mirror of
https://github.com/YunoHost-Apps/kanboard_ynh.git
synced 2024-09-03 19:36:17 +02:00
143 lines
2.9 KiB
PHP
143 lines
2.9 KiB
PHP
<?php
|
|
|
|
namespace Kanboard\Auth;
|
|
|
|
use Kanboard\Core\Base;
|
|
use Kanboard\Core\Security\OAuthAuthenticationProviderInterface;
|
|
use Kanboard\User\GoogleUserProvider;
|
|
|
|
/**
|
|
* Google Authentication Provider
|
|
*
|
|
* @package auth
|
|
* @author Frederic Guillot
|
|
*/
|
|
class GoogleAuth extends Base implements OAuthAuthenticationProviderInterface
|
|
{
|
|
/**
|
|
* User properties
|
|
*
|
|
* @access protected
|
|
* @var \Kanboard\User\GoogleUserProvider
|
|
*/
|
|
protected $userInfo = null;
|
|
|
|
/**
|
|
* OAuth2 instance
|
|
*
|
|
* @access protected
|
|
* @var \Kanboard\Core\Http\OAuth2
|
|
*/
|
|
protected $service;
|
|
|
|
/**
|
|
* OAuth2 code
|
|
*
|
|
* @access protected
|
|
* @var string
|
|
*/
|
|
protected $code = '';
|
|
|
|
/**
|
|
* Get authentication provider name
|
|
*
|
|
* @access public
|
|
* @return string
|
|
*/
|
|
public function getName()
|
|
{
|
|
return 'Google';
|
|
}
|
|
|
|
/**
|
|
* Authenticate the user
|
|
*
|
|
* @access public
|
|
* @return boolean
|
|
*/
|
|
public function authenticate()
|
|
{
|
|
$profile = $this->getProfile();
|
|
|
|
if (! empty($profile)) {
|
|
$this->userInfo = new GoogleUserProvider($profile);
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Set Code
|
|
*
|
|
* @access public
|
|
* @param string $code
|
|
* @return GoogleAuth
|
|
*/
|
|
public function setCode($code)
|
|
{
|
|
$this->code = $code;
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
* Get user object
|
|
*
|
|
* @access public
|
|
* @return GoogleUserProvider
|
|
*/
|
|
public function getUser()
|
|
{
|
|
return $this->userInfo;
|
|
}
|
|
|
|
/**
|
|
* Get configured OAuth2 service
|
|
*
|
|
* @access public
|
|
* @return \Kanboard\Core\Http\OAuth2
|
|
*/
|
|
public function getService()
|
|
{
|
|
if (empty($this->service)) {
|
|
$this->service = $this->oauth->createService(
|
|
GOOGLE_CLIENT_ID,
|
|
GOOGLE_CLIENT_SECRET,
|
|
$this->helper->url->to('oauth', 'google', array(), '', true),
|
|
'https://accounts.google.com/o/oauth2/auth',
|
|
'https://accounts.google.com/o/oauth2/token',
|
|
array('https://www.googleapis.com/auth/userinfo.email', 'https://www.googleapis.com/auth/userinfo.profile')
|
|
);
|
|
}
|
|
|
|
return $this->service;
|
|
}
|
|
|
|
/**
|
|
* Get Google profile
|
|
*
|
|
* @access public
|
|
* @return array
|
|
*/
|
|
public function getProfile()
|
|
{
|
|
$this->getService()->getAccessToken($this->code);
|
|
|
|
return $this->httpClient->getJson(
|
|
'https://www.googleapis.com/oauth2/v1/userinfo',
|
|
array($this->getService()->getAuthorizationHeader())
|
|
);
|
|
}
|
|
|
|
/**
|
|
* Unlink user
|
|
*
|
|
* @access public
|
|
* @param integer $userId
|
|
* @return bool
|
|
*/
|
|
public function unlink($userId)
|
|
{
|
|
return $this->user->update(array('id' => $userId, 'google_id' => ''));
|
|
}
|
|
}
|