appwrite/src/Appwrite/Auth/OAuth2/Amazon.php

<?php

namespace Appwrite\Auth\OAuth2;

use Appwrite\Auth\OAuth2;

// Reference Material
// https://developer.amazon.com/docs/login-with-amazon/authorization-code-grant.html
// https://developer.amazon.com/docs/login-with-amazon/register-web.html
// https://developer.amazon.com/docs/login-with-amazon/obtain-customer-profile.html

class Amazon extends OAuth2
{
    /**
     * @var array
     */
    protected $user = [];
    
    /**
     * @var array
     */
    protected $tokens = [];

    /**
     * @var array
     */
    protected $scopes = [
        "profile"
    ];

    /**
     * @return string
     */
    public function getName(): string
    {
        return 'amazon';
    }

    /**
     * @param $state
     *
     * @return array
     */
    public function parseState(string $state)
    {
        return \json_decode(\html_entity_decode($state), true);
    }


    /**
     * @return string
     */
    public function getLoginURL(): string
    {
        return 'https://www.amazon.com/ap/oa?'.\http_build_query([
                'response_type' => 'code',
                'client_id' => $this->appID,
                'scope' => \implode(' ', $this->getScopes()),
                'state' => \json_encode($this->state),
                'redirect_uri' => $this->callback
            ]);
    }

    /**
     * @param string $code
     *
     * @return array
     */
    protected function getTokens(string $code): array
    {
        if(empty($this->tokens)) {
            $headers = ['Content-Type: application/x-www-form-urlencoded;charset=UTF-8'];
            $this->tokens = \json_decode($this->request(
                'POST',
                'https://api.amazon.com/auth/o2/token',
                $headers,
                \http_build_query([
                    'code' => $code,
                    'client_id' => $this->appID,
                    'client_secret' => $this->appSecret,
                    'redirect_uri' => $this->callback,
                    'grant_type' => 'authorization_code'
                ])
            ), true);
        }

        return $this->tokens;
    }

    /**
     * @param string $refreshToken
     *
     * @return array
     */
    public function refreshTokens(string $refreshToken):array
    {
        $headers = ['Content-Type: application/x-www-form-urlencoded;charset=UTF-8'];
        $this->tokens = \json_decode($this->request(
            'POST',
            'https://api.amazon.com/auth/o2/token',
            $headers,
            \http_build_query([
                'client_id' => $this->appID,
                'client_secret' => $this->appSecret,
                'grant_type' => 'refresh_token',
                'refresh_token' => $refreshToken
            ])
        ), true);

        if(empty($this->tokens['refresh_token'])) {
            $this->tokens['refresh_token'] = $refreshToken;
        }

        return $this->tokens;
    }

    /**
     * @param string $accessToken
     *
     * @return string
     */
    public function getUserID(string $accessToken): string
    {
        $user = $this->getUser($accessToken);

        if (isset($user['user_id'])) {
            return $user['user_id'];
        }

        return '';
    }

    /**
     * @param string $accessToken
     *
     * @return string
     */
    public function getUserEmail(string $accessToken): string
    {
        $user = $this->getUser($accessToken);

        if (isset($user['email'])) {
            return $user['email'];
        }

        return '';
    }

    /**
     * Check if the OAuth email is verified
     * 
     * If present, the email is verified. This was verfied through a manual Amazon sign up process
     * 
     * @param $accessToken
     * 
     * @return bool
     */
    public function isEmailVerified(string $accessToken): bool
    {
        $email = $this->getUserEmail($accessToken);

        return !empty($email);
    }

    /**
     * @param string $accessToken
     *
     * @return string
     */
    public function getUserName(string $accessToken): string
    {
        $user = $this->getUser($accessToken);

        if (isset($user['name'])) {
            return $user['name'];
        }

        return '';
    }

    /**
     * @param string $accessToken
     *
     * @return array
     */
    protected function getUser(string $accessToken): array
    {
        if (empty($this->user)) {
            $user = $this->request('GET', 'https://api.amazon.com/user/profile?access_token='.\urlencode($accessToken));
            $this->user = \json_decode($user, true);
        }
        return $this->user;
    }
}
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`<?php`

