flownative
diff --git a/‎Classes/Authorization.php‎
Lines changed: 116 additions & 20 deletions b/‎Classes/Authorization.php‎
Lines changed: 116 additions & 20 deletions
diff --git a/‎…/Command/OAuthTokenCommandController.php‎ ‎…asses/Command/OAuthCommandController.php‎Classes/Command/OAuthTokenCommandController.php renamed to Classes/Command/OAuthCommandController.php
Lines changed: 27 additions & 23 deletions b/‎…/Command/OAuthTokenCommandController.php‎ ‎…asses/Command/OAuthCommandController.php‎Classes/Command/OAuthTokenCommandController.php renamed to Classes/Command/OAuthCommandController.php
Lines changed: 27 additions & 23 deletions
@@ -1,11 +1,25 @@
 <?php
+declare(strict_types=1);
+
 namespace Flownative\OAuth2\Client;
 
+/*
+ * This file is part of the Flownative.OAuth2.Client package.
+ *
+ * (c) Robert Lemke, Flownative GmbH - www.flownative.com
+ *
+ * This package is Open Source Software. For the full copyright and license
+ * information, please view the LICENSE file which was distributed with this
+ * source code.
+ */
+
 use Doctrine\ORM\Mapping as ORM;
+use League\OAuth2\Client\Token\AccessToken;
+use League\OAuth2\Client\Token\AccessTokenInterface;
 use Neos\Flow\Annotations as Flow;
 
 /**
- * Cache / read model for an Oauth2 token
+ * An OAuth2 Authorization
  *
  * @Flow\Entity
  */
@@ -15,55 +29,137 @@ class Authorization
      * @ORM\Id
      * @var string
      */
-    public $authorizationId;
+    protected $authorizationId;
 
-    /**
     /**
      * @var string
      */
-    public $clientId;
+    protected $serviceName;
 
     /**
+     * /**
      * @var string
      */
-    public $serviceName;
+    protected $clientId;
 
     /**
      * @var string
+     * @ORM\Column(nullable = true, length=5000)
      */
-    public $grantType;
+    protected $clientSecret;
 
     /**
      * @var string
-     * @ORM\Column(nullable = true, length=5000)
      */
-    public $clientSecret;
+    protected $grantType;
 
     /**
      * @var string
-     * @ORM\Column(length=5000)
      */
-    public $accessToken;
+    protected $scope;
 
     /**
-     * @var string
-     * @ORM\Column(nullable = true, length=5000)
+     * @var array
+     * @ORM\Column(type="json_array", nullable = true)
      */
-    public $refreshToken;
+    protected $serializedAccessToken;
 
     /**
-     * @var \DateTimeImmutable
-     * @ORM\Column(nullable = true)
+     * @param string $serviceName
+     * @param string $clientId
+     * @param string $clientSecret
+     * @param string $grantType
+     * @param string $scope
      */
-    public $expires;
+    public function __construct(string $serviceName, string $clientId, string $clientSecret, string $grantType, string $scope)
+    {
+        $this->serviceName = $serviceName;
+        $this->clientId = $clientId;
+        $this->clientSecret = $clientSecret;
+        $this->grantType = $grantType;
+        $this->scope = $scope;
+        $this->authorizationId = sha1($serviceName . $clientId . $grantType . $scope);
+    }
 
     /**
-     * @var string
+     * @return string
      */
-    public $scope;
+    public function getAuthorizationId(): string
+    {
+        return $this->authorizationId;
+    }
 
