michael/michaelschiemer
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

docs: consolidate documentation into organized structure

Browse Source 
- Move 12 markdown files from root to docs/ subdirectories
- Organize documentation by category:
  • docs/troubleshooting/ (1 file)  - Technical troubleshooting guides
  • docs/deployment/      (4 files) - Deployment and security documentation
  • docs/guides/          (3 files) - Feature-specific guides
  • docs/planning/        (4 files) - Planning and improvement proposals

Root directory cleanup:
- Reduced from 16 to 4 markdown files in root
- Only essential project files remain:
  • CLAUDE.md (AI instructions)
  • README.md (Main project readme)
  • CLEANUP_PLAN.md (Current cleanup plan)
  • SRC_STRUCTURE_IMPROVEMENTS.md (Structure improvements)

This improves:
 Documentation discoverability
 Logical organization by purpose
 Clean root directory
 Better maintainability
This commit is contained in:
Michael Schiemer
2025-10-05 11:05:04 +02:00
parent 887847dde6
commit 5050c7d73a
36686 changed files with 196456 additions and 12398919 deletions
Download Patch File Download Diff File Expand all files Collapse all files

193
src/Framework/OAuth/ValueObjects/OAuthToken.php Normal file
View File

@@ -0,0 +1,193 @@
<?php
declare(strict_types=1);
namespace App\Framework\OAuth\ValueObjects;
use App\Framework\Core\ValueObjects\Timestamp;
/**
* OAuth Token Value Object
*
* Immutable composite representation of OAuth access/refresh tokens
* Uses Value Objects for maximum type safety
*/
final readonly class OAuthToken
{
public function __construct(
public AccessToken $accessToken,
public ?RefreshToken $refreshToken,
public TokenType $tokenType,
public ?TokenScope $scope,
) {}
/**
* Create from provider response
*
* @param array<string, mixed> $response
*/
public static function fromProviderResponse(array $response): self
{
if (!isset($response['access_token'])) {
throw new \InvalidArgumentException('Provider response missing access_token');
}
$expiresIn = (int) ($response['expires_in'] ?? 3600);
return new self(
accessToken: AccessToken::fromProviderResponse(
$response['access_token'],
$expiresIn
),
refreshToken: isset($response['refresh_token'])
? RefreshToken::create($response['refresh_token'])
: null,
tokenType: TokenType::fromString($response['token_type'] ?? 'Bearer'),
scope: isset($response['scope']) && !empty($response['scope'])
? TokenScope::fromString($response['scope'])
: null,
);
}
/**
* Check if token is expired
*/
public function isExpired(): bool
{
return $this->accessToken->isExpired();
}
/**
* Check if token is still valid
*/
public function isValid(): bool
{
return $this->accessToken->isValid();
}
/**
* Check if token can be refreshed
*/
public function canRefresh(): bool
{
return $this->refreshToken !== null;
}
/**
* Get authorization header value
*/
public function getAuthorizationHeader(): string
{
return $this->tokenType->getHeaderPrefix() . ' ' . $this->accessToken->toString();
}
/**
* Get seconds until expiration
*/
public function getSecondsUntilExpiration(): int
{
return $this->accessToken->getSecondsUntilExpiration();
}
/**
* Get expiration timestamp
*/
public function getExpiresAt(): Timestamp
{
return $this->accessToken->getExpiresAt();
}
/**
* Check if token has specific scope
*/
public function hasScope(string $scope): bool
{
return $this->scope !== null && $this->scope->includes($scope);
}
/**
* Check if token has all required scopes
*
* @param array<string> $requiredScopes
*/
public function hasScopes(array $requiredScopes): bool
{
return $this->scope !== null && $this->scope->includesAll($requiredScopes);
}
/**
* Create new token with refreshed access token
*/
public function withRefreshedAccessToken(
AccessToken $accessToken,
?RefreshToken $refreshToken = null
): self {
return new self(
accessToken: $accessToken,
refreshToken: $refreshToken ?? $this->refreshToken,
tokenType: $this->tokenType,
scope: $this->scope,
);
}
/**
* Convert to array for storage
*
* @return array<string, mixed>
*/
public function toArray(): array
{
return [
'access_token' => $this->accessToken->toString(),
'refresh_token' => $this->refreshToken?->toString(),
'expires_at' => $this->accessToken->getExpiresAt()->getTimestamp(),
'token_type' => $this->tokenType->value,
'scope' => $this->scope?->toString(),
];
}
/**
* Convert to array for logging (with masked tokens)
*
* @return array<string, mixed>
*/
public function toArrayMasked(): array
{
return [
'access_token' => $this->accessToken->getMasked(),
'refresh_token' => $this->refreshToken?->getMasked(),
'expires_at' => $this->accessToken->getExpiresAt()->format('Y-m-d H:i:s'),
'expires_in' => $this->getSecondsUntilExpiration() . 's',
'token_type' => $this->tokenType->value,
'scope' => $this->scope?->toString(),
'is_expired' => $this->isExpired(),
'can_refresh' => $this->canRefresh(),
];
}
/**
* Create from stored array
*
* @param array<string, mixed> $data
*/
public static function fromArray(array $data): self
{
if (!isset($data['access_token'], $data['expires_at'])) {
throw new \InvalidArgumentException('Stored token data missing required fields');
}
return new self(
accessToken: AccessToken::create(
$data['access_token'],
Timestamp::fromUnix((int) $data['expires_at'])
),
refreshToken: isset($data['refresh_token'])
? RefreshToken::create($data['refresh_token'])
: null,
tokenType: TokenType::fromString($data['token_type'] ?? 'Bearer'),
scope: isset($data['scope']) && !empty($data['scope'])
? TokenScope::fromString($data['scope'])
: null,
);
}
}