PageRenderTime 48ms CodeModel.GetById 21ms RepoModel.GetById 0ms app.codeStats 0ms

/gmailoauthexample/oauth/gmailoauth.php

http://github.com/petewarden/handmadeimap
PHP | 174 lines | 99 code | 23 blank | 52 comment | 10 complexity | 2a3a284debb55fd0f2f0e32cf9daaa48 MD5 | raw file
    

  1. <?php
    2. 

  2. /*
    3. 

  3.  * A class handling the IMAP verification procedure for Gmail
    4. 

  4.  *
    5. 

  5.  * Based on the Twitter version by Abraham Williams (abraham@abrah.am) http://abrah.am
    6. 

  6.  *
    7. 

  7.  */
    8. 

  8. 

  9. /* Load OAuth lib. You can find it at http://oauth.net */
    10. 

  10. require_once('oauth.php');
    11. 

  11. 

  12. class GmailOAuth {
    13. 

  13.     // Contains the last HTTP status code returned
    14. 

  14.     private $http_status;
    15. 

  15. 

  16.     // Contains the last API call
    17. 

  17.     private $last_api_call;
    18. 

  18. 

  19.     // The base of the Gmail OAuth URLs
    20. 

  20.     public static $GMAIL_API_PREFIX = 'https://mail.google.com/mail/b/';
    21. 

  21.     public static $GMAIL_API_SUFFIX = '/imap/';
    22. 

  22.     
    23. 

  23.     public $GMAIL_API_ROOT = 'https://www.google.com/accounts/';
    24. 

  24. 

  25.     public $request_options = array(
    26. 

  26.         'scope' => 'https://mail.google.com/',
    27. 

  27.     );
    28. 

  28. 

  29.     /**
    30. 

  30.     * Set API URLS
    31. 

  31.     */
    32. 

  32.     function requestTokenURL() { return $this->GMAIL_API_ROOT.'OAuthGetRequestToken'; }
    33. 

  33.     function authorizeURL() { return $this->GMAIL_API_ROOT.'OAuthAuthorizeToken'; }
    34. 

  34.     function accessTokenURL() { return $this->GMAIL_API_ROOT.'OAuthGetAccessToken'; }
    35. 

  35. 

  36.     /**
    37. 

  37.     * Debug helpers
    38. 

  38.     */
    39. 

  39.     function lastStatusCode() { return $this->http_status; }
    40. 

  40.     function lastAPICall() { return $this->last_api_call; }
    41. 

  41. 

  42.     function __construct($consumer_key, $consumer_secret, $oauth_token = NULL, $oauth_token_secret = NULL) {/*{{{*/
    43. 

  43.         $this->sha1_method = new OAuthSignatureMethod_HMAC_SHA1();
    44. 

  44.         $this->consumer = new OAuthConsumer($consumer_key, $consumer_secret);
    45. 

  45.         if (!empty($oauth_token) && !empty($oauth_token_secret)) {
    46. 

  46.             $this->token = new OAuthConsumer($oauth_token, $oauth_token_secret);
    47. 

  47.         } else {
    48. 

  48.             $this->token = NULL;
    49. 

  49.         }
    50. 

  50.     }/*}}}*/
    51. 

  51. 

  52. 

  53.     /**
    54. 

  54.     * Get a request_token from Gmail
    55. 

  55.     *
    56. 

  56.     * @returns a key/value array containing oauth_token and oauth_token_secret
    57. 

  57.     */
    58. 

  58.     function getRequestToken() {/*{{{*/
    59. 

  59.         $requesturl = $this->requestTokenURL();
    60. 

  60.         $r = $this->oAuthRequest($requesturl, $this->request_options, 'GET');
    61. 

  61.         error_log('OAuth request: '.$requesturl);
    62. 

  62.         error_log('OAuth Response: '.print_r($r, true));
    63. 

  63.         $token = $this->oAuthParseResponse($r);
    64. 

  64.         $this->token = new OAuthConsumer($token['oauth_token'], $token['oauth_token_secret']);
    65. 

  65.         return $token;
    66. 

  66.     }/*}}}*/
    67. 

  67. 

  68.     /**
    69. 

  69.     * Parse a URL-encoded OAuth response
    70. 

  70.     *
    71. 

  71.     * @return a key/value array
    72. 

  72.     */
    73. 

  73.     function oAuthParseResponse($responseString) {
    74. 

  74.         $r = array();
    75. 

  75.         foreach (explode('&', $responseString) as $param) {
    76. 

  76.             $pair = explode('=', $param, 2);
    77. 

  77.             if (count($pair) != 2) continue;
    78. 

  78.             $r[urldecode($pair[0])] = urldecode($pair[1]);
    79. 

  79.         }
    80. 

  80.         return $r;
    81. 

  81.     }
    82. 

  82. 

  83.     /**
    84. 

  84.     * Get the authorize URL
    85. 

  85.     *
    86. 

  86.     * @returns a string
    87. 

  87.     */
    88. 

  88.     function getAuthorizeURL($token, $callbackurl) {/*{{{*/
    89. 

