dispense Authentication service from HttpContext

Machometec · Machometec · commit f1b593557148 · 2024-03-11T01:10:39.000-04:00
diff --git a/lib/Extensions/ServiceCollectionExtensions.php b/lib/Extensions/ServiceCollectionExtensions.php
@@ -57,8 +57,8 @@ public static function addAntiForgery(IServiceCollection $services, Closure $con
 
     public static function addAuthentication(IServiceCollection $services, Closure $configure)
     {
-        $services->addSingleton(IAuthentication::class, function ($provider) use ($configure): Authentication {
-            $builder = new AuthenticationBuilder($provider->getService(HttpContext::class));
+        $services->addSingleton(IAuthentication::class, function () use ($configure): Authentication {
+            $builder = new AuthenticationBuilder();
             $configure($builder);
             return $builder->build();
         });
diff --git a/lib/Security/Authentication/AuthenticationBuilder.php b/lib/Security/Authentication/AuthenticationBuilder.php
@@ -8,8 +8,6 @@
 
 namespace DevNet\Web\Security\Authentication;
 
-use DevNet\System\Runtime\LauncherProperties;
-use DevNet\Web\Http\Message\HttpContext;
 use DevNet\Web\Security\Authentication\JwtBearer\JwtBearerHandler;
 use DevNet\Web\Security\Authentication\JwtBearer\JwtBearerOptions;
 use DevNet\Web\Security\Authentication\Cookies\AuthenticationCookieHandler;
@@ -19,12 +17,6 @@
 class AuthenticationBuilder
 {
     private array $authentications;
-    private HttpContext $httpContext;
-
-    public function __construct(HttpContext $httpContext)
-    {
-        $this->httpContext = $httpContext;
-    }
 
     public function addCookie(string $authenticationScheme = AuthenticationScheme::CookieSession, Closure $configuration = null): void
     {
@@ -43,7 +35,7 @@ public function addJwtBearer(string $authenticationScheme = AuthenticationScheme
             $configuration($options);
         }
 
-        $this->authentications[$authenticationScheme] = new JwtBearerHandler($this->httpContext, $options);
+        $this->authentications[$authenticationScheme] = new JwtBearerHandler($options);
     }
 
     public function build(): Authentication
diff --git a/lib/Security/Authentication/Cookies/AuthenticationCookieHandler.php b/lib/Security/Authentication/Cookies/AuthenticationCookieHandler.php
@@ -27,7 +27,7 @@ class AuthenticationCookieHandler implements IAuthenticationHandler, IAuthentica
     public function __construct(AuthenticationCookieOptions $options)
     {
         $this->options = $options;
-        $this->session = new Session($options->CookieName);
+        $this->session = new Session($options->CookieName, $options->CookiePath);
 
         if (!$this->options->ExpireTime) {
             $this->options->ExpireTime = new TimeSpan();
diff --git a/lib/Security/Authentication/Cookies/AuthenticationCookieOptions.php b/lib/Security/Authentication/Cookies/AuthenticationCookieOptions.php
@@ -8,7 +8,6 @@
 
 namespace DevNet\Web\Security\Authentication\Cookies;
 
-use DevNet\System\Runtime\LauncherProperties;
 use DevNet\System\TimeSpan;
 
 class AuthenticationCookieOptions
@@ -22,9 +21,7 @@ public function __construct(string $cookieName = 'Identity', string $cookiePath
         $this->CookieName = $cookieName;
         $this->CookiePath = $cookiePath;
 
-        if ($this->CookieName == 'Identity') {
-            $this->CookieName .= "-" . md5(LauncherProperties::getRootDirectory());
-        }
+        $this->CookieName = $this->CookieName . "-" . md5($this->CookieName . $_SERVER['DOCUMENT_ROOT']);
 
         if (!$expireTime) {
             $this->ExpireTime = TimeSpan::fromDays(7);
diff --git a/lib/Security/Authentication/JwtBearer/JwtBearerHandler.php b/lib/Security/Authentication/JwtBearer/JwtBearerHandler.php
@@ -9,7 +9,6 @@
 namespace DevNet\Web\Security\Authentication\JwtBearer;
 
 use DevNet\System\PropertyTrait;
-use DevNet\Web\Http\Message\HttpContext;
 use DevNet\Web\Security\Authentication\AuthenticationResult;
 use DevNet\Web\Security\Authentication\IAuthenticationHandler;
 use DevNet\Web\Security\Tokens\Jwt\JwtSecurityTokenHandler;
@@ -19,13 +18,11 @@ class JwtBearerHandler implements IAuthenticationHandler
 {
     use PropertyTrait;
 
-    private HttpContext $HttpContext;
     private JwtBearerOptions $options;
     private JwtSecurityTokenHandler $handler;
 
