NotificationsYou must be signed in to change notification settings
Fork9.6k
Star30.4k

Commitd981a14

committed

[AccessToken] allow user to set a default token lifetime via credentials url

1 parent6da39e5 commitd981a14Copy full SHA for d981a14

File tree

11 files changed

+50

-11

lines changed

src/Symfony/Component/AccessToken
- AccessToken.php
- Bridge/OAuth
- Credentials
  - AbstractCredentials.php
  - BasicAuthCredentials.php
- CredentialsInterface.php
- Tests/Unit/Bridge/OAuth
  - OAuthFactoryTest.php

11 files changed

+50

-11

lines changed

`‎src/Symfony/Component/AccessToken/AccessToken.php`

Lines changed: 11 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -21,16 +21,25 @@ class AccessToken implements AccessTokenInterface`
`21`	`21`	`*/`
`22`	`22`	`publicconstIN_MEMORY ='in_memory';`
`23`	`23`
	`24`	`+/**`
	`25`	`+ * Default lifetime in use when the remote service does not expose the`
	`26`	`+ * token lifetime.`
	`27`	`+ *`
	`28`	`+ * @see CredentialsInterface::getDefaultLifetime() for overriding this value.`
	`29`	`+ */`
	`30`	`+publicconstDEFAULT_LIFETIME =600;`
	`31`	`+`
`24`	`32`	`protected ?\DateTimeImmutable$expiresAt;`
`25`	`33`	`protected ?bool$hasExpired =null;`
`26`	`34`
`27`	`35`	`/**`
`28`		`- * @param string $id Identifier of credentials used for generating it`
	`36`	`+ * @param string $id Identifier of credentials used for generating it`
	`37`	`+ * @param int $expiresIn Access token lifetime in seconds.`
`29`	`38`	`*/`
`30`	`39`	`publicfunction__construct(`
`31`	`40`	`protectedreadonlystring$value,`
`32`	`41`	`protectedreadonlystring$type ='Bearer',`
`33`		`-protectedreadonlyint$expiresIn =600,`
	`42`	`+protectedreadonlyint$expiresIn =self::DEFAULT_LIFETIME,`
`34`	`43`	`protectedreadonly\DateTimeImmutable$issuedAt =new \DateTimeImmutable(),`
`35`	`44`	`protectedreadonlystring$id =self::IN_MEMORY,`
`36`	`45`	`) {`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/AbstractOAuthCredentials.php`

Lines changed: 2 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -29,7 +29,9 @@ abstract class AbstractOAuthCredentials extends AbstractCredentials`
`29`	`29`	`publicfunction__construct(`
`30`	`30`	`#[\SensitiveParameter]protectedreadonly ?string$tenant =null,`
`31`	`31`	`protectedreadonly ?string$endpoint =null,`
	`32`	`+ ?int$defaultLifetime =null,`
`32`	`33`	`) {`
	`34`	`+parent::__construct($defaultLifetime);`
`33`	`35`	`}`
`34`	`36`
`35`	`37`	`/**`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/ClientCredentials.php`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -35,8 +35,9 @@ public function __construct(`
`35`	`35`	`#[\SensitiveParameter] ?string$tenant =null,`
`36`	`36`	`string\|array\|null$scope =null,`
`37`	`37`	`?string$endpoint =null,`
	`38`	`+ ?int$defaultLifetime =null,`
`38`	`39`	`) {`
`39`		`-parent::__construct($tenant,$endpoint);`
	`40`	`+parent::__construct($tenant,$endpoint,$defaultLifetime);`
`40`	`41`
`41`	`42`	`$this->scope =\is_string($scope) ?array_filter(explode('',$scope)) :$scope;`
`42`	`43`	`}`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/ClientCredentialsProvider.php`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -139,7 +139,7 @@ protected function parseResponse(ClientCredentials $credentials, string $body):`
`139`	`139`	`returnnewAccessToken(`
`140`	`140`	`value:$data['access_token'],`
`141`	`141`	`type:$data['token_type'] ??'Bearer',`
`142`		`- expiresIn: (int) ($data['expires_in'] ??600),`
	`142`	`+ expiresIn: (int) ($data['expires_in'] ??$credentials->getDefaultLifetime()),`
`143`	`143`	`id:$credentials->getId(),`
`144`	`144`	`);`
`145`	`145`	`}`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/OAuthFactory.php`

