55use OAuth2 \Storage \ClientCredentialsInterface ;
66use OAuth2 \RequestInterface ;
77use OAuth2 \ResponseInterface ;
8+ use LogicException ;
89
910/**
1011 * Validate a client via Http Basic authentication
@@ -19,14 +20,16 @@ class HttpBasic implements ClientAssertionTypeInterface
1920 protected $ config
2021
2122 /**
22- * @param OAuth2\Storage\ClientCredentialsInterface $clientStorage REQUIRED Storage class for retrieving client credentials information
23- * @param array $config OPTIONAL Configuration options for the server
24- * <code>
25- * $config = array(
26- * 'allow_credentials_in_request_body' => true, // whether to look for credentials in the POST body in addition to the Authorize HTTP Header
27- * 'allow_public_clients' => true // if true, "public clients" (clients without a secret) may be authenticated
28- * );
29- * </code>
23+ * Config array $config should look as follows:
24+ * @code
25+ * $config = array(
26+ * 'allow_credentials_in_request_body' => true, // whether to look for credentials in the POST body in addition to the Authorize HTTP Header
27+ * 'allow_public_clients' => true // if true, "public clients" (clients without a secret) may be authenticated
28+ * );
29+ * @endcode
30+ *
31+ * @param ClientCredentialsInterface $storage Storage
32+ * @param array $config Configuration options for the server
3033 */
3134 public function __construct (ClientCredentialsInterface $ storagearray $ configarray ())
3235 {
@@ -37,14 +40,22 @@ public function __construct(ClientCredentialsInterface $storage, array $config =
3740 ), $ config
3841 }
3942
43+ /**
44+ * Validate the OAuth request
45+ *
46+ * @param RequestInterface $request
47+ * @param ResponseInterface $response
48+ * @return bool|mixed
49+ * @throws LogicException
50+ */
4051 public function validateRequest (RequestInterface $ requestResponseInterface $ response
4152 {
4253 if (!$ clientData$ this getClientCredentials ($ request$ response
4354 return false ;
4455 }
4556
4657 if (!isset ($ clientData'client_id ' ])) {
47- throw new \ LogicException ('the clientData array must have "client_id" set ' );
58+ throw new LogicException ('the clientData array must have "client_id" set ' );
4859 }
4960
5061 if (!isset ($ clientData'client_secret ' ]) || $ clientData'client_secret ' ] == '' ) {
@@ -70,6 +81,11 @@ public function validateRequest(RequestInterface $request, ResponseInterface $re
7081 return true ;
7182 }
7283
84+ /**
85+ * Get the client id
86+ *
87+ * @return mixed
88+ */
7389 public function getClientId ()
7490 {
7591 return $ this clientData ['client_id ' ];
@@ -82,13 +98,14 @@ public function getClientId()
8298 * According to the spec (draft 20), the client_id can be provided in
8399 * the Basic Authorization header (recommended) or via GET/POST.
84100 *
85- * @return
86- * A list containing the client identifier and password, for example
101+ * @param RequestInterface $request
102+ * @param ResponseInterface $response
103+ * @return array|null A list containing the client identifier and password, for example:
87104 * @code
88- * return array(
89- * "client_id" => CLIENT_ID, // REQUIRED the client id
90- * "client_secret" => CLIENT_SECRET, // OPTIONAL the client secret (may be omitted for public clients)
91- * );
105+ * return array(
106+ * "client_id" => CLIENT_ID, // REQUIRED the client id
107+ * "client_secret" => CLIENT_SECRET, // OPTIONAL the client secret (may be omitted for public clients)
108+ * );
92109 * @endcode
93110 *
94111 * @see http://tools.ietf.org/html/rfc6749#section-2.3.1
@@ -108,7 +125,6 @@ public function getClientCredentials(RequestInterface $request, ResponseInterfac
108125 * client_secret can be null if the client's password is an empty string
109126 * @see http://tools.ietf.org/html/rfc6749#section-2.3.1
110127 */
111-
112128 return array ('client_id ' => $ requestrequest ('client_id ' ), 'client_secret ' => $ requestrequest ('client_secret ' ));
113129 }
114130 }
0 commit comments