oauth2-server/src/Server.php

223 lines
6.6 KiB
PHP
Raw Normal View History

2015-04-05 21:33:06 +05:30
<?php
2015-04-05 21:33:06 +05:30
namespace League\OAuth2\Server;
2015-10-14 14:21:53 +05:30
use League\Event\EmitterAwareInterface;
use League\Event\EmitterAwareTrait;
2015-11-13 23:11:05 +05:30
use League\OAuth2\Server\Exception\OAuthServerException;
2015-10-14 14:21:53 +05:30
use League\OAuth2\Server\Grant\GrantTypeInterface;
2015-11-13 23:11:05 +05:30
use League\OAuth2\Server\ResponseTypes\BearerTokenResponse;
use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;
2016-01-15 18:32:47 +05:30
use Psr\Http\Message\ResponseInterface;
2015-10-14 14:21:53 +05:30
use Psr\Http\Message\ServerRequestInterface;
2016-01-15 18:32:47 +05:30
use Zend\Diactoros\Response;
2015-10-14 14:21:53 +05:30
use Zend\Diactoros\ServerRequestFactory;
2015-04-05 21:33:06 +05:30
2015-10-14 14:21:53 +05:30
class Server implements EmitterAwareInterface
2015-04-05 21:33:06 +05:30
{
2015-10-14 14:21:53 +05:30
use EmitterAwareTrait;
2015-04-05 21:33:06 +05:30
/**
* @var \League\OAuth2\Server\Grant\GrantTypeInterface[]
*/
protected $enabledGrantTypes = [];
/**
2015-11-13 23:11:05 +05:30
* @var ResponseTypeInterface[]
2015-04-05 21:33:06 +05:30
*/
2015-11-13 23:11:05 +05:30
protected $grantResponseTypes = [];
2015-04-05 21:33:06 +05:30
/**
* @var DateInterval[]
*/
protected $grantTypeAccessTokenTTL = [];
2016-01-15 17:11:48 +05:30
/**
* @var string
*/
protected $defaultPrivateKeyPath;
2015-04-05 21:33:06 +05:30
/**
2015-11-13 23:11:05 +05:30
* @var ResponseTypeInterface
2015-04-05 21:33:06 +05:30
*/
2015-11-13 23:11:05 +05:30
protected $defaultResponseType;
2015-04-05 21:33:06 +05:30
/**
* @var DateInterval
*/
protected $defaultAccessTokenTTL;
/**
* @var string
*/
2015-10-14 14:21:53 +05:30
protected $scopeDelimiterString = ' ';
2015-04-05 21:33:06 +05:30
2015-10-14 14:21:53 +05:30
/**
* New server instance
*
2016-01-15 17:11:48 +05:30
* @param string $defaultPrivateKeyPath
* @param DateInterval $defaultAccessTokenTTL
2015-10-14 14:21:53 +05:30
*/
2016-01-15 17:11:48 +05:30
public function __construct($defaultPrivateKeyPath, \DateInterval $defaultAccessTokenTTL = null)
2015-10-14 14:21:53 +05:30
{
2016-01-15 17:11:48 +05:30
$this->defaultPrivateKeyPath = $defaultPrivateKeyPath;
$this->defaultAccessTokenTTL = $defaultAccessTokenTTL;
}
/**
* Set the default token type that grants will return
2015-04-05 21:33:06 +05:30
*
2015-11-13 23:11:05 +05:30
* @param ResponseTypeInterface $defaultTokenType
2015-04-05 21:33:06 +05:30
*/
2015-11-13 23:11:05 +05:30
public function setDefaultResponseType(ResponseTypeInterface $defaultTokenType)
{
2015-11-13 23:11:05 +05:30
$this->defaultResponseType = $defaultTokenType;
}
2015-04-05 21:33:06 +05:30
2016-01-15 17:11:48 +05:30
/**
* Get the default token type that grants will return
*
* @return ResponseTypeInterface
*/
protected function getDefaultResponseType()
{
if (!$this->defaultResponseType instanceof ResponseTypeInterface) {
$this->defaultResponseType = new BearerTokenResponse($this->defaultPrivateKeyPath);
}
return $this->defaultResponseType;
}
/**
* Set the default TTL of access tokens
*
* @param DateInterval $defaultAccessTokenTTL
*/
public function setDefaultAccessTokenTTL(\DateInterval $defaultAccessTokenTTL)
{
$this->defaultAccessTokenTTL = $defaultAccessTokenTTL;
}
/**
* Get the default TTL of access tokens
*
* @return DateInterval
*/
protected function getDefaultAccessTokenTTL()
{
if (!$this->defaultAccessTokenTTL instanceof \DateInterval) {
$this->defaultAccessTokenTTL = new \DateInterval('PT01H'); // default token TTL of 1 hour
}
return $this->defaultAccessTokenTTL;
}
/**
2015-10-14 14:21:53 +05:30
* Set the delimiter string used to separate scopes in a request
*
2015-10-14 14:21:53 +05:30
* @param string $scopeDelimiterString
*/
2015-10-14 14:21:53 +05:30
public function setScopeDelimiterString($scopeDelimiterString)
{
2015-10-14 14:21:53 +05:30
$this->scopeDelimiterString = $scopeDelimiterString;
}
2015-04-05 21:33:06 +05:30
/**
2016-01-15 17:11:48 +05:30
* Get the delimiter string used to separate scopes in a request
