ElyBy-Mirror/oauth2-server
1
0
Fork 0
mirror of https://github.com/elyby/oauth2-server.git synced 2025-01-03 10:41:51 +05:30
Code Issues Packages Projects Releases Wiki Activity

Use resource server instead

Browse Source
This commit is contained in:
Alex Bilbie 2016-04-17 12:41:28 +01:00
parent 08c356a1e1
commit 9f3648039b
1 changed files with 4 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
examples/public/api.php
View File

@ -1,9 +1,8 @@
<?php <?php
use League\OAuth2\Server\ResourceServer;
use League\OAuth2\Server\Server; use League\OAuth2\Server\Server;
use OAuth2ServerExamples\Repositories\AccessTokenRepository; use OAuth2ServerExamples\Repositories\AccessTokenRepository;
use OAuth2ServerExamples\Repositories\ClientRepository;
use OAuth2ServerExamples\Repositories\ScopeRepository;
use Psr\Http\Message\ResponseInterface; use Psr\Http\Message\ResponseInterface;
use Psr\Http\Message\ServerRequestInterface; use Psr\Http\Message\ServerRequestInterface;
use Slim\App; use Slim\App;
@ -16,11 +15,8 @@ $app = new App([
], ],
Server::class => function () { Server::class => function () {
// Setup the authorization server // Setup the authorization server
$server = new Server( $server = new ResourceServer(
new ClientRepository(),
new AccessTokenRepository(), new AccessTokenRepository(),
new ScopeRepository(),
'file://' . __DIR__ . '/../private.key',
'file://' . __DIR__ . '/../public.key' 'file://' . __DIR__ . '/../public.key'
); );
@ -54,12 +50,14 @@ $app->get('/users', function (ServerRequestInterface $request, ResponseInterface
], ],
]; ];
// If the access token doesn't have the `basic` scope hide users' names
if (in_array('basic', $request->getAttribute('oauth_scopes')) === false) { if (in_array('basic', $request->getAttribute('oauth_scopes')) === false) {
for ($i = 0; $i < count($users); $i++) { for ($i = 0; $i < count($users); $i++) {
unset($users[$i]['name']); unset($users[$i]['name']);
} }
} }
// If the access token doesn't have the `emal` scope hide users' email addresses
if (in_array('email', $request->getAttribute('oauth_scopes')) === false) { if (in_array('email', $request->getAttribute('oauth_scopes')) === false) {
for ($i = 0; $i < count($users); $i++) { for ($i = 0; $i < count($users); $i++) {
unset($users[$i]['email']); unset($users[$i]['email']);