Code Coverage for /home/travis/build/thephpleague/oauth2-server/src/ResourceServer.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	80.00% covered (warning)	80.00%	4 / 5	CRAP	70.00% covered (warning)	70.00%	14 / 20
ResourceServer	0.00% covered (danger)	0.00%	0 / 1	80.00% covered (warning)	80.00%	4 / 5	15.89	70.00% covered (warning)	70.00%	14 / 20
__construct				0.00% covered (danger)	0.00%	0 / 1	1.42	25.00% covered (danger)	25.00%	2 / 8
setIdKey				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	2 / 2
getAccessToken				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
isValidRequest				100.00% covered (success)	100.00%	1 / 1	4	100.00% covered (success)	100.00%	4 / 4
determineAccessToken				100.00% covered (success)	100.00%	1 / 1	5	100.00% covered (success)	100.00%	5 / 5

1	<?php
2	/**
3	* OAuth 2.0 Resource Server
4	*
5	* @package league/oauth2-server
6	* @author Alex Bilbie <hello@alexbilbie.com>
7	* @copyright Copyright (c) Alex Bilbie
8	* @license http://mit-license.org/
9	* @link https://github.com/thephpleague/oauth2-server
10	*/
11
12	namespace League\OAuth2\Server;
13
14	use League\OAuth2\Server\Entity\AccessTokenEntity;
15	use League\OAuth2\Server\Exception\AccessDeniedException;
16	use League\OAuth2\Server\Exception\InvalidRequestException;
17	use League\OAuth2\Server\Storage\AccessTokenInterface;
18	use League\OAuth2\Server\Storage\ClientInterface;
19	use League\OAuth2\Server\Storage\ScopeInterface;
20	use League\OAuth2\Server\Storage\SessionInterface;
21	use League\OAuth2\Server\TokenType\Bearer;
22
23	/**
24	* OAuth 2.0 Resource Server
25	*/
26	class ResourceServer extends AbstractServer
27	{
28	/**
29	* The access token
30	*
31	* @var \League\OAuth2\Server\Entity\AccessTokenEntity
32	*/
33	protected $accessToken;
34
35	/**
36	* The query string key which is used by clients to present the access token (default: access_token)
37	*
38	* @var string
39	*/
40	protected $tokenKey = 'access_token';
41
42	/**
43	* Initialise the resource server
44	*
45	* @param \League\OAuth2\Server\Storage\SessionInterface $sessionStorage
46	* @param \League\OAuth2\Server\Storage\AccessTokenInterface $accessTokenStorage
47	* @param \League\OAuth2\Server\Storage\ClientInterface $clientStorage
48	* @param \League\OAuth2\Server\Storage\ScopeInterface $scopeStorage
49	*
50	* @return self
51	*/
52	public function __construct(
53	SessionInterface $sessionStorage,
54	AccessTokenInterface $accessTokenStorage,
55	ClientInterface $clientStorage,
56	ScopeInterface $scopeStorage
57	) {
58	$this->setSessionStorage($sessionStorage);
59	$this->setAccessTokenStorage($accessTokenStorage);
60	$this->setClientStorage($clientStorage);
61	$this->setScopeStorage($scopeStorage);
62
63	// Set Bearer as the default token type
64	$this->setTokenType(new Bearer());
65
66	parent::__construct();
67
68	return $this;
69	}
70
71	/**
72	* Sets the query string key for the access token.
73	*
74	* @param string $key The new query string key
75	*
76	* @return self
77	*/
78	public function setIdKey($key)
79	{
80	$this->tokenKey = $key;
81
82	return $this;
83	}
84
85	/**
86	* Gets the access token
87	*
88	* @return \League\OAuth2\Server\Entity\AccessTokenEntity
89	*/
90	public function getAccessToken()
91	{
92	return $this->accessToken;
93	}
94
95	/**
96	* Checks if the access token is valid or not
97	*
98	* @param bool $headerOnly Limit Access Token to Authorization header
99	* @param \League\OAuth2\Server\Entity\AccessTokenEntity\|null $accessToken Access Token
100	*
101	* @throws \League\OAuth2\Server\Exception\AccessDeniedException
102	* @throws \League\OAuth2\Server\Exception\InvalidRequestException
103	*
104	* @return bool
105	*/
106	public function isValidRequest($headerOnly = true, $accessToken = null)
107	{
108	$accessTokenString = ($accessToken !== null)
109	? $accessToken
110	: $this->determineAccessToken($headerOnly);
111
112	// Set the access token
113	$this->accessToken = $this->getAccessTokenStorage()->get($accessTokenString);
114
115	// Ensure the access token exists
116	if (!$this->accessToken instanceof AccessTokenEntity) {
117	throw new AccessDeniedException();
118	}
119
120	// Check the access token hasn't expired
121	// Ensure the auth code hasn't expired
122	if ($this->accessToken->isExpired() === true) {
123	throw new AccessDeniedException();
124	}
125
126	return true;
127	}
128
129	/**
130	* Reads in the access token from the headers
131	*
132	* @param bool $headerOnly Limit Access Token to Authorization header
133	*
134	* @throws \League\OAuth2\Server\Exception\InvalidRequestException Thrown if there is no access token presented
135	*
136	* @return string
137	*/
138	public function determineAccessToken($headerOnly = false)
139	{
140	if ($this->getRequest()->headers->get('Authorization') !== null) {
141	$accessToken = $this->getTokenType()->determineAccessTokenInHeader($this->getRequest());
142	} elseif ($headerOnly === false) {
143	$accessToken = ($this->getRequest()->server->get('REQUEST_METHOD') === 'GET')
144	? $this->getRequest()->query->get($this->tokenKey)
145	: $this->getRequest()->request->get($this->tokenKey);
146	}
147
148	if (empty($accessToken)) {
149	throw new InvalidRequestException('access token');
150	}
151
152	return $accessToken;
153	}
154	}