class AccessTokenIssue in Simple OAuth (OAuth2) & OpenID Connect 8
Hierarchy
- class \Drupal\Core\Controller\ControllerBase implements ContainerInjectionInterface uses LoggerChannelTrait, MessengerTrait, LinkGeneratorTrait, RedirectDestinationTrait, UrlGeneratorTrait, StringTranslationTrait
- class \Drupal\simple_oauth\Controller\AccessTokenIssue
Expanded class hierarchy of AccessTokenIssue
File
- src/
Controller/ AccessTokenIssue.php, line 16
Namespace
Drupal\simple_oauth\ControllerView source
class AccessTokenIssue extends ControllerBase {
/**
* The user authentication object.
*
* @var \Drupal\user\UserAuthInterface
*/
protected $userAuth;
/**
* The response object.
*
* @var JsonResponse
*/
protected $response;
/**
* @param \Drupal\Core\Entity\EntityManagerInterface $entity_manager
* The entity manager service.
*/
public function __construct(EntityManagerInterface $entity_manager, UserAuthInterface $user_auth, JsonResponse $response) {
$this->entityManager = $entity_manager;
$this->userAuth = $user_auth;
$this->response = $response;
}
/**
* {@inheritdoc}
*/
public static function create(ContainerInterface $container) {
return new static($container
->get('entity.manager'), $container
->get('user.auth'), new JsonResponse());
}
public function issue(Request $request) {
$body = Json::decode($request
->getContent());
if (!$body['grant_type'] == 'password') {
throw new HttpException(422, 'Only grant_type=password is supported');
}
$scope = 'global';
if (!empty($body['scope'])) {
$scope = $body['scope'];
$resource = $this->entityManager
->getStorage('access_token_resource')
->load($scope);
if (!$resource) {
throw new HttpException(422, sprintf('Unknown scope %s', $scope));
}
}
$uid = $this->userAuth
->authenticate($body['username'], $body['password']);
/** @var \Drupal\user\UserInterface $user */
$user = $this->entityManager
->getStorage('user')
->load($uid);
if (!$user || $user
->isBlocked()) {
throw new HttpException(401, 'Authentication failed.');
}
$values = [
'expire' => AccessToken::defaultExpiration(),
'user_id' => $uid,
'auth_user_id' => $uid,
'resource' => $scope,
];
$store = $this->entityManager
->getStorage('access_token');
/** @var \Drupal\simple_oauth\Entity\AccessToken $token */
$token = $store
->create($values);
$token
->save();
$this->response
->setData($this
->normalize($token));
return $this->response;
}
/**
* Manually normalize a token entity into an structured array.
*
* @todo Use the serialization system.
*
* @param \Drupal\simple_oauth\Entity\AccessToken $token
* The token entity to normalize.
*
* @return array
* The structured array.
*/
protected function normalize(AccessToken $token) {
$output = [
'access_token' => $token
->get('value')->value,
'token_type' => 'Bearer',
'expires_in' => $token
->get('expire')->value - REQUEST_TIME,
];
// Try to load the associated refresh token.
