oauth2-server/src/Grant/AuthCodeGrant.php

<?php
/**
 * OAuth 2.0 Auth code grant
 *
 * @package     league/oauth2-server
 * @author      Alex Bilbie <hello@alexbilbie.com>
 * @copyright   Copyright (c) Alex Bilbie
 * @license     http://mit-license.org/
 * @link        https://github.com/thephpleague/oauth2-server
 */

namespace League\OAuth2\Server\Grant;

use League\OAuth2\Server\Entity\AccessTokenEntity;
use League\OAuth2\Server\Entity\AuthCodeEntity;
use League\OAuth2\Server\Entity\ClientEntity;
use League\OAuth2\Server\Entity\RefreshTokenEntity;
use League\OAuth2\Server\Entity\SessionEntity;
use League\OAuth2\Server\Event;
use League\OAuth2\Server\Exception;
use League\OAuth2\Server\Util\SecureKey;

/**
 * Auth code grant class
 */
class AuthCodeGrant extends AbstractGrant
{
    /**
     * Grant identifier
     *
     * @var string
     */
    protected $identifier = 'authorization_code';

    /**
     * Response type
     *
     * @var string
     */
    protected $responseType = 'code';

    /**
     * AuthServer instance
     *
     * @var \League\OAuth2\Server\AuthorizationServer
     */
    protected $server = null;

    /**
     * Access token expires in override
     *
     * @var int
     */
    protected $accessTokenTTL = null;

    /**
     * The TTL of the auth token
     *
     * @var integer
     */
    protected $authTokenTTL = 600;

    /**
     * Override the default access token expire time
     *
     * @param int $authTokenTTL
     *
     * @return void
     */
    public function setAuthTokenTTL($authTokenTTL)
    {
        $this->authTokenTTL = $authTokenTTL;
    }

    /**
     * Check authorize parameters
     *
     * @return array Authorize request parameters
     *
     * @throws
     */
    public function checkAuthorizeParams()
    {
        // Get required params
        $clientId = $this->server->getRequest()->query->get('client_id', null);
        if (is_null($clientId)) {
            throw new Exception\InvalidRequestException('client_id');
        }

        $redirectUri = $this->server->getRequest()->query->get('redirect_uri', null);
        if (is_null($redirectUri)) {
            throw new Exception\InvalidRequestException('redirect_uri');
        }

        // Validate client ID and redirect URI
        $client = $this->server->getClientStorage()->get(
            $clientId,
            null,
            $redirectUri,
            $this->getIdentifier()
        );

        if (($client instanceof ClientEntity) === false) {
            $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest()));
            throw new Exception\InvalidClientException();
        }

        $state = $this->server->getRequest()->query->get('state', null);
        if ($this->server->stateParamRequired() === true && is_null($state)) {
            throw new Exception\InvalidRequestException('state', $redirectUri);
        }

        $responseType = $this->server->getRequest()->query->get('response_type', null);
        if (is_null($responseType)) {
            throw new Exception\InvalidRequestException('response_type', $redirectUri);
        }

        // Ensure response type is one that is recognised
        if (!in_array($responseType, $this->server->getResponseTypes())) {
            throw new Exception\UnsupportedResponseTypeException($responseType, $redirectUri);
        }

        // Validate any scopes that are in the request
        $scopeParam = $this->server->getRequest()->query->get('scope', '');
        $scopes = $this->validateScopes($scopeParam, $client, $redirectUri);

        return [
            'client'        => $client,
            'redirect_uri'  => $redirectUri,
            'state'         => $state,
            'response_type' => $responseType,
            'scopes'        => $scopes
        ];
    }

    /**
     * Parse a new authorize request
     *
     * @param string $type       The session owner's type
     * @param string $typeId     The session owner's ID
     * @param array  $authParams The authorize request $_GET parameters
     *
     * @return string An authorisation code
     */
    public function newAuthorizeRequest($type, $typeId, $authParams = [])
    {
        // Create a new session
        $session = new SessionEntity($this->server);
        $session->setOwner($type, $typeId);
        $session->associateClient($authParams['client']);
        $session->save();

        // Create a new auth code
        $authCode = new AuthCodeEntity($this->server);
        $authCode->setId(SecureKey::generate());
        $authCode->setRedirectUri($authParams['redirect_uri']);
        $authCode->setExpireTime(time() + $this->authTokenTTL);

        foreach ($authParams['scopes'] as $scope) {
            $authCode->associateScope($scope);
        }

