public function getAuthorizationCode()
{
// get the data from the check-authorization-params filter
$params = Session::get('authorize-params');
// get the user id
$params['user_id'] = Auth::user()->id;
// check if the user approved or denied the authorization request
if (Input::get('approve') !== null) {
$code = AuthorizationServer::newAuthorizeRequest('user', $params['user_id'], $params);
Session::forget('authorize-params');
return Redirect::to(AuthorizationServer::makeRedirectWithCode($code, $params));
}
if (Input::get('deny') !== null) {
Session::forget('authorize-params');
return Redirect::to(AuthorizationServer::makeRedirectWithError($params));
}
}
$params = Session::get('authorize-params');
$params['user_id'] = Auth::user()->id;
$app_details = \OAuthApp::where('client_id', $params['client_id'])->first();
return View::make('partials.oauth.forms.authorization-form', array('params' => $params, 'app_details' => $app_details));
}));
Route::post('oauth/authorize', array('before' => 'check-authorization-params|auth|csrf', function () {
$params = Session::get('authorize-params');
$params['user_id'] = Auth::user()->id;
if (Input::get('approve') !== null) {
$code = AuthorizationServer::newAuthorizeRequest('user', $params['user_id'], $params);
Session::forget('authorize-params');
return Redirect::to(AuthorizationServer::makeRedirectWithCode($code, $params));
}
if (Input::get('deny') !== null) {
Session::forget('authorize-params');
return Redirect::to(AuthorizationServer::makeRedirectWithError($params));
}
}));
Route::get('secure-route', array('before' => 'oauth:basic', function () {
return "oauth secured route ";
}));
/*
|------------------------------------------------------------------
| For routes that don't exist
|------------------------------------------------------------------
*/
App::missing(function ($exception) {
if (Request::segment(1) == "data" || Request::segment(1) == "api") {
$error = array('error' => true, 'message' => $exception->getMessage(), 'code' => $exception->getStatusCode());
return Response::json($error, $exception->getStatusCode());
} else {
public function postTestAuthorize()
{
if (!array_key_exists('X_ALLOW_TEST_AUTH', $_SERVER) || $_SERVER['X_ALLOW_TEST_AUTH'] != 'true') {
return;
}
$data = ['eduPersonPrincipalName' => Input::get('eduPersonPrincipalName'), 'eduPersonScopedAffiliation' => Input::get('eduPersonScopedAffiliation'), 'sn' => Input::get('sn'), 'givenName' => Input::get('givenName'), 'mail' => Input::get('mail')];
$user = (object) $data;
$userId = Input::get('eduPersonPrincipalName');
$owner = Owner::find($userId);
if (!$owner) {
$owner = new Owner();
$owner->id = $userId;
}
$owner->data = json_encode($user);
$owner->save();
$params = Session::get('authorize-params');
$params['user_id'] = $user->eduPersonPrincipalName;
if (Input::get('approve') !== null) {
$code = AuthorizationServer::newAuthorizeRequest('user', $params['user_id'], $params);
Session::forget('authorize-params');
return Redirect::to(AuthorizationServer::makeRedirectWithCode($code, $params));
}
if (Input::get('deny') !== null) {
Session::forget('authorize-params');
$url = AuthorizationServer::makeRedirectWithError($params);
return new \Illuminate\Http\RedirectResponse((string) $url, 302, array());
}
}
