diff --git a/CHANGELOG.md b/CHANGELOG.md index a59d40a..aceb53e 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,24 @@ +## 0.2.0 - 2017-03-15 + +Updating package to support ZE2 and other DotKernel dependencies updates + +### Changed +* Updated factories to typehint against PSR11 container +* UnauthorizedHandler changed to a valid ZE2 error handler + +### Added +* Middleware now implement PSR15 MiddlewareInterface + +### Deprecated +* Nothing + +### Removed +* Nothing + +### Fixed +* Nothing + + ## 0.1.1 - 2017-03-10 ### Added diff --git a/authentication-web.global.php.dist b/authentication-web.global.php.dist index fef88d0..39d3bd7 100644 --- a/authentication-web.global.php.dist +++ b/authentication-web.global.php.dist @@ -9,17 +9,33 @@ return [ 'dot_authentication' => [ //this package's specific configuration template 'web' => [ - //change next two only if you changed the default login/logout routes - 'login_route' => ['route_name' => 'login', 'route_params' => [], 'query_params' => []], - 'logout_route' => ['route_name' => 'logout', 'route_params' => []], + 'login_route' => [ + 'route_name' => 'login', + 'route_params' => [], + 'query_params' => [], + 'fragment_id' => null, + 'options' => [] + ], + + 'logout_route' => [ + 'route_name' => 'logout', + 'route_params' => [], + //... + ], //template name to use for the login form 'login_template' => 'app::login', //where to redirect after login success - 'after_login_route' => ['route_name' => 'my-account', 'route_params' => []], + 'after_login_route' => [ + 'route_name' => 'home', + 'route_params' => [] + ], //where to redirect after logging out - 'after_logout_route' => ['route_name' => 'login', 'route_params' => []], + 'after_logout_route' => [ + 'route_name' => 'login', + 'route_params' => [] + ], //enable the wanted url feature, to login to the previously requested uri after login 'enable_wanted_url' => true, diff --git a/composer.json b/composer.json index 3916a6b..2831d15 100644 --- a/composer.json +++ b/composer.json @@ -12,12 +12,13 @@ "require": { "php": "^7.1", "psr/http-message": "^1.0", - "container-interop/container-interop": "^1.1", + "http-interop/http-middleware": "^0.4.1", + "zendframework/zend-servicemanager": "^3.3.0", "dotkernel/dot-authentication": "^0.1", - "dotkernel/dot-event": "^0.1", - "dotkernel/dot-helpers": "^0.1", - "dotkernel/dot-flashmessenger": "^0.1" + "dotkernel/dot-event": "^0.2", + "dotkernel/dot-helpers": "^0.2", + "dotkernel/dot-flashmessenger": "^0.2" }, "require-dev": { "phpunit/phpunit": "^4.8", @@ -25,7 +26,8 @@ "zendframework/zend-stdlib": "^3.1", "zendframework/zend-diactoros": "^1.3", - "zendframework/zend-expressive-template": "^1.0" + "zendframework/zend-expressive-template": "^1.0", + "zendframework/zend-expressive": "^2.0" }, "autoload": { "psr-4": { @@ -39,7 +41,8 @@ }, "extra": { "branch-alias": { - "dev-master": "0.2-dev" + "dev-master": "0.2-dev", + "dev-develop": "0.3-dev" } } } diff --git a/src/Action/LoginAction.php b/src/Action/LoginAction.php index fde197b..db0f8bb 100644 --- a/src/Action/LoginAction.php +++ b/src/Action/LoginAction.php @@ -20,7 +20,9 @@ use Dot\Authentication\Web\Options\WebAuthenticationOptions; use Dot\Authentication\Web\Utils; use Dot\FlashMessenger\FlashMessengerInterface; -use Dot\Helpers\Route\RouteOptionHelper; +use Dot\Helpers\Route\RouteHelper; +use Interop\Http\ServerMiddleware\DelegateInterface; +use Interop\Http\ServerMiddleware\MiddlewareInterface; use Psr\Http\Message\ResponseInterface; use Psr\Http\Message\ServerRequestInterface; use Zend\Diactoros\Response\HtmlResponse; @@ -32,7 +34,7 @@ * Class LoginAction * @package Dot\Authentication\Web\Action */ -class LoginAction implements AuthenticationEventListenerInterface +class LoginAction implements MiddlewareInterface, AuthenticationEventListenerInterface { use DispatchAuthenticationEventTrait; use AuthenticationEventListenerTrait; @@ -40,7 +42,7 @@ class LoginAction implements AuthenticationEventListenerInterface /** @var AuthenticationInterface */ protected $authentication; - /** @var RouteOptionHelper */ + /** @var RouteHelper */ protected $routeHelper; /** @var WebAuthenticationOptions */ @@ -62,14 +64,14 @@ class LoginAction implements AuthenticationEventListenerInterface * LoginAction constructor. * @param AuthenticationInterface $authentication * @param TemplateRendererInterface $template - * @param RouteOptionHelper $routeHelper + * @param RouteHelper $routeHelper * @param WebAuthenticationOptions $options * @param FlashMessengerInterface $flashMessenger */ public function __construct( AuthenticationInterface $authentication, TemplateRendererInterface $template, - RouteOptionHelper $routeHelper, + RouteHelper $routeHelper, WebAuthenticationOptions $options, FlashMessengerInterface $flashMessenger ) { @@ -82,17 +84,13 @@ public function __construct( /** * @param ServerRequestInterface $request - * @param ResponseInterface $response - * @param callable|null $next + * @param DelegateInterface $delegate * @return ResponseInterface */ - public function __invoke( - ServerRequestInterface $request, - ResponseInterface $response, - callable $next = null - ): ResponseInterface { + public function process(ServerRequestInterface $request, DelegateInterface $delegate): ResponseInterface + { if ($this->authentication->hasIdentity()) { - return new RedirectResponse($this->routeHelper->getUri($this->options->getAfterLoginRoute())); + return new RedirectResponse($this->routeHelper->generateUri($this->options->getAfterLoginRoute())); } $this->request = $request; @@ -142,7 +140,7 @@ public function __invoke( if (empty($error)) { $this->dispatchEvent(AuthenticationEvent::EVENT_AUTHENTICATION_SUCCESS, $params); - $uri = $this->routeHelper->getUri($this->options->getAfterLoginRoute()); + $uri = $this->routeHelper->generateUri($this->options->getAfterLoginRoute()); if ($this->options->isEnableWantedUrl()) { $params = $request->getQueryParams(); $wantedUrlName = $this->options->getWantedUrlName(); diff --git a/src/Action/LogoutAction.php b/src/Action/LogoutAction.php index 29fa2b0..08c7f8a 100644 --- a/src/Action/LogoutAction.php +++ b/src/Action/LogoutAction.php @@ -15,7 +15,9 @@ use Dot\Authentication\Web\Event\AuthenticationEventListenerTrait; use Dot\Authentication\Web\Event\DispatchAuthenticationEventTrait; use Dot\Authentication\Web\Options\WebAuthenticationOptions; -use Dot\Helpers\Route\RouteOptionHelper; +use Dot\Helpers\Route\RouteHelper; +use Interop\Http\ServerMiddleware\DelegateInterface; +use Interop\Http\ServerMiddleware\MiddlewareInterface; use Psr\Http\Message\ResponseInterface; use Psr\Http\Message\ServerRequestInterface; use Zend\Diactoros\Response\RedirectResponse; @@ -24,7 +26,7 @@ * Class LogoutAction * @package Dot\Authentication\Web\Action */ -class LogoutAction implements AuthenticationEventListenerInterface +class LogoutAction implements MiddlewareInterface, AuthenticationEventListenerInterface { use AuthenticationEventListenerTrait; use DispatchAuthenticationEventTrait; @@ -32,7 +34,7 @@ class LogoutAction implements AuthenticationEventListenerInterface /** @var AuthenticationInterface */ protected $authentication; - /** @var RouteOptionHelper */ + /** @var RouteHelper */ protected $routeHelper; /** @var WebAuthenticationOptions */ @@ -41,12 +43,12 @@ class LogoutAction implements AuthenticationEventListenerInterface /** * LogoutActionFactory constructor. * @param AuthenticationInterface $authentication - * @param RouteOptionHelper $routeHelper + * @param RouteHelper $routeHelper * @param WebAuthenticationOptions $options */ public function __construct( AuthenticationInterface $authentication, - RouteOptionHelper $routeHelper, + RouteHelper $routeHelper, WebAuthenticationOptions $options ) { $this->authentication = $authentication; @@ -56,17 +58,13 @@ public function __construct( /** * @param ServerRequestInterface $request - * @param ResponseInterface $response - * @param callable|null $next - * @return RedirectResponse|ResponseInterface + * @param DelegateInterface $delegate + * @return ResponseInterface */ - public function __invoke( - ServerRequestInterface $request, - ResponseInterface $response, - callable $next = null - ): ResponseInterface { + public function process(ServerRequestInterface $request, DelegateInterface $delegate): ResponseInterface + { if (!