vendor/trikoder/oauth2-bundle/Controller/AuthorizationController.php line 60

Open in your IDE?
  1. <?php
  3. declare(strict_types=1);
  5. namespace Trikoder\Bundle\OAuth2Bundle\Controller;
  7. use League\OAuth2\Server\AuthorizationServer;
  8. use League\OAuth2\Server\Exception\OAuthServerException;
  9. use Psr\Http\Message\ResponseFactoryInterface;
  10. use Psr\Http\Message\ResponseInterface;
  11. use Psr\Http\Message\ServerRequestInterface;
  12. use Symfony\Component\EventDispatcher\EventDispatcherInterface;
  13. use Trikoder\Bundle\OAuth2Bundle\Converter\UserConverterInterface;
  14. use Trikoder\Bundle\OAuth2Bundle\Event\AuthorizationRequestResolveEvent;
  15. use Trikoder\Bundle\OAuth2Bundle\Event\AuthorizationRequestResolveEventFactory;
  16. use Trikoder\Bundle\OAuth2Bundle\Manager\ClientManagerInterface;
  17. use Trikoder\Bundle\OAuth2Bundle\OAuth2Events;
  19. final class AuthorizationController
  20. {
  21.     /**
  22.      * @var AuthorizationServer
  23.      */
  24.     private $server;
  26.     /**
  27.      * @var EventDispatcherInterface
  28.      */
  29.     private $eventDispatcher;
  31.     /**
  32.      * @var AuthorizationRequestResolveEventFactory
  33.      */
  34.     private $eventFactory;
  36.     /**
  37.      * @var UserConverterInterface
  38.      */
  39.     private $userConverter;
  41.     /**
  42.      * @var ClientManagerInterface
  43.      */
  44.     private $clientManager;
  46.     public function __construct(
  47.         AuthorizationServer $server,
  48.         EventDispatcherInterface $eventDispatcher,
  49.         AuthorizationRequestResolveEventFactory $eventFactory,
  50.         UserConverterInterface $userConverter,
  51.         ClientManagerInterface $clientManager
  52.     ) {
  53.         $this->server $server;
  54.         $this->eventDispatcher $eventDispatcher;
  55.         $this->eventFactory $eventFactory;
  56.         $this->userConverter $userConverter;
  57.         $this->clientManager $clientManager;
  58.     }
  60.     public function indexAction(ServerRequestInterface $serverRequestResponseFactoryInterface $responseFactory): ResponseInterface
  61.     {
  62.         $serverResponse $responseFactory->createResponse();
  64.         try {
  65.             $authRequest $this->server->validateAuthorizationRequest($serverRequest);
  67.             if ('plain' === $authRequest->getCodeChallengeMethod()) {
  68.                 $client $this->clientManager->find($authRequest->getClient()->getIdentifier());
  69.                 if (!$client->isPlainTextPkceAllowed()) {
  70.                     return OAuthServerException::invalidRequest(
  71.                         'code_challenge_method',
  72.                         'Plain code challenge method is not allowed for this client'
  73.                     )->generateHttpResponse($serverResponse);
  74.                 }
  75.             }
  77.             /** @var AuthorizationRequestResolveEvent $event */
  78.             $event $this->eventDispatcher->dispatch(
  79.                 $this->eventFactory->fromAuthorizationRequest($authRequest),
  80.                 OAuth2Events::AUTHORIZATION_REQUEST_RESOLVE
  81.             );
  83.             $authRequest->setUser($this->userConverter->toLeague($event->getUser()));
  85.             if ($event->hasResponse()) {
  86.                 return $event->getResponse();
  87.             }
  89.             $authRequest->setAuthorizationApproved($event->getAuthorizationResolution());
  91.             return $this->server->completeAuthorizationRequest($authRequest$serverResponse);
  92.         } catch (OAuthServerException $e) {
  93.             return $e->generateHttpResponse($serverResponse);
  94.         }
  95.     }
  96. }