Ana Sayfa Keşfet Yardım
Üye Ol Giriş Yap
qianda
/
hebei-chengben-car
1
0
Çatalla 0
Dosyalar Sorunlar 0 Değişiklik İstekleri 0 Wiki
Dal: master
Dallar Biçim İmleri
hebei-chengben-...
/
components
/
OpenAuth
/
core
/
dd.php

dd.php 4.9 KB
Kalıcı Bağlantı Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147 
  1. <?php
    2. 

  2. 

  3. namespace app\components\OpenAuth\core;
    4. 

  4. use AlibabaCloud\SDK\Dingtalk\Voauth2_1_0\Dingtalk;
    5. 

  5. use \Exception;
    6. 

  6. use AlibabaCloud\Tea\Exception\TeaError;
    7. 

  7. use AlibabaCloud\Tea\Utils\Utils;
    8. 

  8. use Darabonba\OpenApi\Models\Config;
    9. 

  9. use AlibabaCloud\SDK\Dingtalk\Voauth2_1_0\Models\GetAccessTokenRequest;
    10. 

  10. use AlibabaCloud\SDK\Dingtalk\Voauth2_1_0\Models\GetUserTokenRequest;
    11. 

  11. use AlibabaCloud\SDK\Dingtalk\Voauth2_1_0\Models\GetSsoAccessTokenRequest;
    12. 

  12. use AlibabaCloud\SDK\Dingtalk\Voauth2_1_0\Models\GetSsoUserInfoHeaders;
    13. 

  13. use AlibabaCloud\SDK\Dingtalk\Voauth2_1_0\Models\GetSsoUserInfoRequest;
    14. 

  14. use AlibabaCloud\SDK\Dingtalk\Vcontact_1_0\Dingtalk as Dingtalk_v1;
    15. 

  15. use AlibabaCloud\SDK\Dingtalk\Vcontact_1_0\Models\GetUserHeaders;
    16. 

  16. use AlibabaCloud\Tea\Utils\Utils\RuntimeOptions;
    17. 

  17. 

  18. use app\common\helpers\Session;
    19. 

  19. use Yii;
    20. 

  20. class DD extends DDOAuth {
    21. 

  21. 

  22.     function __construct($access_token = NULL, $refresh_token = NULL) {
    23. 

  23.         parent::__construct($access_token, $refresh_token);
    24. 

  24.     }
    25. 

  25. 

  26.     //成功拿到了token
    27. 

  27.     function verify() {
    28. 

  28.         if (!empty($_SESSION['dd_token'])) {
    29. 

  29.             return true;
    30. 

  30.         } else {
    31. 

  31.             return false;
    32. 

  32.         }
    33. 

  33.     }
    34. 

  34. 

  35. }
    36. 

  36. 

  37. class DDOAuth {
    38. 

  38.     public $appid;
    39. 

  39.     public $appsecret;
    40. 

  40.     public $access_token;
    41. 

  41.     public $refresh_token;
    42. 

  42.     function __construct($access_token = NULL, $refresh_token = NULL) {
    43. 

  43.         $this->appid = DD_APPKEY;
    44. 

  44.         $this->appsecret = DD_APPSECRET;
    45. 

  45.         $this->access_token = $access_token;
    46. 

  46.         $this->refresh_token = $refresh_token;
    47. 

  47.     }
    48. 

  48. 

  49.     public static function createClient(){
    50. 

  50.         $config = new Config([]);
    51. 

  51.         $config->protocol = "https";
    52. 

  52.         $config->regionId = "central";
    53. 

  53.         return new Dingtalk($config);
    54. 

  54.     }
    55. 

  55. 

  56.     //生成授权地址
    57. 

  57.     function authUrl($redirectUrl,$state){
    58. 

  58.         return  'https://login.dingtalk.com/oauth2/auth?redirect_uri='.urlencode($redirectUrl).'&response_type=code&client_id='.$this->appid.'&scope=openid&state='.$state.'&prompt=consent';
    59. 

  59.     }
    60. 

  60. 

  61.     /*
    62. 

  62.      * 获取token
    63. 

  63.      */
    64. 

  64.     public function getAccessToken($code)
    65. 

  65.     {
    66. 

  66.         //获取个人用户token
    67. 

  67.         $client = self::createClient();
    68. 

