You are here

Home » API reference » Simple OAuth (OAuth2) & OpenID Connect 8.4

DisallowSimpleOauthRequests.php in Simple OAuth (OAuth2) & OpenID Connect 8.4

Same filename and directory in other branches
  1. 8 src/PageCache/DisallowSimpleOauthRequests.php
  2. 8.2 src/PageCache/DisallowSimpleOauthRequests.php
  3. 8.3 src/PageCache/DisallowSimpleOauthRequests.php
  4. 5.x src/PageCache/DisallowSimpleOauthRequests.php

Namespace

Drupal\simple_oauth\PageCache

File

src/PageCache/DisallowSimpleOauthRequests.php
View source 
<?php

namespace Drupal\simple_oauth\PageCache;

use Symfony\Component\HttpFoundation\Request;

/**
 * Do not serve a page from cache if OAuth2 authentication is applicable.
 *
 * @internal
 */
class DisallowSimpleOauthRequests implements SimpleOauthRequestPolicyInterface {

  /**
   * {@inheritdoc}
   */
  public function isOauth2Request(Request $request) {

    // Check the header. See: http://tools.ietf.org/html/rfc6750#section-2.1
    // We have to perform also an exact match, as if no token is provided then
    // the LWS might be stripped, but we still have to detect this as OAuth2
    // authentication. See: https://www.ietf.org/rfc/rfc2616.txt
    $auth_header = trim($request->headers
      ->get('Authorization', '', TRUE));
    return strpos($auth_header, 'Bearer ') !== FALSE || $auth_header === 'Bearer';
  }

  /**
   * {@inheritdoc}
   */
  public function check(Request $request) {
    return $this
      ->isOauth2Request($request) ? static::DENY : NULL;
  }

}

Classes

Namesort descending Description
DisallowSimpleOauthRequests Do not serve a page from cache if OAuth2 authentication is applicable.