Add option for web auth

Author: marnberg

.gitignore

@@ -6,3 +6,5 @@ build
 .classpath
 bin
 .vscode
+.idea
+.gradle

afero-sdk-client-retrofit2/src/main/java/io/afero/sdk/client/retrofit2/AferoClientRetrofit2.java

@@ -126,10 +126,6 @@ private Config validate() {
                 e = new IllegalArgumentException("oauthClientId must be specified");
             }
 
-            if (oauthClientSecret == null || oauthClientSecret.isEmpty()) {
-                e = new IllegalArgumentException("oauthClientSecret must be specified");
-            }
-
             if (httpLogLevel == null) {
                 e = new IllegalArgumentException("httpLogLevel cannot be null");
             }
@@ -249,7 +245,7 @@ public AferoClientRetrofit2(Config config) {
         mConfig = config;
         mHttpClient = createHttpClient(config.httpLogLevel, config.defaultTimeout);
         mAferoService = createRetrofit().create(AferoClientAPI.class);
-        mOAuthAuthorizationBase64 = Credentials.basic(config.oauthClientId, config.oauthClientSecret);
+        mOAuthAuthorizationBase64 = config.oauthClientSecret != null ? Credentials.basic(config.oauthClientId, config.oauthClientSecret) : "";
     }
 
     // don't use me

samples/afero-lab/app/build.gradle

@@ -35,9 +35,18 @@ android {
         versionName '1.0'
 
         buildConfigField 'String', 'AFERO_CLIENT_ID', project.aferoClientId
-        buildConfigField 'String', 'AFERO_CLIENT_SECRET', project.aferoClientSecret
+        buildConfigField 'String', 'AFERO_CLIENT_SECRET', project.findProperty('aferoClientSecret') ?: 'null'
         buildConfigField 'String', 'AFERO_SERVICE_URL', project.findProperty('aferoServiceUrl') ?: '"https://api.afero.io"'
         buildConfigField 'String', 'AFERO_SOFTHUB_SERVICE', project.findProperty('aferoSofthubService') ?: '"prod"'
+
+        buildConfigField 'String', 'AFERO_OAUTH_AUTH_URL', project.findProperty('aferoOauthAuthUrl') ?: 'null'
+        buildConfigField 'String', 'AFERO_OAUTH_TOKEN_URL', project.findProperty('aferoOauthTokenUrl') ?: 'null'
+        buildConfigField 'String', 'AFERO_OAUTH_REDIRECT_SCHEME', project.findProperty('aferoOauthRedirectScheme') ?: 'null'
+        buildConfigField 'String', 'AFERO_OAUTH_REDIRECT_HOST', project.findProperty('aferoOauthRedirectHost') ?: 'null'
+
+        manifestPlaceholders = [scheme: project.findProperty('aferoOauthRedirectScheme') ?: 'null',
+                                host: project.findProperty('aferoOauthRedirectHost') ?: 'null']
+
     }
 
     buildTypes {
@@ -66,10 +75,16 @@ dependencies {
     implementation fileTree(dir: 'libs', include: ['*.jar'])
 
     // https://github.com/aferodeveloper/AferoJavaSDK
-    implementation "io.afero.sdk:afero-sdk-core:${sdkVersion}"
-    implementation "io.afero.sdk:afero-sdk-client-retrofit2:${sdkVersion}"
-    implementation "io.afero.sdk:afero-sdk-android:${sdkVersion}@aar"
-    implementation "io.afero.sdk:afero-sdk-softhub:${sdkVersion}@aar"
+//    implementation "io.afero.sdk:afero-sdk-core:${sdkVersion}"
+//    implementation "io.afero.sdk:afero-sdk-client-retrofit2:${sdkVersion}"
+//    implementation "io.afero.sdk:afero-sdk-android:${sdkVersion}@aar"
+//    implementation "io.afero.sdk:afero-sdk-softhub:${sdkVersion}@aar"
+    compile files('../../../afero-sdk-client-retrofit2/build/libs/afero-sdk-client-retrofit2.jar')
+    compile files('../../../afero-sdk-android/build/outputs/aar/afero-sdk-android-debug.aar')
+    compile files('../../../afero-sdk-core/build/libs/afero-sdk-core.jar')
+    compile files('../../../afero-sdk-softhub/build/outputs/aar/afero-sdk-softhub-debug.aar')
+
+
     implementation "io.afero.sdk:hubby:1.0.844@aar"
 