-    public function __construct(HttpContext $httpContext, JwtBearerOptions $options)
+    public function __construct(JwtBearerOptions $options)
     {
-        $this->httpContext = $httpContext;
         $this->options = $options;
         $this->handler = new JwtSecurityTokenHandler();
     }
@@ -37,12 +34,13 @@ public function get_Options(): JwtBearerOptions
 
     public function readToken(): string
     {
-        $headers = $this->httpContext->Request->Headers->getValues('Authorization');
-        if (!$headers) {
+        $headers = getallheaders();;
+        $bearerToken = $headers['Authorization'];
+        if (!$bearerToken) {
             throw new Exception("The request is missing the authorization header!");
         }
 
-        if (!preg_match("/^Bearer\s+(.*)$/", $headers[0], $matches)) {
+        if (!preg_match("/^Bearer\s+(.*)$/", $bearerToken[0], $matches)) {
             throw new Exception("Incorrect authentication header scheme!");
         }
 
diff --git a/lib/Security/Base64UrlEncoder.php b/lib/Security/Base64UrlEncoder.php
@@ -6,7 +6,7 @@
  * @link        https://github.com/DevNet-Framework
  */
 
-namespace DevNet\Web\Security\Tokens;
+namespace DevNet\Web\Security;
 
 class Base64UrlEncoder
 {
diff --git a/lib/Security/Tokens/Csrf/AntiforgeryOptions.php b/lib/Security/Tokens/Csrf/AntiforgeryOptions.php
@@ -17,6 +17,6 @@ class AntiForgeryOptions
 
     public function __construct()
     {
-        $this->CookieName = $this->CookieName . "-" . md5($this->CookieName . $_SERVER['DOCUMENT_ROOT']);;
+        $this->CookieName = $this->CookieName . "-" . md5($this->CookieName . $_SERVER['DOCUMENT_ROOT']);
     }
 }
diff --git a/lib/Security/Tokens/Jwt/JwtHeader.php b/lib/Security/Tokens/Jwt/JwtHeader.php
@@ -8,7 +8,7 @@
 
 namespace DevNet\Web\Security\Tokens\Jwt;
 
-use DevNet\Web\Security\Tokens\Base64UrlEncoder;
+use DevNet\Web\Security\Base64UrlEncoder;
 
 class JwtHeader
 {
diff --git a/lib/Security/Tokens/Jwt/JwtPayload.php b/lib/Security/Tokens/Jwt/JwtPayload.php
@@ -9,7 +9,7 @@
 namespace DevNet\Web\Security\Tokens\Jwt;
 
 use DevNet\Web\Security\Claims\ClaimsIdentity;
-use DevNet\Web\Security\Tokens\Base64UrlEncoder;
+use DevNet\Web\Security\Base64UrlEncoder;
 
 class JwtPayload
 {
diff --git a/lib/Security/Tokens/Jwt/JwtSecurityTokenHandler.php b/lib/Security/Tokens/Jwt/JwtSecurityTokenHandler.php
@@ -10,7 +10,7 @@
 
 use DevNet\Web\Security\Claims\Claim;
 use DevNet\Web\Security\Claims\ClaimsIdentity;
-use DevNet\Web\Security\Tokens\Base64UrlEncoder;
+use DevNet\Web\Security\Base64UrlEncoder;
 use DevNet\Web\Security\Tokens\Jwt\JwtSecurityToken;
 use DateTime;
 

