PageRenderTime 28ms CodeModel.GetById 22ms RepoModel.GetById 1ms app.codeStats 0ms

/sample/oauth/functions.php

http://github.com/evernote/evernote-sdk-php
PHP | 274 lines | 174 code | 27 blank | 73 comment | 32 complexity | 91f3b8fab476e9ca18aa04a8d2398776 MD5 | raw file
Possible License(s): BSD-3-Clause-No-Nuclear-License-2014 
    

  1. <?php
    2. 

  2. 

  3.     /*
    4. 

  4.      * Copyright 2011-2012 Evernote Corporation.
    5. 

  5.      *
    6. 

  6.      * This file contains functions used by Evernote's PHP OAuth samples.
    7. 

  7.      */
    8. 

  8. 

  9.     // Include the Evernote API from the lib subdirectory.
    10. 

  10.     // lib simply contains the contents of /php/lib from the Evernote API SDK
    11. 

  11.     define("EVERNOTE_LIBS", dirname(__FILE__) . DIRECTORY_SEPARATOR . "lib");
    12. 

  12.     ini_set("include_path", ini_get("include_path") . PATH_SEPARATOR . EVERNOTE_LIBS);
    13. 

  13. 

  14.     require_once 'Evernote/Client.php';
    15. 

  15.     require_once 'packages/Types/Types_types.php';
    16. 

  16. 

  17.     // Import the classes that we're going to be using
    18. 

  18.     use EDAM\Error\EDAMSystemException,
    19. 

  19.         EDAM\Error\EDAMUserException,
    20. 

  20.         EDAM\Error\EDAMErrorCode,
    21. 

  21.         EDAM\Error\EDAMNotFoundException;
    22. 

  22.     use Evernote\Client;
    23. 

  23. 

  24.     // Verify that you successfully installed the PHP OAuth Extension
    25. 

  25.     if (!class_exists('OAuth')) {
    26. 

  26.         die("<span style=\"color:red\">The PHP OAuth Extension is not installed</span>");
    27. 

  27.     }
    28. 

  28. 

  29.     // Verify that you have configured your API key
    30. 

  30.     if (strlen(OAUTH_CONSUMER_KEY) == 0 || strlen(OAUTH_CONSUMER_SECRET) == 0) {
    31. 

  31.         $configFile = dirname(__FILE__) . '/config.php';
    32. 

  32.         die("<span style=\"color:red\">Before using this sample code you must edit the file $configFile " .
    33. 

  33.               "and fill in OAUTH_CONSUMER_KEY and OAUTH_CONSUMER_SECRET with the values that you received from Evernote. " .
    34. 

  34.               "If you do not have an API key, you can request one from " .
    35. 

  35.               "<a href=\"http://dev.evernote.com/documentation/cloud/\">http://dev.evernote.com/documentation/cloud/</a></span>");
    36. 

  36.     }
    37. 

  37. 

  38.     /*
    39. 

  39.      * The first step of OAuth authentication: the client (this application)
    40. 

  40.      * obtains temporary credentials from the server (Evernote).
    41. 

  41.      *
    42. 

  42.      * After successfully completing this step, the client has obtained the
    43. 

  43.      * temporary credentials identifier, an opaque string that is only meaningful
    44. 

  44.      * to the server, and the temporary credentials secret, which is used in
    45. 

  45.      * signing the token credentials request in step 3.
    46. 

  46.      *
    47. 

  47.      * This step is defined in RFC 5849 section 2.1:
    48. 

  48.      * http://tools.ietf.org/html/rfc5849#section-2.1
    49. 

  49.      *
    50. 

  50.      * @return boolean TRUE on success, FALSE on failure
    51. 

  51.      */
    52. 

  52.     function getTemporaryCredentials()
    53. 

  53.     {
    54. 

  54.         global $lastError, $currentStatus;
    55. 

  55.         try {
    56. 

  56.             $client = new Client(array(
    57. 

  57.                 'consumerKey' => OAUTH_CONSUMER_KEY,
    58. 

  58.                 'consumerSecret' => OAUTH_CONSUMER_SECRET,
    59. 