Added a vendor namespace to all local libs 2020-03-24 17:56:32 +00:00			`namespace Appwrite\Auth\OAuth2;`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00
Added a vendor namespace to all local libs 2020-03-24 17:56:32 +00:00			`use Appwrite\Auth\OAuth2;`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00
			`// Reference Material`
			`// https://developer.amazon.com/docs/login-with-amazon/authorization-code-grant.html`
			`// https://developer.amazon.com/docs/login-with-amazon/register-web.html`
chore: added Amazon OAuth Docs 2019-10-05 13:16:07 +00:00			`// https://developer.amazon.com/docs/login-with-amazon/obtain-customer-profile.html`
Updated naming from OAuth to OAuth2 2020-02-16 11:41:03 +00:00
			`class Amazon extends OAuth2`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`{`
			`/**`
			`* @var array`
			`*/`
			`protected $user = [];`
Refactored all providers, added expiry 2022-02-01 10:42:11 +00:00
			`/**`
			`* @var array`
			`*/`
			`protected $tokens = [];`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00
chore: added required Scopes to Amazon Adapter 2020-01-13 14:16:41 +00:00			`/**`
			`* @var array`
			`*/`
chore: modified amazon adapter 2020-01-18 03:48:47 +00:00			`protected $scopes = [`
chore: sanitisation of BitBucket Adapter 2020-01-13 14:18:47 +00:00			`"profile"`
			`];`

feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`/**`
			`* @return string`
			`*/`
			`public function getName(): string`
			`{`
			`return 'amazon';`
			`}`

feat: implemented abstract method parseState 2019-10-06 12:56:44 +00:00			`/**`
			`* @param $state`
			`*`
Feat psalm analysis (#699) * Added static code analysis * Updated code to solve psalm issue 2020-10-27 00:08:29 +00:00			`* @return array`
feat: implemented abstract method parseState 2019-10-06 12:56:44 +00:00			`*/`
chore: lint fix 2019-10-06 12:58:01 +00:00			`public function parseState(string $state)`
			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 11:05:43 +00:00			`return \json_decode(\html_entity_decode($state), true);`
feat: implemented abstract method parseState 2019-10-06 12:56:44 +00:00			`}`


feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`/**`
			`* @return string`
			`*/`
			`public function getLoginURL(): string`
			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 11:05:43 +00:00			`return 'https://www.amazon.com/ap/oa?'.\http_build_query([`
chore: Amazon Adapter changes 2020-01-13 14:33:41 +00:00			`'response_type' => 'code',`
			`'client_id' => $this->appID,`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 11:05:43 +00:00			`'scope' => \implode(' ', $this->getScopes()),`
			`'state' => \json_encode($this->state),`
chore: Amazon Adapter changes 2020-01-13 14:33:41 +00:00			`'redirect_uri' => $this->callback`
			`]);`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`}`

			`/**`
			`* @param string $code`
			`*`
Temporarly disabled all oauths 2022-01-31 20:20:17 +00:00			`* @return array`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`*/`
Protected oauth methods 2022-02-01 16:47:19 +00:00			`protected function getTokens(string $code): array`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`{`
Refactored all providers, added expiry 2022-02-01 10:42:11 +00:00			`if(empty($this->tokens)) {`
			`$headers = ['Content-Type: application/x-www-form-urlencoded;charset=UTF-8'];`
			`$this->tokens = \json_decode($this->request(`
			`'POST',`
			`'https://api.amazon.com/auth/o2/token',`
			`$headers,`
			`\http_build_query([`
			`'code' => $code,`
			`'client_id' => $this->appID,`
			`'client_secret' => $this->appSecret,`
			`'redirect_uri' => $this->callback,`
			`'grant_type' => 'authorization_code'`
			`])`
			`), true);`
			`}`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00
Refactored all providers, added expiry 2022-02-01 10:42:11 +00:00			`return $this->tokens;`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`}`

