<?php
namespace api\components\ApiUser;

use Yii;
use yii\rbac\CheckAccessInterface;

class AuthChecker implements CheckAccessInterface {

    /**
     * @inheritdoc
     */
    public function checkAccess($token, $permissionName, $params = []) : bool {
        $accessToken = Yii::$app->oauth->getAuthServer()->getAccessTokenStorage()->get($token);
        if ($accessToken === null) {
            return false;
        }

        return $accessToken->hasScope($permissionName);
    }

}