  59.                 'sandbox' => SANDBOX
    60. 

  60.             ));
    61. 

  61.             $requestTokenInfo = $client->getRequestToken(getCallbackUrl());
    62. 

  62.             if ($requestTokenInfo) {
    63. 

  63.                 $_SESSION['requestToken'] = $requestTokenInfo['oauth_token'];
    64. 

  64.                 $_SESSION['requestTokenSecret'] = $requestTokenInfo['oauth_token_secret'];
    65. 

  65.                 $currentStatus = 'Obtained temporary credentials';
    66. 

  66. 

  67.                 return TRUE;
    68. 

  68.             } else {
    69. 

  69.                 $lastError = 'Failed to obtain temporary credentials.';
    70. 

  70.             }
    71. 

  71.         } catch (OAuthException $e) {
    72. 

  72.             $lastError = 'Error obtaining temporary credentials: ' . $e->getMessage();
    73. 

  73.         }
    74. 

  74. 

  75.         return FALSE;
    76. 

  76.     }
    77. 

  77. 

  78.     /*
    79. 

  79.      * The completion of the second step in OAuth authentication: the resource owner
    80. 

  80.      * authorizes access to their account and the server (Evernote) redirects them
    81. 

  81.      * back to the client (this application).
    82. 

  82.      *
    83. 

  83.      * After successfully completing this step, the client has obtained the
    84. 

  84.      * verification code that is passed to the server in step 3.
    85. 

  85.      *
    86. 

  86.      * This step is defined in RFC 5849 section 2.2:
    87. 

  87.      * http://tools.ietf.org/html/rfc5849#section-2.2
    88. 

  88.      *
    89. 

  89.      * @return boolean TRUE if the user authorized access, FALSE if they declined access.
    90. 

  90.      */
    91. 

  91.     function handleCallback()
    92. 

  92.     {
    93. 

  93.         global $lastError, $currentStatus;
    94. 

  94.         if (isset($_GET['oauth_verifier'])) {
    95. 

  95.             $_SESSION['oauthVerifier'] = $_GET['oauth_verifier'];
    96. 

  96.             $currentStatus = 'Content owner authorized the temporary credentials';
    97. 

  97. 

  98.             return TRUE;
    99. 

  99.         } else {
    100. 

  100.             // If the User clicks "decline" instead of "authorize", no verification code is sent
    101. 

  101.             $lastError = 'Content owner did not authorize the temporary credentials';
    102. 

  102. 

  103.             return FALSE;
    104. 

  104.         }
    105. 

  105.     }
    106. 

  106. 

  107.     /*
    108. 

  108.      * The third and final step in OAuth authentication: the client (this application)
    109. 

  109.      * exchanges the authorized temporary credentials for token credentials.
    110. 

  110.      *
    111. 

  111.      * After successfully completing this step, the client has obtained the
    112. 

  112.      * token credentials that are used to authenticate to the Evernote API.
    113. 

  113.      * In this sample application, we simply store these credentials in the user's
    114. 

  114.      * session. A real application would typically persist them.
    115. 

  115.      *
    116. 

  116.      * This step is defined in RFC 5849 section 2.3:
    117. 

  117.      * http://tools.ietf.org/html/rfc5849#section-2.3
    118. 

  118.      *
    119. 

  119.      * @return boolean TRUE on success, FALSE on failure
    120. 

  120.      */
    121. 

  121.     function getTokenCredentials()
    122. 

  122.     {
    123. 

  123.         global $lastError, $currentStatus;
    124. 

  124. 

  125.         if (isset($_SESSION['accessToken'])) {
    126. 

  126.             $lastError = 'Temporary credentials may only be exchanged for token credentials once';
    127. 

  127. 

  128.             return FALSE;
    129. 

  129.         }
    130. 

  130. 

  131.         try {
    132. 

  132.             $client = new Client(array(
    133. 

  133.                 'consumerKey' => OAUTH_CONSUMER_KEY,
    134. 

  134.                 'consumerSecret' => OAUTH_CONSUMER_SECRET,
    135. 

