}
if (!isset($_SESSION['app_callback']) && !isset($_POST['app_callback'])) {
throw new Exception('No callback url', 2);
}
if (!isset($_SESSION['consumer_key']) && !isset($_POST['consumer_key'])) {
throw new Exception('No consumer_key', 3);
}
if (!isset($_SESSION['consumer_secret']) && !isset($_POST['consumer_secret'])) {
throw new Exception('No consumer_secret', 4);
}
$api_url = isset($_SESSION['api_uri']) ? $_SESSION['api_uri'] : htmlentities($_POST['api_uri']);
$callback = isset($_SESSION['app_callback']) ? $_SESSION['app_callback'] : htmlentities($_POST['app_callback']);
$consumer_key = isset($_SESSION['consumer_key']) ? $_SESSION['consumer_key'] : htmlentities($_POST['consumer_key']);
$consumer_secret = isset($_SESSION['consumer_secret']) ? $_SESSION['consumer_secret'] : htmlentities($_POST['consumer_secret']);
// Using sraka1 OAuth Library
$connection = new OAuth1\BasicOAuth($consumer_key, $consumer_secret);
// Giving request Token URL
$connection->requestTokenURL = $api_url . "/oauth/1.0a/request";
$tempCredentials = $connection->getRequestToken($callback);
$redirect_uri = $connection->getAuthorizeURL($tempCredentials);
if (session_status() == PHP_SESSION_NONE) {
session_start();
}
$_SESSION['request_token'] = $tempCredentials['oauth_token'];
$_SESSION['request_token_secret'] = $tempCredentials['oauth_token_secret'];
echo json_encode($tempCredentials);
exit;
} catch (Exception $e) {
http_response_code(404);
$error = array("message" => $e->getMessage(), "code" => $e->getCode());
echo json_encode($error);
throw new Exception('No request_token or already used.', 5);
}
if (!isset($_SESSION['request_token_secret'])) {
throw new Exception('No request_token_secret or already used', 6);
}
if (!isset($_SESSION['oauth_verifier']) && !isset($_POST['oauth_verifier'])) {
throw new Exception('No oauth_verifier', 7);
}
$api_url = $_SESSION['api_uri'];
$callback = $_SESSION['app_callback'];
$consumer_key = $_SESSION['consumer_key'];
$consumer_secret = $_SESSION['consumer_secret'];
$request_token = $_SESSION['request_token'];
$request_token_secret = $_SESSION['request_token_secret'];
// Using sraka1 OAuth Library
$connection = new OAuth1\BasicOAuth($consumer_key, $consumer_secret, $request_token, $request_token_secret);
$connection->accessTokenURL = $api_url . "/oauth/1.0a/access";
$access = $connection->getAccessToken($_SESSION['oauth_verifier']);
if (isset($access['oauth_token'])) {
unset($_SESSION['request_token']);
unset($_SESSION['request_token_secret']);
unset($_SESSION['oauth_verifier']);
$_SESSION['oauth_token'] = $access['oauth_token'];
$_SESSION['oauth_token_secret'] = $access['oauth_token_secret'];
echo json_encode($access);
}
exit;
} catch (Exception $e) {
http_response_code(404);
$error = array("message" => $e->getMessage(), "code" => $e->getCode());
echo json_encode($error);
throw new Exception('No consumer_key', 3);
}
if (!isset($_SESSION['consumer_secret'])) {
throw new Exception('No consumer_secret', 4);
}
if (!isset($_SESSION['request_token']) && !isset($_POST['request_token'])) {
throw new Exception('No request_token', 5);
}
if (!isset($_SESSION['request_token_secret']) && !isset($_POST['request_token_secret'])) {
throw new Exception('No request_token_secret', 6);
}
$api_url = $_SESSION['api_uri'];
$callback = $_SESSION['app_callback'];
$consumer_key = $_SESSION['consumer_key'];
$consumer_secret = $_SESSION['consumer_secret'];
$request_token = isset($_SESSION['request_token']) ? $_SESSION['request_token'] : htmlentities($_POST['request_token']);
$request_token_secret = isset($_SESSION['request_token_secret']) ? $_SESSION['request_token_secret'] : htmlentities($_POST['request_token_secret']);
// Using sraka1 OAuth Library
$connection = new OAuth1\BasicOAuth($consumer_key, $consumer_secret);
$connection->authorizeURL = $api_url . "/oauth/1.0a/authorize";
$tempCredentials = array("oauth_token" => $request_token, "oauth_token_secret" => $request_token_secret);
// Something is broken in this library. It seems that it doesn't catch authorize URL when sent.
$request_query = $connection->getAuthorizeURL($tempCredentials);
// Return url to login and authorize app.
echo json_encode(array("oauth_redirect_uri" => $connection->authorizeURL . $request_query . urlencode($callback) . "&user_id=" . $_SESSION['user_id']));
exit;
} catch (Exception $e) {
http_response_code(404);
$error = array("message" => $e->getMessage(), "code" => $e->getCode());
echo json_encode($error);
}
