if (is_object($request_token) && $request_token->isrequest()) { if (!isset($_POST['login'])) { //echo form ?> <div id="login_form"> <form method="post"> <label for="user_name">User Name:</label> <input type="text" name="user_name" /><br/> <label for="password">Password:</label> <input type="password" name="password"/><br/> <input type="submit" name="login"/> </form> </div> <?php } else { //process form and redirect to callback url $user = user::findbyusername($_POST['user_name'], $_POST['password']); if (is_object($user)) { $request_token->setverifier(provider::generateverifier()); $request_token->setuser($user); header("Location: " . $request_token->getcallbackurl() . "?request_token=" . $request_token->gettoken() . "&verifier=" . $request_token->getverifier()); } else { echo "Invalid user name or password"; } } } else { echo "No such request token found in db"; } } else { echo "Oauth token not found"; }