/**
* oauth_signature is set to the concatenated encoded values of the Consumer Secret and
* Token Secret, separated by a '&' character (ASCII code 38), even if either secret is
* empty. The result MUST be encoded again.
* - Chapter 9.4.1 ("Generating Signatures")
*
* Please note that the second encoding MUST NOT happen in the SignatureMethod, as
* Yoast_OAuthRequest handles this!
*/
public function build_signature($request, $consumer, $token)
{
$key_parts = array($consumer->secret, $token ? $token->secret : '');
$key_parts = Yoast_OAuthUtil::urlencode_rfc3986($key_parts);
$key = implode('&', $key_parts);
$request->base_string = $key;
return $key;
}
public function build_signature($request, $consumer, $token)
{
$base_string = $request->get_signature_base_string();
$request->base_string = $base_string;
$key_parts = array($consumer->secret, $token ? $token->secret : '');
$key_parts = Yoast_OAuthUtil::urlencode_rfc3986($key_parts);
$key = implode('&', $key_parts);
return base64_encode(hash_hmac('sha1', $base_string, $key, true));
}
/**
* Exchange request token and secret for an access token and
* secret, to sign API calls.
*
* @returns array( 'oauth_token' => 'the-access-token',
* 'oauth_token_secret' => 'the-access-secret' )
*/
function get_access_token($oauth_verifier = '')
{
$parameters = array();
if (!empty($oauth_verifier)) {
$parameters['oauth_verifier'] = $oauth_verifier;
}
$request = $this->oauth_request(self::access_token_url, 'GET', $parameters);
$token = Yoast_OAuthUtil::parse_parameters(wp_remote_retrieve_body($request));
$this->token = new Yoast_OAuthConsumer($token['oauth_token'], $token['oauth_token_secret']);
return $token;
}
public static function build_http_query($params)
{
if (!$params) {
return '';
}
// Urlencode both keys and values
$keys = Yoast_OAuthUtil::urlencode_rfc3986(array_keys($params));
$values = Yoast_OAuthUtil::urlencode_rfc3986(array_values($params));
$params = array_combine($keys, $values);
// Parameters are sorted by name, using lexicographical byte value ordering.
// Ref: Spec: 9.1.1 (1)
uksort($params, 'strcmp');
$pairs = array();
foreach ($params as $parameter => $value) {
if (is_array($value)) {
// If two or more parameters share the same name, they are sorted by their value
// Ref: Spec: 9.1.1 (1)
// June 12th, 2010 - changed to sort because of issue 164 by hidetaka
sort($value, SORT_STRING);
foreach ($value as $duplicate_value) {
$pairs[] = $parameter . '=' . $duplicate_value;
}
} else {
$pairs[] = $parameter . '=' . $value;
}
}
// For each parameter, the name is separated from the corresponding value by an '=' character (ASCII code 61)
// Each name-value pair is separated by an '&' character (ASCII code 38)
return implode('&', $pairs);
}
/**
* generates the basic string serialization of a token that a server
* would respond to request_token and access_token calls with
*/
function to_string()
{
return 'oauth_token=' . Yoast_OAuthUtil::urlencode_rfc3986($this->key) . '&oauth_token_secret=' . Yoast_OAuthUtil::urlencode_rfc3986($this->secret);
}
/**
* builds the Authorization: header
*/
public function to_header($realm = null)
{
$first = true;
if ($realm) {
$out = 'Authorization: OAuth realm="' . Yoast_OAuthUtil::urlencode_rfc3986($realm) . '"';
$first = false;
} else {
$out = 'Authorization: OAuth';
}
$total = array();
foreach ($this->parameters as $k => $v) {
if (substr($k, 0, 5) != 'oauth') {
continue;
}
if (is_array($v)) {
throw new Yoast_OAuthException('Arrays not supported in headers');
}
$out .= $first ? ' ' : ',';
$out .= Yoast_OAuthUtil::urlencode_rfc3986($k) . '="' . Yoast_OAuthUtil::urlencode_rfc3986($v) . '"';
$first = false;
}
return $out;
}