Fix bug caused by passing an array as a string in Resource controller

In order to create this fix, the ResourceController has been changed to extend the ServerController, so it has access to the ServerConfig.
The ServerConfig has a getAllowedOrigins method added that returns all allowed origins it is aware of.
In order to facilitate this, some cleanup was also needed for the ServerController.

Author: Potherca

src/Controller/ResourceController.php

@@ -2,28 +2,26 @@
 
 namespace Pdsinterop\Solid\Controller;
 
+use Pdsinterop\Solid\Auth\Utils\DPop;
+use Pdsinterop\Solid\Auth\WAC;
 use Pdsinterop\Solid\Resources\Server;
-use Pdsinterop\Solid\Controller\AbstractController;
 use Psr\Http\Message\ResponseInterface as Response;
 use Psr\Http\Message\ServerRequestInterface as Request;
 
-use Pdsinterop\Solid\Auth\Utils\DPop as DPop;
-use Pdsinterop\Solid\Auth\WAC as WAC;
-
-class ResourceController extends AbstractController
+class ResourceController extends ServerController
 {
     ////////////////////////////// CLASS PROPERTIES \\\\\\\\\\\\\\\\\\\\\\\\\\\\
 
     /** @var Server */
-	private $baseUrl;
     private $server;
 	private $DPop;
 	private $WAC;
     //////////////////////////////// PUBLIC API \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\
 
     final public function __construct(Server $server)
     {
-		$this->baseUrl = isset($_ENV['SERVER_ROOT']) ? $_ENV['SERVER_ROOT'] : "https://localhost";
+        parent::__construct();
+
         $this->server = $server;
 		$this->DPop = new DPop();
 		$this->WAC = new WAC($server->getFilesystem());
@@ -44,11 +42,12 @@ final public function __invoke(Request $request, array $args) : Response
             return $this->server->getResponse()->withStatus(409, 'Invalid token');
 		}
 
+        $allowedOrigins = $this->config->getAllowedOrigins();
         $origins = $request->getHeader('Origin');
 
         $isAllowed = false;
         foreach ($origins as $origin) {
-            if ($this->WAC->isAllowed($request, $webId, $origin)) {
+            if ($this->WAC->isAllowed($request, $webId, $origin, $allowedOrigins)) {
                 $isAllowed = true;
                 break;
             }

src/Controller/ServerController.php

@@ -2,19 +2,20 @@
 
 namespace Pdsinterop\Solid\Controller;
 
-use Psr\Http\Message\ResponseInterface;
-use Psr\Http\Message\ServerRequestInterface;
-
 abstract class ServerController extends AbstractController
-{    
-//    public $config;
-//	public $baseUrl;
-//	public $authServerConfig;
-//	public $authServerFactory;
-//	public $tokenGenerator;
-    public function __construct() {
-        // parent::__construct();
-        require_once(__DIR__.'/../../vendor/autoload.php');
+{
+    protected $authServerConfig;
+    protected $authServerFactory;
+    protected $baseUrl;
+    protected $config;
+    protected $openIdConfiguration;
+    protected $tokenGenerator;
+    protected $userId;
+
+    private $keys = [];
+
+    public function __construct()
+    {
 		$this->config = new \Pdsinterop\Solid\ServerConfig(__DIR__.'/../../config/');
 
 		$this->authServerConfig = $this->createAuthServerConfig(); 

