/// <summary>
/// Gets the URI used to start the OAuth2.0 authorization flow. Passes in codeChallenge generated in this class
/// </summary>
/// <param name="oauthResponseType">The grant type requested, either <c>Token</c> or <c>Code</c>.</param>
/// <param name="clientId">The apps key, found in the
/// <a href="https://www.dropbox.com/developers/apps">App Console</a>.</param>
/// <param name="redirectUri">Where to redirect the user after authorization has completed. This must be the exact URI
/// registered in the <a href="https://www.dropbox.com/developers/apps">App Console</a>; even <c>localhost</c>
/// must be listed if it is used for testing. A redirect URI is required for a token flow, but optional for code.
/// If the redirect URI is omitted, the code will be presented directly to the user and they will be invited to enter
/// the information in your app.</param>
/// <param name="state">Up to 500 bytes of arbitrary data that will be passed back to <paramref name="redirectUri"/>.
/// This parameter should be used to protect against cross-site request forgery (CSRF).</param>
/// <param name="forceReapprove">Whether or not to force the user to approve the app again if they've already done so.
/// If <c>false</c> (default), a user who has already approved the application may be automatically redirected to
/// <paramref name="redirectUri"/>If <c>true</c>, the user will not be automatically redirected and will have to approve
/// the app again.</param>
/// <param name="disableSignup">When <c>true</c> (default is <c>false</c>) users will not be able to sign up for a
/// Dropbox account via the authorization page. Instead, the authorization page will show a link to the Dropbox
/// iOS app in the App Store. This is only intended for use when necessary for compliance with App Store policies.</param>
/// <param name="requireRole">If this parameter is specified, the user will be asked to authorize with a particular
/// type of Dropbox account, either work for a team account or personal for a personal account. Your app should still
/// verify the type of Dropbox account after authorization since the user could modify or remove the require_role
/// parameter.</param>
/// <param name="forceReauthentication"> If <c>true</c>, users will be signed out if they are currently signed in.
/// This will make sure the user is brought to a page where they can create a new account or sign in to another account.
/// This should only be used when there is a definite reason to believe that the user needs to sign in to a new or
/// different account.</param>
/// <param name="tokenAccessType">Determines the type of token to request. See <see cref="TokenAccessType" />
/// for information on specific types available. If none is specified, this will use the legacy type.</param>
/// <param name="scopeList">list of scopes to request in base oauth flow. If left blank, will default to all scopes for app</param>
/// <param name="includeGrantedScopes">which scopes to include from previous grants. Note: if this user has never linked the app, include_granted_scopes must be None</param>
/// <returns>The uri of a web page which must be displayed to the user in order to authorize the app.</returns>
public Uri GetAuthorizeUri(OAuthResponseType oauthResponseType, string clientId, string redirectUri = null, string state = null, bool forceReapprove = false, bool disableSignup = false, string requireRole = null, bool forceReauthentication = false, TokenAccessType tokenAccessType = TokenAccessType.Legacy, string[] scopeList = null, IncludeGrantedScopes includeGrantedScopes = IncludeGrantedScopes.None)
{
return(DropboxOAuth2Helper.GetAuthorizeUri(oauthResponseType, clientId, redirectUri, state, forceReapprove, disableSignup, requireRole, forceReauthentication, tokenAccessType, scopeList, includeGrantedScopes, this.CodeChallenge));
}
/// <summary>
/// Processes the second half of the OAuth 2.0 code flow. Uses the codeVerifier created in this class to execute second half.
/// </summary>
/// <param name="responseUri">The URI to which the user was redirected after the initial authorization request.</param>
/// <param name="appKey">The application key, found in the
/// <a href="https://www.dropbox.com/developers/apps">App Console</a>.</param>
/// <param name="redirectUri">The redirect URI that was provided in the initial authorize URI,
/// this is only used to validate that it matches the original request, it is not used to redirect
/// again.</param>
/// <param name="state">The state parameter (if any) that matches that used in the initial authorize URI.</param>
/// <param name="client">An optional http client instance used to make requests.</param>
/// <returns>The authorization response, containing the access token and uid of the authorized user</returns>
public Task <OAuth2Response> ProcessCodeFlowAsync(Uri responseUri, string appKey, string redirectUri = null, string state = null, HttpClient client = null)
{
return(DropboxOAuth2Helper.ProcessCodeFlowAsync(responseUri, appKey, null, redirectUri, state, client, this.CodeVerifier));
}
/// <summary>
/// Default constructor that also generates code verifier and code challenge to be used in PKCE flow
/// </summary>
public PKCEOAuthFlow()
{
this.CodeVerifier = DropboxOAuth2Helper.GeneratePKCECodeVerifier();
this.CodeChallenge = DropboxOAuth2Helper.GeneratePKCECodeChallenge(CodeVerifier);
}
