/**
* Declare that content is require user authoriztion and display login form if user isn't logged in
* @param $bStudio require webmaster authorization
*/
function bx_require_authentication($bStudio = false)
{
$iRole = BX_DOL_ROLE_MEMBER;
if ($bStudio) {
$iRole = BX_DOL_ROLE_ADMIN;
}
$sID = isset($_COOKIE['memberID']) ? bx_process_input($_COOKIE['memberID']) : false;
$sPassword = isset($_COOKIE['memberPassword']) ? bx_process_input($_COOKIE['memberPassword']) : false;
if (bx_check_login($sID, $sPassword, $iRole)) {
bx_login_form($bStudio);
}
check_logged();
}
function actionAuth()
{
$oRequest = OAuth2\Request::createFromGlobals();
$oResponse = new OAuth2\Response();
// validate the authorize request
if (!$this->_oServer->validateAuthorizeRequest($oRequest, $oResponse)) {
require_once BX_DIRECTORY_PATH_INC . 'design.inc.php';
$o = json_decode($oResponse->getResponseBody());
$this->_oTemplate->getPage(false, MsgBox($o->error_description));
}
if (!isLogged()) {
require_once BX_DIRECTORY_PATH_INC . 'design.inc.php';
$sForceRelocate = BX_DOL_URL_ROOT . $this->_oConfig->getBaseUri() . 'auth/?client_id=' . bx_get('client_id') . '&response_type=' . bx_get('response_type') . '&state=' . bx_get('state') . '&redirect_uri=' . bx_get('redirect_uri');
bx_login_form(false, false, $sForceRelocate);
return;
}
$aProfiles = BxDolAccount::getInstance()->getProfiles();
if (!($iProfileId = $this->_oDb->getSavedProfile($aProfiles)) && empty($_POST)) {
$oPage = BxDolPage::getObjectInstanceByURI('oauth-authorization');
$this->_oTemplate->getPage(false, $oPage->getCode());
return;
}
if (!$iProfileId) {
$iProfileId = bx_get('profile_id');
}
$this->_oServer->handleAuthorizeRequest($oRequest, $oResponse, (bool) $iProfileId, $iProfileId);
$oResponse->send();
}
