authentiq/oauth2-authentiq

为 The PHP League OAuth2-Client 提供的 Authentiq OAuth 2.0 客户端提供程序

维护者

详细信息

github.com/AuthentiqID/oauth2-authentiq-php

源代码

问题

安装: 20

依赖项: 0

建议者: 0

安全: 0

星级: 1

关注者: 5

分支: 0

开放问题: 0

v1.0.0 2017-04-06 12:57 UTC

Requires

Requires (Dev)

MIT cad1d29531c71bbb5e11ad6d77f89acd33fc3c8d

authorizationclientoauthoauth2authentiq

This package is not auto-updated.

Last update: 2024-09-29 02:40:12 UTC

README

此软件包为 PHP League 的 OAuth 2.0 客户端 提供了 Authentiq 支持。

安装

要安装,请使用 composer

composer require authentiq/oauth2-authentiq

使用方法

使用方法与 The League 的 OAuth 客户端相同,使用 Authentiq\OAuth2\Client\Provider\Authentiq 作为提供程序。

授权码流

$provider = new Authentiq\OAuth2\Client\Provider\Authentiq([
    'clientId'     => 'authentiq-client-id',
    'clientSecret' => 'authentiq-client-secret',
    'redirectUri'  => 'your-callback-url',
    'scope'        => 'openid email~rs phone~r aq:name aq:push'
]);

// If we don't have an authorization code then get one
if (!isset($_GET['code'])) {

    // Fetch the authorization URL from the provider; this returns the
    // urlAuthorize option and generates and applies any necessary parameters
    // (e.g. state).
    $authorizationUrl = $provider->getAuthorizationUrl();

    // Get the state generated for you and store it to the session.
    $_SESSION['oauth2state'] = $provider->getState();

    // Redirect the user to the authorization URL.
    header('Location: ' . $authorizationUrl);
    exit;

// Check given state against previously stored one to mitigate CSRF attack
} elseif (empty($_GET['state']) || (isset($_SESSION['oauth2state']) && $_GET['state'] !== $_SESSION['oauth2state'])) {

    if (isset($_SESSION['oauth2state'])) {
        unset($_SESSION['oauth2state']);
    }
    exit('Invalid state');

} else {
    try {
        // Try to get an the IdToken using the authorization code grant.
        $idToken = $provider->getAccessToken('authorization_code', [
            'code' => $_GET['code']
        ]);

        // Using the ID token, create the resource owner.
        $resourceOwner = $provider->getResourceOwner($idToken);
                
        // Now the $resourceOwner contains all the user info you need to create the user, 
        // store the unique user id from the sub 
        // or present the info you asked for.


    } catch (\League\OAuth2\Client\Provider\Exception\IdentityProviderException $e) {

        // Failed to get the access token or user details.
        exit($e->getMessage());

    }
}

刷新令牌

Authentiq 的 OAuth 实现不使用刷新令牌。