Auth works; empty journal works

2023-08-27 22:35:12 -04:00
parent 7421f9c788
commit 907d759a23
16 changed files with 2472 additions and 35 deletions
--- a/src/app/AppUser.php
+++ b/src/app/AppUser.php
@@ -0,0 +1,98 @@
+<?php
+declare(strict_types=1);
+
+namespace MyPrayerJournal;
+
+use Auth0\SDK\Auth0;
+
+class AppUser
+{
+    /** The Auth0 client instance to use for authentication */
+    private static ?Auth0 $auth0 = null;
+
+    /**
+     * Get the Auth0 instance
+     * 
+     * @return Auth0 The Auth0 instance, lazily initialized
+     */
+    private static function auth0Instance(): Auth0
+    {
+        if (is_null(self::$auth0)) {
+            self::$auth0 = new \Auth0\SDK\Auth0([
+                'domain'       => $_ENV['AUTH0_DOMAIN'],
+                'clientId'     => $_ENV['AUTH0_CLIENT_ID'],
+                'clientSecret' => $_ENV['AUTH0_CLIENT_SECRET'],
+                'cookieSecret' => $_ENV['AUTH0_COOKIE_SECRET']
+            ]);
+        }
+        return self::$auth0;
+    }
+
+    /**
+     * Determine the host to use for return URLs
+     * 
+     * @return string The host for return URLs
+     */
+    private static function host()
+    {
+        return 'http' . ($_SERVER['SERVER_PORT'] == 443 ? 's' : '' ) . "://{$_SERVER['HTTP_HOST']}";
+    }
+
+    /**
+     * Generate the log on callback URL
+     * 
+     * @return string The log on callback URL
+     */
+    private static function logOnCallback()
+    {
+        return self::host() . '/user/log-on/success';
+    }
+
+    /**
+     * Initiate a redirect to the Auth0 log on page
+     * 
+     * @param string $nextUrl The URL (other than /journal) to which the user should be redirected
+     * @return never This function exits the currently running script
+     */
+    public static function logOn(?string $nextUrl = null): never
+    {
+        // TODO: pass the next URL in the Auth0 callback
+        self::auth0Instance()->clear();
+        header('Location: ' . self::auth0Instance()->login(self::logOnCallback()));
+        exit;
+    }
+
+    /**
+     * Process the log on response from Auth0
+     * 
+     * @return never This function exits the currently running script
+     */
+    public static function processLogOn(): never
+    {
+        self::auth0Instance()->exchange(self::logOnCallback());
+        // TODO: check for next URL and redirect if present
+        header('Location: /journal');
+        exit;
+    }
+
+    /**
+     * Log off the current user
+     * 
+     * @return never This function exits the currently running script
+     */
+    public static function logOff(): never
+    {
+        header('Location: ' . self::auth0Instance()->logout(self::host() . '/'));
+        exit;
+    }
+
+    /**
+     * Get the current user
+     * 
+     * @return ?object The current user, or null if one is not signed in
+     */
+    public static function current(): ?object
+    {
+        return self::auth0Instance()->getCredentials();
+    }
+}