PageRenderTime 46ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/src/TwitterOAuth.php

http://github.com/abraham/twitteroauth
PHP | 764 lines | 455 code | 54 blank | 255 comment | 27 complexity | a74115f548f706cf1bc9e730441d153c MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * The most popular PHP library for use with the Twitter OAuth REST API.
    5. 

  5.  *
    6. 

  6.  * @license MIT
    7. 

  7.  */
    8. 

  8. 

  9. declare(strict_types=1);
    10. 

  10. 

  11. namespace Abraham\TwitterOAuth;
    12. 

  12. 

  13. use Abraham\TwitterOAuth\Util\JsonDecoder;
    14. 

  14. use Composer\CaBundle\CaBundle;
    15. 

  15. 

  16. /**
    17. 

  17.  * TwitterOAuth class for interacting with the Twitter API.
    18. 

  18.  *
    19. 

  19.  * @author Abraham Williams <abraham@abrah.am>
    20. 

  20.  */
    21. 

  21. class TwitterOAuth extends Config
    22. 

  22. {
    23. 

  23.     private const API_HOST = 'https://api.twitter.com';
    24. 

  24.     private const UPLOAD_HOST = 'https://upload.twitter.com';
    25. 

  25. 

  26.     /** @var Response details about the result of the last request */
    27. 

  27.     private $response;
    28. 

  28.     /** @var string|null Application bearer token */
    29. 

  29.     private $bearer;
    30. 

  30.     /** @var Consumer Twitter application details */
    31. 

  31.     private $consumer;
    32. 

  32.     /** @var Token|null User access token details */
    33. 

  33.     private $token;
    34. 

  34.     /** @var HmacSha1 OAuth 1 signature type used by Twitter */
    35. 

  35.     private $signatureMethod;
    36. 

  36.     /** @var int Number of attempts we made for the request */
    37. 

  37.     private $attempts = 0;
    38. 

  38. 

  39.     /**
    40. 

  40.      * Constructor
    41. 

  41.      *
    42. 

  42.      * @param string      $consumerKey      The Application Consumer Key
    43. 

  43.      * @param string      $consumerSecret   The Application Consumer Secret
    44. 

  44.      * @param string|null $oauthToken       The Client Token (optional)
    45. 

  45.      * @param string|null $oauthTokenSecret The Client Token Secret (optional)
    46. 

  46.      */
    47. 

  47.     public function __construct(
    48. 

  48.         string $consumerKey,
    49. 

  49.         string $consumerSecret,
    50. 

  50.         ?string $oauthToken = null,
    51. 

  51.         ?string $oauthTokenSecret = null
    52. 

  52.     ) {
    53. 

  53.         $this->resetLastResponse();
    54. 

  54.         $this->signatureMethod = new HmacSha1();
    55. 

  55.         $this->consumer = new Consumer($consumerKey, $consumerSecret);
    56. 

  56.         if (!empty($oauthToken) && !empty($oauthTokenSecret)) {
    57. 

  57.             $this->setOauthToken($oauthToken, $oauthTokenSecret);
    58. 

  58.         }
    59. 

  59.         if (empty($oauthToken) && !empty($oauthTokenSecret)) {
    60. 

  60.             $this->setBearer($oauthTokenSecret);
    61. 

  61.         }
    62. 

  62.     }
    63. 

  63. 

  64.     /**
    65. 

  65.      * @param string $oauthToken
    66. 

  66.      * @param string $oauthTokenSecret
    67. 

  67.      */
    68. 

  68.     public function setOauthToken(
    69. 

  69.         string $oauthToken,
    70. 

  70.         string $oauthTokenSecret
    71. 

  71.     ): void {
    72. 

  72.         $this->token = new Token($oauthToken, $oauthTokenSecret);
    73. 

  73.         $this->bearer = null;
    74. 

  74.     }
    75. 

  75. 

  76.     /**
    77. 

  77.      * @param string $oauthTokenSecret
    78. 

  78.      */
    79. 

  79.     public function setBearer(string $oauthTokenSecret): void
    80. 

  80.     {
    81. 

  81.         $this->bearer = $oauthTokenSecret;
    82. 

  82.         $this->token = null;
    83. 

  83.     }
    84. 

