mirror of
https://github.com/elyby/oauth2-server.git
synced 2024-12-16 10:18:55 +05:30
105 lines
2.7 KiB
PHP
105 lines
2.7 KiB
PHP
<?php
|
|
|
|
namespace OAuth2Server\RelationalExample;
|
|
|
|
use \Orno\Http\Request;
|
|
use \Orno\Http\Response;
|
|
use \Orno\Http\JsonResponse;
|
|
use \Orno\Http\Exception\MethodNotAllowedException;
|
|
|
|
use Illuminate\Database\Capsule\Manager as Capsule;
|
|
|
|
// use \League\OAuth2\Server\Exception;
|
|
use \RelationalExample\Storage;
|
|
use \RelationalExample\Model;
|
|
|
|
include __DIR__.'/vendor/autoload.php';
|
|
|
|
// Routing setup
|
|
$router = new \Orno\Route\RouteCollection;
|
|
|
|
// Set up the OAuth 2.0 resource server
|
|
$server = new \League\OAuth2\Server\AuthorizationServer;
|
|
$server->setSessionStorage(new Storage\SessionStorage);
|
|
$server->setAccessTokenStorage(new Storage\AccessTokenStorage);
|
|
$server->setRefreshTokenStorage(new Storage\RefreshTokenStorage);
|
|
$server->setClientStorage(new Storage\ClientStorage);
|
|
$server->setScopeStorage(new Storage\ScopeStorage);
|
|
$server->setAuthCodeStorage(new Storage\AuthCodeStorage);
|
|
|
|
$authCodeGrant = new \League\OAuth2\Server\Grant\AuthCodeGrant();
|
|
$server->addGrantType($authCodeGrant);
|
|
|
|
$request = (new Request)->createFromGlobals();
|
|
$server->setRequest($request);
|
|
|
|
// GET /authorize
|
|
$router->get('/authorize', function (Request $request) use ($server) {
|
|
|
|
// First ensure the parameters in the query string are correct
|
|
|
|
try {
|
|
|
|
$authParams = $server->getGrantType('authorization_code')->checkAuthorizeParams();
|
|
|
|
} catch (\Exception $e) {
|
|
|
|
return new Response(
|
|
json_encode([
|
|
'error' => $e->errorType,
|
|
'message' => $e->getMessage()
|
|
]),
|
|
$e->httpStatusCode,
|
|
$e->getHttpHeaders()
|
|
);
|
|
|
|
}
|
|
|
|
// Normally at this point you would show the user a sign-in screen and ask them to authorize the requested scopes
|
|
|
|
// ...
|
|
|
|
// ...
|
|
|
|
// ...
|
|
|
|
// Create a new authorize request which will respond with a redirect URI that the user will be redirected to
|
|
|
|
$redirectUri = $server->getGrantType('authorization_code')->newAuthorizeRequest('user', 1, $authParams);
|
|
|
|
$response = new Response('', 200, [
|
|
'Location' => $redirectUri
|
|
]);
|
|
|
|
return $response;
|
|
});
|
|
|
|
// /access_token
|
|
$router->post('/access_token', function (Request $request) use ($server) {
|
|
|
|
try {
|
|
|
|
$response = $server->issueAccessToken();
|
|
return new Response(json_encode($response), 200, [
|
|
'Location' => $redirectUri
|
|
]);
|
|
|
|
} catch (\Exception $e) {
|
|
|
|
return new Response(
|
|
json_encode([
|
|
'error' => $e->errorType,
|
|
'message' => $e->getMessage()
|
|
]),
|
|
$e->httpStatusCode,
|
|
$e->getHttpHeaders()
|
|
);
|
|
|
|
}
|
|
|
|
});
|
|
|
|
$dispatcher = $router->getDispatcher();
|
|
$response = $dispatcher->dispatch($request->getMethod(), $request->getPathInfo());
|
|
$response->send();
|