Fix token issus

rockynox · rockynox · commit 52323edbd443 · 2026-05-27T18:06:29.000+02:00
diff --git a/src/Controllers/AdminController.php b/src/Controllers/AdminController.php
@@ -42,8 +42,9 @@ private function getInvalidTokenSlugs(array $streams): array
         $validSlugs = $this->accessTokenRepository->getValidOrganizationSlugs();
         $invalidSlugs = [];
         foreach ($streams as $stream) {
-            if ($stream->organization_slug && !in_array($stream->organization_slug, $validSlugs)) {
-                $invalidSlugs[] = $stream->organization_slug;
+            $slug = $stream->organization_slug;
+            if ($slug && !in_array(strtolower($slug), array_map('strtolower', $validSlugs))) {
+                $invalidSlugs[] = $slug;
             }
         }
         return array_unique($invalidSlugs);
diff --git a/src/Controllers/WidgetController.php b/src/Controllers/WidgetController.php
@@ -309,14 +309,23 @@ public function widgetEventDonation(Request $request, Response $response, array
             throw new Exception("Aucun widget trouvé pour le Event ID fourni.");
         }
 
-        $data = $this->fetchEventDonationData($eventGuid);
+        try {
+            $data = $this->fetchEventDonationData($eventGuid);
+            $currentAmount = $data['cacheData']['amount'];
+            $event = $data['event'];
+        } catch (Exception $e) {
+            error_log('[WidgetEventDonation] Erreur API init pour event ' . $eventGuid . ' : ' . $e->getMessage());
+            $event = $this->eventRepository->selectByGuid($eventGuid);
+            $cacheData = $this->widgetRepository->selectEventDonationWidgetCacheData($event);
+            $currentAmount = $cacheData['amount'] ?? 0;
+        }
 
         return $this->view->render($response, 'widget/donation.html.twig', [
             'donationGoalWidget' => $donationGoalWidget,
-            'currentAmount' => $data['cacheData']['amount'],
-            'goal' => $data['event']->goal,
+            'currentAmount' => $currentAmount,
+            'goal' => $event->goal,
             'event' => 1,
-            'isTestMode' => (bool) $data['event']->is_test_mode,
+            'isTestMode' => (bool) $event->is_test_mode,
         ]);
     }
 
@@ -362,21 +371,27 @@ public function widgetAlert(Request $request, Response $response, array $args):
                 ?? ['continuation_token' => ''];
 
             if (!$this->widgetRepository->isCacheFresh($cacheData, $this->cacheTtl)) {
-                $result = $this->apiWrapper->getAllOrders(
-                    $charityStream->organization_slug,
-                    $charityStream->form_slug,
-                    0,
-                    $cacheData['continuation_token'],
-                );
-
-                if ($cacheData['continuation_token'] !== $result['continuation_token']) {
-                    $this->widgetRepository->updateAlertWidgetCacheData($charityStream->guid, [
-                        'continuation_token' => $result['continuation_token'],
-                    ]);
-                } else {
-                    $this->widgetRepository->updateAlertWidgetCacheData($charityStream->guid, [
-                        'continuation_token' => $cacheData['continuation_token'],
-                    ]);
+                try {
+                    $result = $this->apiWrapper->getAllOrders(
+                        $charityStream->organization_slug,
+                        $charityStream->form_slug,
+                        0,
+                        $cacheData['continuation_token'],
+                    );
+
+                    if ($cacheData['continuation_token'] !== $result['continuation_token']) {
+                        $this->widgetRepository->updateAlertWidgetCacheData($charityStream->guid, [
+                            'continuation_token' => $result['continuation_token'],
+                        ]);
+                    } else {
+                        $this->widgetRepository->updateAlertWidgetCacheData($charityStream->guid, [
+                            'continuation_token' => $cacheData['continuation_token'],
+                        ]);
+                    }
+                } catch (Exception $e) {
+                    // Token invalide ou erreur API : on rend le widget avec le cache existant
+                    // Le polling (fetch) réessaiera automatiquement
+                    error_log('[WidgetAlert] Erreur API init pour stream ' . $charityStream->guid . ' : ' . $e->getMessage());
                 }
             }
         }
@@ -443,7 +458,12 @@ public function widgetAlertFetch(Request $request, Response $response, array $ar
 
