2016-02-14 20:50:10 +03:00
|
|
|
<?php
|
2016-11-27 00:43:42 +03:00
|
|
|
namespace api\components\OAuth2;
|
2016-02-14 20:50:10 +03:00
|
|
|
|
2016-11-27 00:43:42 +03:00
|
|
|
use api\components\OAuth2\Storage\AuthCodeStorage;
|
|
|
|
use api\components\OAuth2\Storage\RefreshTokenStorage;
|
|
|
|
use api\components\OAuth2\Storage\AccessTokenStorage;
|
|
|
|
use api\components\OAuth2\Storage\ClientStorage;
|
|
|
|
use api\components\OAuth2\Storage\ScopeStorage;
|
|
|
|
use api\components\OAuth2\Storage\SessionStorage;
|
|
|
|
use api\components\OAuth2\Utils\KeyAlgorithm\UuidAlgorithm;
|
2016-02-14 20:50:10 +03:00
|
|
|
use League\OAuth2\Server\AuthorizationServer;
|
2016-06-18 16:38:15 +03:00
|
|
|
use League\OAuth2\Server\Grant;
|
|
|
|
use League\OAuth2\Server\Util\SecureKey;
|
2016-02-14 20:50:10 +03:00
|
|
|
use yii\base\InvalidConfigException;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @property AuthorizationServer $authServer
|
|
|
|
*/
|
|
|
|
class Component extends \yii\base\Component {
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var AuthorizationServer
|
|
|
|
*/
|
|
|
|
private $_authServer;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string[]
|
|
|
|
*/
|
|
|
|
public $grantTypes = [];
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var array grant type => class
|
|
|
|
*/
|
|
|
|
public $grantMap = [
|
2016-06-18 16:38:15 +03:00
|
|
|
'authorization_code' => Grant\AuthCodeGrant::class,
|
|
|
|
'client_credentials' => Grant\ClientCredentialsGrant::class,
|
|
|
|
'password' => Grant\PasswordGrant::class,
|
|
|
|
'refresh_token' => Grant\RefreshTokenGrant::class,
|
2016-02-14 20:50:10 +03:00
|
|
|
];
|
|
|
|
|
|
|
|
public function getAuthServer() {
|
|
|
|
if ($this->_authServer === null) {
|
|
|
|
$authServer = new AuthorizationServer();
|
2016-11-27 00:43:42 +03:00
|
|
|
$authServer->setAccessTokenStorage(new AccessTokenStorage());
|
|
|
|
$authServer->setClientStorage(new ClientStorage());
|
|
|
|
$authServer->setScopeStorage(new ScopeStorage());
|
|
|
|
$authServer->setSessionStorage(new SessionStorage());
|
|
|
|
$authServer->setAuthCodeStorage(new AuthCodeStorage());
|
|
|
|
$authServer->setRefreshTokenStorage(new RefreshTokenStorage());
|
|
|
|
$authServer->setScopeDelimiter(',');
|
2017-03-07 19:09:41 +03:00
|
|
|
$authServer->setAccessTokenTTL(86400); // 1d
|
2016-02-14 20:50:10 +03:00
|
|
|
|
|
|
|
$this->_authServer = $authServer;
|
|
|
|
|
|
|
|
foreach ($this->grantTypes as $grantType) {
|
2016-11-27 00:43:42 +03:00
|
|
|
if (!isset($this->grantMap[$grantType])) {
|
2016-02-14 20:50:10 +03:00
|
|
|
throw new InvalidConfigException('Invalid grant type');
|
|
|
|
}
|
|
|
|
|
2016-11-27 00:43:42 +03:00
|
|
|
/** @var Grant\GrantTypeInterface $grant */
|
2016-02-14 20:50:10 +03:00
|
|
|
$grant = new $this->grantMap[$grantType]();
|
|
|
|
$this->_authServer->addGrantType($grant);
|
|
|
|
}
|
2016-06-18 16:38:15 +03:00
|
|
|
|
|
|
|
SecureKey::setAlgorithm(new UuidAlgorithm());
|
2016-02-14 20:50:10 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
return $this->_authServer;
|
|
|
|
}
|
|
|
|
|
|
|
|
}
|