tomasfejfar · November 10, 2012 13:07
diff --git a/Google.php b/Google.php
 <?php

 use \Nette\Utils\Json;

 /**
 * Minimalistic Google OAuth2 connector
 * @author Mikuláš Dítě
 * @license BSD-3
 */
 class Google extends Nette\Object
 {

 	const URL_AUTH = 'https://accounts.google.com/o/oauth2/auth';
 	const URL_TOKEN = 'https://accounts.google.com/o/oauth2/token';
 	const URL_INFO = 'https://www.googleapis.com/oauth2/v1/userinfo';



 	/** @var string client_id */
 	private $id;

 	/** @var string client_secret */
 	private $secret;



 	public function __construct(array $config)
 	{
 		$this->id = $config['id'];
 		$this->secret = $config['secret'];
 	}



 	public function getLoginUrl(array $args)
 	{
 		$query = [
 			'response_type' => 'code',
 			'client_id' => $this->id,
 			'redirect_uri' => $args['redirect_uri'],
 			'access_type' => 'online',
 			'scope' => implode(' ', $args['scope']),
 			//'approval_prompt' => 'force',
 		];

 		return self::URL_AUTH . '?' . http_build_query($query);
 	}



 	public function getToken($code, $uri)
 	{
 		$query = [
 			'code' => $code,
 			'redirect_uri' => $uri,
 			'client_id' => $this->id,
 			'client_secret' => $this->secret,
 			'grant_type' => 'authorization_code',
 		];

 		$content = http_build_query($query);
 		$c = curl_init();
 		curl_setopt_array($c, [
 			CURLOPT_URL => self::URL_TOKEN,
 			CURLOPT_POST => TRUE,
 			CURLOPT_POSTFIELDS => $content,
 			CURLOPT_RETURNTRANSFER => TRUE,
 			CURLOPT_SSL_VERIFYHOST => FALSE,
 			CURLOPT_SSL_VERIFYPEER => FALSE,
 			CURLOPT_HTTPHEADER => [
 				'Content-type: application/x-www-form-urlencoded',
 				'Content-length: ' . strlen($content)
 			],
 		]);
 		$res = curl_exec($c);
 		curl_close($c);
 		$data = Json::decode($res);

 		if (isset($data->error)) {
 			throw new GoogleException("Error while obtaining token from code: {$data->error}");
 		}

 		return $data->access_token;
 	}



 	public function getInfo($token)
 	{
 		$res = file_get_contents(self::URL_INFO . '?' . http_build_query([
 			'access_token' => $token,
 		]));

 		return Json::decode($res);
 	}

 }

 class GoogleException extends RuntimeException {}
diff --git a/GoogleAuth.php b/GoogleAuth.php
 <?php

 class GoogleAuth extends Nette\Object implements \Nette\Security\IAuthenticator
 {

 	/** @var Google */
 	protected $google;

 	/** @var Table\Users */
 	protected $users;



 	public function __construct(Google $google, Users $users)
 	{
 		$this->google = $google;
 		$this->users = $users;
 	}



 	public function authenticate(array $data)
 	{
 		$info = end($data);
 		$user = $this->users->findOneBy(['google_id' => $info->id]);

 		// If user with this email exists, link the accounts
 		if (!$user) {
 			$user = $this->users->findOneBy(['mail' => $info->email]);
 			if ($user) {
 				$user->google_id = $info->id;
 				$user->update();
 			}
 		}

 		// otherwise, register new user
 		if (!$user) {
 			$user = $this->users->insert([
 				'name' => $info->name,
 				'google_id' => $info->id,
 				'mail' => $info->email,
 				'role' => '',
 			]);
 		}

 		$roles = explode(';', $user->role);
 		$roles[] = 'google';

 		return new \Nette\Security\Identity($user->id, $roles, []);
 	}

 }
	<?php

	use \Nette\Utils\Json;

	/**
	* Minimalistic Google OAuth2 connector
	* @author Mikuláš Dítě
	* @license BSD-3
	*/
	class Google extends Nette\Object
	{

	const URL_AUTH = 'https://accounts.google.com/o/oauth2/auth';
	const URL_TOKEN = 'https://accounts.google.com/o/oauth2/token';
	const URL_INFO = 'https://www.googleapis.com/oauth2/v1/userinfo';



	/** @var string client_id */
	private $id;

	/** @var string client_secret */
	private $secret;



	public function __construct(array $config)
	{
	$this->id = $config['id'];
	$this->secret = $config['secret'];
	}



	public function getLoginUrl(array $args)
	{
	$query = [
	'response_type' => 'code',
	'client_id' => $this->id,
	'redirect_uri' => $args['redirect_uri'],
	'access_type' => 'online',
	'scope' => implode(' ', $args['scope']),
	//'approval_prompt' => 'force',
	];

	return self::URL_AUTH . '?' . http_build_query($query);
	}



	public function getToken($code, $uri)
	{
	$query = [
	'code' => $code,
	'redirect_uri' => $uri,
	'client_id' => $this->id,
	'client_secret' => $this->secret,
	'grant_type' => 'authorization_code',
	];

	$content = http_build_query($query);
	$c = curl_init();
	curl_setopt_array($c, [
	CURLOPT_URL => self::URL_TOKEN,
	CURLOPT_POST => TRUE,
	CURLOPT_POSTFIELDS => $content,
	CURLOPT_RETURNTRANSFER => TRUE,
	CURLOPT_SSL_VERIFYHOST => FALSE,
	CURLOPT_SSL_VERIFYPEER => FALSE,
	CURLOPT_HTTPHEADER => [
	'Content-type: application/x-www-form-urlencoded',
	'Content-length: ' . strlen($content)
	],
	]);
	$res = curl_exec($c);
	curl_close($c);
	$data = Json::decode($res);

	if (isset($data->error)) {
	throw new GoogleException("Error while obtaining token from code: {$data->error}");
	}

	return $data->access_token;
	}



	public function getInfo($token)
	{
	$res = file_get_contents(self::URL_INFO . '?' . http_build_query([
	'access_token' => $token,
	]));

	return Json::decode($res);
	}

	}

	class GoogleException extends RuntimeException {}
	<?php

	class GoogleAuth extends Nette\Object implements \Nette\Security\IAuthenticator
	{

	/** @var Google */
	protected $google;

	/** @var Table\Users */
	protected $users;



	public function __construct(Google $google, Users $users)
	{
	$this->google = $google;
	$this->users = $users;
	}



	public function authenticate(array $data)
	{
	$info = end($data);
	$user = $this->users->findOneBy(['google_id' => $info->id]);

	// If user with this email exists, link the accounts
	if (!$user) {
	$user = $this->users->findOneBy(['mail' => $info->email]);
	if ($user) {
	$user->google_id = $info->id;
	$user->update();
	}
	}

	// otherwise, register new user
	if (!$user) {
	$user = $this->users->insert([
	'name' => $info->name,
	'google_id' => $info->id,
	'mail' => $info->email,
	'role' => '',
	]);
	}

	$roles = explode(';', $user->role);
	$roles[] = 'google';

	return new \Nette\Security\Identity($user->id, $roles, []);
	}

	}