class AccessTokenRefresh in Simple OAuth (OAuth2) & OpenID Connect 8
Hierarchy
- class \Drupal\Core\Controller\ControllerBase implements ContainerInjectionInterface uses LoggerChannelTrait, MessengerTrait, LinkGeneratorTrait, RedirectDestinationTrait, UrlGeneratorTrait, StringTranslationTrait
- class \Drupal\simple_oauth\Controller\AccessTokenRefresh
Expanded class hierarchy of AccessTokenRefresh
File
- src/
Controller/ AccessTokenRefresh.php, line 14
Namespace
Drupal\simple_oauth\ControllerView source
class AccessTokenRefresh extends ControllerBase {
/**
* The response object.
*
* @var JsonResponse
*/
protected $response;
/**
* Constructs a CommentController object.
*
* @param AccountInterface $current_user
* The current user.
* @param \Drupal\Core\Entity\EntityManagerInterface $entity_manager
* The entity manager service.
*/
public function __construct(AccountInterface $current_user, EntityManagerInterface $entity_manager, JsonResponse $response) {
$this->currentUser = $current_user;
$this->entityManager = $entity_manager;
$this->response = $response;
}
/**
* {@inheritdoc}
*/
public static function create(ContainerInterface $container) {
return new static($container
->get('current_user'), $container
->get('entity.manager'), new JsonResponse());
}
/**
* Controller to return the access token when a refresh token is provided.
*
* @todo: Get some flood protection for this, since the request is uncacheable
* because of the expire counter. Also, there has to be some other better way
* to render JSON. Investigate that too!
*/
public function refresh() {
$account = $this
->currentUser()
->getAccount();
// If the account is not a token account, then bail.
if (!$account instanceof TokenAuthUserInterface) {
// TODO: Set the error headers appropriately.
return NULL;
}
$refresh_token = $account
->getToken();
if (!$refresh_token) {
// TODO: Set the error headers appropriately.
return NULL;
}
// Find / generate the access token for this refresh token.
$access_token = $refresh_token
->refresh();
if (!$access_token) {
// TODO: Set the error headers appropriately.
return NULL;
}
$this->response
->setData($this
->normalize($access_token));
return $this->response;
}
/**
* Serializes the token either using the serializer or manually.
*
* @param AccessTokenInterface $token
* The token.
*
* @return string
* The serialized token.
*/
protected function normalize(AccessTokenInterface $token) {
$storage = $this
->entityManager()
->getStorage('access_token');
$ids = $storage
->getQuery()
->condition('access_token_id', $token
->id())
->condition('expire', REQUEST_TIME, '>')
->condition('resource', 'authentication')
->range(0, 1)
->execute();
if (empty($ids)) {
// TODO: Add appropriate error handling. Maybe throw an exception?
return [];
}
$refresh_token = $storage
->load(reset($ids));
if (!$refresh_token || !$refresh_token
->isRefreshToken()) {
// TODO: Add appropriate error handling. Maybe throw an exception?
return [];
}
return [
'access_token' => $token
->get('value')->value,
'token_type' => 'Bearer',
'expires_in' => $token
->get('expire')->value - REQUEST_TIME,
'refresh_token' => $refresh_token
->get('value')->value,
];
}
}Members
Name |
Modifiers | Type | Description | Overrides |
|---|---|---|---|---|
|
AccessTokenRefresh:: |
protected | property | The response object. | |
|
AccessTokenRefresh:: |
public static | function |
Instantiates a new instance of this class. Overrides ControllerBase:: |
|
|
AccessTokenRefresh:: |
protected | function | Serializes the token either using the serializer or manually. | |
|
AccessTokenRefresh:: |
public | function | Controller to return the access token when a refresh token is provided. | |
|
AccessTokenRefresh:: |
public | function | Constructs a CommentController object. | |
|
ControllerBase:: |
protected | property | The configuration factory. | |
|
ControllerBase:: |
protected | property | The current user service. | 1 |
|
ControllerBase:: |
protected | property | The entity form builder. | |
|
ControllerBase:: |
protected | property | The entity manager. | |
|
ControllerBase:: |
protected | property | The entity type manager. | |
|
ControllerBase:: |
protected | property | The form builder. | 2 |
|
ControllerBase:: |
protected | property | The key-value storage. | 1 |
|
ControllerBase:: |
protected | property | The language manager. | 1 |
|
ControllerBase:: |
protected | property | The module handler. | 2 |
|
ControllerBase:: |
protected | property | The state service. | |
|
ControllerBase:: |
protected | function | Returns the requested cache bin. | |
|
ControllerBase:: |
protected | function | Retrieves a configuration object. | |
|
ControllerBase:: |
private | function | Returns the service container. | |
|
ControllerBase:: |
protected | function | Returns the current user. | 1 |
|
ControllerBase:: |
protected | function | Retrieves the entity form builder. | |
|
ControllerBase:: |
protected | function | Retrieves the entity manager service. | |
|
ControllerBase:: |
protected | function | Retrieves the entity type manager. | |
|
ControllerBase:: |
protected | function | Returns the form builder service. | 2 |
|
ControllerBase:: |
protected | function | Returns a key/value storage collection. | 1 |
|
ControllerBase:: |
protected | function | Returns the language manager service. | 1 |
|
ControllerBase:: |
protected | function | Returns the module handler. | 2 |
|
ControllerBase:: |
protected | function |
Returns a redirect response object for the specified route. Overrides UrlGeneratorTrait:: |
|
|
ControllerBase:: |
protected | function | Returns the state storage service. | |
|
LinkGeneratorTrait:: |
protected | property | The link generator. | 1 |
|
LinkGeneratorTrait:: |
protected | function | Returns the link generator. | |
|
LinkGeneratorTrait:: |
protected | function | Renders a link to a route given a route name and its parameters. | |
|
LinkGeneratorTrait:: |
public | function | Sets the link generator service. | |
|
LoggerChannelTrait:: |
protected | property | The logger channel factory service. | |
|
LoggerChannelTrait:: |
protected | function | Gets the logger for a specific channel. | |
|
LoggerChannelTrait:: |
public | function | Injects the logger channel factory. | |
|
MessengerTrait:: |
protected | property | The messenger. | 29 |
|
MessengerTrait:: |
public | function | Gets the messenger. | 29 |
|
MessengerTrait:: |
public | function | Sets the messenger. | |
|
RedirectDestinationTrait:: |
protected | property | The redirect destination service. | 1 |
|
RedirectDestinationTrait:: |
protected | function | Prepares a 'destination' URL query parameter for use with \Drupal\Core\Url. | |
|
RedirectDestinationTrait:: |
protected | function | Returns the redirect destination service. | |
|
RedirectDestinationTrait:: |
public | function | Sets the redirect destination service. | |
|
StringTranslationTrait:: |
protected | property | The string translation service. | 1 |
|
StringTranslationTrait:: |
protected | function | Formats a string containing a count of items. | |
|
StringTranslationTrait:: |
protected | function | Returns the number of plurals supported by a given language. | |
|
StringTranslationTrait:: |
protected | function | Gets the string translation service. | |
|
StringTranslationTrait:: |
public | function | Sets the string translation service to use. | 2 |
|
StringTranslationTrait:: |
protected | function | Translates a string to the current language or to a given language. | |
|
UrlGeneratorTrait:: |
protected | property | The url generator. | |
|
UrlGeneratorTrait:: |
protected | function | Returns the URL generator service. | |
|
UrlGeneratorTrait:: |
public | function | Sets the URL generator service. | |
|
UrlGeneratorTrait:: |
protected | function | Generates a URL or path for a specific route based on the given parameters. |