JavaScriptBach
diff --git a/‎ChangeLog.txt
+1 b/‎ChangeLog.txt
+1
diff --git a/‎build.gradle
+11-3 b/‎build.gradle
+11-3
diff --git a/‎examples/authorize/src/main/java/com/dropbox/core/examples/authorize/Main.java
+8-7 b/‎examples/authorize/src/main/java/com/dropbox/core/examples/authorize/Main.java
+8-7
diff --git a/‎examples/build.gradle
+1 b/‎examples/build.gradle
+1
diff --git a/‎examples/web-file-browser/src/main/java/com/dropbox/core/examples/web_file_browser/DropboxAuth.java
+31-32 b/‎examples/web-file-browser/src/main/java/com/dropbox/core/examples/web_file_browser/DropboxAuth.java
+31-32
diff --git a/‎src/main/java/com/dropbox/core/DbxAuthFinish.java
+5-1 b/‎src/main/java/com/dropbox/core/DbxAuthFinish.java
+5-1
diff --git a/‎src/main/java/com/dropbox/core/DbxRequestUtil.java
+13-2 b/‎src/main/java/com/dropbox/core/DbxRequestUtil.java
+13-2
diff --git a/‎src/main/java/com/dropbox/core/DbxSessionStore.java
+1-2 b/‎src/main/java/com/dropbox/core/DbxSessionStore.java
+1-2
@@ -4,6 +4,7 @@
 - Fix ExceptionInInitializationError caused by CertificateParsingException when using Java 6 JREs.
 - Add support for OkHttp3.
 - Add support for Google App Engine with new GoogleAppEngineRequestor.
+- Add support for require_role, force_reapprove, state, and disable_signup parameters in the OAuth 2 web-based authorization flow (DbxWebAuth).
 
 2.0.4 (2016-05-31)
 ---------------------------------------------
 
@@ -1,3 +1,5 @@
+import org.gradle.internal.os.OperatingSystem;
+
 apply plugin: 'java'
 apply plugin: 'osgi'
 apply plugin: 'maven'
@@ -242,9 +244,15 @@ if (project.sourceCompatibility == JavaVersion.VERSION_1_6) {
 
         logger.info("Setting JVM boot classpath to use ${jdkHome}")
         project.tasks.withType(JavaCompile) {
-            options.bootClasspath = "${jdkHome}/jre/lib/rt.jar"
-            options.bootClasspath += "${sep}${jdkHome}/jre/lib/jsse.jar"
-            options.bootClasspath += "${sep}${jdkHome}/jre/lib/jce.jar"
+            def jdkLibs = "${jdkHome}/jre/lib"
+            def runtimeClasses = "rt.jar"
+            if (OperatingSystem.current().isMacOsX()) {
+                jdkLibs = "${jdkHome}/Classes"
+                runtimeClasses = "classes.jar"
+            }
+            options.bootClasspath = "${jdkLibs}/${runtimeClasses}"
+            options.bootClasspath += "${sep}${jdkLibs}/jsse.jar"
+            options.bootClasspath += "${sep}${jdkLibs}/jce.jar"
         }
     }
 }
 
@@ -6,13 +6,11 @@
 import com.dropbox.core.DbxException;
 import com.dropbox.core.DbxRequestConfig;
 import com.dropbox.core.DbxWebAuth;
-import com.dropbox.core.DbxWebAuthNoRedirect;
 import com.dropbox.core.json.JsonReader;
 
 import java.io.BufferedReader;
-import java.io.IOException;
 import java.io.InputStreamReader;
-import java.io.PrintStream;
+import java.io.IOException;
 import java.util.logging.Level;
 import java.util.logging.Logger;
 
@@ -61,9 +59,12 @@ public static void main(String[] args) throws IOException {
 
         // Run through Dropbox API authorization process
         DbxRequestConfig requestConfig = new DbxRequestConfig("examples-authorize");
-        DbxWebAuthNoRedirect webAuth = new DbxWebAuthNoRedirect(requestConfig, appInfo);
+        DbxWebAuth webAuth = new DbxWebAuth(requestConfig, appInfo);
+        DbxWebAuth.Request webAuthRequest = DbxWebAuth.newRequestBuilder()
+            .withNoRedirect()
+            .build();
 
-        String authorizeUrl = webAuth.start();
+        String authorizeUrl = webAuth.authorize(webAuthRequest);
         System.out.println("1. Go to " + authorizeUrl);
         System.out.println("2. Click \"Allow\" (you might have to log in first).");
         System.out.println("3. Copy the authorization code.");
@@ -77,9 +78,9 @@ public static void main(String[] args) throws IOException {
 