        $authCode->setSession($session);
        $authCode->save();

        return $authCode->generateRedirectUri($authParams['state']);
    }

    /**
     * Complete the auth code grant
     *
     * @return array
     *
     * @throws
     */
    public function completeFlow()
    {
        // Get the required params
        $clientId = $this->server->getRequest()->request->get('client_id', $this->server->getRequest()->getUser());
        if (is_null($clientId)) {
            throw new Exception\InvalidRequestException('client_id');
        }

        $clientSecret = $this->server->getRequest()->request->get('client_secret',
            $this->server->getRequest()->getPassword());
        if (is_null($clientSecret)) {
            throw new Exception\InvalidRequestException('client_secret');
        }

        $redirectUri = $this->server->getRequest()->request->get('redirect_uri', null);
        if (is_null($redirectUri)) {
            throw new Exception\InvalidRequestException('redirect_uri');
        }

        // Validate client ID and client secret
        $client = $this->server->getClientStorage()->get(
            $clientId,
            $clientSecret,
            $redirectUri,
            $this->getIdentifier()
        );

        if (($client instanceof ClientEntity) === false) {
            $this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest()));
            throw new Exception\InvalidClientException();
        }

        // Validate the auth code
        $authCode = $this->server->getRequest()->request->get('code', null);
        if (is_null($authCode)) {
            throw new Exception\InvalidRequestException('code');
        }

        $code = $this->server->getAuthCodeStorage()->get($authCode);
        if (($code instanceof AuthCodeEntity) === false) {
            throw new Exception\InvalidRequestException('code');
        }

        // Ensure the auth code hasn't expired
        if ($code->isExpired() === true) {
            throw new Exception\InvalidRequestException('code');
        }

        // Check redirect URI presented matches redirect URI originally used in authorize request
        if ($code->getRedirectUri() !== $redirectUri) {
            throw new Exception\InvalidRequestException('redirect_uri');
        }

        $session = $code->getSession();
        $session->associateClient($client);

        $authCodeScopes = $code->getScopes();

        // Generate the access token
        $accessToken = new AccessTokenEntity($this->server);
        $accessToken->setId(SecureKey::generate());
        $accessToken->setExpireTime($this->getAccessTokenTTL() + time());

        foreach ($authCodeScopes as $authCodeScope) {
            $session->associateScope($authCodeScope);
        }

        foreach ($session->getScopes() as $scope) {
            $accessToken->associateScope($scope);
        }

        $this->server->getTokenType()->setSession($session);
        $this->server->getTokenType()->setParam('access_token', $accessToken->getId());
        $this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL());

        // Associate a refresh token if set
        if ($this->server->hasGrantType('refresh_token')) {
            $refreshToken = new RefreshTokenEntity($this->server);
            $refreshToken->setId(SecureKey::generate());
            $refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time());
            $this->server->getTokenType()->setParam('refresh_token', $refreshToken->getId());
        }

        // Expire the auth code
        $code->expire();

        // Save all the things
        $accessToken->setSession($session);
        $accessToken->save();

        if (isset($refreshToken) && $this->server->hasGrantType('refresh_token')) {
            $refreshToken->setAccessToken($accessToken);
            $refreshToken->save();
        }

