Issue #3295808 by akshaydalvi212, dipesh_goswami, szeidler: PHPCS Drupal...

* Go to the Fotoweb module configuration (`/admin/config/media/media-fotoweb`)

* Fill in your `Fotoweb server` and OAuth 2.0 credentials

You will need to create a "Non-interactive/script" application and another one for the "Web Application / API -> Selection Widget". The first one

will be used for backend actions like asset imports and the selection widget will make it possible for users to

authenticate with the Fotoweb Selection Widget.

You will need to create a "Non-interactive/script" application and another one

for the "Web Application / API -> Selection Widget". The first one will be used

for backend actions like asset imports and the selection widget will make it

possible for users to authenticate with the Fotoweb Selection Widget.

## File storage types

Legacy

-------------

The module supports the legacy "Full API Key" authentication method for on-premise installations. This authentication

method is deprecated, but can be configured on the configuration page.

The module supports the legacy "Full API Key" authentication method for

on-premise installations. This authentication method is deprecated, but

can be configured on the configuration page.

## Fotoweb Single Sign-on (Legacy)

  }

}

/**

 * Enable the legacy "Full API Key" authentication method for existing pages.

 */

namespace Drupal\media_fotoweb\Controller;

use Drupal\Core\TempStore\PrivateTempStoreFactory;

use Drupal\Core\Controller\ControllerBase;

use Drupal\Core\Routing\TrustedRedirectResponse;

use Drupal\Core\Url;

use Drupal\language\Entity\ConfigurableLanguage;

use kamermans\OAuth2\Exception\OAuth2Exception;

use Drupal\media_fotoweb\FotowebClient;

use Symfony\Component\DependencyInjection\ContainerInterface;

use Symfony\Component\HttpFoundation\RedirectResponse;

use Symfony\Component\HttpFoundation\Request;

/**

 * AuthenticationController for authentication of user in fotoweb.

 */

class AuthenticationController extends ControllerBase {

  /**

   * The tempstore service.

   *

   * @var \Drupal\Core\TempStore\PrivateTempStoreFactory

   */

  protected $tempStore;

  /**

   * The client service.

   *

   * @var Drupal\media_fotoweb\FotowebClient

   */

  protected $client;

  /**

   * User token service.

   *

   * @var Drupal\media_fotoweb\OAuth2\Persistence\UserTokenPersistence

   */

  protected $userTokenPersistence;

  /**

   * Constructs a service instance.

   *

   * @param \Drupal\Core\TempStore\PrivateTempStoreFactory $temp_store

   *   The tempstore service.

   * @param \Drupal\media_fotoweb\FotowebClient $client

   *   The client service.

   * @param \Drupal\media_fotoweb\OAuth2\Persistence\UserTokenPersistence $user_token_persistence

   *   The user token persistence service.

   */

  public function __construct(PrivateTempStoreFactory $temp_store, FotowebClient $client, UserTokenPersistence $user_token_persistence) {

    $this->tempStore = $temp_store;

    $this->client = $client;

    $this->userTokenPersistence = $user_token_persistence;

  }

  /**

   * {@inheritdoc}

   */

  public static function create(ContainerInterface $container) {

    return new static(

      $container->get('tempstore.private'),

      $container->get('media_fotoweb.client'),

      $container->get('media_fotoweb.user_token_persistence')

    );

  }

  /**

   * Handles the oAuth2 user authentication.

   *

  public function authenticateUser(Request $request) {

    if ($code = $request->get('code')) {

      // Load in security verifiers.

      $tempstore = \Drupal::service('tempstore.private')->get('media_fotoweb');

      $tempstore = $this->tempStore->get('media_fotoweb');

      $state = $tempstore->get('state');

      $codeVerifier = $tempstore->get('code_verifier');

      // Make a token request using the code.

