WebSVN – LeadersLinked - Services – Diff – /module/LeadersLinked/src/Controller/AuthController.php

                     'data'   => $messages
                 ]);
+            }
         } else if ($request->isGet()) {
+            $jwtToken = null;
-            $aes = Functions::generatePassword(16);
+            $headers = getallheaders();
+            if(!empty($headers['authorization']) || !empty($headers['Authorization'])) {
+                $token = trim(empty($headers['authorization']) ? $headers['Authorization'] : $headers['authorization']);
+                if (substr($token, 0, 6 ) == 'Bearer') {
+                    $token = trim(substr($token, 7));
+                    if(!empty($this->config['leaderslinked.jwt.key'])) {
+                        $key = $this->config['leaderslinked.jwt.key'];
+                        try {
+                            $payload = JWT::decode($token, new Key($key, 'HS256'));
+                            if(empty($payload->iss) || $payload->iss != $_SERVER['HTTP_HOST']) {
+                                return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong server',  'fatal'  => true]);
-            $jwtToken = new JwtToken();
+                            }
-            $jwtToken->aes = $aes;
+                            $uuid = empty($payload->uuid) ? '' : $payload->uuid;
+                            $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
+                            $jwtToken = $jwtTokenMapper->fetchOneByUuid($uuid);
+                        } catch(\Exception $e) {
+                            //Token invalido
             $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
-            if($jwtTokenMapper->insert($jwtToken)) {
+                    }
-                $jwtToken = $jwtTokenMapper->fetchOne($jwtToken->id);
-            }
+                }
+            }
-            $token = '';
+            if(!$jwtToken) {
-            if(!empty($this->config['leaderslinked.jwt.key'])) {
-                $issuedAt   = new \DateTimeImmutable();
-                $expire     = $issuedAt->modify('+24 hours')->getTimestamp();
-                $serverName = $_SERVER['HTTP_HOST'];
-                $payload = [
-                    'iat'  => $issuedAt->getTimestamp(),
+                $aes = Functions::generatePassword(16);
+                $jwtToken = new JwtToken();
+                $jwtToken->aes = $aes;
+                $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
+                if($jwtTokenMapper->insert($jwtToken)) {
+                    $jwtToken = $jwtTokenMapper->fetchOne($jwtToken->id);
+                }
+                $token = '';
+                if(!empty($this->config['leaderslinked.jwt.key'])) {
+                    $issuedAt   = new \DateTimeImmutable();
+                    $expire     = $issuedAt->modify('+24 hours')->getTimestamp();
+                    $serverName = $_SERVER['HTTP_HOST'];
+                    $payload = [
+                        'iat'  => $issuedAt->getTimestamp(),
-                    'iss'  => $serverName,
+                        'iss'  => $serverName,
-                    'nbf'  => $issuedAt->getTimestamp(),
+                        'nbf'  => $issuedAt->getTimestamp(),
+                        'exp'  => $expire,
-                    'exp'  => $expire,
+                        'uuid' => $jwtToken->uuid,
+                    ];
                     'uuid' => $jwtToken->uuid,
-                ];
+                    $key = $this->config['leaderslinked.jwt.key'];
                     $token = JWT::encode($payload, $key, 'HS256');
                 'access_usign_social_networks'  => $access_usign_social_networks && $currentNetwork->default == Network::DEFAULT_YES ? 'y' : 'n',
                 'logo_url'                      => $this->url()->fromRoute('storage-network', ['type' => 'logo'],['force_canonical' => true]),
                 'navbar_url'                    => $this->url()->fromRoute('storage-network', ['type' => 'navbar'],['force_canonical' => true]),
                 'favico_url'                    => $this->url()->fromRoute('storage-network', ['type' => 'favico'],['force_canonical' => true]),
                 'intro'                         => $currentNetwork->intro,
-                'is_logged_in'                  => false
+                'is_logged_in'                  => $jwtToken->user_id ? true : false,
             ];

Proyectos de Subversion LeadersLinked - Services

(root)/module/LeadersLinked/src/Controller/AuthController.php – Rev 106 → 107