Lines changed: 4 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -40,7 +40,8 @@ public function createCredentials(Dsn $dsn): CredentialsInterface`
`40`	`40`	`clientSecret:$clientSecret,`
`41`	`41`	`tenant:$dsn->getOption('tenant'),`
`42`	`42`	`scope:$dsn->getOption('scope'),`
`43`		`- endpoint:$dsn->toEndpointUrl(['grant_type','client_id','client_secret','tenant','scope']),`
	`43`	`+ endpoint:$dsn->toEndpointUrl(['grant_type','client_id','client_secret','tenant','scope','default_lifetime']),`
	`44`	`+ defaultLifetime: (int)$dsn->getOption('default_lifetime'),`
`44`	`45`	`);`
`45`	`46`	`}`
`46`	`47`
`@@ -61,7 +62,8 @@ public function createCredentials(Dsn $dsn): CredentialsInterface`
`61`	`62`	`clientSecret:$clientSecret,`
`62`	`63`	`tenant:$dsn->getOption('tenant'),`
`63`	`64`	`scope:$dsn->getOption('scope'),`
`64`		`- endpoint:$dsn->toEndpointUrl(['grant_type','refresh_token','client_id','client_secret','tenant','scope']),`
	`65`	`+ endpoint:$dsn->toEndpointUrl(['grant_type','refresh_token','client_id','client_secret','tenant','scope','default_lifetime']),`
	`66`	`+ defaultLifetime: (int)$dsn->getOption('default_lifetime'),`
`65`	`67`	`);`
`66`	`68`	`}`
`67`	`69`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/RefreshTokenCredentials.php`

Lines changed: 2 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -37,8 +37,9 @@ public function __construct(`
`37`	`37`	`#[\SensitiveParameter] ?string$tenant =null,`
`38`	`38`	`string\|array\|null$scope =null,`
`39`	`39`	`?string$endpoint =null,`
	`40`	`+ ?int$defaultLifetime =null,`
`40`	`41`	`) {`
`41`		`-parent::__construct($tenant,$endpoint);`
	`42`	`+parent::__construct($tenant,$endpoint,$defaultLifetime);`
`42`	`43`
`43`	`44`	`$this->scope =\is_string($scope) ?array_filter(explode('',$scope)) :$scope;`
`44`	`45`	`}`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/RefreshTokenProvider.php`

Lines changed: 1 addition & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -139,7 +139,7 @@ protected function parseResponse(RefreshTokenCredentials $credentials, string $b`
`139`	`139`	`returnnewAccessToken(`
`140`	`140`	`value:$data['access_token'],`
`141`	`141`	`type:$data['token_type'] ??'Bearer',`
`142`		`- expiresIn: (int) ($data['expires_in'] ??600),`
	`142`	`+ expiresIn: (int) ($data['expires_in'] ??$credentials->getDefaultLifetime()),`
`143`	`143`	`id:$credentials->getId(),`
`144`	`144`	`);`
`145`	`145`	`}`

`‎src/Symfony/Component/AccessToken/Credentials/AbstractCredentials.php`

Lines changed: 11 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -11,6 +11,7 @@`
`11`	`11`
`12`	`12`	`namespaceSymfony\Component\AccessToken\Credentials;`
`13`	`13`
	`14`	`+useSymfony\Component\AccessToken\AccessToken;`
`14`	`15`	`useSymfony\Component\AccessToken\CredentialsInterface;`
`15`	`16`
`16`	`17`	`/**`
`@@ -25,8 +26,18 @@ abstract class AbstractCredentials implements CredentialsInterface`
`25`	`26`	`*/`
`26`	`27`	`protectedabstractfunctioncomputeId():string;`
`27`	`28`
	`29`	`+publicfunction__construct(`
	`30`	`+private ?int$defaultLifetime =null`
	`31`	`+ ) {`
	`32`	`+ }`
	`33`	`+`
`28`	`34`	`publicfunctiongetId():string`
`29`	`35`	`{`
`30`	`36`	`return$this->id ??=$this->computeId();`
`31`	`37`	`}`
	`38`	`+`
	`39`	`+publicfunctiongetDefaultLifetime():int`
	`40`	`+ {`
	`41`	`+return$this->defaultLifetime ?? AccessToken::DEFAULT_LIFETIME;`
	`42`	`+ }`
`32`	`43`	`}`

`‎src/Symfony/Component/AccessToken/Credentials/BasicAuthCredentials.php`

Lines changed: 4 additions & 1 deletion

Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,10 @@ class BasicAuthCredentials extends AbstractCredentials`
`21`	`21`	`publicfunction__construct(`
`22`	`22`	`privatereadonlystring$username,`
`23`	`23`	`privatereadonly ?string$password =null,`
`24`		`- ) {}`
	`24`	`+ ?int$defaultLifetime =null,`
	`25`	`+ ) {`
	`26`	`+parent::__construct($defaultLifetime);`
	`27`	`+ }`
`25`	`28`
`26`	`29`	`publicfunctiongetUsername():string`
`27`	`30`	`{`

