class OAuth2::Strategy::AuthCode
The Authorization Code Strategy
@see datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-15#section-4.1
Public Instance Methods
Source
# File lib/oauth2/strategy/auth_code.rb 30 def get_token(code, params = {}, opts = {}) 31 params = {"grant_type" => "authorization_code", "code" => code}.merge(@client.redirection_params).merge(params) 32 params_dup = params.dup 33 params.each_key do |key| 34 params_dup[key.to_s] = params_dup.delete(key) if key.is_a?(Symbol) 35 end 36 37 @client.get_token(params_dup, opts) 38 end
Retrieve an access token given the specified validation code.
@param [String] code The Authorization Code value @param [Hash] params additional params @param [Hash] opts access_token_opts, @see Client#get_token
@note that you must also provide a :redirect_uri with most OAuth 2.0 providers
Private Instance Methods
Source
# File lib/oauth2/strategy/auth_code.rb 42 def assert_valid_params(params) 43 raise(ArgumentError, "client_secret is not allowed in authorize URL query params") if params.key?(:client_secret) || params.key?("client_secret") 44 end