  68.         $getUserTokenRequest = new GetUserTokenRequest([
    69. 

  69.             "clientId" => $this->appid,
    70. 

  70.             "clientSecret" => $this->appsecret,
    71. 

  71.             "code" => $code,
    72. 

  72.             "grantType" => "authorization_code"
    73. 

  73.         ]);
    74. 

  74.         try {
    75. 

  75.             $result = $client->getUserToken($getUserTokenRequest);
    76. 

  76.             $accessToken = $result->body->accessToken;
    77. 

  77.             $refreshToken = $result->body->refreshToken;
    78. 

  78.             $expireIn = $result->body->expireIn;
    79. 

  79.             $array = ['access_token'=>$accessToken,'refresh_token'=>$refreshToken,'expires_in'=>$expireIn];
    80. 

  80.             return $array;
    81. 

  81.         }
    82. 

  82.         catch (Exception $err) {
    83. 

  83.             if (!($err instanceof TeaError)) {
    84. 

  84.                 $err = new TeaError([], $err->getMessage(), $err->getCode(), $err);
    85. 

  85.             }
    86. 

  86.             if (!Utils::empty_($err->code) && !Utils::empty_($err->message)) {
    87. 

  87.                 // err 中含有 code 和 message 属性,可帮助开发定位问题
    88. 

  88.                 return ['errcode'=>$err->code,'msg'=>$err->message];
    89. 

  89.             }
    90. 

  90.         }
    91. 

  91.     }
    92. 

  92. 

  93. 

  94. 

  95. 

  96. 

  97. 

  98. 

  99.     /**
    100. 

  100.      * 个人免登场景签名算法
    101. 

  101.      */
    102. 

  102.     function getSignature($timestamp, $appSecret){
    103. 

  103.         // 根据timestamp, appSecret计算签名值
    104. 

  104.         $s = hash_hmac('sha256', $timestamp, $appSecret, true);
    105. 

  105.         $signature = base64_encode($s);
    106. 

  106.         $urlencode_signature = urlencode($signature);
    107. 

  107.         return $urlencode_signature;
    108. 

  108.     }
    109. 

  109. 

  110.     /**
    111. 

  111.      * post 请求
    112. 

  112.      * @param $remote_server
    113. 

  113.      * @param $post_string
    114. 

  114.      * @return bool|string
    115. 

  115.      */
    116. 

  116.     function PostCurlRequest($remote_server, $code)
    117. 

  117.     {
    118. 

  118.         $ch = curl_init();
    119. 

  119.         curl_setopt($ch, CURLOPT_URL, $remote_server);
    120. 

  120.         curl_setopt($ch, CURLOPT_POST, 1);
    121. 

  121.         curl_setopt($ch, CURLOPT_CONNECTTIMEOUT, 5);
    122. 

  122.         curl_setopt($ch, CURLOPT_HTTPHEADER, array('Content-Type: application/json;charset=utf-8'));
    123. 

  123.         curl_setopt($ch, CURLOPT_POSTFIELDS, $code);
    124. 

  124.         curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    125. 

  125.         curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
    126. 

  126.         curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
    127. 

  127.         $data = curl_exec($ch);
    128. 

  128.         curl_close($ch);
    129. 

  129.         return $data;
    130. 

  130.     }
    131. 

  131. 

  132.     //使用扫码登录的临时CODE获取用户信息
    133. 

  133.     public function getUserInfoByCode()
    134. 

  134.     {
    135. 

  135.         $access_key =  $this->appid; //应用的AppKey
    136. 

  136.         $app_secret = $this->appsecret; //应用秘钥
    137. 

  137.         $code = json_encode(['tmp_auth_code' => $_GET['code']]); //获取临时code
    138. 

  138.         $time = time() . '000'; //毫秒时间戳
    139. 

  139.         $urlencode_signature = $this->getSignature($time, $app_secret); //签名
    140. 

  140.         //地址组装,获取用户信息
    141. 

  141.         $remote_server = 'https://oapi.dingtalk.com/sns/getuserinfo_bycode?accessKey='. $access_key .'&timestamp=' . $time . '&signature=' . $urlencode_signature;
    142. 

  142.         $json = $this->PostCurlRequest($remote_server, $code);
    143. 

  143.         return $json;
    144. 

  144.     }
    145. 

  145. 

  146. 

  147. }
    148.