Check for Authorization header prior to getting token bearer

ilijastuden · ilijastuden · commit b08ad53c551c · 2016-10-17T00:19:23.000+02:00
diff --git a/src/Adapter/TokenBearer.php b/src/Adapter/TokenBearer.php
@@ -47,6 +47,10 @@ public function __construct(UserRepositoryInterface $user_repository, TokenRepos
      */
     public function initialize(ServerRequestInterface $request)
     {
+        if (!$request->hasHeader('Authorization')) {
+            return null;
+        }
+
         $authorization = $request->getHeaderLine('Authorization');
 
         if (empty($authorization) || substr($authorization, 0, 7) !== 'Bearer ') {
diff --git a/src/Session/RepositoryInterface.php b/src/Session/RepositoryInterface.php
@@ -55,7 +55,7 @@ public function recordUsageById($session_id);
     public function recordUsageBySession(SessionInterface $session);
 
     /**
-     * Issue a new token.
+     * Create a new session.
      *
      * @param  AuthenticatedUserInterface $user
      * @param  DateTimeInterface|null     $expires_at

Original file line number	Diff line number	Diff line change
`@@ -55,7 +55,7 @@ public function recordUsageById($session_id);`
`55`	`55`	`public function recordUsageBySession(SessionInterface $session);`
`56`	`56`
`57`	`57`	`/**`
`58`		`- * Issue a new token.`
	`58`	`+ * Create a new session.`
`59`	`59`	`*`
`60`	`60`	`* @param AuthenticatedUserInterface $user`
`61`	`61`	`* @param DateTimeInterface\|null $expires_at`