streams/Code/Module/Token.php

<?php

namespace Code\Module;

use App;
use DBA;
use Code\Web\Controller;
use Code\Identity\OAuth2Server;
use Code\Identity\OAuth2Storage;
use OAuth2\Request;
use OAuth2\Response;
use OAuth2\GrantType;

class Token extends Controller
{

    public function init()
    {

        logger('args: ' . print_r($_REQUEST, true));
        $authHeader = (new HTTPHeaders())->getAuthHeader();

        if ($authHeader && str_starts_with($authHeader,'Basic')) {
            $userpass = base64_decode(substr($authHeader, 6));
            if (strlen($userpass)) {
                list($name, $password) = explode(':', $userpass);
                $_SERVER['PHP_AUTH_USER'] = $name;
                $_SERVER['PHP_AUTH_PW'] = $password;
            }
        }

        $storage = new OAuth2Storage(DBA::$dba->db);
        $server = new OAuth2Server($storage);
        $request = Request::createFromGlobals();
        $response = $server->handleTokenRequest($request);
        $response->send();
        killme();
    }
}
oauth2/oidc testing (please do not port - this requires several extra DB tables to work) 2017-05-04 05:37:06 +00:00			`<?php`

it's done 2022-02-16 04:08:28 +00:00			`namespace Code\Module;`
oauth2/oidc testing (please do not port - this requires several extra DB tables to work) 2017-05-04 05:37:06 +00:00
some oauth work necessary for AP C2S. This appears to be heading down the path of favouritism towards oauth2 and deprecating openid connect. In theory we should be able to support both, but the underlying library isn't quite as flexible as hoped and appears to favour one or the other without involving multiple installations. 2021-04-10 07:51:12 +00:00			`use App;`
			`use DBA;`
it's done 2022-02-16 04:08:28 +00:00			`use Code\Web\Controller;`
			`use Code\Identity\OAuth2Server;`
			`use Code\Identity\OAuth2Storage;`
some oauth work necessary for AP C2S. This appears to be heading down the path of favouritism towards oauth2 and deprecating openid connect. In theory we should be able to support both, but the underlying library isn't quite as flexible as hoped and appears to favour one or the other without involving multiple installations. 2021-04-10 07:51:12 +00:00			`use OAuth2\Request;`
			`use OAuth2\Response;`
OAuth2 updates 2022-12-19 05:12:28 +00:00			`use OAuth2\GrantType;`
Refactor OAuth2Server a bit. 2018-02-17 00:49:01 +00:00
psr12 updates 2021-12-02 23:02:31 +00:00			`class Token extends Controller`
			`{`

			`public function init()`
			`{`

			`logger('args: ' . print_r($_REQUEST, true));`
new auth work 2023-07-29 01:07:38 +00:00			`$authHeader = (new HTTPHeaders())->getAuthHeader();`
psr12 updates 2021-12-02 23:02:31 +00:00
new auth work 2023-07-29 01:07:38 +00:00			`if ($authHeader && str_starts_with($authHeader,'Basic')) {`
			`$userpass = base64_decode(substr($authHeader, 6));`
psr12 updates 2021-12-02 23:02:31 +00:00			`if (strlen($userpass)) {`
			`list($name, $password) = explode(':', $userpass);`
			`$_SERVER['PHP_AUTH_USER'] = $name;`
			`$_SERVER['PHP_AUTH_PW'] = $password;`
			`}`
			`}`

			`$storage = new OAuth2Storage(DBA::$dba->db);`
OAuth2 updates 2022-12-19 05:12:28 +00:00			`$server = new OAuth2Server($storage);`
psr12 updates 2021-12-02 23:02:31 +00:00			`$request = Request::createFromGlobals();`
OAuth2 updates 2022-12-19 05:12:28 +00:00			`$response = $server->handleTokenRequest($request);`
psr12 updates 2021-12-02 23:02:31 +00:00			`$response->send();`
			`killme();`
			`}`
Refactor OAuth2Server a bit. 2018-02-17 00:49:01 +00:00			`}`