mirror of
https://github.com/elyby/accounts.git
synced 2024-12-23 22:00:06 +05:30
57d492da8a
* start updating to PHP 8.3
* taking off!
Co-authored-by: ErickSkrauch <erickskrauch@yandex.ru>
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* dropped this
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* migrate to symfonymailer
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* this is so stupid 😭
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* ah, free, at last.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* oh, Gabriel.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* now dawns thy reckoning.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* and thy gore shall GLISTEN before the temples of man.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* creature of steel.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* my gratitude upon thee for my freedom.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* but the crimes thy kind has committed against humanity
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* Upgrade PHP-CS-Fixer and do fix the codebase
* First review round (maybe I have broken something)
* are NOT forgotten.
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
* Enable parallel PHP-CS-Fixer runner
* PHPStan level 1
* PHPStan level 2
* PHPStan level 3
* PHPStan level 4
* PHPStan level 5
* Levels 6 and 7 takes too much effort. Generate a baseline and fix them eventually
* Resolve TODO's related to the php-mock
* Drastically reduce baseline size with the Rector
* More code modernization with help of the Rector
* Update GitLab CI
---------
Signed-off-by: Octol1ttle <l1ttleofficial@outlook.com>
Co-authored-by: ErickSkrauch <erickskrauch@yandex.ru>
83 lines
2.8 KiB
PHP
83 lines
2.8 KiB
PHP
<?php
|
|
declare(strict_types=1);
|
|
|
|
namespace api\components\Tokens;
|
|
|
|
use api\rbac\Permissions as P;
|
|
use api\rbac\Roles as R;
|
|
use Carbon\Carbon;
|
|
use common\models\Account;
|
|
use common\models\AccountSession;
|
|
use DateTime;
|
|
use Lcobucci\JWT\Token;
|
|
use Lcobucci\JWT\UnencryptedToken;
|
|
use League\OAuth2\Server\Entities\AccessTokenEntityInterface;
|
|
use League\OAuth2\Server\Entities\ScopeEntityInterface;
|
|
use Yii;
|
|
use yii\base\Component;
|
|
|
|
class TokensFactory extends Component {
|
|
|
|
public const string SUB_ACCOUNT_PREFIX = 'ely|';
|
|
|
|
public function createForWebAccount(Account $account, AccountSession $session = null): UnencryptedToken {
|
|
$payloads = [
|
|
'sub' => $this->buildSub($account->id),
|
|
'exp' => Carbon::now()->addHour()->toDateTimeImmutable(),
|
|
'scope' => $this->prepareScopes([R::ACCOUNTS_WEB_USER]),
|
|
];
|
|
if ($session === null) {
|
|
// If we don't remember a session, the token should live longer
|
|
// so that the session doesn't end while working with the account
|
|
$payloads['exp'] = Carbon::now()->addDays(7)->toDateTimeImmutable();
|
|
} else {
|
|
$payloads['jti'] = (string)$session->id;
|
|
}
|
|
|
|
return Yii::$app->tokens->create($payloads);
|
|
}
|
|
|
|
public function createForOAuthClient(AccessTokenEntityInterface $accessToken): UnencryptedToken {
|
|
$payloads = [
|
|
'client_id' => $accessToken->getClient()->getIdentifier(),
|
|
'scope' => $this->prepareScopes($accessToken->getScopes()),
|
|
];
|
|
if ($accessToken->getExpiryDateTime() > new DateTime()) {
|
|
$payloads['exp'] = $accessToken->getExpiryDateTime();
|
|
}
|
|
|
|
if ($accessToken->getUserIdentifier() !== null) {
|
|
$payloads['sub'] = $this->buildSub((int)$accessToken->getUserIdentifier());
|
|
}
|
|
|
|
return Yii::$app->tokens->create($payloads);
|
|
}
|
|
|
|
public function createForMinecraftAccount(Account $account, string $clientToken): UnencryptedToken {
|
|
return Yii::$app->tokens->create([
|
|
'scope' => $this->prepareScopes([P::OBTAIN_OWN_ACCOUNT_INFO, P::MINECRAFT_SERVER_SESSION]),
|
|
'ely-client-token' => new EncryptedValue($clientToken),
|
|
'sub' => $this->buildSub($account->id),
|
|
'exp' => Carbon::now()->addDays(2)->toDateTimeImmutable(),
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @param ScopeEntityInterface[]|string[] $scopes
|
|
*/
|
|
private function prepareScopes(array $scopes): string {
|
|
return implode(' ', array_map(function($scope): string {
|
|
if ($scope instanceof ScopeEntityInterface) {
|
|
return $scope->getIdentifier();
|
|
}
|
|
|
|
return $scope;
|
|
}, $scopes));
|
|
}
|
|
|
|
private function buildSub(int $accountId): string {
|
|
return self::SUB_ACCOUNT_PREFIX . $accountId;
|
|
}
|
|
|
|
}
|