You are here

Home » API reference » JSON Web Token Authentication (JWT) 8.0

JwtAuthConsumerSubscriber.php in JSON Web Token Authentication (JWT) 8.0

Same filename and directory in other branches
  1. 8 modules/jwt_auth_consumer/src/EventSubscriber/JwtAuthConsumerSubscriber.php

Namespace

Drupal\jwt_auth_consumer\EventSubscriber

File

modules/jwt_auth_consumer/src/EventSubscriber/JwtAuthConsumerSubscriber.php
View source 
<?php

namespace Drupal\jwt_auth_consumer\EventSubscriber;

use Drupal\jwt\Authentication\Event\JwtAuthValidateEvent;
use Drupal\jwt\Authentication\Event\JwtAuthValidEvent;
use Drupal\jwt\Authentication\Event\JwtAuthEvents;
use Drupal\Core\Entity\EntityManagerInterface;
use Symfony\Component\EventDispatcher\EventSubscriberInterface;

/**
 * Class JwtAuthConsumerSubscriber.
 *
 * @package Drupal\jwt_auth_consumer
 */
class JwtAuthConsumerSubscriber implements EventSubscriberInterface {

  /**
   * A User Interface.
   *
   * @var \Drupal\Core\Entity\EntityManagerInterface
   */
  protected $entityManager;

  /**
   * Constructor.
   *
   * @param \Drupal\Core\Entity\EntityManagerInterface $entity_manager
   *   The entity manager service.
   */
  public function __construct(EntityManagerInterface $entity_manager) {
    $this->entityManager = $entity_manager;
  }

  /**
   * {@inheritdoc}
   */
  public static function getSubscribedEvents() {
    $events[JwtAuthEvents::VALIDATE][] = [
      'validate',
    ];
    $events[JwtAuthEvents::VALID][] = [
      'loadUser',
    ];
    return $events;
  }

  /**
   * Validates that a uid is present in the JWT.
   *
   * This validates the format of the JWT and validate the uid is a
   * valid uid in the system.
   *
   * @param \Drupal\jwt\Authentication\Event\JwtAuthValidateEvent $event
   *   A JwtAuth event.
   */
  public function validate(JwtAuthValidateEvent $event) {
    $token = $event
      ->getToken();
    $uid = $token
      ->getClaim([
      'drupal',
      'uid',
    ]);
    if ($uid === NULL) {
      $event
        ->invalidate("No Drupal uid was provided in the JWT payload.");
    }
    $user = $this->entityManager
      ->getStorage('user')
      ->load($uid);
    if ($user === NULL) {
      $event
        ->invalidate("No UID exists.");
    }
  }

  /**
   * Load and set a Drupal user to be authentication based on the JWT's uid.
   *
   * @param \Drupal\jwt\Authentication\Event\JwtAuthValidEvent $event
   *   A JwtAuth event.
   */
  public function loadUser(JwtAuthValidEvent $event) {
    $token = $event
      ->getToken();
    $user_storage = $this->entityManager
      ->getStorage('user');
    $uid = $token
      ->getClaim([
      'drupal',
      'uid',
    ]);
    $user = $user_storage
      ->load($uid);
    $event
      ->setUser($user);
  }

}

Classes

Namesort descending Description
JwtAuthConsumerSubscriber Class JwtAuthConsumerSubscriber.