mirror of
https://github.com/elyby/oauth2-server.git
synced 2025-01-05 19:43:56 +05:30
First commit of ResourceServerMiddleware
This commit is contained in:
parent
cd68103267
commit
6c787c374c
54
src/Middleware/ResourceServerMiddleware.php
Normal file
54
src/Middleware/ResourceServerMiddleware.php
Normal file
@ -0,0 +1,54 @@
|
|||||||
|
<?php
|
||||||
|
|
||||||
|
namespace League\OAuth2\Server\Middleware;
|
||||||
|
|
||||||
|
use League\OAuth2\Server\Exception\OAuthServerException;
|
||||||
|
use League\OAuth2\Server\Server;
|
||||||
|
use Psr\Http\Message\ResponseInterface;
|
||||||
|
use Psr\Http\Message\ServerRequestInterface;
|
||||||
|
|
||||||
|
class ResourceServerMiddleware
|
||||||
|
{
|
||||||
|
/**
|
||||||
|
* @var \League\OAuth2\Server\Server
|
||||||
|
*/
|
||||||
|
private $server;
|
||||||
|
|
||||||
|
|
||||||
|
/**
|
||||||
|
* ResourceServerMiddleware constructor.
|
||||||
|
*
|
||||||
|
* @param \League\OAuth2\Server\Server $server
|
||||||
|
*/
|
||||||
|
public function __construct(Server $server)
|
||||||
|
{
|
||||||
|
$this->server = $server;
|
||||||
|
}
|
||||||
|
|
||||||
|
/**
|
||||||
|
* @param \Psr\Http\Message\ServerRequestInterface $request
|
||||||
|
* @param \Psr\Http\Message\ResponseInterface $response
|
||||||
|
* @param callable $next
|
||||||
|
*
|
||||||
|
* @return \Psr\Http\Message\ResponseInterface
|
||||||
|
*/
|
||||||
|
public function __invoke(ServerRequestInterface $request, ResponseInterface $response, callable $next)
|
||||||
|
{
|
||||||
|
if ($request->hasHeader('authorization') === false) {
|
||||||
|
$exception = OAuthServerException::accessDenied('Missing authorization header');
|
||||||
|
|
||||||
|
return $exception->generateHttpResponse($response);
|
||||||
|
}
|
||||||
|
|
||||||
|
$request = $this->server->getDefaultResponseType()->determineAccessTokenInHeader($request);
|
||||||
|
|
||||||
|
if ($request->getAttribute('oauth_access_token') === null) {
|
||||||
|
$exception = OAuthServerException::accessDenied('Access token was invalid');
|
||||||
|
|
||||||
|
return $exception->generateHttpResponse($response);
|
||||||
|
}
|
||||||
|
|
||||||
|
// Pass the request and response on to the next responder in the chain
|
||||||
|
return $next($request, $response);
|
||||||
|
}
|
||||||
|
}
|
Loading…
Reference in New Issue
Block a user