oauth2-server/src/Server.php

<?php

namespace League\OAuth2\Server;

use DateInterval;
use League\Event\EmitterAwareInterface;
use League\Event\EmitterAwareTrait;
use League\OAuth2\Server\Exception\OAuthServerException;
use League\OAuth2\Server\Grant\GrantTypeInterface;
use League\OAuth2\Server\ResponseTypes\BearerTokenResponse;
use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Zend\Diactoros\Response;
use Zend\Diactoros\ServerRequestFactory;

class Server implements EmitterAwareInterface
{
    use EmitterAwareTrait;

    /**
     * @var \League\OAuth2\Server\Grant\GrantTypeInterface[]
     */
    protected $enabledGrantTypes = [];

    /**
     * @var ResponseTypeInterface[]
     */
    protected $grantResponseTypes = [];

    /**
     * @var DateInterval[]
     */
    protected $grantTypeAccessTokenTTL = [];

    /**
     * @var string
     */
    protected $defaultPrivateKeyPath;

    /**
     * @var ResponseTypeInterface
     */
    protected $defaultResponseType;

    /**
     * @var DateInterval
     */
    protected $defaultAccessTokenTTL;

    /**
     * @var string
     */
    protected $scopeDelimiterString = ' ';

    /**
     * New server instance
     *
     * @param string       $defaultPrivateKeyPath
     * @param DateInterval $defaultAccessTokenTTL
     */
    public function __construct($defaultPrivateKeyPath, \DateInterval $defaultAccessTokenTTL = null)
    {
        $this->defaultPrivateKeyPath = $defaultPrivateKeyPath;
        $this->defaultAccessTokenTTL = $defaultAccessTokenTTL;
    }

    /**
     * Set the default token type that grants will return
     *
     * @param ResponseTypeInterface $defaultTokenType
     */
    public function setDefaultResponseType(ResponseTypeInterface $defaultTokenType)
    {
        $this->defaultResponseType = $defaultTokenType;
    }

    /**
     * Get the default token type that grants will return
     *
     * @return ResponseTypeInterface
     */
    protected function getDefaultResponseType()
    {
        if (!$this->defaultResponseType instanceof ResponseTypeInterface) {
            $this->defaultResponseType = new BearerTokenResponse($this->defaultPrivateKeyPath);
        }

        return $this->defaultResponseType;
    }

    /**
     * Set the default TTL of access tokens
     *
     * @param DateInterval $defaultAccessTokenTTL
     */
    public function setDefaultAccessTokenTTL(DateInterval $defaultAccessTokenTTL)
    {
        $this->defaultAccessTokenTTL = $defaultAccessTokenTTL;
    }

    /**
     * Get the default TTL of access tokens
     *
     * @return DateInterval
     */
    protected function getDefaultAccessTokenTTL()
    {
        if (!$this->defaultAccessTokenTTL instanceof \DateInterval) {
            $this->defaultAccessTokenTTL = new \DateInterval('PT01H'); // default token TTL of 1 hour
        }

        return $this->defaultAccessTokenTTL;
    }

    /**
     * Enable a grant type on the server
     *
     * @param \League\OAuth2\Server\Grant\GrantTypeInterface $grantType
     * @param ResponseTypeInterface                          $responseType
     * @param DateInterval                                   $accessTokenTTL
     */
    public function enableGrantType(
        GrantTypeInterface $grantType,
        ResponseTypeInterface $responseType = null,
        \DateInterval $accessTokenTTL = null
    ) {
        $grantType->setEmitter($this->getEmitter());
        $this->enabledGrantTypes[$grantType->getIdentifier()] = $grantType;

        // Set grant response type
        if ($responseType instanceof ResponseTypeInterface) {
            $this->grantResponseTypes[$grantType->getIdentifier()] = $responseType;
        } else {
            $this->grantResponseTypes[$grantType->getIdentifier()] = $this->getDefaultResponseType();
        }

        // Set grant access token TTL
        if ($accessTokenTTL instanceof \DateInterval) {
            $this->grantTypeAccessTokenTTL[$grantType->getIdentifier()] = $accessTokenTTL;
        } else {
            $this->grantTypeAccessTokenTTL[$grantType->getIdentifier()] = $this->getDefaultAccessTokenTTL();
        }
    }

