2018-09-28 22:08:01 +02:00
|
|
|
<?php
|
2019-10-05 17:26:10 +02:00
|
|
|
|
2018-09-28 22:08:01 +02:00
|
|
|
declare(strict_types=1);
|
|
|
|
|
|
|
|
|
|
namespace Shlinkio\Shlink\Rest\Authentication\Plugin;
|
|
|
|
|
|
|
|
|
|
use Psr\Http\Message\ResponseInterface;
|
|
|
|
|
use Psr\Http\Message\ServerRequestInterface;
|
|
|
|
|
use Shlinkio\Shlink\Rest\Exception\VerifyAuthenticationException;
|
2018-09-29 08:34:47 +02:00
|
|
|
use Shlinkio\Shlink\Rest\Service\ApiKeyServiceInterface;
|
2018-09-28 22:08:01 +02:00
|
|
|
|
|
|
|
|
class ApiKeyHeaderPlugin implements AuthenticationPluginInterface
|
|
|
|
|
{
|
|
|
|
|
public const HEADER_NAME = 'X-Api-Key';
|
|
|
|
|
|
2019-12-29 22:48:40 +01:00
|
|
|
private ApiKeyServiceInterface $apiKeyService;
|
2018-09-29 08:34:47 +02:00
|
|
|
|
2018-11-18 16:28:04 +01:00
|
|
|
public function __construct(ApiKeyServiceInterface $apiKeyService)
|
2018-09-29 08:34:47 +02:00
|
|
|
{
|
|
|
|
|
$this->apiKeyService = $apiKeyService;
|
|
|
|
|
}
|
|
|
|
|
|
2018-09-28 22:08:01 +02:00
|
|
|
/**
|
|
|
|
|
* @throws VerifyAuthenticationException
|
|
|
|
|
*/
|
|
|
|
|
public function verify(ServerRequestInterface $request): void
|
|
|
|
|
{
|
2018-09-29 08:34:47 +02:00
|
|
|
$apiKey = $request->getHeaderLine(self::HEADER_NAME);
|
2019-11-26 22:03:40 +01:00
|
|
|
if (! $this->apiKeyService->check($apiKey)) {
|
|
|
|
|
throw VerifyAuthenticationException::forInvalidApiKey();
|
2018-09-29 08:34:47 +02:00
|
|
|
}
|
2018-09-28 22:08:01 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function update(ServerRequestInterface $request, ResponseInterface $response): ResponseInterface
|
|
|
|
|
{
|
|
|
|
|
return $response;
|
|
|
|
|
}
|
|
|
|
|
}
|
