oauth2-server/src/Grant/PasswordGrant.php

<?php
/**
 * OAuth 2.0 Password grant.
 *
 * @author      Alex Bilbie <hello@alexbilbie.com>
 * @copyright   Copyright (c) Alex Bilbie
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */
namespace League\OAuth2\Server\Grant;

use League\OAuth2\Server\Entities\Interfaces\ClientEntityInterface;
use League\OAuth2\Server\Entities\Interfaces\UserEntityInterface;
use League\OAuth2\Server\Exception\OAuthServerException;
use League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface;
use League\OAuth2\Server\Repositories\UserRepositoryInterface;
use League\OAuth2\Server\RequestEvent;
use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;
use Psr\Http\Message\ServerRequestInterface;

/**
 * Password grant class.
 */
class PasswordGrant extends AbstractGrant
{
    /**
     * @param \League\OAuth2\Server\Repositories\UserRepositoryInterface         $userRepository
     * @param \League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface $refreshTokenRepository
     */
    public function __construct(
        UserRepositoryInterface $userRepository,
        RefreshTokenRepositoryInterface $refreshTokenRepository
    ) {
        $this->setUserRepository($userRepository);
        $this->setRefreshTokenRepository($refreshTokenRepository);

        $this->refreshTokenTTL = new \DateInterval('P1M');
    }

    /**
     * {@inheritdoc}
     */
    public function respondToRequest(
        ServerRequestInterface $request,
        ResponseTypeInterface $responseType,
        \DateInterval $accessTokenTTL
    ) {
        // Validate request
        $client = $this->validateClient($request);
        $scopes = $this->validateScopes($this->getRequestParameter('scope', $request), $client);
        $user = $this->validateUser($request, $client);

        // Finalize the requested scopes
        $scopes = $this->scopeRepository->finalizeScopes($scopes, $this->getIdentifier(), $client, $user->getIdentifier());

        // Issue and persist new tokens
        $accessToken = $this->issueAccessToken($accessTokenTTL, $client, $user->getIdentifier(), $scopes);
        $refreshToken = $this->issueRefreshToken($accessToken);

        // Inject tokens into response
        $responseType->setAccessToken($accessToken);
        $responseType->setRefreshToken($refreshToken);

        return $responseType;
    }

    /**
     * @param \Psr\Http\Message\ServerRequestInterface                        $request
     * @param \League\OAuth2\Server\Entities\Interfaces\ClientEntityInterface $client
     *
     * @throws \League\OAuth2\Server\Exception\OAuthServerException
     *
     * @return \League\OAuth2\Server\Entities\Interfaces\UserEntityInterface
     */
    protected function validateUser(ServerRequestInterface $request, ClientEntityInterface $client)
    {
        $username = $this->getRequestParameter('username', $request);
        if (is_null($username)) {
            throw OAuthServerException::invalidRequest('username', '`%s` parameter is missing');
        }

        $password = $this->getRequestParameter('password', $request);
        if (is_null($password)) {
            throw OAuthServerException::invalidRequest('password', '`%s` parameter is missing');
        }

        $user = $this->userRepository->getUserEntityByUserCredentials(
            $username,
            $password,
            $this->getIdentifier(),
            $client
        );
        if (!$user instanceof UserEntityInterface) {
            $this->getEmitter()->emit(new RequestEvent('user.authentication.failed', $request));

