ykiakao/api-ranking-jogos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Expose health diagnostics at root

Browse Source
This commit is contained in:
ykiakao
2026-05-21 13:02:25 -05:00
parent 961662a10e
commit c477643781
3 changed files with 49 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

36
app/Http/Middleware/JwtAuthMiddleware.php
View File

@@ -28,14 +28,24 @@ class JwtAuthMiddleware
return response()->json(['message' => 'Invalid token algorithm'], 401); return response()->json(['message' => 'Invalid token algorithm'], 401);
} }
if ( if (!$this->signatureIsValid($token, $signature)) {
!$this->signatureIsValid($token, $signature) || return response()->json(['message' => 'Invalid token signature'], 401);
($payload['iss'] ?? null) !== config('jwt.issuer') || }
!$this->audienceIsValid($payload['aud'] ?? null) ||
empty($payload['sub']) || if (($payload['iss'] ?? null) !== config('jwt.issuer')) {
$this->tokenIsExpired($payload) return response()->json(['message' => 'Invalid token issuer'], 401);
) { }
return response()->json(['message' => 'Invalid token'], 401);
if (!$this->audienceIsValid($payload['aud'] ?? null)) {
return response()->json(['message' => 'Invalid token audience'], 401);
}
if (empty($payload['sub'])) {
return response()->json(['message' => 'Invalid token subject'], 401);
}
if ($this->tokenIsExpired($payload)) {
return response()->json(['message' => 'Invalid or expired token'], 401);
} }
$request->attributes->set('auth', [ $request->attributes->set('auth', [
@@ -105,12 +115,18 @@ class JwtAuthMiddleware
throw new \RuntimeException(openssl_error_string() ?: 'OpenSSL could not read JWT public key'); throw new \RuntimeException(openssl_error_string() ?: 'OpenSSL could not read JWT public key');
} }
return openssl_verify( $result = openssl_verify(
$header . '.' . $payload, $header . '.' . $payload,
$signature, $signature,
$keyResource, $keyResource,
OPENSSL_ALGO_SHA256 OPENSSL_ALGO_SHA256
) === 1; );
if ($result === false) {
throw new \RuntimeException(openssl_error_string() ?: 'OpenSSL could not verify JWT signature');
}
return $result === 1;
} }
private function tokenIsExpired(array $payload): bool private function tokenIsExpired(array $payload): bool

4
routes/api.php
View File

@@ -21,6 +21,10 @@ Route::prefix('v1')->middleware(['jwt.auth'])->group(function () {
Route::get('/games/most-played', [GameController::class, 'mostPlayed']); Route::get('/games/most-played', [GameController::class, 'mostPlayed']);
}); });
Route::get('/health', function () {
return response()->json(['status' => 'ok']);
});
Route::get('/health-check-key', function () { Route::get('/health-check-key', function () {
$rawPublicKey = (string) config('jwt.public_key'); $rawPublicKey = (string) config('jwt.public_key');
$formattedPublicKey = str_replace('\\n', "\n", $rawPublicKey); $formattedPublicKey = str_replace('\\n', "\n", $rawPublicKey);

19
routes/web.php
View File

@@ -1 +1,20 @@
<?php <?php
use Illuminate\Support\Facades\Route;
Route::get('/health', function () {
return response()->json(['status' => 'ok']);
});
Route::get('/health-check-key', function () {
$rawPublicKey = (string) config('jwt.public_key');
$formattedPublicKey = str_replace('\\n', "\n", $rawPublicKey);
$publicKeyResource = openssl_pkey_get_public($formattedPublicKey);
return response()->json([
'raw_key_empty' => $rawPublicKey === '',
'key_length' => strlen($formattedPublicKey),
'openssl_accepted' => $publicKeyResource !== false,
'openssl_error' => openssl_error_string(),
]);
});