PageRenderTime 41ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/wordpress/praized-community/includes/php/praized-php/PraizedOAuth.php

http://praized.googlecode.com/
PHP | 441 lines | 231 code | 61 blank | 149 comment | 43 complexity | 889461bfdcc84e0278c2cdebdedc78b6 MD5 | raw file
Possible License(s): Apache-2.0 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Praized OAuth handling library
    4. 

  4.  *
    5. 

  5.  * @version 2.0
    6. 

  6.  * @package Praized
    7. 

  7.  * @subpackage OAuth
    8. 

  8.  * @author Pier-Hugures Pellerin for Praized Media, Inc.
    9. 

  9.  * @author Stephane Daury for Praized Media, Inc.
    10. 

  10.  * @copyright Praized Media, Inc. <http://praizedmedia.com/>
    11. 

  11.  * @license Apache License, Version 2.0 <http://www.apache.org/licenses/LICENSE-2.0>
    12. 

  12.  */
    13. 

  13. 

  14. if ( ! class_exists('PraizedOAuth') ) {
    15. 

  15.     if ( ! class_exists('PraizedCipher') )
    16. 

  16.         include_once dirname(realpath(__FILE__)) . "/PraizedCipher.php";
    17. 

  17.     if ( ! class_exists('OAuthConsumer') )
    18. 

  18.         include_once dirname(realpath(__FILE__)) . "/vendor/OAuth.php";
    19. 

  19.     if ( ! class_exists('Snoopy') )
    20. 

  20.         include_once dirname(realpath(__FILE__)) . "/vendor/Snoopy.php";
    21. 

  21. 

  22.     /**
    23. 

  23.      * Praized OAuth handling library: Class
    24. 

  24.      * 
    25. 

  25.      * @package Praized
    26. 

  26. 	 * @subpackage OAuth
    27. 

  27.      * @since 0.1
    28. 

  28.      */
    29. 

  29.     class PraizedOAuth {
    30. 

  30. 		var $_consumerKey = NULL;
    31. 

  31. 		var $_consumerSecret = NULL;
    32. 

  32. 	
    33. 

  33. 		var $_requestTokenUrl       = "/oauth/request_token";
    34. 

  34. 		var $_requestAccessTokenURL = "/oauth/access_token";
    35. 

  35. 		var $_authorizeURL          = "/oauth/authorize";
    36. 

  36. 	
    37. 

  37. 		var $currentUser = array();
    38. 

  38. 		var $_cookieHash = NULL;
    39. 

  39. 	
    40. 

  40. 		// OAuth System.
    41. 

  41. 		var $_consumer = NULL;
    42. 

  42. 		var $_encoder;
    43. 

  43. 

  44. 		var $_net;
    45. 

  45. 		var $_version = '2.0';
    46. 

  46. 		var $errors = array();
    47. 

  47. 	
    48. 

  48. 		var $_expirationTime = 1209600; // (14 * 24 * 3600);
    49. 

  49. 		                       
    50. 

  50. 		var $_oAuthToken;
    51. 

  51. 	
    52. 

  52. 	    var $_test = 0;
    53. 

  53. 	
    54. 

  54. 		/**
    55. 

  55. 		 * Constructor.
    56. 

  56. 		 * 
    57. 

  57. 		 * @param string $consumerKey Consumer Key
    58. 

  58. 		 * @param string $consumerSecret Consumer Secret
    59. 

  59. 		 * @since 0.1
    60. 

  60. 		 */
    61. 

  61. 		function PraizedOAuth($consumerKey, $consumerSecret, $authHost = 'http://auth.praized.com') {
    62. 

  62. 			$this->_consumerKey    = $consumerKey;
    63. 

  63. 			$this->_consumerSecret = $consumerSecret;
    64. 

  64.     		
    65. 

  65. 		    $devInc = dirname(realpath(__FILE__)).'/Praized/Dev.php';
    66. 

  66.             if ( file_exists($devInc) ) {
    67. 

  67.                 require_once($devInc);
    68. 

  68.                 $pHosts = PraizedDev::praizedHosts();
    69. 