        return $this->server->getTokenType()->generateResponse();
    }
}
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`<?php`
Docblock updates 2013-02-14 01:06:56 +05:30			`/**`
			`* OAuth 2.0 Auth code grant`
			`*`
Too many changes to describe 2014-01-08 21:45:29 +05:30			`* @package league/oauth2-server`
Docblock updates 2013-02-14 01:06:56 +05:30			`* @author Alex Bilbie <hello@alexbilbie.com>`
Updated copyright 2014-03-10 01:04:23 +05:30			`* @copyright Copyright (c) Alex Bilbie`
Docblock updates 2013-02-14 01:06:56 +05:30			`* @license http://mit-license.org/`
Updated @link 2014-03-10 01:35:38 +05:30			`* @link https://github.com/thephpleague/oauth2-server`
Docblock updates 2013-02-14 01:06:56 +05:30			`*/`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Renamed AuthServer to Authorization, renamed ResourceServer to Resource. Updated all tests and other files 2013-05-09 00:12:23 +05:30			`namespace League\OAuth2\Server\Grant;`
Renamed namespace to League\OAuth2\ 2013-05-08 23:36:09 +05:30
CS fixes 2014-11-08 23:56:12 +05:30			`use League\OAuth2\Server\Entity\AccessTokenEntity;`
			`use League\OAuth2\Server\Entity\AuthCodeEntity;`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`use League\OAuth2\Server\Entity\ClientEntity;`
			`use League\OAuth2\Server\Entity\RefreshTokenEntity;`
			`use League\OAuth2\Server\Entity\SessionEntity;`
Added authentication failure events 2014-10-01 02:46:26 +05:30			`use League\OAuth2\Server\Event;`
CS fixes 2014-11-08 23:56:12 +05:30			`use League\OAuth2\Server\Exception;`
			`use League\OAuth2\Server\Util\SecureKey;`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Docblock updates 2013-02-14 01:06:56 +05:30			`/**`
			`* Auth code grant class`
			`*/`
Renamed Grants 2014-05-02 21:54:55 +05:30			`class AuthCodeGrant extends AbstractGrant`
AuthCode grant 2014-04-06 23:44:46 +05:30			`{`
Docblock updates 2013-02-14 01:06:56 +05:30			`/**`
			`* Grant identifier`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
Docblock updates 2013-02-14 01:06:56 +05:30			`* @var string`
			`*/`
Finished AuthCode grant 2013-02-01 20:11:52 +05:30			`protected $identifier = 'authorization_code';`
Docblock updates 2013-02-14 01:06:56 +05:30
			`/**`
			`* Response type`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
Docblock updates 2013-02-14 01:06:56 +05:30			`* @var string`
			`*/`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`protected $responseType = 'code';`

Removed static functions, inject authserver instance into grants 2013-03-06 22:29:18 +05:30			`/**`
			`* AuthServer instance`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
Docbloc improvements 2014-11-12 23:40:29 +05:30			`* @var \League\OAuth2\Server\AuthorizationServer`
Removed static functions, inject authserver instance into grants 2013-03-06 22:29:18 +05:30			`*/`
Updated copyright 2014-03-10 01:04:23 +05:30			`protected $server = null;`
Removed static functions, inject authserver instance into grants 2013-03-06 22:29:18 +05:30
Allow grant access token expiresIn override 2013-05-07 03:34:00 +05:30			`/**`
			`* Access token expires in override`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
Allow grant access token expiresIn override 2013-05-07 03:34:00 +05:30			`* @var int`
			`*/`
Renamed setExpiresIn method to accessTokenTTL 2013-05-08 03:46:30 +05:30			`protected $accessTokenTTL = null;`
Allow grant access token expiresIn override 2013-05-07 03:34:00 +05:30
Added method to set the auth token TTL 2013-05-08 03:50:32 +05:30			`/**`
			`* The TTL of the auth token`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
Added method to set the auth token TTL 2013-05-08 03:50:32 +05:30			`* @var integer`
			`*/`
			`protected $authTokenTTL = 600;`

			`/**`
			`* Override the default access token expire time`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
			`* @param int $authTokenTTL`
			`*`
Added method to set the auth token TTL 2013-05-08 03:50:32 +05:30			`* @return void`
			`*/`
			`public function setAuthTokenTTL($authTokenTTL)`
			`{`
			`$this->authTokenTTL = $authTokenTTL;`
			`}`

Docblock updates 2013-02-14 01:06:56 +05:30			`/**`
Use US spelling 2014-05-23 20:56:29 +05:30			`* Check authorize parameters`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`*`
Use US spelling 2014-05-23 20:56:29 +05:30			`* @return array Authorize request parameters`
Docbloc improvements 2014-11-12 23:40:29 +05:30			`*`
			`* @throws`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`*/`
Use US spelling 2014-05-23 20:56:29 +05:30			`public function checkAuthorizeParams()`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`{`
AuthCode grant 2014-04-06 23:44:46 +05:30			`// Get required params`
Fix #164 2014-05-07 22:00:07 +05:30			`$clientId = $this->server->getRequest()->query->get('client_id', null);`
Updated copyright 2014-03-10 01:04:23 +05:30			`if (is_null($clientId)) {`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidRequestException('client_id');`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