            throw OAuthServerException::invalidCredentials();
        }

        return $user;
    }

    /**
     * {@inheritdoc}
     */
    public function getIdentifier()
    {
        return 'password';
    }
}
Added Password grant 2013-02-12 16:22:14 +00:00			`<?php`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`/**`
Applied fixes from StyleCI 2016-02-19 18:09:39 -05:00			`* OAuth 2.0 Password grant.`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`*`
			`* @author Alex Bilbie <hello@alexbilbie.com>`
Updated copyright 2014-03-09 19:34:23 +00:00			`* @copyright Copyright (c) Alex Bilbie`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`* @license http://mit-license.org/`
Applied fixes from StyleCI 2016-02-19 18:09:39 -05:00			`*`
Updated @link 2014-03-09 20:05:38 +00:00			`* @link https://github.com/thephpleague/oauth2-server`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`*/`
Renamed AuthServer to Authorization, renamed ResourceServer to Resource. Updated all tests and other files 2013-05-08 11:42:23 -07:00			`namespace League\OAuth2\Server\Grant;`
Renamed namespace to League\OAuth2\ 2013-05-08 11:06:09 -07:00
Inject client into getUserEntityByUserCredentials method 2016-03-22 15:11:20 +00:00			`use League\OAuth2\Server\Entities\Interfaces\ClientEntityInterface;`
Updated grants 2015-04-05 21:10:41 +01:00			`use League\OAuth2\Server\Entities\Interfaces\UserEntityInterface;`
Updated password grant 2015-11-16 12:58:11 +00:00			`use League\OAuth2\Server\Exception\OAuthServerException;`
Code tidy 2016-01-13 00:13:29 +00:00			`use League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface;`
Updated grants 2015-04-05 21:10:41 +01:00			`use League\OAuth2\Server\Repositories\UserRepositoryInterface;`
Added RequestEvent 2016-03-23 12:54:17 +00:00			`use League\OAuth2\Server\RequestEvent;`
Updated password grant 2015-11-16 12:58:11 +00:00			`use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;`
			`use Psr\Http\Message\ServerRequestInterface;`
Added Password grant 2013-02-12 16:22:14 +00:00
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`/**`
Applied fixes from StyleCI 2016-02-19 18:09:39 -05:00			`* Password grant class.`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`*/`
Renamed Grants 2014-05-02 17:24:55 +01:00			`class PasswordGrant extends AbstractGrant`
Too many changes to describe 2014-01-08 16:15:29 +00:00			`{`
Code tidy 2016-01-13 00:13:29 +00:00			`/**`
			`* @param \League\OAuth2\Server\Repositories\UserRepositoryInterface $userRepository`
			`* @param \League\OAuth2\Server\Repositories\RefreshTokenRepositoryInterface $refreshTokenRepository`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`*/`
Updated grants 2015-04-05 21:10:41 +01:00			`public function __construct(`
Updated password grant 2015-11-16 12:58:11 +00:00			`UserRepositoryInterface $userRepository,`
Code tidy 2016-01-13 00:13:29 +00:00			`RefreshTokenRepositoryInterface $refreshTokenRepository`
Updated grants 2015-04-05 21:10:41 +01:00			`) {`
normalize repositories visibility 2016-03-15 20:54:59 +01:00			`$this->setUserRepository($userRepository);`
AbstractGrant now handles persisting tokens 2016-02-18 12:07:23 +00:00			`$this->setRefreshTokenRepository($refreshTokenRepository);`
configurable refresh token TTL per grant 2016-01-21 18:11:53 +01:00
			`$this->refreshTokenTTL = new \DateInterval('P1M');`
Added Password grant 2013-02-12 16:22:14 +00:00			`}`

Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`/**`
Applied fixes from StyleCI 2016-02-19 18:09:39 -05:00			`* {@inheritdoc}`
Updated grantTypes to use AuthServer::getParam() 2013-02-13 19:39:43 +00:00			`*/`
Updated password grant 2015-11-16 12:58:11 +00:00			`public function respondToRequest(`
			`ServerRequestInterface $request,`
			`ResponseTypeInterface $responseType,`
configurable refresh token TTL per grant 2016-01-21 18:11:53 +01:00			`\DateInterval $accessTokenTTL`
Updated grants 2015-04-05 21:10:41 +01:00			`) {`
Tidy up 2016-01-17 12:43:20 +00:00			`// Validate request`
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`$client = $this->validateClient($request);`
allow scopes extraction on GET requests for auth_code and implicit grants 2016-03-14 00:12:14 +01:00			`$scopes = $this->validateScopes($this->getRequestParameter('scope', $request), $client);`
Added finalizeScopes method to ScopeRepositoryInterface 2016-03-23 18:36:23 +00:00			`$user = $this->validateUser($request, $client);`

