Your IP : 216.73.217.13
<?php
/**
* Copyright © Magento, Inc. All rights reserved.
* See COPYING.txt for license details.
*/
declare(strict_types=1);
namespace Magento\AdminAdobeIms\Model;
use Magento\AdminAdobeIms\Exception\AdobeImsAuthorizationException;
use Magento\AdminAdobeIms\Logger\AdminAdobeImsLogger;
use Magento\AdminAdobeIms\Service\ImsConfig;
use Magento\AdobeIms\Model\GetToken;
use Magento\AdobeImsApi\Api\Data\TokenResponseInterface;
use Magento\Framework\Exception\AuthorizationException;
use Magento\Framework\Exception\InvalidArgumentException;
use Magento\Framework\HTTP\Client\Curl;
use Magento\Framework\HTTP\Client\CurlFactory;
use Magento\Framework\Serialize\Serializer\Json;
class ImsConnection
{
private const HTTP_REDIRECT_CODE = 302;
/**
* @var CurlFactory
*/
private CurlFactory $curlFactory;
/**
* @var ImsConfig
*/
private ImsConfig $adminImsConfig;
/**
* @var Json
*/
private Json $json;
/**
* @var GetToken
*/
private GetToken $token;
/**
* @var AdminAdobeImsLogger
*/
private AdminAdobeImsLogger $adminAdobeImsLogger;
/**
* @param CurlFactory $curlFactory
* @param ImsConfig $adminImsConfig
* @param Json $json
* @param GetToken $token
* @param AdminAdobeImsLogger $adminAdobeImsLogger
*/
public function __construct(
CurlFactory $curlFactory,
ImsConfig $adminImsConfig,
Json $json,
GetToken $token,
AdminAdobeImsLogger $adminAdobeImsLogger
) {
$this->curlFactory = $curlFactory;
$this->adminImsConfig = $adminImsConfig;
$this->json = $json;
$this->token = $token;
$this->adminAdobeImsLogger = $adminAdobeImsLogger;
}
/**
* Get authorization url
*
* @param string|null $clientId
* @return string
* @throws InvalidArgumentException
*/
public function auth(?string $clientId = null): string
{
$authUrl = $this->adminImsConfig->getAdminAdobeImsAuthUrl($clientId);
return $this->getAuthorizationLocation($authUrl);
}
/**
* Test if given ClientID is valid and is able to return an authorization URL
*
* @param string $clientId
* @return bool
* @throws InvalidArgumentException
*/
public function testAuth(string $clientId): bool
{
$location = $this->auth($clientId);
return $location !== '';
}
/**
* Get authorization location from adobeIMS
*
* @param string $authUrl
* @return string
* @throws InvalidArgumentException
*/
private function getAuthorizationLocation(string $authUrl): string
{
$curl = $this->curlFactory->create();
$curl->addHeader('Content-Type', 'application/x-www-form-urlencoded');
$curl->addHeader('cache-control', 'no-cache');
$curl->get($authUrl);
$this->validateResponse($curl);
return $curl->getHeaders()['location'] ?? '';
}
/**
* Validate authorization call response
*
* @param Curl $curl
* @return void
* @throws InvalidArgumentException
*/
private function validateResponse(Curl $curl): void
{
if (isset($curl->getHeaders()['location'])) {
if (preg_match(
'/error=([a-z_]+)/i',
$curl->getHeaders()['location'],
$error
)
&& isset($error[0], $error[1])
) {
throw new InvalidArgumentException(
__('Could not connect to Adobe IMS Service: %1.', $error[1])
);
}
}
if ($curl->getStatus() !== self::HTTP_REDIRECT_CODE) {
throw new InvalidArgumentException(
__('Could not get a valid response from Adobe IMS Service.')
);
}
}
/**
* Verify if access_token is valid
*
* @param string|null $token
* @param string $tokenType
* @return bool
* @throws AuthorizationException
*/
public function validateToken(?string $token, string $tokenType = 'access_token'): bool
{
$isTokenValid = false;
if ($token === null) {
return false;
}
$curl = $this->curlFactory->create();
$curl->addHeader('Content-Type', 'application/x-www-form-urlencoded');
$curl->addHeader('cache-control', 'no-cache');
$curl->post(
$this->adminImsConfig->getValidateTokenUrl(),
[
'token' => $token,
'type' => $tokenType,
'client_id' => $this->adminImsConfig->getApiKey()
]
);
if ($curl->getBody() === '') {
throw new AuthorizationException(
__('Could not verify the access_token')
);
}
$body = $this->json->unserialize($curl->getBody());
if (isset($body['valid'])) {
$isTokenValid = (bool)$body['valid'];
}
if (!$isTokenValid && isset($body['reason'])) {
$this->adminAdobeImsLogger->info($tokenType . ' is not valid. Reason: ' . $body['reason']);
}
return $isTokenValid;
}
/**
* Get token response
*
* @param string $code
* @return TokenResponseInterface
* @throws AdobeImsAuthorizationException
*/
public function getTokenResponse(string $code): TokenResponseInterface
{
try {
return $this->token->execute($code);
} catch (AuthorizationException $exception) {
throw new AdobeImsAuthorizationException(
__($exception->getMessage())
);
}
}
/**
* Get profile url
*
* @param string $code
* @return array|bool|float|int|mixed|string|null
* @throws AdobeImsAuthorizationException
*/
public function getProfile(string $code)
{
$curl = $this->curlFactory->create();
$curl->addHeader('Content-Type', 'application/x-www-form-urlencoded');
$curl->addHeader('cache-control', 'no-cache');
$curl->addHeader('Authorization', 'Bearer ' . $code);
$curl->get($this->adminImsConfig->getProfileUrl());
if ($curl->getBody() === '') {
throw new AdobeImsAuthorizationException(
__('Profile body is empty')
);
}
return $this->json->unserialize($curl->getBody());
}
}