSuccessfulUnlink(): UsersAPIMockServer {
 6 |         val json = """[
 7 |           {
 8 |             "profileData": {
 9 |               "email": "asd@asd.asd",
10 |               "email_verified": true,
11 |               "nickname": "asdasd",
12 |               "username": "asdasd"
13 |             },
14 |             "user_id": "123d123d123d123d123d123d",
15 |             "provider": "auth0",
16 |             "connection": "Username-Password-Authentication",
17 |             "isSocial": false
18 |           }
19 |         ]"""
20 |         server.enqueue(responseWithJSON(json, 200))
21 |         return this
22 |     }
23 | 
24 |     fun willReturnSuccessfulLink(): UsersAPIMockServer {
25 |         val json = """[
26 |           {
27 |             "profileData": {
28 |               "email": "asd@asd.asd",
29 |               "email_verified": true,
30 |               "nickname": "asdasd",
31 |               "username": "asdasd"
32 |             },
33 |             "user_id": "5751d11a85a56dd86c460726",
34 |             "provider": "auth0",
35 |             "connection": "Username-Password-Authentication",
36 |             "isSocial": false
37 |           },
38 |           {
39 |             "profileData": {
40 |               "name": "Asdasd️",
41 |               "picture": "https://pbs.twimg.com/profile_images/some_invalid.jpeg",
42 |               "created_at": "Fri May 20 17:13:23 +0000 2011",
43 |               "description": "Something about us.",
44 |               "lang": "es",
45 |               "location": "Buenos Aires",
46 |               "screen_name": "Aassdd",
47 |               "time_zone": "Buenos Aires",
48 |               "utc_offset": -10800
49 |             },
50 |             "access_token": "302132759-7CqPgySk321gltiQA2r4XC9byqWvxNdSPdM8Wzvu",
51 |             "access_token_secret": "mYL3hcGKr6TrClvddSKapMJqsiSHKPwsdmAaOsdaRRbPYTm",
52 |             "provider": "twitter",
53 |             "user_id": "30303030",
54 |             "connection": "twitter",
55 |             "isSocial": true
56 |           }
57 |         ]"""
58 |         server.enqueue(responseWithJSON(json, 200))
59 |         return this
60 |     }
61 | 
62 |     fun willReturnUserProfile(): UsersAPIMockServer {
63 |         val json = """{
64 |           "email": "p@p.xom",
65 |           "email_verified": false,
66 |           "picture": "https://secure.gravatar.com/avatar/cfacbe113a96fdfc85134534771d88b4?s=480&r=pg&d=https%3A%2F%2Fssl.gstatic.com%2Fs2%2Fprofiles%2Fimages%2Fsilhouette80.png",
67 |           "user_id": "auth0|53b995f8bce68d9fc900099c",
68 |           "name": "p@p.xom",
69 |           "nickname": "p",
70 |           "identities": [
71 |             {
72 |               "user_id": "53b995f8bce68d9fc900099c",
73 |               "provider": "auth0",
74 |               "connection": "Username-Password-Authentication",
75 |               "isSocial": false
76 |             }
77 |          ],
78 |           "user_metadata": 
79 |             {
80 |               "name": "name",
81 |               "surname": "surname"
82 |             },
83 |           "created_at": "2014-07-06T18:33:49.005Z",
84 |           "username": "p",
85 |           "updated_at": "2015-09-30T19:43:48.499Z"
86 |         }"""
87 |         server.enqueue(responseWithJSON(json, 200))
88 |         return this
89 |     }
90 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/provider/RedirectActivityTest.java:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.provider;
 2 | 
 3 | import android.content.Intent;
 4 | import android.net.Uri;
 5 | 
 6 | import org.junit.Before;
 7 | import org.junit.Test;
 8 | import org.junit.runner.RunWith;
 9 | import org.mockito.Mock;
10 | import org.mockito.MockitoAnnotations;
11 | import org.robolectric.Robolectric;
12 | import org.robolectric.RobolectricTestRunner;
13 | import org.robolectric.android.controller.ActivityController;
