feat: add authorize_url and token_url for refresh token

Encore Shao · Encore Shao · commit 44558fa943fc · 2022-10-26T20:58:15.000+08:00
diff --git a/.rubocop.yml b/.rubocop.yml
@@ -20,3 +20,6 @@ Style/Documentation:
 
 Metrics/BlockLength:
   Max: 150
+
+Metrics/MethodLength:
+  Max: 50
diff --git a/README.md b/README.md
@@ -132,6 +132,12 @@ irb(main):018:0> response[:results][0].as_json
 }
 ```
 
+**Refresh User Token**
+
+```ruby
+irb(main):005:0> client.refresh_token
+```
+
 ## Copyright
 
 Copyright (c) 2022 Encore Shao. See LICENSE for details.
diff --git a/lib/office365.rb b/lib/office365.rb
@@ -9,11 +9,9 @@
 
 module Office365
   API_HOST      = "https://graph.microsoft.com"
-  LOGIN_HOST    = "https://login.microsoftonline.com/"
-
-  AUTHORIZE_URL = "common/oauth2/authorize"
-  TOKEN_URL     = "common/oauth2/token"
   API_VERSION   = "v1.0"
+
+  LOGIN_HOST    = "https://login.microsoftonline.com"
   SCOPE         = "User.read Calendars.read Mail.ReadBasic Contacts.Read"
 
   class Error < StandardError; end
diff --git a/lib/office365/rest/token.rb b/lib/office365/rest/token.rb
@@ -3,28 +3,33 @@
 module Office365
   module REST
     module Token
-      def token_refresh
-        args = {
-          refresh_token: refresh_token,
+      def authorize_url
+        base_uri = [LOGIN_HOST, "/#{tenant_id}/oauth2/v2.0/authorize"].join
+        azure_params = {
           client_id: client_id,
           client_secret: client_secret,
-          grant_type: "refresh_token"
-        }
+          scope: Office365::SCOPE,
+          response_type: "code",
+          response_mode: "query",
+          redirect_uri: redirect_uri,
+          state: SecureRandom.hex
+        }.to_query
 
-        post(oauth_client.token_url, args)
+        [base_uri, "?", azure_params].join
       end
 
-      private
+      def token_url
+        [LOGIN_HOST, "/#{tenant_id}/oauth2/v2.0/token"].join
+      end
 
-      def oauth_client
-        @oauth_client ||= OAuth2::Client.new(
-          client_id,
-          client_secret,
-          authorize_url: AUTHORIZE_URL,
-          site: LOGIN_HOST,
-          token_url: TOKEN_URL,
-          redirect_uri: redirect_uri
-        )
+      def token_refresh
+        post(token_url, {
+               refresh_token: refresh_token,
+               client_id: client_id,
+               client_secret: client_secret,
+               grant_type: "refresh_token",
+               scope: Office365::SCOPE
+             })
       end
     end
   end
diff --git a/spec/office365/client_spec.rb b/spec/office365/client_spec.rb
@@ -3,6 +3,7 @@
 RSpec.describe Office365::Client do
   let(:client) do
     Office365::REST::Client.new do |config|
+      config.tenant_id = "12345"
       config.access_token = "token"
     end
   end
@@ -67,4 +68,16 @@
 
     expect(response[:results].size).to eq(1)
   end
+
+  it "returns authorize URL" do
+    expect(client.authorize_url).to include("https://login.microsoftonline.com/12345/oauth2/v2.0/authorize")
+  end
+
+  it "returns token URL" do
+    expect(client.token_url).to eq("https://login.microsoftonline.com/12345/oauth2/v2.0/token")
+  end
+
+  xit "be able to refresh token by refresh_token" do
+    expect(client.token_refresh).to eq({})
+  end
 end
