if ($_SERVER['REQUEST_METHOD'] != 'GET' && $_SERVER['REQUEST_METHOD'] != 'POST') { echo 'Invalid request method.'; exit; } elseif (isset($_REQUEST['oauth_version']) && $_REQUEST['oauth_version'] != '1.0') { echo 'Invalid OAuth version.'; exit; } if (isset($_REQUEST['oauth_consumer_key'], $_REQUEST['oauth_nonce'], $_REQUEST['oauth_signature_method'], $_REQUEST['oauth_signature'], $_REQUEST['oauth_timestamp']) && $_REQUEST['oauth_signature_method'] != '') { require_once $C->INCPATH . 'classes/class_oauth.php'; $oauth_client = new OAuth($_REQUEST['oauth_consumer_key'], $_REQUEST['oauth_nonce'], $_REQUEST['oauth_signature'], $_REQUEST['oauth_timestamp']); if (isset($_REQUEST['oauth_version'])) { $oauth_client->set_variable('version', '1.0'); } if ($oauth_client->is_valid_consumer_key() && $oauth_client->is_valid_nonce() && $oauth_client->is_valid_timestamp() && strtolower(urldecode($_REQUEST['oauth_signature_method'])) == 'hmac-sha1' && $oauth_client->decrypt_hmac_sha1() && $oauth_client->is_valid_application()) { $oauth_client->set_variable('token_secret', $oauth_client->generate_random_value()); $oauth_client->set_variable('request_token', $oauth_client->generate_request_token()); if ($oauth_client->set_request_table()) { echo 'oauth_token_secret=' . $oauth_client->get_variable('token_secret'); echo '&oauth_token=' . $oauth_client->get_variable('request_token') . '&oauth_callback_confirmed=true'; } else { echo $oauth_client->get_variable('error_msg'); exit; } } else { echo $oauth_client->there_is_error() ? $oauth_client->get_variable('error_msg') : 'Invalid signature method'; exit; } } else { echo 'Missing OAuth parameter(s).'; exit; }
echo $oauth_client->get_variable('error_msg'); } else { $callback = $oauth_client->get_field_in_table('applications', 'callback_url', 'app_id', $oauth_client->get_value_in_consumer_key('app_id')); $oauth_client->log(); if ($callback) { $this->redirect($callback . '?oauth_token=' . $_GET['oauth_token'] . '&oauth_verifier=' . $verifier); exit; } else { echo '<p style="width: auto; text-align: center;">Your verifier is: <b>' . $verifier . '</b>.You should enter it manually at your service provider.</p><div class="klear"></div>'; $snow_form = false; } } } } } if (isset($_GET['oauth_token']) && $snow_form && $oauth_client->is_valid_request_token(true) && !$oauth_client->there_is_error()) { $oauth_client->set_variable('consumer_key', $oauth_client->get_field_in_table('oauth_request_token', 'consumer_key', 'request_token', $_GET['oauth_token'])); $app_name = $oauth_client->get_field_in_table('applications', 'name', 'app_id', $oauth_client->get_value_in_consumer_key('app_id')); ?> <div id="poblicpage_login"> <form method="post" action="<?php echo $C->SITE_URL . 'oauth/authorize?oauth_token=' . $_GET['oauth_token']; ?> "> <?php if (!$user->is_logged) { ?> <table id="regform" cellspacing="5"> <tr>