             return $this->jsonResponse($response, $result);
         } catch (Exception $e) {
-            return $this->jsonError($response, 'Impossible de récupérer les commandes.', 500);
+            $status = $e->getCode() === 401 ? 401 : 500;
+            $message = $status === 401
+                ? 'Token invalide ou expiré pour ce stream. Reconnectez l\'association.'
+                : 'Impossible de récupérer les commandes.';
+            error_log('[WidgetAlertFetch] Erreur pour stream ' . $charityStreamId . ' : ' . $e->getMessage());
+            return $this->jsonError($response, $message, $status);
         }
     }
 
@@ -458,14 +478,24 @@ public function widgetDonation(Request $request, Response $response, array $args
             throw new Exception("Aucun widget trouvé pour le Charity Stream ID fourni.");
         }
 
-        $data = $this->fetchStreamDonationData($streamGuid);
+        try {
+            $data = $this->fetchStreamDonationData($streamGuid);
+            $currentAmount = $data['result']['amount'];
+            $stream = $data['stream'];
+        } catch (Exception $e) {
+            // Token invalide ou erreur API : on rend le widget avec le cache existant
+            error_log('[WidgetDonation] Erreur API init pour stream ' . $streamGuid . ' : ' . $e->getMessage());
+            $stream = $this->streamRepository->selectByGuid($streamGuid);
+            $cacheData = $this->widgetRepository->selectStreamDonationWidgetCacheData($stream);
+            $currentAmount = $cacheData['amount'] ?? 0;
+        }
 
         return $this->view->render($response, 'widget/donation.html.twig', [
             'donationGoalWidget' => $donationGoalWidget,
-            'currentAmount' => $data['result']['amount'],
-            'goal' => $data['stream']->goal,
+            'currentAmount' => $currentAmount,
+            'goal' => $stream->goal,
             'stream' => 1,
-            'isTestMode' => (bool) $data['stream']->is_test_mode,
+            'isTestMode' => (bool) $stream->is_test_mode,
         ]);
     }
 
@@ -485,7 +515,12 @@ public function widgetDonationFetch(Request $request, Response $response, array
             $data = $this->fetchStreamDonationData($charityStreamId);
             return $this->jsonResponse($response, $data['result']);
         } catch (Exception $e) {
-            return $this->jsonError($response, 'Impossible de récupérer les commandes.', 500);
+            $status = $e->getCode() === 401 ? 401 : 500;
+            $message = $status === 401
+                ? 'Token invalide ou expiré pour ce stream. Reconnectez l\'association.'
+                : 'Impossible de récupérer les commandes.';
+            error_log('[WidgetDonationFetch] Erreur pour stream ' . $charityStreamId . ' : ' . $e->getMessage());
+            return $this->jsonError($response, $message, $status);
         }
     }
 
@@ -500,17 +535,29 @@ public function widgetStreamCard(Request $request, Response $response, array $ar
             throw new Exception("Aucun widget card trouvé pour le Charity Stream ID fourni.");
         }
 
-        $data = $this->fetchStreamCardData($streamGuid);
+        try {
+            $data = $this->fetchStreamCardData($streamGuid);
+            $currentAmount = $data['amount'];
+            $donors = $data['donors'];
+            $stream = $data['stream'];
+        } catch (Exception $e) {
+            // Token invalide ou erreur API : on rend le widget avec le cache existant
+            error_log('[WidgetCard] Erreur API init pour stream ' . $streamGuid . ' : ' . $e->getMessage());
+            $stream = $this->streamRepository->selectByGuid($streamGuid);
+            $cacheData = $this->widgetRepository->selectStreamCardWidgetCacheData($stream);
+            $currentAmount = $cacheData['amount'] ?? 0;
+            $donors = $cacheData['donors'] ?? 0;
+        }
 