src/ServerConfig.php

@@ -1,127 +1,143 @@
-<?php declare(strict_types=1);
-
-namespace Pdsinterop\Solid;
-
-class ServerConfig {
-	private $path;
-	private $serverConfig;
-	private $userConfig;
-	
-	public function __construct($path) {
-		$this->path = $path;
-		$this->serverConfigFile = $this->path . "serverConfig.json";
-		$this->userConfigFile = $this->path . "user.json";
-		$this->serverConfig = $this->loadConfig();
-		$this->userConfig = $this->loadUserConfig();
-		
-	}
-	private function loadConfig() {
-		if (!file_exists($this->serverConfigFile)) {
-			$keySet = $this->generateKeySet();
-			$this->serverConfig = array(
-				"encryptionKey" => $keySet['encryptionKey'],
-				"privateKey" => $keySet['privateKey']
-			);
-			$this->saveConfig();
-		}
-		return json_decode(file_get_contents($this->serverConfigFile), true);
-	}
-	private function saveConfig() {
-		file_put_contents($this->serverConfigFile, json_encode($this->serverConfig, JSON_PRETTY_PRINT));
-	}
-	private function loadUserConfig() {
-		if (!file_exists($this->userConfigFile)) {
-			$this->userConfig = array(
-				"allowedClients" => array()
-			);
-			$this->saveUserConfig();
-		}
-		return json_decode(file_get_contents($this->userConfigFile), true);
-	}
-	private function saveUserConfig() {
-		file_put_contents($this->userConfigFile, json_encode($this->userConfig, JSON_PRETTY_PRINT));
-	}
-	
-	/* Server data */
-	public function getPrivateKey() {
-		return $this->serverConfig['privateKey'];
-	}
-	
-	public function getEncryptionKey() {
-		return $this->serverConfig['encryptionKey'];
-	}
-
-	public function getClientConfigById($clientId) {
-		$clients = (array)$this->serverConfig['clients'];
-
-		if (array_key_exists($clientId, $clients)) {
-			return $clients[$clientId];
-		}
-		return null;
-	}
-
-	public function saveClientConfig($clientConfig) {
-		$clientId = uuidv4();
-		$this->serverConfig['clients'][$clientId] = $clientConfig;
-		$this->saveConfig();
-		return $clientId;
-	}
-	
-	public function saveClientRegistration($origin, $clientData) {
-		$originHash = md5($origin);
-		$existingRegistration = $this->getClientRegistration($originHash);
-		if ($existingRegistration && isset($existingRegistration['client_name'])) {
-			return $originHash;
-		}
-
-		$clientData['client_name'] = $origin;
-		$clientData['client_secret'] = md5(random_bytes(32));
-		$this->serverConfig['client-' . $originHash] = $clientData;
-		$this->saveConfig();
-		return $originHash;
-	}
-
-	public function getClientRegistration($clientId) {
-		if (isset($this->serverConfig['client-' . $clientId])) {
-			return $this->serverConfig['client-' . $clientId];
-		} else {
-			return array();
-		}
-	}
-
-	/* User specific data */
-	public function getAllowedClients($userId) {
-		return $this->userConfig['allowedClients'];
-	}
-
-	public function addAllowedClient($userId, $clientId) {
-		$this->userConfig['allowedClients'][] = $clientId;
-		$this->userConfig['allowedClients'] = array_unique($this->userConfig['allowedClients']);
-		$this->saveUserConfig();
-	}
-	public function removeAllowedClient($userId, $clientId) {
-		$this->userConfig['allowedClients'] = array_diff($this->userConfig['allowedClients'], array($clientId));
-		$this->saveUserConfig();
-	}
-
-	/* Helper functions */		
-	private function generateKeySet() {
-		$config = array(
-			"digest_alg" => "sha256",
-			"private_key_bits" => 2048,
-			"private_key_type" => OPENSSL_KEYTYPE_RSA,
-		);
-		// Create the private and public key
-		$key = openssl_pkey_new($config);
-
-		// Extract the private key from $key to $privateKey
-		openssl_pkey_export($key, $privateKey);
-		$encryptionKey = base64_encode(random_bytes(32));
-		$result = array(
-			"privateKey" => $privateKey,
-			"encryptionKey" => $encryptionKey
-		);
-		return $result;
-	}
-}
-?>
+<?php declare(strict_types=1);
+
+namespace Pdsinterop\Solid;
+
+class ServerConfig {
+	private $path;
+	private $serverConfig;
+	private $userConfig;
+	
+	public function __construct($path) {