     // https://github.com/square/retrofit
@@ -100,4 +115,7 @@ dependencies {
     testImplementation 'junit:junit:4.12'
     implementation 'com.android.support:cardview-v7:27.1.1'
     implementation 'com.android.support:design:27.1.1'
+
+    //https://github.com/openid/AppAuth-Android
+    implementation 'net.openid:appauth:0.9.1'
 }

samples/afero-lab/app/src/main/AndroidManifest.xml

@@ -4,7 +4,8 @@
   -->
 
 <manifest package="io.afero.aferolab"
-          xmlns:android="http://schemas.android.com/apk/res/android">
+    xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:tools="http://schemas.android.com/tools">
 
     <uses-permission android:name="android.permission.INTERNET"/>
     <uses-permission android:name="android.permission.ACCESS_NETWORK_STATE"/>
@@ -30,6 +31,19 @@
                 <category android:name="android.intent.category.LAUNCHER"/>
             </intent-filter>
         </activity>
+        <activity
+            android:name="net.openid.appauth.RedirectUriReceiverActivity"
+            tools:node="replace"
+            >
+            <intent-filter>
+                <action android:name="android.intent.action.VIEW" />
+                <category android:name="android.intent.category.DEFAULT" />
+                <category android:name="android.intent.category.BROWSABLE" />
+                <data
+                    android:scheme="hubspace-app"
+                    android:host="loginredirect" />
+            </intent-filter>
+        </activity>
     </application>
 
 </manifest>

samples/afero-lab/app/src/main/java/io/afero/aferolab/MainActivity.java

@@ -4,12 +4,14 @@
 
 package io.afero.aferolab;
 
+import android.app.Activity;
 import android.content.BroadcastReceiver;
 import android.content.Context;
 import android.content.Intent;
 import android.content.IntentFilter;
 import android.net.ConnectivityManager;
 import android.net.NetworkInfo;
+import android.net.Uri;
 import android.os.Bundle;
 import android.support.annotation.NonNull;
 import android.support.v7.app.AppCompatActivity;
@@ -19,8 +21,20 @@
 import android.view.MenuItem;
 import android.view.View;
 import android.view.ViewGroup;
+import android.widget.Button;
 import android.widget.TextView;
 
+import androidx.activity.result.ActivityResultLauncher;
+import androidx.activity.result.contract.ActivityResultContracts;
+
+import net.openid.appauth.AuthState;
+import net.openid.appauth.AuthorizationException;
+import net.openid.appauth.AuthorizationRequest;
+import net.openid.appauth.AuthorizationResponse;
+import net.openid.appauth.AuthorizationService;
+import net.openid.appauth.AuthorizationServiceConfiguration;
+import net.openid.appauth.ResponseTypeValues;
+
 import java.lang.ref.WeakReference;
 import java.net.HttpURLConnection;
 
@@ -74,6 +88,11 @@ public class MainActivity extends AppCompatActivity {
     private AferoSofthub mAferoSofthub;
     private ConnectivityReceiver mConnectivityReceiver;
 
+    private ActivityResultLauncher<Intent> launcher;
+    private AuthorizationService mAuthService;
+    private AuthorizationServiceConfiguration mServiceConfig;
+    private AuthState mAuthState;
+
     private String mUserId;
 
     private final Observer<AferoSofthub> mAferoSofthubStartObserver = new RxUtils.IgnoreResponseObserver<>();
@@ -99,6 +118,12 @@ public class MainActivity extends AppCompatActivity {
     @BindView(R.id.edit_text_password)
     AferoEditText mPasswordEditText;
 
+    @BindView(R.id.button_forgot_password)
+    Button mForgotPasswordButton;
+
+    @BindView(R.id.button_sign_in)
+    Button mSignInButton;
+
     @BindView(R.id.group_sign_in)
     ViewGroup mSignInGroup;
 
@@ -135,14 +160,38 @@ protected void onCreate(Bundle savedInstanceState) {
             ? new AccessToken(accessToken, refreshToken)
             : null;
 