  135.                 'sandbox' => SANDBOX
    136. 

  136.             ));
    137. 

  137.             $accessTokenInfo = $client->getAccessToken($_SESSION['requestToken'], $_SESSION['requestTokenSecret'], $_SESSION['oauthVerifier']);
    138. 

  138.             if ($accessTokenInfo) {
    139. 

  139.                 $_SESSION['accessToken'] = $accessTokenInfo['oauth_token'];
    140. 

  140.                 $currentStatus = 'Exchanged the authorized temporary credentials for token credentials';
    141. 

  141. 

  142.                 return TRUE;
    143. 

  143.             } else {
    144. 

  144.                 $lastError = 'Failed to obtain token credentials.';
    145. 

  145.             }
    146. 

  146.         } catch (OAuthException $e) {
    147. 

  147.             $lastError = 'Error obtaining token credentials: ' . $e->getMessage();
    148. 

  148.         }
    149. 

  149. 

  150.         return FALSE;
    151. 

  151.     }
    152. 

  152. 

  153.     /*
    154. 

  154.      * Demonstrate the use of token credentials obtained via OAuth by listing the notebooks
    155. 

  155.      * in the resource owner's Evernote account using the Evernote API. Returns an array
    156. 

  156.      * of String notebook names.
    157. 

  157.      *
    158. 

  158.      * Once you have obtained the token credentials identifier via OAuth, you can use it
    159. 

  159.      * as the auth token in any call to an Evernote API function.
    160. 

  160.      *
    161. 

  161.      * @return boolean TRUE on success, FALSE on failure
    162. 

  162.      */
    163. 

  163.     function listNotebooks()
    164. 

  164.     {
    165. 

  165.         global $lastError, $currentStatus;
    166. 

  166. 

  167.         try {
    168. 

  168.             $accessToken = $_SESSION['accessToken'];
    169. 

  169.             $client = new Client(array(
    170. 

  170.                 'token' => $accessToken,
    171. 

  171.                 'sandbox' => SANDBOX
    172. 

  172.             ));
    173. 

  173.             $notebooks = $client->getNoteStore()->listNotebooks();
    174. 

  174.             $result = array();
    175. 

  175.             if (!empty($notebooks)) {
    176. 

  176.                 foreach ($notebooks as $notebook) {
    177. 

  177.                     $result[] = $notebook->name;
    178. 

  178.                 }
    179. 

  179.             }
    180. 

  180.             $_SESSION['notebooks'] = $result;
    181. 

  181.             $currentStatus = 'Successfully listed content owner\'s notebooks';
    182. 

  182. 

  183.             return TRUE;
    184. 

  184.         } catch (EDAMSystemException $e) {
    185. 

  185.             if (isset(EDAMErrorCode::$__names[$e->errorCode])) {
    186. 

  186.                 $lastError = 'Error listing notebooks: ' . EDAMErrorCode::$__names[$e->errorCode] . ": " . $e->parameter;
    187. 

  187.             } else {
    188. 

  188.                 $lastError = 'Error listing notebooks: ' . $e->getCode() . ": " . $e->getMessage();
    189. 

  189.             }
    190. 

  190.         } catch (EDAMUserException $e) {
    191. 

  191.             if (isset(EDAMErrorCode::$__names[$e->errorCode])) {
    192. 

  192.                 $lastError = 'Error listing notebooks: ' . EDAMErrorCode::$__names[$e->errorCode] . ": " . $e->parameter;
    193. 

  193.             } else {
    194. 

  194.                 $lastError = 'Error listing notebooks: ' . $e->getCode() . ": " . $e->getMessage();
    195. 

  195.             }
    196. 

  196.         } catch (EDAMNotFoundException $e) {
    197. 

  197.             if (isset(EDAMErrorCode::$__names[$e->errorCode])) {
    198. 

  198.                 $lastError = 'Error listing notebooks: ' . EDAMErrorCode::$__names[$e->errorCode] . ": " . $e->parameter;
    199. 

  199.             } else {
    200. 

  200.                 $lastError = 'Error listing notebooks: ' . $e->getCode() . ": " . $e->getMessage();
    201. 