  69.                 $this->_requestTokenUrl       = $pHosts['auth'] . '/oauth/request_token';
    70. 

  70.     			$this->_requestAccessTokenURL = $pHosts['auth'] . '/oauth/access_token';
    71. 

  71.     			$this->_authorizeURL          = $pHosts['auth'] . '/oauth/authorize';
    72. 

  72.             } else {
    73. 

  73.                 $this->_requestTokenUrl       = $authHost . $this->_requestTokenUrl;
    74. 

  74.         		$this->_requestAccessTokenURL = $authHost . $this->_requestAccessTokenURL;
    75. 

  75.         		$this->_authorizeURL          = $authHost . $this->_authorizeURL;
    76. 

  76.             }
    77. 

  77. 			
    78. 

  78. 			$this->_consumer = new OAuthConsumer($this->_consumerKey, $this->_consumerSecret);
    79. 

  79. 			$this->_encoder  = new OAuthSignatureMethod_HMAC_SHA1();
    80. 

  80. 		
    81. 

  81. 			// initialize the Snoop Agent.
    82. 

  82. 			$this->_net = new Snoopy();
    83. 

  83. 			$this->_net->agent = "Praized PHP OAuth Request v." . $this->_version;
    84. 

  84. 			
    85. 

  85. 			$this->_oAuthToken = ( ! empty($_GET["oauth_token"]) ) ? $_GET["oauth_token"] : false;
    86. 

  86. 

  87. 			// Trying to get the user information.
    88. 

  88. 			$this->_load();
    89. 

  89. 		}
    90. 

  90. 		
    91. 

  91. 		/**
    92. 

  92. 		 * Returns the domain that the related cookie(s) should be valid for.
    93. 

  93. 		 *
    94. 

  94. 		 * @return string
    95. 

  95. 		 * @since 0.1
    96. 

  96. 		 */
    97. 

  97. 		function _cookieDomain() {
    98. 

  98. 		    if ( ! isset($_SERVER["SERVER_NAME"]) || empty($_SERVER["SERVER_NAME"]) ) {
    99. 

  99. 		        if (strstr($_SERVER["HTTP_HOST"], ':'))
    100. 

  100. 		            list($host, $port) = explode(':', $_SERVER["HTTP_HOST"]);
    101. 

  101. 		        else
    102. 

  102. 		            $host = $_SERVER["HTTP_HOST"];
    103. 

  103. 		    } elseif ( $_SERVER["SERVER_NAME"] == $_SERVER["SERVER_ADDR"] ) {
    104. 

  104. 		        $host = $_SERVER["SERVER_ADDR"]; 
    105. 

  105. 		    } else {
    106. 

  106. 		        $host = $_SERVER["SERVER_NAME"];
    107. 

  107. 		    }
    108. 

  108. 		    
    109. 

  109. 		    if ( preg_match('/^.*?\.?([^\.]+\.[a-zA-Z]+)$/', $host, $matches) ) {
    110. 

  110. 	            if ( $matches[1] )
    111. 

  111. 	                $domain = '.' . $matches[1];
    112. 

  112. 		    }
    113. 

  113. 		    
    114. 

  114. 		    if ( ! isset($domain) )
    115. 

  115. 		        $domain = $host;
    116. 

  116. 		    
    117. 

  117. 		    return $domain;
    118. 

  118. 		}
    119. 

  119. 

  120. 		/**
    121. 

  121. 		 * Start the authorization process.
    122. 

  122. 		 * 
    123. 

  123. 		 * @param string $callback Fully qualifed URL, defaults to what is guessed to be the community's top level.
    124. 

  124. 		 * @since 0.1
    125. 

  125. 		 */
    126. 

  126.   		function startAuthorization($callbackURL = NULL) {
    127. 

  127. 			if ( $callbackURL == NULL ) {
    128. 

  128.         	    if ( ! isset($_SERVER['SCRIPT_URI']) ) {
    129. 

  129.         	        $scriptUri = sprintf(
    130. 

  130.         	            '%s://%s%s%s',
    131. 

  131.         	            ( isset($_SERVER['HTTPS']) ) ? 'https' : 'http',
    132. 