			`// Finalize the requested scopes`
Updated scope validation 2016-03-24 10:04:15 +00:00			`$scopes = $this->scopeRepository->finalizeScopes($scopes, $this->getIdentifier(), $client, $user->getIdentifier());`
Added Password grant 2013-02-12 16:22:14 +00:00
Tidy up 2016-01-17 12:43:20 +00:00			`// Issue and persist new tokens`
allow refresh token ttl assign 2016-01-20 12:21:44 +01:00			`$accessToken = $this->issueAccessToken($accessTokenTTL, $client, $user->getIdentifier(), $scopes);`
configurable refresh token TTL per grant 2016-01-21 18:11:53 +01:00			`$refreshToken = $this->issueRefreshToken($accessToken);`
Added Password grant 2013-02-12 16:22:14 +00:00
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`// Inject tokens into response`
			`$responseType->setAccessToken($accessToken);`
			`$responseType->setRefreshToken($refreshToken);`
Added Password grant 2013-02-12 16:22:14 +00:00
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`return $responseType;`
			`}`
Updated password grant 2015-11-16 12:58:11 +00:00
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`/**`
Inject client into getUserEntityByUserCredentials method 2016-03-22 15:11:20 +00:00			`* @param \Psr\Http\Message\ServerRequestInterface $request`
			`* @param \League\OAuth2\Server\Entities\Interfaces\ClientEntityInterface $client`
Applied fixes from StyleCI 2016-03-22 10:18:21 -04:00			`*`
Inject client into getUserEntityByUserCredentials method 2016-03-22 15:11:20 +00:00			`* @throws \League\OAuth2\Server\Exception\OAuthServerException`
Applied fixes from StyleCI 2016-03-22 11:11:39 -04:00			`*`
			`* @return \League\OAuth2\Server\Entities\Interfaces\UserEntityInterface`
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`*/`
Added finalizeScopes method to ScopeRepositoryInterface 2016-03-23 18:36:23 +00:00			`protected function validateUser(ServerRequestInterface $request, ClientEntityInterface $client)`
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`{`
Tidy up 2016-01-17 12:43:20 +00:00			`$username = $this->getRequestParameter('username', $request);`
Updated grants 2013-12-24 17:01:56 +00:00			`if (is_null($username)) {`
Fix exception usage 2016-03-17 11:18:59 +00:00			throw OAuthServerException::invalidRequest('username', '`%s` parameter is missing');
Added Password grant 2013-02-12 16:22:14 +00:00			`}`

Tidy up 2016-01-17 12:43:20 +00:00			`$password = $this->getRequestParameter('password', $request);`
Updated grants 2013-12-24 17:01:56 +00:00			`if (is_null($password)) {`
Fix exception usage 2016-03-17 11:18:59 +00:00			throw OAuthServerException::invalidRequest('password', '`%s` parameter is missing');
Added Password grant 2013-02-12 16:22:14 +00:00			`}`

Added grant and scopes to UserRepository getUserEntityByUserCredentials method 2016-03-22 14:18:02 +00:00			`$user = $this->userRepository->getUserEntityByUserCredentials(`
			`$username,`
			`$password,`
			`$this->getIdentifier(),`
Added finalizeScopes method to ScopeRepositoryInterface 2016-03-23 18:36:23 +00:00			`$client`
Added grant and scopes to UserRepository getUserEntityByUserCredentials method 2016-03-22 14:18:02 +00:00			`);`
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`if (!$user instanceof UserEntityInterface) {`
Added RequestEvent 2016-03-23 12:54:17 +00:00			`$this->getEmitter()->emit(new RequestEvent('user.authentication.failed', $request));`
Added Password grant 2013-02-12 16:22:14 +00:00
abstract common grants tasks 2016-01-17 00:41:55 +01:00			`throw OAuthServerException::invalidCredentials();`
Added scope parameter association for clientcredentials and password scope TODO: Unit tests 2013-03-06 17:18:37 +00:00			`}`

abstract common grants tasks 2016-01-17 00:41:55 +01:00			`return $user;`
Added Password grant 2013-02-12 16:22:14 +00:00			`}`
Got rid of mystery $identifier class property, moved it to the getIdentifier method 2016-02-12 08:33:59 +00:00
			`/**`
Applied fixes from StyleCI 2016-02-19 18:09:39 -05:00			`* {@inheritdoc}`
Got rid of mystery $identifier class property, moved it to the getIdentifier method 2016-02-12 08:33:59 +00:00			`*/`
			`public function getIdentifier()`
			`{`
			`return 'password';`
			`}`
Gave "bearer" a capital "B". Fixes #96 2013-09-07 18:00:13 +01:00			`}`