         DbxAuthFinish authFinish;
         try {
-            authFinish = webAuth.finish(code);
+            authFinish = webAuth.finishFromCode(code);
         } catch (DbxException ex) {
-            System.err.println("Error in DbxWebAuth.start: " + ex.getMessage());
+            System.err.println("Error in DbxWebAuth.authorize: " + ex.getMessage());
             System.exit(1); return;
         }
 
 
@@ -36,6 +36,7 @@ subprojects {
     //
     // This is intended to be used by the ./run script and not through gradle directly
     task run(type: JavaExec) {
+        standardInput = System.in
         classpath = sourceSets.main.runtimeClasspath
         main = "com.dropbox.core.examples.${project.name.replace('-','_')}.Main"
         ignoreExitValue true
 
@@ -16,12 +16,10 @@
  * Handles the endpoints related to authorizing this app with the Dropbox API
  * via OAuth 2.
  */
-public class DropboxAuth
-{
+public class DropboxAuth {
     private final Common common;
 
-    public DropboxAuth(Common common)
-    {
+    public DropboxAuth(Common common) {
         this.common = common;
     }
 
@@ -31,14 +29,18 @@ public DropboxAuth(Common common)
     // Start the process of getting a Dropbox API access token for the user's Dropbox account.
 
     public void doStart(HttpServletRequest request, HttpServletResponse response)
-            throws IOException, ServletException
-    {
+            throws IOException, ServletException {
         if (!common.checkPost(request, response)) return;
         User user = common.requireLoggedInUser(request, response);
         if (user == null) return;
 
         // Start the authorization process with Dropbox.
-        String authorizeUrl = getWebAuth(request).start();
+        DbxWebAuth.Request authRequest = DbxWebAuth.newRequestBuilder()
+            // After we redirect the user to the Dropbox website for authorization,
+            // Dropbox will redirect them back here.
+            .withRedirectUri(getRedirectUri(request), getSessionStore(request))
+            .build();
+        String authorizeUrl = getWebAuth(request).authorize(authRequest);
 
         // Redirect the user to the Dropbox website so they can approve our application.
         // The Dropbox website will send them back to /dropbox-auth-finish when they're done.
@@ -55,8 +57,7 @@ public void doStart(HttpServletRequest request, HttpServletResponse response)
     // an HTTP POST.
 
     public void doFinish(HttpServletRequest request, HttpServletResponse response)
-            throws IOException, ServletException
-    {
+            throws IOException, ServletException {
         if (!common.checkGet(request, response)) return;
 
         User user = common.requireLoggedInUser(request, response);
@@ -67,33 +68,31 @@ public void doFinish(HttpServletRequest request, HttpServletResponse response)
 
         DbxAuthFinish authFinish;
         try {
-            authFinish = getWebAuth(request).finish(request.getParameterMap());
-        }
-        catch (DbxWebAuth.BadRequestException e) {
+            authFinish = getWebAuth(request).finishFromRedirect(
+                getRedirectUri(request),
+                getSessionStore(request),
+                request.getParameterMap()
+            );
+        } catch (DbxWebAuth.BadRequestException e) {
             common.log.println("On /dropbox-auth-finish: Bad request: " + e.getMessage());
             response.sendError(400);
             return;
-        }
-        catch (DbxWebAuth.BadStateException e) {
+        } catch (DbxWebAuth.BadStateException e) {
             // Send them back to the start of the auth flow.
             response.sendRedirect(common.getUrl(request, "/dropbox-auth-start"));
             return;
-        }
-        catch (DbxWebAuth.CsrfException e) {
+        } catch (DbxWebAuth.CsrfException e) {
             common.log.println("On /dropbox-auth-finish: CSRF mismatch: " + e.getMessage());
             response.sendError(403);
             return;
-        }
-        catch (DbxWebAuth.NotApprovedException e) {
+        } catch (DbxWebAuth.NotApprovedException e) {
             common.page(response, 200, "Not approved?", "Why not, bro?");
             return;
-        }
-        catch (DbxWebAuth.ProviderException e) {
+        } catch (DbxWebAuth.ProviderException e) {
             common.log.println("On /dropbox-auth-finish: Auth failed: " + e.getMessage());
             response.sendError(503, "Error communicating with Dropbox.");
             return;
-        }
-        catch (DbxException e) {
+        } catch (DbxException e) {
             common.log.println("On /dropbox-auth-finish: Error getting token: " + e);
             response.sendError(503, "Error communicating with Dropbox.");
             return;
@@ -112,8 +111,7 @@ public void doFinish(HttpServletRequest request, HttpServletResponse response)
     // -------------------------------------------------------------------------------------------
 
     public void doUnlink(HttpServletRequest request, HttpServletResponse response)
-            throws IOException, ServletException
-    {
+            throws IOException, ServletException {
         if (!common.checkPost(request, response)) return;
         User user = common.requireLoggedInUser(request, response);
         if (user == null) return;
@@ -127,17 +125,18 @@ public void doUnlink(HttpServletRequest request, HttpServletResponse response)
 