  132.         	            ( isset($_SERVER['PHP_AUTH_USER']) ) ? $_SERVER['PHP_AUTH_USER'].':'.$_SERVER['PHP_AUTH_PQ'].'@' : '',
    133. 

  133.         	            $_SERVER['HTTP_HOST'],
    134. 

  134.         	            ( isset($_SERVER['REDIRECT_URL']) ? $_SERVER['REDIRECT_URL'] : $_SERVER['REQUEST_URI'])
    135. 

  135.         	        );
    136. 

  136.         	    } else {
    137. 

  137.         	        $scriptUri = $_SERVER['SCRIPT_URI'];
    138. 

  138.         	    }
    139. 

  139. 			    $callbackURL = preg_replace('|/oauth[/]?.*$|', '/', $scriptUri);
    140. 

  140. 			}
    141. 

  141. 			    
    142. 

  142.   		    $requestToken = $this->getRequestToken();
    143. 

  143. 			
    144. 

  144. 

  145. 			$requestToken->callback = $callbackURL;
    146. 

  146. 

  147. 			$this->_saveReturnTo($callbackURL);
    148. 

  148. 

  149. 			$this->_addTokens("requestToken", $requestToken);
    150. 

  150. 			$this->_authorize($requestToken, $callbackURL);
    151. 

  151. 		}
    152. 

  152. 

  153. 		/**
    154. 

  154. 		 * Checks if the current user is already authorized.
    155. 

  155. 		 * 
    156. 

  156. 		 * @return boolean TRUE if user is seen as currently authorized.
    157. 

  157. 		 * @since 0.1
    158. 

  158. 		 */
    159. 

  159. 		function isAuthorized() {	
    160. 

  160. 			return ($this->_retrieveToken("accessToken")) ? TRUE: FALSE;
    161. 

  161. 		}
    162. 

  162. 	
    163. 

  163. 		/**
    164. 

  164. 		 * Generates a request token before the authorization process is started.
    165. 

  165. 		 * 
    166. 

  166. 		 * @return mixed FALSE if we are not able to get one or an OAuthConsumer object
    167. 

  167. 		 * @since 0.1
    168. 

  168. 		 */
    169. 

  169. 		function getRequestToken() {
    170. 

  170. 			 $method = "GET";
    171. 

  171. 		
    172. 

  172. 			 $req = OAuthRequest::from_consumer_and_token($this->_consumer, 
    173. 

  173. 														  NULL, 
    174. 

  174. 														  $method, 
    175. 

  175. 														  $this->_requestTokenUrl,
    176. 

  176. 														  array());
    177. 

  177. 

  178. 			 $req->sign_request($this->_encoder, $this->_consumer, NULL);
    179. 

  179. 		  	 $response = $this->_make_http_call($req, $method);
    180. 

  180. 

  181. 			 if($response) {
    182. 

  182. 				return $this->_parseOAuthToken($response);
    183. 

  183. 		 	 } else {
    184. 

  184. 				return FALSE;
    185. 

  185. 			 }
    186. 

  186. 		}
    187. 

  187. 

  188. 		/**
    189. 

  189. 		 * Checks the presence and state of a valid looking $this->_oAuthToken
    190. 

  190. 		 *
    191. 

  191. 		 * @return boolean
    192. 

  192. 		 * @since 0.1
    193. 

  193. 		 */
    194. 

  194. 		function hasToken() {
    195. 

  195. 		    return ( $this->_oAuthToken !== false ) ? true : false; 
    196. 

  196. 		}
    197. 

  197. 

  198. 		/**
    199. 

  199. 		 * If we have an requestToken, try to get an accessToken
    200. 

  200. 		 * 
    201. 

  201. 		 * @param string $OAuthToken The request token to get an access token for.
    202. 

  202. 		 * @return boolean TRUE is the authorization is complete.
    203. 

  203. 		 * @since 0.1
    204. 

  204. 		 */
    205. 

  205. 		function completeAuthorization() {
    206. 

  206. 			if ( $this->hasToken()  && !$this->isAuthorized() ) {
    207. 

  207. 				
    208. 

