| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388 | <?phpnamespace app\components\OpenAuth\core;use app\common\helpers\Session;use \Exception;use Yii;require_once 'weiboclient.php';class Weibo extends WeiboOAuth {    function __construct($access_token = NULL, $refresh_token = NULL) {        parent::__construct($access_token, $refresh_token);    }    function verify() {        if (isset($_SESSION['weibo_token']) && $_SESSION['weibo_token'] && isset($_SESSION['weibo_token']['uid']) && !isset($_SESSION['weibo_token']['error'])) {            return true;        } else {            return false;        }    }}class WeiboOAuth {    public $client_id;    public $client_secret;    public $access_token;    public $refresh_token;    public $http_code;    public $url;    public $host = "https://api.weibo.com/2/";    public $timeout = 30;    public $connecttimeout = 30;    public $ssl_verifypeer = FALSE;    public $format = 'json';    public $decode_json = TRUE;    public $http_info;    public $useragent = 'Weibo Oauth2.0';    public $debug = FALSE;    public static $boundary = '';    function accessTokenURL() {        return 'https://api.weibo.com/oauth2/access_token';    }    function authorizeURL() {        return 'https://api.weibo.com/oauth2/authorize';    }    function __construct($access_token = NULL, $refresh_token = NULL) {        $this->client_id = WB_APPID;        $this->client_secret = WB_APPSECRET;        $this->access_token = $access_token;        $this->refresh_token = $refresh_token;    }    /**     * authorize接口     *     * 对应API:{@link http://open.weibo.com/wiki/Oauth2/authorize Oauth2/authorize}     *     * @param string $url 授权后的回调地址,站外应用需与回调地址一致,站内应用需要填写canvas page的地址     * @param string $response_type 支持的值包括 code 和token 默认值为code     * @param string $state 用于保持请求和回调的状态。在回调时,会在Query Parameter中回传该参数     * @param string $display 授权页面类型 可选范围:     *  - default		默认授权页面     *  - mobile		支持html5的手机     *  - wap1.2		wap1.2页面     *  - wap2.0		wap2.0页面     *  - apponweibo	站内应用专用,站内应用不传display参数,并且response_type为token时,默认使用改display.授权后不会返回access_token,只是输出js刷新站内应用父框架     * @param bool $forcelogin 是否强制用户重新登录,true:是,false:否。默认false。     * @param string $language 授权页语言,缺省为中文简体版,en为英文版。英文版测试中,开发者任何意见可反馈至 @微博API     * @return array     */    function getAuthorizeURL($url, $response_type = 'code', $state = NULL, $display = NULL, $forcelogin = NULL, $language = NULL) {        $params = array();        $params['client_id'] = $this->client_id;        $params['redirect_uri'] = $url;        $params['response_type'] = $response_type;        $params['state'] = $state;        $params['display'] = $display;        $params['forcelogin'] = $forcelogin;        $params['language'] = $language;        return $this->authorizeURL() . "?" . http_build_query($params);    }    /**     * access_token接口     *     * 对应API:{@link http://open.weibo.com/wiki/OAuth2/access_token OAuth2/access_token}     *     * @param string $type 请求的类型,可以为:code, password, token     * @param array $keys 其他参数:     *  - 当$type为code时: array('code'=>..., 'redirect_uri'=>...)     *  - 当$type为password时: array('username'=>..., 'password'=>...)     *  - 当$type为token时: array('refresh_token'=>...)     * @return array     */    function getAccessToken($type = 'code', $keys = array()) {        $params = array();        $params['client_id'] = $this->client_id;        $params['client_secret'] = $this->client_secret;        if ($type === 'token') {            $params['grant_type'] = 'refresh_token';            $params['refresh_token'] = $keys['refresh_token'];        } elseif ($type === 'code') {            $params['grant_type'] = 'authorization_code';            $params['code'] = $keys['code'];            $params['redirect_uri'] = $keys['redirect_uri'];        } elseif ($type === 'password') {            $params['grant_type'] = 'password';            $params['username'] = $keys['username'];            $params['password'] = $keys['password'];        } else {            throw new Exception("wrong auth type");        }        $response = $this->oAuthRequest($this->accessTokenURL(), 'POST', $params);        $token = json_decode($response, true);        if (is_array($token) && !isset($token['error'])) {            $this->access_token = $token['access_token'];            $this->refresh_token = isset($token['refresh_token']) ? $token['refresh_token'] : '';        } else {            throw new Exception("get access token failed." . $token['error']);        }        return $token;    }    /**     * 解析 signed_request     *     * @param string $signed_request 应用框架在加载iframe时会通过向Canvas URL post的参数signed_request     *     * @return array     */    function parseSignedRequest($signed_request) {        list($encoded_sig, $payload) = explode('.', $signed_request, 2);        $sig = self::base64decode($encoded_sig);        $data = json_decode(self::base64decode($payload), true);        if (strtoupper($data['algorithm']) !