Fix #164 2014-05-07 22:00:07 +05:30			`$redirectUri = $this->server->getRequest()->query->get('redirect_uri', null);`
Updated copyright 2014-03-10 01:04:23 +05:30			`if (is_null($redirectUri)) {`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidRequestException('redirect_uri');`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

Fix #169 2014-08-06 14:23:47 +05:30			`// Validate client ID and redirect URI`
Removed generic getStorage method and replaced with distinct calls to getters 2014-11-07 07:50:06 +05:30			`$client = $this->server->getClientStorage()->get(`
Fix #169 2014-08-06 14:23:47 +05:30			`$clientId,`
			`null,`
			`$redirectUri,`
			`$this->getIdentifier()`
			`);`

			`if (($client instanceof ClientEntity) === false) {`
Added authentication failure events 2014-10-01 02:46:26 +05:30			`$this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest()));`
Fix #169 2014-08-06 14:23:47 +05:30			`throw new Exception\InvalidClientException();`
			`}`

Fix #164 2014-05-07 22:00:07 +05:30			`$state = $this->server->getRequest()->query->get('state', null);`
Updated copyright 2014-03-10 01:04:23 +05:30			`if ($this->server->stateParamRequired() === true && is_null($state)) {`
If the client should redirect during AuthCodeGrant authorisation then provide a redirect uri 2014-11-08 22:33:15 +05:30			`throw new Exception\InvalidRequestException('state', $redirectUri);`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

Fix #164 2014-05-07 22:00:07 +05:30			`$responseType = $this->server->getRequest()->query->get('response_type', null);`
Updated copyright 2014-03-10 01:04:23 +05:30			`if (is_null($responseType)) {`
If the client should redirect during AuthCodeGrant authorisation then provide a redirect uri 2014-11-08 22:33:15 +05:30			`throw new Exception\InvalidRequestException('response_type', $redirectUri);`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

			`// Ensure response type is one that is recognised`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`if (!in_array($responseType, $this->server->getResponseTypes())) {`
If the client should redirect during AuthCodeGrant authorisation then provide a redirect uri 2014-11-08 22:33:15 +05:30			`throw new Exception\UnsupportedResponseTypeException($responseType, $redirectUri);`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

Updated copyright 2014-03-10 01:04:23 +05:30			`// Validate any scopes that are in the request`
Fix #164 2014-05-07 22:00:07 +05:30			`$scopeParam = $this->server->getRequest()->query->get('scope', '');`
If the client should redirect during AuthCodeGrant authorisation then provide a redirect uri 2014-11-08 22:33:15 +05:30			`$scopes = $this->validateScopes($scopeParam, $client, $redirectUri);`
Updated copyright 2014-03-10 01:04:23 +05:30
			`return [`
Syntax improvements 2014-12-04 04:51:54 +05:30			`'client' => $client,`
			`'redirect_uri' => $redirectUri,`
			`'state' => $state,`
			`'response_type' => $responseType,`
			`'scopes' => $scopes`
Updated copyright 2014-03-10 01:04:23 +05:30			`];`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

			`/**`
Use US spelling 2014-05-23 20:56:29 +05:30			`* Parse a new authorize request`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`*`
CS fixes 2014-12-10 18:40:35 +05:30			`* @param string $type The session owner's type`
			`* @param string $typeId The session owner's ID`
			`* @param array $authParams The authorize request $_GET parameters`
			`*`
CS fixer changes 2014-05-03 15:23:43 +05:30			`* @return string An authorisation code`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`*/`
Use US spelling 2014-05-23 20:56:29 +05:30			`public function newAuthorizeRequest($type, $typeId, $authParams = [])`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`{`
Updated create a new session 2013-04-29 04:30:04 +05:30			`// Create a new session`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`$session = new SessionEntity($this->server);`
Updated copyright 2014-03-10 01:04:23 +05:30			`$session->setOwner($type, $typeId);`
			`$session->associateClient($authParams['client']);`
AuthCode grant 2014-04-06 23:44:46 +05:30			`$session->save();`
Updated newAuthoriseRequest 2013-04-29 15:55:23 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`// Create a new auth code`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`$authCode = new AuthCodeEntity($this->server);`
Lotsa bug fixes and updates 2014-07-11 22:57:03 +05:30			`$authCode->setId(SecureKey::generate());`
AuthCode grant 2014-04-06 23:44:46 +05:30			`$authCode->setRedirectUri($authParams['redirect_uri']);`
More updates to relational example 2014-06-23 12:50:34 +05:30			`$authCode->setExpireTime(time() + $this->authTokenTTL);`
Updated newAuthoriseRequest 2013-04-29 15:55:23 +05:30
Associate scopes to auth codes in separate method. Creating an auth code now returns an ID 2013-05-11 05:23:21 +05:30			`foreach ($authParams['scopes'] as $scope) {`
AuthCode grant 2014-04-06 23:44:46 +05:30			`$authCode->associateScope($scope);`
Associate scopes to auth codes in separate method. Creating an auth code now returns an ID 2013-05-11 05:23:21 +05:30			`}`
Updated create a new session 2013-04-29 04:30:04 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`$authCode->setSession($session);`
			`$authCode->save();`