  84. 

  85.     /**
    86. 

  86.      * @return string|null
    87. 

  87.      */
    88. 

  88.     public function getLastApiPath(): ?string
    89. 

  89.     {
    90. 

  90.         return $this->response->getApiPath();
    91. 

  91.     }
    92. 

  92. 

  93.     /**
    94. 

  94.      * @return int
    95. 

  95.      */
    96. 

  96.     public function getLastHttpCode(): int
    97. 

  97.     {
    98. 

  98.         return $this->response->getHttpCode();
    99. 

  99.     }
    100. 

  100. 

  101.     /**
    102. 

  102.      * @return array
    103. 

  103.      */
    104. 

  104.     public function getLastXHeaders(): array
    105. 

  105.     {
    106. 

  106.         return $this->response->getXHeaders();
    107. 

  107.     }
    108. 

  108. 

  109.     /**
    110. 

  110.      * @return array|object|null
    111. 

  111.      */
    112. 

  112.     public function getLastBody()
    113. 

  113.     {
    114. 

  114.         return $this->response->getBody();
    115. 

  115.     }
    116. 

  116. 

  117.     /**
    118. 

  118.      * Resets the last response cache.
    119. 

  119.      */
    120. 

  120.     public function resetLastResponse(): void
    121. 

  121.     {
    122. 

  122.         $this->response = new Response();
    123. 

  123.     }
    124. 

  124. 

  125.     /**
    126. 

  126.      * Resets the attempts number.
    127. 

  127.      */
    128. 

  128.     private function resetAttemptsNumber(): void
    129. 

  129.     {
    130. 

  130.         $this->attempts = 0;
    131. 

  131.     }
    132. 

  132. 

  133.     /**
    134. 

  134.      * Delays the retries when they're activated.
    135. 

  135.      */
    136. 

  136.     private function sleepIfNeeded(): void
    137. 

  137.     {
    138. 

  138.         if ($this->maxRetries && $this->attempts) {
    139. 

  139.             sleep($this->retriesDelay);
    140. 

  140.         }
    141. 

  141.     }
    142. 

  142. 

  143.     /**
    144. 

  144.      * Make URLs for user browser navigation.
    145. 

  145.      *
    146. 

  146.      * @param string $path
    147. 

  147.      * @param array  $parameters
    148. 

  148.      *
    149. 

  149.      * @return string
    150. 

  150.      */
    151. 

  151.     public function url(string $path, array $parameters): string
    152. 

  152.     {
    153. 

  153.         $this->resetLastResponse();
    154. 

  154.         $this->response->setApiPath($path);
    155. 

  155.         $query = http_build_query($parameters);
    156. 

  156.         return sprintf('%s/%s?%s', self::API_HOST, $path, $query);
    157. 

  157.     }
    158. 

  158. 

  159.     /**
    160. 

  160.      * Make /oauth/* requests to the API.
    161. 

  161.      *
    162. 

  162.      * @param string $path
    163. 

  163.      * @param array  $parameters
    164. 

  164.      *
    165. 

  165.      * @return array
    166. 

  166.      * @throws TwitterOAuthException
    167. 

  167.      */
    168. 

  168.     public function oauth(string $path, array $parameters = []): array
    169. 

  169.     {
    170. 

  170.         $response = [];
    171. 

  171.         $this->resetLastResponse();
    172. 

  172.         $this->response->setApiPath($path);
    173. 

  173.         $url = sprintf('%s/%s', self::API_HOST, $path);
    174. 

  174.         $result = $this->oAuthRequest($url, 'POST', $parameters);
    175. 

  175. 

  176.         if ($this->getLastHttpCode() != 200) {
    177. 

  177.             throw new TwitterOAuthException($result);
    178. 

  178.         }
    179. 

  179. 

  180.         parse_str($result, $response);
    181. 

  181.         $this->response->setBody($response);
    182. 

  182. 

  183.         return $response;
    184. 

  184.     }
    185. 

  185. 

  186.     /**
    187. 

  187.      * Make /oauth2/* requests to the API.
    188. 

  188.      *
    189. 

  189.      * @param string $path
    190. 

  190.      * @param array  $parameters
    191. 

  191.      *
    192. 

