/** * Check access token * * @param AccessTokenInterface $accessToken * @return void * @throws OAuthAccessTokenNotFoundException * @throws OAuthAccessTokenExpiredException */ protected function checkAccessToken($accessToken) { if (empty($accessToken)) { throw new OAuthAccessTokenNotFoundException('The access token could not be found.', 401, null, $this->realmName); } if ($accessToken->isExpired()) { throw new OAuthAccessTokenExpiredException('The access token provided has expired.', 401, null, $this->realmName); } if ($accessToken->isRevoked()) { throw new OAuthAccessTokenExpiredException('The access token provided was revoked.', 401, null, $this->realmName); } }
/** @dataProvider provideStorage */ public function testSetAccessToken(AccessTokenInterface $storage) { if ($storage instanceof NullStorage) { $this->markTestSkipped('Skipped Storage: ' . $storage->getMessage()); return; } // assert token we are about to add does not exist $token = $storage->getAccessToken('newtoken'); $this->assertFalse($token); // add new token $expires = time() + 20; $success = $storage->setAccessToken('newtoken', 'client ID', 'SOMEUSERID', $expires); $this->assertTrue($success); $token = $storage->getAccessToken('newtoken'); $this->assertNotNull($token); $this->assertArrayHasKey('access_token', $token); $this->assertArrayHasKey('client_id', $token); $this->assertArrayHasKey('user_id', $token); $this->assertArrayHasKey('expires', $token); $this->assertEquals($token['access_token'], 'newtoken'); $this->assertEquals($token['client_id'], 'client ID'); $this->assertEquals($token['user_id'], 'SOMEUSERID'); $this->assertEquals($token['expires'], $expires); // change existing token $expires = time() + 42; $success = $storage->setAccessToken('newtoken', 'client ID2', 'SOMEOTHERID', $expires); $this->assertTrue($success); $token = $storage->getAccessToken('newtoken'); $this->assertNotNull($token); $this->assertArrayHasKey('access_token', $token); $this->assertArrayHasKey('client_id', $token); $this->assertArrayHasKey('user_id', $token); $this->assertArrayHasKey('expires', $token); $this->assertEquals($token['access_token'], 'newtoken'); $this->assertEquals($token['client_id'], 'client ID2'); $this->assertEquals($token['user_id'], 'SOMEOTHERID'); $this->assertEquals($token['expires'], $expires); // add token with scope having an empty string value $expires = time() + 42; $success = $storage->setAccessToken('newtoken', 'client ID', 'SOMEOTHERID', $expires, ''); $this->assertTrue($success); }
/** @dataProvider provideStorage */ public function testExpireAccessToken(AccessTokenInterface $storage) { if ($storage instanceof NullStorage) { $this->markTestSkipped('Skipped Storage: ' . $storage->getMessage()); return; } // create a valid code $expires = time() + 20; $success = $storage->setAuthorizationCode('code-to-expire', 'client ID', 'SOMEUSERID', 'http://example.com', time() + 20); $this->assertTrue($success); // verify the new code exists $code = $storage->getAuthorizationCode('code-to-expire'); $this->assertNotNull($code); $this->assertArrayHasKey('authorization_code', $code); $this->assertEquals($code['authorization_code'], 'code-to-expire'); // now expire the code and ensure it's no longer available $storage->expireAuthorizationCode('code-to-expire'); $code = $storage->getAuthorizationCode('code-to-expire'); $this->assertFalse($code); }