chamilo
/
chamilo-lms
mirror of https://github.com/chamilo/chamilo-lms/tree/1.11.x
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Chamilo is a learning management system focused on ease of use and accessibility
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
54277 Commits
17 Branches
107 Tags
940 MiB
 
 
 
 
 
 
Tag: Branch: Tree: 60c78cb7c7
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '60c78cb7c7'
${ noResults }
chamilo-lms/plugin/ims_lti/token.php

72 lines
2.0 KiB
Raw Blame History

<?php
/* For licensing terms, see /license.txt */
use Chamilo\PluginBundle\Entity\ImsLti\Token;
use Symfony\Component\HttpFoundation\JsonResponse;
use Symfony\Component\HttpFoundation\Request;
use Symfony\Component\HttpFoundation\Response;
$cidReset = true;
require_once __DIR__.'/../../main/inc/global.inc.php';
$plugin = ImsLtiPlugin::create();
$request = Request::createFromGlobals();
$response = new JsonResponse();
try {
if ($plugin->get('enabled') !== 'true' ||
$request->getMethod() !== Request::METHOD_POST ||
$request->server->get('CONTENT_TYPE') !== 'application/x-www-form-urlencoded'
) {
throw new Exception('invalid_request');
}
$clientAssertion = $request->request->get('client_assertion');
$clientAssertionType = $request->request->get('client_assertion_type');
$grantType = $request->request->get('grant_type');
$scope = $request->request->get('scope');
if ('urn:ietf:params:oauth:client-assertion-type:jwt-bearer' !== $clientAssertionType
|| $grantType !== 'client_credentials'
) {
throw new Exception('unsupported_grant_type');
}
$tokenRequest = new LtiTokenRequest();
try {
$tokenRequest->validateClientAssertion($clientAssertion);
$tokenRequest->decodeJwt($clientAssertion);
} catch (Exception $exception) {
throw new Exception('invalid_client');
}
try {
$allowedScopes = $tokenRequest->validateScope($scope);
} catch (Exception $exception) {
throw new Exception('invalid_scope');
}
$token = $tokenRequest->generateToken($allowedScopes);
$em = Database::getManager();
$em->persist($token);
$em->flush();
$data = [
'access_token' => $token->getHash(),
'token_type' => 'Bearer',
'expires_in' => Token::TOKEN_LIFETIME,
'scope' => $token->getScopeInString(),
];
} catch (Exception $exception) {
$response->setStatusCode(Response::HTTP_BAD_REQUEST);
$data = ['error' => $exception->getMessage()];
}
$response->setData($data);
$response->send();