  192.      * @return array|object
    193. 

  193.      */
    194. 

  194.     public function oauth2(string $path, array $parameters = [])
    195. 

  195.     {
    196. 

  196.         $method = 'POST';
    197. 

  197.         $this->resetLastResponse();
    198. 

  198.         $this->response->setApiPath($path);
    199. 

  199.         $url = sprintf('%s/%s', self::API_HOST, $path);
    200. 

  200.         $request = Request::fromConsumerAndToken(
    201. 

  201.             $this->consumer,
    202. 

  202.             $this->token,
    203. 

  203.             $method,
    204. 

  204.             $url,
    205. 

  205.             $parameters,
    206. 

  206.         );
    207. 

  207.         $authorization =
    208. 

  208.             'Authorization: Basic ' .
    209. 

  209.             $this->encodeAppAuthorization($this->consumer);
    210. 

  210.         $result = $this->request(
    211. 

  211.             $request->getNormalizedHttpUrl(),
    212. 

  212.             $method,
    213. 

  213.             $authorization,
    214. 

  214.             $parameters,
    215. 

  215.         );
    216. 

  216.         $response = JsonDecoder::decode($result, $this->decodeJsonAsArray);
    217. 

  217.         $this->response->setBody($response);
    218. 

  218.         return $response;
    219. 

  219.     }
    220. 

  220. 

  221.     /**
    222. 

  222.      * Make GET requests to the API.
    223. 

  223.      *
    224. 

  224.      * @param string $path
    225. 

  225.      * @param array  $parameters
    226. 

  226.      *
    227. 

  227.      * @return array|object
    228. 

  228.      */
    229. 

  229.     public function get(string $path, array $parameters = [])
    230. 

  230.     {
    231. 

  231.         return $this->http('GET', self::API_HOST, $path, $parameters, false);
    232. 

  232.     }
    233. 

  233. 

  234.     /**
    235. 

  235.      * Make POST requests to the API.
    236. 

  236.      *
    237. 

  237.      * @param string $path
    238. 

  238.      * @param array  $parameters
    239. 

  239.      * @param bool   $json
    240. 

  240.      *
    241. 

  241.      * @return array|object
    242. 

  242.      */
    243. 

  243.     public function post(
    244. 

  244.         string $path,
    245. 

  245.         array $parameters = [],
    246. 

  246.         bool $json = false
    247. 

  247.     ) {
    248. 

  248.         return $this->http('POST', self::API_HOST, $path, $parameters, $json);
    249. 

  249.     }
    250. 

  250. 

  251.     /**
    252. 

  252.      * Make DELETE requests to the API.
    253. 

  253.      *
    254. 

  254.      * @param string $path
    255. 

  255.      * @param array  $parameters
    256. 

  256.      *
    257. 

  257.      * @return array|object
    258. 

  258.      */
    259. 

  259.     public function delete(string $path, array $parameters = [])
    260. 

  260.     {
    261. 

  261.         return $this->http('DELETE', self::API_HOST, $path, $parameters, false);
    262. 

  262.     }
    263. 

  263. 

  264.     /**
    265. 

  265.      * Make PUT requests to the API.
    266. 

  266.      *
    267. 

  267.      * @param string $path
    268. 

  268.      * @param array  $parameters
    269. 

  269.      *
    270. 

  270.      * @return array|object
    271. 

  271.      */
    272. 

  272.     public function put(string $path, array $parameters = [])
    273. 

  273.     {
    274. 

  274.         return $this->http('PUT', self::API_HOST, $path, $parameters, false);
    275. 

  275.     }
    276. 

  276. 

  277.     /**
    278. 

  278.      * Upload media to upload.twitter.com.
    279. 

  279.      *
    280. 

  280.      * @param string $path
    281. 

  281.      * @param array  $parameters
    282. 

  282.      * @param boolean  $chunked
    283. 

  283.      *
    284. 

  284.      * @return array|object
    285. 

  285.      */
    286. 

  286.     public function upload(
    287. 

  287.         string $path,
    288. 

  288.         array $parameters = [],
    289. 

  289.         bool $chunked = false
    290. 

  290.     ) {
    291. 

  291.         if ($chunked) {
    292. 

