storages['session'] = $session; $this->storages['session_scope'] = $session_scope; } /** * Sets the Request Object * * @param RequestInterface The Request Object */ public function setRequest(RequestInterface $request) { $this->request = $request; } /** * Gets the Request object. It will create one from the globals if one is not set. * * @return RequestInterface */ public function getRequest() { if ($this->request === null) { $this->request = Request::buildFromGlobals(); } return $this->request; } /** * Checks if the Access Token is valid or not. * * @return bool */ public function isValid() { $access_token = $this->determineAccessToken(); $result = $this->storages['session']->validateAccessToken($access_token); if ( ! $result) { return false; } $this->accessToken = $access_token; $this->sessionId = $result['id']; $this->ownerType = $result['owner_type']; $this->ownerId = $result['owner_id']; $this->sessionScopes = $this->storages['session_scope']->getScopes($this->sessionId); return true; } /** * Checks if the current session has the given scope(s). * * @param array */ public function hasScope($scopes) { if (is_string($scopes)) { if (in_array($scopes, $this->sessionScopes)) { return true; } return false; } elseif (is_array($scopes)) { foreach ($scopes as $scope) { if ( ! in_array($scope, $this->sessionScopes)) { return false; } } return true; } return false; } /** * Reads in the Access Token from the headers. * * @return string * @throws MissingAccessTokenException */ protected function determineAccessToken() { if ($header = $this->getRequest()->header('Authorization')) { $access_token = trim(str_replace('Bearer', '', $header)); } else { $method = $this->getRequest()->server('REQUEST_METHOD'); $access_token = $this->getRequest()->{$method}($this->tokenKey); } if (empty($access_token)) { throw new MissingAccessTokenException('Access Token is Missing'); } return $access_token; } }