         return $this->view->render($response, 'widget/card.html.twig', [
             'cardWidget' => $cardWidget,
             'cardWidgetPictureUrl' => $cardWidget->image ? $this->fileManager->getPictureUrl($cardWidget->image) : null,
-            'currentAmount' => $data['amount'],
-            'donorCount' => $data['donors'],
-            'percentage' => $this->calculatePercentage($data['amount'], $data['stream']->goal),
-            'goal' => $data['stream']->goal ?: 1,
+            'currentAmount' => $currentAmount,
+            'donorCount' => $donors,
+            'percentage' => $this->calculatePercentage($currentAmount, $stream->goal),
+            'goal' => $stream->goal ?: 1,
             'stream' => 1,
-            'isTestMode' => (bool) $data['stream']->is_test_mode,
+            'isTestMode' => (bool) $stream->is_test_mode,
         ]);
     }
 
@@ -525,7 +572,12 @@ public function widgetStreamCardFetch(Request $request, Response $response, arra
             $data = $this->fetchStreamCardData($charityStreamId);
             return $this->jsonResponse($response, ['amount' => $data['amount'], 'donors' => $data['donors']]);
         } catch (Exception $e) {
-            return $this->jsonError($response, 'Impossible de récupérer les données.', 500);
+            $status = $e->getCode() === 401 ? 401 : 500;
+            $message = $status === 401
+                ? 'Token invalide ou expiré pour ce stream. Reconnectez l\'association.'
+                : 'Impossible de récupérer les données.';
+            error_log('[WidgetCardFetch] Erreur pour stream ' . $charityStreamId . ' : ' . $e->getMessage());
+            return $this->jsonError($response, $message, $status);
         }
     }
 
@@ -540,17 +592,28 @@ public function widgetEventCard(Request $request, Response $response, array $arg
             throw new Exception("Aucun widget card trouvé pour le Event ID fourni.");
         }
 
-        $data = $this->fetchEventCardData($eventGuid);
+        try {
+            $data = $this->fetchEventCardData($eventGuid);
+            $currentAmount = $data['amount'];
+            $donors = $data['donors'];
+            $event = $data['event'];
+        } catch (Exception $e) {
+            error_log('[WidgetEventCard] Erreur API init pour event ' . $eventGuid . ' : ' . $e->getMessage());
+            $event = $this->eventRepository->selectByGuid($eventGuid);
+            $cacheData = $this->widgetRepository->selectEventCardWidgetCacheData($event);
+            $currentAmount = $cacheData['amount'] ?? 0;
+            $donors = $cacheData['donors'] ?? 0;
+        }
 
         return $this->view->render($response, 'widget/card.html.twig', [
             'cardWidget' => $cardWidget,
             'cardWidgetPictureUrl' => $cardWidget->image ? $this->fileManager->getPictureUrl($cardWidget->image) : null,
-            'currentAmount' => $data['amount'],
-            'donorCount' => $data['donors'],
-            'percentage' => $this->calculatePercentage($data['amount'], $data['event']->goal),
-            'goal' => $data['event']->goal ?: 1,
+            'currentAmount' => $currentAmount,
+            'donorCount' => $donors,
+            'percentage' => $this->calculatePercentage($currentAmount, $event->goal),
+            'goal' => $event->goal ?: 1,
             'event' => 1,
-            'isTestMode' => (bool) $data['event']->is_test_mode,
+            'isTestMode' => (bool) $event->is_test_mode,
         ]);
     }
 
diff --git a/src/Services/ApiWrapper.php b/src/Services/ApiWrapper.php
@@ -151,7 +151,6 @@ public function refreshToken(string $refreshToken, string $organizationSlug): ?A
         $obj->organization_slug = $organizationSlug;
         $obj->access_token_expires_at = $accessTokenExpiresAt;
         $obj->refresh_token_expires_at = $refreshTokenExpiresAt;
-        $this->apiLogger->info('New organisation access token generated successfully. it will expires at ' . $obj->access_token_expires_at->format('Y-m-d H:i:s'));
         return $this->accessTokenRepository->update($obj);
     }
   
