Add support for user session tokens

pterk · pterk · commit eb4c1b153354 · 2018-10-08T16:02:05.000+02:00
diff --git a/lib/GetStream/Stream/Client.php b/lib/GetStream/Stream/Client.php
@@ -103,6 +103,19 @@ public function setLocation($location)
         $this->location = $location;
     }
 
+    /**
+     * @param  string $user_id
+     * @param  array $extra_data
+     * @return string
+     */
+    public function createUserSessionToken($user_id, array $extra_data=null)
+    {
+        if(is_null($extra_data)){
+            $extra_data = array();
+        }
+        return $this->signer->jwtUserSessionToken($user_id, $extra_data);
+    }
+
     /**
      * @param  BaseFeed $feed
      * @param  string $resource
diff --git a/lib/GetStream/Stream/Signer.php b/lib/GetStream/Stream/Signer.php
@@ -79,4 +79,21 @@ public function jwtScopeToken($feedId, $resource, $action)
 
         return JWT::encode($payload, $this->api_secret, 'HS256');
     }
+
+    /**
+     * @param  string $user_id
+     * @param  string $extra_data
+     * @return string
+     */
+    public function jwtUserSessionToken(string $user_id, array $extra_data)
+    {
+        $payload = [
+            'user_id'   => $user_id,
+        ];
+        foreach($extra_data as $name => $value){
+            $payload[$name] = $value;
+        }
+        return JWT::encode($payload, $this->api_secret, 'HS256');
+    }
+
 }
diff --git a/tests/integration/FeedTest.php b/tests/integration/FeedTest.php
@@ -4,6 +4,7 @@
 
 use DateTime;
 use DateTimeZone;
+use Firebase\JWT\JWT;
 use GetStream\Stream\Client;
 use GetStream\Stream\Feed;
 use PHPUnit\Framework\TestCase;
@@ -188,6 +189,18 @@ public function testReadonlyToken()
         $this->assertStringStartsWith('eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJhY3Rpb24iOiJyZWFkI', $token);
     }
 
+    public function testUserSessionToken()
+    {
+        $token = $this->client->createUserSessionToken('user');
+        $this->assertStringStartsWith('eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidXNlci', $token);
+        $payload = JWT::decode($token, getenv('STREAM_API_SECRET'), array('HS256'));
+        $this->assertSame($payload->user_id, 'user');
+        $token = $this->client->createUserSessionToken('user', array('client'=>'PHP'));
+        $this->assertStringStartsWith('eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ1c2VyX2lkIjoidXNlci', $token);
+        $payload = JWT::decode($token, getenv('STREAM_API_SECRET'), array('HS256'));
+        $this->assertSame($payload->client, 'PHP');
+    }
+
     public function testAddActivity()
     {
         $activity_data = ['actor' => 1, 'verb' => 'tweet', 'object' => 1];
