Skip to content

Commit

Permalink
fix #2783 CGIモードでJWT認証が可能になるようにしたい (#2784)
Browse files Browse the repository at this point in the history 
* fix #2783 CGIモードでJWT認証が可能になるようにしたい

* middlewareの定義のテスト修正およびより効率的なmiddleware登録メソッドへの変更
  • Loading branch information
ゴンドー authored Oct 5, 2023
1 parent 68c90e6 commit 39d798a
Show file tree
Hide file tree
Showing 3 changed files with 13 additions and 3 deletions.
9 changes: 9 additions & 0 deletions plugins/baser-core/src/Middleware/BcRequestFilterMiddleware.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -52,6 +52,15 @@ public function process(
return new Response();
}

/**
* CGIモード等PHPでJWT認証で必要なAuthorizationヘッダーが取得出来ないできない場合、REDIRECT_HTTP_AUTHORIZATION環境変数より取得する
* .htaccess等に下記を記載することで動作可能とする
* SetEnvIf Authorization "(.*)" HTTP_AUTHORIZATION=$1
*/
if (empty($request->getHeader('Authorization')) && $request->getEnv('REDIRECT_HTTP_AUTHORIZATION')) {
$request = $request->withHeader('Authorization', $request->getEnv('REDIRECT_HTTP_AUTHORIZATION'));
}

if(BcUtil::isInstalled()) $this->redirectIfIsDeviceFile($request, $handler);

return $handler->handle($request);
Expand Down
2 changes: 1 addition & 1 deletion plugins/baser-core/src/Plugin.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -279,10 +279,10 @@ function loadPlugin(PluginApplicationInterface $application, $plugin, $priority)
public function middleware(MiddlewareQueue $middlewareQueue): MiddlewareQueue
{
$middlewareQueue
->prepend(new BcRequestFilterMiddleware())
->insertBefore(CsrfProtectionMiddleware::class, new AuthenticationMiddleware($this))
->add(new BcAdminMiddleware())
->add(new BcFrontMiddleware())
->add(new BcRequestFilterMiddleware())
->add(new BcRedirectSubSiteFilter());

// APIへのアクセスの場合、セッションによる認証以外は、CSRFを利用しない設定とする
Expand Down
5 changes: 3 additions & 2 deletions plugins/baser-core/tests/TestCase/PluginTest.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,12 +16,12 @@
use BaserCore\Service\SiteConfigsServiceInterface;
use BaserCore\TestSuite\BcTestCase;
use BaserCore\Utility\BcUtil;
use BaserCore\Middleware\BcRequestFilterMiddleware;
use Cake\Core\Configure;
use Cake\Core\Container;
use Cake\Event\EventManager;
use Cake\Http\Middleware\CsrfProtectionMiddleware;
use Cake\Http\MiddlewareQueue;
use Authentication\Middleware\AuthenticationMiddleware;
use Cake\Routing\Router;
use Cake\Filesystem\File;

Expand Down Expand Up @@ -176,7 +176,8 @@ public function testMiddleware(): void
$middleware = new MiddlewareQueue();
$middleware->add(CsrfProtectionMiddleware::class);
$middlewareQueue = $this->Plugin->middleware($middleware);
$this->assertInstanceOf(AuthenticationMiddleware::class, $middlewareQueue->current());
$this->assertInstanceOf(BcRequestFilterMiddleware::class, $middlewareQueue->current());
$this->assertEquals(6, $middlewareQueue->count());
}

/**
Expand Down

0 comments on commit 39d798a

Please sign in to comment.