  89.         if (is_array($token)) $token = $token['oauth_token'];
    90. 

  90.         $result = $this->authorizeURL();
    91. 

  91.         $result .= '?oauth_token=' . $token;
    92. 

  92.         $result .= '&oauth_callback=' . urlencode($callbackurl);
    93. 

  93.         
    94. 

  94.         return $result;
    95. 

  95.     }/*}}}*/
    96. 

  96. 

  97.     /**
    98. 

  98.     * Exchange the request token and secret for an access token and
    99. 

  99.     * secret, to sign API calls.
    100. 

  100.     *
    101. 

  101.     * @returns array("oauth_token" => the access token,
    102. 

  102.     *                "oauth_token_secret" => the access secret)
    103. 

  103.     */
    104. 

  104.     function getAccessToken($token = NULL) {/*{{{*/
    105. 

  105.         $r = $this->oAuthRequest($this->accessTokenURL());
    106. 

  106.         $token = $this->oAuthParseResponse($r);
    107. 

  107.         $this->token = new OAuthConsumer($token['oauth_token'], $token['oauth_token_secret']);
    108. 

  108.         return $token;
    109. 

  109.     }/*}}}*/
    110. 

  110. 

  111.     /**
    112. 

  112.     * Format and sign an OAuth / API request
    113. 

  113.     */
    114. 

  114.     function oAuthRequest($url, $args = array(), $method = NULL) {/*{{{*/
    115. 

  115.         if (empty($method)) $method = empty($args) ? "GET" : "POST";
    116. 

  116.         $req = OAuthRequest::from_consumer_and_token($this->consumer, $this->token, $method, $url, $args);
    117. 

  117.         $req->sign_request($this->sha1_method, $this->consumer, $this->token);
    118. 

  118.         switch ($method) {
    119. 

  119.             case 'GET': return $this->http($req->to_url());
    120. 

  120.             case 'POST': return $this->http($req->get_normalized_http_url(), $req->to_postdata());
    121. 

  121.         }
    122. 

  122.     }/*}}}*/
    123. 

  123. 

  124.     /**
    125. 

  125.     * Get the base64 string to pass in to the IMAP authentication method
    126. 

  126.     */
    127. 

  127.     function getLoginString($email) {/*{{{*/
    128. 

  128.         $method = 'GET';
    129. 

  129.         $url = 'https://mail.google.com/mail/b/'.$email.'/imap/';
    130. 

  130.         $args = array();
    131. 

  131.         $req = OAuthRequest::from_consumer_and_token($this->consumer, $this->token, $method, $url, $args);
    132. 

  132.         $req->sign_request($this->sha1_method, $this->consumer, $this->token);
    133. 

  133. 

  134.         $requesturl = $req->to_url();
    135. 

  135.         
    136. 

  136.         $requestparts = explode('?', $requesturl);
    137. 

  137.         $oauthparamslist = explode('&', $requestparts[1]);
    138. 

  138.         $oauthparamsstring = implode(',', $oauthparamslist);
    139. 

  139.         
    140. 

  140.         $clientrequest = 'GET '.$url.' '.$oauthparamsstring;
    141. 

  141.         
    142. 

  142.         $result = base64_encode($clientrequest);
    143. 

  143.         
    144. 

  144.         return $result;
    145. 

  145.     }/*}}}*/
    146. 

  146. 

  147.     /**
    148. 

  148.     * Make an HTTP request
    149. 

  149.     *
    150. 

  150.     * @return API results
    151. 

  151.     */
    152. 

  152.     function http($url, $post_data = null) {/*{{{*/
    153. 

  153.         $ch = curl_init();
    154. 

  154.         if (defined("CURL_CA_BUNDLE_PATH")) curl_setopt($ch, CURLOPT_CAINFO, CURL_CA_BUNDLE_PATH);
    155. 

  155.         curl_setopt($ch, CURLOPT_URL, $url);
    156. 

  156.         curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 30);
    157. 

  157.         curl_setopt($ch, CURLOPT_TIMEOUT, 30);
    158. 

  158.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    159. 

  159.         curl_setopt($ch, CURLOPT_FOLLOWLOCATION, TRUE);
    160. 

  160.         //////////////////////////////////////////////////
    161. 

  161.         ///// Set to 1 to verify Twitter's SSL Cert //////
    162. 

  162.         //////////////////////////////////////////////////
    163. 

  163.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
    164. 

  164.         if (isset($post_data)) {
    165. 

  165.             curl_setopt($ch, CURLOPT_POST, 1);
    166. 

  166.             curl_setopt($ch, CURLOPT_POSTFIELDS, $post_data);
    167. 

  167.         }
    168. 

  168.         $response = curl_exec($ch);
    169. 

  169.         $this->http_status = curl_getinfo($ch, CURLINFO_HTTP_CODE);
    170. 

  170.         $this->last_api_call = $url;
    171. 

  171.         curl_close ($ch);
    172. 

  172.         return $response;
    173. 

  173.     }/*}}}*/
    174. 

  174. }/*}}}*/
    175.