     // -------------------------------------------------------------------------------------------
 
-    private DbxWebAuth getWebAuth(final HttpServletRequest request)
-    {
-        // After we redirect the user to the Dropbox website for authorization,
-        // Dropbox will redirect them back here.
-        String redirectUrl = common.getUrl(request, "/dropbox-auth-finish");
-
+    private DbxSessionStore getSessionStore(final HttpServletRequest request) {
         // Select a spot in the session for DbxWebAuth to store the CSRF token.
         HttpSession session = request.getSession(true);
         String sessionKey = "dropbox-auth-csrf-token";
-        DbxSessionStore csrfTokenStore = new DbxStandardSessionStore(session, sessionKey);
+        return new DbxStandardSessionStore(session, sessionKey);
+    }
+
+    private DbxWebAuth getWebAuth(final HttpServletRequest request) {
+        return new DbxWebAuth(common.getRequestConfig(request), common.dbxAppInfo);
+    }
 
-        return new DbxWebAuth(common.getRequestConfig(request), common.dbxAppInfo, redirectUrl, csrfTokenStore);
+    private String getRedirectUri(final HttpServletRequest request) {
+        return common.getUrl(request, "/dropbox-auth-finish");
     }
 }
@@ -76,6 +76,7 @@ public DbxAuthFinish read(JsonParser parser) throws IOException, JsonReadExcepti
             String accessToken = null;
             String tokenType = null;
             String userId = null;
+            String state = null;
 
             while (parser.getCurrentToken() == JsonToken.FIELD_NAME) {
                 String fieldName = parser.getCurrentName();
@@ -91,6 +92,9 @@ else if (fieldName.equals("access_token")) {
                     else if (fieldName.equals("uid")) {
                         userId = JsonReader.StringReader.readField(parser, fieldName, userId);
                     }
+                    else if (fieldName.equals("state")) {
+                        state = JsonReader.StringReader.readField(parser, fieldName, state);
+                    }
                     else {
                         // Unknown field.  Skip over it.
                         JsonReader.skipValue(parser);
@@ -107,7 +111,7 @@ else if (fieldName.equals("uid")) {
             if (accessToken == null) throw new JsonReadException("missing field \"access_token\"", top);
             if (userId == null) throw new JsonReadException("missing field \"uid\"", top);
 
-            return new DbxAuthFinish(accessToken, userId, null);
+            return new DbxAuthFinish(accessToken, userId, state);
         }
     };
 
 
@@ -12,6 +12,7 @@
 import java.util.concurrent.TimeUnit;
 import java.util.ArrayList;
 import java.util.List;
+import java.util.Map;
 
 import com.dropbox.core.stone.StoneSerializer;
 import com.dropbox.core.http.HttpRequestor;
@@ -30,8 +31,7 @@ public final class DbxRequestUtil {
     public static String encodeUrlParam(String s) {
         try {
             return URLEncoder.encode(s, "UTF-8");
-        }
-        catch (UnsupportedEncodingException ex) {
+        } catch (UnsupportedEncodingException ex) {
             throw mkAssert("UTF-8 should always be supported", ex);
         }
     }
@@ -43,6 +43,17 @@ public static String buildUrlWithParams(/*@Nullable*/String userLocale,
         return buildUri(host, path) + "?" + encodeUrlParams(userLocale, params);
     }
 
+    static String [] toParamsArray(Map<String, String> params) {
+        String [] arr = new String[2 * params.size()];
+        int i = 0;
+        for (Map.Entry<String, String> entry : params.entrySet()) {
+            arr[i] = entry.getKey();
+            arr[i + 1] = entry.getValue();
+            i += 2;
+        }
+        return arr;
+    }
+
     public static String buildUri(String host, String path) {
         try {
             return new URI("https", host, "/" + path, null).toASCIIString();
 
@@ -11,8 +11,7 @@
  * {@link DbxStandardSessionStore}.
  * </pre>
  */
-public interface DbxSessionStore
-{
+public interface DbxSessionStore {
     public /*@Nullable*/String get();
     public void set(String value);
     public void clear();