$storage = $this
->entityManager()
->getStorage('access_token');
$ids = $storage
->getQuery()
->condition('access_token_id', $token
->id())
->condition('expire', REQUEST_TIME, '>')
->condition('resource', 'authentication')
->range(0, 1)
->execute();
if (!empty($ids)) {
$output['refresh_token'] = $storage
->load(reset($ids))
->get('value')->value;
}
return $output;
}
}Members
Name |
Modifiers | Type | Description | Overrides |
|---|---|---|---|---|
|
AccessTokenIssue:: |
protected | property | The response object. | |
|
AccessTokenIssue:: |
protected | property | The user authentication object. | |
|
AccessTokenIssue:: |
public static | function |
Instantiates a new instance of this class. Overrides ControllerBase:: |
|
|
AccessTokenIssue:: |
public | function | ||
|
AccessTokenIssue:: |
protected | function | Manually normalize a token entity into an structured array. | |
|
AccessTokenIssue:: |
public | function | ||
|
ControllerBase:: |
protected | property | The configuration factory. | |
|
ControllerBase:: |
protected | property | The current user service. | 1 |
|
ControllerBase:: |
protected | property | The entity form builder. | |
|
ControllerBase:: |
protected | property | The entity manager. | |
|
ControllerBase:: |
protected | property | The entity type manager. | |
|
ControllerBase:: |
protected | property | The form builder. | 2 |
|
ControllerBase:: |
protected | property | The key-value storage. | 1 |
|
ControllerBase:: |
protected | property | The language manager. | 1 |
|
ControllerBase:: |
protected | property | The module handler. | 2 |
|
ControllerBase:: |
protected | property | The state service. | |
|
ControllerBase:: |
protected | function | Returns the requested cache bin. | |
|
ControllerBase:: |
protected | function | Retrieves a configuration object. | |
|
ControllerBase:: |
private | function | Returns the service container. | |
|
ControllerBase:: |
protected | function | Returns the current user. | 1 |
|
ControllerBase:: |
protected | function | Retrieves the entity form builder. | |
|
ControllerBase:: |
protected | function | Retrieves the entity manager service. | |
|
ControllerBase:: |
protected | function | Retrieves the entity type manager. | |
|
ControllerBase:: |
protected | function | Returns the form builder service. | 2 |
|
ControllerBase:: |
protected | function | Returns a key/value storage collection. | 1 |
|
ControllerBase:: |
protected | function | Returns the language manager service. | 1 |
|
ControllerBase:: |
protected | function | Returns the module handler. | 2 |
|
ControllerBase:: |
protected | function |
Returns a redirect response object for the specified route. Overrides UrlGeneratorTrait:: |
|
|
ControllerBase:: |
protected | function | Returns the state storage service. | |
|
LinkGeneratorTrait:: |
protected | property | The link generator. | 1 |
|
LinkGeneratorTrait:: |
protected | function | Returns the link generator. | |
|
LinkGeneratorTrait:: |
protected | function | Renders a link to a route given a route name and its parameters. | |
|
LinkGeneratorTrait:: |
public | function | Sets the link generator service. | |
|
LoggerChannelTrait:: |
protected | property | The logger channel factory service. | |
|
LoggerChannelTrait:: |
protected | function | Gets the logger for a specific channel. | |
|
LoggerChannelTrait:: |
public | function | Injects the logger channel factory. | |
|
MessengerTrait:: |
protected | property | The messenger. | 29 |
|
MessengerTrait:: |
public | function | Gets the messenger. | 29 |
|
MessengerTrait:: |
public | function | Sets the messenger. | |
|
RedirectDestinationTrait:: |
protected | property | The redirect destination service. | 1 |
|
RedirectDestinationTrait:: |
protected | function | Prepares a 'destination' URL query parameter for use with \Drupal\Core\Url. | |
|
RedirectDestinationTrait:: |
protected | function | Returns the redirect destination service. | |
|
RedirectDestinationTrait:: |
public | function | Sets the redirect destination service. | |
|
StringTranslationTrait:: |
protected | property | The string translation service. | 1 |
|
StringTranslationTrait:: |
protected | function | Formats a string containing a count of items. | |
|
StringTranslationTrait:: |
protected | function | Returns the number of plurals supported by a given language. | |
|
StringTranslationTrait:: |
protected | function | Gets the string translation service. | |
|
StringTranslationTrait:: |
public | function | Sets the string translation service to use. | 2 |
|
StringTranslationTrait:: |
protected | function | Translates a string to the current language or to a given language. | |
|
UrlGeneratorTrait:: |
protected | property | The url generator. | |
|
UrlGeneratorTrait:: |
protected | function | Returns the URL generator service. | |
|
UrlGeneratorTrait:: |
public | function | Sets the URL generator service. | |
|
UrlGeneratorTrait:: |
protected | function | Generates a URL or path for a specific route based on the given parameters. |