| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340 | <?phpnamespace app\components\OpenAuth\core;use app\common\helpers\Session;use \Exception;use Yii;require_once 'qqclient.php';class QQ extends QQOAuth {    function __construct($access_token = NULL, $refresh_token = NULL) {        parent::__construct($access_token, $refresh_token);    }    function verify() {        if (isset($_SESSION['qq_token']) && $_SESSION['qq_token'] && isset($_SESSION['qq_token']['uid'])) {            return true;        } else {            return false;        }    }}class QQOAuth {    public $client_id;    public $client_secret;    public $access_token;    public $refresh_token;    public $http_code;    public $url;    public $host = "https://graph.qq.com/";    public $timeout = 30;    public $connecttimeout = 30;    public $ssl_verifypeer = FALSE;    public $format = 'json';    public $decode_json = TRUE;    public $http_info;    public $useragent = 'QQ OAuth2.0';    public $debug = FALSE;    public static $boundary = '';    function accessTokenURL() {        return 'https://graph.qq.com/oauth2.0/token';    }    function authorizeURL() {        return 'https://graph.qq.com/oauth2.0/authorize';    }    function openidURL() {        return "https://graph.qq.com/oauth2.0/me";    }        function __construct($access_token = NULL, $refresh_token = NULL) {        $this->client_id = QQ_APPID;        $this->client_secret = QQ_APPKEY;        $this->access_token = $access_token;        $this->refresh_token = $refresh_token;    }    function getAuthorizeURL($url, $response_type = 'code', $state = NULL, $scope = NULL) {        $params = array();        $params['client_id'] = $this->client_id;        $params['redirect_uri'] = $url;        $params['response_type'] = $response_type;        $params['state'] = $state;        $params['scope'] = $scope;        return $this->authorizeURL() . "?" . http_build_query($params);    }    function getAccessToken($type = 'code', $keys = array()) {        $params = array();        $params['client_id'] = $this->client_id;        $params['client_secret'] = $this->client_secret;        if ($type === 'token') {            $params['grant_type'] = 'refresh_token';            $params['refresh_token'] = $keys['refresh_token'];        } elseif ($type === 'code') {            $params['grant_type'] = 'authorization_code';            $params['code'] = $keys['code'];            $params['redirect_uri'] = $keys['redirect_uri'];        } elseif ($type === 'password') {            $params['grant_type'] = 'password';            $params['username'] = $keys['username'];            $params['password'] = $keys['password'];        } else {            throw new Exception("wrong auth type");        }        $response = $this->oAuthRequest($this->accessTokenURL(), 'POST', $params);        $response = $this->filterResponse($response);        parse_str($response, $token);        if (is_array($token)) {            $this->access_token = $token['access_token'];            $this->refresh_token = isset($token['refresh_token']) ? $token['refresh_token'] : '';        } else {            throw new Exception("读取access_token错误:{$token['error']}");        }        return $token;    }    function getOpenID() {        $params = array();        $params['access_token'] = $this->access_token;        $response = $this->oAuthRequest($this->openidURL(), 'POST', $params);        $response = $this->filterResponse($response);        $result = json_decode($response, true);        if (!is_array($result)) {            throw new Exception("读取OPENID错误");        }        return $result['openid'];    }    function filterResponse($response) {        if (strpos($response, "callback") !== false) {            $lpos = strpos($response, "(");            $rpos = strrpos($response, ")");            $response = substr($response, $lpos + 1, $rpos - $lpos - 1);            $msg = json_decode($response);            if (isset($msg->error)) {                throw new \Exception("发生一个已知的错误:{$msg->error}");            }        }        return $response;    }    /**     * 从数组中读取access_token和refresh_token     * 常用于从Session或Cookie中读取token,或通过Session/Cookie中是否存有token判断登录状态。     *     * @param array $arr 存有access_token和secret_token的数组     * @return array 成功返回array('access_token'=>'value', 'refresh_token'=>'value'); 失败返回false     */    function getTokenFromArray($arr) {        if (isset($arr['access_token']) && $arr['access_token']) {            $token = array();            $this->access_token = $token['access_token'] = $arr['access_token'];            if (isset($arr['refresh_token']) && $arr['refresh_token']) {                $this->refresh_token = $token['refresh_token'] = $arr['refresh_token'];            }            return $token;        } else {            return false;        }    }    /**     * GET wrappwer for oAuthRequest.     *     * @return mixed     */    function get($url, $parameters = array()) {        $response = $this->oAuthRequest($url, 'GET', $parameters);        if ($this->format === 'json' && $this->decode_json) {            return json_decode($response, true);        }        return $response;    }    /**     * POST wreapper for oAuthRequest.     *     * @return mixed     */    function post($url, $parameters = array(), $multi = false) {        $response = $this->oAuthRequest($url, 'POST', $parameters, $multi);        if ($this->format === 'json' && $this->decode_json) {            return json_decode($response, true);        }        return $response;    }    /**     * DELTE wrapper for oAuthReqeust.     *     * @return mixed     */    function delete($url, $parameters = array()) {        $response = $this->oAuthRequest($url, 'DELETE', $parameters);        if ($this->format === 'json' && $this->decode_json) {            return json_decode($response, true);        }        return $response;    }    /**     * Format and sign an OAuth / API request     *     * @return string     * @ignore     */    function oAuthRequest($url, $method, $parameters, $multi = false) {        if (strrpos($url, 'http://') !== 0 && strrpos($url, 'https://') !== 0) {            $url = "{$this->host}{$url}.{$this->format}";        }        switch ($method) {            case 'GET':                $url = $url . '?' . http_build_query($parameters);                return $this->http($url, 'GET');            default:                $headers = array();                if (!$multi && (is_array($parameters) || is_object($parameters))) {                    $body = http_build_query($parameters);                } else {                    $body = self::build_http_query_multi($parameters);                    $headers[] = "Content-Type: multipart/form-data; boundary=" . self::$boundary;                }                return $this->http($url, $method, $body, $headers);        }    }    /**     * Make an HTTP request     *     * @return string API results     * @ignore     */    function http($url, $method, $postfields = NULL, $headers = array()) {        $this->http_info = array();        $ci = curl_init();        /* Curl settings */        curl_setopt($ci, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0);        curl_setopt($ci, CURLOPT_USERAGENT, $this->useragent);        curl_setopt($ci, CURLOPT_CONNECTTIMEOUT, $this->connecttimeout);        curl_setopt($ci, CURLOPT_TIMEOUT, $this->timeout);        curl_setopt($ci, CURLOPT_RETURNTRANSFER, TRUE);        curl_setopt($ci, CURLOPT_ENCODING, "");        curl_setopt($ci, CURLOPT_SSL_VERIFYPEER, $this->ssl_verifypeer);        //curl_setopt($ci, CURLOPT_SSL_VERIFYHOST, 1);        curl_setopt($ci, CURLOPT_HEADERFUNCTION, array($this, 'getHeader'));        curl_setopt($ci, CURLOPT_HEADER, FALSE);        switch ($method) {            case 'POST':                curl_setopt($ci, CURLOPT_POST, TRUE);                if (!empty($postfields)) {                    curl_setopt($ci, CURLOPT_POSTFIELDS, $postfields);                    $this->postdata = $postfields;                }                break;            case 'DELETE':                curl_setopt($ci, CURLOPT_CUSTOMREQUEST, 'DELETE');                if (!empty($postfields)) {                    $url = "{$url}?{$postfields}";                }        }        if (isset($this->access_token) && $this->access_token)            $headers[] = "Authorization: OAuth2 " . $this->access_token;        if (!empty($this->remote_ip)) {            if (defined('SAE_ACCESSKEY')) {                $headers[] = "SaeRemoteIP: " . $this->remote_ip;            } else {                $headers[] = "API-RemoteIP: " . $this->remote_ip;            }        } else {            if (!defined('SAE_ACCESSKEY')) {                $headers[] = "API-RemoteIP: " . $_SERVER['REMOTE_ADDR'];            }        }        curl_setopt($ci, CURLOPT_URL, $url);        curl_setopt($ci, CURLOPT_HTTPHEADER, $headers);        curl_setopt($ci, CURLINFO_HEADER_OUT, TRUE);        $response = curl_exec($ci);        $this->http_code = curl_getinfo($ci, CURLINFO_HTTP_CODE);        $this->http_info = array_merge($this->http_info, curl_getinfo($ci));        $this->url = $url;        if ($this->debug) {            echo "=====post data======\r\n";            var_dump($postfields);            echo "=====headers======\r\n";            print_r($headers);            echo '=====request info=====' . "\r\n";            print_r(curl_getinfo($ci));            echo '=====response=====' . "\r\n";            print_r($response);        }        curl_close($ci);        return $response;    }    /**     * 开启调试信息     *     * 开启调试信息后,SDK会将每次请求微博API所发送的POST Data、Headers以及请求信息、返回内容输出出来。     *     * @access public     * @param bool $enable 是否开启调试信息     * @return void     */    function set_debug($enable) {        $this->debug = $enable;    }    /**     * Get the header info to store.     *     * @return int     * @ignore     */    function getHeader($ch, $header) {        $i = strpos($header, ':');        if (!empty($i)) {            $key = str_replace('-', '_', strtolower(substr($header, 0, $i)));            $value = trim(substr($header, $i + 2));            $this->http_header[$key] = $value;        }        return strlen($header);    }    /**     * @ignore     */    public static function build_http_query_multi($params) {        if (!$params)            return '';        uksort($params, 'strcmp');        $pairs = array();        self::$boundary = $boundary = uniqid('------------------');        $MPboundary = '--' . $boundary;        $endMPboundary = $MPboundary . '--';        $multipartbody = '';        foreach ($params as $parameter => $value) {            if (in_array($parameter, array('pic', 'image')) && $value{0} == '@') {                $url = ltrim($value, '@');                $content = file_get_contents($url);                $array = explode('?', basename($url));                $filename = $array[0];                $multipartbody .= $MPboundary . "\r\n";                $multipartbody .= 'Content-Disposition: form-data; name="' . $parameter . '"; filename="' . $filename . '"' . "\r\n";                $multipartbody .= "Content-Type: image/unknown\r\n\r\n";                $multipartbody .= $content . "\r\n";            } else {                $multipartbody .= $MPboundary . "\r\n";                $multipartbody .= 'content-disposition: form-data; name="' . $parameter . "\"\r\n\r\n";                $multipartbody .= $value . "\r\n";            }        }        $multipartbody .= $endMPboundary;        return $multipartbody;    }}
 |