14 | import org.robolectric.annotation.Config;
15 | import org.robolectric.shadow.api.Shadow;
16 | 
17 | import static androidx.test.espresso.intent.matcher.IntentMatchers.hasComponent;
18 | import static androidx.test.espresso.intent.matcher.IntentMatchers.hasData;
19 | import static androidx.test.espresso.intent.matcher.IntentMatchers.hasFlags;
20 | import static org.hamcrest.MatcherAssert.assertThat;
21 | import static org.hamcrest.Matchers.notNullValue;
22 | import static org.hamcrest.Matchers.nullValue;
23 | import static org.hamcrest.core.Is.is;
24 | 
25 | @RunWith(RobolectricTestRunner.class)
26 | @Config(shadows = RedirectActivityShadow.class)
27 | public class RedirectActivityTest {
28 | 
29 | 
30 |     @Mock
31 |     private Uri uri;
32 | 
33 |     private ActivityController<RedirectActivity> activityController;
34 |     private RedirectActivityShadow activityShadow;
35 | 
36 |     @Before
37 |     public void setUp() {
38 |         MockitoAnnotations.openMocks(this);
39 |     }
40 | 
41 |     private void createActivity(Intent launchIntent) {
42 |         activityController = Robolectric.buildActivity(RedirectActivity.class, launchIntent);
43 |         RedirectActivity activity = activityController.get();
44 |         activityShadow = Shadow.extract(activity);
45 |     }
46 | 
47 |     @Test
48 |     public void shouldLaunchAuthenticationActivityWithDataOnSuccess() {
49 |         Intent resultIntent = new Intent();
50 |         resultIntent.setData(uri);
51 | 
52 |         createActivity(resultIntent);
53 |         activityController.create().start().resume();
54 | 
55 |         Intent authenticationIntent = activityShadow.getNextStartedActivity();
56 |         assertThat(authenticationIntent, is(notNullValue()));
57 |         assertThat(authenticationIntent, hasComponent(AuthenticationActivity.class.getName()));
58 |         assertThat(authenticationIntent, hasData(uri));
59 |         assertThat(authenticationIntent, hasFlags(Intent.FLAG_ACTIVITY_CLEAR_TOP | Intent.FLAG_ACTIVITY_SINGLE_TOP));
60 | 
61 |         assertThat(activityShadow.isFinishing, is(true));
62 |         activityController.destroy();
63 |     }
64 | 
65 |     @Test
66 |     public void shouldLaunchAuthenticationActivityWithoutDataOnCancel() {
67 |         Intent resultIntent = new Intent();
68 |         resultIntent.setData(null);
69 | 
70 |         createActivity(resultIntent);
71 |         activityController.create().start().resume();
72 | 
73 |         Intent authenticationIntent = activityShadow.getNextStartedActivity();
74 |         assertThat(authenticationIntent, is(notNullValue()));
75 |         assertThat(authenticationIntent, hasComponent(AuthenticationActivity.class.getName()));
76 |         assertThat(authenticationIntent.getData(), is(nullValue()));
77 |         assertThat(authenticationIntent, hasFlags(Intent.FLAG_ACTIVITY_CLEAR_TOP | Intent.FLAG_ACTIVITY_SINGLE_TOP));
78 | 
79 |         assertThat(activityShadow.isFinishing, is(true));
80 |         activityController.destroy();
81 |     }
82 | }


--------------------------------------------------------------------------------
/gradlew.bat:
--------------------------------------------------------------------------------
  1 | @rem
  2 | @rem Copyright 2015 the original author or authors.
  3 | @rem
  4 | @rem Licensed under the Apache License, Version 2.0 (the "License");
  5 | @rem you may not use this file except in compliance with the License.
  6 | @rem You may obtain a copy of the License at
  7 | @rem
  8 | @rem      https://www.apache.org/licenses/LICENSE-2.0
  9 | @rem
 10 | @rem Unless required by applicable law or agreed to in writing, software
 11 | @rem distributed under the License is distributed on an "AS IS" BASIS,
 12 | @rem WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 13 | @rem See the License for the specific language governing permissions and
 14 | @rem limitations under the License.