-        AferoClientRetrofit2.Config aferoClientConfig = new AferoClientRetrofit2.ConfigBuilder()
+        AferoClientRetrofit2.ConfigBuilder configBuilder = new AferoClientRetrofit2.ConfigBuilder()
                 .oauthClientId(BuildConfig.AFERO_CLIENT_ID)
-                .oauthClientSecret(BuildConfig.AFERO_CLIENT_SECRET)
                 .baseUrl(BuildConfig.AFERO_SERVICE_URL)
-                .logLevel(BuildConfig.HTTP_LOG_LEVEL)
-                .build();
+                .logLevel(BuildConfig.HTTP_LOG_LEVEL);
+
+        if (BuildConfig.AFERO_CLIENT_SECRET != null) {
+            configBuilder.oauthClientSecret(BuildConfig.AFERO_CLIENT_SECRET);
+        }
+
+        if (BuildConfig.AFERO_OAUTH_AUTH_URL != null && BuildConfig.AFERO_OAUTH_TOKEN_URL != null) {
+            mServiceConfig =
+                    new AuthorizationServiceConfiguration(
+                            Uri.parse(BuildConfig.AFERO_OAUTH_AUTH_URL), // authorization endpoint
+                            Uri.parse(BuildConfig.AFERO_OAUTH_TOKEN_URL));
+            mAuthState = new AuthState(mServiceConfig);
+            launcher = registerForActivityResult(
+                    new ActivityResultContracts.StartActivityForResult(),
+                    result -> {
+                        if (result.getResultCode() == Activity.RESULT_OK) {
+                            // There are no request codes
+                            Intent data = result.getData();
+                            AuthorizationResponse response = AuthorizationResponse.fromIntent(data);
+                            AuthorizationException ex = AuthorizationException.fromIntent(data);
+
+                            System.out.println("Access Token " + response.authorizationCode);
+                            exchangeAuthorizationCode(response);
+                        }
+                    });
+        }
 
-        mAferoClient = new AferoClientRetrofit2(aferoClientConfig);
+
+        mAferoClient = new AferoClientRetrofit2(configBuilder.build());
         mAferoClient.setOwnerAndActiveAccountId(accountId);
 
         mDeviceCollection = new DeviceCollection(mAferoClient);
@@ -320,6 +369,12 @@ private void stopDeviceInspector() {
     }
 
     private void setupViews() {
+        if (BuildConfig.AFERO_OAUTH_AUTH_URL != null) {
+            mEmailEditText.setVisibility(View.GONE);
+            mPasswordEditText.setVisibility(View.GONE);
+            mForgotPasswordButton.setVisibility(View.GONE);
+        }
+
         if (isSignedIn()) {
             mSignInGroup.setVisibility(View.GONE);
             mStatusGroup.setVisibility(View.VISIBLE);
@@ -380,8 +435,30 @@ public boolean onEditorActionSignIn(TextView textView, int actionId, KeyEvent ev
 
     @OnClick(R.id.button_sign_in)
     public void onClickSignIn() {
-        mPasswordEditText.hideKeyboard();
-        startSignIn(mEmailEditText.getText().toString(), mPasswordEditText.getText().toString());
+        if (BuildConfig.AFERO_OAUTH_AUTH_URL != null) {
+
+            mSignInButton.setEnabled(false);
+            showConclaveStatus(ConclaveClient.Status.CONNECTING);
+
+            AuthorizationRequest.Builder authRequestBuilder =
+                    new AuthorizationRequest.Builder(
+                            mServiceConfig, // the authorization service configuration
+                            "hubspace_android",
+                            // the client ID, typically pre-registered and static
+                            ResponseTypeValues.CODE, // the response_type value: we want a code
+                            Uri.parse("hubspace-app://loginredirect")
+                    );
+
+
+            mAuthService = new AuthorizationService(this);
+            Intent authIntent = mAuthService.getAuthorizationRequestIntent(authRequestBuilder.build());
+
+            launcher.launch(authIntent);
+        } else {
+
+            mPasswordEditText.hideKeyboard();
+            startSignIn(mEmailEditText.getText().toString(), mPasswordEditText.getText().toString());
+        }
     }
 
     @OnClick(R.id.button_forgot_password)