$this->authentication->hasIdentity()) { - return new RedirectResponse($this->routeHelper->getUri($this->options->getAfterLogoutRoute())); + return new RedirectResponse($this->routeHelper->generateUri($this->options->getAfterLogoutRoute())); } $event = $this->dispatchEvent(AuthenticationEvent::EVENT_BEFORE_LOGOUT, [ 'request' => $request, @@ -83,7 +81,7 @@ public function __invoke( 'authenticationService' => $this->authentication ]); - $uri = $this->routeHelper->getUri($this->options->getAfterLogoutRoute()); + $uri = $this->routeHelper->generateUri($this->options->getAfterLogoutRoute()); return new RedirectResponse($uri); } } diff --git a/src/ConfigProvider.php b/src/ConfigProvider.php index 1ab3343..8789116 100644 --- a/src/ConfigProvider.php +++ b/src/ConfigProvider.php @@ -25,43 +25,8 @@ public function __invoke(): array return [ 'dependencies' => $this->getDependenciesConfig(), - 'middleware_pipeline' => [ - 'error' => [ - 'middleware' => [ - UnauthorizedHandler::class, - ], - 'error' => true, - 'priority' => -10000, - ], - ], - - //default routes - 'routes' => [ - 'login_route' => [ - 'name' => 'login', - 'path' => '/login', - 'middleware' => LoginAction::class, - 'allowed_methods' => ['GET', 'POST'] - ], - 'logout_route' => [ - 'name' => 'logout', - 'path' => '/logout', - 'middleware' => LogoutAction::class, - 'allowed_methods' => ['GET'] - ], - ], - 'dot_authentication' => [ - 'web' => [ - 'event_listeners' => [], - - 'login_route' => ['route_name' => 'login'], - 'logout_route' => ['route_name' => 'logout'], - - 'messages_options' => [ - 'messages' => [], - ], - ] + 'web' => [] ] ]; } diff --git a/src/ErrorHandler/UnauthorizedHandler.php b/src/ErrorHandler/UnauthorizedHandler.php index cf63b1f..e5be9d1 100644 --- a/src/ErrorHandler/UnauthorizedHandler.php +++ b/src/ErrorHandler/UnauthorizedHandler.php @@ -19,11 +19,11 @@ use Dot\Authentication\Web\Options\MessagesOptions; use Dot\Authentication\Web\Options\WebAuthenticationOptions; use Dot\FlashMessenger\FlashMessengerInterface; -use Dot\Helpers\Route\RouteOptionHelper; -use Dot\Helpers\Route\UriHelperTrait; +use Dot\Helpers\Route\RouteHelper; +use Interop\Http\ServerMiddleware\DelegateInterface; +use Interop\Http\ServerMiddleware\MiddlewareInterface; use Psr\Http\Message\ResponseInterface; use Psr\Http\Message\ServerRequestInterface; -use Psr\Http\Message\UriInterface; use Zend\Diactoros\Response\RedirectResponse; use Zend\Diactoros\Uri; @@ -31,11 +31,10 @@ * Class UnauthorizedHandler * @package Dot\Authentication\Web\ErrorHandler */ -class UnauthorizedHandler implements AuthenticationEventListenerInterface +class UnauthorizedHandler implements MiddlewareInterface, AuthenticationEventListenerInterface { use AuthenticationEventListenerTrait; use DispatchAuthenticationEventTrait; - use UriHelperTrait; /** @var AuthenticationInterface */ protected $authenticationService; @@ -43,7 +42,7 @@ class UnauthorizedHandler implements AuthenticationEventListenerInterface /** @var WebAuthenticationOptions */ protected $options; - /** @var RouteOptionHelper */ + /** @var RouteHelper */ protected $routeHelper; /** @var FlashMessengerInterface */ @@ -58,13 +57,13 @@ class UnauthorizedHandler implements AuthenticationEventListenerInterface /** * UnauthorizedHandler constructor. * @param AuthenticationInterface $authenticationService - * @param RouteOptionHelper $routeHelper + * @param RouteHelper $routeHelper * @param WebAuthenticationOptions $options * @param FlashMessengerInterface $flashMessenger */ public function __construct( AuthenticationInterface $authenticationService, - RouteOptionHelper $routeHelper, + RouteHelper $routeHelper, WebAuthenticationOptions $options, FlashMessengerInterface $flashMessenger ) { @@ -74,62 +73,90 @@ public function __construct( $this->routeHelper = $routeHelper; } + /** + * @param ServerRequestInterface $request + * @param DelegateInterface $delegate + * @return ResponseInterface + * @throws \Exception + * @throws \Throwable + */ + public function process(ServerRequestInterface $request, DelegateInterface $delegate): ResponseInterface + { + try { + $response = $delegate->process($request); + + if (in_array($response->getStatusCode(), $this->statusCodes)) { + return $this->handleUnauthorizedError( + $this->options->getMessagesOptions()->getMessage(MessagesOptions::UNAUTHORIZED), + $request, + $response + ); + } + return $response; + } catch (UnauthorizedException $e) { + return $this->handleUnauthorizedError($e, $request); + } catch (\Throwable $e) { + if (in_array($e->getCode(), $this->statusCodes)) { + return $this->handleUnauthorizedError($e, $request); + } + throw $e; + } catch (\Exception $e) { + if (in_array($e->getCode(), $this->statusCodes)) { + return $this->handleUnauthorizedError($e, $request); + } + throw $e; + } + } + /** * @param $error * @param ServerRequestInterface $request - * @param ResponseInterface $response - * @param callable|null $next + * @param ResponseInterface|null $response * @return ResponseInterface */ - public function __invoke( + protected function handleUnauthorizedError( $error, ServerRequestInterface $request, - ResponseInterface $response, - callable $next = null + ResponseInterface $response = null ): ResponseInterface { - if ($error instanceof \Exception && in_array($error->getCode(), $this->statusCodes) - || in_array($response->getStatusCode(), $this->statusCodes) - ) { - $event = $this->dispatchEvent(AuthenticationEvent::EVENT_UNAUTHORIZED, [ - 'request' => $request, - 'authenticationService' => $this->authenticationService, - 'error' => $error - ]); - if ($event instanceof ResponseInterface) { - return $event; - } - - $messages = $this->getErrorMessages($error); - if (empty($messages)) { - $messages = [$this->options->getMessagesOptions()->getMessage(MessagesOptions::UNAUTHORIZED)]; - } + $event = $this->dispatchEvent(AuthenticationEvent::EVENT_UNAUTHORIZED, [ + 'request' => $request, + 'response' => $response, + 'authenticationService' => $this->authenticationService, + 'error' => $error + ]); + if ($event instanceof ResponseInterface) { + return $event; + } - //add a flash message in case the login page displays errors - if ($this->flashMessenger) { - $this->flashMessenger->addError($messages); - } + $messages = $this->getErrorMessages($error); + if (empty($messages)) { + $messages = [$this->options->getMessagesOptions()->getMessage(MessagesOptions::UNAUTHORIZED)]; + } - /** @var Uri $uri */ - $uri = $this->routeHelper->getUri($this->options->getLoginRoute()); - if ($this->areUriEqual($uri, $request->getUri())) { - throw new RuntimeException( - 'Default unauthorized listener has detected that the login route is not authorized either.' . - ' This can result in an endless redirect loop. ' . - 'Please edit your authorization schema to open login route to guests' - ); - } - if ($this->options->isEnableWantedUrl()) { - $uri = $this->appendQueryParam( - $uri, - $this->options->getWantedUrlName(), - $request->getUri()->__toString() - ); - } + //add a flash message in case the login page displays errors + if ($this->flashMessenger) { + $this->flashMessenger->addError($messages); + } - return new RedirectResponse($uri); + /** @var Uri $uri */ + $uri = $this->routeHelper->generateUri($this->options->getLoginRoute()); + if ($this->routeHelper->uriEquals($uri, $request->getUri())) { + throw new RuntimeException( + 'Default unauthorized listener has detected that the login route is not authorized either.' . + ' This can result in an endless redirect loop. ' . + 'Please edit your authorization schema to open login route to guests' + ); + } + if ($this->options->isEnableWantedUrl()) { + $uri = $this->routeHelper->appendQueryParam( + $uri, + $this->options->getWantedUrlName(), + $request->getUri()->__toString() + ); } - return $next($request, $response, $error); + return new RedirectResponse($uri); } /** @@ -146,7 +173,7 @@ protected function getErrorMessages($error): array $messages[] = $e; } } - } elseif ($error instanceof \Exception) { + } elseif ($error instanceof \Exception || $error instanceof \Throwable) { if ($this->isDebug() || $error instanceof UnauthorizedException) { $messages[] = $error->getMessage(); } @@ -185,17 +212,4 @@ public function setDebug(bool $debug) { $this->debug = $debug; } - - /** - * @param UriInterface $uri1 - * @param UriInterface $uri2 - * @return bool - */ - protected function areUriEqual(UriInterface $uri1, UriInterface $uri2): bool - { - return $uri1->getScheme() === $uri2->getScheme() - && $uri1->getHost() === $uri2->getHost() - && $uri1->getPath() === $uri2->getPath() - && $uri1->getPort() === $uri2->getPort(); - } } diff --git a/src/Factory/BaseActionFactory.php b/src/Factory/BaseActionFactory.php index d8866dc..c11286c 100644 --- a/src/Factory/BaseActionFactory.php +++ b/src/Factory/BaseActionFactory.php @@ -12,7 +12,7 @@ use Dot\Authentication\Web\Event\AuthenticationEventListenerInterface; use Dot\Authentication\Web\Exception\RuntimeException; use Dot\Authentication\Web\Options\WebAuthenticationOptions; -use Interop\Container\ContainerInterface; +use Psr\Container\ContainerInterface; use Zend\EventManager\EventManagerInterface; /** diff --git a/src/Factory/LoginActionFactory.php b/src/Factory/LoginActionFactory.php index 8e4fa76..2c9c89c 100644 --- a/src/Factory/LoginActionFactory.php +++ b/src/Factory/LoginActionFactory.php @@ -13,8 +13,8 @@ use Dot\Authentication\Web\Action\LoginAction; use Dot\Authentication\Web\Options\WebAuthenticationOptions; use Dot\FlashMessenger\FlashMessengerInterface; -use Dot\Helpers\Route\RouteOptionHelper; -use Interop\Container\ContainerInterface; +use Dot\Helpers\Route\RouteHelper; +use Psr\Container\ContainerInterface; use Zend\Expressive\Template\TemplateRendererInterface; /** @@ -37,7 +37,7 @@ public function __invoke(ContainerInterface $container, string $requestedName): $action = new $requestedName( $container->get(AuthenticationInterface::class), $container->get(TemplateRendererInterface::class), - $container->get(RouteOptionHelper::class), + $container->get(RouteHelper::class), $container->get(WebAuthenticationOptions::class), $container->get(FlashMessengerInterface::class) ); diff --git a/src/Factory/LogoutActionFactory.php b/src/Factory/LogoutActionFactory.php index 95e6c88..a923136 100644 --- a/src/Factory/LogoutActionFactory.php +++ b/src/Factory/LogoutActionFactory.php @@ -12,8 +12,8 @@ use Dot\Authentication\AuthenticationInterface; use Dot\Authentication\Web\Action\LogoutAction; use Dot\Authentication\Web\Options\WebAuthenticationOptions; -use Dot\Helpers\Route\RouteOptionHelper; -use Interop\Container\ContainerInterface; +use Dot\Helpers\Route\RouteHelper; +use Psr\Container\ContainerInterface; /** * Class LogoutActionFactory @@ -31,7 +31,7 @@ public function __invoke(ContainerInterface $container, string $requestedName): /** @var LogoutAction $action */ $action = new $requestedName( $container->get(AuthenticationInterface::class), - $container->get(RouteOptionHelper::class), + $container->get(RouteHelper::class), $container->get(WebAuthenticationOptions::class) ); diff --git a/src/Factory/UnauthorizedHandlerFactory.php b/src/Factory/UnauthorizedHandlerFactory.php index 497547f..0329e2b 100644 --- a/src/Factory/UnauthorizedHandlerFactory.php +++ b/src/Factory/UnauthorizedHandlerFactory.php @@ -13,8 +13,8 @@ use Dot\Authentication\Web\ErrorHandler\UnauthorizedHandler; use Dot\Authentication\Web\Options\WebAuthenticationOptions; use Dot\FlashMessenger\FlashMessengerInterface; -use Dot\Helpers\Route\RouteOptionHelper; -use Interop\Container\ContainerInterface; +use Dot\Helpers\Route\RouteHelper; +use Psr\Container\ContainerInterface; /** * Class UnauthorizedHandlerFactory @@ -32,7 +32,7 @@ public function __invoke(ContainerInterface $container, string $requestedName): /** @var UnauthorizedHandler $handler */ $handler = new $requestedName( $container->get(AuthenticationInterface::class), - $container->get(RouteOptionHelper::class), + $container->get(RouteHelper::class), $container->get(WebAuthenticationOptions::class), $container->get(FlashMessengerInterface::class) ); diff --git a/src/Factory/WebAuthenticationOptionsFactory.php b/src/Factory/WebAuthenticationOptionsFactory.php index 30db784..20207d8 100644 --- a/src/Factory/WebAuthenticationOptionsFactory.php +++ b/src/Factory/WebAuthenticationOptionsFactory.php @@ -10,7 +10,7 @@ namespace Dot\Authentication\Web\Factory; use Dot\Authentication\Web\Options\WebAuthenticationOptions; -use Interop\Container\ContainerInterface; +use Psr\Container\ContainerInterface; /** * Class WebAuthenticationOptionsFactory