<?php /** * Copyright 2016 Google Inc. All Rights Reserved. * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * http://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ namespace Google\Cloud\Core; use Google\Auth\ApplicationDefaultCredentials; use Google\Auth\Cache\MemoryCacheItemPool; use Google\Auth\Credentials\ServiceAccountCredentials; use Google\Auth\CredentialsLoader; use Google\Auth\FetchAuthTokenCache; use Google\Auth\FetchAuthTokenInterface; use Psr\Cache\CacheItemPoolInterface; /** * Encapsulates shared functionality of request wrappers. */ trait RequestWrapperTrait { /** * @var CacheItemPoolInterface A cache used for storing tokens. */ private $authCache; /** * @var array Cache configuration options. */ private $authCacheOptions; /** * @var FetchAuthTokenInterface|null Fetches credentials. */ private $credentialsFetcher; /** * @var array The contents of the service account credentials .json file * retrieved from the Google Developers Console. */ private $keyFile; /** * @var float Seconds to wait before timing out the request. **Defaults to** * `0` with REST and `60` with gRPC. */ private $requestTimeout; /** * @var int Number of retries for a failed request. **Defaults to** `3`. */ private $retries; /** * @var array Scopes to be used for the request. */ private $scopes = []; /** * @var string|null The user project to bill for access charges associated * with the request. */ private $quotaProject; /** * Sets common defaults between request wrappers. * * @param array $config { * Configuration options. * * @type CacheItemPoolInterface $authCache A cache for storing access * tokens. **Defaults to** a simple in memory implementation. * @type array $authCacheOptions Cache configuration options. * @type FetchAuthTokenInterface $credentialsFetcher A credentials * fetcher instance. * @type array $keyFile The contents of the service account credentials * .json file retrieved from the Google Developer's Console. * Ex: `json_decode(file_get_contents($path), true)`. * @type float $requestTimeout Seconds to wait before timing out the * request. **Defaults to** `0` with REST and `60` with gRPC. * @type int $retries Number of retries for a failed request. * **Defaults to** `3`. * @type array $scopes Scopes to be used for the request. * @type string $quotaProject Specifies a user project to bill for * access charges associated with the request. * } * @throws \InvalidArgumentException */ public function setCommonDefaults(array $config) { $config += [ 'authCache' => new MemoryCacheItemPool(), 'authCacheOptions' => [], 'credentialsFetcher' => null, 'keyFile' => null, 'requestTimeout' => null, 'retries' => 3, 'scopes' => null, 'quotaProject' => null ]; if ($config['credentialsFetcher'] && !$config['credentialsFetcher'] instanceof FetchAuthTokenInterface) { throw new \InvalidArgumentException('credentialsFetcher must implement FetchAuthTokenInterface.'); } if (!$config['authCache'] instanceof CacheItemPoolInterface) { throw new \InvalidArgumentException('authCache must implement CacheItemPoolInterface.'); } $this->authCache = $config['authCache']; $this->authCacheOptions = $config['authCacheOptions']; $this->credentialsFetcher = $config['credentialsFetcher']; $this->retries = $config['retries']; $this->scopes = $config['scopes']; $this->keyFile = $config['keyFile']; $this->requestTimeout = $config['requestTimeout']; $this->quotaProject = $config['quotaProject']; } /** * Get the Keyfile. * * @return array */ public function keyFile() { return $this->keyFile; } /** * Get the scopes * * @return array */ public function scopes() { return $this->scopes; } /** * Gets the credentials fetcher and sets up caching. Precedence is as * follows: * * - A user supplied credentials fetcher instance. * - Credentials created from a keyfile. * - Application default credentials. * - Anonymous credentials. * * @return FetchAuthTokenInterface */ public function getCredentialsFetcher() { $fetcher = null; if ($this->credentialsFetcher) { $fetcher = $this->credentialsFetcher; } else { if ($this->keyFile) { if ($this->quotaProject) { $this->keyFile['quota_project_id'] = $this->quotaProject; } $fetcher = CredentialsLoader::makeCredentials($this->scopes, $this->keyFile); } else { try { $fetcher = $this->getADC(); } catch (\DomainException $ex) { $fetcher = new AnonymousCredentials(); } } // Note: If authCache is set and keyFile is not set, the resulting // credentials instance will be FetchAuthTokenCache, and we will be // unable to enable "useJwtAccessWithScope". This is unlikely, as // keyFile is automatically set in ClientTrait::configureAuthentication, // and so should always exist when ServiceAccountCredentials are in use. if ($fetcher instanceof ServiceAccountCredentials) { $fetcher->useJwtAccessWithScope(); } } if ($fetcher instanceof FetchAuthTokenCache) { // The fetcher has already been wrapped in a cache by `ApplicationDefaultCredentials`; // no need to wrap it another time. return $fetcher; } else { return new FetchAuthTokenCache( $fetcher, $this->authCacheOptions, $this->authCache ); } } /** * Returns application default credentials. Abstracted out for unit testing. * * @return FetchAuthTokenInterface * @throws \DomainException */ protected function getADC() { return ApplicationDefaultCredentials::getCredentials( $this->scopes, $this->authHttpHandler, $this->authCacheOptions, $this->authCache, $this->quotaProject ); } }