    /**
     * Return an access token response
     *
     * @param \Psr\Http\Message\ServerRequestInterface|null $request
     * @param \Psr\Http\Message\ResponseInterface|null      $response
     *
     * @return \Psr\Http\Message\ResponseInterface
     * @throws \League\OAuth2\Server\Exception\OAuthServerException
     */
    public function respondToRequest(ServerRequestInterface $request = null, ResponseInterface $response = null)
    {
        if (!$request instanceof ServerRequestInterface) {
            $request = ServerRequestFactory::fromGlobals();
        }

        if (!$response instanceof ResponseInterface) {
            $response = new Response();
        }

        $tokenResponse = null;
        foreach ($this->enabledGrantTypes as $grantType) {
            if ($grantType->canRespondToRequest($request)) {
                $tokenResponse = $grantType->respondToRequest(
                    $request,
                    $this->grantResponseTypes[$grantType->getIdentifier()],
                    $this->grantTypeAccessTokenTTL[$grantType->getIdentifier()]
                );
            }
        }

        if (!$tokenResponse instanceof ResponseTypeInterface) {
            return OAuthServerException::unsupportedGrantType()->generateHttpResponse($response);
        }

        return $tokenResponse->generateHttpResponse($response);
    }

    /**
     * PSR7 middleware callable
     *
     * @param \Psr\Http\Message\ServerRequestInterface $request
     * @param \Psr\Http\Message\ResponseInterface      $response
     * @param callable                                 $next
     *
     * @return \Psr\Http\Message\ResponseInterface
     */
    public function __invoke(ServerRequestInterface $request, ResponseInterface $response, callable $next)
    {
        $response = $this->respondToRequest($request, $response);

        if (in_array($response->getStatusCode(), [400, 401, 500])) {
            return $response;
        }

        return $next($request, $response);
    }
}
First commit of new server class 2015-04-05 21:33:06 +05:30			`<?php`
Refactored constructor to set defaults, added new setter methods for default token TTL and default token type 2015-04-06 13:02:44 +05:30
First commit of new server class 2015-04-05 21:33:06 +05:30			`namespace League\OAuth2\Server;`

Updated docblocks 2016-01-16 00:07:26 +05:30			`use DateInterval;`
Checkin 2015-10-14 14:21:53 +05:30			`use League\Event\EmitterAwareInterface;`
			`use League\Event\EmitterAwareTrait;`
Updates 2015-11-13 23:11:05 +05:30			`use League\OAuth2\Server\Exception\OAuthServerException;`
Checkin 2015-10-14 14:21:53 +05:30			`use League\OAuth2\Server\Grant\GrantTypeInterface;`
Updates 2015-11-13 23:11:05 +05:30			`use League\OAuth2\Server\ResponseTypes\BearerTokenResponse;`
			`use League\OAuth2\Server\ResponseTypes\ResponseTypeInterface;`
allow middleware use 2016-01-15 18:32:47 +05:30			`use Psr\Http\Message\ResponseInterface;`
Checkin 2015-10-14 14:21:53 +05:30			`use Psr\Http\Message\ServerRequestInterface;`
allow middleware use 2016-01-15 18:32:47 +05:30			`use Zend\Diactoros\Response;`
Checkin 2015-10-14 14:21:53 +05:30			`use Zend\Diactoros\ServerRequestFactory;`
First commit of new server class 2015-04-05 21:33:06 +05:30
Checkin 2015-10-14 14:21:53 +05:30			`class Server implements EmitterAwareInterface`
First commit of new server class 2015-04-05 21:33:06 +05:30			`{`
Checkin 2015-10-14 14:21:53 +05:30			`use EmitterAwareTrait;`

First commit of new server class 2015-04-05 21:33:06 +05:30			`/**`
			`* @var \League\OAuth2\Server\Grant\GrantTypeInterface[]`
			`*/`
			`protected $enabledGrantTypes = [];`

			`/**`
Updates 2015-11-13 23:11:05 +05:30			`* @var ResponseTypeInterface[]`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*/`
Updates 2015-11-13 23:11:05 +05:30			`protected $grantResponseTypes = [];`
First commit of new server class 2015-04-05 21:33:06 +05:30
			`/**`
			`* @var DateInterval[]`
			`*/`
			`protected $grantTypeAccessTokenTTL = [];`

deferred default objects creation 2016-01-15 17:11:48 +05:30			`/**`
			`* @var string`
			`*/`
			`protected $defaultPrivateKeyPath;`

First commit of new server class 2015-04-05 21:33:06 +05:30			`/**`
Updates 2015-11-13 23:11:05 +05:30			`* @var ResponseTypeInterface`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*/`
Updates 2015-11-13 23:11:05 +05:30			`protected $defaultResponseType;`
First commit of new server class 2015-04-05 21:33:06 +05:30
			`/**`
			`* @var DateInterval`
			`*/`
			`protected $defaultAccessTokenTTL;`

