adds shared link downscoping and coverage

src/main/java/com/box/sdk/BoxAPIConnection.java

@@ -677,7 +677,7 @@ public void setRequestInterceptor(RequestInterceptor interceptor) {
      * @param resource the resource for which the new token has to be obtained
      * @return scopedToken which has access token and other details
      */
-    public ScopedToken getLowerScopedToken(List<String> scopes, String resource) {
+    public ScopedToken getLowerScopedToken(List<String> scopes, String resource, String sharedLink) {
         assert (scopes != null);
         assert (scopes.size() > 0);
         URL url = null;
@@ -698,18 +698,21 @@ public ScopedToken getLowerScopedToken(List<String> scopes, String resource) {
 
         String urlParameters = null;
 
-        if (resource != null) {
-            //this.getAccessToken() ensures we have a valid access token
+        if (resource == null && sharedLink == null) {
             urlParameters = String.format("grant_type=urn:ietf:params:oauth:grant-type:token-exchange"
-                    + "&subject_token_type=urn:ietf:params:oauth:token-type:access_token&subject_token=%s"
-                    + "&scope=%s&resource=%s",
-                this.getAccessToken(), spaceSeparatedScopes, resource);
+                            + "&subject_token_type=urn:ietf:params:oauth:token-type:access_token&subject_token=%s"
+                            + "&scope=%s",
+                    this.getAccessToken(), spaceSeparatedScopes);
+        } else if (resource != null) {
+            urlParameters = String.format("grant_type=urn:ietf:params:oauth:grant-type:token-exchange"
+                            + "&subject_token_type=urn:ietf:params:oauth:token-type:access_token&subject_token=%s"
+                            + "&scope=%s&resource=%s",
+                    this.getAccessToken(), spaceSeparatedScopes, resource);
         } else {
-            //this.getAccessToken() ensures we have a valid access token
             urlParameters = String.format("grant_type=urn:ietf:params:oauth:grant-type:token-exchange"
-                    + "&subject_token_type=urn:ietf:params:oauth:token-type:access_token&subject_token=%s"
-                    + "&scope=%s",
-                this.getAccessToken(), spaceSeparatedScopes);
+                            + "&subject_token_type=urn:ietf:params:oauth:token-type:access_token&subject_token=%s"
+                            + "&scope=%s&box_shared_link=%s",
+                    this.getAccessToken(), spaceSeparatedScopes, sharedLink);
         }
 
         BoxAPIRequest request = new BoxAPIRequest(this, url, "POST");

src/test/java/com/box/sdk/BoxAPIConnectionTest.java

@@ -569,48 +569,65 @@ public void getLowerScopedTokenRefreshesTheTokenIfNeededbyCallingGetAccessToken(
         List<String> scopes = new ArrayList<String>();
         scopes.add("DummyScope");
         String resource = "";
+        String sharedLink = null;
 
         when(api.getTokenURL()).thenReturn("https://api.box.com/oauth2/token");
-        when(api.getLowerScopedToken(scopes, resource)).thenCallRealMethod();
+        when(api.getLowerScopedToken(scopes, resource, sharedLink)).thenCallRealMethod();
         try {
-            api.getLowerScopedToken(scopes, resource);
+            api.getLowerScopedToken(scopes, resource, sharedLink);
         } catch (RuntimeException e) {
             //Ignore it
         }
         verify(api).getAccessToken();
     }
 
     @Test
-    @Category(UnitTest.class)
-    public void getLowerScopedTokenWithNullResource() {
-        BoxAPIConnection api = mock(BoxAPIConnection.class);
+    @Category(IntegrationTest.class)
+    public void getLowerScopedToken() {
+        final String originalAccessToken = TestConfig.getAccessToken();
+        BoxAPIConnection api = new BoxAPIConnection(originalAccessToken);
 
         List<String> scopes = new ArrayList<String>();
-        scopes.add("DummyScope");
+        scopes.add("item_preview");
+        scopes.add("item_content_upload");
         String resource = null;
+        String sharedLink = null;
 
-        when(api.getTokenURL()).thenReturn("https://api.box.com/oauth2/token");
-        when(api.getLowerScopedToken(scopes, resource)).thenCallRealMethod();
-        try {
-            api.getLowerScopedToken(scopes, resource);
-        } catch (RuntimeException e) {
-            //Ignore it
-        }
-        verify(api).getAccessToken();
+        ScopedToken token = api.getLowerScopedToken(scopes, resource, sharedLink);
+        assertThat(token, notNullValue());
+        assertThat(token.getAccessToken(), notNullValue());
     }
 
     @Test
     @Category(IntegrationTest.class)
-    public void getLowerScopedTokenWorks() {
+    public void getLowerScopedTokenForResource() {
         final String originalAccessToken = TestConfig.getAccessToken();
         BoxAPIConnection api = new BoxAPIConnection(originalAccessToken);
 
+        List<String> scopes = new ArrayList<String>();
+        scopes.add("item_preview");
+        scopes.add("item_content_upload");
         String resource = "https://api.box.com/2.0/files/135906984991";
+        String sharedLink = null;
+
+        ScopedToken token = api.getLowerScopedToken(scopes, resource, sharedLink);
+        assertThat(token, notNullValue());
+        assertThat(token.getAccessToken(), notNullValue());
+    }
+
+    @Test
+    @Category(IntegrationTest.class)
+    public void getLowerScopedTokenForSharedLink() {
+        final String originalAccessToken = TestConfig.getAccessToken();
+        BoxAPIConnection api = new BoxAPIConnection(originalAccessToken);
+
         List<String> scopes = new ArrayList<String>();
         scopes.add("item_preview");
         scopes.add("item_content_upload");
+        String resource = null;
+        String sharedLink = null;
 
-        ScopedToken token = api.getLowerScopedToken(scopes, resource);
+        ScopedToken token = api.getLowerScopedToken(scopes, resource, sharedLink);
         assertThat(token, notNullValue());
         assertThat(token.getAccessToken(), notNullValue());
     }