<?php /* * Handles user login * */ if (isset($_GET['request_token'])) { $request_token = token::findbytoken($_GET['request_token']); echo $request_token->gettoken(); if (is_object($request_token) && $request_token->isrequest()) { if (!isset($_POST['login'])) { //echo form ?> <div id="login_form"> <form method="post"> <label for="user_name">User Name:</label> <input type="text" name="user_name" /><br/> <label for="password">Password:</label> <input type="password" name="password"/><br/> <input type="submit" name="login"/> </form> </div> <?php } else { //process form and redirect to callback url $user = user::findbyusername($_POST['user_name'], $_POST['password']); if (is_object($user)) { $request_token->setverifier(provider::generateverifier()); $request_token->setuser($user); header("Location: " . $request_token->getcallbackurl() . "?request_token=" . $request_token->gettoken() . "&verifier=" . $request_token->getverifier()); } else { echo "Invalid user name or password";
public function checktoken($provider) { $token = token::findbytoken($provider->token); if (is_null($token)) { return OAUTH_TOKEN_REJECTED; } else { if ($token->gettype() == 1 && $token->getverifier() != $provider->verifier) { return OAUTH_VERIFIER_INVALID; } else { if ($token->gettype() == 2) { $this->user = $token->getuser(); } $provider->token_secret = $token->gettokensecret(); return OAUTH_OK; } } }