 15 | @rem
 16 | 
 17 | @if "%DEBUG%" == "" @echo off
 18 | @rem ##########################################################################
 19 | @rem
 20 | @rem  Gradle startup script for Windows
 21 | @rem
 22 | @rem ##########################################################################
 23 | 
 24 | @rem Set local scope for the variables with windows NT shell
 25 | if "%OS%"=="Windows_NT" setlocal
 26 | 
 27 | set DIRNAME=%~dp0
 28 | if "%DIRNAME%" == "" set DIRNAME=.
 29 | set APP_BASE_NAME=%~n0
 30 | set APP_HOME=%DIRNAME%
 31 | 
 32 | @rem Resolve any "." and ".." in APP_HOME to make it shorter.
 33 | for %%i in ("%APP_HOME%") do set APP_HOME=%%~fi
 34 | 
 35 | @rem Add default JVM options here. You can also use JAVA_OPTS and GRADLE_OPTS to pass JVM options to this script.
 36 | set DEFAULT_JVM_OPTS="-Xmx64m" "-Xms64m"
 37 | 
 38 | @rem Find java.exe
 39 | if defined JAVA_HOME goto findJavaFromJavaHome
 40 | 
 41 | set JAVA_EXE=java.exe
 42 | %JAVA_EXE% -version >NUL 2>&1
 43 | if "%ERRORLEVEL%" == "0" goto init
 44 | 
 45 | echo.
 46 | echo ERROR: JAVA_HOME is not set and no 'java' command could be found in your PATH.
 47 | echo.
 48 | echo Please set the JAVA_HOME variable in your environment to match the
 49 | echo location of your Java installation.
 50 | 
 51 | goto fail
 52 | 
 53 | :findJavaFromJavaHome
 54 | set JAVA_HOME=%JAVA_HOME:"=%
 55 | set JAVA_EXE=%JAVA_HOME%/bin/java.exe
 56 | 
 57 | if exist "%JAVA_EXE%" goto init
 58 | 
 59 | echo.
 60 | echo ERROR: JAVA_HOME is set to an invalid directory: %JAVA_HOME%
 61 | echo.
 62 | echo Please set the JAVA_HOME variable in your environment to match the
 63 | echo location of your Java installation.
 64 | 
 65 | goto fail
 66 | 
 67 | :init
 68 | @rem Get command-line arguments, handling Windows variants
 69 | 
 70 | if not "%OS%" == "Windows_NT" goto win9xME_args
 71 | 
 72 | :win9xME_args
 73 | @rem Slurp the command line arguments.
 74 | set CMD_LINE_ARGS=
 75 | set _SKIP=2
 76 | 
 77 | :win9xME_args_slurp
 78 | if "x%~1" == "x" goto execute
 79 | 
 80 | set CMD_LINE_ARGS=%*
 81 | 
 82 | :execute
 83 | @rem Setup the command line
 84 | 
 85 | set CLASSPATH=%APP_HOME%\gradle\wrapper\gradle-wrapper.jar
 86 | 
 87 | 
 88 | @rem Execute Gradle
 89 | "%JAVA_EXE%" %DEFAULT_JVM_OPTS% %JAVA_OPTS% %GRADLE_OPTS% "-Dorg.gradle.appname=%APP_BASE_NAME%" -classpath "%CLASSPATH%" org.gradle.wrapper.GradleWrapperMain %CMD_LINE_ARGS%
 90 | 
 91 | :end
 92 | @rem End local scope for the variables with windows NT shell
 93 | if "%ERRORLEVEL%"=="0" goto mainEnd
 94 | 
 95 | :fail
 96 | rem Set variable GRADLE_EXIT_CONSOLE if you need the _script_ return code instead of
 97 | rem the _cmd.exe /c_ return code!