  292.             return $this->uploadMediaChunked($path, $parameters);
    293. 

  293.         } else {
    294. 

  294.             return $this->uploadMediaNotChunked($path, $parameters);
    295. 

  295.         }
    296. 

  296.     }
    297. 

  297. 

  298.     /**
    299. 

  299.      * Progression of media upload
    300. 

  300.      *
    301. 

  301.      * @param string $media_id
    302. 

  302.      *
    303. 

  303.      * @return array|object
    304. 

  304.      */
    305. 

  305.     public function mediaStatus(string $media_id)
    306. 

  306.     {
    307. 

  307.         return $this->http(
    308. 

  308.             'GET',
    309. 

  309.             self::UPLOAD_HOST,
    310. 

  310.             'media/upload',
    311. 

  311.             [
    312. 

  312.                 'command' => 'STATUS',
    313. 

  313.                 'media_id' => $media_id,
    314. 

  314.             ],
    315. 

  315.             false,
    316. 

  316.         );
    317. 

  317.     }
    318. 

  318. 

  319.     /**
    320. 

  320.      * Private method to upload media (not chunked) to upload.twitter.com.
    321. 

  321.      *
    322. 

  322.      * @param string $path
    323. 

  323.      * @param array  $parameters
    324. 

  324.      *
    325. 

  325.      * @return array|object
    326. 

  326.      */
    327. 

  327.     private function uploadMediaNotChunked(string $path, array $parameters)
    328. 

  328.     {
    329. 

  329.         if (
    330. 

  330.             !is_readable($parameters['media']) ||
    331. 

  331.             ($file = file_get_contents($parameters['media'])) === false
    332. 

  332.         ) {
    333. 

  333.             throw new \InvalidArgumentException(
    334. 

  334.                 'You must supply a readable file',
    335. 

  335.             );
    336. 

  336.         }
    337. 

  337.         $parameters['media'] = base64_encode($file);
    338. 

  338.         return $this->http(
    339. 

  339.             'POST',
    340. 

  340.             self::UPLOAD_HOST,
    341. 

  341.             $path,
    342. 

  342.             $parameters,
    343. 

  343.             false,
    344. 

  344.         );
    345. 

  345.     }
    346. 

  346. 

  347.     /**
    348. 

  348.      * Private method to upload media (chunked) to upload.twitter.com.
    349. 

  349.      *
    350. 

  350.      * @param string $path
    351. 

  351.      * @param array  $parameters
    352. 

  352.      *
    353. 

  353.      * @return array|object
    354. 

  354.      */
    355. 

  355.     private function uploadMediaChunked(string $path, array $parameters)
    356. 

  356.     {
    357. 

  357.         $init = $this->http(
    358. 

  358.             'POST',
    359. 

  359.             self::UPLOAD_HOST,
    360. 

  360.             $path,
    361. 

  361.             $this->mediaInitParameters($parameters),
    362. 

  362.             false,
    363. 

  363.         );
    364. 

  364.         // Append
    365. 

  365.         $segmentIndex = 0;
    366. 

  366.         $media = fopen($parameters['media'], 'rb');
    367. 

  367.         while (!feof($media)) {
    368. 

  368.             $this->http(
    369. 

  369.                 'POST',
    370. 

  370.                 self::UPLOAD_HOST,
    371. 

  371.                 'media/upload',
    372. 

  372.                 [
    373. 

  373.                     'command' => 'APPEND',
    374. 

  374.                     'media_id' => $init->media_id_string,
    375. 

  375.                     'segment_index' => $segmentIndex++,
    376. 

  376.                     'media_data' => base64_encode(
    377. 

  377.                         fread($media, $this->chunkSize),
    378. 

  378.                     ),
    379. 

  379.                 ],
    380. 

  380.                 false,
    381. 

  381.             );
    382. 

  382.         }
    383. 

  383.         fclose($media);
    384. 

  384.         // Finalize
    385. 

  385.         $finalize = $this->http(
    386. 

  386.             'POST',
    387. 

  387.             self::UPLOAD_HOST,
    388. 

  388.             'media/upload',
    389. 

  389.             [
    390. 

  390.                 'command' => 'FINALIZE',
    391. 

  391.                 'media_id' => $init->media_id_string,
    392. 

