<?php
session_start();
// load library.
require_once dirname(__FILE__) . '/QClient.php';
require_once dirname(__FILE__) . '/config.php';
// Build QClient object.
$connection = new QOAuth2(APPKEY, SECRET, '');
// access token
$scope = 'basic';
$opt = $_POST['oauth2'];
if (!empty($opt)) {
if ("authorization_code" === $opt) {
$url = $connection->getAuthorizeURL('code', REDIRECT, $scope);
header("Location:{$url}");
exit;
} elseif ("implicit_grant" === $opt) {
$url = $connection->getAuthorizeURL('token', REDIRECT, $scope);
header("Location:{$url}");
exit;
} elseif ("refresh_token" === $opt) {
if (empty($_SESSION['refresh_token'])) {
$error = "Refresh Token未找到,请在授权后回调时存储获得的Refresh Token";
}
$response = $connection->getAccessTokenByRefreshToken($_SESSION['refresh_token'], $scope);
if (isset($response['access_token'])) {
$_SESSION['access_token'] = $response['access_token'];
$_SESSION['refresh_token'] = $response['refresh_token'];
header("Location:testapi.php");
exit;
}
<?php
session_start();
require_once dirname(__FILE__) . '/QClient.php';
require_once dirname(__FILE__) . '/config.php';
if (array_key_exists('code', $_GET)) {
$connect = new QOAuth2(APPKEY, SECRET, '');
// access token
$response = $connect->getAccessTokenByCode($_GET['code'], REDIRECT);
if (isset($response['access_token'])) {
$_SESSION['access_token'] = $response['access_token'];
$_SESSION['refresh_token'] = $response['refresh_token'];
header("Location:testapi.php");
exit;
}
}
?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
</head>
<script>
window.onload = function() {
if(window.location.hash != undefined) {
var token = window.location.hash.split("&")[0].split("=")[1];
if(token != undefined) {
window.document.getElementById('implicit').innerHTML = '您使用了implicit模式,accesst token为'+token+'此流程仅使用于纯前端应用,例如纯js应用!';
}
}
}
</script>
/**
* 360 登陆
*/
public function get($f3)
{
global $logger;
if (empty($_GET['code'])) {
$this->addFlashMessage('360联合登陆失败,Code 不存在');
goto out;
}
require_once 'sdk/QClient.php';
// 获取access token
$callback = RouteHelper::makeUrl('/Thirdpart/Dev360Auth/Callback', null, false, true);
$oauth = new \QOAuth2(Dev360AuthPlugin::getOptionValue(self::$optionKeyPrefix . 'dev360auth_app_key'), Dev360AuthPlugin::getOptionValue(self::$optionKeyPrefix . 'dev360auth_app_secrect'), '');
$token = $oauth->getAccessTokenByCode($_GET['code'], $callback);
if (empty($token['access_token'])) {
$this->addFlashMessage('360联合登陆失败,获取 access_token 失败');
goto out;
}
// 调用API,获取用户信息
$client = new \QClient(Dev360AuthPlugin::getOptionValue(self::$optionKeyPrefix . 'dev360auth_app_key'), Dev360AuthPlugin::getOptionValue(self::$optionKeyPrefix . 'dev360auth_app_secrect'), $token['access_token']);
$user = $client->userMe();
if (empty($user)) {
$this->addFlashMessage('360联合登陆失败,用户信息为空');
goto out;
}
$param = array('user_id' => $user['id'], 'username' => !empty($user['name']) ? (string) $user['name'] : '网友', 'token' => $token['access_token']);
// put all values into $_POST[]
$qid = $param['user_id'];
$qname = urldecode($param['username']);
$qmail = '';
if (empty($qid)) {
// 没有 qid 没法登陆
$this->addFlashMessage('360联合登陆失败,没有 qid');
goto out;
}
$sns_login = "******";
// 用户登陆操作
$userBasicService = new UserBasicService();
$authUser = $userBasicService->doAuthSnsUser($sns_login, null, null, false);
if ($authUser) {
goto out_login_user;
}
// 用户不存在,自动注册一个用户
if (empty($qmail)) {
$qmail = '' . $qid . '@360.cn';
}
if (empty($qname)) {
$qname = $qmail;
}
$retry = 10;
// 重试 10 次
$regUserName = $qname;
while ($userBasicService->isUserExist($regUserName, null) && $retry-- > 0) {
$regUserName = $qname . '_' . rand(10000, 99999);
}
if ($retry <= 0) {
$this->addFlashMessage('360联合登陆失败,用户名已经存在,无法自动注册');
goto out;
}
$authUser = $userBasicService->doAuthSnsUser($sns_login, $qname, $qmail, true);
$logger->addLogInfo(\Core\Log\Base::INFO, 'DEV360AUTH', '注册360用户' . print_r(array('sns_login' => $sns_login, 'qname' => $qname, 'qmail' => $qmail), true));
out_login_user:
AuthHelper::saveAuthUser($authUser->toArray(), 'dev360auth');
// 设置用户名在网页显示
ClientData::saveClientData(\Controller\User\Login::$clientDataIsUserLoginKey, true);
ClientData::saveClientData(\Controller\User\Login::$clientDataUserNameDisplayKey, '360用户:' . $authUser['user_name']);
out:
// 跳转到用户之前看的页面,如果之前没有看过的页面那就回到首页
RouteHelper::jumpBack($this, '/', true);
}