Merge pull request #1477 from Sephster/change-user-to-owner

Sephster · web-flow · commit 7077862969a3 · 2025-03-24T22:01:29.000Z
Update additional attribute name
diff --git a/.styleci.yml b/.styleci.yml
@@ -9,7 +9,6 @@ enabled:
   - include
   - method_separation
   - native_function_casing
-  - no_blank_lines_between_uses
   - no_duplicate_semicolons
   - no_multiline_whitespace_before_semicolons
   - no_php4_constructor
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -5,6 +5,9 @@ The format is based on [Keep a Changelog](http://keepachangelog.com/en/1.0.0/)
 and this project adheres to [Semantic Versioning](http://semver.org/spec/v2.0.0.html).
 
 ## [Unreleased]
+### Changed
+- Changed additional attribute added from `oauth_user_id` to the more appropriately named `oauth_owner_id` which can encompass either the user ID or client ID (PR #XXX) 
+
 ## [9.2.0] - released 2025-02-15
 ### Added
 - Added a new function to the provided ClientTrait, `supportsGrantType` to allow the auth server to issue the response `unauthorized_client` when applicable (PR #1420)
diff --git a/src/AuthorizationValidators/BearerTokenValidator.php b/src/AuthorizationValidators/BearerTokenValidator.php
@@ -130,7 +130,7 @@ public function validateAuthorization(ServerRequestInterface $request): ServerRe
         return $request
             ->withAttribute('oauth_access_token_id', $claims->get('jti'))
             ->withAttribute('oauth_client_id', $claims->get('aud')[0])
-            ->withAttribute('oauth_user_id', $claims->get('sub'))
+            ->withAttribute('oauth_owner_id', $claims->get('sub'))
             ->withAttribute('oauth_scopes', $claims->get('scopes'));
     }
 }
diff --git a/tests/ResponseTypes/BearerResponseTypeTest.php b/tests/ResponseTypes/BearerResponseTypeTest.php
@@ -154,7 +154,7 @@ public function testDetermineAccessTokenInHeaderValidToken(): void
 
         self::assertEquals('abcdef', $request->getAttribute('oauth_access_token_id'));
         self::assertEquals('clientName', $request->getAttribute('oauth_client_id'));
-        self::assertEquals('123', $request->getAttribute('oauth_user_id'));
+        self::assertEquals('123', $request->getAttribute('oauth_owner_id'));
         self::assertEquals([], $request->getAttribute('oauth_scopes'));
     }
 

Original file line number	Diff line number	Diff line change
`@@ -130,7 +130,7 @@ public function validateAuthorization(ServerRequestInterface $request): ServerRe`
`130`	`130`	`return $request`
`131`	`131`	`->withAttribute('oauth_access_token_id', $claims->get('jti'))`
`132`	`132`	`->withAttribute('oauth_client_id', $claims->get('aud')[0])`
`133`		`- ->withAttribute('oauth_user_id', $claims->get('sub'))`
	`133`	`+ ->withAttribute('oauth_owner_id', $claims->get('sub'))`
`134`	`134`	`->withAttribute('oauth_scopes', $claims->get('scopes'));`
`135`	`135`	`}`
`136`	`136`	`}`
Original file line number	Diff line number	Diff line change
`@@ -154,7 +154,7 @@ public function testDetermineAccessTokenInHeaderValidToken(): void`
`154`	`154`
`155`	`155`	`self::assertEquals('abcdef', $request->getAttribute('oauth_access_token_id'));`
`156`	`156`	`self::assertEquals('clientName', $request->getAttribute('oauth_client_id'));`
`157`		`- self::assertEquals('123', $request->getAttribute('oauth_user_id'));`
	`157`	`+ self::assertEquals('123', $request->getAttribute('oauth_owner_id'));`
`158`	`158`	`self::assertEquals([], $request->getAttribute('oauth_scopes'));`
`159`	`159`	`}`
`160`	`160`