  392.             ],
    393. 

  393.             false,
    394. 

  394.         );
    395. 

  395.         return $finalize;
    396. 

  396.     }
    397. 

  397. 

  398.     /**
    399. 

  399.      * Private method to get params for upload media chunked init.
    400. 

  400.      * Twitter docs: https://dev.twitter.com/rest/reference/post/media/upload-init.html
    401. 

  401.      *
    402. 

  402.      * @param array  $parameters
    403. 

  403.      *
    404. 

  404.      * @return array
    405. 

  405.      */
    406. 

  406.     private function mediaInitParameters(array $parameters): array
    407. 

  407.     {
    408. 

  408.         $allowed_keys = [
    409. 

  409.             'media_type',
    410. 

  410.             'additional_owners',
    411. 

  411.             'media_category',
    412. 

  412.             'shared',
    413. 

  413.         ];
    414. 

  414.         $base = [
    415. 

  415.             'command' => 'INIT',
    416. 

  416.             'total_bytes' => filesize($parameters['media']),
    417. 

  417.         ];
    418. 

  418.         $allowed_parameters = array_intersect_key(
    419. 

  419.             $parameters,
    420. 

  420.             array_flip($allowed_keys),
    421. 

  421.         );
    422. 

  422.         return array_merge($base, $allowed_parameters);
    423. 

  423.     }
    424. 

  424. 

  425.     /**
    426. 

  426.      * Cleanup any parameters that are known not to work.
    427. 

  427.      *
    428. 

  428.      * @param array  $parameters
    429. 

  429.      *
    430. 

  430.      * @return array
    431. 

  431.      */
    432. 

  432.     private function cleanUpParameters(array $parameters)
    433. 

  433.     {
    434. 

  434.         foreach ($parameters as $key => $value) {
    435. 

  435.             // PHP coerces `true` to `"1"` which some Twitter APIs don't like.
    436. 

  436.             if (is_bool($value)) {
    437. 

  437.                 $parameters[$key] = var_export($value, true);
    438. 

  438.             }
    439. 

  439.         }
    440. 

  440.         return $parameters;
    441. 

  441.     }
    442. 

  442. 

  443.     /**
    444. 

  444.      * Get URL extension for current API Version.
    445. 

  445.      *
    446. 

  446.      * @return string
    447. 

  447.      */
    448. 

  448.     private function extension()
    449. 

  449.     {
    450. 

  450.         return [
    451. 

  451.             '1.1' => '.json',
    452. 

  452.             '2' => '',
    453. 

  453.         ][$this->apiVersion];
    454. 

  454.     }
    455. 

  455. 

  456.     /**
    457. 

  457.      * @param string $method
    458. 

  458.      * @param string $host
    459. 

  459.      * @param string $path
    460. 

  460.      * @param array  $parameters
    461. 

  461.      * @param bool   $json
    462. 

  462.      *
    463. 

  463.      * @return array|object
    464. 

  464.      */
    465. 

  465.     private function http(
    466. 

  466.         string $method,
    467. 

  467.         string $host,
    468. 

  468.         string $path,
    469. 

  469.         array $parameters,
    470. 

  470.         bool $json
    471. 

  471.     ) {
    472. 

  472.         $this->resetLastResponse();
    473. 

  473.         $this->resetAttemptsNumber();
    474. 

  474.         $this->response->setApiPath($path);
    475. 

  475.         if (!$json) {
    476. 

  476.             $parameters = $this->cleanUpParameters($parameters);
    477. 

  477.         }
    478. 

  478.         return $this->makeRequests(
    479. 

  479.             $this->apiUrl($host, $path),
    480. 

  480.             $method,
    481. 

  481.             $parameters,
    482. 

  482.             $json,
    483. 

  483.         );
    484. 

  484.     }
    485. 

  485. 

  486.     /**
    487. 

  487.      * Generate API URL.
    488. 

  488.      *
    489. 

  489.      * Overriding this function is not supported and may cause unintended issues.
    490. 

  490.      *
    491. 

  491.      * @param string $host
    492. 

  492.      * @param string $path
    493. 

  493.      *
    494. 

  494.      * @return string
    495. 

  495.      */
    496. 

