oauth2-server/examples/public/api.php

<?php
/**
 * @author      Alex Bilbie <hello@alexbilbie.com>
 * @copyright   Copyright (c) Alex Bilbie
 * @license     http://mit-license.org/
 *
 * @link        https://github.com/thephpleague/oauth2-server
 */

use League\OAuth2\Server\ResourceServer;
use OAuth2ServerExamples\Repositories\AccessTokenRepository;
use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface;
use Slim\App;

include __DIR__ . '/../vendor/autoload.php';

$app = new App([
    'settings'    => [
        'displayErrorDetails' => true,
    ],
    ResourceServer::class => function () {
        // Setup the authorization server
        $server = new ResourceServer(
            new AccessTokenRepository(),
            'file://' . __DIR__ . '/../public.key'
        );

        return $server;
    },
]);

$app->add(
    new \League\OAuth2\Server\Middleware\ResourceServerMiddleware(
        $app->getContainer()->get(ResourceServer::class)
    )
);

$app->get('/users', function (ServerRequestInterface $request, ResponseInterface $response) use ($app) {

    $users = [
        [
            'id'    => 123,
            'name'  => 'Alex',
            'email' => 'alex@thephpleague.com',
        ],
        [
            'id'    => 124,
            'name'  => 'Frank',
            'email' => 'frank@thephpleague.com',
        ],
        [
            'id'    => 125,
            'name'  => 'Phil',
            'email' => 'phil@thephpleague.com',
        ],
    ];

    // If the access token doesn't have the `basic` scope hide users' names
    if (in_array('basic', $request->getAttribute('oauth_scopes')) === false) {
        for ($i = 0; $i < count($users); $i++) {
            unset($users[$i]['name']);
        }
    }

    // If the access token doesn't have the `emal` scope hide users' email addresses
    if (in_array('email', $request->getAttribute('oauth_scopes')) === false) {
        for ($i = 0; $i < count($users); $i++) {
            unset($users[$i]['email']);
        }
    }

    $response->getBody()->write(json_encode($users));

    return $response->withStatus(200);
});

$app->run();
Added API example 2016-03-24 15:27:55 +00:00			`<?php`
Added copyright docblocks 2016-04-17 13:06:05 +01:00			`/**`
			`* @author Alex Bilbie <hello@alexbilbie.com>`
			`* @copyright Copyright (c) Alex Bilbie`
			`* @license http://mit-license.org/`
			`*`
			`* @link https://github.com/thephpleague/oauth2-server`
			`*/`
Added API example 2016-03-24 15:27:55 +00:00
Use resource server instead 2016-04-17 12:41:28 +01:00			`use League\OAuth2\Server\ResourceServer;`
Added API example 2016-03-24 15:27:55 +00:00			`use OAuth2ServerExamples\Repositories\AccessTokenRepository;`
			`use Psr\Http\Message\ResponseInterface;`
			`use Psr\Http\Message\ServerRequestInterface;`
			`use Slim\App;`

			`include __DIR__ . '/../vendor/autoload.php';`

			`$app = new App([`
			`'settings' => [`
			`'displayErrorDetails' => true,`
			`],`
Class rename fixes 2016-04-17 12:54:49 +01:00			`ResourceServer::class => function () {`
Added API example 2016-03-24 15:27:55 +00:00			`// Setup the authorization server`
Use resource server instead 2016-04-17 12:41:28 +01:00			`$server = new ResourceServer(`
Added API example 2016-03-24 15:27:55 +00:00			`new AccessTokenRepository(),`
			`'file://' . __DIR__ . '/../public.key'`
			`);`

			`return $server;`
			`},`
			`]);`

			`$app->add(`
			`new \League\OAuth2\Server\Middleware\ResourceServerMiddleware(`
Class rename fixes 2016-04-17 12:54:49 +01:00			`$app->getContainer()->get(ResourceServer::class)`
Added API example 2016-03-24 15:27:55 +00:00			`)`
			`);`

			`$app->get('/users', function (ServerRequestInterface $request, ResponseInterface $response) use ($app) {`

			`$users = [`
			`[`
			`'id' => 123,`
			`'name' => 'Alex',`
			`'email' => 'alex@thephpleague.com',`
			`],`
			`[`
			`'id' => 124,`
			`'name' => 'Frank',`
			`'email' => 'frank@thephpleague.com',`
			`],`
			`[`
			`'id' => 125,`
			`'name' => 'Phil',`
			`'email' => 'phil@thephpleague.com',`
			`],`
			`];`

Use resource server instead 2016-04-17 12:41:28 +01:00			// If the access token doesn't have the `basic` scope hide users' names
Added API example 2016-03-24 15:27:55 +00:00			`if (in_array('basic', $request->getAttribute('oauth_scopes')) === false) {`
			`for ($i = 0; $i < count($users); $i++) {`
			`unset($users[$i]['name']);`
			`}`
			`}`

Use resource server instead 2016-04-17 12:41:28 +01:00			// If the access token doesn't have the `emal` scope hide users' email addresses
Added API example 2016-03-24 15:27:55 +00:00			`if (in_array('email', $request->getAttribute('oauth_scopes')) === false) {`
			`for ($i = 0; $i < count($users); $i++) {`
			`unset($users[$i]['email']);`
			`}`
			`}`

			`$response->getBody()->write(json_encode($users));`

			`return $response->withStatus(200);`
			`});`

			`$app->run();`