Implemented refresh token endpoint 2022-02-01 15:54:20 +00:00			`/**`
			`* @param string $refreshToken`
			`*`
			`* @return array`
			`*/`
			`public function refreshTokens(string $refreshToken):array`
			`{`
Implemented refresh token for all providers 2022-02-01 17:13:54 +00:00			`$headers = ['Content-Type: application/x-www-form-urlencoded;charset=UTF-8'];`
			`$this->tokens = \json_decode($this->request(`
			`'POST',`
			`'https://api.amazon.com/auth/o2/token',`
			`$headers,`
			`\http_build_query([`
			`'client_id' => $this->appID,`
			`'client_secret' => $this->appSecret,`
			`'grant_type' => 'refresh_token',`
			`'refresh_token' => $refreshToken`
			`])`
			`), true);`
Implemented refresh token endpoint 2022-02-01 15:54:20 +00:00
Implement refresh token fallback, if missing in response 2022-02-03 16:05:06 +00:00			`if(empty($this->tokens['refresh_token'])) {`
			`$this->tokens['refresh_token'] = $refreshToken;`
			`}`

Implemented refresh token endpoint 2022-02-01 15:54:20 +00:00			`return $this->tokens;`
			`}`

feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`/**`
			`* @param string $accessToken`
			`*`
			`* @return string`
			`*/`
			`public function getUserID(string $accessToken): string`
			`{`
			`$user = $this->getUser($accessToken);`

			`if (isset($user['user_id'])) {`
			`return $user['user_id'];`
			`}`

			`return '';`
			`}`

			`/**`
			`* @param string $accessToken`
			`*`
			`* @return string`
			`*/`
			`public function getUserEmail(string $accessToken): string`
			`{`
			`$user = $this->getUser($accessToken);`

			`if (isset($user['email'])) {`
			`return $user['email'];`
			`}`

			`return '';`
			`}`

feat: add method to check for email verification 2022-04-27 19:08:32 +00:00			`/**`
feat: add method to check for email verification 2022-04-27 19:14:09 +00:00			`* Check if the OAuth email is verified`
			`*`
feat: update Zoom & Amazon OAuth provider 2022-04-28 07:44:09 +00:00			`* If present, the email is verified. This was verfied through a manual Amazon sign up process`
			`*`
feat: add method to check for email verification 2022-04-27 19:14:09 +00:00			`* @param $accessToken`
feat: add method to check for email verification 2022-04-27 19:08:32 +00:00			`*`
			`* @return bool`
			`*/`
feat: fixed typo 2022-04-27 20:27:21 +00:00			`public function isEmailVerified(string $accessToken): bool`
feat: add method to check for email verification 2022-04-27 19:08:32 +00:00			`{`
feat: update Zoom & Amazon OAuth provider 2022-04-28 07:44:09 +00:00			`$email = $this->getUserEmail($accessToken);`

			`return !empty($email);`
feat: add method to check for email verification 2022-04-27 19:08:32 +00:00			`}`

feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`/**`
			`* @param string $accessToken`
			`*`
			`* @return string`
			`*/`
			`public function getUserName(string $accessToken): string`
			`{`
			`$user = $this->getUser($accessToken);`

			`if (isset($user['name'])) {`
			`return $user['name'];`
			`}`

			`return '';`
			`}`

			`/**`
			`* @param string $accessToken`
			`*`
			`* @return array`
			`*/`
			`protected function getUser(string $accessToken): array`
			`{`
			`if (empty($this->user)) {`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 11:05:43 +00:00			`$user = $this->request('GET', 'https://api.amazon.com/user/profile?access_token='.\urlencode($accessToken));`
			`$this->user = \json_decode($user, true);`
feat: amazon OAuth (conditional) 2019-10-05 13:09:01 +00:00			`}`
			`return $this->user;`
			`}`
			`}`