rss-bridge/middlewares/TokenAuthenticationMiddleware.php

<?php

declare(strict_types=1);

class TokenAuthenticationMiddleware implements Middleware
{
    public function __invoke(Request $request, $next): Response
    {
        if (! Configuration::getConfig('authentication', 'token')) {
            return $next($request);
        }

        // Always add token to request attribute
        $request = $request->withAttribute('token', $request->get('token'));

        if (! $request->attribute('token')) {
            return new Response(render(__DIR__ . '/../templates/token.html.php', [
                'message' => 'Missing token',
            ]), 401);
        }
        if (! hash_equals(Configuration::getConfig('authentication', 'token'), $request->attribute('token'))) {
            return new Response(render(__DIR__ . '/../templates/token.html.php', [
                'message' => 'Invalid token',
            ]), 401);
        }

        return $next($request);
    }
}
refactor: implement middleware chain (#4240) * refactor: implement middleware chain * refactor 2024-08-30 01:07:58 +03:00			`<?php`

			`declare(strict_types=1);`

			`class TokenAuthenticationMiddleware implements Middleware`
			`{`
			`public function __invoke(Request $request, $next): Response`
			`{`
			`if (! Configuration::getConfig('authentication', 'token')) {`
			`return $next($request);`
			`}`

			`// Always add token to request attribute`
			`$request = $request->withAttribute('token', $request->get('token'));`

			`if (! $request->attribute('token')) {`
			`return new Response(render(__DIR__ . '/../templates/token.html.php', [`
			`'message' => 'Missing token',`
			`]), 401);`
			`}`
			`if (! hash_equals(Configuration::getConfig('authentication', 'token'), $request->attribute('token'))) {`
			`return new Response(render(__DIR__ . '/../templates/token.html.php', [`
			`'message' => 'Invalid token',`
			`]), 401);`
			`}`

			`return $next($request);`
			`}`
			`}`