mirror of
https://github.com/YunoHost-Apps/kanboard_ynh.git
synced 2024-09-03 19:36:17 +02:00
119 lines
2.8 KiB
PHP
119 lines
2.8 KiB
PHP
<?php
|
|
|
|
namespace Kanboard\Core;
|
|
|
|
/**
|
|
* OAuth2 client
|
|
*
|
|
* @package core
|
|
* @author Frederic Guillot
|
|
*/
|
|
class OAuth2 extends Base
|
|
{
|
|
private $clientId;
|
|
private $secret;
|
|
private $callbackUrl;
|
|
private $authUrl;
|
|
private $tokenUrl;
|
|
private $scopes;
|
|
private $tokenType;
|
|
private $accessToken;
|
|
|
|
/**
|
|
* Create OAuth2 service
|
|
*
|
|
* @access public
|
|
* @param string $clientId
|
|
* @param string $secret
|
|
* @param string $callbackUrl
|
|
* @param string $authUrl
|
|
* @param string $tokenUrl
|
|
* @param array $scopes
|
|
* @return OAuth2
|
|
*/
|
|
public function createService($clientId, $secret, $callbackUrl, $authUrl, $tokenUrl, array $scopes)
|
|
{
|
|
$this->clientId = $clientId;
|
|
$this->secret = $secret;
|
|
$this->callbackUrl = $callbackUrl;
|
|
$this->authUrl = $authUrl;
|
|
$this->tokenUrl = $tokenUrl;
|
|
$this->scopes = $scopes;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
* Get authorization url
|
|
*
|
|
* @access public
|
|
* @return string
|
|
*/
|
|
public function getAuthorizationUrl()
|
|
{
|
|
$params = array(
|
|
'response_type' => 'code',
|
|
'client_id' => $this->clientId,
|
|
'redirect_uri' => $this->callbackUrl,
|
|
'scope' => implode(' ', $this->scopes),
|
|
);
|
|
|
|
return $this->authUrl.'?'.http_build_query($params);
|
|
}
|
|
|
|
/**
|
|
* Get authorization header
|
|
*
|
|
* @access public
|
|
* @return string
|
|
*/
|
|
public function getAuthorizationHeader()
|
|
{
|
|
if (strtolower($this->tokenType) === 'bearer') {
|
|
return 'Authorization: Bearer '.$this->accessToken;
|
|
}
|
|
|
|
return '';
|
|
}
|
|
|
|
/**
|
|
* Get access token
|
|
*
|
|
* @access public
|
|
* @param string $code
|
|
* @return string
|
|
*/
|
|
public function getAccessToken($code)
|
|
{
|
|
if (empty($this->accessToken) && ! empty($code)) {
|
|
$params = array(
|
|
'code' => $code,
|
|
'client_id' => $this->clientId,
|
|
'client_secret' => $this->secret,
|
|
'redirect_uri' => $this->callbackUrl,
|
|
'grant_type' => 'authorization_code',
|
|
);
|
|
|
|
$response = json_decode($this->httpClient->postForm($this->tokenUrl, $params, array('Accept: application/json')), true);
|
|
|
|
$this->tokenType = isset($response['token_type']) ? $response['token_type'] : '';
|
|
$this->accessToken = isset($response['access_token']) ? $response['access_token'] : '';
|
|
}
|
|
|
|
return $this->accessToken;
|
|
}
|
|
|
|
/**
|
|
* Set access token
|
|
*
|
|
* @access public
|
|
* @param string $token
|
|
* @param string $type
|
|
* @return string
|
|
*/
|
|
public function setAccessToken($token, $type = 'bearer')
|
|
{
|
|
$this->accessToken = $token;
|
|
$this->tokenType = $type;
|
|
}
|
|
}
|