Startseite Erkunden Hilfe
Registrieren Anmelden
TooEasy
/
backend-php
3
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 898fa1b989
Branches Tags
backend-php
/
controllers
/
B3TokenController.php

B3TokenController.php 2.9 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. <?php
    2. 

  2. 

  3. namespace Controllers;
    4. 

  4. 

  5. use Libs\ResponseLib;
    6. 

  6. use Psr\Http\Message\ServerRequestInterface;
    7. 

  7. use React\Http\Message\Response;
    8. 

  8. 

  9. class B3TokenController
    10. 

  10. {
    11. 

  11.     public function __invoke(ServerRequestInterface $request)
    12. 

  12.     {
    13. 

  13.         $b3Url = $_ENV['B3_URL'] ?? null;
    14. 

  14.         $clientId = $_ENV['CLIENT_ID'] ?? null;
    15. 

  15.         $clientSecret = $_ENV['CLIENT_SECRET'] ?? null;
    16. 

  16.         $grantType = $_ENV['GRANT_TYPE'] ?? 'client_credentials';
    17. 

  17.         $certPass = $_ENV['CERT_PASS'] ?? null;
    18. 

  18. 

  19.         if (!$b3Url || !$grantType || !$clientId || !$clientSecret) {
    20. 

  20.             return ResponseLib::sendFail('Missing required env vars: B3_URL, GRANT_TYPE, CLIENT_ID, CLIENT_SECRET', [], 'E_VALIDATE')->withStatus(500);
    21. 

  21.         }
    22. 

  22. 

  23.         $certPath = dirname(__DIR__) . DIRECTORY_SEPARATOR . '319245319-320109623_PROD.cer';
    24. 

  24.         $keyPath  = dirname(__DIR__) . DIRECTORY_SEPARATOR . '319245319-320109623_PROD.key';
    25. 

  25.         if (!file_exists($certPath) || !file_exists($keyPath)) {
    26. 

  26.             return ResponseLib::sendFail('Client certificate or key not found', ['cert' => $certPath, 'key' => $keyPath], 'E_INTERNAL')->withStatus(500);
    27. 

  27.         }
    28. 

  28. 

  29.         // Send grant_type + client credentials in body in the same order as the working curl
    30. 

  30.         $postFields = 'grant_type=' . ($grantType);
    31. 

  31. 

  32.         $ch = curl_init($b3Url);
    33. 

  33.         curl_setopt($ch, CURLOPT_POST, true);
    34. 

  34.         $headers = [
    35. 

  35.             'Content-Type: application/x-www-form-urlencoded',
    36. 

  36.             'Accept: application/json',
    37. 

  37.         ];
    38. 

  38.         curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
    39. 

  39.         curl_setopt($ch, CURLOPT_POSTFIELDS, $postFields);
    40. 

  40.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    41. 

  41. 

  42.         // mTLS client certificate
    43. 

  43.         curl_setopt($ch, CURLOPT_SSLCERT, $certPath);
    44. 

  44.         curl_setopt($ch, CURLOPT_SSLCERTTYPE, 'PEM');
    45. 

  45.         curl_setopt($ch, CURLOPT_SSLKEY, $keyPath);
    46. 

  46.         curl_setopt($ch, CURLOPT_SSLKEYTYPE, 'PEM');
    47. 

  47.         if ($certPass) {
    48. 

  48.             curl_setopt($ch, CURLOPT_SSLKEYPASSWD, $certPass);
    49. 

  49.         }
    50. 

  50.         // Keep verification enabled (recommended)
    51. 

  51.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, true);
    52. 

  52.         curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 2);
    53. 

  53. 

  54.         $responseBody = curl_exec($ch);
    55. 

  55.         $curlErrNo = curl_errno($ch);
    56. 

  56.         $curlErr = curl_error($ch);
    57. 

  57.         $httpCode = (int) curl_getinfo($ch, CURLINFO_HTTP_CODE);
    58. 

  58.         curl_close($ch);
    59. 

  59. 

  60.         if ($curlErrNo !== 0) {
    61. 

  61.             return ResponseLib::sendFail('cURL error during B3 token request', ['error' => $curlErr, 'code' => $curlErrNo], 'E_EXTERNAL')->withStatus(502);
    62. 

  62.         }
    63. 

  63. 

  64.         $decoded = json_decode($responseBody, true);
    65. 

  65.         if ($decoded === null) {
    66. 

  66.             // Not a JSON body; return raw text for troubleshooting
    67. 

  67.             return Response::json(['raw' => $responseBody, 'status' => $httpCode])->withStatus($httpCode ?: 502);
    68. 

  68.         }
    69. 

  69. 

  70.         return Response::json($decoded)->withStatus($httpCode ?: 200);
    71. 

  71.     }
    72. 

  72. }
    73.