4 * @file src/Network/FKOAuthDataStore.php
6 * Based on oauth2-php <http://code.google.com/p/oauth2-php/>
10 namespace Friendica\Network;
12 use Friendica\Core\Config;
13 use Friendica\Core\Logger;
14 use Friendica\Database\DBA;
15 use Friendica\Util\Strings;
20 define('REQUEST_TOKEN_DURATION', 300);
21 define('ACCESS_TOKEN_DURATION', 31536000);
24 * @brief OAuthDataStore class
26 class FKOAuthDataStore extends OAuthDataStore
32 private static function genToken()
34 return Strings::getRandomHex(32);
38 * @param string $consumer_key key
39 * @return OAuthConsumer|null
42 public function lookup_consumer($consumer_key)
44 Logger::log(__function__ . ":" . $consumer_key);
46 $s = DBA::select('clients', ['client_id', 'pw', 'redirect_uri'], ['client_id' => $consumer_key]);
47 $r = DBA::toArray($s);
49 if (DBA::isResult($r)) {
50 return new OAuthConsumer($r[0]['client_id'], $r[0]['pw'], $r[0]['redirect_uri']);
57 * @param OAuthConsumer $consumer
58 * @param string $token_type
59 * @param string $token_id
60 * @return OAuthToken|null
63 public function lookup_token(OAuthConsumer $consumer, $token_type, $token_id)
65 Logger::log(__function__ . ":" . $consumer . ", " . $token_type . ", " . $token_id);
67 $s = DBA::select('tokens', ['id', 'secret', 'scope', 'expires', 'uid'], ['client_id' => $consumer->key, 'scope' => $token_type, 'id' => $token_id]);
68 $r = DBA::toArray($s);
70 if (DBA::isResult($r)) {
71 $ot = new OAuthToken($r[0]['id'], $r[0]['secret']);
72 $ot->scope = $r[0]['scope'];
73 $ot->expires = $r[0]['expires'];
74 $ot->uid = $r[0]['uid'];
82 * @param OAuthConsumer $consumer
83 * @param OAuthToken $token
84 * @param string $nonce
85 * @param int $timestamp
89 public function lookup_nonce(OAuthConsumer $consumer, OAuthToken $token, $nonce, int $timestamp)
91 $token = DBA::selectFirst('tokens', ['id', 'secret'], ['client_id' => $consumer->key, 'id' => $nonce, 'expires' => $timestamp]);
92 if (DBA::isResult($token)) {
93 return new OAuthToken($token['id'], $token['secret']);
100 * @param OAuthConsumer $consumer
101 * @param string $callback
102 * @return OAuthToken|null
105 public function new_request_token(OAuthConsumer $consumer, $callback = null)
107 Logger::log(__function__ . ":" . $consumer . ", " . $callback);
108 $key = self::genToken();
109 $sec = self::genToken();
111 if ($consumer->key) {
123 'scope' => 'request',
124 'expires' => time() + REQUEST_TOKEN_DURATION
132 return new OAuthToken($key, $sec);
136 * @param OAuthToken $token token
137 * @param OAuthConsumer $consumer consumer
138 * @param string $verifier optional, defult null
142 public function new_access_token(OAuthToken $token, OAuthConsumer $consumer, $verifier = null)
144 Logger::log(__function__ . ":" . $token . ", " . $consumer . ", " . $verifier);
146 // return a new access token attached to this consumer
147 // for the user associated with this token if the request token
149 // should also invalidate the request token
153 // get user for this verifier
154 $uverifier = Config::get("oauth", $verifier);
155 Logger::log(__function__ . ":" . $verifier . "," . $uverifier);
157 if (is_null($verifier) || ($uverifier !== false)) {
158 $key = self::genToken();
159 $sec = self::genToken();
165 'client_id' => $consumer->key,
167 'expires' => time() + ACCESS_TOKEN_DURATION,
173 $ret = new OAuthToken($key, $sec);
177 DBA::delete('tokens', ['id' => $token->key]);
179 if (!is_null($ret) && !is_null($uverifier)) {
180 Config::delete("oauth", $verifier);