path: root/Zotlabs/Identity/OAuth2Server.php

<?php

namespace Zotlabs\Identity;

use Zotlabs\Lib\Config;

class OAuth2Server extends \OAuth2\Server {

	public function __construct(OAuth2Storage $storage, $config = null) {

		if(! is_array($config)) {
			$config = [
				'use_openid_connect' => true,
				'issuer' => \Zotlabs\Lib\System::get_site_name()
			];
		}

		parent::__construct($storage, $config);

		// Add the "Client Credentials" grant type (it is the simplest of the grant types)
		$this->addGrantType(new \OAuth2\GrantType\ClientCredentials($storage));

		// Add the "Authorization Code" grant type (this is where the oauth magic happens)
                // Need to use OpenID\GrantType to return id_token (see:https://github.com/bshaffer/oauth2-server-php/issues/443)
		$this->addGrantType(new \OAuth2\OpenID\GrantType\AuthorizationCode($storage));

		$keyStorage = new \OAuth2\Storage\Memory( [
			'keys' => [
				'public_key'  => Config::Get('system', 'pubkey'),
				'private_key' => Config::Get('system', 'prvkey')
			]
		]);

		$this->addStorage($keyStorage, 'public_key');
	}

}