p3k
/
XRay
mirror of https://github.com/aaronpk/XRay.git
1
0
Fork 0
Code Issues 0 Releases 77 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
374 Commits
2 Branches
259 MiB
Tree: c530011b2c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c530011b2c'
${ noResults }
XRay/controllers/Token.php

119 lines
3.4 KiB
Raw Normal View History

add token fetching and authentication for posts
8 years ago
reorganize XRay classes, use p3k-http lib * removes the HTTP classes from this project and uses p3k-http library instead * reorganizes the XRay classes into a psr-4 compatible folder * moves controller autoload into -dev in preparation for turning this into a library (#17)
7 years ago
add token fetching and authentication for posts
8 years ago
should always return 200
8 years ago
add token fetching and authentication for posts
8 years ago
should always return 200
8 years ago
add token fetching and authentication for posts
8 years ago
 
  1. <?php
  2. use Symfony\Component\HttpFoundation\Request;
  3. use Symfony\Component\HttpFoundation\Response;
  4. 

  5. class Token {
  6. 

  7.   public $http;
  8.   private $_pretty = false;
  9. 

  10.   public function __construct() {
  11.     $this->http = new p3k\HTTP();
  12.   }
  13. 

  14.   public function token(Request $request, Response $response) {
  15. 

  16.     if($request->get('pretty')) {
  17.       $this->_pretty = true;
  18.     }
  19. 

  20.     $source = $request->get('source');
  21.     $code = $request->get('code');
  22. 

  23.     if(!$source) {
  24.       return $this->respond($response, 400, [
  25.         'error' => 'invalid_request',
  26.         'error_description' => 'Provide a source URL'
  27.       ]);
  28.     }
  29. 

  30.     if(!$code) {
  31.       return $this->respond($response, 400, [
  32.         'error' => 'invalid_request',
  33.         'error_description' => 'Provide an authorization code'
  34.       ]);
  35.     }
  36. 

  37.     $scheme = parse_url($source, PHP_URL_SCHEME);
  38.     if(!in_array($scheme, ['http','https'])) {
  39.       return $this->respond($response, 400, [
  40.         'error' => 'invalid_url',
  41.         'error_description' => 'Only http and https URLs are supported'
  42.       ]);
  43.     }
  44. 

  45.     // First try to discover the token endpoint

  46.     $head = $this->http->head($source);
  47. 

  48.     if(!array_key_exists('Link', $head['headers'])) {
  49.       return $this->respond($response, 200, [
  50.         'error' => 'no_token_endpoint',
  51.         'error_description' => 'No Link headers were returned'
  52.       ]);
  53.     }
  54. 

  55.     if(is_string($head['headers']['Link']))
  56.       $head['headers']['Link'] = [$head['headers']['Link']];
  57. 

  58.     $rels = $head['rels'];
  59. 

  60.     $endpoint = false;
  61.     if(array_key_exists('token_endpoint', $rels)) {
  62.       $endpoint = $rels['token_endpoint'][0];
  63.     } elseif(array_key_exists('oauth2-token', $rels)) {
  64.       $endpoint = $rels['oauth2-token'][0];
  65.     }
  66. 

  67.     if(!$endpoint) {
  68.       return $this->respond($response, 200, [
  69.         'error' => 'no_token_endpoint',
  70.         'error_description' => 'No token endpoint was found in the headers'
  71.       ]);
  72.     }
  73. 

  74.     // Resolve the endpoint URL relative to the source URL

  75.     $endpoint = \mf2\resolveUrl($source, $endpoint);
  76. 

  77.     // Now exchange the code for a token

  78.     $token = $this->http->post($endpoint, [
  79.       'grant_type' => 'authorization_code',
  80.       'code' => $code
  81.     ]);
  82. 

  83.     // Catch HTTP errors here such as timeouts

  84.     if($token['error']) {
  85.       return $this->respond($response, 200, [
  86.         'error' => $token['error'],
  87.         'error_description' => $token['error_description'] ?: 'An unknown error occurred trying to fetch the token'
  88.       ]);
  89.     }
  90. 

  91.     // Otherwise pass through the response from the token endpoint

  92.     $body = @json_decode($token['body']);
  93. 

  94.     // Pass through the content type if we were not able to decode the response as JSON

  95.     $headers = [];
  96.     if(!$body && isset($token['headers']['Content-Type'])) {
  97.       $headers['Content-Type'] = $token['headers']['Content-Type'];
  98.     }
  99. 

  100.     return $this->respond($response, 200, $body ?: $token['body'], $headers);
  101.   }
  102. 

  103.   private function respond(Response $response, $code, $params, $headers=[]) {
  104.     $response->setStatusCode($code);
  105.     foreach($headers as $k=>$v) {
  106.       $response->headers->set($k, $v);
  107.     }
  108.     if(is_array($params) || is_object($params)) {
  109.       $response->headers->set('Content-Type', 'application/json');
  110.       $opts = JSON_UNESCAPED_SLASHES;
  111.       if($this->_pretty) $opts += JSON_PRETTY_PRINT;
  112.       $response->setContent(json_encode($params, $opts)."\n");
  113.     } else {
  114.       $response->setContent($params);
  115.     }
  116.     return $response;
  117.   }
  118. 

  119. }