			`/**`
			`* @var string`
			`*/`
Checkin 2015-10-14 14:21:53 +05:30			`protected $scopeDelimiterString = ' ';`
First commit of new server class 2015-04-05 21:33:06 +05:30
Checkin 2015-10-14 14:21:53 +05:30			`/**`
			`* New server instance`
Server constructor expects path to private key 2016-01-13 04:33:24 +05:30			`*`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`* @param string $defaultPrivateKeyPath`
			`* @param DateInterval $defaultAccessTokenTTL`
Checkin 2015-10-14 14:21:53 +05:30			`*/`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`public function __construct($defaultPrivateKeyPath, \DateInterval $defaultAccessTokenTTL = null)`
Checkin 2015-10-14 14:21:53 +05:30			`{`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`$this->defaultPrivateKeyPath = $defaultPrivateKeyPath;`
			`$this->defaultAccessTokenTTL = $defaultAccessTokenTTL;`
Refactored constructor to set defaults, added new setter methods for default token TTL and default token type 2015-04-06 13:02:44 +05:30			`}`

			`/**`
			`* Set the default token type that grants will return`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*`
Updates 2015-11-13 23:11:05 +05:30			`* @param ResponseTypeInterface $defaultTokenType`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*/`
Updates 2015-11-13 23:11:05 +05:30			`public function setDefaultResponseType(ResponseTypeInterface $defaultTokenType)`
Refactored constructor to set defaults, added new setter methods for default token TTL and default token type 2015-04-06 13:02:44 +05:30			`{`
Updates 2015-11-13 23:11:05 +05:30			`$this->defaultResponseType = $defaultTokenType;`
Refactored constructor to set defaults, added new setter methods for default token TTL and default token type 2015-04-06 13:02:44 +05:30			`}`
First commit of new server class 2015-04-05 21:33:06 +05:30
deferred default objects creation 2016-01-15 17:11:48 +05:30			`/**`
			`* Get the default token type that grants will return`
			`*`
			`* @return ResponseTypeInterface`
			`*/`
			`protected function getDefaultResponseType()`
			`{`
			`if (!$this->defaultResponseType instanceof ResponseTypeInterface) {`
			`$this->defaultResponseType = new BearerTokenResponse($this->defaultPrivateKeyPath);`
			`}`

			`return $this->defaultResponseType;`
			`}`

			`/**`
			`* Set the default TTL of access tokens`
			`*`
			`* @param DateInterval $defaultAccessTokenTTL`
			`*/`
Updated docblocks 2016-01-16 00:07:26 +05:30			`public function setDefaultAccessTokenTTL(DateInterval $defaultAccessTokenTTL)`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`{`
			`$this->defaultAccessTokenTTL = $defaultAccessTokenTTL;`
			`}`

			`/**`
			`* Get the default TTL of access tokens`
			`*`
			`* @return DateInterval`
			`*/`
			`protected function getDefaultAccessTokenTTL()`
			`{`
			`if (!$this->defaultAccessTokenTTL instanceof \DateInterval) {`
			`$this->defaultAccessTokenTTL = new \DateInterval('PT01H'); // default token TTL of 1 hour`
			`}`

			`return $this->defaultAccessTokenTTL;`
			`}`

First commit of new server class 2015-04-05 21:33:06 +05:30			`/**`
Checkin 2015-10-14 14:21:53 +05:30			`* Enable a grant type on the server`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*`
Checkin 2015-10-14 14:21:53 +05:30			`* @param \League\OAuth2\Server\Grant\GrantTypeInterface $grantType`
Server constructor expects path to private key 2016-01-13 04:33:24 +05:30			`* @param ResponseTypeInterface $responseType`
Checkin 2015-10-14 14:21:53 +05:30			`* @param DateInterval $accessTokenTTL`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*/`
			`public function enableGrantType(`
Checkin 2015-10-14 14:21:53 +05:30			`GrantTypeInterface $grantType,`
Updates 2015-11-13 23:11:05 +05:30			`ResponseTypeInterface $responseType = null,`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`\DateInterval $accessTokenTTL = null`
First commit of new server class 2015-04-05 21:33:06 +05:30			`) {`
Checkin 2015-10-14 14:21:53 +05:30			`$grantType->setEmitter($this->getEmitter());`
			`$this->enabledGrantTypes[$grantType->getIdentifier()] = $grantType;`
First commit of new server class 2015-04-05 21:33:06 +05:30
			`// Set grant response type`
Updates 2015-11-13 23:11:05 +05:30			`if ($responseType instanceof ResponseTypeInterface) {`
			`$this->grantResponseTypes[$grantType->getIdentifier()] = $responseType;`
First commit of new server class 2015-04-05 21:33:06 +05:30			`} else {`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`$this->grantResponseTypes[$grantType->getIdentifier()] = $this->getDefaultResponseType();`
First commit of new server class 2015-04-05 21:33:06 +05:30			`}`