			`return $authCode->generateRedirectUri($authParams['state']);`
Move authorisation code grant stuff into own grant 2013-03-31 18:07:02 +05:30			`}`

			`/**`
Docblock updates 2013-02-14 01:06:56 +05:30			`* Complete the auth code grant`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
More docblock fixes 2014-11-07 07:18:23 +05:30			`* @return array`
CS fixes 2014-12-10 18:40:35 +05:30			`*`
Docbloc improvements 2014-11-12 23:40:29 +05:30			`* @throws`
Docblock updates 2013-02-14 01:06:56 +05:30			`*/`
More updates to relational example 2014-06-23 12:50:34 +05:30			`public function completeFlow()`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`{`
Docblock updates 2013-02-14 01:06:56 +05:30			`// Get the required params`
Code coverage improvements in grant classes 2014-11-24 05:02:50 +05:30			`$clientId = $this->server->getRequest()->request->get('client_id', $this->server->getRequest()->getUser());`
AuthCode grant 2014-04-06 23:44:46 +05:30			`if (is_null($clientId)) {`
Code coverage improvements in grant classes 2014-11-24 05:02:50 +05:30			`throw new Exception\InvalidRequestException('client_id');`
Finished AuthCode grant 2013-02-01 20:11:52 +05:30			`}`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Code coverage improvements in grant classes 2014-11-24 05:02:50 +05:30			`$clientSecret = $this->server->getRequest()->request->get('client_secret',`
			`$this->server->getRequest()->getPassword());`
AuthCode grant 2014-04-06 23:44:46 +05:30			`if (is_null($clientSecret)) {`
Code coverage improvements in grant classes 2014-11-24 05:02:50 +05:30			`throw new Exception\InvalidRequestException('client_secret');`
Finished AuthCode grant 2013-02-01 20:11:52 +05:30			`}`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`$redirectUri = $this->server->getRequest()->request->get('redirect_uri', null);`
			`if (is_null($redirectUri)) {`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidRequestException('redirect_uri');`
Finished AuthCode grant 2013-02-01 20:11:52 +05:30			`}`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`// Validate client ID and client secret`
Removed generic getStorage method and replaced with distinct calls to getters 2014-11-07 07:50:06 +05:30			`$client = $this->server->getClientStorage()->get(`
AuthCode grant 2014-04-06 23:44:46 +05:30			`$clientId,`
			`$clientSecret,`
			`$redirectUri,`
			`$this->getIdentifier()`
			`);`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Updated with new entity names 2014-05-02 21:51:53 +05:30			`if (($client instanceof ClientEntity) === false) {`
Added authentication failure events 2014-10-01 02:46:26 +05:30			`$this->server->getEventEmitter()->emit(new Event\ClientAuthenticationFailedEvent($this->server->getRequest()));`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidClientException();`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`}`

AuthCode grant 2014-04-06 23:44:46 +05:30			`// Validate the auth code`
			`$authCode = $this->server->getRequest()->request->get('code', null);`
			`if (is_null($authCode)) {`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidRequestException('code');`
Finished AuthCode grant 2013-02-01 20:11:52 +05:30			`}`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Removed generic getStorage method and replaced with distinct calls to getters 2014-11-07 07:50:06 +05:30			`$code = $this->server->getAuthCodeStorage()->get($authCode);`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`if (($code instanceof AuthCodeEntity) === false) {`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidRequestException('code');`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`}`

