1 | <?php namespace Neomerx\Limoncello\Http\Middleware; |
||
27 | abstract class BaseAuthMiddleware |
||
28 | { |
||
29 | /** |
||
30 | * Authentication scheme. Child classes should override this constant. |
||
31 | */ |
||
32 | const AUTHENTICATION_SCHEME = null; |
||
33 | |||
34 | /** |
||
35 | * Authorization header. |
||
36 | */ |
||
37 | const HEADER_AUTHORIZATION = 'Authorization'; |
||
38 | |||
39 | /** |
||
40 | * WWW authenticate header. |
||
41 | */ |
||
42 | const HEADER_WWW_AUTHENTICATE = 'WWW-Authenticate'; |
||
43 | |||
44 | /** |
||
45 | * @var IntegrationInterface |
||
46 | */ |
||
47 | private $integration; |
||
48 | |||
49 | /** |
||
50 | * @var Closure |
||
51 | */ |
||
52 | private $authenticationClosure; |
||
53 | |||
54 | /** |
||
55 | * @var Closure|null |
||
56 | */ |
||
57 | private $authorizationClosure; |
||
58 | |||
59 | /** |
||
60 | * @var string|null |
||
61 | */ |
||
62 | private $realm; |
||
63 | |||
64 | /** |
||
65 | * Constructor. |
||
66 | * |
||
67 | * @param IntegrationInterface $integration |
||
68 | * @param Closure $authenticateClosure |
||
69 | * @param Closure|null $authorizeClosure |
||
70 | * @param string|null $realm |
||
71 | */ |
||
72 | 7 | public function __construct( |
|
83 | |||
84 | /** |
||
85 | * @param Request $request |
||
86 | * |
||
87 | * @return bool |
||
88 | */ |
||
89 | abstract protected function authenticate(Request $request); |
||
90 | |||
91 | /** |
||
92 | * Handle an incoming request. |
||
93 | * |
||
94 | * @param Request $request |
||
95 | * @param Closure $next |
||
96 | * |
||
97 | * @return mixed |
||
98 | */ |
||
99 | 7 | public function handle(Request $request, Closure $next) |
|
106 | |||
107 | /** |
||
108 | * Get response for invalid authentication credentials. |
||
109 | * |
||
110 | * @return Response |
||
111 | */ |
||
112 | 1 | protected function getUnauthorizedResponse() |
|
123 | |||
124 | /** |
||
125 | * @param Request $request |
||
126 | * |
||
127 | * @return bool |
||
128 | */ |
||
129 | 7 | protected function authorize(Request $request) |
|
140 | |||
141 | /** |
||
142 | * @return Closure|null |
||
143 | */ |
||
144 | 7 | protected function getAuthorizationClosure() |
|
148 | |||
149 | /** |
||
150 | * @return Closure |
||
151 | */ |
||
152 | 7 | protected function getAuthenticationClosure() |
|
156 | } |
||
157 |