  496.     protected function apiUrl(string $host, string $path)
    497. 

  497.     {
    498. 

  498.         return sprintf(
    499. 

  499.             '%s/%s/%s%s',
    500. 

  500.             $host,
    501. 

  501.             $this->apiVersion,
    502. 

  502.             $path,
    503. 

  503.             $this->extension(),
    504. 

  504.         );
    505. 

  505.     }
    506. 

  506. 

  507.     /**
    508. 

  508.      *
    509. 

  509.      * Make requests and retry them (if enabled) in case of Twitter's problems.
    510. 

  510.      *
    511. 

  511.      * @param string $method
    512. 

  512.      * @param string $url
    513. 

  513.      * @param string $method
    514. 

  514.      * @param array  $parameters
    515. 

  515.      * @param bool   $json
    516. 

  516.      *
    517. 

  517.      * @return array|object
    518. 

  518.      */
    519. 

  519.     private function makeRequests(
    520. 

  520.         string $url,
    521. 

  521.         string $method,
    522. 

  522.         array $parameters,
    523. 

  523.         bool $json
    524. 

  524.     ) {
    525. 

  525.         do {
    526. 

  526.             $this->sleepIfNeeded();
    527. 

  527.             $result = $this->oAuthRequest($url, $method, $parameters, $json);
    528. 

  528.             $response = JsonDecoder::decode($result, $this->decodeJsonAsArray);
    529. 

  529.             $this->response->setBody($response);
    530. 

  530.             $this->attempts++;
    531. 

  531.             // Retry up to our $maxRetries number if we get errors greater than 500 (over capacity etc)
    532. 

  532.         } while ($this->requestsAvailable());
    533. 

  533. 

  534.         return $response;
    535. 

  535.     }
    536. 

  536. 

  537.     /**
    538. 

  538.      * Checks if we have to retry request if API is down.
    539. 

  539.      *
    540. 

  540.      * @return bool
    541. 

  541.      */
    542. 

  542.     private function requestsAvailable(): bool
    543. 

  543.     {
    544. 

  544.         return $this->maxRetries &&
    545. 

  545.             $this->attempts <= $this->maxRetries &&
    546. 

  546.             $this->getLastHttpCode() >= 500;
    547. 

  547.     }
    548. 

  548. 

  549.     /**
    550. 

  550.      * Format and sign an OAuth / API request
    551. 

  551.      *
    552. 

  552.      * @param string $url
    553. 

  553.      * @param string $method
    554. 

  554.      * @param array  $parameters
    555. 

  555.      * @param bool   $json
    556. 

  556.      *
    557. 

  557.      * @return string
    558. 

  558.      * @throws TwitterOAuthException
    559. 

  559.      */
    560. 

  560.     private function oAuthRequest(
    561. 

  561.         string $url,
    562. 

  562.         string $method,
    563. 

  563.         array $parameters,
    564. 

  564.         bool $json = false
    565. 

  565.     ) {
    566. 

  566.         $request = Request::fromConsumerAndToken(
    567. 

  567.             $this->consumer,
    568. 

  568.             $this->token,
    569. 

  569.             $method,
    570. 

  570.             $url,
    571. 

  571.             $parameters,
    572. 

  572.             $json,
    573. 

  573.         );
    574. 

  574.         if (array_key_exists('oauth_callback', $parameters)) {
    575. 

  575.             // Twitter doesn't like oauth_callback as a parameter.
    576. 

  576.             unset($parameters['oauth_callback']);
    577. 

  577.         }
    578. 

  578.         if ($this->bearer === null) {
    579. 

  579.             $request->signRequest(
    580. 

  580.                 $this->signatureMethod,
    581. 

  581.                 $this->consumer,
    582. 

  582.                 $this->token,
    583. 

  583.             );
    584. 

  584.             $authorization = $request->toHeader();
    585. 

  585.             if (array_key_exists('oauth_verifier', $parameters)) {
    586. 

  586.                 // Twitter doesn't always work with oauth in the body and in the header
    587. 

  587.                 // and it's already included in the $authorization header
    588. 

  588.                 unset($parameters['oauth_verifier']);
    589. 

  589.             }
    590. 

  590.         } else {
    591. 

