/** * @param Request $request * @param array $routeParams * @return RedirectResponse|EmptyResponse */ public function handle(Request $request, array $routeParams = []) { session_start(); $provider = new Github(['clientId' => $this->settings->get('github.client_id'), 'clientSecret' => $this->settings->get('github.client_secret'), 'redirectUri' => $this->url->toRoute('github.login')]); if (!isset($_GET['code'])) { $authUrl = $provider->getAuthorizationUrl(['scope' => ['user:email']]); $_SESSION['oauth2state'] = $provider->getState(); return new RedirectResponse($authUrl); } elseif (empty($_GET['state']) || $_GET['state'] !== $_SESSION['oauth2state']) { unset($_SESSION['oauth2state']); echo 'Invalid state.'; exit; } $token = $provider->getAccessToken('authorization_code', ['code' => $_GET['code']]); $owner = $provider->getResourceOwner($token); $email = $owner->getEmail(); $username = preg_replace('/[^a-z0-9-_]/i', '', $owner->getNickname()); return $this->authenticated(compact('email'), compact('username')); }