leantime/app/Domain/Auth/Guards/ApiGuard.php at da42e23473f65e232823adbd95e72e8d5455b4bc · Leantime/leantime · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
<?php

namespace Leantime\Domain\Auth\Guards;

use Illuminate\Contracts\Auth\Authenticatable;
use Illuminate\Contracts\Auth\Guard;
use Illuminate\Contracts\Auth\UserProvider;
use Leantime\Core\Http\ApiRequest;
use Leantime\Core\Http\IncomingRequest;
use Leantime\Domain\Api\Services\Api;
use Leantime\Domain\Auth\Models\AuthenticatableUser;

class ApiGuard implements Guard
{
    protected $user;

    private string $apiKey = '';

    public function __construct(
        protected UserProvider $provider,
        protected Api $apiService,
        protected IncomingRequest $request)
    {
        if ($this->request instanceof ApiRequest && $this->request->isApiRequest()) {
            $this->apiKey = $this->request->getAPIKey();
        }
    }

    public function check()
    {

        if (empty($this->apiKey)) {
            return false;
        }

        $apiUser = $this->apiService->getAPIKeyUser($this->apiKey);

        if (! $apiUser) {
            return false;
        }

        return true;
    }

    public function guest()
    {
        return ! $this->check();
    }

    public function user()
    {
        if ($this->user !== null) {
            return $this->user;
        }

        if (empty($this->apiKey)) {
            return $this->user;
        }

        $apiUser = $this->apiService->getAPIKeyUser($this->apiKey);

        if (! $apiUser) {
            $this->user = null;

            return $this->user;
        }

        $this->user = new AuthenticatableUser((array) $apiUser);

        return $this->user;
    }

    public function id()
    {
        return $this->user()?->getAuthIdentifier();
    }

    public function validate(array $credentials = [])
    {

        if (empty($this->apiKey)) {
            return false;
        }

        $apiUser = $this->apiService->getAPIKeyUser($this->apiKey);

        if (! $apiUser) {
            return false;
        }

        return true;

    }

    public function hasUser()
    {
        return $this->user ? true : false;
    }

    public function setUser(Authenticatable $user)
    {
        $this->user = $user;

        return $this;
    }
}