  591.             $authorization = 'Authorization: Bearer ' . $this->bearer;
    592. 

  592.         }
    593. 

  593.         return $this->request(
    594. 

  594.             $request->getNormalizedHttpUrl(),
    595. 

  595.             $method,
    596. 

  596.             $authorization,
    597. 

  597.             $parameters,
    598. 

  598.             $json,
    599. 

  599.         );
    600. 

  600.     }
    601. 

  601. 

  602.     /**
    603. 

  603.      * Set Curl options.
    604. 

  604.      *
    605. 

  605.      * @return array
    606. 

  606.      */
    607. 

  607.     private function curlOptions(): array
    608. 

  608.     {
    609. 

  609.         $bundlePath = CaBundle::getSystemCaRootBundlePath();
    610. 

  610.         $options = [
    611. 

  611.             // CURLOPT_VERBOSE => true,
    612. 

  612.             CURLOPT_CONNECTTIMEOUT => $this->connectionTimeout,
    613. 

  613.             CURLOPT_HEADER => true,
    614. 

  614.             CURLOPT_RETURNTRANSFER => true,
    615. 

  615.             CURLOPT_SSL_VERIFYHOST => 2,
    616. 

  616.             CURLOPT_SSL_VERIFYPEER => true,
    617. 

  617.             CURLOPT_TIMEOUT => $this->timeout,
    618. 

  618.             CURLOPT_USERAGENT => $this->userAgent,
    619. 

  619.             $this->curlCaOpt($bundlePath) => $bundlePath,
    620. 

  620.         ];
    621. 

  621. 

  622.         if ($this->gzipEncoding) {
    623. 

  623.             $options[CURLOPT_ENCODING] = 'gzip';
    624. 

  624.         }
    625. 

  625. 

  626.         if (!empty($this->proxy)) {
    627. 

  627.             $options[CURLOPT_PROXY] = $this->proxy['CURLOPT_PROXY'];
    628. 

  628.             $options[CURLOPT_PROXYUSERPWD] =
    629. 

  629.                 $this->proxy['CURLOPT_PROXYUSERPWD'];
    630. 

  630.             $options[CURLOPT_PROXYPORT] = $this->proxy['CURLOPT_PROXYPORT'];
    631. 

  631.             $options[CURLOPT_PROXYAUTH] = CURLAUTH_BASIC;
    632. 

  632.             $options[CURLOPT_PROXYTYPE] = CURLPROXY_HTTP;
    633. 

  633.         }
    634. 

  634. 

  635.         return $options;
    636. 

  636.     }
    637. 

  637. 

  638.     /**
    639. 

  639.      * Make an HTTP request
    640. 

  640.      *
    641. 

  641.      * @param string $url
    642. 

  642.      * @param string $method
    643. 

  643.      * @param string $authorization
    644. 

  644.      * @param array $postfields
    645. 

  645.      * @param bool $json
    646. 

  646.      *
    647. 

  647.      * @return string
    648. 

  648.      * @throws TwitterOAuthException
    649. 

  649.      */
    650. 

  650.     private function request(
    651. 

  651.         string $url,
    652. 

  652.         string $method,
    653. 

  653.         string $authorization,
    654. 

  654.         array $postfields,
    655. 

  655.         bool $json = false
    656. 

  656.     ): string {
    657. 

  657.         $options = $this->curlOptions();
    658. 

  658.         $options[CURLOPT_URL] = $url;
    659. 

  659.         $options[CURLOPT_HTTPHEADER] = [
    660. 

  660.             'Accept: application/json',
    661. 

  661.             $authorization,
    662. 

  662.             'Expect:',
    663. 

  663.         ];
    664. 

  664. 

  665.         switch ($method) {
    666. 

  666.             case 'GET':
    667. 

  667.                 break;
    668. 

  668.             case 'POST':
    669. 

  669.                 $options[CURLOPT_POST] = true;
    670. 

  670.                 if ($json) {
    671. 

  671.                     $options[CURLOPT_HTTPHEADER][] =
    672. 

  672.                         'Content-type: application/json';
    673. 

  673.                     $options[CURLOPT_POSTFIELDS] = json_encode($postfields);
    674. 

  674.                 } else {
    675. 