@@ -164,26 +163,21 @@ public function getGlobalAccessToken(): AccessToken
     {
         $tokenData = $this->accessTokenRepository->selectBySlug(null);
         
-        $expiration_access_date = $tokenData->access_token_expires_at ?? false;
-
-        // si null ou expiré, on génère un nouveau token global
-        $this->apiLogger->info('Check expiration for global access token');
-        if ($this->isExpired($expiration_access_date) || $tokenData == null) {
-            $this->apiLogger->debug('Global access token is invalid. Attempting to generate new one.');
+        if ($tokenData == null || $this->isExpired($tokenData->access_token_expires_at ?? false)) {
+            $this->apiLogger->info('Global access token absent ou expiré, génération d\'un nouveau.');
             $tokenData = $this->generateGlobalAccessToken();
         }
-        $this->apiLogger->info('Global access token is valid. Expiry time: ' . 
-        ($tokenData->access_token_expires_at instanceof DateTime ? $tokenData->access_token_expires_at->format('Y-m-d H:i:s') : $tokenData->access_token_expires_at));
 
         return $tokenData;
-        
     }
 
     /**
      * Récupère le token d'accès pour une organisation donnée.
+     * Gère les accès concurrents : si le refresh échoue (token déjà utilisé par un autre process),
+     * on re-lit la DB pour récupérer le token fraîchement rafraîchi par l'autre process.
      *
-     * @param string $organization_slug
-     * @return AccessToken|null
+     * @param string $organizationSlug
+     * @return AccessToken
      */
     public function getOrganizationAccessToken(string $organizationSlug): AccessToken
     {
@@ -194,39 +188,56 @@ public function getOrganizationAccessToken(string $organizationSlug): AccessToke
             throw new Exception('Aucun token trouvé pour l\'organisation: ' . $organizationSlug);
         }
 
-        $this->apiLogger->info('Check expiration for access token of organization_slug: ' . $organizationSlug);
-
         if ($this->isExpired($tokenData->refresh_token_expires_at ?? false)) {
-            $this->apiLogger->error('Refresh token is expired for organization_slug: ' . $organizationSlug);
+            $this->apiLogger->error('Refresh token expiré pour organization_slug: ' . $organizationSlug);
             throw new Exception('Invalid token data: refresh_token is expired');
         }
 
-        if ($this->isExpired($tokenData->access_token_expires_at ?? false)) {
-            $this->apiLogger->debug('Access token for organization_slug: ' . $organizationSlug . ' is expired. Attempting to refresh token.');
-            $tokenData = $this->refreshToken($tokenData->refresh_token, $organizationSlug);
-            $this->apiLogger->info('Access token refreshed for organization_slug: ' . $organizationSlug . '. New expiry time: ' .
-                ($tokenData->access_token_expires_at instanceof \DateTime ? $tokenData->access_token_expires_at->format('Y-m-d H:i:s') : $tokenData->access_token_expires_at));
+        // Access token encore valide → on l'utilise directement
+        if (!$this->isExpired($tokenData->access_token_expires_at ?? false)) {
+            return $tokenData;
         }
 
