protected async void OnSignoutButtonClicked(object sender, EventArgs e)
{
if (authState.RefreshToken == null && authState.AccessToken == null)
{
return;
}
var endpoint = await authState.GetRevocationEndpointAsync();
if (endpoint != null)
{
#if true
// Use custom HttpClientHandler for demonstration. (next 4 lines)
var handler = new HttpClientHandlerEx();
handler.BeforeRequestAsyncHooks += LogPage.HttpRequestLoggerAsync;
handler.AfterResponseAsyncHooks += LogPage.HttpResponseLoggerAsync;
var client = new TokenRevocationClient(endpoint, innerHttpMessageHandler: handler);
#else
// This is normal implementation.
var client = new TokenRevocationClient(endpoint);
#endif
var result = await client.RevokeAsync(new TokenRevocationRequest {
Token = authState.RefreshToken ?? authState.AccessToken
});
#if true
// Google Accounts will return an "invalid_token" error on HTTP 400, not HTTP 200,
// in response to a revocation request for a token that has already been revoked.
if (result.IsError && result.Error != "invalid_token")
{
#else
// This is normal implementation.
if (result.IsError)
{
#endif
#region // Write program to be executed when revoking authorization fails.
ShowAuthState();
ResultLabel.Text = StringResources.MsgAuthRevokeNg;
#endregion
return;
}
}
#region // Program to be executed when revoking authorization succeeds.
authState.Reset();
ShowAuthState();
ResultLabel.Text = StringResources.MsgAuthRevokeOk;
#endregion
}
public virtual bool HandleAuthChallenge(HttpHost host, HttpResponse response, AuthenticationStrategy
authStrategy, AuthState authState, HttpContext context)
{
try
{
if (this.log.IsDebugEnabled())
{
this.log.Debug(host.ToHostString() + " requested authentication");
}
IDictionary <string, Header> challenges = authStrategy.GetChallenges(host, response
, context);
if (challenges.IsEmpty())
{
this.log.Debug("Response contains no authentication challenges");
return(false);
}
AuthScheme authScheme = authState.GetAuthScheme();
switch (authState.GetState())
{
case AuthProtocolState.Failure:
{
return(false);
}
case AuthProtocolState.Success:
{
authState.Reset();
break;
}
case AuthProtocolState.Challenged:
case AuthProtocolState.Handshake:
{
if (authScheme == null)
{
this.log.Debug("Auth scheme is null");
authStrategy.AuthFailed(host, null, context);
authState.Reset();
authState.SetState(AuthProtocolState.Failure);
return(false);
}
goto case AuthProtocolState.Unchallenged;
}
case AuthProtocolState.Unchallenged:
{
if (authScheme != null)
{
string id = authScheme.GetSchemeName();
Header challenge = challenges.Get(id.ToLower(CultureInfo.InvariantCulture));
if (challenge != null)
{
this.log.Debug("Authorization challenge processed");
authScheme.ProcessChallenge(challenge);
if (authScheme.IsComplete())
{
this.log.Debug("Authentication failed");
authStrategy.AuthFailed(host, authState.GetAuthScheme(), context);
authState.Reset();
authState.SetState(AuthProtocolState.Failure);
return(false);
}
else
{
authState.SetState(AuthProtocolState.Handshake);
return(true);
}
}
else
{
authState.Reset();
}
}
}
}
// Retry authentication with a different scheme
Queue <AuthOption> authOptions = authStrategy.Select(challenges, host, response, context
);
if (authOptions != null && !authOptions.IsEmpty())
{
if (this.log.IsDebugEnabled())
{
this.log.Debug("Selected authentication options: " + authOptions);
}
authState.SetState(AuthProtocolState.Challenged);
authState.Update(authOptions);
return(true);
}
else
{
return(false);
}
}
catch (MalformedChallengeException ex)
{
if (this.log.IsWarnEnabled())
{
this.log.Warn("Malformed challenge: " + ex.Message);
}
authState.Reset();
return(false);
}
}
/// <exception cref="System.IO.IOException"></exception>
/// <exception cref="Apache.Http.HttpException"></exception>
public virtual CloseableHttpResponse Execute(HttpRoute route, HttpRequestWrapper
request, HttpClientContext context, HttpExecutionAware execAware)
{
Args.NotNull(route, "HTTP route");
Args.NotNull(request, "HTTP request");
Args.NotNull(context, "HTTP context");
IList <URI> redirectLocations = context.GetRedirectLocations();
if (redirectLocations != null)
{
redirectLocations.Clear();
}
RequestConfig config = context.GetRequestConfig();
int maxRedirects = config.GetMaxRedirects() > 0 ? config.GetMaxRedirects() : 50;
HttpRoute currentRoute = route;
HttpRequestWrapper currentRequest = request;
for (int redirectCount = 0; ;)
{
CloseableHttpResponse response = requestExecutor.Execute(currentRoute, currentRequest
, context, execAware);
try
{
if (config.IsRedirectsEnabled() && this.redirectStrategy.IsRedirected(currentRequest
, response, context))
{
if (redirectCount >= maxRedirects)
{
throw new RedirectException("Maximum redirects (" + maxRedirects + ") exceeded");
}
redirectCount++;
IHttpRequest redirect = this.redirectStrategy.GetRedirect(currentRequest, response
, context);
if (!redirect.HeaderIterator().HasNext())
{
IHttpRequest original = request.GetOriginal();
redirect.SetHeaders(original.GetAllHeaders());
}
currentRequest = HttpRequestWrapper.Wrap(redirect);
if (currentRequest is HttpEntityEnclosingRequest)
{
Proxies.EnhanceEntity((HttpEntityEnclosingRequest)currentRequest);
}
URI uri = currentRequest.GetURI();
HttpHost newTarget = URIUtils.ExtractHost(uri);
if (newTarget == null)
{
throw new ProtocolException("Redirect URI does not specify a valid host name: " +
uri);
}
// Reset virtual host and auth states if redirecting to another host
if (!currentRoute.GetTargetHost().Equals(newTarget))
{
AuthState targetAuthState = context.GetTargetAuthState();
if (targetAuthState != null)
{
this.log.Debug("Resetting target auth state");
targetAuthState.Reset();
}
AuthState proxyAuthState = context.GetProxyAuthState();
if (proxyAuthState != null)
{
AuthScheme authScheme = proxyAuthState.GetAuthScheme();
if (authScheme != null && authScheme.IsConnectionBased())
{
this.log.Debug("Resetting proxy auth state");
proxyAuthState.Reset();
}
}
}
currentRoute = this.routePlanner.DetermineRoute(newTarget, currentRequest, context
);
if (this.log.IsDebugEnabled())
{
this.log.Debug("Redirecting to '" + uri + "' via " + currentRoute);
}
EntityUtils.Consume(response.GetEntity());
response.Close();
}
else
{
return(response);
}
}
catch (RuntimeException ex)
{
response.Close();
throw;
}
catch (IOException ex)
{
response.Close();
throw;
}
catch (HttpException ex)
{
// Protocol exception related to a direct.
// The underlying connection may still be salvaged.
try
{
EntityUtils.Consume(response.GetEntity());
}
catch (IOException ioex)
{
this.log.Debug("I/O error while releasing connection", ioex);
}
finally
{
response.Close();
}
throw;
}
}
}