  675.                     $options[CURLOPT_POSTFIELDS] = Util::buildHttpQuery(
    676. 

  676.                         $postfields,
    677. 

  677.                     );
    678. 

  678.                 }
    679. 

  679.                 break;
    680. 

  680.             case 'DELETE':
    681. 

  681.                 $options[CURLOPT_CUSTOMREQUEST] = 'DELETE';
    682. 

  682.                 break;
    683. 

  683.             case 'PUT':
    684. 

  684.                 $options[CURLOPT_CUSTOMREQUEST] = 'PUT';
    685. 

  685.                 break;
    686. 

  686.         }
    687. 

  687. 

  688.         if (
    689. 

  689.             in_array($method, ['GET', 'PUT', 'DELETE']) &&
    690. 

  690.             !empty($postfields)
    691. 

  691.         ) {
    692. 

  692.             $options[CURLOPT_URL] .= '?' . Util::buildHttpQuery($postfields);
    693. 

  693.         }
    694. 

  694. 

  695.         $curlHandle = curl_init();
    696. 

  696.         curl_setopt_array($curlHandle, $options);
    697. 

  697.         $response = curl_exec($curlHandle);
    698. 

  698. 

  699.         // Throw exceptions on cURL errors.
    700. 

  700.         if (curl_errno($curlHandle) > 0) {
    701. 

  701.             $error = curl_error($curlHandle);
    702. 

  702.             $errorNo = curl_errno($curlHandle);
    703. 

  703.             curl_close($curlHandle);
    704. 

  704.             throw new TwitterOAuthException($error, $errorNo);
    705. 

  705.         }
    706. 

  706. 

  707.         $this->response->setHttpCode(
    708. 

  708.             curl_getinfo($curlHandle, CURLINFO_HTTP_CODE),
    709. 

  709.         );
    710. 

  710.         $parts = explode("\r\n\r\n", $response);
    711. 

  711.         $responseBody = array_pop($parts);
    712. 

  712.         $responseHeader = array_pop($parts);
    713. 

  713.         $this->response->setHeaders($this->parseHeaders($responseHeader));
    714. 

  714. 

  715.         curl_close($curlHandle);
    716. 

  716. 

  717.         return $responseBody;
    718. 

  718.     }
    719. 

  719. 

  720.     /**
    721. 

  721.      * Get the header info to store.
    722. 

  722.      *
    723. 

  723.      * @param string $header
    724. 

  724.      *
    725. 

  725.      * @return array
    726. 

  726.      */
    727. 

  727.     private function parseHeaders(string $header): array
    728. 

  728.     {
    729. 

  729.         $headers = [];
    730. 

  730.         foreach (explode("\r\n", $header) as $line) {
    731. 

  731.             if (strpos($line, ':') !== false) {
    732. 

  732.                 [$key, $value] = explode(': ', $line);
    733. 

  733.                 $key = str_replace('-', '_', strtolower($key));
    734. 

  734.                 $headers[$key] = trim($value);
    735. 

  735.             }
    736. 

  736.         }
    737. 

  737.         return $headers;
    738. 

  738.     }
    739. 

  739. 

  740.     /**
    741. 

  741.      * Encode application authorization header with base64.
    742. 

  742.      *
    743. 

  743.      * @param Consumer $consumer
    744. 

  744.      *
    745. 

  745.      * @return string
    746. 

  746.      */
    747. 

  747.     private function encodeAppAuthorization(Consumer $consumer): string
    748. 

  748.     {
    749. 

  749.         $key = rawurlencode($consumer->key);
    750. 

  750.         $secret = rawurlencode($consumer->secret);
    751. 

  751.         return base64_encode($key . ':' . $secret);
    752. 

  752.     }
    753. 

  753. 

  754.     /**
    755. 

  755.      * Get Curl CA option based on whether the given path is a directory or file.
    756. 

  756.      *
    757. 

  757.      * @param string $path
    758. 

  758.      * @return int
    759. 

  759.      */
    760. 

  760.     private function curlCaOpt(string $path): int
    761. 

  761.     {
    762. 

  762.         return is_dir($path) ? CURLOPT_CAPATH : CURLOPT_CAINFO;
    763. 

  763.     }
    764. 

  764. }
    765. 

  765.