-        return $tokenData;
+        // Access token expiré — re-lire la DB au cas où un autre process vient de le rafraîchir
+        $freshToken = $this->accessTokenRepository->selectBySlug($organizationSlug);
+        if ($freshToken && !$this->isExpired($freshToken->access_token_expires_at ?? false)) {
+            $this->apiLogger->debug('Token déjà rafraîchi par un autre process pour ' . $organizationSlug);
+            return $freshToken;
+        }
+
+        // Toujours expiré → on rafraîchit
+        try {
+            $this->apiLogger->info('Rafraîchissement du token pour organization_slug: ' . $organizationSlug);
+            $tokenData = $this->refreshToken(($freshToken ?? $tokenData)->refresh_token, $organizationSlug);
+            $this->apiLogger->info('Token rafraîchi pour ' . $organizationSlug . '. Nouvelle expiration : ' .
+                ($tokenData->access_token_expires_at instanceof \DateTime
+                    ? $tokenData->access_token_expires_at->format('Y-m-d H:i:s')
+                    : $tokenData->access_token_expires_at));
+            return $tokenData;
+        } catch (Exception $e) {
+            // Le refresh a échoué — peut-être qu'un autre process a déjà utilisé le refresh token.
+            // On re-lit la DB une dernière fois.
+            $retryToken = $this->accessTokenRepository->selectBySlug($organizationSlug);
+            if ($retryToken && !$this->isExpired($retryToken->access_token_expires_at ?? false)) {
+                $this->apiLogger->info('Token récupéré après échec refresh (rafraîchi par un autre process) pour ' . $organizationSlug);
+                return $retryToken;
+            }
+
+            $this->apiLogger->error('Échec du refresh token pour ' . $organizationSlug . ' : ' . $e->getMessage());
+            throw $e;
+        }
     }
 
     /**
      * Vérifie si une date d'expiration est dépassée par rapport à la date actuelle.
-     *
-     * @param [type] $expirationDate
-     * @return boolean
      */
     private function isExpired(string|\DateTime|false $expirationDate): bool
     {
         if (!$expirationDate) {
             return true;
         }
         $expiration = is_string($expirationDate) ? new \DateTime($expirationDate) : $expirationDate;
-        $now = new \DateTime();
-        $this->apiLogger->debug('Current time: ' . $now->format('Y-m-d H:i:s'));
-        $this->apiLogger->debug('Token expiry time: ' . $expiration->format('Y-m-d H:i:s'));
-        return $expiration < $now;
+        return $expiration < new \DateTime();
     }
 
     /**
@@ -419,7 +430,14 @@ public function getAllOrders(string $organizationSlug, string $formSlug, int $cu
         try {
             $organizationAccessToken = $this->getOrganizationAccessToken($organizationSlug);
         } catch (Exception $e) {
-            throw new Exception('Votre token d\'accès pour l\'organisation ' . $organizationSlug . ' est expiré ou invalide. Veuillez vous reconnecter pour renouveler votre token.', 401, $e);
+            $isTokenError = str_contains($e->getMessage(), 'token')
+                || str_contains($e->getMessage(), 'Token')
+                || str_contains($e->getMessage(), 'expired')
+                || $e->getCode() === 401;
+            if ($isTokenError) {
+                throw new Exception('Votre token d\'accès pour l\'organisation ' . $organizationSlug . ' est expiré ou invalide. Veuillez vous reconnecter pour renouveler votre token.', 401, $e);
+            }
+            throw new Exception('Erreur lors de la récupération du token pour l\'organisation ' . $organizationSlug . ' : ' . $e->getMessage(), 0, $e);
         }
 
         if (!$organizationAccessToken || !isset($organizationAccessToken->access_token)) {

Original file line number	Diff line number	Diff line change
`@@ -42,8 +42,9 @@ private function getInvalidTokenSlugs(array $streams): array`
`42`	`42`	`$validSlugs = $this->accessTokenRepository->getValidOrganizationSlugs();`
`43`	`43`	`$invalidSlugs = [];`
`44`	`44`	`foreach ($streams as $stream) {`
`45`		`- if ($stream->organization_slug && !in_array($stream->organization_slug, $validSlugs)) {`
`46`		`- $invalidSlugs[] = $stream->organization_slug;`
	`45`	`+ $slug = $stream->organization_slug;`
	`46`	`+ if ($slug && !in_array(strtolower($slug), array_map('strtolower', $validSlugs))) {`
	`47`	`+ $invalidSlugs[] = $slug;`
`47`	`48`	`}`
`48`	`49`	`}`
`49`	`50`	`return array_unique($invalidSlugs);`