oauth2-server/src/OAuth2/Grant/AuthCode.php

<?php

namespace OAuth2\Grant;

use OAuth2\Request;
use OAuth2\AuthServer;
use OAuth2\Exception;
use OAuth2\Util\SecureKey;
use OAuth2\Storage\SessionInterface;
use OAuth2\Storage\ClientInterface;
use OAuth2\Storage\ScopeInterface;

class AuthCode implements GrantTypeInterface {

    protected $identifier = 'authorization_code';
    protected $responseType = 'code';

    public function getIdentifier()
    {
        return $this->identifier;
    }

    public function getResponseType()
    {
        return $this->responseType;
    }

    public function completeFlow($inputParams = null)
    {
        $authParams = AuthServer::getParam(array('client_id', 'client_secret', 'redirect_uri', 'code'), 'post', $inputParams);

         if (is_null($authParams['client_id'])) {
            throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'client_id'), 0);
        }

        if (is_null($authParams['client_secret'])) {
            throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'client_secret'), 0);
        }

        if (is_null($authParams['redirect_uri'])) {
            throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'redirect_uri'), 0);
        }

        // Validate client ID and redirect URI
        $clientDetails = AuthServer::getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], $authParams['redirect_uri']);

        if ($clientDetails === false) {
            throw new Exception\ClientException(AuthServer::getExceptionMessage('invalid_client'), 8);
        }

        $authParams['client_details'] = $clientDetails;

        // Validate the authorization code
        if (is_null($authParams['code'])) {
            throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'code'), 0);
        }

        // Verify the authorization code matches the client_id and the request_uri
        $session = AuthServer::getStorage('session')->validateAuthCode($authParams['client_id'], $authParams['redirect_uri'], $authParams['code']);

        if ( ! $session) {
            throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_grant'), 'code'), 9);
        }

        // A session ID was returned so update it with an access token,
        //  remove the authorisation code, change the stage to 'granted'

        $accessToken = SecureKey::make();
        $refreshToken = (AuthServer::hasGrantType('refresh_token')) ? SecureKey::make() : null;

        $accessTokenExpires = time() + AuthServer::getExpiresIn();
        $accessTokenExpiresIn = AuthServer::getExpiresIn();

        AuthServer::getStorage('session')->updateSession(
            $session['id'],
            null,
            $accessToken,
            $refreshToken,
            $accessTokenExpires,
            'granted'
        );

        $response = array(
            'access_token'  =>  $accessToken,
            'token_type'    =>  'bearer',
            'expires'       =>  $accessTokenExpires,
            'expires_in'    =>  $accessTokenExpiresIn
        );

        if (AuthServer::hasGrantType('refresh_token')) {
            $response['refresh_token'] = $refreshToken;
        }

        return $response;
    }

}
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`<?php`

Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`namespace OAuth2\Grant;`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`use OAuth2\Request;`
			`use OAuth2\AuthServer;`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`use OAuth2\Exception;`
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`use OAuth2\Util\SecureKey;`
			`use OAuth2\Storage\SessionInterface;`
			`use OAuth2\Storage\ClientInterface;`
			`use OAuth2\Storage\ScopeInterface;`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
			`class AuthCode implements GrantTypeInterface {`

Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`protected $identifier = 'authorization_code';`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`protected $responseType = 'code';`

			`public function getIdentifier()`
			`{`
			`return $this->identifier;`
			`}`

			`public function getResponseType()`
			`{`
			`return $this->responseType;`
			`}`

Added AuthServer::getParam() function to reduce repetitive code 2013-02-13 18:25:10 +00:00			`public function completeFlow($inputParams = null)`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`{`
Added AuthServer::getParam() function to reduce repetitive code 2013-02-13 18:25:10 +00:00			`$authParams = AuthServer::getParam(array('client_id', 'client_secret', 'redirect_uri', 'code'), 'post', $inputParams);`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
Added AuthServer::getParam() function to reduce repetitive code 2013-02-13 18:25:10 +00:00			`if (is_null($authParams['client_id'])) {`
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'client_id'), 0);`
			`}`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`if (is_null($authParams['client_secret'])) {`
			`throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'client_secret'), 0);`
			`}`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`if (is_null($authParams['redirect_uri'])) {`
			`throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'redirect_uri'), 0);`
			`}`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
			`// Validate client ID and redirect URI`
Fixed getClient call 2013-02-04 19:45:47 +00:00			`$clientDetails = AuthServer::getStorage('client')->getClient($authParams['client_id'], $authParams['client_secret'], $authParams['redirect_uri']);`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
			`if ($clientDetails === false) {`
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`throw new Exception\ClientException(AuthServer::getExceptionMessage('invalid_client'), 8);`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`}`

Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`$authParams['client_details'] = $clientDetails;`

Added AuthServer::getParam() function to reduce repetitive code 2013-02-13 18:25:10 +00:00			`// Validate the authorization code`
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`if (is_null($authParams['code'])) {`
			`throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_request'), 'code'), 0);`
			`}`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
			`// Verify the authorization code matches the client_id and the request_uri`
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`$session = AuthServer::getStorage('session')->validateAuthCode($authParams['client_id'], $authParams['redirect_uri'], $authParams['code']);`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
			`if ( ! $session) {`
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`throw new Exception\ClientException(sprintf(AuthServer::getExceptionMessage('invalid_grant'), 'code'), 9);`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`}`

			`// A session ID was returned so update it with an access token,`
			`// remove the authorisation code, change the stage to 'granted'`

Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`$accessToken = SecureKey::make();`
Anal restyle 2013-02-01 15:59:50 +00:00			`$refreshToken = (AuthServer::hasGrantType('refresh_token')) ? SecureKey::make() : null;`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`$accessTokenExpires = time() + AuthServer::getExpiresIn();`
			`$accessTokenExpiresIn = AuthServer::getExpiresIn();`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00
Renamed some session methods to avoid conflicts with ORM methods 2013-02-04 14:41:40 +00:00			`AuthServer::getStorage('session')->updateSession(`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`$session['id'],`
			`null,`
			`$accessToken,`
			`$refreshToken,`
			`$accessTokenExpires,`
			`'granted'`
			`);`

			`$response = array(`
			`'access_token' => $accessToken,`
			`'token_type' => 'bearer',`
			`'expires' => $accessTokenExpires,`
			`'expires_in' => $accessTokenExpiresIn`
			`);`

Finished AuthCode grant 2013-02-01 14:41:52 +00:00			`if (AuthServer::hasGrantType('refresh_token')) {`
Initial commit of AuthCode grant type 2013-02-01 10:50:32 +00:00			`$response['refresh_token'] = $refreshToken;`
			`}`

			`return $response;`
			`}`

			`}`