  208.     		    $oAuthToken   = $this->_oAuthToken;
    209. 

  209.     		    $requestToken = $this->_retrieveToken("requestToken");
    210. 

  210.                 if($requestToken != NULL && $requestToken->key === $oAuthToken) {
    211. 

  211. 

  212.     				$accessToken  = $this->_getAccessToken($requestToken);
    213. 

  213. 					
    214. 

  214. 					if($accessToken) {
    215. 

  215.     					$this->currentUser['login'] = trim(urldecode($_GET['login']));
    216. 

  216.     					$this->currentUser['name']  = ( ! empty($_GET['name']) )
    217. 

  217.     												? trim(urldecode($_GET['name']))
    218. 

  218.     												: $this->currentUser['login'];
    219. 

  219.     				    $this->_addTokens("accessToken", $accessToken);
    220. 

  220.     					return TRUE;
    221. 

  221.     				}
    222. 

  222.     			}
    223. 

  223. 			}
    224. 

  224. 			return FALSE;
    225. 

  225. 		}
    226. 

  226. 		 
    227. 

  227. 		/**
    228. 

  228. 		* Clears the cookie for the current user
    229. 

  229. 		*
    230. 

  230. 		* @since 0.1
    231. 

  231. 		*/
    232. 

  232. 		function clear() {
    233. 

  233. 			setcookie($this->_cookieHash, "", time() - 3600, '/', $this->_cookieDomain());
    234. 

  234. 		}
    235. 

  235. 

  236. 		/**
    237. 

  237. 		 * Redirects to the initiating site/page.
    238. 

  238. 		 * 
    239. 

  239. 		 * @since 0.1 
    240. 

  240. 		 */
    241. 

  241. 		function returnTo() {
    242. 

  242. 			if(isset($this->currentUser["returnTo"]) && ! empty($this->currentUser["returnTo"]))
    243. 

  243. 				header("Location: " . $this->currentUser["returnTo"]);
    244. 

  244. 		}
    245. 

  245. 

  246. 		/**
    247. 

  247. 		 * Use a valid $requestToken to request an access token.
    248. 

  248. 		 * 
    249. 

  249. 		 * @param OAuthConsumer A valid request token
    250. 

  250. 		 * @return mixed FALSE if the request is invalid or a OAuthConsumerObject.
    251. 

  251. 		 * @since 0.1
    252. 

  252. 		 */
    253. 

  253. 		function _getAccessToken($requestToken) {
    254. 

  254. 			$method = "GET";
    255. 

  255. 			$req = OAuthRequest::from_consumer_and_token($this->_consumer, 
    256. 

  256. 														 $requestToken, 
    257. 

  257. 														 $method, 
    258. 

  258. 														 $this->_requestAccessTokenURL, 
    259. 

  259. 														 array());
    260. 

  260. 													
    261. 

  261. 			$req->sign_request($this->_encoder, $this->_consumer, $requestToken);			
    262. 

  262. 		  	$response = $this->_make_http_call($req, $method);
    263. 

  263. 			
    264. 

  264. 			 if($response) {
    265. 

  265. 				return $this->_parseOAuthToken($response);
    266. 

  266. 		 	 } else {
    267. 

  267. 				return FALSE;
    268. 

  268. 			 }
    269. 

  269. 		}
    270. 

  270. 

  271. 		/**
    272. 

  272. 		 * Return the header to make future compatible and authentified calls.
    273. 

  273. 		 * 
    274. 

  274. 		 * @return mixed FALSE if not authorized or header string
    275. 

  275. 		 * @since 0.1
    276. 

  276. 		 */
    277. 

  277. 		function getAccessHeader() {
    278. 

  278. 			$accessToken  = $this->_retrieveToken("accessToken");
    279. 

  279. 

  280. 			if($accessToken) {
    281. 

  281. 				$method = "GET";
    282. 

  282. 		
    283. 

  283. 				$req = OAuthRequest::from_consumer_and_token($this->_consumer, 
    284. 

  284. 																 $accessToken, 
    285. 

  285. 																 $method, 
    286. 

  286. 																 "http://api.praized.com/", 
    287. 