== 'HMAC-SHA256')            return '-1';        $expected_sig = hash_hmac('sha256', $payload, $this->client_secret, true);        return ($sig !== $expected_sig) ? '-2' : $data;    }    /**     * @ignore     */    function base64decode($str) {        return base64_decode(strtr($str . str_repeat('=', (4 - strlen($str) % 4)), '-_', '+/'));    }    /**     * 读取jssdk授权信息,用于和jssdk的同步登录     *     * @return array 成功返回array('access_token'=>'value', 'refresh_token'=>'value'); 失败返回false     */    function getTokenFromJSSDK() {        $key = "weibojs_" . $this->client_id;        if (isset($_COOKIE[$key]) && $cookie = $_COOKIE[$key]) {            parse_str($cookie, $token);            if (isset($token['access_token']) && isset($token['refresh_token'])) {                $this->access_token = $token['access_token'];                $this->refresh_token = $token['refresh_token'];                return $token;            } else {                return false;            }        } else {            return false;        }    }    /**     * 从数组中读取access_token和refresh_token     * 常用于从Session或Cookie中读取token,或通过Session/Cookie中是否存有token判断登录状态。     *     * @param array $arr 存有access_token和secret_token的数组     * @return array 成功返回array('access_token'=>'value', 'refresh_token'=>'value'); 失败返回false     */    function getTokenFromArray($arr) {        if (isset($arr['access_token']) && $arr['access_token']) {            $token = array();            $this->access_token = $token['access_token'] = $arr['access_token'];            if (isset($arr['refresh_token']) && $arr['refresh_token']) {                $this->refresh_token = $token['refresh_token'] = $arr['refresh_token'];            }            return $token;        } else {            return false;        }    }    /**     * GET wrappwer for oAuthRequest.     *     * @return mixed     */    function get($url, $parameters = array()) {        $response = $this->oAuthRequest($url, 'GET', $parameters);        if ($this->format === 'json' && $this->decode_json) {            return json_decode($response, true);        }        return $response;    }    /**     * POST wreapper for oAuthRequest.     *     * @return mixed     */    function post($url, $parameters = array(), $multi = false) {        $response = $this->oAuthRequest($url, 'POST', $parameters, $multi);        if ($this->format === 'json' && $this->decode_json) {            return json_decode($response, true);        }        return $response;    }    /**     * DELTE wrapper for oAuthReqeust.     *     * @return mixed     */    function delete($url, $parameters = array()) {        $response = $this->oAuthRequest($url, 'DELETE', $parameters);        if ($this->format === 'json' && $this->decode_json) {            return json_decode($response, true);        }        return $response;    }    /**     * Format and sign an OAuth / API request     *     * @return string     * @ignore     */    function oAuthRequest($url, $method, $parameters, $multi = false) {        if (strrpos($url, 'http://') !== 0 && strrpos($url, 'https://') !== 0) {            $url = "{$this->host}{$url}.{$this->format}";        }        switch ($method) {            case 'GET':                $url = $url . '?' . http_build_query($parameters);                return $this->http($url, 'GET');            default:                $headers = array();                if (!