mirror of
https://github.com/elyby/oauth2-server.git
synced 2025-01-13 15:22:12 +05:30
move token identifier generation
This commit is contained in:
parent
655f6b9771
commit
099c9ce41b
@ -23,7 +23,6 @@ use League\OAuth2\Server\Exception\OAuthServerException;
|
|||||||
use League\OAuth2\Server\Repositories\AccessTokenRepositoryInterface;
|
use League\OAuth2\Server\Repositories\AccessTokenRepositoryInterface;
|
||||||
use League\OAuth2\Server\Repositories\ClientRepositoryInterface;
|
use League\OAuth2\Server\Repositories\ClientRepositoryInterface;
|
||||||
use League\OAuth2\Server\Repositories\ScopeRepositoryInterface;
|
use League\OAuth2\Server\Repositories\ScopeRepositoryInterface;
|
||||||
use League\OAuth2\Server\Utils\SecureKey;
|
|
||||||
use Psr\Http\Message\ServerRequestInterface;
|
use Psr\Http\Message\ServerRequestInterface;
|
||||||
|
|
||||||
/**
|
/**
|
||||||
@ -310,7 +309,7 @@ abstract class AbstractGrant implements GrantTypeInterface
|
|||||||
array $scopes = []
|
array $scopes = []
|
||||||
) {
|
) {
|
||||||
$accessToken = new AccessTokenEntity();
|
$accessToken = new AccessTokenEntity();
|
||||||
$accessToken->setIdentifier(SecureKey::generate());
|
$accessToken->setIdentifier($this->generateUniqueIdentifier());
|
||||||
$accessToken->setExpiryDateTime((new \DateTime())->add($tokenTTL));
|
$accessToken->setExpiryDateTime((new \DateTime())->add($tokenTTL));
|
||||||
$accessToken->setClient($client);
|
$accessToken->setClient($client);
|
||||||
$accessToken->setUserIdentifier($userIdentifier);
|
$accessToken->setUserIdentifier($userIdentifier);
|
||||||
@ -342,7 +341,7 @@ abstract class AbstractGrant implements GrantTypeInterface
|
|||||||
array $scopes = []
|
array $scopes = []
|
||||||
) {
|
) {
|
||||||
$authCode = new AuthCodeEntity();
|
$authCode = new AuthCodeEntity();
|
||||||
$authCode->setIdentifier(SecureKey::generate());
|
$authCode->setIdentifier($this->generateUniqueIdentifier());
|
||||||
$authCode->setExpiryDateTime((new \DateTime())->add($tokenTTL));
|
$authCode->setExpiryDateTime((new \DateTime())->add($tokenTTL));
|
||||||
$authCode->setClient($client);
|
$authCode->setClient($client);
|
||||||
$authCode->setUserIdentifier($userIdentifier);
|
$authCode->setUserIdentifier($userIdentifier);
|
||||||
@ -363,13 +362,35 @@ abstract class AbstractGrant implements GrantTypeInterface
|
|||||||
protected function issueRefreshToken(AccessTokenEntity $accessToken)
|
protected function issueRefreshToken(AccessTokenEntity $accessToken)
|
||||||
{
|
{
|
||||||
$refreshToken = new RefreshTokenEntity();
|
$refreshToken = new RefreshTokenEntity();
|
||||||
$refreshToken->setIdentifier(SecureKey::generate());
|
$refreshToken->setIdentifier($this->generateUniqueIdentifier());
|
||||||
$refreshToken->setExpiryDateTime((new \DateTime())->add($this->refreshTokenTTL));
|
$refreshToken->setExpiryDateTime((new \DateTime())->add($this->refreshTokenTTL));
|
||||||
$refreshToken->setAccessToken($accessToken);
|
$refreshToken->setAccessToken($accessToken);
|
||||||
|
|
||||||
return $refreshToken;
|
return $refreshToken;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* Generate a new unique identifier
|
||||||
|
*
|
||||||
|
* @param int $length
|
||||||
|
*
|
||||||
|
* @return string
|
||||||
|
*
|
||||||
|
* @throws \League\OAuth2\Server\Exception\OAuthServerException
|
||||||
|
*/
|
||||||
|
protected function generateUniqueIdentifier($length = 40)
|
||||||
|
{
|
||||||
|
try {
|
||||||
|
return bin2hex(random_bytes($length));
|
||||||
|
} catch (\TypeError $e) {
|
||||||
|
throw OAuthServerException::serverError('An unexpected error has occurred');
|
||||||
|
} catch (\Error $e) {
|
||||||
|
throw OAuthServerException::serverError('An unexpected error has occurred');
|
||||||
|
} catch (\Exception $e) {
|
||||||
|
throw OAuthServerException::serverError('Could not generate a random string');
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* @inheritdoc
|
* @inheritdoc
|
||||||
*/
|
*/
|
||||||
|
@ -1,47 +0,0 @@
|
|||||||
<?php
|
|
||||||
/**
|
|
||||||
* OAuth 2.0 Secure key generator
|
|
||||||
*
|
|
||||||
* @package php-loep/oauth2-server
|
|
||||||
* @author Alex Bilbie <hello@alexbilbie.com>
|
|
||||||
* @copyright Copyright (c) 2013 PHP League of Extraordinary Packages
|
|
||||||
* @license http://mit-license.org/
|
|
||||||
* @link http://github.com/php-loep/oauth2-server
|
|
||||||
*/
|
|
||||||
|
|
||||||
namespace League\OAuth2\Server\Utils;
|
|
||||||
|
|
||||||
use League\OAuth2\Server\Exception\OAuthServerException;
|
|
||||||
|
|
||||||
|
|
||||||
/**
|
|
||||||
* SecureKey class
|
|
||||||
*/
|
|
||||||
class SecureKey
|
|
||||||
{
|
|
||||||
/**
|
|
||||||
* Generate a new unique code
|
|
||||||
*
|
|
||||||
* @param integer $len Length of the generated code
|
|
||||||
*
|
|
||||||
* @return string
|
|
||||||
* @throws \League\OAuth2\Server\Exception\OAuthServerException
|
|
||||||
*/
|
|
||||||
public static function generate($len = 40)
|
|
||||||
{
|
|
||||||
try {
|
|
||||||
$string = random_bytes($len);
|
|
||||||
} catch (\TypeError $e) {
|
|
||||||
// Well, it's an integer, so this IS unexpected.
|
|
||||||
throw OAuthServerException::serverError("An unexpected error has occurred");
|
|
||||||
} catch (\Error $e) {
|
|
||||||
// This is also unexpected because 32 is a reasonable integer.
|
|
||||||
throw OAuthServerException::serverError("An unexpected error has occurred");
|
|
||||||
} catch (\Exception $e) {
|
|
||||||
// If you get this message, the CSPRNG failed hard.
|
|
||||||
throw OAuthServerException::serverError("Could not generate a random string. Is our OS secure?");
|
|
||||||
}
|
|
||||||
|
|
||||||
return bin2hex($string);
|
|
||||||
}
|
|
||||||
}
|
|
Loading…
x
Reference in New Issue
Block a user