Merge pull request #295 from moririnson/feature/access-token-v21

moririnson · web-flow · commit 221f4e456fc1 · 2020-07-10T12:57:00.000+09:00
channel access token v21
diff --git a/src/LINEBot.php b/src/LINEBot.php
@@ -751,6 +751,70 @@ public function revokeChannelAccessToken($channelAccessToken)
         );
     }
 
+    /**
+     * Create channel access token v2.1
+     *
+     * You can issue up to 30 tokens.
+     * If you reach the maximum limit, additional requests of issuing channel access tokens are blocked.
+     *
+     * @see https://developers.line.biz/en/docs/messaging-api/generate-json-web-token/#generate_jwt
+     * @param string $jwt
+     * @return Response
+     */
+    public function createChannelAccessToken21($jwt)
+    {
+        $url = $this->endpointBase . '/oauth2/v2.1/token';
+        return $this->httpClient->post(
+            $url,
+            [
+                'grant_type' => 'client_credentials',
+                'client_assertion_type' => 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',
+                'client_assertion' => $jwt,
+            ],
+            ['Content-Type: application/x-www-form-urlencoded']
+        );
+    }
+
+    /**
+     * Revoke channel access token v2.1
+     *
+     * @param string $channelId
+     * @param string $channelSecret
+     * @param string $channelAccessToken
+     * @return Response
+     */
+    public function revokeChannelAccessToken21($channelId, $channelSecret, $channelAccessToken)
+    {
+        $url = $this->endpointBase . '/oauth2/v2.1/revoke';
+        return $this->httpClient->post(
+            $url,
+            [
+                'client_id' => $channelId,
+                'client_secret' => $channelSecret,
+                'access_token' => $channelAccessToken,
+            ],
+            ['Content-Type: application/x-www-form-urlencoded']
+        );
+    }
+
+    /**
+     * Get all valid channel access token key IDs v2.1
+     *
+     * @param string $jwt
+     * @return Response
+     */
+    public function getChannelAccessToken21Keys($jwt)
+    {
+        $url = $this->endpointBase . '/oauth2/v2.1/tokens/kid';
+        return $this->httpClient->get(
+            $url,
+            [
+                'client_assertion_type' => 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',
+                'client_assertion' => $jwt,
+            ]
+        );
+    }
+
     /**
      * Send Narrowcast message.
      *
diff --git a/tests/LINEBot/OauthTest.php b/tests/LINEBot/OauthTest.php
@@ -75,4 +75,102 @@ public function testRevokeChannelAccessToken()
         $this->assertTrue($res->isSucceeded());
         $this->assertEquals([], $res->getJSONDecodedBody());
     }
+
+    public function testCreateChannelAccessToken21()
+    {
+        $mock = function ($testRunner, $httpMethod, $url, $data, $header) {
+            /** @var \PHPUnit\Framework\TestCase $testRunner */
+            $testRunner->assertEquals('POST', $httpMethod);
+            $testRunner->assertEquals('https://api.line.me/oauth2/v2.1/token', $url);
+            $testRunner->assertEquals([
+                'grant_type' => 'client_credentials',
+                'client_assertion_type' => 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',
+                'client_assertion' => 'JWT',
+            ], $data);
+            $testRunner->assertEquals(['Content-Type: application/x-www-form-urlencoded'], $header);
+
+            return [
+                'access_token' => 'W1TeHCgfH2Liwa.....',
+                'expires_in' => 2592000,
+                'token_type' => 'Bearer',
+                'key_id' => 'sDTOzw5wIfxxxxPEzcmeQA',
+            ];
+        };
+        $bot = new LINEBot(new DummyHttpClient($this, $mock), ['channelSecret' => 'CHANNEL-SECRET']);
+
+        $res = $bot->createChannelAccessToken21('JWT');
+
+        $this->assertEquals(200, $res->getHTTPStatus());
+        $this->assertTrue($res->isSucceeded());
+
+        $data = $res->getJSONDecodedBody();
+        $this->assertEquals('W1TeHCgfH2Liwa.....', $data['access_token']);
+        $this->assertEquals(2592000, $data['expires_in']);
+        $this->assertEquals('Bearer', $data['token_type']);
+        $this->assertEquals('sDTOzw5wIfxxxxPEzcmeQA', $data['key_id']);
+    }
+
+    public function testRevokeChannelAccessToken21()
+    {
+        $mock = function ($testRunner, $httpMethod, $url, $data, $header) {
+            /** @var \PHPUnit\Framework\TestCase $testRunner */
+            $testRunner->assertEquals('POST', $httpMethod);
+            $testRunner->assertEquals('https://api.line.me/oauth2/v2.1/revoke', $url);
+            $testRunner->assertEquals([
+                'client_id' => 'CHANNEL-ID',
+                'client_secret' => 'CHANNEL-SECRET',
+                'access_token' => 'CHANNEL-ACCESS-TOKEN'
+            ], $data);
+            $testRunner->assertEquals(['Content-Type: application/x-www-form-urlencoded'], $header);
+
+            return [];
+        };
+        $bot = new LINEBot(new DummyHttpClient($this, $mock), ['channelSecret' => 'CHANNEL-SECRET']);
+
+        $res = $bot->revokeChannelAccessToken21('CHANNEL-ID', 'CHANNEL-SECRET', 'CHANNEL-ACCESS-TOKEN');
+
+        $this->assertEquals(200, $res->getHTTPStatus());
+        $this->assertTrue($res->isSucceeded());
+        $this->assertEquals([], $res->getJSONDecodedBody());
+    }
+
+    public function testGetChannelAccessToken21Keys1()
+    {
+        $mock = function ($testRunner, $httpMethod, $url, $data) {
+            /** @var \PHPUnit\Framework\TestCase $testRunner */
+            $testRunner->assertEquals('GET', $httpMethod);
+            $testRunner->assertEquals('https://api.line.me/oauth2/v2.1/tokens/kid', $url);
+            $testRunner->assertEquals([
+                'client_assertion_type' => 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer',
+                'client_assertion' => 'JWT',
+            ], $data);
+
+            return [
+                'key_ids' => [
+                    'U_gdnFYKTWRxxxxDVZexGg',
+                    'sDTOzw5wIfWxxxxzcmeQA',
+                    '73hDyp3PxGfxxxxD6U5qYA',
+                    'FHGanaP79smDxxxxyPrVw',
+                    'CguB-0kxxxxdSM3A5Q_UtQ',
+                    'G82YP96jhHwyKSxxxx7IFA',
+                ]
+            ];
+        };
+        $bot = new LINEBot(new DummyHttpClient($this, $mock), ['channelSecret' => 'CHANNEL-SECRET']);
+
+        $res = $bot->getChannelAccessToken21Keys('JWT');
+
+        $this->assertEquals(200, $res->getHTTPStatus());
+        $this->assertTrue($res->isSucceeded());
+
+        $data = $res->getJSONDecodedBody();
+        $this->assertEquals([
+            'U_gdnFYKTWRxxxxDVZexGg',
+            'sDTOzw5wIfWxxxxzcmeQA',
+            '73hDyp3PxGfxxxxD6U5qYA',
+            'FHGanaP79smDxxxxyPrVw',
+            'CguB-0kxxxxdSM3A5Q_UtQ',
+            'G82YP96jhHwyKSxxxx7IFA',
+        ], $data['key_ids']);
+    }
 }