*
2016-01-15 17:11:48 +05:30
* @return string
*/
2016-01-15 17:11:48 +05:30
protected function getScopeDelimiterString()
{
2016-01-15 17:11:48 +05:30
return $this->scopeDelimiterString;
2015-04-05 21:33:06 +05:30
}
/**
2015-10-14 14:21:53 +05:30
* Enable a grant type on the server
2015-04-05 21:33:06 +05:30
*
2015-10-14 14:21:53 +05:30
* @param \League\OAuth2\Server\Grant\GrantTypeInterface $grantType
* @param ResponseTypeInterface $responseType
2015-10-14 14:21:53 +05:30
* @param DateInterval $accessTokenTTL
2015-04-05 21:33:06 +05:30
*/
public function enableGrantType(
2015-10-14 14:21:53 +05:30
GrantTypeInterface $grantType,
2015-11-13 23:11:05 +05:30
ResponseTypeInterface $responseType = null,
2016-01-15 17:11:48 +05:30
\DateInterval $accessTokenTTL = null
2015-04-05 21:33:06 +05:30
) {
2015-10-14 14:21:53 +05:30
$grantType->setEmitter($this->getEmitter());
$this->enabledGrantTypes[$grantType->getIdentifier()] = $grantType;
2015-04-05 21:33:06 +05:30
// Set grant response type
2015-11-13 23:11:05 +05:30
if ($responseType instanceof ResponseTypeInterface) {
$this->grantResponseTypes[$grantType->getIdentifier()] = $responseType;
2015-04-05 21:33:06 +05:30
} else {
2016-01-15 17:11:48 +05:30
$this->grantResponseTypes[$grantType->getIdentifier()] = $this->getDefaultResponseType();
2015-04-05 21:33:06 +05:30
}
// Set grant access token TTL
2016-01-15 17:11:48 +05:30
if ($accessTokenTTL instanceof \DateInterval) {
2015-10-14 14:21:53 +05:30
$this->grantTypeAccessTokenTTL[$grantType->getIdentifier()] = $accessTokenTTL;
2015-04-05 21:33:06 +05:30
} else {
2016-01-15 17:11:48 +05:30
$this->grantTypeAccessTokenTTL[$grantType->getIdentifier()] = $this->getDefaultAccessTokenTTL();
2015-04-05 21:33:06 +05:30
}
}
/**
* Return an access token response
*
2016-01-16 00:06:34 +05:30
* @param \Psr\Http\Message\ServerRequestInterface|null $request
* @param \Psr\Http\Message\ResponseInterface|null $response
2015-04-05 21:33:06 +05:30
*
2016-01-15 18:32:47 +05:30
* @return \Psr\Http\Message\ResponseInterface
2015-11-13 23:11:05 +05:30
* @throws \League\OAuth2\Server\Exception\OAuthServerException
2015-04-05 21:33:06 +05:30
*/
2016-01-15 18:32:47 +05:30
public function respondToRequest(ServerRequestInterface $request = null, ResponseInterface $response = null)
2015-04-05 21:33:06 +05:30
{
2016-01-15 18:32:47 +05:30
if (!$request instanceof ServerRequestInterface) {
2015-10-14 14:21:53 +05:30
$request = ServerRequestFactory::fromGlobals();
2015-04-05 21:33:06 +05:30
}
2016-01-15 18:32:47 +05:30
if (!$response instanceof ResponseInterface) {
$response = new Response();
}
2015-11-13 23:11:05 +05:30
$tokenResponse = null;
2015-10-14 14:21:53 +05:30
foreach ($this->enabledGrantTypes as $grantType) {
if ($grantType->canRespondToRequest($request)) {
2015-11-13 23:11:05 +05:30
$tokenResponse = $grantType->respondToRequest(
2015-10-14 14:21:53 +05:30
$request,
2015-11-13 23:11:05 +05:30
$this->grantResponseTypes[$grantType->getIdentifier()],
2015-10-14 14:21:53 +05:30
$this->grantTypeAccessTokenTTL[$grantType->getIdentifier()],
2016-01-15 17:11:48 +05:30
$this->getScopeDelimiterString()
2015-10-14 14:21:53 +05:30
);
}
2015-04-05 21:33:06 +05:30
}
2016-01-15 18:32:47 +05:30
if (!$tokenResponse instanceof ResponseTypeInterface) {
return OAuthServerException::unsupportedGrantType()->generateHttpResponse($response);
}
return $tokenResponse->generateHttpResponse($response);
}
/**
* PSR7 middleware callable
*
* @param \Psr\Http\Message\ServerRequestInterface $request
* @param \Psr\Http\Message\ResponseInterface $response
*
* @return \Psr\Http\Message\ResponseInterface
* @throws \League\OAuth2\Server\Exception\OAuthServerException
*/
public function __invoke(ServerRequestInterface $request, ResponseInterface $response, callable $next)
{
$response = $this->respondToRequest($request, $response);
if (in_array($response->getStatusCode(), [400, 401, 500])) {
return $response;
2015-10-14 14:21:53 +05:30
}
2015-04-05 21:33:06 +05:30
2016-01-15 18:32:47 +05:30
return $next($request, $response);
2015-04-05 21:33:06 +05:30
}
}