processmaker/ProcessMaker/Http/Controllers/Admin/DevLinkController.php at ccc4f2bce298e55e665025194b447a8068c815ca · ProcessMaker/processmaker · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
<?php

namespace ProcessMaker\Http\Controllers\Admin;

use Illuminate\Http\Request;
use Illuminate\Support\Facades\Http;
use Laravel\Passport\Client;
use ProcessMaker\Http\Controllers\Controller;
use ProcessMaker\Models\DevLink;

class DevLinkController extends Controller
{
    public function index(Request $request)
    {
        $updatedDevLink = $this->storeClientCredentials($request);

        if ($updatedDevLink) {
            return redirect($updatedDevLink->getOauthRedirectUrl());
        }

        $updatedDevLink = $this->storeOauthCredentials($request);
        if ($updatedDevLink) {
            return redirect($updatedDevLink->redirect_uri);
        }

        return view('admin.devlink.index');
    }

    public function getOauthClient(Request $request)
    {
        $request->validate([
            'devlink_id' => 'required',
            'redirect_uri' => ['required', 'url'],
        ]);

        $devLinkId = $request->input('devlink_id');
        $redirectUri = $request->input('redirect_uri');

        $client = Client::where([
            'name' => 'devlink',
            'redirect' => $redirectUri,
        ])->first();

        if (!$client) {
            $clientRepository = app('Laravel\Passport\ClientRepository');
            $client = $clientRepository->createAuthorizationCodeGrantClient('devlink', [$redirectUri]);
        }

        $query = http_build_query([
            'devlink_id' => $devLinkId,
            'client_id' => $client->id,
            'client_secret' => $client->secret,
        ]);

        return redirect($redirectUri . '?' . $query);
    }

    private function storeClientCredentials(Request $request)
    {
        if (
            $request->has('devlink_id') &&
            $request->has('client_id') &&
            $request->has('client_secret')
        ) {
            $devlink = DevLink::findOrFail($request->input('devlink_id'));
            $devlink->update([
                'client_id' => $request->input('client_id'),
                'client_secret' => $request->input('client_secret'),
            ]);

            return $devlink;
        }

        return false;
    }

    private function storeOauthCredentials(Request $request)
    {
        if (
            $request->has('state') &&
            $request->has('code')
        ) {
            $devlink = DevLink::where('state', $request->input('state'))->firstOrFail();

            $response = Http::asForm()->post($devlink->url . '/oauth/token', [
                'grant_type' => 'authorization_code',
                'client_id' => $devlink->client_id,
                'client_secret' => $devlink->client_secret,
                'redirect_uri' => $devlink->redirect_uri,
                'code' => $request->input('code'),
            ]);

            $response = $response->json();
            $devlink->update([
                'access_token' => $response['access_token'],
                'refresh_token' => $response['refresh_token'],
                'expires_in' => $response['expires_in'],
            ]);

            return $devlink;
        }

        return false;
    }
}