      /** @var \Drupal\media_fotoweb\FotowebClient $client */

      $client = \Drupal::service('media_fotoweb.client');

      $client = $this->client;

      $clientConfiguration = $client->getConfiguration();

      $clientConfiguration['grantType'] = 'authorization_code';

      $clientConfiguration['authorizationCode'] = $code;

   *   The response.

   */

  public function revokeAuthenticateUser(Request $request) {

    /** @var \Drupal\media_fotoweb\OAuth2\Persistence\UserTokenPersistence $tokenPersistence */

    $tokenPersistence = \Drupal::service('media_fotoweb.user_token_persistence');

    $tokenPersistence->deleteToken();

    $this->userTokenPersistence->deleteToken();

    $this->messenger()->addStatus($this->t('Your account got disconnected from Fotoware. Please reload the widget.'));

    return new RedirectResponse('/');

  }

    // Create a fake language for generating a redirect url without language

    // prefixes.

    $language = ConfigurableLanguage::createFromLangcode('und');

    $url = Url::fromRoute('media_fotoweb.oauth2_callback', [], ['absolute' => TRUE, 'language' => $language]);

    $url = Url::fromRoute('media_fotoweb.oauth2_callback', [], [

      'absolute' => TRUE,

      'language' => $language,

    ]);

    return $url->toString(TRUE)->getGeneratedUrl();

  }

   *

   * @return string

   *   The authorization URL.

   *

   * @throws \Exception

   */

  protected function getAuthorizationUrl() {

    $codeChallenge = $this->generatePkceCodeChallenge($codeVerifier);

    // Store verifiers in the user temp sore to be able to verify them.

    $tempstore = \Drupal::service('tempstore.private')->get('media_fotoweb');

    $tempstore = $this->tempStore->get('media_fotoweb');

    $tempstore->set('state', $state);

    $tempstore->set('code_verifier', $codeVerifier);

   *

   * @return string

   *   The verifier.

   *

   * @throws \Exception

   */

  protected function generatePkceCodeVerifier() {

   *   The code challenge.

   */

  protected function generatePkceCodeChallenge($codeVerifier) {

    $challengeBytes = hash('sha256', $codeVerifier, true);

    $challengeBytes = hash('sha256', $codeVerifier, TRUE);

    $codeChallenge = rtrim(strtr(base64_encode($challengeBytes), '+/', '-_'), '=');

    return $codeChallenge;

  }

use Drupal\Core\Ajax\CloseDialogCommand;

use Drupal\Core\Ajax\InvokeCommand;

use Drupal\Core\Config\ConfigFactoryInterface;

use Drupal\Core\Entity\ContentEntityFormInterface;

use Drupal\Core\Entity\Display\EntityFormDisplayInterface;

use Drupal\Core\Entity\EntityTypeManagerInterface;

use Drupal\Core\Form\FormBuilderInterface;

use Drupal\Core\Form\FormStateInterface;

        ],

      ],

      '#attributes' => [

        'class' => ['visually-hidden']

        'class' => ['visually-hidden'],

      ],

    ];

    return $actions;

  }

  /**

   * {@inheritdoc}

   */

use Drupal\Core\Entity\EntityFieldManagerInterface;

use Drupal\Core\Form\ConfigFormBase;

use Drupal\Core\Form\FormStateInterface;

use Drupal\Core\StringTranslation\StringTranslationTrait;

use Drupal\Core\Url;

use Drupal\media_fotoweb\FotowebClient;

use Drupal\media_fotoweb\ImageFetcherManager;

use Drupal\media_fotoweb\OAuth2\Persistence\ApiTokenPersistence;

use GuzzleHttp\Command\Exception\CommandException;

use GuzzleHttp\Exception\RequestException;

use Psr\Http\Message\ResponseInterface;

use Symfony\Component\DependencyInjection\ContainerInterface;

/**

 */

class FotowebSettingsForm extends ConfigFormBase {

  use StringTranslationTrait;

  /**

   * The entity field manager.

