added abstract class for caching

descope · Jan 2, 2025 · 1dedcba · 1dedcba
1 parent deb6452
commit 1dedcba
Show file tree

Hide file tree

Showing 8 changed files with 164 additions and 24 deletions.
diff --git a/README.md b/README.md
@@ -41,7 +41,61 @@ $descopeSDK = new DescopeSDK([
 ]);
 ```
 
-This SDK will easily allow you to handle Descope JWT tokens with the following built-in functions:
+### Caching Mechanism
+
+The Descope PHP SDK uses a caching mechanism to store frequently accessed data, such as JSON Web Key Sets (JWKs) for session token validation. By default, the SDK uses **APCu** for caching, provided it is enabled and configured in your environment. If APCu is not available, and no other caching mechanism is provided, caching is disabled.
+
+By using the `CacheInterface`, you can integrate the Descope PHP SDK with any caching mechanism that suits your application, ensuring optimal performance in both small and large-scale deployments.
+
+#### Custom Caching with `CacheInterface`
+
+The SDK allows you to provide a custom caching mechanism by implementing the `CacheInterface`. This interface defines three methods that any cache implementation should support:
+
+- `get(string $key)`: Retrieve a value by key.
+- `set(string $key, $value, int $ttl = 3600): bool`: Store a value with a specified time-to-live (TTL).
+- `delete(string $key): bool`: Remove a value by key.
+
+You can provide your custom caching implementation by creating a class that implements `CacheInterface`. Here’s an example using Laravel’s cache system:
+
+```php
+namespace App\Cache;
+
+use Descope\SDK\Cache\CacheInterface;
+use Illuminate\Support\Facades\Cache;
+
+class LaravelCache implements CacheInterface
+{
+    public function get(string $key)
+    {
+        return Cache::get($key);
+    }
+
+    public function set(string $key, $value, int $ttl = 3600): bool
+    {
+        // Laravel TTL is in minutes
+        return Cache::put($key, $value, $ttl / 60);
+    }
+
+    public function delete(string $key): bool
+    {
+        return Cache::forget($key);
+    }
+}
+```
+
+To use the Laravel cache in the SDK:
+
+```php
+use Descope\SDK\DescopeSDK;
+use App\Cache\LaravelCache;
+
+$descopeSDK = new DescopeSDK([
+    'projectId' => $_ENV['DESCOPE_PROJECT_ID'],
+    'managementKey' => $_ENV['DESCOPE_MANAGEMENT_KEY'],
+], new LaravelCache());
+```
+
+Once you've configured your caching, you're ready to use the SDK. This SDK will easily allow you integrate Descope functionality with the following built-in functions:
 
 ## Password Authentication
 

diff --git a/src/SDK/Cache/APCuCache.php b/src/SDK/Cache/APCuCache.php
@@ -0,0 +1,21 @@
+<?php
+
+namespace Descope\SDK\Cache;
+
+class APCuCache implements CacheInterface
+{
+    public function get(string $key)
+    {
+        return apcu_fetch($key);
+    }
+
+    public function set(string $key, $value, int $ttl = 3600): bool
+    {
+        return apcu_store($key, $value, $ttl);
+    }
+
+    public function delete(string $key): bool
+    {
+        return apcu_delete($key);
+    }
+}
diff --git a/src/SDK/Cache/CacheInterface.php b/src/SDK/Cache/CacheInterface.php
@@ -0,0 +1,10 @@
+<?php
+
+namespace Descope\SDK\Cache;
+
+interface CacheInterface
+{
+    public function get(string $key);
+    public function set(string $key, $value, int $ttl = 3600): bool;
+    public function delete(string $key): bool;
+}
diff --git a/src/SDK/Cache/LaravelCache.php b/src/SDK/Cache/LaravelCache.php
@@ -0,0 +1,23 @@
+<?php
+
+namespace Descope\SDK\Cache;
+
+use Illuminate\Support\Facades\Cache;
+
+class LaravelCache implements CacheInterface
+{
+    public function get(string $key)
+    {
+        return Cache::get($key);
+    }
+
+    public function set(string $key, $value, int $ttl = 3600): bool
+    {
+        return Cache::put($key, $value, $ttl / 60);
+    }
+
+    public function delete(string $key): bool
+    {
+        return Cache::forget($key);
+    }
+}
diff --git a/src/SDK/Cache/NullCache.php b/src/SDK/Cache/NullCache.php
@@ -0,0 +1,21 @@
+<?php
