coddin-web
diff --git a/‎composer.json
+4-4 b/‎composer.json
+4-4
diff --git a/‎config/oidc.php
+4 b/‎config/oidc.php
+4
diff --git a/‎src/Builder/OpenIDConnectClientBuilder.php
+2 b/‎src/Builder/OpenIDConnectClientBuilder.php
+2
diff --git a/‎src/Event/UserAuthorizedEvent.php
+9 b/‎src/Event/UserAuthorizedEvent.php
+9
diff --git a/‎src/Helper/ConfigRepository.php
+15 b/‎src/Helper/ConfigRepository.php
+15
diff --git a/‎src/Helper/ConfigRepositoryException.php
+7-2 b/‎src/Helper/ConfigRepositoryException.php
+7-2
diff --git a/‎src/Http/Middleware/OpenIDConnectAuthenticated.php
+8-2 b/‎src/Http/Middleware/OpenIDConnectAuthenticated.php
+8-2
diff --git a/‎src/Service/Token/Claims.php
-27 b/‎src/Service/Token/Claims.php
-27
diff --git a/‎src/Service/Token/DataSetInterface.php
-12 b/‎src/Service/Token/DataSetInterface.php
-12
diff --git a/‎src/Service/Token/Exception/IncorrectUsageException.php
-15 b/‎src/Service/Token/Exception/IncorrectUsageException.php
-15
diff --git a/‎src/Service/Token/ExistingClaims.php
-78 b/‎src/Service/Token/ExistingClaims.php
-78
diff --git a/‎src/Service/Token/Parser.php
-30 b/‎src/Service/Token/Parser.php
-30
diff --git a/‎src/Service/Token/Plain.php
-35 b/‎src/Service/Token/Plain.php
-35
diff --git a/‎src/Service/TokenInterface.php
-12 b/‎src/Service/TokenInterface.php
-12
@@ -2,7 +2,7 @@
     "name": "coddin-web/oidc-client-laravel-wrapper",
     "description": "A Laravel wrapper of jumbojett's OpenID Connect Client",
     "type": "library",
-    "version": "1.1.0",
+    "version": "1.2.0",
     "minimum-stability": "stable",
     "prefer-stable": true,
     "require": {
@@ -41,12 +41,12 @@
         }
     ],
     "scripts": {
-        "phpcs": "phpcs --standard=./phpcs_codestyle.xml -n src",
-        "phpcs-fix": "phpcbf --standard=./phpcs_codestyle.xml -n src",
+        "phpcs": "phpcs --standard=./phpcs_codestyle.xml -n src tests",
+        "phpcs-fix": "phpcbf --standard=./phpcs_codestyle.xml -n src tests",
         "phpstan": "phpstan analyse --memory-limit=2G",
         "phpunit": "vendor/bin/phpunit -c phpunit.xml.dist",
         "phpunitwcov": "XDEBUG_MODE=coverage vendor/bin/phpunit -c phpunit.xml.dist --coverage-html reports/ --coverage-clover coverage/clover.xml",
-        "phpcoverage": "coverage-check coverage/clover.xml 63",
+        "phpcoverage": "coverage-check coverage/clover.xml 100",
         "checkup": [
             "@phpcs",
             "@phpstan",
 
@@ -10,6 +10,10 @@
         'secret' => env('OIDC_CLIENT_SECRET'),
         'use_pkce' => false,
         'redirect_url' => '/',
+        'scopes' => [
+            'profile',
+            'email',
+        ],
     ],
     'private_key' => [
         'base64' => env('OIDC_BASE64_PRIVATE_KEY'),
 
@@ -41,6 +41,8 @@ public function execute(): OpenIDConnectClient
             url: rtrim($appUrl, '/') . $this->configRepository->getAsString('oidc.client.redirect_url'),
         );
 
+        $openIDClient->addScope($this->configRepository->getAsArray('oidc.client.scopes'));
+
         return $openIDClient;
     }
 
 
@@ -17,16 +17,25 @@ public function __construct(
     ) {
     }
 
+    /**
+     * @codeCoverageIgnore
+     */
     public function getUuid(): string
     {
         return $this->uuid;
     }
 
+    /**
+     * @codeCoverageIgnore
+     */
     public function getName(): string
     {
         return $this->name;
     }
 
+    /**
+     * @codeCoverageIgnore
+     */
     public function getEmail(): string
     {
         return $this->email;
 