   *

   */

  protected $imageFetcherManager;

  /**

   * The Api Token Persistence.

   *

   * @var \Drupal\media_fotoweb\OAuth2\Persistence\ApiTokenPersistence

   */

  protected $apiTokenPersistence;

  /**

   * Constructs a FotowebSettingsForm object.

   *

   *   The Fotoweb client.

   * @param \Drupal\media_fotoweb\ImageFetcherManager $image_fetcher_manager

   *   The image fetcher manager.

   * @param \Drupal\media_fotoweb\OAuth2\Persistence\ApiTokenPersistence $api_token_persistence

   *   The api token persistence.

   */

  public function __construct(ConfigFactoryInterface $config_factory, EntityFieldManagerInterface $entity_field_manager, FotowebClient $fotoweb_client, ImageFetcherManager $image_fetcher_manager) {

  public function __construct(ConfigFactoryInterface $config_factory, EntityFieldManagerInterface $entity_field_manager, FotowebClient $fotoweb_client, ImageFetcherManager $image_fetcher_manager, ApiTokenPersistence $api_token_persistence) {

    parent::__construct($config_factory);

    $this->entityFieldManager = $entity_field_manager;

    $this->fotowebClient = $fotoweb_client;

    $this->imageFetcherManager = $image_fetcher_manager;

    $this->apiTokenPersistence = $api_token_persistence;

  }

  /**

      $container->get('config.factory'),

      $container->get('entity_field.manager'),

      $container->get('media_fotoweb.client'),

      $container->get('plugin.manager.media_fotoweb.image_fetcher')

      $container->get('plugin.manager.media_fotoweb.image_fetcher'),

      $container->get('media_fotoweb.api_token_persistence')

    );

  }

    $form['selection_widget_client_id'] = [

      '#type' => 'textfield',

      '#title' => $this->t('Client ID (Selection Widget)'),

      '#description' => $this->t('The Client ID for a Fotoweb <a href=":url" target="_blank">Web API Selection Widget application</a>. You will need to specify a callback URL: <em>:callback_url</em>', [':url' => 'https://learn.fotoware.com/Integrations_and_APIs/Authorizing_applications_using_OAuth/02_Application_registration_using_OAuth_2.0', ':callback_url' => 'https://yoursite.com/media-fotoweb/oauth2/selection/callback']),

      '#description' => $this->t(

        'The Client ID for a Fotoweb 

        <a href=":url" target="_blank">Web API Selection Widget application</a>. 

        You will need to specify a callback URL: <em>:callback_url</em>',

        [

          ':url' =>

          'https://learn.fotoware.com/Integrations_and_APIs/Authorizing_applications_using_OAuth/02_Application_registration_using_OAuth_2.0',

          ':callback_url' => 'https://yoursite.com/media-fotoweb/oauth2/selection/callback',

        ]),

      '#default_value' => $config->get('selection_widget_client_id'),

      '#states' => [

        'visible' => [

    catch (CommandException $e) {

      $response = $e->getResponse();

      if ($response && $response->getStatusCode() == 401) {

        $errorMessage = t('The request has not been authorized. Please authenticate the API below.');

        $errorMessage = $this->t('The request has not been authorized. Please authenticate the API below.');

      }

      else {

        $errorMessage = $e->getMessage();

   *   An associative array containing the structure of the form.

   * @param \Drupal\Core\Form\FormStateInterface $form_state

   *   The current state of the form.

   *

   * @return void

   */

  public function submitRevokeApiAuthorize(array &$form, FormStateInterface $form_state) {

    /** @var \Drupal\media_fotoweb\OAuth2\Persistence\ApiTokenPersistence $tokenPersistence */

    $tokenPersistence = \Drupal::service('media_fotoweb.api_token_persistence');

    $tokenPersistence->deleteToken();

    $this->apiTokenPersistence->deleteToken();

    $this->messenger()->addStatus($this->t('Your site got disconnected from Fotoware.'));

  }