  287. 																 array());
    288. 

  288. 

  289. 				$req->sign_request($this->_encoder, $this->_consumer, $accessToken);			
    290. 

  290. 				
    291. 

  291. 				$accessHeaders = $req->to_header();
    292. 

  292. 	            
    293. 

  293. 				// VENDOR OAUTH LIB OUTPUT CLEANUP
    294. 

  294. 				$accessHeaders = preg_replace('/^"?Authorization:\s*(\S*)/', '\1', $accessHeaders);
    295. 

  295.                 $accessHeaders = str_replace('OAuth realm="",', '', $accessHeaders);
    296. 

  296.                 $accessHeaders = preg_replace('/^,(.*)/', '\1', $accessHeaders);
    297. 

  297. 				
    298. 

  298.                 return $accessHeaders;
    299. 

  299. 			}
    300. 

  300. 			return FALSE;
    301. 

  301. 		}
    302. 

  302. 		
    303. 

  303. 		/**
    304. 

  304. 		 * Authorize the current tokens, then redirect the current user to
    305. 

  305. 		 * to the oauth provider (Praized) authorization page.
    306. 

  306. 		 * 
    307. 

  307. 		 * @param OAuthConsumer Request token
    308. 

  308. 		 * @since 0.1
    309. 

  309. 		 */
    310. 

  310. 		function _authorize($requestTokenConsumer, $callbackURL = NULL) {	
    311. 

  311. 			$queryString = "/?oauth_token=" . $requestTokenConsumer->key;
    312. 

  312. 			
    313. 

  313. 			if($callbackURL != NULL)
    314. 

  314. 			 	$queryString .= "&oauth_callback=" . OAuthUtil::urlencode_RFC3986($callbackURL);
    315. 

  315. 			
    316. 

  316. 			$auth_url = $this->_authorizeURL . $queryString;
    317. 

  317. 			
    318. 

  318. 			if ( isset($_GET['i']) )
    319. 

  319. 				$auth_url .= '&i=' . $_GET['i'];
    320. 

  320. 

  321. 			header("Location: $auth_url", false, 302);
    322. 

  322. 			echo $auth_url;
    323. 

  323. 			exit;
    324. 

  324. 		}		
    325. 

  325. 		
    326. 

  326. 		/**
    327. 

  327. 		* Make HTTP requests to the oauth server
    328. 

  328. 		* 
    329. 

  329. 		* @param OAuthRequest $request Request object
    330. 

  330. 		* @param string $method Method to use for the call
    331. 

  331. 		* @param array $parameters Any more parameters use for this call
    332. 

  332. 		* @return mixed FALSE if not a 200 request or the response content
    333. 

  333. 		* @since 0.1
    334. 

  334. 		*/
    335. 

  335. 		function _make_http_call($request, $method, $parameters = array()) {
    336. 

  336. 			@$this->_net->fetch($request->to_url());
    337. 

  337. 				
    338. 

  338. 			if(! strstr($this->_net->response_code, "200") ) {
    339. 

  339. 				return FALSE;
    340. 

  340. 			} else {
    341. 

  341. 				return $this->_net->results;
    342. 

  342. 			}
    343. 

  343. 		}
    344. 

  344. 	
    345. 

  345. 		/**
    346. 

  346. 		* Parse the string token and return an OAuthConsumer object.
    347. 

  347. 		*
    348. 

  348. 		* @param string $str query string to be parsed
    349. 

  349. 		* @return OAuthConsumer
    350. 

  350. 		* @since 0.1
    351. 

  351. 		*/
    352. 

  352. 		function _parseOAuthToken($str) {
    353. 

  353. 			parse_str($str, $parameters);
    354. 

  354. 			return new OAuthConsumer($parameters["oauth_token"], $parameters["oauth_token_secret"]);
    355. 

  355. 		}
    356. 

  356. 		
    357. 

  357. 		/**
    358. 

  358. 		 * Retrieve a specific token from the cookie.
    359. 

  359. 		 * 
    360. 

  360. 		 * @param string $key the unique key
    361. 

  361. 		 * @return mixed OAuthConsumer for this specific key or FALSE if not found
    362. 

