@@ -145,6 +145,74 @@ public function user_login($request)
145145 return apply_filters ('jwt_auth_token_before_dispatch ' , $ data$ user
146146 }
147147
148+ public function verify_token ($ user
149+ {
150+ /*
151+ * Looking for the HTTP_AUTHORIZATION header, if not present just
152+ * return the user.
153+ */
154+ $ authisset ($ _SERVER 'HTTP_AUTHORIZATION ' ]) ? $ _SERVER 'HTTP_AUTHORIZATION ' ] : false ;
155+ if (!$ auth
156+ return $ user
157+ }
158+
159+ /*
160+ * The HTTP_AUTHORIZATION is present verify the format
161+ * if the format is wrong return the user.
162+ */
163+ list ($ tokensscanf ($ auth'Bearer %s ' );
164+ if (!$ token
165+ return $ user
166+ }
167+
168+ /*
169+ * Get the Secret Key
170+ */
171+ $ secret_key$ this get_option ('jwt_main_options ' , 'secret_key ' , false );
172+ if (!$ secret_key
173+ return $ user
174+ }
175+
176+ /*
177+ * Try to decode the token
178+ */
179+ try {
180+ $ tokenJWT ::decode ($ token$ secret_keyarray ('HS256 ' ));
181+
182+ /**
183+ * The Token is decoded now validate the iss
184+ */
185+ if ( $ tokeniss != get_bloginfo ('url ' ) ){
186+ /**
187+ * The iss do not match, return the user
188+ */
189+ return $ user
190+ }
191+ /**
192+ * So far so good, validate the user id in the token
193+ */
194+ if ( !isset ( $ tokendata ->user ->id ) ){
195+ /**
196+ * No user id in the token, abort!!
197+ */
198+ return $ user
199+ }
200+ /**
201+ * Everything looks good, change the user id
202+ */
203+ return $ tokendata ->user ->id ;
204+
205+ } catch (Exception $ e
206+ /*
207+ * Something is wrong, probably the token expired
208+ * I need to find the way to hijack the API response to send the
209+ * error back to the user.
210+ * For now just return the user and let the API validate te call.
211+ */
212+ return $ user
213+ }
214+ }
215+
148216 private function get_option ($ section$ option$ default'' )
149217 {
150218 $ optionsget_option ($ section
0 commit comments