GNUsocial/gnu-social
4
0
Fork 1
Code Issues Releases Wiki Activity
Files
22741702bfaa29aa321727b66a592950faa5517f
gnu-social/plugins/OAuth2/Entity/RefreshToken.php

163 lines
4.7 KiB
PHP
Raw Normal View History

[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
<?php
declare(strict_types = 1);
// {{{ License
// This file is part of GNU social - https://www.gnu.org/software/social
//
// GNU social is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// GNU social is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with GNU social. If not, see <http://www.gnu.org/licenses/>.
// }}}
/**
* OAuth2 Client
*
* @package GNUsocial
*
* @author Hugo Sales <hugo@hsal.es>
* @copyright 2022 Free Software Foundation, Inc http://www.fsf.org
* @license https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later
*/
namespace Plugin\OAuth2\Entity;
use App\Core\Entity;
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
use DateTimeImmutable;
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
use DateTimeInterface;
use League\OAuth2\Server\Entities\AccessTokenEntityInterface;
use League\OAuth2\Server\Entities\RefreshTokenEntityInterface;
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
use Plugin\OAuth2\Repository;
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
class RefreshToken extends Entity implements RefreshTokenEntityInterface
{
// {{{ Autocode
// @codeCoverageIgnoreStart
private string $id;
private DateTimeInterface $expiry;
private ?string $access_token_id = null;
private bool $revoked;
private DateTimeInterface $created;
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getId(): string
{
return $this->id;
}
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
public function setId(string $id): self
{
$this->id = mb_substr($id, 0, 64);
return $this;
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getExpiry(): DateTimeInterface
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return $this->expiry;
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
public function setExpiry(DateTimeInterface $expiry): self
{
$this->expiry = $expiry;
return $this;
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getAccessTokenId(): ?string
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return $this->access_token_id;
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
public function setAccessTokenId(?string $access_token_id): self
{
$this->access_token_id = \is_null($access_token_id) ? null : mb_substr($access_token_id, 0, 64);
return $this;
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getRevoked(): bool
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return $this->revoked;
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
public function setRevoked(bool $revoked): self
{
$this->revoked = $revoked;
return $this;
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getCreated(): DateTimeInterface
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return $this->created;
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
public function setCreated(DateTimeInterface $created): self
{
$this->created = $created;
return $this;
}
// @codeCoverageIgnoreEnd
// }}} Autocode
/**
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
* Get the access token that the refresh token was originally associated with.
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
*/
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getAccessToken(): AccessTokenEntityInterface
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return (new Repository\AccessToken())->getAccessTokenEntity($this->getAccessTokenId());
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
/**
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
* Set the access token that the refresh token was associated with.
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
*/
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function setAccessToken(AccessTokenEntityInterface $accessToken)
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
$this->setAccessTokenId($accessToken->getIdentifier());
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function setIdentifier($identifier): self
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return $this->setId($identifier);
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getIdentifier(): string
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return $this->getId();
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
/**
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
* Set the date time when the token expires.
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
*/
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function setExpiryDateTime(DateTimeImmutable $dateTime)
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
$this->setExpiry($dateTime);
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
public function getExpiryDateTime(): DateTimeImmutable
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
{
[PLUGIN][OAuth2] Fix some static issues
2022-02-04 18:34:08 +00:00
return DateTimeImmutable::createFromInterface($this->getExpiry());
[PLUGIN][OAuth2] Start adding OAuth2 support with client registration This hardcodes the user, and has some other issues, so it is not yet complete. We follow mastodon's spec for automatic client registration, available at both `/api/v1/apps` and a more reasonable `/oauth/client`. This accepts a JSON POST with the client info and returns JSON with a `client_id` and a `client_secret`, to be used with `/oauth/authorize` and `/oauth/token`. It also, seemingly, requires returning an `id` with unclear purpose. The `/oauth/token` endpoint doesn't currently return a `me` field.
2022-01-25 12:17:32 +00:00
}
public static function schemaDef(): array
{
return [
'name' => 'oauth2_refresh_token',
'fields' => [
'id' => ['type' => 'char', 'length' => 64, 'not null' => true, 'description' => 'identifier for this token'],
'expiry' => ['type' => 'datetime', 'not null' => true, 'description' => 'when this token expires'],
'access_token_id' => ['type' => 'char', 'length' => 64, 'foreign key' => true, 'description' => 'Actor foreign key'],
'revoked' => ['type' => 'bool', 'not null' => true, 'foreign key' => true, 'description' => 'Whether this token is revoked'],
'created' => ['type' => 'datetime', 'not null' => true, 'default' => 'CURRENT_TIMESTAMP', 'description' => 'date this record was created'],
],
'primary key' => ['id'],
];
}
}
Copy Permalink