  362. 		 * @since 0.1
    363. 

  363. 		 */
    364. 

  364. 		function _retrieveToken($key) {
    365. 

  365. 			if( isset($this->currentUser[$key]) ) {
    366. 

  366. 				$data = $this->currentUser[$key];
    367. 

  367. 				return new OAuthConsumer($data["key"], $data["secret"], $data["callback"]);
    368. 

  368. 			} else {
    369. 

  369. 				return FALSE;
    370. 

  370. 			}
    371. 

  371. 		}
    372. 

  372. 

  373. 		/**
    374. 

  374. 		 * Save the a token to the cookie jar.
    375. 

  375. 		 * 
    376. 

  376. 		 * @param string $key the unique key
    377. 

  377. 		 * @param OAuthConsumer $token Tokens to add
    378. 

  378. 		 * @since 0.1
    379. 

  379. 		 */
    380. 

  380. 	    function _addTokens($key, $token) {
    381. 

  381. 			$this->currentUser[$key] = array(
    382. 

  382. 											"key" => $token->key,
    383. 

  383. 											"secret" => $token->secret,
    384. 

  384. 											"callback" => $token->callback
    385. 

  385. 										);
    386. 

  386. 			$this->_saveTokens();
    387. 

  387. 	 	}
    388. 

  388. 

  389. 		/**
    390. 

  390. 		 * Load the data for the current user
    391. 

  391. 		 * 
    392. 

  392. 		 * @since 0.1
    393. 

  393. 		 */
    394. 

  394. 		function _load() {
    395. 

  395. 			$this->_cookieHash = "praized_user_" . $this->_generateCookieHash();
    396. 

  396. 			if( ! isset($this->currentUser) ) {
    397. 

  397. 				$this->currentUser = array();
    398. 

  398. 			} else {
    399. 

  399. 				$this->currentUser = unserialize(PraizedCipher::decrypt($_COOKIE[$this->_cookieHash], $this->_cookieHash));
    400. 

  400. 			}
    401. 

  401. 		}	
    402. 

  402. 	
    403. 

  403. 		/**
    404. 

  404. 		 * Saves the fully qualified URL to return to
    405. 

  405. 		 * 
    406. 

  406. 		 * @param string $url where to go after authorization?
    407. 

  407. 		 * @since 0.1
    408. 

  408. 		 */
    409. 

  409. 		function _saveReturnTo($url = NULL) {
    410. 

  410. 			if($url != NULL) {
    411. 

  411. 				$this->currentUser["returnTo"] = $url;
    412. 

  412. 				$this->_saveTokens();
    413. 

  413. 			}
    414. 

  414. 		} 
    415. 

  415. 	
    416. 

  416. 		/**
    417. 

  417. 		 * Save the tokens to the cookie jar.
    418. 

  418. 		 * 
    419. 

  419. 		 * @since 0.1
    420. 

  420. 		 */
    421. 

  421. 		function _saveTokens() {
    422. 

  422. 			setcookie($this->_cookieHash, PraizedCipher::encrypt(serialize($this->currentUser), $this->_cookieHash), time() + $this->_expirationTime, "/", $this->_cookieDomain());
    423. 

  423. 		}
    424. 

  424. 		
    425. 

  425. 		/**
    426. 

  426. 		 * Generate the cookie hash for a specific user
    427. 

  427. 		 * this hash is use to get the correct cookie key.
    428. 

  428. 		 * 
    429. 

  429. 		 * @return string the complete hash for the current session.
    430. 

  430. 		 * @since 0.1
    431. 

  431. 		 */
    432. 

  432. 		function _generateCookieHash() {
    433. 

  433. 			$secret = $this->_consumerKey . $this->_consumerSecret . $_SERVER['REMOTE_ADDR'];
    434. 

  434. 		    if ( function_exists('sha1') )
    435. 

  435. 			    return sha1($secret);
    436. 

  436. 			else
    437. 

  437. 			    return md5($secret);
    438. 

  438. 		}
    439. 

  439. 	}
    440. 

  440. }
    441. 

  441. ?>
    442.