`‎src/Symfony/Component/AccessToken/CredentialsInterface.php`

Lines changed: 8 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -29,4 +29,12 @@ interface CredentialsInterface`
`29`	`29`	`* order to avoid cache pollution.`
`30`	`30`	`*/`
`31`	`31`	`publicfunctiongetId():string;`
	`32`	`+`
	`33`	`+/**`
	`34`	`+ * Get default lifetime for this credentials.`
	`35`	`+ *`
	`36`	`+ * When the remote service does not give any information about token`
	`37`	`+ * lifetime, the value here will be used.`
	`38`	`+ */`
	`39`	`+publicfunctiongetDefaultLifetime():int;`
`32`	`40`	`}`

`‎src/Symfony/Component/AccessToken/Tests/Unit/Bridge/OAuth/OAuthFactoryTest.php`

Lines changed: 4 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -57,7 +57,7 @@ public function testClientCredentials(): void`
`57`	`57`	`{`
`58`	`58`	`$factory =newOAuthFactory();`
`59`	`59`
`60`		`-$uri ='oauth://example.tld/oauth?grant_type=client_credentials&client_id=fooId&client_secret=fooSecret&tenant=fooTenant&scope=fooScope%20barScope';`
	`60`	`+$uri ='oauth://example.tld/oauth?grant_type=client_credentials&client_id=fooId&client_secret=fooSecret&tenant=fooTenant&scope=fooScope%20barScope&default_lifetime=12';`
`61`	`61`	`$credentials =$factory->createCredentials(Dsn::fromString($uri));`
`62`	`62`	`\assert($credentialsinstanceof ClientCredentials);`
`63`	`63`
`@@ -67,6 +67,7 @@ public function testClientCredentials(): void`
`67`	`67`	`self::assertSame('fooSecret',$credentials->getClientSecret());`
`68`	`68`	`self::assertSame('fooTenant',$credentials->getTenant());`
`69`	`69`	`self::assertSame(['fooScope','barScope'],$credentials->getScope());`
	`70`	`+self::assertSame(12,$credentials->getDefaultLifetime());`
`70`	`71`	`}`
`71`	`72`
`72`	`73`	`publicfunctiontestClientCredentialsUserPassFallbackOnBasicAuth():void`
`@@ -105,7 +106,7 @@ public function testRefreshTokenCredentials(): void`
`105`	`106`	`{`
`106`	`107`	`$factory =newOAuthFactory();`
`107`	`108`
`108`		`-$uri ='oauth://example.tld/oauth?grant_type=refresh_token&refresh_token=the_token&client_id=fooId&client_secret=fooSecret&tenant=fooTenant&scope=fooScope%20barScope';`
	`109`	`+$uri ='oauth://example.tld/oauth?grant_type=refresh_token&refresh_token=the_token&client_id=fooId&client_secret=fooSecret&tenant=fooTenant&scope=fooScope%20barScope&default_lifetime=12';`
`109`	`110`	`$credentials =$factory->createCredentials(Dsn::fromString($uri));`
`110`	`111`	`\assert($credentialsinstanceof RefreshTokenCredentials);`
`111`	`112`
`@@ -115,6 +116,7 @@ public function testRefreshTokenCredentials(): void`
`115`	`116`	`self::assertSame('fooId',$credentials->getClientId());`
`116`	`117`	`self::assertSame('fooSecret',$credentials->getClientSecret());`
`117`	`118`	`self::assertSame('fooTenant',$credentials->getTenant());`
	`119`	`+self::assertSame(12,$credentials->getDefaultLifetime());`
`118`	`120`	`}`
`119`	`121`
`120`	`122`	`publicfunctiontestRefreshTokenCredentialsBareMinimum():void`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Commitd981a14

File tree

11 files changed

11 files changed

`‎src/Symfony/Component/AccessToken/AccessToken.php`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/AbstractOAuthCredentials.php`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/ClientCredentials.php`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/ClientCredentialsProvider.php`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/OAuthFactory.php`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/RefreshTokenCredentials.php`

`‎src/Symfony/Component/AccessToken/Bridge/OAuth/RefreshTokenProvider.php`

`‎src/Symfony/Component/AccessToken/Credentials/AbstractCredentials.php`

`‎src/Symfony/Component/AccessToken/Credentials/BasicAuthCredentials.php`

`‎src/Symfony/Component/AccessToken/CredentialsInterface.php`

`‎src/Symfony/Component/AccessToken/Tests/Unit/Bridge/OAuth/OAuthFactoryTest.php`

0 commit comments