Главная Обзор Помощь
Вход
michel
/
michel-auth
зеркало из https://github.com/michelphp/michel-auth
2
0
Ответвить 0
Файлы Задачи 0 Вики
Дерево: 1513d6b238
Ветки Метки
michel-auth
/
src
/
Handler
/
Guard
/
TokenGuardHandler.php

TokenGuardHandler.php 2.3 KB
История Исходник

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. <?php
    2. 

  2. 

  3. namespace Michel\Auth\Handler\Guard;
    4. 

  4. 

  5. use Michel\Auth\Exception\AuthenticationException;
    6. 

  6. use Michel\Auth\Exception\InvalidCredentialsException;
    7. 

  7. use Michel\Auth\Exception\UserNotFoundException;
    8. 

  8. use Psr\Http\Message\ResponseFactoryInterface;
    9. 

  9. use Psr\Http\Message\ResponseInterface;
    10. 

  10. use Psr\Http\Message\ServerRequestInterface;
    11. 

  11. 

  12. class TokenGuardHandler implements GuardHandlerInterface
    13. 

  13. {
    14. 

  14.     private string $apiKey;
    15. 

  15.     private string $headerName;
    16. 

  16.     /**
    17. 

  17.      * @var callable|null
    18. 

  18.      */
    19. 

  19.     private $onFailure;
    20. 

  20. 

  21.     public function __construct(
    22. 

  22.         string $apiKey,
    23. 

  23.         string                $headerName,
    24. 

  24.         callable              $onFailure = null
    25. 

  25.     )
    26. 

  26.     {
    27. 

  27.         $this->apiKey = $apiKey;
    28. 

  28.         $this->headerName = $headerName;
    29. 

  29.         $this->onFailure = $onFailure;
    30. 

  30.     }
    31. 

  31. 

  32. 

  33.     /**
    34. 

  34.      * @throws AuthenticationException
    35. 

  35.      * @throws UserNotFoundException
    36. 

  36.      * @throws InvalidCredentialsException
    37. 

  37.      */
    38. 

  38.     public function check(ServerRequestInterface $request): void
    39. 

  39.     {
    40. 

  40.         if (empty($this->apiKey)) {
    41. 

  41.             throw new InvalidCredentialsException("Invalid or expired token.");
    42. 

  42.         }
    43. 

  43. 

  44.         $token = $request->getHeaderLine($this->headerName);
    45. 

  45.         if (empty($token)) {
    46. 

  46.             throw new AuthenticationException("Authentication token is required.");
    47. 

  47.         }
    48. 

  48. 

  49.         if (!hash_equals($this->apiKey, $token)) {
    50. 

  50.             throw new InvalidCredentialsException("Invalid or expired token.");
    51. 

  51.         }
    52. 

  52.     }
    53. 

  53. 

  54.     public function onFailure(ServerRequestInterface $request, ResponseFactoryInterface $responseFactory, ?AuthenticationException $exception = null): ResponseInterface
    55. 

  55.     {
    56. 

  56.         if (!is_callable($this->onFailure)) {
    57. 

  57.             $status = 401;
    58. 

  58.             $message = $exception ? $exception->getMessage() : "Invalid API key.";
    59. 

  59.             $payload = [
    60. 

  60.                 'status' => $status,
    61. 

  61.                 'title'  => 'Authentication Failed',
    62. 

  62.                 'detail' => $message,
    63. 

  63.             ];
    64. 

  64. 

  65.             $response = $responseFactory->createResponse($status);
    66. 

  66.             $response->getBody()->write(json_encode($payload, JSON_UNESCAPED_SLASHES ));
    67. 

  67.             return $response
    68. 

  68.                 ->withHeader('Content-Type', 'application/json')
    69. 

  69.                 ->withHeader('Cache-Control', 'no-store');
    70. 

  70. 

  71.         }
    72. 

  72.         return ($this->onFailure)($request, $responseFactory, $exception);
    73. 

  73.     }
    74. 

  74. }
    75.