Class OAuthLoginController

The following is documentation for a single class.The full javadocs are the bottom.

Javadoc summary: Handles oauth authentication.

Method Information
Method Request Narrowing Description
Path(s) GET/POST Params Headers Content Types
handleError(...)/auth/oauthGET error Handle any errors that have occurred in the oauth process.
handleStep1(...)/auth/oauthGET redir This handles the first step in the oauth process.
handleStep234(...)/auth/oauthGET code, state The handles steps 2, 3, and 4 of the oauth process after the redirect to oauth provider has occurred back from clicking on the "Login With OAuth" sort of button.

Handles oauth authentication.

  1. API calls support checking out auth-token. Is it still valid?
  2. If necessary, redirects to logging in user to the oauth handler. Might just redirect back if valid auth-token.
  3. If not valid, sends a redirect to OAuth Provider (Google) for login consent page.
  4. after confirming oauth consent page, redirect back to here with an attached success authorization code or an error message in url.
  5. after receiving the auth code, post the auth code to the oauth provider for an access token and email (if necessary).
  6. redirects the user back to caller URL specified in the params.
  7. caller is encouraged to make a backend call to validate the auth-token.


@author graywatson

Path summary      Class summary

Generated by Spring Request Doclet package.