+
+namespace Descope\SDK\Cache;
+
+class NullCache implements CacheInterface
+{
+    public function get(string $key)
+    {
+        return null;
+    }
+
+    public function set(string $key, $value, int $ttl = 3600): bool
+    {
+        return true;
+    }
+
+    public function delete(string $key): bool
+    {
+        return true;
+    }
+}
diff --git a/src/SDK/Configuration/SDKConfig.php b/src/SDK/Configuration/SDKConfig.php
@@ -7,21 +7,33 @@
 use GuzzleHttp\Psr7\Request;
 use Descope\SDK\EndpointsV2;
 use Descope\SDK\API;
+use Descope\SDK\Cache\CacheInterface;
+use Descope\SDK\Cache\APCuCache;
+use Descope\SDK\Cache\NullCache;
 
 final class SDKConfig
 {
     public $client;
     public $projectId;
     public $managementKey;
-    public $jwkSets;
-    private $cachedJWKSets = null;
+    private $cache;
+    private const JWKS_CACHE_KEY = 'descope_jwks';
 
-    public function __construct(array $config)
+    public function __construct(array $config, ?CacheInterface $cache = null)
     {
         $this->client = new Client();
         $this->projectId = $config['projectId'];
         $this->managementKey = $config['managementKey'] ?? '';
 
+        if ($cache) {
+            $this->cache = $cache;
+        } elseif (extension_loaded('apcu') && ini_get('apc.enable_cli')) {
+            $this->cache = new APCuCache();
+        } else {
+            $this->cache = new NullCache();
+            error_log('APCu is not enabled. Falling back to NullCache. Caching is disabled.');
+        }
+
         EndpointsV2::setBaseUrl($config['projectId']);
     }
 
@@ -30,14 +42,16 @@ public function __construct(array $config)
      */
     public function getJWKSets(bool $forceRefresh = false): array
     {
-        // Return cached JWK if it exists and no refresh is requested
-        if ($this->cachedJWKSets !== null && !$forceRefresh) {
-            return $this->cachedJWKSets;
+        if (!$forceRefresh) {
+            $cachedJWKSets = $this->cache->get(self::JWKS_CACHE_KEY);
+            if ($cachedJWKSets) {
+                return $cachedJWKSets;
+            }
         }
 
-        // Fetch new JWK KeySet from Descope API
-        $this->cachedJWKSets = $this->fetchJWKSets();
-        return $this->cachedJWKSets;
+        $jwks = $this->fetchJWKSets();
+        $this->cache->set(self::JWKS_CACHE_KEY, $jwks, 3600); // Cache for 1 hour
+        return $jwks;
     }
 
     /**

diff --git a/src/SDK/Token/Extractor.php b/src/SDK/Token/Extractor.php
@@ -125,18 +125,14 @@ private function verifySignature(string $signedData, string $signature, string $
             throw new TokenException('Invalid public key');
         }
 
-        try {
-            $result = openssl_verify(
-                $signedData,
-                $signature,
-                $publicKey,
-                OPENSSL_ALGO_SHA256
-            );
-
-            return $result === 1;
-        } finally {
-            openssl_free_key($publicKey);
-        }
+        $result = openssl_verify(
+            $signedData,
+            $signature,
+            $publicKey,
+            OPENSSL_ALGO_SHA256
+        );
+
+        return $result === 1;
     }
 
     /**

diff --git a/src/tests/DescopeSDKTest.php b/src/tests/DescopeSDKTest.php
@@ -8,6 +8,7 @@
 use Descope\SDK\Auth\Password;
 use Descope\SDK\Auth\SSO;
 use Descope\SDK\Management\Management;
+use Descope\SDK\Exception\ValidationException;
 
 final class DescopeSDKTest extends TestCase
 {
@@ -32,13 +33,13 @@ public function testConstructorInitializesComponents()
 
     public function testVerifyThrowsExceptionWithoutToken()
     {
-        $this->expectException(\InvalidArgumentException::class);
+        $this->expectException(ValidationException::class);
         $this->sdk->verify(null);
     }
 
     public function testRefreshSessionThrowsExceptionWithoutToken()
     {
-        $this->expectException(\InvalidArgumentException::class);
+        $this->expectException(ValidationException::class);
         $this->sdk->refreshSession(null);
     }
 }