yehudah/oauth2-zoho

为 PHP League OAuth2-Client 提供的 Zoho OAuth 2.0 客户端提供程序

维护者

详细信息

github.com/yehudah/oauth2-zoho

源代码

问题

安装量: 5,432

依赖关系: 0

建议者: 0

安全性: 0

星星: 3

关注者: 2

分支: 3

公开问题: 2

dev-master 2019-03-13 15:48 UTC

Requires

MIT 593a67f3178b507932370dfd07c89e433b29a6c6

authorizationAuthenticationclientoauthoauth2Zoho

This package is auto-updated.

Last update: 2024-09-14 04:06:21 UTC

README

此包为 PHP League 的 OAuth 2.0 客户端 提供Zoho OAuth 2.0 支持。

要求

以下版本的 PHP 受支持。

  • PHP 7.0

使用方法

授权码流

require_once 'vendor/autoload.php';

$provider = Postsmtp\OAuth2\Client\Provider\Zoho([
    'clientId'                => $client_id,    // The client ID assigned to you by the provider
    'clientSecret'            => $client_secret,   // The client password assigned to you by the provider
    'redirectUri'             => 'http://domain.com',
]);

// If we don't have an authorization code then get one
if (!isset($_GET['code'])) {

    $authorizationUrl = $provider->getAuthorizationUrl(
        [
            'scope' => 'ZohoMail.accounts.READ,ZohoMail.messages.READ',
            //Must use for refresh token
            'access_type' => 'offline'
        ]
    );

    // Get the state generated for you and store it to the session.
    $_SESSION['oauth2state'] = $provider->getState();

    // Redirect the user to the authorization URL.
    header('Location: ' . $authorizationUrl);
    exit;

// Check given state against previously stored one to mitigate CSRF attack
} elseif (empty($_GET['state']) || (isset($_SESSION['oauth2state']) && $_GET['state'] !== $_SESSION['oauth2state'])) {

    if (isset($_SESSION['oauth2state'])) {
        unset($_SESSION['oauth2state']);
    }

    exit('Invalid state');

} else {

    try {

        // Try to get an access token using the authorization code grant.
        $accessToken = $provider->getAccessToken('authorization_code', [
            'code' => $_GET['code']
        ]);

        // We have an access token, which we may use in authenticated
        // requests against the service provider's API.
        echo 'Access Token: ' . $accessToken->getToken() . "<br>";
        echo 'Refresh Token: ' . $accessToken->getRefreshToken() . "<br>";
        echo 'Expired in: ' . $accessToken->getExpires() . "<br>";
        echo 'Already expired? ' . ($accessToken->hasExpired() ? 'expired' : 'not expired') . "<br>";
        echo 'More values: <pre>' . print_r( $accessToken->getValues(), true ) . "</pre><br>";

        // Using the access token, we may look up details about the
        // resource owner.
        $resourceOwner = $provider->getResourceOwner($accessToken);

        var_export($resourceOwner->toArray());

    } catch (\League\OAuth2\Client\Provider\Exception\IdentityProviderException $e) {

        // Failed to get the access token or user details.
        exit($e->getMessage());

    }

}

刷新令牌

对于刷新令牌,传递 access_type=offline

鸣谢

许可证

MIT 许可证 (MIT)。有关更多信息,请参阅许可证文件