 98 | if  not "" == "%GRADLE_EXIT_CONSOLE%" exit 1
 99 | exit /b 1
100 | 
101 | :mainEnd
102 | if "%OS%"=="Windows_NT" endlocal
103 | 
104 | :omega
105 | 


--------------------------------------------------------------------------------
/auth0/src/main/java/com/auth0/android/request/internal/JwksDeserializer.kt:
--------------------------------------------------------------------------------
 1 | package com.auth0.android.request.internal
 2 | 
 3 | import android.util.Base64
 4 | import android.util.Log
 5 | import com.google.gson.JsonDeserializationContext
 6 | import com.google.gson.JsonDeserializer
 7 | import com.google.gson.JsonElement
 8 | import com.google.gson.JsonParseException
 9 | import java.lang.reflect.Type
10 | import java.math.BigInteger
11 | import java.security.KeyFactory
12 | import java.security.NoSuchAlgorithmException
13 | import java.security.PublicKey
14 | import java.security.spec.InvalidKeySpecException
15 | import java.security.spec.RSAPublicKeySpec
16 | 
17 | internal class JwksDeserializer : JsonDeserializer<Map<String, PublicKey>> {
18 |     @Throws(JsonParseException::class)
19 |     override fun deserialize(
20 |         json: JsonElement,
21 |         typeOfT: Type,
22 |         context: JsonDeserializationContext
23 |     ): Map<String, PublicKey> {
24 |         if (!json.isJsonObject || json.isJsonNull || json.asJsonObject.entrySet().isEmpty()) {
25 |             throw JsonParseException("jwks json must be a valid and non-empty json object")
26 |         }
27 |         val jwks = mutableMapOf<String, PublicKey>()
28 |         val keys = json.asJsonObject.getAsJsonArray("keys")
29 |         for (k in keys) {
30 |             val currentKey = k.asJsonObject
31 |             val keyAlg = context.deserialize<String>(currentKey["alg"], String::class.java)
32 |             val keyUse = context.deserialize<String>(currentKey["use"], String::class.java)
33 |             if (RSA_ALGORITHM != keyAlg || USE_SIGNING != keyUse) {
34 |                 //Key not supported at this time
35 |                 continue
36 |             }
37 |             val keyType = context.deserialize<String>(currentKey["kty"], String::class.java)
38 |             val keyId = context.deserialize<String>(currentKey["kid"], String::class.java)
39 |             val keyModulus = context.deserialize<String>(currentKey["n"], String::class.java)
40 |             val keyPublicExponent = context.deserialize<String>(currentKey["e"], String::class.java)
41 |             try {
42 |                 val kf = KeyFactory.getInstance(keyType)
43 |                 val modulus = BigInteger(
44 |                     1,
45 |                     Base64.decode(
46 |                         keyModulus,
47 |                         Base64.URL_SAFE or Base64.NO_PADDING or Base64.NO_WRAP
48 |                     )
49 |                 )
50 |                 val exponent = BigInteger(
51 |                     1,
52 |                     Base64.decode(
53 |                         keyPublicExponent,
54 |                         Base64.URL_SAFE or Base64.NO_PADDING or Base64.NO_WRAP
55 |                     )
56 |                 )
57 |                 val pub = kf.generatePublic(RSAPublicKeySpec(modulus, exponent))
58 |                 jwks[keyId] = pub
59 |             } catch (e: NoSuchAlgorithmException) {
60 |                 Log.e(
61 |                     JwksDeserializer::class.java.simpleName,
62 |                     "Could not parse the JWK with ID $keyId",
63 |                     e
64 |                 )
65 |                 //Would result in an empty key set
66 |             } catch (e: InvalidKeySpecException) {
67 |                 Log.e(
68 |                     JwksDeserializer::class.java.simpleName,
69 |                     "Could not parse the JWK with ID $keyId",
70 |                     e
71 |                 )
72 |             }
73 |         }
74 |         return jwks.toMap()
75 |     }
76 | 
77 |     companion object {
78 |         private const val RSA_ALGORITHM = "RS256"
79 |         private const val USE_SIGNING = "sig"
