1 /** 2 * Copyright 2010 Newcastle University 3 * 4 * http://research.ncl.ac.uk/smart/ 5 * 6 * Licensed to the Apache Software Foundation (ASF) under one or more 7 * contributor license agreements. See the NOTICE file distributed with 8 * this work for additional information regarding copyright ownership. 9 * The ASF licenses this file to You under the Apache License, Version 2.0 10 * (the "License"); you may not use this file except in compliance with 11 * the License. You may obtain a copy of the License at 12 * 13 * http://www.apache.org/licenses/LICENSE-2.0 14 * 15 * Unless required by applicable law or agreed to in writing, software 16 * distributed under the License is distributed on an "AS IS" BASIS, 17 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 18 * See the License for the specific language governing permissions and 19 * limitations under the License. 20 */ 21 22 package org.apache.amber.oauth2.common.error; 23 24 /** 25 * 26 * 27 * 28 */ 29 public abstract class OAuthError { 30 31 //error response params 32 public static final String OAUTH_ERROR = "error"; 33 public static final String OAUTH_ERROR_DESCRIPTION = "error_description"; 34 public static final String OAUTH_ERROR_URI = "error_uri"; 35 36 public static final class CodeResponse { 37 /** 38 * The request is missing a required parameter, includes an 39 unsupported parameter value, or is otherwise malformed. 40 */ 41 public static final String INVALID_REQUEST = "invalid_request"; 42 43 /** 44 * The client is not authorized to request an authorization 45 code using this method. 46 */ 47 public static final String UNAUTHORIZED_CLIENT = "unauthorized_client"; 48 49 /** 50 * The resource owner or authorization server denied the 51 request. 52 */ 53 public static final String ACCESS_DENIED = "access_denied"; 54 55 /** 56 * The authorization server does not support obtaining an 57 authorization code using this method. 58 */ 59 public static final String UNSUPPORTED_RESPONSE_TYPE = "unsupported_response_type"; 60 61 /** 62 * The requested scope is invalid, unknown, or malformed. 63 */ 64 public static final String INVALID_SCOPE = "invalid_scope"; 65 66 /** 67 * The authorization server encountered an unexpected 68 condition which prevented it from fulfilling the request. 69 */ 70 public static final String SERVER_ERROR = "server_error"; 71 72 /** 73 * The authorization server is currently unable to handle 74 the request due to a temporary overloading or maintenance 75 of the server. 76 */ 77 public static final String TEMPORARILY_UNAVAILABLE = "temporarily_unavailable"; 78 79 } 80 81 public static final class TokenResponse { 82 /** 83 The request is missing a required parameter, includes an 84 unsupported parameter value, repeats a parameter, 85 includes multiple credentials, utilizes more than one 86 mechanism for authenticating the client, or is otherwise 87 malformed. 88 */ 89 public static final String INVALID_REQUEST = "invalid_request"; 90 /** 91 Client authentication failed (e.g. unknown client, no 92 client authentication included, or unsupported 93 authentication method). The authorization server MAY 94 return an HTTP 401 (Unauthorized) status code to indicate 95 which HTTP authentication schemes are supported. If the 96 client attempted to authenticate via the "Authorization" 97 request header field, the authorization server MUST 98 respond with an HTTP 401 (Unauthorized) status code, and 99 include the "WWW-Authenticate" response header field 100 matching the authentication scheme used by the client. 101 */ 102 public static final String INVALID_CLIENT = "invalid_client"; 103 104 /** 105 The provided authorization grant (e.g. authorization 106 code, resource owner credentials, client credentials) is 107 invalid, expired, revoked, does not match the redirection 108 URI used in the authorization request, or was issued to 109 another client. 110 */ 111 public static final String INVALID_GRANT = "invalid_grant"; 112 113 /** 114 The authenticated client is not authorized to use this 115 authorization grant type. 116 */ 117 public static final String UNAUTHORIZED_CLIENT = "unauthorized_client"; 118 119 /** 120 The authorization grant type is not supported by the 121 authorization server. 122 */ 123 public static final String UNSUPPORTED_GRANT_TYPE = "unsupported_grant_type"; 124 125 /** 126 * The requested scope is invalid, unknown, malformed, or exceeds the scope granted by the resource owner. 127 */ 128 public static final String INVALID_SCOPE = "invalid_scope"; 129 } 130 131 public static final class ResourceResponse { 132 /** 133 The request is missing a required parameter, includes an 134 unsupported parameter value, repeats a parameter, 135 includes multiple credentials, utilizes more than one 136 mechanism for authenticating the client, or is otherwise 137 malformed. 138 */ 139 public static final String INVALID_REQUEST = "invalid_request"; 140 141 142 public static final String EXPIRED_TOKEN = "expired_token"; 143 144 /** 145 * The request requires higher privileges than provided by the 146 * access token. 147 */ 148 public static final String INSUFFICIENT_SCOPE = "insufficient_scope"; 149 150 /** 151 * The access token provided is expired, revoked, malformed, or 152 * invalid for other reasons. 153 */ 154 public static final String INVALID_TOKEN = "invalid_token"; 155 } 156 157 }