public function DisallowJwtAuthRequests::check in JSON Web Token Authentication (JWT) 8.0
Same name and namespace in other branches
- 8 src/PageCache/DisallowJwtAuthRequests.php \Drupal\jwt\PageCache\DisallowJwtAuthRequests::check()
Determines whether delivery of a cached page should be attempted.
Note that the request-policy check runs very early. In particular it is not possible to determine the logged in user. Also the current route match is not yet present when the check runs. Therefore, request-policy checks need to be designed in a way such that they do not depend on any other service and only take in account the information present on the incoming request.
When matching against the request path, special attention is needed to support path prefixes which are often used on multilingual sites.
Parameters
\Symfony\Component\HttpFoundation\Request $request: The incoming request object.
Return value
string|null One of static::ALLOW, static::DENY or NULL. Calling code may attempt to deliver a cached page if static::ALLOW is returned. Returns NULL if the policy is not specified for the given request.
Overrides RequestPolicyInterface::check
File
- src/
PageCache/ DisallowJwtAuthRequests.php, line 20
Class
- DisallowJwtAuthRequests
- Cache policy for pages served from JWT auth.
Namespace
Drupal\jwt\PageCacheCode
public function check(Request $request) {
$auth = $request->headers
->get('Authorization');
if (preg_match('/^Bearer .+/', $auth)) {
return self::DENY;
}
return NULL;
}