X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=mod%2Fapi.php;h=0a801a8a1e6e716f3c29f1f2bb39f440b0827b26;hb=cfac13790bc1948697b76b9a6134b61c7bb3173b;hp=716b484461aeff250e902a856a040da6e1ddbec7;hpb=c0abff0bda84b9151fb3314c6b33a262d0b44d13;p=friendica.git diff --git a/mod/api.php b/mod/api.php index 716b484461..0a801a8a1e 100644 --- a/mod/api.php +++ b/mod/api.php @@ -1,120 +1,39 @@ . + * */ -use Friendica\App; -use Friendica\Core\Config; -use Friendica\Core\L10n; -use Friendica\Core\System; -use Friendica\Database\DBA; -use Friendica\Module\Login; - -require_once 'include/api.php'; - -function oauth_get_client($request) -{ - - - $params = $request->get_parameters(); - $token = $params['oauth_token']; - - $r = q("SELECT `clients`.* - FROM `clients`, `tokens` - WHERE `clients`.`client_id`=`tokens`.`client_id` - AND `tokens`.`id`='%s' AND `tokens`.`scope`='request'", DBA::escape($token)); - if (!DBA::isResult($r)) { - return null; - } +use Friendica\App; +use Friendica\DI; - return $r[0]; -} +require_once __DIR__ . '/../include/api.php'; function api_post(App $a) { - if (!local_user()) { - notice(L10n::t('Permission denied.') . EOL); - return; - } - - if (count($a->user) && x($a->user, 'uid') && $a->user['uid'] != local_user()) { - notice(L10n::t('Permission denied.') . EOL); + if (!$a->isLoggedIn()) { + notice(DI::l10n()->t('Permission denied.')); return; } } function api_content(App $a) { - if ($a->cmd == 'api/oauth/authorize') { - /* - * api/oauth/authorize interact with the user. return a standard page - */ - - $a->page['template'] = "minimal"; - - // get consumer/client from request token - try { - $request = OAuthRequest::from_request(); - } catch (Exception $e) { - echo "
";
-			var_dump($e);
-			killme();
-		}
-
-		if (x($_POST, 'oauth_yes')) {
-			$app = oauth_get_client($request);
-			if (is_null($app)) {
-				return "Invalid request. Unknown token.";
-			}
-			$consumer = new OAuthConsumer($app['client_id'], $app['pw'], $app['redirect_uri']);
-
-			$verifier = md5($app['secret'] . local_user());
-			Config::set("oauth", $verifier, local_user());
-
-			if ($consumer->callback_url != null) {
-				$params = $request->get_parameters();
-				$glue = "?";
-				if (strstr($consumer->callback_url, $glue)) {
-					$glue = "?";
-				}
-				$a->internalRedirect($consumer->callback_url . $glue . 'oauth_token=' . OAuthUtil::urlencode_rfc3986($params['oauth_token']) . '&oauth_verifier=' . OAuthUtil::urlencode_rfc3986($verifier));
-				killme();
-			}
-
-			$tpl = get_markup_template("oauth_authorize_done.tpl");
-			$o = replace_macros($tpl, [
-				'$title' => L10n::t('Authorize application connection'),
-				'$info' => L10n::t('Return to your app and insert this Securty Code:'),
-				'$code' => $verifier,
-			]);
-
-			return $o;
-		}
-
-		if (!local_user()) {
-			/// @TODO We need login form to redirect to this page
-			notice(L10n::t('Please login to continue.') . EOL);
-			return Login::form($a->query_string, false, $request->get_parameters());
-		}
-		//FKOAuth1::loginUser(4);
-
-		$app = oauth_get_client($request);
-		if (is_null($app)) {
-			return "Invalid request. Unknown token.";
-		}
-
-		$tpl = get_markup_template('oauth_authorize.tpl');
-		$o = replace_macros($tpl, [
-			'$title' => L10n::t('Authorize application connection'),
-			'$app' => $app,
-			'$authorize' => L10n::t('Do you want to authorize this application to access your posts and contacts, and/or create new posts for you?'),
-			'$yes' => L10n::t('Yes'),
-			'$no' => L10n::t('No'),
-		]);
-
-		return $o;
-	}
-
 	echo api_call($a);
-	killme();
+	exit();
 }