$multi && (is_array($parameters) || is_object($parameters))) {                    $body = http_build_query($parameters);                } else {                    $body = self::build_http_query_multi($parameters);                    $headers[] = "Content-Type: multipart/form-data; boundary=" . self::$boundary;                }                return $this->http($url, $method, $body, $headers);        }    }    /**     * Make an HTTP request     *     * @return string API results     * @ignore     */    function http($url, $method, $postfields = NULL, $headers = array()) {        $this->http_info = array();        $ci = curl_init();        /* Curl settings */        curl_setopt($ci, CURLOPT_HTTP_VERSION, CURL_HTTP_VERSION_1_0);        curl_setopt($ci, CURLOPT_USERAGENT, $this->useragent);        curl_setopt($ci, CURLOPT_CONNECTTIMEOUT, $this->connecttimeout);        curl_setopt($ci, CURLOPT_TIMEOUT, $this->timeout);        curl_setopt($ci, CURLOPT_RETURNTRANSFER, TRUE);        curl_setopt($ci, CURLOPT_ENCODING, "");        curl_setopt($ci, CURLOPT_SSL_VERIFYPEER, $this->ssl_verifypeer);       // curl_setopt($ci, CURLOPT_SSL_VERIFYHOST, 1);        curl_setopt($ci, CURLOPT_HEADERFUNCTION, array($this, 'getHeader'));        curl_setopt($ci, CURLOPT_HEADER, FALSE);        switch ($method) {            case 'POST':                curl_setopt($ci, CURLOPT_POST, TRUE);                if (!empty($postfields)) {                    curl_setopt($ci, CURLOPT_POSTFIELDS, $postfields);                    $this->postdata = $postfields;                }                break;            case 'DELETE':                curl_setopt($ci, CURLOPT_CUSTOMREQUEST, 'DELETE');                if (!empty($postfields)) {                    $url = "{$url}?{$postfields}";                }        }        if (isset($this->access_token) && $this->access_token)            $headers[] = "Authorization: OAuth2 " . $this->access_token;        if (!empty($this->remote_ip)) {            if (defined('SAE_ACCESSKEY')) {                $headers[] = "SaeRemoteIP: " . $this->remote_ip;            } else {                $headers[] = "API-RemoteIP: " . $this->remote_ip;            }        } else {            if (!defined('SAE_ACCESSKEY')) {                $headers[] = "API-RemoteIP: " . $_SERVER['REMOTE_ADDR'];            }        }        curl_setopt($ci, CURLOPT_URL, $url);        curl_setopt($ci, CURLOPT_HTTPHEADER, $headers);        curl_setopt($ci, CURLINFO_HEADER_OUT, TRUE);        $response = curl_exec($ci);        $this->http_code = curl_getinfo($ci, CURLINFO_HTTP_CODE);        $this->http_info = array_merge($this->http_info, curl_getinfo($ci));        $this->url = $url;        if ($this->debug) {            echo "=====post data======\r\n";            var_dump($postfields);            echo "=====headers======\r\n";            print_r($headers);            echo '=====request info=====' . "\r\n";            print_r(curl_getinfo($ci));            echo '=====response=====' . "\r\n";            print_r($response);        }        curl_close($ci);        return $response;    }    /**     * 开启调试信息     *     * 开启调试信息后,SDK会将每次请求微博API所发送的POST Data、Headers以及请求信息、返回内容输出出来。     *     * @access public     * @param bool $enable 是否开启调试信息     * @return void     */    function set_debug($enable) {        $this->debug = $enable;    }    /**     * Get the header info to store.     *     * @return int     * @ignore     */    function getHeader($ch, $header) {        $i = strpos($header, ':');        if (!empty($i)) {            $key = str_replace('-', '_', strtolower(substr($header, 0, $i)));            $value = trim(substr($header, $i + 2));            $this->http_header[$key] = $value;        }        return strlen($header);    }    /**     * @ignore     */    public static function build_http_query_multi($params) {        if (!$params)            return '';        uksort($params, 'strcmp');        $pairs = array();        self::$boundary = $boundary = uniqid('------------------');        $MPboundary = '--' . $boundary;        $endMPboundary = $MPboundary . '--';        $multipartbody = '';        foreach ($params as $parameter => $value) {            if (in_array($parameter, array('pic', 'image')) && $value{0} == '@') {                $url = ltrim($value, '@');                $content = file_get_contents($url);                $array = explode('?', basename($url));                $filename = $array[0];                $multipartbody .= $MPboundary . "\r\n";                $multipartbody .= 'Content-Disposition: form-data; name="' . $parameter . '"; filename="' . $filename . '"' . "\r\n";                $multipartbody .= "Content-Type: image/unknown\r\n\r\n";                $multipartbody .= $content . "\r\n";            } else {                $multipartbody .= $MPboundary . "\r\n";                $multipartbody .= 'content-disposition: form-data; name="' . $parameter . "\"\r\n\r\n";                $multipartbody .= $value . "\r\n";            }        }        $multipartbody .= $endMPboundary;        return $multipartbody;    }}
 |