mirror of
https://github.com/YunoHost-Apps/rainloop_ynh.git
synced 2024-09-03 20:16:18 +02:00
167 lines
3.9 KiB
PHP
167 lines
3.9 KiB
PHP
|
<?php
|
||
|
/**
|
||
|
* Copyright 2014 Facebook, Inc.
|
||
|
*
|
||
|
* You are hereby granted a non-exclusive, worldwide, royalty-free license to
|
||
|
* use, copy, modify, and distribute this software in source code or binary
|
||
|
* form for use in connection with the web services and APIs provided by
|
||
|
* Facebook.
|
||
|
*
|
||
|
* As with any software that integrates with the Facebook platform, your use
|
||
|
* of this software is subject to the Facebook Developer Principles and
|
||
|
* Policies [http://developers.facebook.com/policy/]. This copyright notice
|
||
|
* shall be included in all copies or substantial portions of the software.
|
||
|
*
|
||
|
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
||
|
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
||
|
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL
|
||
|
* THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
||
|
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING
|
||
|
* FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
|
||
|
* DEALINGS IN THE SOFTWARE.
|
||
|
*
|
||
|
*/
|
||
|
namespace Facebook;
|
||
|
|
||
|
use Facebook\Entities\SignedRequest;
|
||
|
|
||
|
/**
|
||
|
* Class FacebookSignedRequestFromInputHelper
|
||
|
* @package Facebook
|
||
|
*/
|
||
|
abstract class FacebookSignedRequestFromInputHelper
|
||
|
{
|
||
|
|
||
|
/**
|
||
|
* @var \Facebook\Entities\SignedRequest|null
|
||
|
*/
|
||
|
protected $signedRequest;
|
||
|
|
||
|
/**
|
||
|
* @var string the app id
|
||
|
*/
|
||
|
protected $appId;
|
||
|
|
||
|
/**
|
||
|
* @var string the app secret
|
||
|
*/
|
||
|
protected $appSecret;
|
||
|
|
||
|
/**
|
||
|
* @var string|null Random string to prevent CSRF.
|
||
|
*/
|
||
|
public $state = null;
|
||
|
|
||
|
/**
|
||
|
* Initialize the helper and process available signed request data.
|
||
|
*
|
||
|
* @param string|null $appId
|
||
|
* @param string|null $appSecret
|
||
|
*/
|
||
|
public function __construct($appId = null, $appSecret = null)
|
||
|
{
|
||
|
$this->appId = FacebookSession::_getTargetAppId($appId);
|
||
|
$this->appSecret = FacebookSession::_getTargetAppSecret($appSecret);
|
||
|
|
||
|
$this->instantiateSignedRequest();
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Instantiates a new SignedRequest entity.
|
||
|
*
|
||
|
* @param string|null
|
||
|
*/
|
||
|
public function instantiateSignedRequest($rawSignedRequest = null)
|
||
|
{
|
||
|
$rawSignedRequest = $rawSignedRequest ?: $this->getRawSignedRequest();
|
||
|
|
||
|
if (!$rawSignedRequest) {
|
||
|
return;
|
||
|
}
|
||
|
|
||
|
$this->signedRequest = new SignedRequest($rawSignedRequest, $this->state, $this->appSecret);
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Instantiates a FacebookSession from the signed request from input.
|
||
|
*
|
||
|
* @return FacebookSession|null
|
||
|
*/
|
||
|
public function getSession()
|
||
|
{
|
||
|
if ($this->signedRequest && $this->signedRequest->hasOAuthData()) {
|
||
|
return FacebookSession::newSessionFromSignedRequest($this->signedRequest);
|
||
|
}
|
||
|
return null;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Returns the SignedRequest entity.
|
||
|
*
|
||
|
* @return \Facebook\Entities\SignedRequest|null
|
||
|
*/
|
||
|
public function getSignedRequest()
|
||
|
{
|
||
|
return $this->signedRequest;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Returns the user_id if available.
|
||
|
*
|
||
|
* @return string|null
|
||
|
*/
|
||
|
public function getUserId()
|
||
|
{
|
||
|
return $this->signedRequest ? $this->signedRequest->getUserId() : null;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Get raw signed request from input.
|
||
|
*
|
||
|
* @return string|null
|
||
|
*/
|
||
|
abstract public function getRawSignedRequest();
|
||
|
|
||
|
/**
|
||
|
* Get raw signed request from GET input.
|
||
|
*
|
||
|
* @return string|null
|
||
|
*/
|
||
|
public function getRawSignedRequestFromGet()
|
||
|
{
|
||
|
if (isset($_GET['signed_request'])) {
|
||
|
return $_GET['signed_request'];
|
||
|
}
|
||
|
|
||
|
return null;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Get raw signed request from POST input.
|
||
|
*
|
||
|
* @return string|null
|
||
|
*/
|
||
|
public function getRawSignedRequestFromPost()
|
||
|
{
|
||
|
if (isset($_POST['signed_request'])) {
|
||
|
return $_POST['signed_request'];
|
||
|
}
|
||
|
|
||
|
return null;
|
||
|
}
|
||
|
|
||
|
/**
|
||
|
* Get raw signed request from cookie set from the Javascript SDK.
|
||
|
*
|
||
|
* @return string|null
|
||
|
*/
|
||
|
public function getRawSignedRequestFromCookie()
|
||
|
{
|
||
|
if (isset($_COOKIE['fbsr_' . $this->appId])) {
|
||
|
return $_COOKIE['fbsr_' . $this->appId];
|
||
|
}
|
||
|
return null;
|
||
|
}
|
||
|
|
||
|
}
|