. // }}} /** * OAuth2 implementation for GNU social * * @package OAuth2 * @category API * * @author Diogo Peralta Cordeiro * @author Hugo Sales * @copyright 2022 Free Software Foundation, Inc http://www.fsf.org * @license https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later */ namespace Plugin\OAuth2\Controller; use App\Core\Controller; use App\Core\DB\DB; use function App\Core\I18n\_m; use App\Core\Log; use App\Util\Exception\ClientException; use Plugin\OAuth2\Entity; use Symfony\Component\HttpFoundation\JsonResponse; use Symfony\Component\HttpFoundation\Request; /** * Client Management Endpoint * * @copyright 2022 Free Software Foundation, Inc http://www.fsf.org * @license https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later */ class Client extends Controller { public function onPost(Request $request): JsonResponse { Log::debug('OAuth2 Apps: Received a POST request.'); Log::debug('OAuth2 Apps: Request content: ', [$body = $request->getContent()]); $args = json_decode($body, true); if (\is_null($args) || !\array_key_exists('redirect_uris', $args)) { throw new ClientException(_m('Invalid request'), code: 400); } $identifier = hash('sha256', random_bytes(16)); // TODO maybe use password_hash and verify $secret = hash('sha256', random_bytes(64)); // TODO more validation $client = Entity\Client::create([ 'id' => $identifier, 'secret' => $secret, 'active' => true, 'plain_pcke' => false, 'is_confidential' => true, 'redirect_uris' => $args['redirect_uris'], 'grants' => 'client_credentials', 'scopes' => $args['scopes'] ?? 'read', 'client_name' => $args['client_name'], 'website' => $args['website'] ?? null, ]); DB::persist($client); DB::flush(); Log::debug('OAuth2 Apps: Created App: ', [$client]); $app_response = [ 'id' => 42, // TODO ??? 'name' => $client->getName(), 'website' => $client->getWebsite(), 'redirect_uri' => $client->getRedirectUri(), 'client_id' => $client->getIdentifier(), 'client_secret' => $client->getSecret(), ]; Log::debug('OAuth2 Apps: Create App response: ', [$app_response]); // Success return new JsonResponse($app_response, status: 200, headers: ['content_type' => 'application/json; charset=utf-8']); } }