Fix #231 2014-11-08 22:14:39 +05:30			`// Ensure the auth code hasn't expired`
			`if ($code->isExpired() === true) {`
			`throw new Exception\InvalidRequestException('code');`
			`}`

Use US spelling 2014-05-23 20:56:29 +05:30			`// Check redirect URI presented matches redirect URI originally used in authorize request`
AuthCode grant 2014-04-06 23:44:46 +05:30			`if ($code->getRedirectUri() !== $redirectUri) {`
Updated thrown exceptions 2014-04-25 15:54:48 +05:30			`throw new Exception\InvalidRequestException('redirect_uri');`
AuthCode grant 2014-04-06 23:44:46 +05:30			`}`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`$session = $code->getSession();`
Associate the $client with $session. 2014-11-07 02:20:22 +05:30			`$session->associateClient($client);`

AuthCode grant 2014-04-06 23:44:46 +05:30			`$authCodeScopes = $code->getScopes();`
Updated updateSession code 2013-04-29 04:31:34 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`// Generate the access token`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`$accessToken = new AccessTokenEntity($this->server);`
Lotsa bug fixes and updates 2014-07-11 22:57:03 +05:30			`$accessToken->setId(SecureKey::generate());`
support grant specific access token ttl 2014-09-11 18:09:50 +05:30			`$accessToken->setExpireTime($this->getAccessTokenTTL() + time());`
Delete an associated auth code 2013-04-29 04:32:00 +05:30
AuthCode grant 2014-04-06 23:44:46 +05:30			`foreach ($authCodeScopes as $authCodeScope) {`
			`$session->associateScope($authCodeScope);`
Don't associate a scope with a session, we associate it with an access token later 2013-04-29 04:31:07 +05:30			`}`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Fix #202 2014-08-18 21:17:36 +05:30			`foreach ($session->getScopes() as $scope) {`
CS fixes 2014-11-08 23:56:12 +05:30			`$accessToken->associateScope($scope);`
Fix #202 2014-08-18 21:17:36 +05:30			`}`

Inject the session into the token type 2014-10-01 02:58:49 +05:30			`$this->server->getTokenType()->setSession($session);`
Changed method names to be clearer that we're setting params 2014-10-01 02:58:38 +05:30			`$this->server->getTokenType()->setParam('access_token', $accessToken->getId());`
			`$this->server->getTokenType()->setParam('expires_in', $this->getAccessTokenTTL());`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30
Updated completeFlow 2013-04-29 16:01:07 +05:30			`// Associate a refresh token if set`
Updated copyright 2014-03-10 01:04:23 +05:30			`if ($this->server->hasGrantType('refresh_token')) {`
Updated with new entity names 2014-05-02 21:51:53 +05:30			`$refreshToken = new RefreshTokenEntity($this->server);`
Lotsa bug fixes and updates 2014-07-11 22:57:03 +05:30			`$refreshToken->setId(SecureKey::generate());`
AuthCode grant 2014-04-06 23:44:46 +05:30			`$refreshToken->setExpireTime($this->server->getGrantType('refresh_token')->getRefreshTokenTTL() + time());`
Changed method names to be clearer that we're setting params 2014-10-01 02:58:38 +05:30			`$this->server->getTokenType()->setParam('refresh_token', $refreshToken->getId());`
AuthCode grant 2014-04-06 23:44:46 +05:30			`}`

			`// Expire the auth code`
			`$code->expire();`

			`// Save all the things`
			`$accessToken->setSession($session);`
			`$accessToken->save();`

Check refreshToken isset before attempting to call methods on it 2014-11-13 17:50:59 +05:30			`if (isset($refreshToken) && $this->server->hasGrantType('refresh_token')) {`
AuthCode grant 2014-04-06 23:44:46 +05:30			`$refreshToken->setAccessToken($accessToken);`
			`$refreshToken->save();`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`}`

First commit of token types 2014-04-23 21:32:50 +05:30			`return $this->server->getTokenType()->generateResponse();`
Initial commit of AuthCode grant type 2013-02-01 16:20:32 +05:30			`}`
Gave "bearer" a capital "B" 2013-09-07 22:29:44 +05:30			`}`