/**
* {@inheritDoc}
*/
public function authenticate(TokenInterface $token)
{
$ownerName = $token->getResourceOwnerName();
$oauthUtil = $this->container->get('glory_oauth.util.token2oauth');
$oauth = $oauthUtil->generate($token);
$connect = $this->container->get('glory_oauth.connect');
if (!($user = $connect->getConnect($oauth))) {
if ($this->container->getParameter('glory_oauth.auto_register')) {
$user = $connect->connect($oauth);
} else {
$key = time();
$this->container->get('session')->set('glory_oauth.connect.oauth.' . $key, [$oauth->getOwner(), $oauth->getUsername()]);
$url = $this->container->get('router')->generate('glory_oauth_register', ['key' => $key]);
return new RedirectResponse($url);
}
}
if (!$user instanceof UserInterface) {
throw new BadCredentialsException('');
}
try {
$this->userChecker->checkPreAuth($user);
$this->userChecker->checkPostAuth($user);
} catch (BadCredentialsException $e) {
if ($this->hideUserNotFoundExceptions) {
throw new BadCredentialsException('Bad credentials', 0, $e);
}
throw $e;
}
$token = new OAuthToken($token->getRawToken(), $user->getRoles());
$token->setOwnerName($ownerName);
$token->setUser($user);
$token->setAuthenticated(true);
return $token;
}
/**
* {@inheritDoc}
*/
protected function attemptAuthentication(Request $request)
{
$this->handleOAuthError($request);
/* @var ResourceOwnerInterface $owner */
$owner = $this->owner;
if (!$owner) {
throw new AuthenticationException('No resource owner match the request.');
}
if (!$owner->handles($request)) {
throw new AuthenticationException('No oauth code in the request.');
}
// If resource owner supports only one url authentication, call redirect
if ($request->query->has('authenticated') && $owner->getOption('auth_with_one_url')) {
$request->attributes->set('service', $owner->getName());
return new RedirectResponse(sprintf('%s?code=%s&authenticated=true', $this->httpUtils->generateUri($request, 'glory_oauth_connect'), $request->query->get('code')));
}
$owner->isCsrfTokenValid($request->get('state'));
$accessToken = $owner->getAccessToken($request, $this->httpUtils->createRequest($request, $this->getCheckPath($owner))->getUri());
$token = new OAuthToken($accessToken);
$token->setOwnerName($owner->getName());
return $this->authenticationManager->authenticate($token);
}
public function generate(OAuthToken $token)
{
$owner = $this->ownerMap->getOwner($token->getOwnerName());
$response = $owner->getUserInformation($token->getRawToken());
$oauth = $this->oauthManager->getOAuth($response->getUsername(), $owner->getName());
if (!$oauth) {
$oauth = $this->oauthManager->createOAuth();
$oauth->setCreated();
$oauth->setOwner($owner->getName());
$oauth->setUsername($response->getUsername());
}
$oauth->setNickname($response->getNickname());
$oauth->setFirstname($response->getFirstName());
$oauth->setLastname($response->getLastName());
$oauth->setRealname($response->getRealName());
$oauth->setEmail($response->getEmail());
$oauth->setAvatar($response->getProfilePicture());
$oauth->setAccesstoken($response->getAccessToken());
$oauth->setRefreshtoken($response->getRefreshToken());
$oauth->setTokensecret($response->getTokenSecret());
$oauth->setExpires($response->getExpiresIn());
$this->oauthManager->updateOAuth($oauth);
return $oauth;
}
