initial checkin

Author: sdd

Controller/.DS_Store

@@ -0,0 +1,30 @@
+<?php
+
+abstract class AbstractAuthMechanism {
+
+	public $supportsAPI = false;
+
+	abstract public function login($providerName, $callbackURL);
+
+	public function loginCallback($providerName, $token, $callbackURL) {
+		throw new BadMethodCallException('This AuthMechanism does not have a login callback');
+	}
+
+	public function apiRequest($provider, $url, $token = null, $parameters = array(), $method = 'GET', $headers = array()) {
+		throw new BadMethodCallException('This AuthMechanism has not implemented API Requests');
+	}
+
+	protected function _doGet($url) {
+		$socket = new HttpSocket();
+		$result = $socket->get($url);
+
+		return $result;
+	}
+
+	protected function _doPost($url, $data) {
+		$socket = new HttpSocket();
+		$result = $socket->post($url, $data);
+
+		return $result;
+	}
+}

Controller/Component/.DS_Store

@@ -0,0 +1,125 @@
+<?php
+
+// imported code from https://code.google.com/p/oauth/source/browse/#svn%2Fcode%2Fphp
+App::import("Vendor", "ExtAuth.OAuth/OAuth");
+
+require_once('OAuthAuthMechanism.php');
+
+class OAuth1AuthMechanism extends OAuthAuthMechanism {
+
+	public function login($provider, $callbackURL) {
+		$requestToken = $this->getRequestToken($provider, $callbackURL);
+
+		if ($requestToken['success']) {
+
+			$query = str_replace(
+				array('{REQUEST_TOKEN_KEY}', '{REQUEST_TOKEN_SECRET}'),
+				array($requestToken['data']->key, $requestToken['data']->secret),
+				$provider->authenticateParameters
+			);
+
+			return array(
+				'success'       => true,
+				'requestToken'  => $requestToken['data'],
+				'redirectURL'   => $provider->authenticateURL . '?' . http_build_query($query)
+			);
+		} else {
+			return $requestToken;
+		}
+	}
+
+	public function getRequestToken($provider, $callbackURL) {
+		return $this->_getToken(
+			$provider,
+			'request',
+			array(
+				'oauth_callback' => $callbackURL
+			)
+		);
+	}
+
+	public function getAccessToken($provider, $requestToken, $callbackURL = null) {
+		$parsed_params = OAuthUtil::parse_parameters($_SERVER['QUERY_STRING']);
+
+		return $this->_getToken(
+			$provider,
+			'access',
+			array(
+				'oauth_verifier' => $parsed_params['oauth_verifier']
+			),
+			$requestToken
+		);
+	}
+
+	protected function _getToken($provider, $tokenType, $parameters, $token = null) {
+
+		$response = $this->apiRequest(
+			$provider,
+			$provider->{$tokenType . 'TokenURL'},
+			$token,
+			$provider->{'get' . ucfirst($tokenType) . 'TokenParameters'}($parameters),
+			$provider->{$tokenType . 'TokenRequestMethod'}
+		);
+
+		if ($response['success']) {
+
+			$result = array();
+			parse_str($response['data'], $result);
+
+			if (isset($result['oauth_token']) && isset($result['oauth_token_secret'])) {
+				return array(
+					'success' => true,
+					'data'   => new OAuthToken($result['oauth_token'], $result['oauth_token_secret'])
+				);
+			} else {
+				return array(
+					'success'   => false,
+					'message'   => 'Could not parse the response to the token request',
+					'data'      => $result
+				);
+			}
+		} else {
+			$response['message'] = $tokenType . ' Token ' . $response['message'];
+			return $response;
+		}
+	}
+
+	public function apiRequest($provider, $url, $token, $parameters = array(), $method = 'GET', $headers = array()) {
+		//TODO: headers
+
+		$consumer = new OAuthConsumer($provider->key, $provider->secret);
+
+		$request = OAuthRequest::from_consumer_and_token(
+			$consumer,
+			$token,
+			$method,
+			$url,
+			$parameters
+		);
+
+		$request->sign_request(new OAuthSignatureMethod_HMAC_SHA1(), $consumer, $token);
+
+		switch ($method) {
+			case 'POST':
+				$response = $this->_doPost($url, $request->to_postdata());
+				break;
+
+			case 'GET':
+			default:
+				$response = $this->_doGet($request->to_url());
+		}
+
+		if ($response->code === "200") {
+			return array(
+				'success'   => true,
+				'data'    => $response->body
+			);
+		} else {
+			return array(
+				'success'   => false,
+				'message'   => 'API Request HTTP Error: status ' . $response->code,
+				'data'      => $response
+			);
+		}
+	}
+}