80 |     }
81 | }


--------------------------------------------------------------------------------
/auth0/src/test/java/com/auth0/android/result/UserProfileTest.java:
--------------------------------------------------------------------------------
  1 | package com.auth0.android.result;
  2 | 
  3 | import org.junit.Before;
  4 | import org.junit.Test;
  5 | import org.mockito.Mockito;
  6 | 
  7 | import java.util.Collections;
  8 | import java.util.Date;
  9 | import java.util.List;
 10 | import java.util.Map;
 11 | 
 12 | import static org.hamcrest.CoreMatchers.nullValue;
 13 | import static org.hamcrest.MatcherAssert.assertThat;
 14 | import static org.hamcrest.core.Is.is;
 15 | 
 16 | public class UserProfileTest {
 17 | 
 18 |     private Date createdAt;
 19 |     private List identities;
 20 |     private Map extraInfo;
 21 |     private Map userMetadata;
 22 |     private Map appMetadata;
 23 |     private UserProfile userProfile;
 24 | 
 25 |     @Before
 26 |     public void setUp() {
 27 |         createdAt = Mockito.mock(Date.class);
 28 |         identities = Collections.emptyList();
 29 |         extraInfo = Collections.emptyMap();
 30 |         userMetadata = Collections.emptyMap();
 31 |         appMetadata = Collections.emptyMap();
 32 |         userProfile = new UserProfile("id", "name", "nickname", "pictureUrl", "email", true, "familyName", createdAt, identities, extraInfo, userMetadata, appMetadata, "givenName");
 33 |     }
 34 | 
 35 |     @Test
 36 |     public void getId() {
 37 |         assertThat(userProfile.getId(), is("id"));
 38 |     }
 39 | 
 40 |     @Test
 41 |     public void shouldReturnSubIfMissingId() {
 42 |         Map<String, Object> extraInfo = Collections.singletonMap("sub", "fromSub");
 43 |         UserProfile userProfile = new UserProfile(null, null, null, null, null, false, null, null, null, extraInfo, null, null, null);
 44 |         assertThat(userProfile.getId(), is("fromSub"));
 45 |     }
 46 | 
 47 |     @Test
 48 |     public void shouldGetNullIdIfMissing() {
 49 |         UserProfile userProfile = new UserProfile(null, null, null, null, null, false, null, null, null, null, null, null, null);
 50 |         assertThat(userProfile.getId(), is(nullValue()));
 51 |     }
 52 | 
 53 |     @Test
 54 |     public void getName() {
 55 |         assertThat(userProfile.getName(), is("name"));
 56 |     }
 57 | 
 58 |     @Test
 59 |     public void getNickname() {
 60 |         assertThat(userProfile.getNickname(), is("nickname"));
 61 |     }
 62 | 
 63 |     @Test
 64 |     public void getEmail() {
 65 |         assertThat(userProfile.getEmail(), is("email"));
 66 |     }
 67 | 
 68 |     @Test
 69 |     public void isEmailVerified() {
 70 |         assertThat(userProfile.isEmailVerified(), is(true));
 71 |     }
 72 | 
 73 |     @Test
 74 |     public void getPictureURL() {
 75 |         assertThat(userProfile.getPictureURL(), is("pictureUrl"));
 76 |     }
 77 | 
 78 |     @Test
 79 |     public void getCreatedAt() {
 80 |         assertThat(userProfile.getCreatedAt(), is(createdAt));
 81 |     }
 82 | 
 83 |     @Test
 84 |     public void getGivenName() {
 85 |         assertThat(userProfile.getGivenName(), is("givenName"));
 86 |     }
 87 | 
 88 |     @Test
 89 |     public void getFamilyName() {
 90 |         assertThat(userProfile.getFamilyName(), is("familyName"));
 91 |     }
 92 | 
 93 |     @Test
 94 |     public void getUserMetadata() {
 95 |         assertThat(userProfile.getUserMetadata(), is(userMetadata));
 96 |     }
 97 | 
 98 |     @Test
 99 |     public void getAppMetadata() {
100 |         assertThat(userProfile.getAppMetadata(), is(appMetadata));
101 |     }
102 | 
103 |     @Test
104 |     public void getExtraInfo() {
105 |         assertThat(userProfile.getExtraInfo(), is(extraInfo));
106 |     }
107 | 
108 |     @Test
109 |     public void getIdentities() {
110 |         assertThat(userProfile.getIdentities(), is(identities));
111 |     }
112 | 
113 | }


--------------------------------------------------------------------------------