  201.             }
    202. 

  202.         } catch (Exception $e) {
    203. 

  203.             $lastError = 'Error listing notebooks: ' . $e->getMessage();
    204. 

  204.         }
    205. 

  205. 

  206.         return FALSE;
    207. 

  207.     }
    208. 

  208. 

  209.     /*
    210. 

  210.      * Reset the current session.
    211. 

  211.      */
    212. 

  212.     function resetSession()
    213. 

  213.     {
    214. 

  214.         if (isset($_SESSION['requestToken'])) {
    215. 

  215.             unset($_SESSION['requestToken']);
    216. 

  216.         }
    217. 

  217.         if (isset($_SESSION['requestTokenSecret'])) {
    218. 

  218.             unset($_SESSION['requestTokenSecret']);
    219. 

  219.         }
    220. 

  220.         if (isset($_SESSION['oauthVerifier'])) {
    221. 

  221.             unset($_SESSION['oauthVerifier']);
    222. 

  222.         }
    223. 

  223.         if (isset($_SESSION['accessToken'])) {
    224. 

  224.             unset($_SESSION['accessToken']);
    225. 

  225.         }
    226. 

  226.         if (isset($_SESSION['accessTokenSecret'])) {
    227. 

  227.             unset($_SESSION['accessTokenSecret']);
    228. 

  228.         }
    229. 

  229.         if (isset($_SESSION['noteStoreUrl'])) {
    230. 

  230.             unset($_SESSION['noteStoreUrl']);
    231. 

  231.         }
    232. 

  232.         if (isset($_SESSION['webApiUrlPrefix'])) {
    233. 

  233.             unset($_SESSION['webApiUrlPrefix']);
    234. 

  234.         }
    235. 

  235.         if (isset($_SESSION['tokenExpires'])) {
    236. 

  236.             unset($_SESSION['tokenExpires']);
    237. 

  237.         }
    238. 

  238.         if (isset($_SESSION['userId'])) {
    239. 

  239.             unset($_SESSION['userId']);
    240. 

  240.         }
    241. 

  241.         if (isset($_SESSION['notebooks'])) {
    242. 

  242.             unset($_SESSION['notebooks']);
    243. 

  243.         }
    244. 

  244.     }
    245. 

  245. 

  246.     /*
    247. 

  247.      * Get the URL of this application. This URL is passed to the server (Evernote)
    248. 

  248.      * while obtaining unauthorized temporary credentials (step 1). The resource owner
    249. 

  249.      * is redirected to this URL after authorizing the temporary credentials (step 2).
    250. 

  250.      */
    251. 

  251.     function getCallbackUrl()
    252. 

  252.     {
    253. 

  253.         $thisUrl = (empty($_SERVER['HTTPS'])) ? "http://" : "https://";
    254. 

  254.         $thisUrl .= $_SERVER['SERVER_NAME'];
    255. 

  255.         $thisUrl .= ($_SERVER['SERVER_PORT'] == 80 || $_SERVER['SERVER_PORT'] == 443) ? "" : (":".$_SERVER['SERVER_PORT']);
    256. 

  256.         $thisUrl .= $_SERVER['SCRIPT_NAME'];
    257. 

  257.         $thisUrl .= '?action=callback';
    258. 

  258. 

  259.         return $thisUrl;
    260. 

  260.     }
    261. 

  261. 

  262.     /*
    263. 

  263.      * Get the Evernote server URL used to authorize unauthorized temporary credentials.
    264. 

  264.      */
    265. 

  265.     function getAuthorizationUrl()
    266. 

  266.     {
    267. 

  267.         $client = new Client(array(
    268. 

  268.             'consumerKey' => OAUTH_CONSUMER_KEY,
    269. 

  269.             'consumerSecret' => OAUTH_CONSUMER_SECRET,
    270. 

  270.             'sandbox' => SANDBOX
    271. 

  271.         ));
    272. 

  272. 

  273.         return $client->getAuthorizeUrl($_SESSION['requestToken']);
    274. 

  274.     }
    275. 

  275.