Domů Procházet Nápověda
Přihlásit se
bachir
/
popsu-d7
1
0
Rozštěpit 0
Soubory Úkoly 0 Pull Requesty 0 Wiki
Strom: 8f4ce63da5
Větve Značky
popsu-d7
/
sites
/
all
/
modules
/
oauth
/
oauth_common.inc

oauth_common.inc 2.8 KB
Historie Surový

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Return information about consumers related to a user.
    5. 

  5.  *
    6. 

  6.  * @param int $uid
    7. 

  7.  *  User ID to retrieve consumer info for.
    8. 

  8.  * @return array
    9. 

  9.  *  An array of consumer info
    10. 

  10.  */
    11. 

  11. function oauth_common_user_consumers($uid) {
    12. 

  12.   $result = db_query('SELECT c.secret, c.configuration, pc.*
    13. 

  13.     FROM {oauth_common_consumer} c
    14. 

  14.     INNER JOIN {oauth_common_provider_consumer} pc ON pc.csid = c.csid
    15. 

  15.     WHERE pc.uid = :uid', array(':uid' => $uid));
    16. 

  16. 

  17.   $consumers = array();
    18. 

  18.   while ($consumer = DrupalOAuthConsumer::fromResult($result)) {
    19. 

  19.     $consumers[] = $consumer;
    20. 

  20.   }
    21. 

  21. 

  22.   return $consumers;
    23. 

  23. }
    24. 

  24. 

  25. /**
    26. 

  26.  * Return information about access tokens related to a user.
    27. 

  27.  *
    28. 

  28.  * @param int $uid
    29. 

  29.  *  User ID to retrieve consumer info for.
    30. 

  30.  * @return array
    31. 

  31.  *  An array of consumer info
    32. 

  32.  */
    33. 

  33. function oauth_common_user_access_tokens($uid) {
    34. 

  34.   $result = db_query("SELECT * FROM {oauth_common_token} WHERE uid = :uid AND type = :type", array(
    35. 

  35.     ':uid' => $uid,
    36. 

  36.     ':type' => OAUTH_COMMON_TOKEN_TYPE_ACCESS,
    37. 

  37.   ));
    38. 

  38.   $tokens = array();
    39. 

  39.   while ($token = DrupalOAuthToken::fromResult($result)) {
    40. 

  40.     $tokens[] = $token;
    41. 

  41.   }
    42. 

  42.   return $tokens;
    43. 

  43. }
    44. 

  44. 

  45. /**
    46. 

  46.  * Verifies the request
    47. 

  47.  *
    48. 

  48.  * @return array
    49. 

  49.  *  An array containing three elements. The first is TRUE if the request was
    50. 

  50.  *  signed, otherwise FALSE. Then comes the validated consumer and token objects.
    51. 

  51.  */
    52. 

  52. function oauth_common_verify_request() {
    53. 

  53.   $req = DrupalOAuthRequest::from_request();
    54. 

  54.   // Verify
    55. 

  55.   $consumer_key = $req->get_parameter('oauth_consumer_key');
    56. 

  56.   if (!empty($consumer_key)) {
    57. 

  57.     $consumer = DrupalOAuthConsumer::loadProviderByKey($consumer_key);
    58. 

  58.     if ($consumer) {
    59. 

  59.       $context = oauth_common_context_load($consumer->context);
    60. 

  60. 

  61.       if (!$context) {
    62. 

  62.         throw new Exception('No OAuth context found');
    63. 

  63.       }
    64. 

  64. 

  65.       _oauth_common_verify_body_hash($req);
    66. 

  66. 

  67.       // Only verify request if we got a signature
    68. 

  68.       $signature = $req->get_parameter('oauth_signature');
    69. 

  69.       if (!empty($signature)) {
    70. 

  70.         $server = new DrupalOAuthServer($context);
    71. 

  71.         return array_merge(array(TRUE), $server->verify_request($req));
    72. 

  72.       }
    73. 

  73.       else {
    74. 

  74.         $token_key = $req->get_parameter('oauth_token');
    75. 

  75.         if (empty($token_key) || !($token = DrupalOAuthToken::loadbyKey($token_key, $consumer))) {
    76. 

  76.           $token = NULL;
    77. 

  77.         }
    78. 

  78.         return array(FALSE, $consumer, $token);
    79. 

  79.       }
    80. 

  80.     }
    81. 

  81.   }
    82. 

  82.   return array(FALSE, NULL, NULL);
    83. 

  83. }
    84. 

  84. 

  85. function _oauth_common_verify_body_hash($req) {
    86. 

  86.   $body_hash = $req->get_parameter('oauth_body_hash');
    87. 

  87.   if ($body_hash && module_exists('inputstream')) {
    88. 

  88.     $hres = hash_init('sha1');
    89. 

  89.     $stream = fopen('drupal://input', 'r');
    90. 

  90.     hash_update_stream($hres, $stream);
    91. 

  91.     fclose($stream);
    92. 

  92.     $sha1 = hash_final($hres, TRUE);
    93. 

  93.     if ($sha1 !== base64_decode($body_hash)) {
    94. 

  94.       throw new OAuthException("Invalid body hash");
    95. 

  95.     }
    96. 

  96.   }
    97. 

  97. }
    98.