+		$this->path = $path;
+		$this->serverConfigFile = $this->path . "serverConfig.json";
+		$this->userConfigFile = $this->path . "user.json";
+		$this->serverConfig = $this->loadConfig();
+		$this->userConfig = $this->loadUserConfig();
+		
+	}
+
+    public function getAllowedOrigins()
+    {
+        $allowedOrigins = [];
+
+        $serverConfig = $this->serverConfig;
+        foreach ($serverConfig as $value) {
+            if (isset($value['redirect_uris'])) {
+                foreach($value['redirect_uris'] as $url) {
+                    $allowedOrigins[] = parse_url($url)['host'];
+                }
+            }
+        }
+
+        return array_unique($allowedOrigins);
+    }
+
+	private function loadConfig() {
+		if (!file_exists($this->serverConfigFile)) {
+			$keySet = $this->generateKeySet();
+			$this->serverConfig = array(
+				"encryptionKey" => $keySet['encryptionKey'],
+				"privateKey" => $keySet['privateKey']
+			);
+			$this->saveConfig();
+		}
+		return json_decode(file_get_contents($this->serverConfigFile), true);
+	}
+	private function saveConfig() {
+		file_put_contents($this->serverConfigFile, json_encode($this->serverConfig, JSON_PRETTY_PRINT));
+	}
+	private function loadUserConfig() {
+		if (!file_exists($this->userConfigFile)) {
+			$this->userConfig = array(
+				"allowedClients" => array()
+			);
+			$this->saveUserConfig();
+		}
+		return json_decode(file_get_contents($this->userConfigFile), true);
+	}
+	private function saveUserConfig() {
+		file_put_contents($this->userConfigFile, json_encode($this->userConfig, JSON_PRETTY_PRINT));
+	}
+	
+	/* Server data */
+	public function getPrivateKey() {
+		return $this->serverConfig['privateKey'];
+	}
+	
+	public function getEncryptionKey() {
+		return $this->serverConfig['encryptionKey'];
+	}
+
+	public function getClientConfigById($clientId) {
+		$clients = (array)$this->serverConfig['clients'];
+
+		if (array_key_exists($clientId, $clients)) {
+			return $clients[$clientId];
+		}
+		return null;
+	}
+
+	public function saveClientConfig($clientConfig) {
+		$clientId = uuidv4();
+		$this->serverConfig['clients'][$clientId] = $clientConfig;
+		$this->saveConfig();
+		return $clientId;
+	}
+	
+	public function saveClientRegistration($origin, $clientData) {
+		$originHash = md5($origin);
+		$existingRegistration = $this->getClientRegistration($originHash);
+		if ($existingRegistration && isset($existingRegistration['client_name'])) {
+			return $originHash;
+		}
+
+		$clientData['client_name'] = $origin;
+		$clientData['client_secret'] = md5(random_bytes(32));
+		$this->serverConfig['client-' . $originHash] = $clientData;
+		$this->saveConfig();
+		return $originHash;
+	}
+
+	public function getClientRegistration($clientId) {
+		if (isset($this->serverConfig['client-' . $clientId])) {
+			return $this->serverConfig['client-' . $clientId];
+		} else {
+			return array();
+		}
+	}
+
+	/* User specific data */
+	public function getAllowedClients($userId) {
+		return $this->userConfig['allowedClients'];
+	}
+
+	public function addAllowedClient($userId, $clientId) {
+		$this->userConfig['allowedClients'][] = $clientId;
+		$this->userConfig['allowedClients'] = array_unique($this->userConfig['allowedClients']);
+		$this->saveUserConfig();
+	}
+	public function removeAllowedClient($userId, $clientId) {
+		$this->userConfig['allowedClients'] = array_diff($this->userConfig['allowedClients'], array($clientId));
+		$this->saveUserConfig();
+	}
+
+	/* Helper functions */		
+	private function generateKeySet() {
+		$config = array(
+			"digest_alg" => "sha256",
+			"private_key_bits" => 2048,
+			"private_key_type" => OPENSSL_KEYTYPE_RSA,
+		);
+		// Create the private and public key
+		$key = openssl_pkey_new($config);
+
+		// Extract the private key from $key to $privateKey
+		openssl_pkey_export($key, $privateKey);
+		$encryptionKey = base64_encode(random_bytes(32));
+		$result = array(
+			"privateKey" => $privateKey,
+			"encryptionKey" => $encryptionKey
+		);
+		return $result;
+	}
+}