Authorization header fixes

2024-11-01 16:33:07 +05:30 · 2013-02-07 16:16:09 +00:00 · 2013-02-07 16:16:09 +00:00 · 89f3c35466
commit 89f3c35466
parent 55d68bd105
2 changed files with 11 additions and 7 deletions
--- a/src/OAuth2/ResourceServer.php
+++ b/src/OAuth2/ResourceServer.php
@ -161,7 +161,7 @@ class ResourceServer
    protected function determineAccessToken()
    {
        if ($header = $this->getRequest()->header('Authorization')) {
-            $access_token = trim(str_replace('Bearer', '', $header));
+            $access_token = base64_decode(trim(str_replace('Bearer', '', $header)));
        } else {
            $method = $this->getRequest()->server('REQUEST_METHOD');
            $access_token = $this->getRequest()->{$method}($this->tokenKey);
--- a/src/OAuth2/Util/Request.php
+++ b/src/OAuth2/Util/Request.php
@ -65,6 +65,9 @@ class Request implements RequestInterface

    protected function readHeaders()
    {
+        if (function_exists('getallheaders')) {
+            $headers = getallheaders();
+        } else {
            $headers = array();
            foreach ($this->server() as $name => $value) {
                if (substr($name, 0, 5) == 'HTTP_') {
@ -72,6 +75,7 @@ class Request implements RequestInterface
                    $headers[$name] = $value;
                }
            }
+        }

        return $headers;
   }