Yii2 module to check validity of oauth2 token and scope access in microservices
The preferred way to install this extension is through composer.
Either run
composer require indigerd/yii2-oauth2-auth-filter "1.2.8"
or add
"indigerd/yii2-oauth2-auth-filter": "1.2.8"
to the require section of your composer.json file.
If the service starts using namespace, then scopes without a namespace will not be valid.
For example, if a project uses the timelines scope, after adding namespace=webhooks, the new scopes will refer to webhooks.timelines.
You also need to remember to add/change the scope in the authorization admin panel, taking into account namespace
'authfilter' => [
'class' => 'indigerd\oauth2\authfilter\Module',
'authServerUrl' => Yii::getAlias('@serviceAuthUrl'),
'clientId' => getenv('AUTH_CLIENT_ID'),
'clientSecret' => getenv('AUTH_CLIENT_SECRET'),
'cache' => 'cache',
'cacheTtl' => (int)getenv('AUTH_CACHE_TTL'),
'namespace' => 'webhooks',
],