			`// Set grant access token TTL`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`if ($accessTokenTTL instanceof \DateInterval) {`
Checkin 2015-10-14 14:21:53 +05:30			`$this->grantTypeAccessTokenTTL[$grantType->getIdentifier()] = $accessTokenTTL;`
First commit of new server class 2015-04-05 21:33:06 +05:30			`} else {`
deferred default objects creation 2016-01-15 17:11:48 +05:30			`$this->grantTypeAccessTokenTTL[$grantType->getIdentifier()] = $this->getDefaultAccessTokenTTL();`
First commit of new server class 2015-04-05 21:33:06 +05:30			`}`
			`}`

			`/**`
			`* Return an access token response`
			`*`
Updated docblock 2016-01-16 00:06:34 +05:30			`* @param \Psr\Http\Message\ServerRequestInterface\|null $request`
			`* @param \Psr\Http\Message\ResponseInterface\|null $response`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*`
allow middleware use 2016-01-15 18:32:47 +05:30			`* @return \Psr\Http\Message\ResponseInterface`
Updates 2015-11-13 23:11:05 +05:30			`* @throws \League\OAuth2\Server\Exception\OAuthServerException`
First commit of new server class 2015-04-05 21:33:06 +05:30			`*/`
allow middleware use 2016-01-15 18:32:47 +05:30			`public function respondToRequest(ServerRequestInterface $request = null, ResponseInterface $response = null)`
First commit of new server class 2015-04-05 21:33:06 +05:30			`{`
allow middleware use 2016-01-15 18:32:47 +05:30			`if (!$request instanceof ServerRequestInterface) {`
Checkin 2015-10-14 14:21:53 +05:30			`$request = ServerRequestFactory::fromGlobals();`
First commit of new server class 2015-04-05 21:33:06 +05:30			`}`

allow middleware use 2016-01-15 18:32:47 +05:30			`if (!$response instanceof ResponseInterface) {`
			`$response = new Response();`
			`}`

Updates 2015-11-13 23:11:05 +05:30			`$tokenResponse = null;`
Checkin 2015-10-14 14:21:53 +05:30			`foreach ($this->enabledGrantTypes as $grantType) {`
			`if ($grantType->canRespondToRequest($request)) {`
Updates 2015-11-13 23:11:05 +05:30			`$tokenResponse = $grantType->respondToRequest(`
Checkin 2015-10-14 14:21:53 +05:30			`$request,`
Updates 2015-11-13 23:11:05 +05:30			`$this->grantResponseTypes[$grantType->getIdentifier()],`
Scope delimiter string is no longer configurable 2016-01-17 19:23:18 +05:30			`$this->grantTypeAccessTokenTTL[$grantType->getIdentifier()]`
Checkin 2015-10-14 14:21:53 +05:30			`);`
			`}`
First commit of new server class 2015-04-05 21:33:06 +05:30			`}`

allow middleware use 2016-01-15 18:32:47 +05:30			`if (!$tokenResponse instanceof ResponseTypeInterface) {`
			`return OAuthServerException::unsupportedGrantType()->generateHttpResponse($response);`
			`}`

			`return $tokenResponse->generateHttpResponse($response);`
			`}`

			`/**`
			`* PSR7 middleware callable`
			`*`
			`* @param \Psr\Http\Message\ServerRequestInterface $request`
			`* @param \Psr\Http\Message\ResponseInterface $response`
Updated docblocks 2016-01-16 00:07:26 +05:30			`* @param callable $next`
allow middleware use 2016-01-15 18:32:47 +05:30			`*`
			`* @return \Psr\Http\Message\ResponseInterface`
			`*/`
			`public function __invoke(ServerRequestInterface $request, ResponseInterface $response, callable $next)`
			`{`
			`$response = $this->respondToRequest($request, $response);`

			`if (in_array($response->getStatusCode(), [400, 401, 500])) {`
			`return $response;`
Checkin 2015-10-14 14:21:53 +05:30			`}`
First commit of new server class 2015-04-05 21:33:06 +05:30
allow middleware use 2016-01-15 18:32:47 +05:30			`return $next($request, $response);`
First commit of new server class 2015-04-05 21:33:06 +05:30			`}`
			`}`