/**
* Verify the request if it seemed to be signed.
*
* @param string token_type the kind of token needed, defaults to 'access'
* @exception OAuthException thrown when the request did not verify
* @return boolean true when signed, false when not signed
*/
public function verifyIfSigned($token_type = 'access')
{
if ($this->getParam('oauth_consumer_key')) {
OAuthRequestLogger::start($this);
$this->verify($token_type);
$signed = true;
OAuthRequestLogger::finish();
} else {
$signed = false;
}
return $signed;
}
/**
* Overrule this method when you want to want to display a nice page when
* the authorization is finished. This function does not know if the authorization was
* succesfull, you need to check the token in the database.
*/
public function authorizeFinish($authorized, $user_id)
{
OAuthRequestLogger::start($this);
$token = $this->getParam('oauth_token', true);
if (isset($_SESSION['verify_oauth_token']) && $_SESSION['verify_oauth_token'] == $token) {
// Flag the token as authorized, or remove the token when not authorized
$store = OAuthStore::instance();
if ($authorized) {
OAuthRequestLogger::addNote('Authorized token "' . $token . '" for user ' . $user_id);
$store->authorizeConsumerRequestToken($token, $user_id);
} else {
OAuthRequestLogger::addNote('Authorization rejected for token "' . $token . '" for user ' . $user_id . "\nToken has been deleted");
$store->deleteConsumerRequestToken($token);
}
if (!empty($_SESSION['verify_oauth_callback'])) {
$this->redirect($_SESSION['verify_oauth_callback'], array('oauth_token' => rawurlencode($token)));
}
}
OAuthRequestLogger::finish();
}
