tokenModelFactory = $tokenModelFactory; $this->userModel = $userModel; $this->tokenModelCollectionFactory = $tokenModelCollectionFactory; $this->validatorHelper = $validatorHelper; } /** * {@inheritdoc} */ public function createAdminAccessToken($username, $password) { $this->validatorHelper->validate($username, $password); $this->getRequestThrottler()->throttle($username, RequestThrottler::USER_TYPE_ADMIN); $this->userModel->login($username, $password); if (!$this->userModel->getId()) { $this->getRequestThrottler()->logAuthenticationFailure($username, RequestThrottler::USER_TYPE_ADMIN); /* * This message is same as one thrown in \Magento\Backend\Model\Auth to keep the behavior consistent. * Constant cannot be created in Auth Model since it uses legacy translation that doesn't support it. * Need to make sure that this is refactored once exception handling is updated in Auth Model. */ throw new AuthenticationException( __( 'The account sign-in was incorrect or your account is disabled temporarily. ' . 'Please wait and try again later.' ) ); } $this->getRequestThrottler()->resetAuthenticationFailuresCount($username, RequestThrottler::USER_TYPE_ADMIN); return $this->tokenModelFactory->create()->createAdminToken($this->userModel->getId())->getToken(); } /** * Revoke token by admin id. * * The function will delete the token from the oauth_token table. * * @param int $adminId * @return bool * @throws \Magento\Framework\Exception\LocalizedException */ public function revokeAdminAccessToken($adminId) { $tokenCollection = $this->tokenModelCollectionFactory->create()->addFilterByAdminId($adminId); if ($tokenCollection->getSize() == 0) { throw new LocalizedException(__('This user has no tokens.')); } try { foreach ($tokenCollection as $token) { $token->delete(); } } catch (\Exception $e) { throw new LocalizedException(__("The tokens couldn't be revoked.")); } return true; } /** * Get request throttler instance * * @return RequestThrottler * @deprecated 100.0.4 */ private function getRequestThrottler() { if (!$this->requestThrottler instanceof RequestThrottler) { return \Magento\Framework\App\ObjectManager::getInstance()->get(RequestThrottler::class); } return $this->requestThrottler; } }