} else {
$xero->getOAuthClient()->setToken($oauth_session['token'])->setTokenSecret($oauth_session['token_secret']);
if (isset($_REQUEST['oauth_verifier'])) {
$xero->getOAuthClient()->setVerifier($_REQUEST['oauth_verifier']);
$url = new URL($xero, URL::OAUTH_ACCESS_TOKEN);
$request = new Request($xero, $url);
$request->send();
$oauth_response = $request->getResponse()->getOAuthResponse();
setOAuthSession($oauth_response['oauth_token'], $oauth_response['oauth_token_secret'], $oauth_response['expires']);
//drop the qs
$uri_parts = explode('?', $_SERVER['REQUEST_URI']);
//Just for demo purposes
header(sprintf('Location: http%s://%s%s', isset($_SERVER['HTTPS']) ? 's' : '', $_SERVER['HTTP_HOST'], $uri_parts[0]));
exit;
}
}
//Otherwise, you're in.
print_r($xero->loadByGUID('Accounting\\Contact', '[GUID]'));
//The following two functions are just for a demo - you should use a more robust mechanism of storing tokens than this!
function setOAuthSession($token, $secret, $expires = null)
{
$_SESSION['oauth'] = array('token' => $token, 'token_secret' => $secret, 'expires' => $expires);
}
function getOAuthSession()
{
//If it doesn't exist or is expired, return null
if (!isset($_SESSION['oauth']) || $_SESSION['oauth']['expires'] !== null && $_SESSION['oauth']['expires'] <= time()) {
return null;
}
return $_SESSION['oauth'];
}