Controller/Component/AuthMechanisms/AbstractAuthMechanism.php

@@ -0,0 +1,59 @@
+<?php
+
+require_once('AbstractAuthMechanism.php');
+
+abstract class OAuthAuthMechanism extends AbstractAuthMechanism {
+
+	public function loginCallback($provider, $requestToken, $callbackURL) {
+		$accessToken = $this->getAccessToken($provider, $requestToken, $callbackURL);
+
+		if ($accessToken['success']) {
+			$response = array(
+				'success'       => true,
+				'accessToken'   => $accessToken['data']
+			);
+
+			if ($provider->profileURL) {
+				$profile = $this->getNormalizedProfile($provider, $accessToken['data']);
+				if ($profile['success']) {
+					$response['profile'] = $profile['data'];
+					return $response;
+				} else {
+					$profile['accessToken'] = $accessToken['data'];
+					return $profile;
+				}
+			} else {
+				return $response;
+			}
+		} else {
+			return $accessToken;
+		}
+	}
+
+	public function getNormalizedProfile($provider, $accessToken) {
+		if ($provider->profileURL) {
+			$response = $this->apiRequest(
+				$provider,
+				$provider->profileURL,
+				$accessToken,
+				$provider->profileParameters,
+				$provider->profileRequestMethod,
+				$provider->profileRequestHeaders
+			);
+
+			if ($response['success']) {
+				return $provider->normalizeProfile($response['data']);
+			} else {
+				return $response;
+			}
+
+		} else {
+			return array(
+				'success'       => false,
+				'message'       => 'Profiles are unavailable from this provider'
+			);
+		}
+	}
+
+	abstract public function getAccessToken($provider, $requestToken);
+}

Controller/Component/AuthMechanisms/OAuth1AuthMechanism.php

@@ -0,0 +1,107 @@
+<?php
+
+require_once('OAuthAuthMechanism.php');
+
+class OAuth2AuthMechanism extends OAuthAuthMechanism {
+
+	public function login($provider, $callbackURL) {
+
+		$query = $provider->AuthDialogParameters;
+
+		// resolve substitutions
+		array_walk($query, function(&$value, $key, $substitutions) {
+			$value = str_replace(
+				array_keys($substitutions),
+				array_values($substitutions),
+				$value
+			);
+		}, array(
+			'{STATE}'   => null,
+			'{CALLBACK_URL}'    => $callbackURL
+		));
+
+		return array(
+			'success'       => true,
+			'requestToken'  => null,
+			'redirectURL'   => $provider->AuthDialogURL . '?' . http_build_query($query)
+		);
+	}
+
+	public function getAccessToken($provider, $requestToken = null, $callbackURL = null) {
+
+		$query = $provider->getAccessTokenParameters();
+
+		// resolve substitutions
+		array_walk($query, function(&$value, $key, $substitutions) {
+			$value = str_replace(
+				array_keys($substitutions),
+				array_values($substitutions),
+				$value
+			);
+		}, array(
+			'{CALLBACK_URL}'    => $callbackURL
+		));
+
+		$response = $this->apiRequest(
+			null, // provider not required for OAuth2 apiRequest
+			$provider->accessTokenURL,
+			null,
+			$query,
+			$provider->accessTokenRequestMethod
+		);
+
+		if ($response['success']) {
+			$frags = json_decode($response['data'], true);
+			if (!$frags) {
+				parse_str($response['data'], $frags);
+			}
+
+			if (isset($frags['access_token'])) {
+				return array(
+					'success'   => true,
+					'data'      => $frags['access_token']
+				);
+			} else {
+				return array(
+					'success'   => false,
+					'message'   => 'Unable to parse Access Token response',
+					'data'      => $response['data']
+				);
+			}
+		} else {
+			return $response;
+		}
+	}
+
+	public function apiRequest($provider = null, $url, $accessToken = null, $parameters = array(), $method = 'GET', $headers = array()) {
+		//TODO: headers
+
+		// merge accessToken into parameters, if present
+		if ($accessToken) {
+			$parameters['access_token'] = $accessToken;
+		}
+
+		switch ($method) {
+			case 'POST':
+				$response = $this->_doPost($url, $parameters);
+				break;
+
+			case 'GET';
+			default:
+				$response = $this->_doGet($url . '?' . http_build_query($parameters));
+		}
+
+		if ($response->code === "200") {
+			return array(
+				'success'   => true,
+				'data'    => $response->body
+			);
+		} else {
+			return array(
+				'success'   => false,
+				'message'   => 'API Request HTTP Error: status ' . $response->code,
+				'data'      => $response
+			);
+		}
+	}
+}

Controller/Component/AuthMechanisms/OAuthAuthMechanism.php

@@ -0,0 +1,53 @@
+<?php
+
+abstract class AbstractAuthProvider {
+
+	public function __construct($mechanism) {
+		$this->mechanism = $mechanism;
+
+		$this->requestTokenRequestMethod        = 'GET';
+		$this->accessTokenRequestMethod         = 'POST';
+		$this->profileRequestMethod             = 'GET';
+
+		$this->requestTokenParameters           = array();
+		$this->accessTokenParameters            = array();
+		$this->profileParameters                = array();
+
+		$this->requestTokenRequestHeaders       = array();
+		$this->authenticateParameters = array(
+			'oauth_token' => '{REQUEST_TOKEN_KEY}'
+		);
+		$this->accessTokenRequestHeaders        = array();
+		$this->profileRequestHeaders            = array();
+
+	}
+
+	public function getRequestTokenParameters($params = null) {
+		if ($params === null) {
+			$parameters = $this->requestTokenParameters;
+		} else {
+			$parameters = array_merge($this->requestTokenParameters, $params);
+		}
+		return $parameters;
+	}
+
+	public function getAuthDialogParameters($params = null) {
+		if ($params === null) {
+			$parameters = $this->accessTokenParameters;
+		} else {
+			$parameters = array_merge($this->accessTokenParameters, $params);
+		}
+		return $parameters;
+	}
+
+	public function getAccessTokenParameters($params = null) {
+		if ($params === null) {
+			$parameters = $this->accessTokenParameters;
+		} else {
+			$parameters = array_merge($this->accessTokenParameters, $params);
+		}
+		return $parameters;
+	}
+
+	abstract public function normalizeProfile($raw_profile);
+}