Return-Path: 
 <user-return-84-apmail-oltu-user-archive=oltu.apache.org@oltu.apache.org>
X-Original-To: apmail-oltu-user-archive@www.apache.org
Delivered-To: apmail-oltu-user-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id EB7C710BB0
	for <apmail-oltu-user-archive@www.apache.org>;
 Tue, 19 Nov 2013 14:00:37 +0000 (UTC)
Received: (qmail 27281 invoked by uid 500); 19 Nov 2013 14:00:26 -0000
Delivered-To: apmail-oltu-user-archive@oltu.apache.org
Received: (qmail 27206 invoked by uid 500); 19 Nov 2013 14:00:19 -0000
Mailing-List: contact user-help@oltu.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:user-help@oltu.apache.org>
List-Unsubscribe: <mailto:user-unsubscribe@oltu.apache.org>
List-Post: <mailto:user@oltu.apache.org>
List-Id: <user.oltu.apache.org>
Reply-To: user@oltu.apache.org
Delivered-To: mailing list user@oltu.apache.org
Received: (qmail 27132 invoked by uid 99); 19 Nov 2013 14:00:17 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 19 Nov 2013 14:00:17 +0000
X-ASF-Spam-Status: No, hits=1.5 required=5.0
	tests=HTML_MESSAGE,RCVD_IN_DNSWL_LOW,SPF_PASS
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of lumus.sensus@gmail.com
 designates 74.125.82.174 as permitted sender)
Received: from [74.125.82.174] (HELO mail-we0-f174.google.com) (74.125.82.174)
    by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 19 Nov 2013 14:00:11 +0000
Received: by mail-we0-f174.google.com with SMTP id q58so1933103wes.5
        for <user@oltu.apache.org>; Tue, 19 Nov 2013 05:59:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20120113;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type;
        bh=x3bXc3onjp7EWWp9eDy8WdNLWfJOUJt/wH7eXAd62PY=;
        b=kxt0pxzOyDiR55G7oL7VABwfXnUdcHduH5wREwLnIXBwKiJrlVjMdku5TFx8s3hfdz
         QbcSo+vVspY/+5t3lV5EPD0txd6MNCc4CgCYUFkrnrcXd+QIGCDKkG3B6lz6HXPRvBHF
         kAzj3a507ruwRkOxVd1r8wQN5DWJ0Olx4v5ZB/qF4a+SCRBnoakN6QAsajquQBw97aL6
         17m752gZgiTSv/LVnmdWHeeykovrpqPFwQXQQmObcnxnuIRcjt0RRc2a0uZ4JaOoTkoi
         62xmexWjsR01ayKUjnJX43UEW0YHi+LOUd9Rlm9Z1p5lczEQ8qcUEWUVdNLO+utktJ+B
         vp/Q==
MIME-Version: 1.0
X-Received: by 10.180.184.14 with SMTP id eq14mr21258282wic.56.1384869590391;
 Tue, 19 Nov 2013 05:59:50 -0800 (PST)
Received: by 10.227.101.69 with HTTP; Tue, 19 Nov 2013 05:59:50 -0800 (PST)
In-Reply-To: <CA5E97D0-E52E-497C-884D-C33BE719A565@adobe.com>
References: 
 <CALowLbHxDs-MBcNxAmiYnb9+ungC8KdtGbxj=kFTSCaQpJ+rPQ@mail.gmail.com>
	<CA5E97D0-E52E-497C-884D-C33BE719A565@adobe.com>
Date: Tue, 19 Nov 2013 13:59:50 +0000
Message-ID: 
 <CALowLbHhu+wow_X+mG-8StsR9hzaiKqenwhNQe4dv9JGy7KbdQ@mail.gmail.com>
Subject: Re: Client demo webapp
From: Lumus Sensus <lumus.sensus@gmail.com>
To: user@oltu.apache.org
Content-Type: multipart/alternative; boundary=001a11c2436efee24404eb88134c
X-Virus-Checked: Checked by ClamAV on apache.org

--001a11c2436efee24404eb88134c
Content-Type: text/plain; charset=ISO-8859-1

Okay, that works and makes sense as this is a client demo and you wouldn't
normally try and access a resource on the client like I was.

I see your page (
https://cwiki.apache.org/confluence/display/OLTU/OAuth+2.0+Resource+Server),
mentions validating the access token. Do you intend to add a token info
endpoint for the AS to be able do this or are you leaving this to
implementers?

