/** * Verify the request if it seemed to be signed. * * @param string token_type the kind of token needed, defaults to 'access' * @exception OAuthException thrown when the request did not verify * @return boolean true when signed, false when not signed */ public function verifyIfSigned($token_type = 'access') { if ($this->getParam('oauth_consumer_key')) { OAuthRequestLogger::start($this); $this->verify($token_type); $signed = true; OAuthRequestLogger::finish(); } else { $signed = false; } return $signed; }
/** * Overrule this method when you want to want to display a nice page when * the authorization is finished. This function does not know if the authorization was * succesfull, you need to check the token in the database. */ public function authorizeFinish($authorized, $user_id) { OAuthRequestLogger::start($this); $token = $this->getParam('oauth_token', true); if (isset($_SESSION['verify_oauth_token']) && $_SESSION['verify_oauth_token'] == $token) { // Flag the token as authorized, or remove the token when not authorized $store = OAuthStore::instance(); if ($authorized) { OAuthRequestLogger::addNote('Authorized token "' . $token . '" for user ' . $user_id); $store->authorizeConsumerRequestToken($token, $user_id); } else { OAuthRequestLogger::addNote('Authorization rejected for token "' . $token . '" for user ' . $user_id . "\nToken has been deleted"); $store->deleteConsumerRequestToken($token); } if (!empty($_SESSION['verify_oauth_callback'])) { $this->redirect($_SESSION['verify_oauth_callback'], array('oauth_token' => rawurlencode($token))); } } OAuthRequestLogger::finish(); }