@@ -40,4 +40,19 @@ public function getAsBool(string $key): bool
 
         return $value;
     }
+
+    /**
+     * @return array<mixed, mixed>
+     * @throws ConfigRepositoryException
+     */
+    public function getAsArray(string $key): array
+    {
+        $value = $this->configRepository->get($key);
+
+        if (!is_array($value)) {
+            throw ConfigRepositoryException::notAnArray();
+        }
+
+        return $value;
+    }
 }
@@ -8,11 +8,16 @@ final class ConfigRepositoryException extends \Exception
 {
     public static function notAString(): self
     {
-        return new self('The config value is not a string');
+        return new self('The config value is not a string while it was expected to be');
     }
 
     public static function notABool(): self
     {
-        return new self('The config value is not a bool');
+        return new self('The config value is not a bool while it was expected to be');
+    }
+
+    public static function notAnArray(): self
+    {
+        return new self('The config value is not an array while it was expected to be');
     }
 }
@@ -52,7 +52,7 @@ public function handle(Request $request, \Closure $next): mixed
             );
 
             $userUuid = $token->claims()->get('sub');
-            $userName = $token->claims()->get('name');
+            $userName = $token->claims()->get('nickname');
             $userEmail = $token->claims()->get('email');
 
             UserAuthorizedEvent::dispatch(
@@ -86,6 +86,12 @@ private function handleExistingToken(
         Request $request,
         \Closure $next,
     ): mixed {
+        if ($token->isExpired(new \DateTimeImmutable())) {
+            $this->tokenStorageAdaptor->forget();
+
+            return $this->responseFactory->redirectTo($request->getPathInfo());
+        }
+
         try {
             $openIDClient = $this->openIDConnectClientBuilder->execute();
             $stillActiveResponse = $openIDClient->introspectToken(
@@ -96,7 +102,7 @@ private function handleExistingToken(
             throw new HttpException(Response::HTTP_INTERNAL_SERVER_ERROR);
         }
 
-        if (!is_object($stillActiveResponse)) {
+        if (!\is_object($stillActiveResponse)) {
             $this->tokenStorageAdaptor->forget();
 
             return $this->responseFactory->redirectTo($request->getPathInfo());
Original file line number	Diff line number	Diff line change
`@@ -41,6 +41,8 @@ public function execute(): OpenIDConnectClient`
`41`	`41`	`url: rtrim($appUrl, '/') . $this->configRepository->getAsString('oidc.client.redirect_url'),`
`42`	`42`	`);`
`43`	`43`
	`44`	`+ $openIDClient->addScope($this->configRepository->getAsArray('oidc.client.scopes'));`
	`45`	`+`
`44`	`46`	`return $openIDClient;`
`45`	`47`	`}`
`46`	`48`
Original file line number	Diff line number	Diff line change
`@@ -17,16 +17,25 @@ public function __construct(`
`17`	`17`	`) {`
`18`	`18`	`}`
`19`	`19`
	`20`	`+ /**`
	`21`	`+ * @codeCoverageIgnore`
	`22`	`+ */`
`20`	`23`	`public function getUuid(): string`
`21`	`24`	`{`
`22`	`25`	`return $this->uuid;`
`23`	`26`	`}`
`24`	`27`
	`28`	`+ /**`
	`29`	`+ * @codeCoverageIgnore`
	`30`	`+ */`
`25`	`31`	`public function getName(): string`
`26`	`32`	`{`
`27`	`33`	`return $this->name;`
`28`	`34`	`}`
`29`	`35`
	`36`	`+ /**`
	`37`	`+ * @codeCoverageIgnore`
	`38`	`+ */`
`30`	`39`	`public function getEmail(): string`
`31`	`40`	`{`
`32`	`41`	`return $this->email;`
Original file line number	Diff line number	Diff line change
`@@ -8,11 +8,16 @@ final class ConfigRepositoryException extends \Exception`
`8`	`8`	`{`
`9`	`9`	`public static function notAString(): self`
`10`	`10`	`{`
`11`		`- return new self('The config value is not a string');`
	`11`	`+ return new self('The config value is not a string while it was expected to be');`
`12`	`12`	`}`
`13`	`13`
`14`	`14`	`public static function notABool(): self`
`15`	`15`	`{`
`16`		`- return new self('The config value is not a bool');`
	`16`	`+ return new self('The config value is not a bool while it was expected to be');`
	`17`	`+ }`
	`18`	`+`
	`19`	`+ public static function notAnArray(): self`
	`20`	`+ {`
	`21`	`+ return new self('The config value is not an array while it was expected to be');`
`17`	`22`	`}`
`18`	`23`	`}`