[英]How do I set a callback function for an OAuth2.0 Server with Password Grant Type?
我想知道是否有人可以帮助我,如何设置密码授予类型回调? 我在本地主机上运行的OAuth2.0提供程序服务器正在运行,我只需要在请求访问令牌时验证用户的凭据即可。
我相信我只需要设置一个回调函数。 附上我的代码:
$app->setService('oauth', function() use ($config) {
$oauthdb = new \Twm\Db\Adapter\Pdo\Mssql(
$config
->database
->oauth
->toArray()
);
$server = new \League\OAuth2\Server\Authorization(
new \Oauth2\Server\Storage\Pdo\Mssql\Client($oauthdb),
new \Oauth2\Server\Storage\Pdo\Mssql\Session($oauthdb),
new \Oauth2\Server\Storage\Pdo\Mssql\Scope($oauthdb)
);
$request = new \Oauth2\Server\Storage\Pdo\Mssql\Request();
$server->setRequest($request);
// do i set a callback here???
$server->setAccessTokenTTL(86400);
$server->addGrantType(new League\OAuth2\Server\Grant\Password($server));
return $server;
});
如果有人可以帮助我,我感激不尽,谢谢!
更新,所以我在这里阅读了这个主题: https : //github.com/thephpleague/oauth2-server/issues/97看来我确实必须设置某种回调函数来验证用户。 我只需要更多帮助。
UPDATE
多亏了Alex,我实现了下面的密码验证例程,并且可以正常工作。
$app->setService('oauth', function() use ($config, $app) {
$oauthdb = new \Twm\Db\Adapter\Pdo\Mssql(
(array) $config->database->oauth
);
$server = new \League\OAuth2\Server\Authorization(
new \Oauth2\Server\Storage\Pdo\Mssql\Client($oauthdb),
new \Oauth2\Server\Storage\Pdo\Mssql\Session($oauthdb),
new \Oauth2\Server\Storage\Pdo\Mssql\Scope($oauthdb)
);
# Not required as it called directly from original code
# $request = new \League\OAuth2\Server\Util\Request();
# add these 2 lines code if you want to use my own Request otherwise comment it
$request = new \Oauth2\Server\Storage\Pdo\Mssql\Request();
$server->setRequest($request);
$server->setAccessTokenTTL(86400);
$grant = new League\OAuth2\Server\Grant\Password();
$grant->setVerifyCredentialsCallback(function($username, $password){
//echo "it works! ". $username . ' : ' . $password;
// if verified, then return true
// else return false
});
$server->addGrantType($grant);
return $server;
});
您需要在授予上调用setVerifyCredentialsCallback($callback)
方法。
因此,请稍稍更改您的代码:
$request = new \Oauth2\Server\Storage\Pdo\Mssql\Request();
$server->setRequest($request);
$server->setAccessTokenTTL(86400);
$grant = new League\OAuth2\Server\Grant\Password($server);
$grant->setVerifyCredentialsCallback(function ($username, $password) {
// your logic here - must return a user ID if credentials are valid or false if not
});
$server->addGrantType();
return $server;
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.