     /**
-     * @var array
+     * @return string
+     */
+    public function getServiceName(): string
+    {
+        return $this->serviceName;
+    }
+
+    /**
+     * @return string
+     */
+    public function getClientId(): string
+    {
+        return $this->clientId;
+    }
+
+    /**
+     * @return string
+     */
+    public function getClientSecret(): string
+    {
+        return $this->clientSecret;
+    }
+
+    /**
+     * @return string
+     */
+    public function getGrantType(): string
+    {
+        return $this->grantType;
+    }
+
+    /**
+     * @return string
+     * @return void
+     */
+    public function getScope(): string
+    {
+        return $this->scope;
+    }
+
+    /**
+     * @return array
+     */
+    public function getSerializedAccessToken(): array
+    {
+        return $this->serializedAccessToken ?? [];
+    }
+
+    /**
+     * @param array $serializedAccessToken
+     */
+    public function setSerializedAccessToken(array $serializedAccessToken): void
+    {
+        $this->serializedAccessToken = $serializedAccessToken;
+    }
+
+    /**
+     * @param AccessTokenInterface $accessToken
+     * @return void
+     */
+    public function setAccessToken(AccessTokenInterface $accessToken): void
+    {
+        $this->serializedAccessToken = $accessToken->jsonSerialize();
+    }
+
+    /**
+     * @return AccessToken
      */
-    public $tokenValues;
+    public function getAccessToken(): ?AccessTokenInterface
+    {
+        return !empty($this->serializedAccessToken) ? new AccessToken($this->serializedAccessToken) : null;
+    }
 }
@@ -9,7 +9,7 @@
 use Neos\Flow\Cli\CommandController;
 use Neos\Flow\Persistence\Doctrine\Query;
 
-final class OAuthTokenCommandController extends CommandController
+final class OAuthCommandController extends CommandController
 {
     /**
      * @var DoctrineEntityManager
@@ -26,48 +26,52 @@ public function injectEntityManager(DoctrineObjectManager $entityManager): void
     }
 
     /**
-     * List tokens
+     * List authorizations
      *
-     * This command lists all known OAuth tokens
+     * This command lists all known OAuth authorizations. With authorizations we keep track
+     * of access tokens for a given OAuth connection. An authorization is identified by
+     * a hash over service name, client id, grant type and scope.
      *
      * @return void
      */
-    public function listCommand(): void
+    public function listAuthorizationsCommand(): void
     {
         $query = new Query(Authorization::class);
-        $oAuthTokens = $query->execute();
+        $authorizations = $query->execute();
 
         $rows = [];
-        foreach ($oAuthTokens as $oAuthToken) {
-            assert($oAuthToken instanceof Authorization);
+        foreach ($authorizations as $authorization) {
+            assert($authorization instanceof Authorization);
+            $accessToken = $authorization->getAccessToken();
+            $expires = $accessToken ? \DateTimeImmutable::createFromFormat('U', $accessToken->getExpires())->format('d.m.Y H:i:s') : '';
+            $values = $accessToken ? implode(', ', array_keys($accessToken->getValues())) : '';
+
             $rows[] = [
-                $oAuthToken->authorizationId,
-                $oAuthToken->serviceName,
-                $oAuthToken->clientId,
-                $oAuthToken->grantType,
-                $oAuthToken->scope,
-                $oAuthToken->expires->format('d. M Y H:i:s'),
-                implode(', ', array_keys($oAuthToken->tokenValues))
+                $authorization->getAuthorizationId(),
+                $authorization->getServiceName(),
+                $authorization->getClientId(),
+                $authorization->getGrantType(),
+                $authorization->getScope(),
+                $expires,
+                $values
             ];
         }
         $this->output->outputTable($rows, ['Authorization Id', 'Service Name', 'Client ID', 'Grant Type', 'Scope', 'Expiration Time', 'Values']);
     }
 
     /**
-     * Remove token
+     * Remove authorization
      *
-     * This command removes one or all existing OAuth tokens
+     * This command removes one or all existing authorizations
      *
-     * @param string $authorizationId
+     * @param string $id
      * @param bool $all
      * @return void
-     * @throws ORMException
-     * @throws OptimisticLockException
-     * @throws \Doctrine\ORM\TransactionRequiredException
+     * @throws
      */
-    public function removeCommand(string $authorizationId = '', bool $all = false): void
+    public function removeAuthorizationsCommand(string $id = '', bool $all = false): void
     {
-        if (empty($authorizationId) && !$all) {
+        if (empty($id) && !$all) {
             $this->outputLine('<error>Please specify either --authorization-id or --all.</error>');
             exit(1);
         }
@@ -80,7 +84,7 @@ public function removeCommand(string $authorizationId = '', bool $all = false):
                 $this->entityManager->remove($authorization);
             }
         } else {
-            $authorization = $this->entityManager->find(Authorization::class, ['authorizationId' => $authorizationId]);
+            $authorization = $this->entityManager->find(Authorization::class, ['authorizationId' => $id]);
             if (!$authorization) {
                 $this->outputLine('<error>Specified authorization was not found.</error>');
                 exit(1);