Additionally, do you think you might support JOSE/JWT to enable token
validation on the resource server in the future?

Thanks,
Lumus




On Tue, Nov 19, 2013 at 12:43 PM, Antonio Sanso <asanso@adobe.com> wrote:

> try add https://graph.facebook.com/me
>
> On Nov 19, 2013, at 1:08 PM, Lumus Sensus <lumus.sensus@gmail.com> wrote:
>
> Hello,
>
> I'm running the demo client webapp under jetty with facebook as the AS
> (workflow started from http://localhost:8080/). When I get to step 3 (get
> resource), what am I supposed to add to the resource URL?
> I've tried http://localhost:8080/get_resource but this returns:
>
> java.lang.NullPointerException
>     at
> org.apache.oltu.oauth2.client.URLConnectionClient.execute(URLConnectionClient.java:62)
>     at
> org.apache.oltu.oauth2.client.OAuthClient.resource(OAuthClient.java:81)
>     at
> org.apache.oltu.oauth2.client.demo.controller.ResourceController.authorize(ResourceController.java:64
>
> Is the ResourceController attempting to validate the token or just check
> one is there? Why is it failing?
>
> Thanks,
> Lumus
>
>
>

--001a11c2436efee24404eb88134c
Content-Type: text/html; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable

<div dir=3D"ltr"><div><div><div><div>Okay, that works and makes sense as th=
is is a client demo and you wouldn&#39;t normally try and access a resource=
 on the client like I was. <br><br></div>I see your page (<a href=3D"https:=
//cwiki.apache.org/confluence/display/OLTU/OAuth+2.0+Resource+Server">https=
://cwiki.apache.org/confluence/display/OLTU/OAuth+2.0+Resource+Server</a>),=
 mentions validating the access token. Do you intend to add a token info en=
dpoint for the AS to be able do this or are you leaving this to implementer=
s? <br>
</div><br>Additionally, do you think you might support JOSE/JWT to enable t=
oken validation on the resource server in the future?<br><br></div>Thanks,<=
br></div>Lumus<br><div><div><div><div><div><div><br><br></div></div></div>
</div></div></div></div><div class=3D"gmail_extra"><br><br><div class=3D"gm=
ail_quote">On Tue, Nov 19, 2013 at 12:43 PM, Antonio Sanso <span dir=3D"ltr=
">&lt;<a href=3D"mailto:asanso@adobe.com" target=3D"_blank">asanso@adobe.co=
m</a>&gt;</span> wrote:<br>
<blockquote class=3D"gmail_quote" style=3D"margin:0 0 0 .8ex;border-left:1p=
x #ccc solid;padding-left:1ex"><div style=3D"word-wrap:break-word">try add =
https://<span>graph</span><span>.</span><span>facebook</span><span>.</span>=
<span>com/me</span><div>
<div class=3D"h5"><div><br></div><div><div>On Nov 19, 2013, at 1:08 PM, Lum=
us Sensus &lt;<a href=3D"mailto:lumus.sensus@gmail.com" target=3D"_blank">l=
umus.sensus@gmail.com</a>&gt; wrote:</div><br><blockquote type=3D"cite"><di=
v dir=3D"ltr">
<div><div><div><div><div>Hello,<br><br></div>I&#39;m running the demo clien=
t webapp under jetty with facebook as the AS (workflow started from <a href=
=3D"http://localhost:8080/" target=3D"_blank">http://localhost:8080/</a>). =
When I get to step 3 (get resource), what am I supposed to add to the resou=
rce URL?<br>

</div><div>I&#39;ve tried <a href=3D"http://localhost:8080/get_resource" ta=
rget=3D"_blank">http://localhost:8080/get_resource</a> but this returns: <b=
r><br>java.lang.NullPointerException<br>=A0=A0=A0 at org.apache.oltu.oauth2=
.client.URLConnectionClient.execute(URLConnectionClient.java:62)<br>

=A0=A0=A0 at org.apache.oltu.oauth2.client.OAuthClient.resource(OAuthClient=
.java:81)<br>=A0=A0=A0 at org.apache.oltu.oauth2.client.demo.controller.Res=
ourceController.authorize(ResourceController.java:64<br><br></div></div>Is =
the ResourceController attempting to validate the token or just check one i=
s there? Why is it failing?<br>

</div><div><br></div>Thanks,<br></div>Lumus<br><br></div>
</blockquote></div><br></div></div></div></blockquote></div><br></div>

--001a11c2436efee24404eb88134c--