Initial Upload
This commit is contained in:
Matt Batchelder
79
lib/OAuth/AccessTokenEntity.php
Normal file
79
lib/OAuth/AccessTokenEntity.php
Normal file
@@ -0,0 +1,79 @@
|
||||
<?php
|
||||
/*
|
||||
* Copyright (C) 2023 Xibo Signage Ltd
|
||||
*
|
||||
* Xibo - Digital Signage - https://xibosignage.com
|
||||
*
|
||||
* This file is part of Xibo.
|
||||
*
|
||||
* Xibo is free software: you can redistribute it and/or modify
|
||||
* it under the terms of the GNU Affero General Public License as published by
|
||||
* the Free Software Foundation, either version 3 of the License, or
|
||||
* any later version.
|
||||
*
|
||||
* Xibo is distributed in the hope that it will be useful,
|
||||
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||||
* GNU Affero General Public License for more details.
|
||||
*
|
||||
* You should have received a copy of the GNU Affero General Public License
|
||||
* along with Xibo. If not, see <http://www.gnu.org/licenses/>.
|
||||
*/
|
||||
|
||||
namespace Xibo\OAuth;
|
||||
|
||||
use Carbon\Carbon;
|
||||
use Lcobucci\JWT\Encoding\ChainedFormatter;
|
||||
use Lcobucci\JWT\Encoding\JoseEncoder;
|
||||
use Lcobucci\JWT\Signer\Key;
|
||||
use Lcobucci\JWT\Signer\Rsa\Sha256;
|
||||
use Lcobucci\JWT\Token;
|
||||
use Lcobucci\JWT\Token\Builder;
|
||||
use League\OAuth2\Server\CryptKey;
|
||||
use League\OAuth2\Server\Entities\AccessTokenEntityInterface;
|
||||
use League\OAuth2\Server\Entities\Traits\AccessTokenTrait;
|
||||
use League\OAuth2\Server\Entities\Traits\EntityTrait;
|
||||
use League\OAuth2\Server\Entities\Traits\TokenEntityTrait;
|
||||
|
||||
/**
|
||||
* Class AccessTokenEntity
|
||||
* @package Xibo\OAuth
|
||||
*/
|
||||
class AccessTokenEntity implements AccessTokenEntityInterface
|
||||
{
|
||||
use AccessTokenTrait, TokenEntityTrait, EntityTrait;
|
||||
|
||||
/**
|
||||
* Generate a JWT from the access token
|
||||
*
|
||||
* @param CryptKey $privateKey
|
||||
*
|
||||
* @return Token
|
||||
*/
|
||||
private function convertToJWT(CryptKey $privateKey)
|
||||
{
|
||||
$userId = $this->getUserIdentifier();
|
||||
$tokenBuilder = (new Builder(new JoseEncoder(), ChainedFormatter::default()));
|
||||
$signingKey = Key\InMemory::file($privateKey->getKeyPath());
|
||||
|
||||
return $tokenBuilder
|
||||
->issuedBy('info@xibosignage.com')
|
||||
->permittedFor($this->getClient()->getIdentifier())
|
||||
->identifiedBy($this->getIdentifier())
|
||||
->issuedAt(Carbon::now()->toDateTimeImmutable())
|
||||
->canOnlyBeUsedAfter(Carbon::now()->toDateTimeImmutable())
|
||||
->expiresAt($this->getExpiryDateTime())
|
||||
->relatedTo($userId)
|
||||
->withClaim('scopes', $this->getScopes())
|
||||
->getToken(new Sha256(), $signingKey)
|
||||
;
|
||||
}
|
||||
|
||||
/**
|
||||
* Generate a string representation from the access token
|
||||
*/
|
||||
public function __toString()
|
||||
{
|
||||
return $this->convertToJWT($this->privateKey)->toString();
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user