Improve OAuth2 class

Bui Sy Nguyen · Bui Sy Nguyen · commit 6c113384f45e · 2015-10-04T11:12:11.000+07:00
diff --git a/fproject/authclient/OAuth2.php b/fproject/authclient/OAuth2.php
@@ -163,7 +163,7 @@ public function getPublicKey()
     public function verifyAndDecodeToken($token, $checkRevoked=true)
     {
         $payload = JWT::decode($token, $this->getPublicKey(), [self::CRYPTO_ALG]);
-        if($checkRevoked && $this->checkRevokedSub($payload))
+        if($checkRevoked && $this->checkRevokedToken($token, $payload))
             throw new TokenRevokedException('Token is revoked.');
         return $payload;
     }
@@ -184,35 +184,40 @@ public function getUserInfo($accessToken=null)
 
     /**
      * Check if token is revoked
+     * @param string $token the JWT token
      * @param \stdClass $payload the token's payload
      * @return bool true if the token is revoked
      */
-    public function checkRevokedSub($payload)
+    public function checkRevokedToken($token, $payload)
     {
-        if(!empty($payload) && property_exists($payload, 'sub') && Yii::$app->cache)
+        if(!empty($payload) && Yii::$app->cache)
         {
-            $cacheKey = "Revoked_JWT_".sha1($payload->sub);
-            return Yii::$app->cache->get($cacheKey) !== false;
+            return Yii::$app->cache->get($this->getRevokedTokenCacheKey($token)) !== false;
         }
         return false;
     }
 
     /**
      * Save revoked token to cache
+     * @param string $token the JWT token
      * @param \stdClass $payload the token's payload
      */
-    public function saveRevokedToken($payload)
+    public function saveRevokedToken($token, $payload)
     {
-        if(!empty($payload) && property_exists($payload, 'sub') && property_exists($payload,'exp') && Yii::$app->cache)
+        if(!empty($payload) && property_exists($payload,'exp') && Yii::$app->cache)
         {
-            $cacheKey = "Revoked_JWT_".sha1($payload->sub);
             $duration = (int)$payload->exp + JWT::$leeway - time();
 
             if($duration > 0)
-                Yii::$app->cache->set($cacheKey, true, $duration);
+                Yii::$app->cache->set($this->getRevokedTokenCacheKey($token), true, $duration);
         }
     }
 
+    private function getRevokedTokenCacheKey($token)
+    {
+        return "Revoked_JWT_".sha1($token);
+    }
+
     /**
      * Logout the current user by identity
      * @param bool $globalLogout

Original file line number	Diff line number	Diff line change
`@@ -163,7 +163,7 @@ public function getPublicKey()`
`163`	`163`	`public function verifyAndDecodeToken($token, $checkRevoked=true)`
`164`	`164`	`{`
`165`	`165`	`$payload = JWT::decode($token, $this->getPublicKey(), [self::CRYPTO_ALG]);`
`166`		`- if($checkRevoked && $this->checkRevokedSub($payload))`
	`166`	`+ if($checkRevoked && $this->checkRevokedToken($token, $payload))`
`167`	`167`	`throw new TokenRevokedException('Token is revoked.');`
`168`	`168`	`return $payload;`
`169`	`169`	`}`
`@@ -184,35 +184,40 @@ public function getUserInfo($accessToken=null)`
`184`	`184`
`185`	`185`	`/**`
`186`	`186`	`* Check if token is revoked`
	`187`	`+ * @param string $token the JWT token`
`187`	`188`	`* @param \stdClass $payload the token's payload`
`188`	`189`	`* @return bool true if the token is revoked`
`189`	`190`	`*/`
`190`		`- public function checkRevokedSub($payload)`
	`191`	`+ public function checkRevokedToken($token, $payload)`
`191`	`192`	`{`
`192`		`- if(!empty($payload) && property_exists($payload, 'sub') && Yii::$app->cache)`
	`193`	`+ if(!empty($payload) && Yii::$app->cache)`
`193`	`194`	`{`
`194`		`- $cacheKey = "Revoked_JWT_".sha1($payload->sub);`
`195`		`- return Yii::$app->cache->get($cacheKey) !== false;`
	`195`	`+ return Yii::$app->cache->get($this->getRevokedTokenCacheKey($token)) !== false;`
`196`	`196`	`}`
`197`	`197`	`return false;`
`198`	`198`	`}`
`199`	`199`
`200`	`200`	`/**`
`201`	`201`	`* Save revoked token to cache`
	`202`	`+ * @param string $token the JWT token`
`202`	`203`	`* @param \stdClass $payload the token's payload`
`203`	`204`	`*/`
`204`		`- public function saveRevokedToken($payload)`
	`205`	`+ public function saveRevokedToken($token, $payload)`
`205`	`206`	`{`
`206`		`- if(!empty($payload) && property_exists($payload, 'sub') && property_exists($payload,'exp') && Yii::$app->cache)`
	`207`	`+ if(!empty($payload) && property_exists($payload,'exp') && Yii::$app->cache)`
`207`	`208`	`{`
`208`		`- $cacheKey = "Revoked_JWT_".sha1($payload->sub);`
`209`	`209`	`$duration = (int)$payload->exp + JWT::$leeway - time();`
`210`	`210`
`211`	`211`	`if($duration > 0)`
`212`		`- Yii::$app->cache->set($cacheKey, true, $duration);`
	`212`	`+ Yii::$app->cache->set($this->getRevokedTokenCacheKey($token), true, $duration);`
`213`	`213`	`}`
`214`	`214`	`}`
`215`	`215`
	`216`	`+ private function getRevokedTokenCacheKey($token)`
	`217`	`+ {`
	`218`	`+ return "Revoked_JWT_".sha1($token);`
	`219`	`+ }`
	`220`	`+`
`216`	`221`	`/**`
`217`	`222`	`* Logout the current user by identity`
`218`	`223`	`* @param bool $globalLogout`