forked from SocialiteProviders/Authentik
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Provider.php
87 lines (75 loc) · 2.23 KB
/
Provider.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
<?php
namespace SocialiteProviders\Authentik;
use GuzzleHttp\RequestOptions;
use InvalidArgumentException;
use SocialiteProviders\Manager\OAuth2\AbstractProvider;
use SocialiteProviders\Manager\OAuth2\User;
class Provider extends AbstractProvider
{
public const IDENTIFIER = 'AUTHENTIK';
/**
* {@inheritdoc}
*/
protected $scopes = ['openid goauthentik.io/api profile email'];
/**
* {@inheritdoc}
*/
public static function additionalConfigKeys()
{
return ['base_url'];
}
protected function getBaseUrl()
{
$baseurl = $this->getConfig('base_url');
if ($baseurl === null) {
throw new InvalidArgumentException('Missing base_url');
}
return rtrim($baseurl, '/');
}
/**
* {@inheritdoc}
*/
protected function getAuthUrl($state)
{
return $this->buildAuthUrlFromBase($this->getBaseUrl().'/application/o/authorize/', $state);
}
/**
* {@inheritdoc}
*/
protected function getTokenUrl()
{
return $this->getBaseUrl().'/application/o/token/';
}
/**
* {@inheritdoc}
*/
protected function getUserByToken($token)
{
$response = $this->getHttpClient()->get(
$this->getBaseUrl().'/application/o/userinfo/',
[
RequestOptions::HEADERS => [
'Authorization' => 'Bearer '.$token,
],
]
);
return json_decode((string) $response->getBody(), true);
}
/**
* {@inheritdoc}
*/
protected function mapUserToObject(array $user)
{
return (new User())->setRaw($user)->map([
'email' => $user['email'] ?? null,
'email_verified' => $user['email_verified'] ?? null,
'name' => $user['name'] ?? null,
'given_name' => $user['given_name'] ?? null,
'family_name' => $user['family_name'] ?? null,
'preferred_username' => $user['preferred_username'] ?? null,
'nickname' => $user['nickname'] ?? null,
'groups' => $user['groups'] ?? null,
'id' => $user['sub'],
]);
}
}