Change tests to use validClient instead of getClientEntity

2025-05-31 14:12:07 +05:30 · 2018-09-01 14:26:22 +01:00
parent 46c2f99b06
commit 060a090479
5 changed files with 30 additions and 20 deletions
--- a/src/Grant/AbstractGrant.php
+++ b/src/Grant/AbstractGrant.php
@@ -174,27 +174,24 @@ abstract class AbstractGrant implements GrantTypeInterface
        list($basicAuthUser, $basicAuthPassword) = $this->getBasicAuthCredentials($request);

        $clientId = $this->getRequestParameter('client_id', $request, $basicAuthUser);
+
        if (is_null($clientId)) {
            throw OAuthServerException::invalidRequest('client_id');
        }

-        // If the client is confidential require the client secret
        $clientSecret = $this->getRequestParameter('client_secret', $request, $basicAuthPassword);

-        $client = $this->clientRepository->getClientEntity(
-            $clientId,
-            $this->getIdentifier(),
-            $clientSecret,
-            true
-        );
-
-        if ($client instanceof ClientEntityInterface === false) {
+        if ($this->clientRepository->validateClient($clientId, $clientSecret) === false) {
            $this->getEmitter()->emit(new RequestEvent(RequestEvent::CLIENT_AUTHENTICATION_FAILED, $request));
+
            throw OAuthServerException::invalidClient($request);
        }

+        $client = $this->clientRepository->getClientEntity($clientId);
+
        // If a redirect URI is provided ensure it matches what is pre-registered
        $redirectUri = $this->getRequestParameter('redirect_uri', $request, null);
+        
        if ($redirectUri !== null) {
            $this->validateRedirectUri($redirectUri, $client, $request);
        }
--- a/src/Repositories/ClientRepositoryInterface.php
+++ b/src/Repositories/ClientRepositoryInterface.php
@@ -19,15 +19,11 @@ interface ClientRepositoryInterface extends RepositoryInterface
    /**
     * Get a client.
     *
-     * @param string      $clientIdentifier   The client's identifier
-     * @param null|string $grantType          The grant type used (if sent)
-     * @param null|string $clientSecret       The client's secret (if sent)
-     * @param bool        $mustValidateSecret If true the client must attempt to validate the secret if the client
-     *                                        is confidential
+     * @param string $clientIdentifier The client's identifier
     *
     * @return ClientEntityInterface
     */
-    public function getClientEntity($clientIdentifier, $grantType = null, $clientSecret = null, $mustValidateSecret = true);
+    public function getClientEntity($clientIdentifier);

    /**
     * Check if a client is confidential.
@@ -37,4 +33,21 @@ interface ClientRepositoryInterface extends RepositoryInterface
     * @return bool
     */
    public function isClientConfidential($clientIdentifier);
+
+    /**
+     * Validate a client's secret.
+     *
+     * @param string      $clientIdentifier The client's identifier
+     * @param null|string $clientSecret     The client's secret (if sent)
+     *
+     * @return bool
+     */
+    public function validateClient($clientIdentifier, $clientSecret);
+
+    /**
+     * Check if a client can use a grant type.
+     *
+     * @return bool
+     */
+    public function canUseGrant($clientIdentifier, $grantType);
 }