Original file line number	Diff line number	Diff line change
`@@ -8,8 +8,6 @@`
`8`	`8`
`9`	`9`	`namespace DevNet\Web\Security\Authentication;`
`10`	`10`
`11`		`-use DevNet\System\Runtime\LauncherProperties;`
`12`		`-use DevNet\Web\Http\Message\HttpContext;`
`13`	`11`	`use DevNet\Web\Security\Authentication\JwtBearer\JwtBearerHandler;`
`14`	`12`	`use DevNet\Web\Security\Authentication\JwtBearer\JwtBearerOptions;`
`15`	`13`	`use DevNet\Web\Security\Authentication\Cookies\AuthenticationCookieHandler;`
`@@ -19,12 +17,6 @@`
`19`	`17`	`class AuthenticationBuilder`
`20`	`18`	`{`
`21`	`19`	`private array $authentications;`
`22`		`- private HttpContext $httpContext;`
`23`		`-`
`24`		`- public function __construct(HttpContext $httpContext)`
`25`		`- {`
`26`		`- $this->httpContext = $httpContext;`
`27`		`- }`
`28`	`20`
`29`	`21`	`public function addCookie(string $authenticationScheme = AuthenticationScheme::CookieSession, Closure $configuration = null): void`
`30`	`22`	`{`
`@@ -43,7 +35,7 @@ public function addJwtBearer(string $authenticationScheme = AuthenticationScheme`
`43`	`35`	`$configuration($options);`
`44`	`36`	`}`
`45`	`37`
`46`		`- $this->authentications[$authenticationScheme] = new JwtBearerHandler($this->httpContext, $options);`
	`38`	`+ $this->authentications[$authenticationScheme] = new JwtBearerHandler($options);`
`47`	`39`	`}`
`48`	`40`
`49`	`41`	`public function build(): Authentication`
Original file line number	Diff line number	Diff line change
`@@ -27,7 +27,7 @@ class AuthenticationCookieHandler implements IAuthenticationHandler, IAuthentica`
`27`	`27`	`public function __construct(AuthenticationCookieOptions $options)`
`28`	`28`	`{`
`29`	`29`	`$this->options = $options;`
`30`		`- $this->session = new Session($options->CookieName);`
	`30`	`+ $this->session = new Session($options->CookieName, $options->CookiePath);`
`31`	`31`
`32`	`32`	`if (!$this->options->ExpireTime) {`
`33`	`33`	`$this->options->ExpireTime = new TimeSpan();`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,6 @@`
`9`	`9`	`namespace DevNet\Web\Security\Authentication\JwtBearer;`
`10`	`10`
`11`	`11`	`use DevNet\System\PropertyTrait;`
`12`		`-use DevNet\Web\Http\Message\HttpContext;`
`13`	`12`	`use DevNet\Web\Security\Authentication\AuthenticationResult;`
`14`	`13`	`use DevNet\Web\Security\Authentication\IAuthenticationHandler;`
`15`	`14`	`use DevNet\Web\Security\Tokens\Jwt\JwtSecurityTokenHandler;`
`@@ -19,13 +18,11 @@ class JwtBearerHandler implements IAuthenticationHandler`
`19`	`18`	`{`
`20`	`19`	`use PropertyTrait;`
`21`	`20`
`22`		`- private HttpContext $HttpContext;`
`23`	`21`	`private JwtBearerOptions $options;`
`24`	`22`	`private JwtSecurityTokenHandler $handler;`
`25`	`23`
`26`		`- public function __construct(HttpContext $httpContext, JwtBearerOptions $options)`
	`24`	`+ public function __construct(JwtBearerOptions $options)`
`27`	`25`	`{`
`28`		`- $this->httpContext = $httpContext;`
`29`	`26`	`$this->options = $options;`
`30`	`27`	`$this->handler = new JwtSecurityTokenHandler();`
`31`	`28`	`}`
`@@ -37,12 +34,13 @@ public function get_Options(): JwtBearerOptions`
`37`	`34`
`38`	`35`	`public function readToken(): string`
`39`	`36`	`{`
`40`		`- $headers = $this->httpContext->Request->Headers->getValues('Authorization');`
`41`		`- if (!$headers) {`
	`37`	`+ $headers = getallheaders();;`
	`38`	`+ $bearerToken = $headers['Authorization'];`
	`39`	`+ if (!$bearerToken) {`
`42`	`40`	`throw new Exception("The request is missing the authorization header!");`
`43`	`41`	`}`
`44`	`42`
`45`		`- if (!preg_match("/^Bearer\s+(.*)$/", $headers[0], $matches)) {`
	`43`	`+ if (!preg_match("/^Bearer\s+(.*)$/", $bearerToken[0], $matches)) {`
`46`	`44`	`throw new Exception("Incorrect authentication header scheme!");`
`47`	`45`	`}`
`48`	`46`
Original file line number	Diff line number	Diff line change
`@@ -6,7 +6,7 @@`
`6`	`6`	`* @link https://github.com/DevNet-Framework`
`7`	`7`	`*/`
`8`	`8`
`9`		`-namespace DevNet\Web\Security\Tokens;`
	`9`	`+namespace DevNet\Web\Security;`
`10`	`10`
`11`	`11`	`class Base64UrlEncoder`
`12`	`12`	`{`
Original file line number	Diff line number	Diff line change
`@@ -17,6 +17,6 @@ class AntiForgeryOptions`
`17`	`17`
`18`	`18`	`public function __construct()`
`19`	`19`	`{`
`20`		`- $this->CookieName = $this->CookieName . "-" . md5($this->CookieName . $_SERVER['DOCUMENT_ROOT']);;`
	`20`	`+ $this->CookieName = $this->CookieName . "-" . md5($this->CookieName . $_SERVER['DOCUMENT_ROOT']);`
`21`	`21`	`}`
`22`	`22`	`}`
Original file line number	Diff line number	Diff line change
`@@ -8,7 +8,7 @@`
`8`	`8`
`9`	`9`	`namespace DevNet\Web\Security\Tokens\Jwt;`
`10`	`10`
`11`		`-use DevNet\Web\Security\Tokens\Base64UrlEncoder;`
	`11`	`+use DevNet\Web\Security\Base64UrlEncoder;`
`12`	`12`
`13`	`13`	`class JwtHeader`
`14`	`14`	`{`
Original file line number	Diff line number	Diff line change
`@@ -9,7 +9,7 @@`
`9`	`9`	`namespace DevNet\Web\Security\Tokens\Jwt;`
`10`	`10`
`11`	`11`	`use DevNet\Web\Security\Claims\ClaimsIdentity;`
`12`		`-use DevNet\Web\Security\Tokens\Base64UrlEncoder;`
	`12`	`+use DevNet\Web\Security\Base64UrlEncoder;`
`13`	`13`
`14`	`14`	`class JwtPayload`
`15`	`15`	`{`